The document summarizes IPv6 implementation at the Bandung Institute of Technology (ITB) in 2010. ITB has been using IPv6 since 2001 via the SOI-ASIA program and obtained an IPv6 subnet from APNIC in 2007. IPv6 routing is implemented using PC routers running Quagga and dedicated core routers/switches. IPv6 applications at ITB include operating systems, DNS, web servers, mail servers, web caches, and multicast streaming. The campus network uses VLANs, router advertisements, and IPv6 subnets to distribute IPv6 addresses and implement IPv6 routing. Many ITB systems and websites are accessible via both IPv4 and IPv6.
You may have hoped to retire before IPv6 became a reality, but unfortunately the IPv4 address exhaustion came too fast. For the rest of us, we’re going to bite off a small piece of the 15-year old IPv6 pie and talk about how to get started!
• Address format refresher
• IPv4 and IPv6 protocol comparison
• IPv6 neighbor discovery and auto-configuration
• Current migration and coexistence strategies
• ICMPv6, DHCPv6, and DNSv6
• How to get started at home
NFV Orchestration for Telcos using OpenStack TackerSridhar Ramaswamy
ETSI MANO NFV Orchestration for Telco Service Providers using OpenStack Tacker project. Showcases integration of Tacker to orchestrate Brocade VNFs like 5600 Virtual Router and Connectem vEPC.
You may have hoped to retire before IPv6 became a reality, but unfortunately the IPv4 address exhaustion came too fast. For the rest of us, we’re going to bite off a small piece of the 15-year old IPv6 pie and talk about how to get started!
• Address format refresher
• IPv4 and IPv6 protocol comparison
• IPv6 neighbor discovery and auto-configuration
• Current migration and coexistence strategies
• ICMPv6, DHCPv6, and DNSv6
• How to get started at home
NFV Orchestration for Telcos using OpenStack TackerSridhar Ramaswamy
ETSI MANO NFV Orchestration for Telco Service Providers using OpenStack Tacker project. Showcases integration of Tacker to orchestrate Brocade VNFs like 5600 Virtual Router and Connectem vEPC.
OPNFV VIM integrates control and management components from upstream projects such as openstack, ONOS, ODL, etc. While huge success has been achieved in OPNFV for integration, automated build and deployment, the performance of VIM for controlling and managing virtual network has received little attention. This presentation is to address the VIM performance related to the network part of the infrastructure. Based on a Telco use case, we define performance metrics for SDN controller, northbound communication channels, and network provisioning. ONOSFW and OpenStack are two components for VIM. Test data is collected and analyzed for performance evaluation and suggestions for future improvements. China Unicom, ON.LAB and Huawei jointly define the use case and methodology, do analysis, and produce results.
Summary slides of current Network OS status overview as of 16, Oct. 2015.
Comparison of two major Open Network OS: "OpenSwitch (ops)" and "Open Network Linux (ONL)".
Deploy TOSCA Network Functions Virtualization (NFV) Workloads in OpenStackSahdev Zala
Talk was given at the OpenStack Austin Summit 2016 and demonstrates how TOSCA Network Functions Virtualization (NFV) workloads can be deployed in OpenStack cloud.
We are working on KVM enhancements for NFV as a collaborative development project in OPNFV, focusing on three key features: minimal Interrupt latency variation, inter-VM (Virtual Machine) communication, and fast live migration. In this presentation, we introduce and provide an update on the project, and how we plan to work with the upstream KVM project.
Minimal Interrupt latency variation is required for data plane VNFs to achieve deterministic execution. We present an update, demonstrating how hardware and software enhancements can help when reducing latency variations.
We evaluate and compare the options for inter-VM communication (e.g. ivshmem, vhost user, VMFUNC, etc.) in terms of performance, interface/API, usability/programing model, security, and maintenance.
Finally we provide and update on fast live migration, including improvements with time to co
These slides were presented at the 2013 Linux Plumbers Conference in New Orleans by myself and Vina Ermagan. We are doing work to enable LISP and NSH in Open vSwitch, and these slides gave some background on both of these protocols as well as detail on what we've accomplished and future directions.
Summit 16: OPNFV on ARM - Hardware Freedom of Choice Has Arrived!OPNFV
Freedom of choice is one of the key concepts in the SDN and NFV revolution we are seeing today. OPNFV is at the heart of this revolution yet very limited freedom of choice has existed on the hardware architecture side. However, with the work done in the Armband project, ARM servers are now an alternative hardware architecture for Brahmaputra deployments. The Armband team has ported the OPNFV Fuel Project to support deployments on ARM servers. The necessary code changes have been upstreamed through the OPNFV armband project. End users are now able to download or build their own Brahmaputra OPNFV ISO ready for ARM and install it using available OPNFV documentation. In addition to this and to further the OPNFV VNF ecosystem, a full specification OPNFV Pharos lab based on ARM servers was built by Enea for running continuous integration (CI) and continuous deployment (CD). In this presentation, we will walk you through the experiences gained in this process, the challenges and how they were overcome and what is coming next.
ID IGF 2016 - Infrastruktur 2 - IPv6 Mengapa Menjadi Penting?IGF Indonesia
Presented by Basuki Suhardiman (ITB)
ID IGF 2016
Sesi Infrastruktur 2 - IPv4 Tidak Dapat Lagi Mendukung Pertumbuhan Internet dan Rendahnya Tingkat Partisipasi IPv6
Jakarta, 15 November 2016
OPNFV VIM integrates control and management components from upstream projects such as openstack, ONOS, ODL, etc. While huge success has been achieved in OPNFV for integration, automated build and deployment, the performance of VIM for controlling and managing virtual network has received little attention. This presentation is to address the VIM performance related to the network part of the infrastructure. Based on a Telco use case, we define performance metrics for SDN controller, northbound communication channels, and network provisioning. ONOSFW and OpenStack are two components for VIM. Test data is collected and analyzed for performance evaluation and suggestions for future improvements. China Unicom, ON.LAB and Huawei jointly define the use case and methodology, do analysis, and produce results.
Summary slides of current Network OS status overview as of 16, Oct. 2015.
Comparison of two major Open Network OS: "OpenSwitch (ops)" and "Open Network Linux (ONL)".
Deploy TOSCA Network Functions Virtualization (NFV) Workloads in OpenStackSahdev Zala
Talk was given at the OpenStack Austin Summit 2016 and demonstrates how TOSCA Network Functions Virtualization (NFV) workloads can be deployed in OpenStack cloud.
We are working on KVM enhancements for NFV as a collaborative development project in OPNFV, focusing on three key features: minimal Interrupt latency variation, inter-VM (Virtual Machine) communication, and fast live migration. In this presentation, we introduce and provide an update on the project, and how we plan to work with the upstream KVM project.
Minimal Interrupt latency variation is required for data plane VNFs to achieve deterministic execution. We present an update, demonstrating how hardware and software enhancements can help when reducing latency variations.
We evaluate and compare the options for inter-VM communication (e.g. ivshmem, vhost user, VMFUNC, etc.) in terms of performance, interface/API, usability/programing model, security, and maintenance.
Finally we provide and update on fast live migration, including improvements with time to co
These slides were presented at the 2013 Linux Plumbers Conference in New Orleans by myself and Vina Ermagan. We are doing work to enable LISP and NSH in Open vSwitch, and these slides gave some background on both of these protocols as well as detail on what we've accomplished and future directions.
Summit 16: OPNFV on ARM - Hardware Freedom of Choice Has Arrived!OPNFV
Freedom of choice is one of the key concepts in the SDN and NFV revolution we are seeing today. OPNFV is at the heart of this revolution yet very limited freedom of choice has existed on the hardware architecture side. However, with the work done in the Armband project, ARM servers are now an alternative hardware architecture for Brahmaputra deployments. The Armband team has ported the OPNFV Fuel Project to support deployments on ARM servers. The necessary code changes have been upstreamed through the OPNFV armband project. End users are now able to download or build their own Brahmaputra OPNFV ISO ready for ARM and install it using available OPNFV documentation. In addition to this and to further the OPNFV VNF ecosystem, a full specification OPNFV Pharos lab based on ARM servers was built by Enea for running continuous integration (CI) and continuous deployment (CD). In this presentation, we will walk you through the experiences gained in this process, the challenges and how they were overcome and what is coming next.
ID IGF 2016 - Infrastruktur 2 - IPv6 Mengapa Menjadi Penting?IGF Indonesia
Presented by Basuki Suhardiman (ITB)
ID IGF 2016
Sesi Infrastruktur 2 - IPv4 Tidak Dapat Lagi Mendukung Pertumbuhan Internet dan Rendahnya Tingkat Partisipasi IPv6
Jakarta, 15 November 2016
An experiment in connecting Internet Exchanges between 3 different countriesAPNIC
An experiment in connecting Internet Exchanges between 3 different countries, by Johar Alam Rangkuti.
A presentation given at the APNIC 40 Opening Ceremony and Keynotes session on Tue, 8 Sep 2015.
What's next for Opisboy - IPv6, FreeBSD and Software Defined NetworkAffan Basalamah
Presented at Traceroute Party, Jakarta 12-14 April. Sharing status updates on IPv6 implementation and FreeBSD, and sharing small glimpse on next trend on network: Software Defined Networking (SDN)
Presentasi Next Generation Campus Network di ID-NOG tanggal 24 Juni 2014. Bercerita ttg implementasi campus network di ITB yang mengarah pada tiga kemampuan: enterprise network, research education network & service provider network. Enterprise network memungkinkan existing network berjalan dgn routing protokol biasa seperti OSPF dan BGP. Research network memungkinan network & aplikasi riset spesifik berjalan, seperti SDN dengan OpenFlow. Service Provider network memungkinkan campus menjalankan layanan service provider MPLS bagi berbagai pihak (external user, ISP, commerce) seperti L3VPN dan VPLS untuk memudahkan berjalannya aplikasi/jaringan yang tidak dapat dijalankan di enterprise network sebelumnya.
In this webinar, we are talking about BGP implementation on mikrotik router. the presentation starts with the fundamental of BGP and then discuss about Basic BGP setting on RouterOS
In this talk Emil Fredriksson and David Poblador i Garcia explain how Spotify builds its infrastructure in order to deliver millions of songs to millions of users.
We explain how we manage to support our development teams to build features by developing a highly scalable infrastructure.
10-minutes introduction to SDNRG (Software Defined Networking Research Group) ITB, the first open SDN community in Indonesia. Presented at 1st SDNRG ITB Meetup, 1st November 2014
IDNIC OPM 2023: IPv6 deployment planning and security considerationsAPNIC
APNIC Network Analyst / Technical Trainer Awal Haolader gives the technical keynote presentation on IPv6 deployment and security considerations at the IDNIC OPM 2023, held from 5 to 7 December 2023 in Bandung, Indonesia.
Presentation given at MPLS+SDN+NFVWORLD 2019 in Paris that shows how network architects can leverage the support for IPv6 Segment that is included in the Linux kernel to develop new end-to-end services that use IPv6 Segment Routing on clients, routers and servers.
IPv6 Success Stories– Network Operators Tell All!
Asela Galappattige (Sri Lanka Telecom); Senevi Herath (LEARN); Patrick Okui (Network Startup Resource Center); Matsuzaki Yoshinobu (IIJ)
In this session, we invite network operators to share their IPv6 success stories and lessons learned along the way that can help other managers of networks deploy IPv6. How did they do it? What technical, organizational, and political challenges did they face? Attendees will gain vital insight as network operators lay out the stages for IPv6 implementation—creating the business case for management buy-in, initiating a planning process, flipping the switch, and, finally, gathering measurements and proving success.
IPv6 Segment Routing is a major IPv6 extension that provides a modern version of source routing that is currently being developed within the Internet Engineering Task Force (IETF). We propose the first open-source implementation of IPv6 Segment Routing in the Linux kernel. We first describe it in details and explain how it can be used on both endhosts and routers. We then evaluate and compare its performance with plain IPv6 packet forwarding in a lab environment. Our measurements indicate that the performance penalty of inserting IPv6 Segment Routing Headers or encapsulat- ing packets is limited to less than 15%. On the other hand, the optional HMAC security feature of IPv6 Segment Routing is costly in a pure software implementation. Since our implementation has been included in the official Linux 4.10 kernel, we expect that it will be extended by other researchers for new use cases.
Presented at ANRW'17 https://irtf.org/anrw/2017/program.html on behalf of David Lebrun
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Elevating Tactical DDD Patterns Through Object CalisthenicsDorra BARTAGUIZ
After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
3. Background
• ITB sudah menggunakan IPv6 sejak 2001
– via program SOI-ASIA (www.soi.asia)
– Subnet 2001:d30:3::/48
• Meminta IPv6 address ke APNIC sejak 2007
– Subnet 2403:8000::/32
5. IPv6 External Connection
• IPv6 address-family to all eBGP peers
Internet
OpenIXP TEIN3
via
AS7717 AS24489
LintasArta
AS4800
INHERENT
ITB AS18007
AS4796
6. Distribusi IPv6 Address
• 2001:d30:3::/48 di NOC
• 2043:8000::/32 untuk seluruh kampus ITB
– 1 buah /35 untuk kampus ITB
– 7 buah /35 untuk future allocation, termasuk
INHERENT
13. Aplikasi IPv6 di ITB
• Operating System
• DNS
• WWW & FTP Server
• Mail Exchange Server
• Web Cache Proxy
• Multicast Stream
14. Operating System for Server
• FreeBSD 8.x, 7.x, dan 6.x
• CentOS Linux 5.x
• OpenSolaris 2009.x
• Windows Server 2003
15. Domain Name System (DNS)
• BIND 9.6.x
• Forward zone
– AAAA record for MX & selected Server
• Reverse zone
– PTR record for 2403:8000::/32 delegated from
APNIC
16. Web Server
• Apache Web Server 2.2.x
– Serve IPv4 and IPv6 at the same time
• IPv6 PHP script to detect v6 client
• Website IPv6 ITB
– http://www.itb.ac.id
– http://ipv6.itb.ac.id
– Masih banyak lagi
18. Mail Exchange (MX) Server
• Postfix 2.7
• mx[1-4].itb.ac.id
• http://www.postfix.org/IPV6_README.html
19.
20.
21. Web Cache Proxy Server
• Squid 3.1
• Web Cache Parenting over IPv6
– to WIDE Project Japan
• Some IPv6 content observed
– Google IPv6
– Youtube IPv6
• Serving IPv6 client in ITB
• User Authentication with LDAP