Monthly Archives: June 2014


A premiere here, a rant-free post.

Just a bit of free advertising for a nice product. I’ve been using it for a while now and the only gripe I have with it is that the developer does not advertise it more.

In order to be able to respond to DDoS attacks in a timely manner you need to be able to detect them as quick as possible. If you ever need a really, and I mean really fast DDoS detection engine, try Packetdam ( No matter how much other vendors who wanted to sell us something tried to compete with it, they always failed at detection speed.

Don’t take my word for it, go grab a evaluation build and test it. If you have questions the supplier is nice and quick to answer.


(In)sane defaults

Because SUP720-3BXL and because all who have a full BGP feed with it should have seen this in the last days:
*%MLSCEF-SP-4-FIB_EXCEPTION_THRESHOLD: Hardware CEF entry usage is at
95% capacity for IPv4 unicast protocol*

Because 512k routes should be enough for everyone (although the specs advertise 1024k).

Here you will find a workaround:

Ofc, reload is needed 🙁