• About

http://blog.fakrul.com

http://blog.fakrul.com

Tag Archives: RPKI

bdNOG & “Ready for ROA” Campaign

02 Thursday Jul 2015

Posted by Fakrul Alam in Reading

≈ Leave a comment

Tags

bdNOG, RPKI

There are many discussions going on Resource Certification or Resource Public Key Infrastructure (RPKI) and it’s one of the models for Securing Internet Routing. RPKI; the SIDR model has multiple components and deployment phase; but for successful RPKI implementation; creating Route Origin Authorization (ROA) is the first step. A ROA is a cryptographically signed object that states which Autonomous System (AS) is authorized to originate a certain prefix(es).

So far in this region (Asia Pacific) RPKI adoption rate is not impressive. Community is very slow understanding the necessity of Internet routing security and how it impacts the global Internet.

This year APNIC started “Ready for ROA” campaign; which has a significant impact on the growth in RPKI adoption in this region. From bdNOG (Bangladesh Network Operators Group) we are also part of the campaign. In our recent bdNOG events (bdNOG2 & bdNOG3) we try to make community understand the necessity of Internet routing security and how they can be part of it. We encourage them creating ROA object. We simulate the whole process; starting from ROA object creation, configure RPKI validator server and how all the components work.

Continue reading →

RPKI and My presentation in APRICOT2015

30 Tuesday Jun 2015

Posted by Fakrul Alam in Tutorial

≈ Leave a comment

Tags

RPKI

In APRICOT2015 I was the panelist for “RPKI Deployment Session” where I present RPKI adoption status in BD and compare it with other RIR and few other findings on route leckage. 

For details you can read the following blog from APNIC BLOG

https://blog.apnic.net/2015/03/04/apricot-2015-rpki-deployment-session/

RPKI Presentation in SANOG24

13 Wednesday Aug 2014

Posted by Fakrul Alam in My Work, Tutorial

≈ Leave a comment

Tags

RPKI

<div style=”margin-bottom:5px”> <strong> <a href=”https://www.slideshare.net/fakrulalam/rpki-resource-public-key-infrastructure&#8221; title=”RPKI (Resource Public Key Infrastructure)” target=”_blank”>RPKI (Resource Public Key Infrastructure)</a> </strong> from <strong><a href=”http://www.slideshare.net/fakrulalam&#8221; target=”_blank”>Fakrul Alam</a></strong> </div>

RPKI (Resource Public Key Infrastructure)

08 Saturday Mar 2014

Posted by Fakrul Alam in Uncategorized

≈ Leave a comment

Tags

RPKI

RPKI Validation:

For Valid ROA:

fakrulalam@Fakruls-MacBook-Air ~/Downloads> whois -h whois.bgpmon.net " --roa 58656 103.12.179.0/24"
0 - Valid
------------------------
ROA Details
------------------------
Origin ASN: AS58656
Not valid Before: 2014-08-06 05:36:18
Not valid After: 2015-10-31 00:00:00 Expires in 1y11d9h15m54.6000000014901s
Trust Anchor: rpki.apnic.net
Prefixes: 103.12.176.0/22 (max length /24)
 118.179.0.0/19 (max length /24)
 2404:d900::/32 (max length /48)

For Invalid ROA:

fakrulalam@Fakruls-MacBook-Air ~/Downloads> whois -h whois.bgpmon.net " --roa 23956 103.12.179.0/24"
2 - Not Valid: Invalid Origin ASN, expected 58656

For non-presence ROA:

fakrulalam@Fakruls-MacBook-Air ~/Downloads> whois -h whois.bgpmon.net " --roa 23956 202.4.97.0/24"
1 - Not Found

Social

  • View rapappu’s profile on Twitter
  • View fakrulalam’s profile on LinkedIn
  • View fakrul’s profile on GitHub
  • View FakrulAlamPappu’s profile on Google+
  • View fakrulalam’s profile on Flickr

Twitter Updates

  • 1976 forming the modern-day #Vietnam 1971 #Bangladesh independence When we could see something like this happening… twitter.com/i/web/status/1… 4 days ago
  • The beauty is here #Keychron #K2 Mechanical Keyboard https://t.co/j5OVbpmvKi 5 days ago
  • blog.fitbit.com/2021-update/?u… #fitbit + #google https://t.co/X2g7HpIMvI 1 week ago
  • #DevNet Class of 2020. View my verified achievement from @learningatcisco. youracclaim.com/badges/bf864fa… 1 month ago
  • #pythonprogramminglanguage #python #pyenv towardsdatascience.com/how-to-set-up-… 1 month ago
  • wsj.com/articles/u-s-c… 1 month ago
  • bleepingcomputer.com/news/security/… 1 month ago
  • RT @GinNTTnet: Carriers, Internet-centric businesses and enterprises can prepare themselves to fight against #DDoS attacks. Download this w… 2 months ago
  • #LoRaWAN GPS payload is coming nicely to #AzureIotHub @GlobalNTT @CiscoDevNet #ntthackfest2020 https://t.co/VqYi7dMBoq 2 months ago
  • RT @GinNTTnet: Paolo Lucente @Paolo_Lucente from the #globalipnetwork division at @GlobalNTT will present this Monday Oct 12 at the Next Ho… 3 months ago
  • RT @bdNetOpGroup: Make sure we always "Learning from failures". Wanna know more? Please join bdnog.org/bdnog12/index.…. Because our very own… 3 months ago
  • RT @bdNetOpGroup: #bdNOG12 Panel Discussion: "Social CDN Business : Paid or Free". Make sure you register and join bdnog.org/bdnog12/index.…… 3 months ago
  • RT @teamcymru: #DDoS Attacks Hit 1 Tbps in #2020 #infosec bit.ly/2ZLmAlK https://t.co/Ezx3s5xVcw 4 months ago
  • github.blog/2020-09-10-ann… #msteams #github 4 months ago
  • I just backed Keychron K3 -Ultra-slim Compact Wireless Mechanical Keyboard on @Kickstarter kickstarter.com/projects/keytr… 4 months ago
Follow @rapappu

Tags

antismap antivirus automation Azure bangladesh BASH BASH Script BDCERT bgp bind ccsp centos CentOS mirror CERT CISA cisco Cyber Security ddos dhaka dhakacom DNS DNSSEC GSM intrusion detectoin system Intrusion prevention system ips IPv6 ISACA junos linux Looking Glass lxc lxc profile lxd mailqueue mailscanner Mail Server mailwatch Meraki mikrotik monitor mpls MPLS L3 VPN mysql My Work network network management nginx NSD observium OpenVPN perl PHP ping postfix Proxy PTA python RANCID Reading RPKI Shell Script sms sms server SNMP SSH Tutorial ubuntu Ubuntu Mirror Server Virtual Box vispan vmware websvn Youtube hack খামাখা

Blog at WordPress.com.