Cloudflare adds Kompressor to it’s engineering toolset…

…I can dream 🙂   Unfortunately, Cloudflare suffered an outage yesterday. Here’s the blurb: Today a configuration error in our backbone network caused an outage for Internet properties and Cloudflare services that lasted 27 minutes. We saw traffic drop by about 50% across our network. Because of the architecture of our backbone this outage didn’t affect the entire Cloudflare network and was localized to certain geographies.   Cloudflare went

Is Amazon Prime worth it?

I’m a big fan of Prime. In case you’re not familiar with it, here’s the official blurb: What is Amazon Prime? For £7.99/month, Amazon Prime members can: Access unlimited, FREE One-Day Delivery on millions of items and same-day delivery in select residential postcodes Enjoy unlimited instant streaming of thousands of movies and TV shows, through Prime Video Read as much as they want from a rotating selection of more than


Kompressor   You’re a project network engineer. You arrive at the office. The group calendar shows there are twenty services to migrate this week. You’ve never logged in to these firewalls before. You’ve never seen the services that need to be migrated before. Each firewall is considered critical national infrastructure. Lives could be at stake. There’s at least two other engineers on your team. There is no work scheduling or

The best tool for the job?

For SRE, any manual, structurally mandated operational task is abhorrent.   As a contract network engineer, I tend to move around a bit. I get to work in lots of different places with lots of different people which is quite fun. Recently, I was asked to configure a few boxes (Juniper SRXs) for a service that was being migrated. In some places, the work changes day by day but occasionally,

vSRX – your personal laptop firewall!

I love to lab. One of the problems of running anything in a ‘lab’ environment, however, is that it can be a bit too clinical. Traffic generation can become a chore. Earlier this week, I was using Vagrant to spin up some vSRX labs on my laptop when it occurred to me that I could probably just gateway my native traffic through a VM. There’s probably a few ways to

Pseudowire Headend Termination – PART2

As network engineers, I think it’s fair to say we like to try and spend our time making a difference? Despite being considered the ‘bread and butter’ of the Service Provider world, provisioning and decommissioning are two areas that can still demand our attention. More specifically: Connecting subscribers from remote POPs or external access providers. Applying the necessary limiters to sub-rate services. Upgrading or downgrading subscriber services. VLAN and/or IP

Pseudowire Headend Termination – in 8 steps – PART1

PROBLEM: Swansea, Newport and Cardiff subscribers have been, temporarily, terminated on vACX hardware at those sites. The vACX routers are typically used for mobile backhaul and generally don’t have the ‘grunt’ to terminate subscribers. They don’t support per-unit-scheduling, for example. We need to get them off these routers. GOAL: Terminate all subscribers from the Access Provider at Cardiff, on to the new vMX960 at Llanelli. Juniper’s Configuring the Broadband Edge

VLAN-Based Layer 2 Circuits with EoMPLS and l2circuit

I was recently asked to set up a LAN extension for a customer. After a spot of research, I was very impressed by this particular method which I’ve illustrated below. Based on IETF RFC 4447 (Pseudowire Setup and Maintenance Using the Label Distribution Protocol).   Layer 2 services (such as Frame Relay, Asynchronous Transfer Mode, and Ethernet) can be “emulated” over an MPLS backbone by encapsulating the Layer 2 Protocol