“Vulnerability is the birthplace of innovation, creativity and change.” —Brené Brown
Three months ago, the Internet Society decided to face a new challenge. We took ourselves out of our comfort zone to move our community to the next level: empowerment through education. We began the Chapters Training Program, born to satisfy the increasing need of our Chapter Leaders to engage their members in an impactful and informed way. The purpose was to identify and help form new leaders to work together to create local awareness, as part of our 2020 Action Plan .
This journey was not easy. However, our community embraced vulnerability and we overcame many obstacles, like change and uncertainty. In the end, we succeeded – because together our strength is bigger than our challenges. It’s part of our community’s DNA: having the conviction to build an Internet that enriches people’s lives and enables opportunities to all.We demonstrated that when we work together, we accomplish great things. Challenge becomes just a word… To be brave, first we need to be vulnerable and once we are brave, the sky is the limit!
I want to share the results of our work – and I hope we can all feel proud of ourselves! In less than 3 months we:
Delivered 25 different courses to the community in 3 different languages (English, Spanish, and French) across 5 different time zones – covering 94 Chapters around the world
Engaged 473 Chapter members
Executed 322 Chapter initiatives
Thank you and applause to all the instructors, Chapter trainees, Chapter coordinators, and staff who joined us on this journey. You challenged yourselves to be brave and move from words to action. The Internet is not built alone, it is built day by day with the power of Us!
We are Internet Society and together we are strong.
LACNIC is organizing a “IPv6 Troubleshooting for Helpdesks” webinar that will take place today, 23rd March 2016 at 15.00 UYT (UTC -3) through Webex. The main theme of the webinar is how ISP helpdesks can use the RIPE-631 Best Current Operational Practice document and associated online tools to troubleshoot and fix IPv6 issues.
The webinar will be lead by LACNIC with the main speakers being Sander Steffann and Jan Žorž (Internet Society), the two co-authors of RIPE-631.
Who should attend? Technical staff with IP knowledge, IPv6 network administrators, first- and second- level line support, as well as people from companies implementing IPv6.
The target audiences for this tutorial are recent university graduates, network administrators, network engineers, and other parties with a working knowledge of IPv4 who are looking for a basic course on IPv6. The course consists of the following modules:
Introduction to IPv6
Understanding IPv6 Addresses
Protocol, Neighbor Discovery, and SLAAC
As IPv4 exhaustion becomes more and more imminent, network operators across the globe are taking a closer look at transitioning to IPv6. Given that the Internet is now a critical global infrastructure for socio-economic growth and is growing faster in developing countries, there are a number of key drivers for IPv6 migration to be accelerated in these nations. A number of these drivers are highlighted below:
Many developing countries have made considerable strides in ICT but still trail developed nations as it pertains to Internet access. This ‘digital divide’ can be reduced by extending wireless networking and mobility through the provisioning of a larger address space via IPv6.
By expediting the migration of IPv6, governments can deliver enhanced support for public safety networks, as well as reduce the complexity associated with the management of such. These broadband networks better allow emergency services, such as police, fire and emergency medical services, to respond to a wide array of natural, man-made and emerging threats.
IPv6 is the ideal platform on which m-Health capabilities can be built. M-Health applications include the application of mobile devices in gathering clinical data, conveyance of health-related data to medical practitioners, researchers, and patients, real-time patient monitoring systems, and remote home care by means of mobile telemedicine.
The underlying protocol for smart grid technology is preferably IPv6. Smart grid computing provides monitoring, analysis, control, increased cyber-security and communication capabilities to electrical delivery systems in order to maximize the throughput of the system while reducing the energy consumption.
Mobile banking and mobile payments can substantially improve access to banking products such as savings, deposits and insurance for lower income demographics. These services provide ways and means for the unbanked and underbanked persons to invest in productive assets, expand their businesses and protect their livelihoods. IPv6 is emerging as the preferred platform and is a core component of the wireless Internet architecture (2G, 3G, 4G and beyond).
In short: It’s doable and your government should support it!
Over 4 years ago, the Go6 Institute started a discussion with the Slovenian government about the idea for a Slovenian IPv6 roadshow project. This would include a web portal with basic technical and deployment information about the IPv6 protocol, as well as one-day basic IPv6 workshops that would be free for everybody to attend, but more importantly, outside of the capital city (Ljubljana).
The motivation behind this initiative was the fact that the majority of IPv6 related conferences, meetings and workshops were usually held in Ljubljana as the density of Internet experts in that area is higher than elsewhere. But is using this as a reason to organize IPv6 events there fair? We thought not, and this resonated with Internet experts living outside the Ljubljana region.
“If the mountain won’t come to Muhammad, then Muhammad must go to the mountain…”
People from busy IT departments, enterprises, operators and other parts of industry are involved with their work and don’t have the time and resources to travel for several hours to join a workshop about something they are not entirely sure they need to know about. Of course, usually after joining a meeting or workshop they realize how important the knowledge is and change their mind, but before this happens, they have hesitations about whether it is a good use of their time.
The aim was to change this mentality by bringing an IPv6 workshop to their city that is free to attend, and to encourage them to see IPv6 as part of their future professional expertise and required knowledge.
The Slovenian government always stressed the importance of providing education and learning opportunities to everyone in the country, so we saw the perfect opportunity to partner this vision with increasing knowledge and awareness of IPv6 awareness. We therefore need to thank the Ministry of Education, Science and Sport and Arnes, the Slovenian NREN for supporting this pilot project.
This project was announced in September 2015, and needed to be completed before the funding expired at the end of 2015. We decided to divide the project into two parts – developing a web portal with IPv6 information in Slovenian, as well as organising two IPv6 workshops in Nova Gorica and Maribor – two cities at diametrically opposite ends of the country.
The web portal now proudly lives at https://ipv6.si/ and is still under development, but the content is nearly complete and should be available next week. The aims is to gather together IPv6 information in Slovenian to become a reference point for any citizen needing to understand and deploy IPv6 in their networks and services. Our wish is to continue to develop the portal – adding new protocols, tutorials and workshop materials over time.
The two IPv6 workshops took place this week on 15 December 2015 in Nova Gorica, and 17 December 2015 in Maribor. The first had over 80 participants, whilst the second had around 40 participants, so both can be considered a great success. Arnes also recorded the proceedings of the Maribor workshop which will appear on https://ipv6.si/ shortly.
Participants were highly interested in learning about IPv6 and Matjaž Straus Istenič and Luka Manojlovič introduced them to the IPv6 protocol, how to start, and the importance of gaining a lot of experience in order to be able to run trouble-free networks and services
The workshops also covered why we need to implement IPv6, addressing and making address plans, accompanying protocols, ICMPv6 services, and the usage of different auto configuration mechanisms such as SLAAC and DHCPv6. More advanced topics included DNS and IPv6, privacy and traceability in IPv6, a look at IPv6 security issues, and transitional mechanisms like A+P (MAP), 6to4, NAT64 and others.
One of participants said after the workshop: “If you guys had not organised this workshop, I would not have learnt about IPv6 to the extent that the whole thing would catch my attention and interest to start testing and experimenting with it. Quite simply, I have too much other work and would not have been able to reprioritize my other assignments to start learning about IPv6 from the Internet. I live and work nearby and in a single day I learned the basics of IPv6, lost the fear of an unknown new protocol, and actually obtained enough knowledge to encourage me to start playing with it at home. When I get comfortable with it, I’ll start thinking about implementing it at work…”
From the feedback received, it’s clear this initiative was welcomed as a good to way to encourage people to deploy IPv6. We therefore plan to talk our government and NREN about continuing this activity next year, as the web site is nearly ready, workshop material has been prepared, and a team well trained in its use.
We’d like to thank everyone who made this pilot project happen, including the Ministry of Education, Science and Sport; Arnes; IZUM Maribor; Šolski center Nova Gorica; Go6 Institute, the Internet Society; and other everyone else that helped make the workshops a bit better.
We’re also interested in hearing if there are similar initiatives in other countries, and would encourage other governments to support the deployment of IPv6 in this way.
Are you in Stockholm, Sweden, (or can easily get there) and interested in learning more about DNSSEC? If so, we’ve learned that the great folks at OpenDNSSEC will be offering a free two-day training class on May 22-23, 2014. More info can be found at:
The agenda is online as are the study materials. This training is obviously aimed at people who will use OpenDNSSEC as a means of signing their DNS zones and if you haven’t considered that option before you may want to do so.
Given that this is a hands-on workshop, it is not available for remote participants. As the web page notes, the OpenDNSSEC team is open to bringing this training to other locations.
Would you be interested in reviewing a computer networking course book that is being updated for IPv6 and is available as an open source document for all to use? We learned a bit ago that professor Olivier Bonaventure at the Universite catholique de Louvain in Belgium is seeking reviewers for his draft 2nd edition of “Computer Networking : Principles, Protocols and Practice” that he has updated for IPv6. The book can be found at:
where you can see that some reviewers have already filed a number of suggestions and bug reports.
We understand that the goal of Professor Bonaventure and his team is to develop a more finished version of this 2nd edition by the middle of this year and we commend them on this effort. These kind of courseware books / modules that can be used at universities and other training centers are definitely welcome. We look forward to adding this course book to our IPv6 Training page as it continues to evolve.
If you have a bit of time to read through the book, Professor Bonaventure and his team would no doubt appreciate any feedback you may have!
Are you going to be in Singapore March 19-21 and would be interested in some DNSSEC training?
We’ve been alerted by our friends at ICANN and the NSRC that they have a few open seats in the DNSSEC training classes they are offering on March 19-21 in cooperation with the Singapore NIC (operators of the .sg ccTLD). Rick Lamb, one of the instructors, notified us that the training is free if people can get there – and that people who hold ISC2 certifications such as the CISSP credential can earn Continuing Professional Education (CPE) credits for attending the course.
The training agenda looks excellent and having worked a good bit with Rick I can very definitely say he is incredibly knowledgable with everything related to DNSSEC. I’ve also heard great things about the other instructor, Phil Regnauld, and of NSRC training in general.
Rick said it would be best if people contacted him directly via email to see if there is still space in this course. I’ll note that this training is happening right before the ICANN 49 meeting in Singapore, and so if you are already going to ICANN 49 perhaps you can adjust your schedule and go a few days early to check out this training!
This course will discuss the concept of DNS Security in detail, mechanisms to authenticate the communication between DNS Servers, mechanisms to establish authenticity, and integrity of DNS data and mechanisms to delegate trust to public keys of third parties.
The outline looks quite interesting:
Forward and Reverse DNS
DNS Security concepts
DNS Protocol Vulnerabilities
Transaction Signatures (TSIG)
DNS security extensions (DNSSEC)
Setting up secure zones
DNSSEC Key management
DNS and IPv6
(I like that bit at the end about “DNS and IPv6”! 😉 )
You are welcome to attend a free training course in OpenDNSSEC. It is a two-day training, where you get a mixture of theory and hands-on experience. We will be using virtual servers hosted by Amazon, so please bring your own laptop.
Could you run your data center on onlyIPv6? What would you need to do to interact with the IPv4 side of the Internet? How could you make this happen in your datacenter?
IPv6 is becoming a reality for more and more operators and datacenters that have started to feel the shortage of IPv4 address space. Tore Anderson from Redpill Linpro figured out that IPv4 addresses are better used to enable the service for the servers hosted in their datacenter instead of “wasting” them for network infrastructure and datacenter interconnectivity. On June 12, 2013, Ivan Pepelnjak (ipspace.net, NIL d.o.o.) and Tore Anderson will deliver a free “IPv6-only datacenter” online training, explaining the idea behind this solution and the mechanics of translation tools needed to put on a configuration like it’s already running in production environment in Norway.
Short description of the event from very popular Ivan’s blog ipspace.net:
IPv6 is becoming an unavoidable reality, and the majority of content providers try to deal with it one little step at a time, starting with IPv6-to-IPv4 load balancing (or even NAT64) somewhere at the edge of the data center.
This incremental strategy allows you to give users access to IPv6-enabled content with minimum initial investments, but it also triggers a series of transitions the organization has to go through before reaching the final destination: IPv6-only data centers after IPv4 becomes truly obsolete. Each one of these transitions has to be planned, designed and managed, and each one of them introduces risk and potential downtime.
The webinar describes an alternate approach: an IPv6-only data center and network core with the only IPv4 component being NAT46 translation boxes at the network edge.
Tore Anderson is running this design in production environment and will share his real-life experiences and the glitches he encountered on his path to IPv6-only data center.
Join this unique opportunity to learn from one of the best experts in our industry, register for free for Webex session now.
Given that Mongolia’s .MN TLD is signed with DNSSEC (as shown in the list of signed TLDs), we’re looking forward to seeing more signed .MN domains and more usage of DNSSEC in Mongolia after this workshop!
Starting it off will be a half-day DNS and DNSSEC tutorial on Tuesday morning (right before our ION event) by Shumon Huque of the University of Pennsylvania. It looks like a great way to spend the morning diving deep into DNS and DNSSEC.
Tuesday afternoon will be our ION San Diego conference where we have two sessions focused on DNSSEC on our agenda. First, Pete Toscano of ARIN will talk about ARIN’s support of both DNSSEC and RPKI. Second, I’ll be moderating what should be a truly outstanding panel on the topic of deploying DNSSEC. We have a great group of panelists including Rick Lamb from ICANN, Infoblox’s Cricket Liu who is also the author of multiple O’Reilly books on DNS, Jim Galvin of Afilias (who operates multiple TLDs) and Roland van Rijswijk-Deij of SURFnet who has been very actively working on getting more validating DNS servers deployed. The panel will be a questions-based, highly interactive discussion session that we expect to be very educational (and perhaps entertaining) for all attending. I’ll have questions for the panel but there will also be plenty of opportunities for you to ask your questions, too.
Jumping to Friday, there are then two invited talks about DNSSEC. First, Roland van Rijswijk-Deij of SURFnet will be discussing “DNSSEC: What Every Sysadmin Should be Doing to Keep Things Working“. Roland’s presentations have been both educational and amusing in the past, so I’m sure this should be a good one. Following Roland and closing out the DNSSEC sessions next week, Scott Rose of NIST will be presenting “DNSSEC Deployment in .gov: Progress and Lessons Learned” where he’ll be providing the case study of the US government’s deployment of DNSSEC and relaying their lessons learned thus far. Scott and the team at NIST have been doing great work monitoring the DNSSEC deployment and this session should be very helpful to those looking to understand how to deploy DNSSEC on a very large scale.
There you have it… lots of great DNSSEC material! If you are in San Diego next week for USENIX LISA, check out these sessions and also come to our ION conference. Great opportunities to learn what you need to do to get started with DNSSEC today!