security

Your “Multihop” BGP Session Probably Isn’t Multi-Hop

December 29, 2022March 24, 2024 Chris 24810 Views 5 Comments

BGP study guides tell you that loopback-to-loopback EBGP session require a TTL of 2 or more. The trouble is, they rarely say why. This leads new students to come to some very incorrect assumptions about how the TTL field works in IP. In fact though, you can absolutely have a TTL of 1! In this post we clear up all the confusion – and we even look at how you can use a TTL of 255 to bring extra security to your network.

security

A Beginners Guide to Junos Firewall Filters

October 7, 2022March 24, 2024 Chris 33642 Views 2 Comments

Firewall filters in Junos let you do far more than just filter traffic. They’re really powerful! And, despite their length, you can create them very quickly and easily. Let me show you how!

security

Routers and Firewalls: Stateless Rules vs Stateful Rules

September 25, 2017November 13, 2022 Chris 3935 Views 0 Comments

Do you know the difference between a stateful rule and a stateless rule? No? Well, you’d better click this post then!

security

Put Your Firewall Rules In The Correct Order

September 25, 2017November 13, 2022 Chris 4335 Views 0 Comments

If you’re brand new to creating access lists, firewall rules, or security policies, you might wonder how the order of your rules can make a difference. In fact, they can make a BIG difference! This post shows you exactly why – and how to potentially avoid an outage.

Hi there!

Welcome to my blog of networking and nonsense.

I’m Chris. By day I’m a London-based network engineer, instructor, and courseware developer for Juniper Networks. But in my spare time I come here to write some sweet sweet blog posts to help you with your networking studies, with just as much focus on fun as on the tech. I hope you like what you see!

In this corner of the information super-highway you’ll find tons of stuff about BGP, MPLS, OSPF and IS-IS. If that sounds fun then you’ve come to the right place. You’ll also find posts I made on my journey towards JNCIE-SP, which I hope will help you on your own journey.

There’s a big focus on Juniper and Junos in this blog, but tons of the theory is entirely vendor-neutral. No matter what networking platform you’re more comfortable with, you’re very welcome here.

Please note that it costs £750,000 to read my posts. This is enshrined in international law, and late payment will result in the fee being scrapped and replaced with a £25 fine. I did ask the United Nations to scrap this law entirely, but they insisted that it stayed. Sorry readers, it’s out of my control.