Search
224 results for “nlnetlabs”
-
@resingm @ximon18 No, this is #DNS Zone Transfers, i.e. #XFR (RFC 1034, 1995, 5936) along with NOTIFY (RFC 1996), TSIG (RFC 8945) and more…
I think you are referring to simdzone (https://github.com/NLnetLabs/simdzone), which we have available in #clang now for use with NSD. @bal4e - our newest team member - is looking to implement an equivalent crate in #rustlang for domain.
-
@SIDNlabs Thanks for contributing to the #DNS resolution diversity.
The original part is that you use many proxies (@PowerDNS #dnsdist ) and only a few backends (@nlnetlabs #unbound ). I know by experience that both work well together (esp. with PROXYv2).
What were the advantages (practical, technical, financial) that lead to this setup?
Also, do you share cache between nodes either at the proxy or backend (cachedb)? -
We have just released the second release candidate for Krill 0.15.0. The release contains a lot of internal refactoring, along with a couple of changes.
The most important one is the way multi-user authentication works.If you are not running Krill with just the admin token, you may want to read https://krill.docs.nlnetlabs.nl/en/v0.15.0-rc2/multi-user.html. We’ll write a migration guide before the full 0.15.0 release. #RPKI #OpemSource #rustlang https://github.com/NLnetLabs/krill/releases
-
The @ripencc recently added the ability to specify Autonomous System Provider Authorization (ASPA) objects in their #RPKI dashboard.
Routinator currently sees 322 published ASPAs. 🚀
Did you review your provider-customer relationships yet?
#OpenSource #RoutingSecurity #BGP
https://www.ripe.net/manage-ips-and-asns/resource-management/rpki/aspa/
-
Routinator 0.13.1 ‘Aziz, Light!’ is now available. This release of our #RPKI relying party software contains several bug fixes as we prepare for a bigger release that includes a new lightweight user interface. #RoutingSecurity #OpenSource https://github.com/NLnetLabs/routinator/releases/tag/v0.13.1
-
The first Release Candidate of Routinator 0.13.1 is now available. It contains several smaller changes and fixes as we gear up to a bigger release with new functionality and a shiny, revamped user interface. #RPKI #Routing #RoutingSecurity https://github.com/NLnetLabs/routinator/releases/tag/v0.13.1-rc1
-
With Krill 0.14 released the number of #ASPA objects is on the rise again, now at 34. #IETF118 #RPKI #RoutingSecurity https://github.com/NLnetLabs/krill/releases/tag/v0.14.2
-
We're putting the finishing touches on #ASPA v1 support in Krill, removing the afiLimit that was in v0. Routinator already supports the latest ASPA draft, so we'll be right on the bleeding edge again. #RPKI #RoutingSecurity #OpenStandards https://github.com/NLnetLabs/krill/pull/1141
-
The first Release Candidate of Routinator 0.13.0 is now available. The most notable change support for Autonomous System Provider Authorisations (#ASPA), allowing verification of the AS_PATH attribute of routes advertised in the #BGP. As this functionality is still subject to change in the #IETF, the feature has to be explicitly enabled when compiling to avoid unintended side effects. #RPKI #OpenStandards #RoutingSecurity https://github.com/NLnetLabs/routinator/releases/tag/v0.13.0-rc1
-
In case you were holding your breath for the Routinator release with #ASPA support, please exhale now. 😮💨 The people discussing this #RPKI #RoutingSecurity topic in the #IETF have reached consensus to make ASPA AFI-agnostic instead. We'll change our implementation accordingly.
-
@root Amazing presentation by Michiel Leenaars of @nlnetlabs
#freesilicon #libresilicon #fixtheinternet #nextgenerationinternet #opensource #freesoftware #openinternet #peertube -
@alexband @nlnetlabs You got my back! It's really not much I know but may serves a coffee for some of you guys. I'm sorry to hear that but I'm afraid, I can't spend anymore. 🙁
Wishing the best and thank you for such marvellous products like #Unbound. #resolve #responsibly 😉
💚
-
@jmaris Folks the deadline is tomorrow @nlnetlabs
Get your application in
https://nominet.uk/our-impact/nominet-dns-fund/
Funding available: £370,000 available in this round, with a maximum of £100k per applicant.
-
@beasts this is awesome.
I'm sure the folks at @nlnetlabs know some DNS Devs that could do with some funding.
Especially with the Ripe community fund having had to take a break this year.
-
Any #PKCS11 experts who want to chime in on this discussion, whether or not to mark private keys as unmodifiable? #cryptography #HSM #security #BestPractices https://github.com/NLnetLabs/krill/issues/1018
-
As the adoption of Delegated and Hybrid #RPKI grows, so are the number of Hardware Security Modules (HSMs) out in the field that people store Krill's key material on.
#KMIP is pretty straight forward, but especially #PKCS11 can be quite finicky. So we're keeping a public list of interoperability information. #BGP #OpenSource #interop #rustlang https://github.com/NLnetLabs/krill/issues?q=label%3A%22interop+testing%22+label%3A%22hsm%22
Learn more about the option to use HSMs here: https://krill.docs.nlnetlabs.nl/en/stable/hsm.html
-
It's #FollowerFriday today!
Consider following those really nice folks @nlnetlabs, they are creating #opensource software to make the #internet a safer, better place.
If you know what #krill, #unbound, #nsd, #ldns (...) means, they're surely the ones you'd like to follow!
-
NSD 4.13.0 is now available. The most prominent new feature of our authoritative #DNS server is support for AF_XDP sockets.
With zero-copy disabled, we see a 1.7x improvement in handled queries per second compared to UDP through the network stack. We expect the improvement to be higher with a driver that fully supports AF_XDP zero-copy mode.
Release notes:
https://github.com/NLnetLabs/nsd/releases/tag/NSD_4_13_0_RELBlog post:
https://blog.nlnetlabs.nl/experimental-support-for-af_xdp-sockets-in-nsd/ -
A kind reminder to please provide your feedback on the #XDP implementation we did for NSD, our authoritative #DNS server.
With zero-copy disabled, weI saw a 1.7x improvement in handled queries per second compared to UDP through the network stack. We expect the improvement to be higher with a driver that fully supports AF_XDP zero-copy mode.
We're curious to hear about your experiences!
https://blog.nlnetlabs.nl/experimental-support-for-af_xdp-sockets-in-nsd/ -
Encouraged by the rest of the team, @themozzie had quite the rollercoaster ride building #XDP support for our authoritative #DNS nameserver NSD. You can read about his experiences in this article and then try it our for yourself. 🎢 https://blog.nlnetlabs.nl/experimental-support-for-af_xdp-sockets-in-nsd/
-
We need your help! We're making good progress with #XDP support for our #DNS software. However, to properly test it we need access to two metal boxes with 10Gb/s NICs that have XDP driver support, e.g. https://docs.ebpf.io/linux/program-type/BPF_PROG_TYPE_XDP/#driver-support Please contact us if you can help out. 💚
-
🎙 In the latest episode of APNIC's podcast PING, @willem and Luuk discuss applying Express Data Path (#XDP) to the #DNS protocol. In this episode they cover cardinality and keys. https://blog.apnic.net/2022/12/22/podcast-journeying-into-xdp-cardinality-and-keys/
-
Journeying into #XDP: XDPerimenting with #DNS #telemetry
Nice writeup.
https://blog.nlnetlabs.nl/journeying-into-xdp-xdperimenting-with-dns-telemetry/
-
Yesterday at #IETF124 we attended the session of one of the working groups that we actively contribute to: GROW (Global Routing Operations).
Not surprisingly, there were lots of good ideas around BMP, the BGP monitoring protocol.
@drk gave an update about two drafts that will allow creating and storing BMP snapshots.
We love how everybody in this WG works towards common goals.
-
Every day, on our morning walk to the venue, it is a little colder than the day before. Most trees lost their leaves. At the last day of #IETF124 winter is slowly arriving.
-
We conclude #IETF week with a new release of Cascade, 0.1.0-alpha4 'Mont-Royal'.
@terts has taken on the brunt of the work, with quality-of-life improvements that make our #DNSSEC signer easier to use and understand.
As always, we appreciate your continued testing and feedback. We're well on our way to our first production release in the first half of 2026.
#IETF124 #DNS #OpenSource #rustlang
https://github.com/NLnetLabs/cascade/releases/tag/v0.1.0-alpha4
-
But, we also had time for a walk, where we encountered unknown things, that made us contemplate the nature of cooperative autonomous systems.
-
We have witnessed the pedestrian, yet steady pace with which BGP is being promoted to an actual internet standard at the #IETF124, in the IDR working group.
Today is filled with preparations for the GROW WG (global operations), where we will have ideas and opinions.