Posts tagged Connectivity
We’ve been working on building a proper vmForge account creation and management site, so for the last couple of weeks I’ve worked a lot with the vCloud API. It’s a RESTful system, which means everything’s done by getting XML from and posting XML to a web server. It’s perhaps not the worst API I’ve ever worked with, but its tedious to work through. Even more so because their parser is insanely pedantic, to the point of requiring elements in a specific order. So that’s a point in PHP’s favor, that it maintains key order in associated arrays.
So, I got a little tired of FTP and SSH brute force attempts. I know that if you have strong passwords on your system, you can safely ignore them, and on customer systems behind real firewalls, I do so. However, on my personal systems, I have 0 problem blocking people who annoy me. So I installed pfBlocker on my virtual firewall to see what I could do.
pfBlocker is a package that has blacklist functions that supersede a couple older packages. I initially installed it a replacement for CountryBlock. The first thing I did was go through my logs and see which countries were the most obnoxious. China was the first to go, followed by Southeast Asia, and Venezuela. Sorry, I don’t want you accessing my network.
That allow took care of 70% of my attempted exploits. There are, however, plenty of compromised machines in the United States of America, so I had to think of something else.
Having helped a customer setup VPNs for private connectivity to several large (ie. Fortune 100) companies lately, I’ve really dreaded seeing how NAT has been abused to the extent that it is making private islands on the Internet and breaking everything from routing to DNS to any future protocol enhancements. (more…)
World IPv6 day is June 8th, 2011 and ipHouse is ready!
What is IPv6 you ask? Well, that topic won’t be discussed in this posting as it has been discussed all over the Internet already. You can test your readiness by going to http://test-ipv6.com/ and checking your results.
This post is about what services are running IPv6 dual-stack on the ipHouse network today.
Many of our services have been operating in a dual-stack IPv4/IPv6 configuration since the middle of last year but since most connectivity is still only IPv4, most people would never see nor notice the IPv6 network capabilities we have already built into our network. Our network itself has been IPv4/IPv6 dual stack for what seems like forever with quite a few customers connected with native IPv6 connectivity via DSL, T1, metro-ethernet, and colocation.
The FCC Chairman Julius Genachowski made a statement today that makes me wonder what took them so long.
In 1997 I spent some time lobbying at the Minnesota Legislature and the Minnesota Public Utilities commission about the differences between a data connection and data communications. The differences may seem plainly obvious to those of us in the Internet / Cable / Telephone industries, but for those milling around on the hill, they can’t quite grasp the difference between a carrier pigeon and the message tied to it’s leg. This analogy was too esoteric for those who were approaching dementia so I changed the analogy to a letter carried by a postal service. They seemed to understand that governments should regulate the postal service, but not the contents of the letter. You tell me, which part of that analogy resembles a connection and which resembles information? Pretty obvious, huh?