network

If you are an ISP, run your own DNS resolvers

Glenn Kelley has a great article on spinning up your own DNS resolvers. This is a critical piece of infrastructure if you are in internet Service Provider (ISP). https://www.linkedin.com/pulse/making-dns-server-your-network-uses-root-hints-glenn-kelley As Glenn writes. Here’s why ISPs should consider running their own: This is especially important in high-latency networks such as in the 3rd world or some Fixed Wireless networks Conclusion While leveraging third-party DNS services like Google or Cloudflare offers a plug-and-play solution for ISPs, in the long run, it might be more beneficial...

Continue reading...

Internet Service Providers, latency, customers, and how it all fits together

I have noticed a trend regarding customers and latency in the Internet Service Provider (ISP) world. Those in the industry know all about customers and speed tests. Love or hate them, the speed test is a way of life for the ISP. I wrote an article a while back on the Problems with Speed Tests. As customers become more educated, they are now paying attention to latency. We have many of the issues with latency as we do with speed tests. First, let’s...

Continue reading...

Rookie network mistake this morning, and musings

Over the past few years, I have been trying to train myself out of First Responder mode and into the ability to take a step back and evaluate the situation when it comes to network outages. Being in the ISP field for so long, you get into a mentality of just fixing the problem. This can cause you to just jump in and focus on putting out whatever the latest fire is. This mindset differs from engineering a new point of Presence (POP)....

Continue reading...

DDoS attacks in high bandwidth bursts

https://www.darkreading.com/threat-intelligence/ddos-attacks-hitting-victims-in-high-bandwidth-bursts Security firm Imperva culled the intelligence from nearly 5,600 network-level attacks encountered by its clients to find that attackers continued to increase the intensity of attacks as they also shortened attack duration. More than half of the attacks lasted eight minutes or less, with attackers repeatedly inundating the same companies with floods of data — including one attack that topped 1 Tbps, according to Imperva.

Continue reading...

Mikrotik Connection tracking and CPU usage

This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.To view this content, you must be a member of Justin’s Patreon Unlock with PatreonAlready a qualifying Patreon member? Refresh to access this content.

Continue reading...

Cisco High Availability design

This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.To view this content, you must be a member of Justin’s Patreon Unlock with PatreonAlready a qualifying Patreon member? Refresh to access this content.

Continue reading...

Medium WISP Core Network Design

This content is for Patreon subscribers of the j2 blog. Please consider becoming a Patreon subscriber for as little as $1 a month. This helps to provide higher quality content, more podcasts, and other goodies on this blog.To view this content, you must be a member of Justin’s Patreon Unlock with PatreonAlready a qualifying Patreon member? Refresh to access this content.

Continue reading...