I agree. GeoIP was never a good idea, but here we are. Any ASN could be broken up and routed wherever (and changed) but it’s still far too prevalent.
- 0 Posts
- 27 Comments
Joined 1 year ago
Cake day: July 6th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
I might be misunderstanding. It’s definitely possible to have as many IPv4 aliases on an interface as you want with whatever routing preferences you want. Can you clarify?
I agree with your stance on deployment.
Given how large the address space is, it’s super easy to segregate out your networks to the nth degree and apply proper firewall rules.
There’s no reason your clients can’t have public, world routeable IPs as well as security.
Security via obfuscation isn’t security. It’s a crutch.
This article is biased to selling you more F5 equipment but is a reasonable summary:
https://www.f5.com/resources/white-papers/the-myth-of-network-address-translation-as-security
Long story short is that NAT is eggshell security and you should be relying on actual firewall rules (I wouldn’t recommend F5) instead of the implicit but not very good protections of NAT.
I can potentially see that scenario if your transit provider is giving you a dynamic prefix but I’ve never seen that in practice. The address space is so enormous there is no reason to.
Otherwise with either of RADVD or DHCPv6 the local routers should still be able to handle the traffic.
My home internal network (v6, SLAAC) with all publicly routeable addresses doesn’t break if I unplug my modem.
Hurricane Electric have a free tunnel broker that is super simple to set up if you really want to get on the bandwagon.
Though honestly I’d say the benefits of setting it up aren’t really worth the trouble unless you’re keen.
IMO they shouldn’t have allowed ULA as part of the standard. There’s no good reason for it.
It also means you no longer need the kludge that is NAT. Full E2E connectivity is really nice – though I’ve found some network admins dislike this idea because they’re so used to thinking about it differently or (mistakenly) think it adds to their security.
I feel like I’m the exact opposite of what this article proposed however the entire thing confuses me.
I’m not rich but relatively well off, and, without doubt in the best financial position of my immediate group of friends.
If I happen to be the one that picks up the bill I often have people chasing me to pay me. I actually think that is a problem because they feel obliged to do the right thing, however I’m unmotivated because I don’t care about the outcome – I don’t need the money. This is my fault and I feel poorly for it but the reality is that after I’ve had a nice evening I don’t really care. In terms of the debt: honestly I probably wouldn’t bother asking.
The very concept of asking someone for 4 bucks seems abhorrent to me. To be clear, I say this personally; I’m not struggling to pay rent/mortgage/utilities/whatever. If you’re in a position where those are concerns then please absolutely follow up.
Chasing a $4 debt won’t make you rich, ever. Even if you do it all the time. Anyone well off chasing this kind of cash is deluding themselves.
Generally speaking my friends and I operate over a long term fairness principle. “Bob got the last round, I’ll get the next”; they won’t be even but our assumption is that it’ll balance in the long term. That applies to more than just the pub.
At the cost of leg room.
This book helped me out significantly:
A former treasurer of Australia solved it. You just need to get a good job.
Yes.
Legitimate question: is there no benefit to voting for a party if they won’t win?
Do they get any future election funding or… anything?
I used Netscape “back in the day”. With some interim transition attempts including the likes of Opera, I eventually switched to Chrome because it was genuinely more featureful and faster.
I was a happy Chrome user until they decided to deprecate manifest V2 and fuck up my ad blocker, at which point I switched to Firefox and haven’t looked back.
Everything in this industry is circular I guess.
I realise the US uses FPTP, but can someone explain to me why this comment is being downvoted? I’d think participating in the democratic process would be considered a good thing regardless.
Raising tax revenue and funding some variation of single payer health care or socialised medicine are not mutually exclusive.
I used to deliver a keynote to 3-400 people, twice a month as part of corporate onboarding.
Absolutely this.
Obviously my experience was not as high stakes as a SOTU, but it was fucking exhausting. I knew the content well enough that I could deliver it in my sleep and actively did so when I was sick, hungover, generally tired and (usually) just okay.
Regardless of my initial state, I was at my tether after 90 minutes of being “switched on” and engaged. I am not an octogenarian.
That was with the benefit of delivering repeated content. Biden doesn’t deliver this same speech twice a month. I’m sure he practiced but it’s still a big ask regardless of age.
Just beware of their reclamation policy:
Honestly, these days I have no idea. When I said “wouldn’t recommend” that wasn’t an assertion to avoid; just a lack of opinion. Most of my recent experience is with Cloud vendors wherein the problem domain is quite different.
I’ve had experience with most of the big vendors and they’ve all had quirks etc. that you just have to deal with. Fundamentally it’ll come down to a combination of price, support requirements, and internal competence with the kit. (Don’t undermine the last item; it’s far better if you can fix problems yourself.)
Personally I’d actually argue that most corporates could get by with a GNU/Linux VM (or two) for most of their routing and firewalling and it would absolutely be good enough; functionally you can do the same and more. That’s not to say dedicated machines for the task aren’t valuable but I’d say it’s the exception rather than rule that you need ASICs and the like.