ayourtch.bsky.social
Embedded programming, some Rust, 3D-printing and active mobility. Hacking on fd.io by day at cisco. Release manager for VPP. CiscoLive Europe NOC - automating stuff. Bits of code: GitHub.com/ayourtch ; all posts are entirely only mine.
218 posts
222 followers
491 following
Regular Contributor
Active Commenter
comment in response to
post
At least my payments go through the providers that are loc… *stares at Visa and Mastercard on the plastic*.…
comment in response to
post
I remember circling it during one of the @critmassbrussel.bsky.social after it already was under construction and thinking “huh, it’s too small now to fit the entire crowd, and that is a good thing !”
comment in response to
post
An addition to the meta-family of “simple” protocols and “democratic” countries ?
comment in response to
post
Yep, same for me. My first kindle was registered in 2011. More than 650 ebooks since then. The next 650 surely aren’t going to be bought via Amazon.
comment in response to
post
What the hell have my eyes just read? 🤔 did they copypaste it from a yellow press somewhere ? Way below the level of Brussels Times I have been used to…
comment in response to
post
The onion is more realistic than CNN these days 😂
comment in response to
post
(Blog posts that is). Bad with words 😂
comment in response to
post
It takes about half a screen worth of characters of nginx config to make a git server but the benefits are massive. Is this kind of stuff also worth writing about ? I guess I can expand the above thread into N posts if this is of interest!
comment in response to
post
Oh and one thing I forgot - git for templates with hooks for regeneration + kickoff the changes - while trivial things like service changes on the port are just a dropdown + button click away for anyone of the 60 people, the things like ACL editing and push are limited to a group of ~4 people.
comment in response to
post
I will also post here as i toy around with various ideas for modernizing things… thinking of finishing github.com/ayourtch/tex... and using it as part of the engine that would allow to implement various provisioning workflows that are easy to tweak - the existing nearly 8 year old code is… crufty 😂
comment in response to
post
Another peculiarity - the addressing for uplinks is dynamic, with a local pool configured for the downlink interfaces, this gives a very Lego-like property of being able to easily adapt the design and not having to track the exact wiring - if both ends of the cable end on our infra = 👍
comment in response to
post
L2 wise ~350 9200s, new this year; quite happy with them. Nice and bricky - so compared to 3560cx *much* easier to provision en masse, mechanically, and certainly faster to ssh into - the port changes generally completed within 3-5 seconds, as opposed to about 10 sec or so on CX series :-)
comment in response to
post
L3 wise, this year we ran 120 9300s, all in OSPF area 0 with “no autostate” - very little churn in the routing table at the expense of the very TCAM-hungry two byte addressing scheme keyed mostly on “(service number, L3 node number)”
comment in response to
post
Heavy use of products from $work, but also a lot of open source - grafana, librenms, netbox, etc. I built and run a custom Rust based automation thing that drives the config and changes of all IOS XE fleet, and does asset and deployment/teardown tracking - some of the tiny chunks of it on my GitHub.
comment in response to
post
Everyone has a ton of fun doing their part, eg DC folks used Llama model to tweak the webex bot that is used to query about IP addresses and entities into a “LLM with tools” setup, which had the added benefit of entertaining us with short stories or poems about the stuff we were asking it.
comment in response to
post
The remainder are dealing with the various aspects of ~1200-device network - core, switching, wireless, SOC (we even have a pentester in residence who ensures nobody uses a simple password and that all ACLs are in place and tight).
comment in response to
post
Total NOC crew ~ 60 enthusiasts internally manage to beg, borrow and steal themselves from their day job for this week :-), of which slightly over half are dealing with the mechanics of rolling out at peak 220+ switches over a course of a day, and packing them down over a course of 2 hours.
comment in response to
post
(.. don’t redo the design from scratch.). The network itself is pretty much like a sand castle on the seaside - build it, run for a week, then pack up and until next year :-)
comment in response to
post
Every time we do a 1.5 hour session with the highlights for that particular year - it’s PNLNMS-1035, it should be in the recordings. We don’t redo from scratch so the full story by now can probably take the whole day 😂😂
comment in response to
post
Before I was fired tonight, I was in charge of information security for VA.gov, which has millions of users per month and stores and processes huge amounts of veterans' personal information. I've been told by people I've worked with that I'm the best at what I do of anyone they've ever worked […]
comment in response to
post
Very glad to read this ! 😉