Wow. Fifteen years since I became a founding member of the #FNS. Great experiences, great people, dubious networking. https://flatnetworksociety.com/ #NetEng

Auditor: Can you send a screenshot of the access VPN timeouts so we can demonstrate policy compliance?
Me: (Sends relevant portions of the configuration.)
Them: This is a text file. We need a screenshot.
Me: (Sends screenshot of my terminal session showing the relevant portions of the configuration.)
#InfoSec #NetEng #MaliciousCompliance

We have dozens of relatively simple methods to secure Internet traffic, but we’re often reduced to “just open access through your firewalls from this huge list of source addresses” because too many folks can’t be arsed to do any of those. Keeping it simple is •not• about moving the complexity into the customer’s realm of responsibility. #NetEng #InfoSec

I think I’ve been in this industry for too long. I searched for a synopsis this morning and accidentally typed “synoptics” instead. Last week I was teaching the NATO phonetic alphabet and taught “unicorn” instead of “uniform.” #NetEng #SiliconValley

"SD-WAN" (over MPLS no less!) with IPSec tunnels (not transports!), hard static routes for link monitoring, and floating static routes for tunnel failover... because that's less complicated than using a routing protocol. #NetEng #BangHeadHere

Listened to a presentation today from someone with an accent that made every instance of “configuration” sound like “conflagration” instead. Thinking about this further, sometimes there’s little difference between the two. #NetEng

Dear Fediverse, I am lost and need some help with #neteng planning. I run a small environment, we're eventually going to need an ASN. We already lease IPv4 from IPXO, but they are announced by our sole transit provider. I eventually want to have another provider and then #bgp all the things, but that requires an ASN and a handle at one the registries. RIPE is very forward and transparent about how it works, and fees, but I live in the US. So I think I need to use ARIN, which is...opaque. (cont)

At TORNOG 1 in a Nokia automation workshop. They're talking about gRIBI and I'm suddenly craving a steak. #NetEng

Taking a break from the day to day for an awesome event in Toronto. #NetEng https://tornog.ca/events/tornog-1/