Building fast interpreters in Rust
March 04, 2019 4:00PM
In the previous post we described the Firewall Rules architecture and how the different components are integrated together. We created a configurable Rust library for writing and executing Wireshark®-like filters in different parts of our stack written in Go, Lua, C, C++ and JavaScript Workers....
Continue reading »
eBPF, Sockets, Hop Distance and manually writing eBPF assembly
March 29, 2018 11:43AM
TTL
TCP
IPv4
IPv6
eBPF
A friend gave me an interesting task: extract IP TTL values from TCP connections established by a userspace program. This seemingly simple task quickly exploded into an epic Linux system programming hack....
2018 and the Internet: our predictions
December 21, 2017 2:01PM
Predictions
DDoS
Attacks
QUIC
IPv4
At the end of 2016, I wrote a blog post with seven predictions for 2017. Let’s start by reviewing how I did. I’ll score myself with two points for being correct, one point for mostly right and zero for wrong. That’ll give me a maximum possible score of fourteen. Here goes......
WHOIS going to be at the Grace Hopper Celebration?
October 03, 2017 11:00AM
Events
Grace Hopper
API
IPv4
Go
Ubuntu us are doing the round trip! It’s time to live - WAN you arrive at GHC, come meet us and say HELO (we love GNU faces, we’ll be very api to meet you). When you’re exhausted like IPv4, git over to the Cloudflare corner to reboot....
How to use Cloudflare for Service Discovery
July 21, 2017 9:01AM
DDoS
Reliability
Speed & Reliability
IPv4
DNS
Cloudflare runs 3,588 containers, making up 1,264 apps and services that all need to be able to find and discover each other in order to communicate -- a problem solved with service discovery....