he.net

Packets Down Range #6:OpenWifi, iOT, RDOF,CBRS

Welcome to issue #6 of Packets Down Range. The thing I am excited about lately is the 100 Gig passive mux by solid optics. One of the hats I wear is running an IX. We are always looking for ways to best utilize our dark fiber assets to increase data rates. Keep those tips and articles coming. I am working on the Patreon edition, and it will be released shortly.

Data Center News

•Are Data Centers pricing themselves out of the market? Rising energy costs, increases in cross-connect fees, and just general price raising are causing more folks to look at moving more things into the cloud.

Building an IoT backbone


Interconnection & Peering

•Hurricane Electric expands to DataBank DFW1.


ISP News
•According to Leichtman Research Group, Verizon and T-Mobile added 15x more subscribers in Q3 2022 than the top 7 cable providers in the US combined.

101 most innovative Texas wireless companies according to beststartuptexas.com.

•Crosstown Fiber extends its footprint in the greater Chicago area.
Crosstown’s underground network is designed for customers who need access to resilient fiber pathways. The company will target school systems, large corporations, hyperscalers and data center operators, small cell wireless carriers, content providers, and municipal and other government agencies.

California Internet (GeoLinks) and Shenandoah Cable Television are the latest to be authorized by the FCC for their RDOF-winning bids. People’s communications in Texas is the latest to default on their bids. The full article can be read here.


Podcasts & Events
Inside Towers Podcast

•Willie Howe has a video on routers vs. firewalls.

Ohio Linux Professionals conference December 2nd and 3rd.


Other Industry News
•ARIN releases a new version of its RSA.

•FCC to release updated broadband map on November 18th

NTIA releases plans for all that BEAD money

•Netflix is still winning the streaming wars…for now.

•Does CBRS fall short? This article claims it does.

•What does your office do for fun or unique awards for employees?

•META moves away from connectivity. Will OpenWiFi suffer because of it?


Advertise with Packets Down Range

Notable Equipment

•Solid optics releases a new 8 Channel OWDM mux. What does this mean for you? You can run 8 100 gig waves over a passive mux system up to 20km. Each channel is 400 GHz.

•Juniper announces ACX7024 Metro Router.

WIFI 7 routers are on the way.


Please consider becoming a sponsor by advertising or becoming a Patreon or donating any amount via Paypal for additional content. #packetsdownrange packetsdownrange.com

Hurricane Electric now requires IRR and filters invalid RPKI

If you are a Hurricane Electric customer you may be receiving e-mails like the following:

Dear ASXXX,

Routing Security Report for ASXXX

Hurricane Electric cares about your routing security.  We filter all BGP sessions using prefix filters based on IRR and RPKI.

This report is being sent to help you identify prefixes which may need either their IRR or RPKI information created or updated 
and to also help you identify possibly hijacked routes you may be accepting and reannouncing.  

Routes with RPKI status INVALID_ASN strongly indicate a serious problem.

IPv4 SUMMARY

Routes accepted: 3
Routes rejected: 3
Routes with RPKI status VALID: 0
Routes with RPKI status INVALID: 0

IPv6 SUMMARY

Routes accepted: 1
Routes rejected: 0
Routes with RPKI status VALID: 0
Routes with RPKI status INVALID: 0

We currently do not have a valid as-set name for your network.  Please add an export line to your aut-num ASXXXX 
that references your as-set name.  For example,

export: to AS-ANY announce your-as-set-name

If you do not currently have an as-set, we recommend you create one named ASXXXX:AS-ALL

Your as-set should contain just your ASN and your customers' ASNs and/or as-sets (not your peers or upstream providers).

What does this mean for you as a service provider? If you use Hurricane Electric as transit or peer with them on an exchange you will need to have ROAs for your blocksand have routing registry objects. I did a tutorial based upon Arin which can be found at: https://blog.j2sw.com/networking/routing-registries-and-you/

In short you need to do the following:

  • Create a mntner object (equivalent of a user account) to give you the ability to create IRR objects in your selected IRR database
  • Create an aut-num to represent your autonomous system and describe its contact information (admin and technical) and your routing policy
  • Create an as-set to describe which autonous system numbers your peers should expect to see from you (namely your own and your transit customers)
  • Create a route/route6 object for every prefix originated from your network
  • Update your peeringdb profile to include your IRR peering policy
  • Generate RPKI https://www.arin.net/resources/manage/rpki/roa_request/#creating-a-roa-in-arin-online

Clarification:
Some folks are confusing having valid ROAs with your router supporting RPKI with route origin validation in real-time. These two are separate things. You create ROA records with your RIR, such as ARIN, which has nothing to do with route validation on your router.

Also, HE is filtering any RPKI INVALID routes. Does this mean they are requiring RPKI? You be the judge.