Evgeny Sevastyanov on Wirez

RIPE charging scheme 2026: Simple or tiered?

Fri, 01 May 2026 13:17:14 +0000

The RIPE NCC Executive Board proposes two distinct fee structures for its nearly 20,000 members to vote on this May. (RIPE's charging scheme 2026 estimator)) Readers will examine the structural definition of the proposed category model, analyze the financial mechanics of retaining the one LIR account-one fee system, and evaluate the strategic implications for operators navigating Gartner-identified hybrid computing trends. (Gartner research data))

Private AWS DevOps Agent setup for VPCs

Fri, 01 May 2026 13:02:21 +0000

AWS DevOps Agent cuts incident investigation time by 80%, but only if private connections bridge the gap to your isolated VPC resources. Readers will dissect the underlying architecture where resource gateways provision managed elastic network interfaces to route traffic without public exposure. We will analyze how this setup protects integrations with internal tools like GitHub Enterprise and self-hosted Grafana instances while maintaining strict isolation. Finally, the guide provides a concrete walkthrough for implementing these connections using both the AWS Management Console and AWS CLI.

Native attachment fixes AWS Client VPN SNAT gaps

Fri, 01 May 2026 11:44:06 +0000

The April 24, 2026 announcement eliminates the dedicated hosting VPC previously required for centralized remote access. This update fundamentally shifts AWS Client VPN from a complex, multi-hop topology to a streamlined native attachment model directly on Transit Gateway. By removing the intermediate VPC layer, organizations can finally discard the operational overhead of managing separate route tables and peering connections that plagued earlier iterations.

regnr attribute: Clearer IDs for 2.6M Objects

Fri, 01 May 2026 10:45:23 +0000

With 2.6 million registration objects now tracked, the RIPE Database deploys the reg-nr: attribute to resolve critical identity ambiguities. Ripe 848 This update mandates precise legal identification within organisation objects, replacing vague naming conventions with verifiable corporate data.

Serverless key-value stores use DNS TXT data

Tue, 28 Apr 2026 17:13:45 +0000

Storing 670,000 TXT records to serve a single gigabyte proves DNS functions as a viable, if absurd, serverless key-value store. You will learn how to architect this serverless key-value abuse, implement file reassembly from fragmented text chunks, and execute binary patching entirely within.

Telecom token shifts: China's 50M daily burn

Tue, 28 Apr 2026 17:13:45 +0000

With power users burning 50 million tokens daily, China Telecom is aggressively pivoting from traffic pipes to token value operations. This strategic shift marks the moment the telecommunications industry stops selling mere connectivity and starts monetizing AI compute units as its primary revenue stream.

The Role of Cleared IPv4 Blocks in Modern Resource Management

Tue, 28 Apr 2026 16:02:57 +0000

On January 13, 2026, ARIN fulfilled 149 waiting list requests using just 59 reclaimed IPv4 blocks. ARIN's ip addresses through 2025 This distribution event highlights the critical reality that cleared legacy resources remain the primary lifeline for enterprise connectivity despite decades of IPv6 advocacy.

AWS Interconnect last mile ends manual handoffs

Wed, 15 Apr 2026 00:00:00 +0000

On April 15, 2026, AWS and Lumen officially ended the era of manual network handoffs by launching a service that automates private connectivity provisioning. The thesis is clear: the historical friction between cloud compute and physical transport layers is an obsolete inefficiency that modern architecture can no longer tolerate. As the global cloud computing market expands from $905.33 billion in 2026 toward nearly $3 trillion by 2034, Fortune Business Insights data suggests that legacy provisioning models are becoming unsustainable bottlenecks for enterprise growth.

ARIN 57 Policy: Six Drafts Shaping 2026 Rules

Thu, 09 Apr 2026 00:00:00 +0000

The United States holds 1. ARIN research data 23 billion IPv4 addresses, dwarfing China's 351 million as ARIN 57 convenes in Louisville. This gathering serves as the critical operational nexus where abstract internet governance transforms into binding technical reality for North American infrastructure. While market analysts obsess over growth curves, the actual work of maintaining global connectivity happens in these specific policy sessions.

ARIN IPv4 Waiting List: 67 Requests Filled in April

Fri, 03 Apr 2026 00:00:00 +0000

ARIN fulfilled 67 waiting list requests on April 2, 2026, proving legacy address demand remains critical. ARIN's ip addresses through 2025 The IPv4 waiting list has evolved from a temporary holding pattern into a strategic necessity for network operators who cannot afford the volatility of the secondary market. With over 70% of global enterprise servers still depending on IPv4 connectivity, accessing these reclaimed resources is no longer just about compliance; it is about securing operational continuity in a saturated ecosystem.

BGP hijacking in 2025: When forged docs beat RPKI

Tue, 31 Mar 2026 00:00:00 +0000

In July 2025, attackers bypassed cryptographic safeguards by manipulating a multinational provider through forged documents and social engineering. This incident proves that BGP route hijacking has evolved from a purely technical exploit into a hybrid threat where human deception defeats RPKI validation. While networks obsess over protocol anomalies, adversaries now target the administrative onboarding processes that grant legitimacy to malicious routes.

RPKI stops hijacking: Why 43% IPv4 coverage matters

Tue, 31 Mar 2026 00:00:00 +0000

With IPv4 ROA coverage hitting 43.17% per Kentik data, RPKI adoption is no longer optional for serious network operators.

The upcoming ARIN Deep Dive in Albuquerque highlights that routing security has shifted from theoretical best practice to immediate operational necessity. ARIN's hybrid While the global PKI market explodes, the real story lies in the sharp divergence between networks that validate BGP announcements and those still vulnerable to hijacking. This article dissects the critical mechanics of Resource Public Key Infrastructure, arguing that understanding the distinction between hosted and delegated models is now a core competency for any engineer managing autonomous systems.

IPv4 wait times hit 477 days: My take on RIPE

Thu, 26 Mar 2026 00:00:00 +0000

With 794 LIRs stuck on the IPv4 Waiting List for up to 477 days, the RIPE NCC remains the critical, albeit strained, anchor of European internet stability. Ripe 848 The organization's March 2026 data proves that while IPv4 scarcity is acute, the real operational crisis lies in the lagging security posture of next-generation networks.

CIDR report data shows why 461k routes matter

Tue, 24 Mar 2026 00:00:00 +0000

With 461,596 routes currently tracked, the CIDR Report remains the definitive audit of global routing table scalability. Geoff Huston's analysis asserts that classless inter-domain routing is not merely a legacy fix but the critical mechanism preventing total BGP collapse in an era of autonomous network expansion.

Route origin security gaps in East Asia's IPv4

Tue, 24 Mar 2026 00:00:00 +0000

Global Route Origin Authorization coverage hit 60.3% in February 2026, yet APNIC's uneven 55. APNIC's rpkis 2025 year in review 5% adoption rate exposes critical interconnectivity risks.

RIPE Fellowship 2026: Why 10 New Fellows Matter

Tue, 17 Mar 2026 00:00:00 +0000

The RIPE NCC selected 16 new fellows for RIPE 92 and 93 on 17 Mar 2026 to fix the broken pipeline of internet governance talent. Ripe 848 This program is not merely a travel grant; it is a strategic intervention designed to align individual ambition with the critical infrastructure gaps plaguing the region. While global connectivity hovers near saturation, the technical mechanisms ensuring that connectivity remains secure are failing to keep pace with user growth.

Network automation cuts $14k/min outage costs

Mon, 16 Mar 2026 00:00:00 +0000

At $14,056 per minute, the average cost of an unplanned IT outage forces enterprises to abandon manual legacy processes immediately. Azhar Khuwaja argues that successful network automation strategy requires rejecting one-size-fits-all tooling in favor of architectures that balance speed against the risk of scaled error propagation.

RPKI validation gaps: Why 84% skip enforcement

Thu, 12 Mar 2026 00:00:00 +0000

With only 12.3% of analyzed ASes actively enforcing Route Origin Validation, global routing security remains critically fragile despite rising signature rates. The stark reality is that signing routes via Resource Public Key Infrastructure means nothing without the mandatory filtering of invalid announcements at the network edge. Readers will examine the core mechanics of Route Origin Validation and why current adoption metrics from APNIC data reveal a dangerous disconnect between signed prefixes and protected traffic. APNIC's how can rpki can be made quantum safe We dissect the specific failure modes of legacy BGP verification and how Autonomous System Provider Authorization closes the loop on path hijacking by cryptographically validating upstream relationships. The analysis moves beyond theory to present a concrete operational playbook for deploying these controls, drawing direct lessons from IDNIC's successful mandate in Indonesia.

RIPE Infrastructure: Securing Baltic Networks Now

Wed, 11 Mar 2026 00:00:00 +0000

With nearly 20,000 members as of late 2024, the RIPE NCC anchors Baltic internet governance through direct operator support. RIPE's charging scheme 2026 estimator

Reactive detection leaves invisible weaknesses open

Tue, 03 Mar 2026 00:00:00 +0000

With global spending hitting $520 billion in 2026, email security still fails because its worst vulnerabilities remain invisible. The industry's reliance on reactive fixes creates a dangerous blind spot where only AI-driven analysis can reveal the threats that bypass initial filters. The narrative draws on Abraham Wald's World War II insight regarding "planes that didn't make it back" to illustrate how traditional defenses ignore messages that never trigger user reports. While organizations pour resources into perimeter defense, detection gaps persist because standard improvements rely entirely on post-breach user submissions. This reactive loop ensures defenders only patch holes after attackers have already succeeded, leaving the most critical weaknesses unaddressed.

Agentic AI creates agent shepherd network jobs

Mon, 02 Mar 2026 00:00:00 +0000

At USD 20 a month, agentic AI subscriptions already strain budgets for many regional operators, according to Mukhammad Andri Setiawan. The central thesis is that modern enterprise network survival now depends on balancing autonomous agent deployment with rigorous data stewardship and IPv6 migration. This article dissects the operational realities revealed at APRICOT 2026, moving beyond hype to address the fragile economics of automation and the urgent need to preserve operational exhaust.

ARIN 57 Deadline: Book Galt House by March 17

Mon, 02 Mar 2026 00:00:00 +0000

The discounted room rate of US$199 plus tax at the Galt House Hotel expires Tuesday, 17 March, leaving latecomers to face market prices. ARIN's ip addresses through 2025

IPv6 DNS fails 40%: Why dual-stack is essential

Mon, 02 Mar 2026 00:00:00 +0000

A staggering 40% failure rate plagues large DNS responses over IPv6 when packet fragmentation is required, exposing critical gaps in current infrastructure.

Active path verification stops blackhole errors

Sun, 01 Mar 2026 00:00:00 +0000

With RPKI adoption for leased prefixes surging from 29.9% in 2021 to 71.0% by late 2024, validating blackhole routes remains dangerously ambiguous. Blindly propagating these filters across all points of view often collapses complex routing topologies into a single, erroneous perspective that the source ASN never authorized.

Cloudflare data reveals origin server lag today

Fri, 27 Feb 2026 00:00:00 +0000

Over 60% of client connections now support post-quantum encryption, yet origin server readiness remains the critical blind spot. Cloudflare radars 2023 overview of new tools and insights Cloudflare Radar exposes this disconnect by shifting visibility from edge metrics to the actual security posture of customer infrastructure. The platform's latest update argues that true durability requires auditable proof of hybrid key exchange deployment and rigorous routing security validation, not just theoretical compatibility.

APRICOT 2026 Governance: Scaling for 4B Users

Mon, 09 Feb 2026 00:00:00 +0000

With IPv4 prefixes quadrupling to 1.2 million since 2011, APRICOT 2026 in Jakarta confronts the critical scaling limits of regional infrastructure. This conference serves as the essential battleground where regional internet governance evolves from theoretical policy into operational necessity amidst explosive data growth.

RPKI signed docs now in MyAPNIC

Fri, 23 Jan 2026 00:00:00 +0000

As of January 23, 2026, APNIC members can now generate verifiable digital signatures directly within the MyAPNIC portal. Rscs are now supported in myapnic This launch signals a critical pivot where RPKI infrastructure evolves from a narrow routing security tool into a broad-spectrum mechanism for general-purpose document attestation. For over a decade, the industry treated Route Origin Authorizations as the sole viable output of resource certification, ignoring the potential for broader identity proofing. That stagnation ends with the formal adoption of RPKI Signed Checklists, which use existing IP address and Autonomous System Number allocations to sign arbitrary digital files. Unlike previous methods demanding complex command-line manipulation, this update embeds the capability directly into the registry interface, effectively democratizing access to high-assurance cryptographic proofs.

ARIN 57 policy dates set for April

Wed, 21 Jan 2026 00:00:00 +0000

With 40,000 organizations relying on ARIN's management of 8 million records, the stakes for internet resource governance have never been higher. ARIN research data The upcoming ARIN 57 Public Policy and Members Meeting serves as the critical nexus where community consensus directly shapes the technical backbone of the North American internet. This is not merely a procedural gathering; it is the engine room for routing security and IP address allocation in an era of escalating digital reliance.

ARIN Legacy Addresses: The 2026 Reality Check

Wed, 14 Jan 2026 00:00:00 +0000

Iran Network Blackout: Routing Withdrawn Fast

Tue, 13 Jan 2026 00:00:00 +0000

Iran's internet traffic collapsed by nearly 90% on January 8 as the state executed a near-total digital blackout. This event marks a strategic pivot from temporary censorship to permanent digital isolation, effectively severing the domestic network from global infrastructure to crush dissent. Cloudflare Radar data confirms that connectivity did not merely degrade; it was surgically dismantled through coordinated protocol suppression. Cloudflare's iran protests internet shutdown

Predictive routing intelligence stops BGP outages early

Thu, 01 Jan 2026 00:00:00 +0000

Only 38% of RADB records matched RPKI data in 2021, proving that reactive monitoring leaves the majority of routing infrastructure exposed to preventable hijacks. The BGP Security Intelligence Platform fundamentally shifts operations from passive alerting to predictive routing-risk intelligence by analyzing origin-side vulnerabilities before they trigger outages. This architecture moves beyond simple route change notifications to anticipate where malformed announcements will propagate based on structural weaknesses.