What's New
Building a dynamic security infrastructure [in a box – with SDN]
Years ago I wrote about building a secure network in a box. Over a…
DNS – the treasure trove of information your ISP can see
In recent years, the nature of privacy on the internet has become a very…
Faucet: Enterprise OpenFlow in production
Remember OpenFlow? It was the media and marketing darling for the better…
DDoS mitigation podcast, black hole routing
As an often-security-engineer and an individual that has been working on large networks for…
Trouble with Tribbles …..errr NAT
As a follow up to my last post, I wanted to dive a little…
NAT discussions, fact checking, and debate
I’ve been very vocal about the misinterpretation of NAT for many, many years. Since…
Strategy Series: What is your netflow strategy?
You have one, right? Even if your entire strategy is “collect some flow data”,…
No privacy may be the new privacy.
Taking politics and putting them aside, what the new administration has been attempting to…
Creating an internal span port inside proxmox OVS
In the last few years I have moved all of my virtualization to proxmox…
BGP RPKI – why aren't we using it more?
I was recently at a meeting where BGP RPKI was the topic de jour. While this…