You are here: Home > Publications > RIPE Labs
register

RIPE Labs

Large-scale PCAP Data Analysis Using Apache Hadoop
Large-scale PCAP Data Analysis Using Apache Hadoop
Wolfgang Nagele — Oct 12, 2011 11:50 AM

The RIPE NCC operates various data intensive services. As part of our DNS operations we have been operating K-root since 1997. A key to the stable operation of this service is a solid understanding of the traffic it responds to and how it evolves over time. With the success and growth of the Internet, traffic to the DNS root servers has increased and K-root produces terabytes of raw packet capture (PCAP) files every month. We were looking for a scalable and fast approach to analyse this data. In this article I will explain how we use Apache Hadoop and why we open-sourced our PCAP implementation for it.

Example Usage of RIPE Database Geolocation Prototype
Example Usage of RIPE Database Geolocation Prototype
Denis Walker — Oct 05, 2011 03:20 PM

This article provides you with a number of step by step examples on how to use the recently released prototype geolocation service in the RIPE Database.

Geolocation Prototype for RIPE Database
Denis Walker — Oct 05, 2011 03:20 PM

The RIPE NCC is pleased to announce a new Geolocation prototype service for storing geolocation data in the RIPE Database. This article outlines the methodology applied in this prototype.

RIPEstat Live Demo #9
RIPEstat Live Demo #9
Robert Kisteleki — Oct 05, 2011 12:00 AM

This article providers a summary of the RIPEstat demo session held on Tuesday, 4 October 2011. The focus of this demo was the mobile version of RIPEstat. Information about the next demo can be found at the end of the article.

Routing IPv6 in 2011
Routing IPv6 in 2011
Geoff Huston — Oct 04, 2011 02:35 PM

This is a follow-up to the recently published article "Routing 2011" which focused on IPv4. In this new article Geoff is looking at the IPv6 routing table.

F-root IPv6 Route Leak - the DNSMON View
F-root IPv6 Route Leak - the DNSMON View
Emile Aben — Oct 03, 2011 04:45 PM

This weekend the NANOG mailing list was abuzz about an F-root IPv6 route leak, that resulted in the F-root DNS server instance located in Bejing, China, being queried from outside of China. This normally doesn't happen, as this instance is advertised with the BGP attribute NO_EXPORT, which means it should not be visible outside of immediate neighbor Autonomous Systems (ASes). We looked at the DNSMON data about this event, and found that 5 out of 29 IPv6-enabled DNSMON monitors saw the Bejing F-root instance. We also found there was an earlier leak on 29-30 September.

Using RIPE Atlas Metadata to Measure NATs
Using RIPE Atlas Metadata to Measure NATs
Richard Barnes — Sep 30, 2011 09:55 AM

As part of the user interface to the RIPE Atlas network, users can see the first and second hops seen by certain probes. By looking for private addresses in these hops, we can learn something about how NATs are used in the Internet – in particular, that there's quite a lot of them!

Routing 2011
Routing 2011
Geoff Huston — Sep 26, 2011 03:25 PM

The size of the global routing table has been growing at a constant pace for many years. However, over the last few months, it is not growing as fast as it used to.

RIPEstat Mobile
RIPEstat Mobile
Giordano Da Lozzo — Sep 22, 2011 04:10 PM

We developed a mobile app for iPhone and iPad that provides access to RIPEstat. The main purpose of this new front-end is to show information about Internet number resources in a way that is optimised for handheld devices. You can now find the RIPEstat mobile app in the Apple App Store.

Hacking Away at the Internet's Security
Hacking Away at the Internet's Security
Geoff Huston — Sep 20, 2011 04:05 PM

The front page story of the September 13 2011 issue of the International Herald Tribune said it all: "Iranian activists feel the chill as hacker taps into e-mails." The news story relates how a hacker has "sneaked into the computer systems of a security firm on the outskirts of Amsterdam" and then "created credentials that could allow someone to spy on Internet connections that appeared to be secure." According to this news report this incident punched a hole in an online security mechanism that is trusted by hundreds of millions of Internet users all over the network.

351...360 of 579