Twitter · Flickr · LinkedIn · publications · @ Ars Technica · BGP (O'Reilly, 2002) · · presentations ·

Hi, I'm Iljitsch van Beijnum. I'm a freelance network architect, specializing in internet routing (BGP) and interconnection between networks (peering and more).

On this site I post both work related and somewhat less work related articles, for purely work-related information, see Some of the blog posts here are in Dutch, others are in English.

Path validation with RPKI draft

Last week, I suggested it's time fix those BGP route leaks. I live by the words everybody complains about the weather, but nobody does anything about it, so as such I wrote an Internet-Draft with the protocol changes necessary:


I think we can stop these route leaks with a relatively modest change to RPKI: by combining the ASes the origin trusts and the ASes the operator of an RPKI relying party server trusts, we have a list of all the ASes that may legitimately appear in the AS path as seen from this particular vantage point.

Full article / permalink - posted 2019-06-20

Let's fix those BGP route leaks

Last week, there was a large route leak that involved Swiss hosting company Safe Host and China Telecom. The route leak made internet traffic for European telecoms operators KPN, Swisscom and Bouygues Telecom, among others, flow through Safe Host and China Telecom against the wishes of the telecom operators involved. See this Ars Technica story for more details.

In this post, I'm going to explain how the interaction between the technical and business aspects of internet routing have made this issue so difficult to fix. At the end I'll briefly describe a proposal that I think can actually make that happen.

Full article / permalink - posted 2019-06-13

→ Happy Birthday BGP

Geoff Huston has written a post on the APNIC blog congratulating BGP with its 30th birthday. BGP version 1 was published as RFC 1105 in June of 1989. Five years later, the BGP version 4 was published as RFC 1654. And we're still using BGP-4 today, 25 years later! Lots of things, including IPv6 support, were added later in backward compatible ways.

As usual, Geoff's story is comprehensive with lots of interesting details. For instance:

❝From time to time we see proposals to use geo-based addressing schemes and gain aggregation efficiencies through routing these geo-summaries rather than fine-grained prefixes.❞

Sorry about that. 😀 I still think it could work, though.

Well worth a read.

Read the article - posted 2019-06-10

→ 🇪🇺 Ja, er valt echt iets te kiezen bij de verkiezingen voor het Europees Parlement

Morgen zijn de verkiezingen voor de Nederlandse afgevaardigden naar het Europees Parlement. Ik had half-en-half het plan om hier een stukje te schrijven over wat nu de relatie is tussen de Nederlandse partijen en de Europese fracties waar zij deel van uitmaken. Maar: Stuk Rood Vlees heeft dit veel beter gedaan dan ik kon!

Absolute aanrader om deze blogpost te lezen.

De echte uitslagen komen pas zondagavond om 23 u nadat de stembussen de alle overige landen ook gesloten zijn, maar naar verwachting zal er donderdagavond wel een exitpoll zijn en wat uitslagen van individuele stembureaus.

Ik ben ook erg benieuwd naar de Britse uitslagen en de consequenties die met name de Tories hieraan zullen verbinden voor de brexit.

Lees het artikel - geplaatst 2019-05-22

Dubbele regenboog!

Image link - posted 2019-04-25

Dark mode!

Last year Apple introduced dark mode in MacOS. This is really nice at night because your eyeballs aren't blasted with tons of white backgrounds in pretty much all windows. Unfortunately, most web pages still use a white background. Obviously you can redesign your website to conform to dark mode, but this looks rather stark on computers in light mode.

The solution would be to have your website render dark on a system in dark mode and light on a system in light mode. As of the new version of Safari included in MacOS 10.14.4 Mojave that was released just now, you can actually do that, as you can see here. Just switch your system between light and dark mode and you'll see this webpage switch over accordingly.

I like to use this terminal command to switch between light and dark mode:

sleep 2; osascript -e 'tell application "System Events" to tell appearance preferences to set dark mode to not dark mode'

(Change the last "not dark mode" to "true" or "false" to enable or disable dark mode. The line above toggles back and forth.)

On your website you need to set up conditional CSS with media queries. This is what I use:

<style type="text/css" media="screen, print">
  body { background-color: #f0f0f0; }
  A { color: #c00000; text-decoration: underline; }
  A:visited { color: #700000; text-decoration: underline; }
  H1 { font-family: futura, arial, sans-serif; font-size: 14pt; }
<style type="text/css" media="screen and (prefers-color-scheme: dark)">
  body { background-color: #202020; color: #d0d0d0; }
  A { color: #ff6734; }
  A:visited { color: #d82000; }

The first part between sets everything up for light mode, with a very light gray background.

Then the second style section (in bold) with (prefers-color-scheme: dark) overrides those earlier color settings. Note that all the font settings from the first style section are inherited by the second style section; no need to restate all of those.

That's it! Pretty cool, right?

Update: have a look here for more information, including how to use dark mode with javascript.

Permalink - posted 2019-03-26

older posts

Search for:
RSS feed (no photos) - RSS feed (photos only)
Archives: 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019