Rapid7 Labs performs active, passive and responsive measurement of activity and content on the Internet through Project Sonar, our open source internet scanner, and Heisenberg Cloud a global network of mixed-interactivity honeypots positioned in every region of multiple cloud providers as well as in organization networks (perimeters).
This talk will provide a brief but comprehensive overview of the architecture of both Project Sonar & Heisenberg Cloud then dive into a whirlwind tour of what attackers, researchers and organizations are exposing on the broader Internet and within cloud providers then conclude with information on how BOSNOG organization attendees can freely run Heisenberg within their own network infrastructure.
Why can't our packets all just get along? We live in an age of routing insecurity, where the implicit trust that once bound us together has been undermined by complexity and bad actors. The level of care that we have to devote to managing our routing infrastructure has grown dramatically and we continue to have a dependency on the kindness of strangers to keep things running well. The Mutually Agreed Norms for Routing Security (MANRS) project aims to establish a minimum set of actions to address the larger problems faced by service providers and IXP's and address some of the moral hazards involved. It takes work and isn’t without operational challenges. It requires that adoption get up to a critical mass to be effective, but it promises to curb botnet and DDoS traffic and reduce the chances of traffic hijacking. Are the benefits worth the risks? Join us to discuss and decide!
This talk will provide a quick tutorial about the purpose of PeeringDB, how to add your network's info, and an update on the status, goals, and roadmap for the project.
A quick overview of what BGP route reflectors are and why you want to use them.
This talk will be teaching the audience good practices for preparing to go to market to buy IPv4 addresses blocks, how to go to the market, and some "gotchas" learned from years of experience buying in the market.
Now that IPv6 is being actively deployed around the world, security is more and more a growing concern. Unfortunately, there are still a large number of myths that plague the IPv6 security world. Things that people state as facts which simply are not true. This fun, fast-paced talk debunks the most common of those IPv6 security myths and provides a quick introduction to IPv6 security along the way.
A deep challenge of network automation is in the representation of the network. The model of the network. With a standard model, automation tooling has a reference to work with. However, modeling the network is just now coming into vogue.
YANG is a network modeling language, but looks squarely on the path of SNMP. Will YANG models become the standard way of describing the network? It certainly looks that way.
In this session, we discuss network automation in the context of YANG models. Why do we need standard models? What benefits do they bring to network automation? Why YANG specifically? Are vendors getting behind YANG?
A hybrid technical and financial talk on how to make sense of peering and it's costs, tailored to peering newcomers.