Logging continuous ping latency and packet loss for troubleshooting using fping -D -l flags: capturing unix timestamps with latency measurements, converting timestamps with Perl, and logging output to file for later analysis.
Configuring IPv6 first-hop redundancy with MikroTik VRRPv3: troubleshooting Router Advertisement issues where IPv6 sessions died during failover, solving by disabling RA on VLAN interfaces and configuring IPv6 ND settings for proper virtual gateway operation.
Implementing RFC 7999 BGP BLACKHOLE community (65535:666) on MikroTik RouterOS: configuring routing filters to set blackhole route type, integrating with FastNetMon for automated DDoS mitigation, and handling provider-specific communities for upstream blackholing.
Large BGP Community draft RFC addressing 32-bit ASN limitations in standard BGP communities: tracking implementation status across ExaBGP, Cisco IOS XR, Nokia SR-OS, and Bird, with development on Github.
I ran into an obscure limitation in PowerDNS 4.0 authoritative server recently. I have one nameserver which also acts as a slave to two other sets of zones with are transfered using AXFR. Some of those zones are DNSSEC enabled, and PowerDNS is only able to handle DNSSEC on the first backend loaded. This was causing several forward and reverse zones to fail to serve the DNSSEC records along with the queried records, and DNSSEC validation to partially fail.
