APNIC Technical Trainer Makito Lay presents an update on the status of RPKI in Cambodia and in South East Asia at KHNOG 5, held in Phnom Penh, Cambodia on 22 October 2023.
HKNOG 12.0: RPKI Actions Required by HK NetworksAPNIC
APNIC Infrastructure and Development Director Che-Hoo Cheng presents on the actions Hong Kong network operators need to take to deploy RPKI in their networks.
APNIC Network Operations Engineer and Senior Training Officer Sheryl Hermoso gives an update on ROA and RPKI deployment in the Philippines at PhNOG 2020 in Manila, Philippines, on 24 February 2020.
PhNOG 2020: Securing your resources with RPKI and IRTAPNIC
APNIC Senior Internet Resource Analyst Anna Mulingbayan gives an overview of how to secure your resources with RPKI and IRT at PhNOG 2020 in Manila, Philippines, on 24 February 2020.
ICANN APAC-TWNIC Engagement Forum: Internet Number Registry Services - The Ne...APNIC
APNIC Director General Paul Wilson gives a presentation on the latest developments in IP address registry services, and their importance to Internet stability and security at the ICANN APAC-TWNIC Engagement Forum in Taipei, Taiwan from 16 to 17 April. 2019
HKNOG 12.0: RPKI Actions Required by HK NetworksAPNIC
APNIC Infrastructure and Development Director Che-Hoo Cheng presents on the actions Hong Kong network operators need to take to deploy RPKI in their networks.
APNIC Network Operations Engineer and Senior Training Officer Sheryl Hermoso gives an update on ROA and RPKI deployment in the Philippines at PhNOG 2020 in Manila, Philippines, on 24 February 2020.
PhNOG 2020: Securing your resources with RPKI and IRTAPNIC
APNIC Senior Internet Resource Analyst Anna Mulingbayan gives an overview of how to secure your resources with RPKI and IRT at PhNOG 2020 in Manila, Philippines, on 24 February 2020.
ICANN APAC-TWNIC Engagement Forum: Internet Number Registry Services - The Ne...APNIC
APNIC Director General Paul Wilson gives a presentation on the latest developments in IP address registry services, and their importance to Internet stability and security at the ICANN APAC-TWNIC Engagement Forum in Taipei, Taiwan from 16 to 17 April. 2019
Securing the Global Routing System and the Approach of OperatorsAPNIC
Securing the Global Routing System and the Approach of Operators by Fakrul Alam.
A presentation given at Network SSR session on Tuesday, 4 October 2016.
APNIC Member Services Officer, Bayar Batjargal give an update of IPv6 in Mongolia at mnNOG 2023, held in Ulaanbaatar, Mongolia from 18 to 23 September 2023.
APNIC Chief Scientist helps describe the phenomenon that puts India and other developing economies at the top of IPv6 deployment at the RIPE 76 IPv6 Working Group session.
BSides: BGP Hijacking and Secure Internet RoutingAPNIC
APNIC Senior Network Analyst/Technical Trainer Warren Finch and APNIC Training Delivery Manager Tashi Phuntsho present on current tool and techniques, how Resource Public Key Infrastructure (RPKI) is just a piece in the puzzle, and what we should all do to secure Internet routing at BSides in Brisbane, Australia on 12 December 2020.
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024APNIC
Ellisha Heppner, Grant Management Lead, presented an update on APNIC Foundation to the PNG DNS Forum held from 6 to 10 May, 2024 in Port Moresby, Papua New Guinea.
Registry Data Accuracy Improvements, presented by Chimi Dorji at SANOG 41 / I...APNIC
Chimi Dorji, Internet Resource Analyst at APNIC, presented on Registry Data Accuracy Improvements at SANOG 41 jointly held with INNOG 7 in Mumbai, India from 25 to 30 April 2024.
Securing the Global Routing System and the Approach of OperatorsAPNIC
Securing the Global Routing System and the Approach of Operators by Fakrul Alam.
A presentation given at Network SSR session on Tuesday, 4 October 2016.
APNIC Member Services Officer, Bayar Batjargal give an update of IPv6 in Mongolia at mnNOG 2023, held in Ulaanbaatar, Mongolia from 18 to 23 September 2023.
APNIC Chief Scientist helps describe the phenomenon that puts India and other developing economies at the top of IPv6 deployment at the RIPE 76 IPv6 Working Group session.
BSides: BGP Hijacking and Secure Internet RoutingAPNIC
APNIC Senior Network Analyst/Technical Trainer Warren Finch and APNIC Training Delivery Manager Tashi Phuntsho present on current tool and techniques, how Resource Public Key Infrastructure (RPKI) is just a piece in the puzzle, and what we should all do to secure Internet routing at BSides in Brisbane, Australia on 12 December 2020.
APNIC Foundation, presented by Ellisha Heppner at the PNG DNS Forum 2024APNIC
Ellisha Heppner, Grant Management Lead, presented an update on APNIC Foundation to the PNG DNS Forum held from 6 to 10 May, 2024 in Port Moresby, Papua New Guinea.
Registry Data Accuracy Improvements, presented by Chimi Dorji at SANOG 41 / I...APNIC
Chimi Dorji, Internet Resource Analyst at APNIC, presented on Registry Data Accuracy Improvements at SANOG 41 jointly held with INNOG 7 in Mumbai, India from 25 to 30 April 2024.
APNIC Policy Roundup, presented by Sunny Chendi at the 5th ICANN APAC-TWNIC E...APNIC
Sunny Chendi, Senior Advisor, Membership and Policy at APNIC, presents 'APNIC Policy Roundup' at the 5th ICANN APAC-TWNIC Engagement Forum and 41st TWNIC OPM in Taipei, Taiwan from 23 to 24 April.
DDoS In Oceania and the Pacific, presented by Dave Phelan at NZNOG 2024APNIC
Dave Phelan, Senior Network Analyst/Technical Trainer at APNIC, presents 'DDoS In Oceania and the Pacific' at NZNOG 2024 held in Nelson, New Zealand from 8 to 12 April 2024.
'Future Evolution of the Internet' delivered by Geoff Huston at Everything Op...APNIC
Geoff Huston, Chief Scientist at APNIC deliver keynote presentation on the 'Future Evolution of the Internet' at the Everything Open 2024 conference in Gladstone, Australia from 16 to 18 April 2024.
IP addressing and IPv6, presented by Paul Wilson at IETF 119APNIC
Paul Wilson, Director General of APNIC delivers a presentation on IP addressing and IPv6 to the Policymakers Program during IETF 119 in Brisbane Australia from 16 to 22 March 2024.
draft-harrison-sidrops-manifest-number-01, presented at IETF 119APNIC
Tom Harrison, Product and Delivery Manager at APNIC presents at the Registration Protocols Extensions working group during IETF 119 in Brisbane, Australia from 16-22 March 2024
Benefits of doing Internet peering and running an Internet Exchange (IX) pres...APNIC
Che-Hoo Cheng, Senior Director, Development at APNIC presents on the "Benefits of doing Internet peering and running an Internet Exchange (IX)" at the Communications Regulatory Commission of Mongolia's IPv6, IXP, Datacenter - Policy and Regulation International Trends Forum in Ulaanbaatar, Mongolia on 7 March 2024
APNIC Update and RIR Policies for ccTLDs, presented at APTLD 85APNIC
APNIC Senior Advisor, Membership and Policy, Sunny Chendi presented on APNIC updates and RIR Policies for ccTLDs at APTLD 85 in Goa, India from 19-22 February 2024.
Bridging the Digital Gap Brad Spiegel Macon, GA Initiative.pptxBrad Spiegel Macon GA
Brad Spiegel Macon GA’s journey exemplifies the profound impact that one individual can have on their community. Through his unwavering dedication to digital inclusion, he’s not only bridging the gap in Macon but also setting an example for others to follow.
2.Cellular Networks_The final stage of connectivity is achieved by segmenting...JeyaPerumal1
A cellular network, frequently referred to as a mobile network, is a type of communication system that enables wireless communication between mobile devices. The final stage of connectivity is achieved by segmenting the comprehensive service area into several compact zones, each called a cell.
1.Wireless Communication System_Wireless communication is a broad term that i...JeyaPerumal1
Wireless communication involves the transmission of information over a distance without the help of wires, cables or any other forms of electrical conductors.
Wireless communication is a broad term that incorporates all procedures and forms of connecting and communicating between two or more devices using a wireless signal through wireless communication technologies and devices.
Features of Wireless Communication
The evolution of wireless technology has brought many advancements with its effective features.
The transmitted distance can be anywhere between a few meters (for example, a television's remote control) and thousands of kilometers (for example, radio communication).
Wireless communication can be used for cellular telephony, wireless access to the internet, wireless home networking, and so on.
Meet up Milano 14 _ Axpo Italia_ Migration from Mule3 (On-prem) to.pdfFlorence Consulting
Quattordicesimo Meetup di Milano, tenutosi a Milano il 23 Maggio 2024 dalle ore 17:00 alle ore 18:30 in presenza e da remoto.
Abbiamo parlato di come Axpo Italia S.p.A. ha ridotto il technical debt migrando le proprie APIs da Mule 3.9 a Mule 4.4 passando anche da on-premises a CloudHub 1.0.
Understanding User Behavior with Google Analytics.pdfSEO Article Boost
Unlocking the full potential of Google Analytics is crucial for understanding and optimizing your website’s performance. This guide dives deep into the essential aspects of Google Analytics, from analyzing traffic sources to understanding user demographics and tracking user engagement.
Traffic Sources Analysis:
Discover where your website traffic originates. By examining the Acquisition section, you can identify whether visitors come from organic search, paid campaigns, direct visits, social media, or referral links. This knowledge helps in refining marketing strategies and optimizing resource allocation.
User Demographics Insights:
Gain a comprehensive view of your audience by exploring demographic data in the Audience section. Understand age, gender, and interests to tailor your marketing strategies effectively. Leverage this information to create personalized content and improve user engagement and conversion rates.
Tracking User Engagement:
Learn how to measure user interaction with your site through key metrics like bounce rate, average session duration, and pages per session. Enhance user experience by analyzing engagement metrics and implementing strategies to keep visitors engaged.
Conversion Rate Optimization:
Understand the importance of conversion rates and how to track them using Google Analytics. Set up Goals, analyze conversion funnels, segment your audience, and employ A/B testing to optimize your website for higher conversions. Utilize ecommerce tracking and multi-channel funnels for a detailed view of your sales performance and marketing channel contributions.
Custom Reports and Dashboards:
Create custom reports and dashboards to visualize and interpret data relevant to your business goals. Use advanced filters, segments, and visualization options to gain deeper insights. Incorporate custom dimensions and metrics for tailored data analysis. Integrate external data sources to enrich your analytics and make well-informed decisions.
This guide is designed to help you harness the power of Google Analytics for making data-driven decisions that enhance website performance and achieve your digital marketing objectives. Whether you are looking to improve SEO, refine your social media strategy, or boost conversion rates, understanding and utilizing Google Analytics is essential for your success.
Instagram has become one of the most popular social media platforms, allowing people to share photos, videos, and stories with their followers. Sometimes, though, you might want to view someone's story without them knowing.
Italy Agriculture Equipment Market Outlook to 2027harveenkaur52
Agriculture and Animal Care
Ken Research has an expertise in Agriculture and Animal Care sector and offer vast collection of information related to all major aspects such as Agriculture equipment, Crop Protection, Seed, Agriculture Chemical, Fertilizers, Protected Cultivators, Palm Oil, Hybrid Seed, Animal Feed additives and many more.
Our continuous study and findings in agriculture sector provide better insights to companies dealing with related product and services, government and agriculture associations, researchers and students to well understand the present and expected scenario.
Our Animal care category provides solutions on Animal Healthcare and related products and services, including, animal feed additives, vaccination
2. v1.2
2
Agenda
• Internet Routing and BGP Hijack
• What is RPKI?
• ROA Coverage in Asia / South-Eastern Asia / Cambodia
• Common Issues after ROA Creation
• ROV Adoption in Cambodia
• Recommendations
3. v1.2
3
Internet Routing
Source: Screenshot taken from “3.5.3.4 Packet Tracer - Configure and Verify eBGP.pka”
example from Connecting Networks Cisco Networking Academy course
6. v1.2
6
BGP Hijack
• Announcing a more
specific path.
• Announcing an address
space that is owned by
someone else.
Source: Williams, R. (2015). street signs being stolen [Image].
https://media.apnarm.net.au/media/images/2015/02/06/IQT_06-02-
2015_NEWS_05_STOLENSIGNS1_t1880.jpg
7. v1.2
7
What is RPKI?
• Resource Public Key Infrastructure.
• For mitigating BGP route leaks and hijacks.
• ROA and ROV are done cryptographically.
– Resource holders use private key to sign authorisations
– Other networks use public key to validate the signatures
Route Origin Validation
(ROV)
Other networks check whether the received
prefixes are originated by the permitted AS
Route Origin Authorisation
(ROA)
Resource holders permit specific AS to
originate their prefixes
8. v1.2
8
Route Origin Authorisation (ROA)
• To be done by resource holder:
– Creating ROA for prefixes belong to own address space
• Prefix
• Origin AS
• Max. Length
– Also known as “Most Specific Announcement (MSA)”
– APNIC members can create ROA in MyAPNIC portal
• APNIC Help Centre: ROA objects
– https://help.apnic.net/s/article/roa-objects
• Route Management – Guide to manage your routes and (RPKI) ROA
– https://www.apnic.net/wp-content/uploads/2017/01/route-roa-management-guide.pdf
• How to Create ROAs in MyAPNIC
– https://www.youtube.com/watch?v=NLG2siznuu4
13. v1.2
13
ROA Coverage in Cambodia
Source: https://stats.labs.apnic.net/roa/KH (11 Oct 2023)
Currently (Oct 2023)
90.70% of Cambodia’s
IPv4 addresses have
VALID ROA.
Was 55.92% at the
beginning of May 2022.
14. v1.2
14
Online RPKI Sessions & Technical Assistance
• APNIC delivered monthly online RPKI sessions to targeted
networks from June 2022 to January 2023.
• One-to-one technical assistance provided by APNIC’s
Retained Community Trainer in Khmer.
15. v1.2
15
Face-to-face RPKI Session
• In November 2022, ROA coverage significantly improved
following APNIC’s face-to-face RPKI session in Phnom Penh.
• Thanks to local community for your cooperation and support!
16. v1.2
16
Common Issues after ROA Creation
• Invalid Origin AS
– Multiple origin ASes in Anycast scenario
• Solution: Create ROA for each and every origin AS
– Prefixes are originated by a different AS
• Solution: Create ROA with the actual origin AS
• Invalid Prefix Length
– Announcing /24s, but ROA covers only up to /23
• Solution: Set Max. Length of the ROA to “/24”
17. v1.2
17
What’s Next after Having ROA?
• ROA is an authorisation that permits a specific AS to originate
a specific prefix.
• ROAs are created for other networks to perform ROV.
• The authorisation is meaningless if no one validates it.
• All networks should eventually implement ROV.
18. v1.2
18
Route Origin Validation (ROV)
• Should be done by all networks on the Internet:
– Setting up RPKI Validators
– Configuring Border Routers to validate received prefixes
• VALID
– ROA exists, both prefix length and origin AS match with the record
• INVALID
– ROA exists, but prefix length or/and origin AS mismatch with the record
• UNKNOWN / NOT FOUND
– ROA does not exist
– Implementing routing policies based on validation state
• Prefer VALID over UNKNOWN over INVALID; or
• Drop INVALID
19. v1.2
19
ROV Adoption in Cambodia
ASN AS Name RPKI Validates Samples
55636 TPLC-KH TPLC Holding Ltd. 98.88% 179
17726 CAMNET-AS Telecom Cambodia 1.65% 121
138606 SUGAPTELTD-AS-AP Suga Pte. Ltd 0.78% 129
9902 NEOCOMISP-KH-AP NEOCOMISP LIMITED, IPTX Transit and Network Service Provider in Cambodia. 0.75% 536
131207 SINET-KH SINET, Cambodias specialist Internet and Telecom Service Provider. 0.71% 1,545
45498 SMART-AXIATA-KH SMART AXIATA Co., Ltd. 0.68% 19,127
17976 CAMGSM-CELLCARD-AS-AP CAMGSM Company Ltd 0.59% 6,480
58424 XINWEITELECOM-KH # 3BEo, Sangkat Beoun Prolit, Khan 7Makara, Phnom Penh. 0.55% 182
38235 MEKONGNET-ADC-AS-AP ANGKOR DATA COMMUNICATION 0.40% 2,725
38209 CAMINTEL-AS CAMINTEL, National Telecommunication Provider, Phnom Penh, Cambodia 0.39% 259
38901 EZECOM-AS-AP EZECOM limited 0.20% 1,961
131178 EZECOM-AS-AP EZECOM limited 0.20% 4,055
23673 ONLINE-AS Cogetel Online, Cambodia, ISP 0.17% 1,171
38623 VIETTELCAMBODIA-AS-AP ISPIXP IN CAMBODIA WITH THE BEST VERVICE IN THERE. 0.17% 35,404
24492 IIT-WICAM-AS-AP WiCAM Corporation Ltd. 0.10% 1,002
…
Source: https://stats.labs.apnic.net/rpki/KH (11 Oct 2023)
20. v1.2
20
ROV Adoption in Cambodia
• Cambodia Network eXchange (CNX) is dropping INVALID
prefixes and hosting public RPKI Validators.
Source: https://lg.sabay.com/routeservers/rs01/protocols/AS55329_1/routes (11 Oct 2023)
22. v1.2
22
Recommendations
• Create ROAs for all your prefixes.
– Origin AS and Max. Length must match actual BGP announcements
• Ensure ROAs are up-to-date upon sub-assignments
– Multiple ROAs with different Origin ASes for Anycast prefixes
– For networks using leased IPv4 address space, request your lease
provider to create relevant ROAs
• Regardless whether the address space is in APNIC region
• Advise your customers and peers to sign their prefixes.
– Unlike Internet Routing Registry (IRR), ROA cannot be proxy-registered
• Monitor whether your network is announcing INVALID.
23. v1.2
23
Recommendations
• Implement ROV in your network.
– Employ at least two RPKI Validators for redundancy purpose
• Ensure consistency across all RPKI Validators
– Establish and secure RPKI-to-Router (RTR) sessions
– Update routing policies to support ROV
• Set LOCAL_PREF based on validation state, or drop INVALID (preferred)
• Use BGP Communities to propagate validation state (optional)
– For Internet Transit, receive full routing table and drop default route
24. v1.2
24
Need Help?
ROV Implementation
&
Technical Discussions
APNIC Technical Assistance Platform
https://academy.apnic.net/technical-assistance
ROA Creation
&
General Enquiries
APNIC Help Centre
https://help.apnic.net/s
Training Resources
APNIC Academy
https://academy.apnic.net
Online Courses:
q RPKI Deployment
q RPKI Deployment Status: 2022 in Review
q Historical Resource Management and the Benefits
of RPKI
q Hosted vs. Delegated RPKI
q Demystifying AS0
q How to set up Router/OS 7 and ROV
Virtual Labs:
q RPKI Lab with Routinator
q RPKI Lab with FORT
q RPKI Lab with RPKI-Prover
q RPKI Lab (Sandbox)