Weekend Reads
* DNS parser overflow in Zephyr
https://www.0xkato.xyz/CVE-2026-1678-DNS-Parser-Overflow-in-Zephyr/
* Telegram bots measurement survey
https://arxiv.org/abs/2603.24302
* AS-path prepending for anycast optimization
https://arxiv.org/abs/2603.21082
* Building the largest data center
https://spectrum.ieee.org/5gw-data-center
* OpenBSD init system and boot process
https://overeducated-redneck.net/blurgh/openbsd-init-system.html
I've been mentioning my little hobby project Netpulse a few times, so I wrote a blog post about it now.
et une analyse interessante avec exemple de déploiement de SCION en prod dans le secteur de la finance CH dans cette article (via Risky Bizz )
⬇️
"Switzerland adopts SCION: A Secure Alternative to BGP"
"Since its launch, the SSFN has settled 220 billion CHF per day without a single outage attributable to routing failures"
👇
https://ubos.tech/news/switzerland-adopts-scion-a-secure-alternative-to-bgp/
We've released Rotonda 0.5.2, our BMP/BGP route collector, bringing back the web UI in totally revamped fashion. It's still simplistic, by design, but now offers a lot more insight in both the actual routes as well as session information.
As the UI is still evolving, we are gathering feedback. please chime in with anything that comes to mind:
https://community.nlnetlabs.nl/t/web-ui-feedback-ideas/85
https://github.com/NLnetLabs/rotonda/releases/tag/v0.5.2
#BGP #BMP #RustLang
In 0.5.2, we revived and overhauled the Web UI. While the web UI will always be simplistic by design, and while it will never serve every single particular use case, we aim to make it both as usable and useful as possible within these limitations. We invite everyone to provide feedback on any aspect of the web UI: what works for you and your use cases, what doesn’t, what’s missing, basically anything that comes to mind is useful feedback for us. Even if an idea might not fit the web UI as we en...
Как в Авито построили систему мониторинга BGP
Всем привет! Меня зовут Антон Ильичев, я сетевой инженер в Авито. В этой статье расскажу, зачем мы централизованно собираем и анализируем маршрутную информацию с сетевых устройств, причём тут протокол BMP и как устроена наша система мониторинга. В конце вас будет ждать лаба на docker-compose, которую вы можете запустить у себя и посмотреть на систему в действии. Статья будет полезна в первую очередь сетевым инженерам, командам SRE и мониторинга, которые отвечают за доступность и качество сервиса.
https://habr.com/ru/companies/avito/articles/1012780/
#bmp #bgp #monitoring #netops #troubleshooting #kafka #clickhouse #cisco #grafana #juniper
Running a FreeBSD server with two independent uplinks?
My latest deep dive covers how to mix a physical provider and a BGP tunnel to serve NAT'd, routed, and pure public jail traffic on a single bridge.
We break down Dual-FIB policy routing and show you how to use PF's rtable and reply-to directives to fix asymmetric routing and keep traffic strictly separated.
Policy routing done right: https://blog.hofstede.it/dual-fib-policy-routing-on-freebsd-two-upstreams-one-server-zero-confusion/
Part 3 of my hobby AS series is up: connecting my AS201379 to LocIX Düsseldorf via a dedicated FreeBSD edge router.
Covers route server peering, IPv6-in-IPv6 GIF tunnels, PF on a shared peering LAN, and iBGP back to the core.
https://blog.hofstede.it/running-your-own-as-joining-an-ixp-with-a-third-edge-router/
Fascinating potential successor to BGP
https://www.theregister.com/2026/03/17/switzerland_bgp_alternative/
John Kristoff
Tomas 🐧
decio
NLnet Labs
Habr
Larvitz 
CyberVeille.ch
"Musty Bits" McGee
Stéphane Bortzmeyer