Andreas Duering operates AS216427, a personal IPv6 autonomous system for educational purposes, with public routing policies and MANRS participation. The evidence is strong for network operations but weak for biography; all career details are self-reported. The network's small scale limits impact, but its transparent security practices make it useful for monitoring individual operator trends. Key watchpoints include shifts in peering, prefix announcements, sponsorship, and MANRS status.

Andreas Duering

Andreas Duering operates AS216427, a personal educational IPv6 network, with publicly documented routing policies, MANRS participation, and peering at FogIXP. The network handles low traffic but serves as an observable example of routing security practices among individual operators.

Why It Matters

Although traffic volume is minimal, Duering’s routing decisions influence connectivity for his own services and upstreams. His consistent use of RPKI and bogon filtering demonstrates that even tiny autonomous systems can contribute to a more secure routing landscape, offering an observable signal for researchers and network operators.

What Public Sources Show

Andreas Duering operates AS216427, a single IPv6 autonomous system he describes as a personal learning project hosted from Germany. The network announces the prefix 2a06:de00:ad00::/48 and carries no commercial traffic. Duering publicly identifies as the sole administrative and technical contact, publishing his routing policies and security practices on a dedicated website.

Duering participates in the Mutually Agreed Norms for Routing Security (MANRS) and implements bogon filtering, RPKI validation using stayrtr and FORT, and strict import filters. His peering policy, documented on duering-andreas.de, rejects default routes, bogon prefixes, and prefixes longer than /48, while accepting only his own routes. The network peers at FogIXP and BGP.Exchange, with upstream connectivity provided by iFog GmbH, comtrance, and Freetransit/Openfactory.

Duering prefers WireGuard tunnels for peering and offers a public looking glass. His policy explicitly forbids transit and offers no SLA, reflecting the network’s non-commercial nature. Although AS216427 handles low traffic, Duering’s configuration choices can affect reachability for his self-hosted services and the few peers that exchange routes with him.

His adherence to MANRS and transparent filter policy provides a small but concrete example of routing security best practices, useful for infrastructure analysts who monitor operator behavior outside large commercial networks. Public records from RIPE, PeeringDB, MANRS, and FogIXP confirm Duering’s operational role, but his personal biography is thinner. His homepage states he studied electrical engineering and works as a firmware developer, yet no independent source verifies these claims.

The number of advertised prefixes also differs between PeeringDB and bgp.tools. Observers should monitor any shift in Duering’s routing configuration, peering sessions, or prefix announcements, as these could alter the network’s footprint. Loss of sponsorship from iFog GmbH or Securebit AG, or withdrawal from MANRS, would weaken the public trust signal. A move toward commercial services would fundamentally change the operating model.

For BTW readers tracking internet infrastructure hygiene, AS216427 demonstrates how an individual operator’s public commitments to security and transparency can serve as a small but observable signal of routing integrity. Changes in Duering’s posture may reflect broader trends among hobbyist or educational networks adopting or abandoning routing security measures.

Operating Surface

He is the sole operator of AS216427, controlling BGP announcements, import/export filters, RPKI validation, and peering agreements for a non-commercial IPv6 autonomous system based in Germany.

Because Duering’s public adherence to MANRS and transparent security practices make AS216427 a useful benchmark for individual operator routing hygiene; changes in his configuration can affect a small set of peers and self-hosted services, and the lack of independent biographical verification introduces uncertainty.

Watchpoints

Duering’s public posture as a MANRS-compliant individual operator provides a low-traffic but transparent benchmark for routing security adoption. Analysts should treat his network as a canary: drift in his practices may signal shifts in hobbyist operator norms, even though the direct operational impact is small.

Any change in his routing policy, announced prefixes, peering sessions, or MANRS status, as well as withdrawal of sponsorship by iFog or Securebit, would warrant reassessment of his network’s reliability and the signal it sends.

Independent verification of Duering’s employment and educational background is lacking; the prefix count discrepancy between PeeringDB and bgp.tools needs resolution to accurately assess his network footprint; future sponsorship details are not publicly documented.

Sources

• Registry RDAP / WHOIS record - Public-source identity and registry context for Andreas Duering.
• duering-andreas.de - Duering states that he operates AS216427, announces 2a06:de00:ad00::/48, runs the AS as a hobby and for learning, uses import filters, and is a MANRS member.
• duering-andreas.de - The peering policy describes AS216427 as a personal AS operated by a private individual for educational purposes, with WireGuard-preferred peering, own-prefix-only route exchange, no transit role, and no SLA.
• PeeringDB network profile - PeeringDB lists Andreas Duering Network with organization Andreas Duering, ASN 216427, AS216427:AS-OWN, Educational/Research network type, low traffic level, European scope, peering policy, looking glass, and public exchange points.
• manrs.org - MANRS lists Andreas Duering as a Network Operators participant for DE with ASN 216427 and describes routing-security implementation using bogon filtering, RPKI, stayrtr, FORT Validator, PeeringDB, and RIPE routing-policy records.
• manager.fogixp.org - FogIXP lists Andreas Duering Network AS216427 as a full member joined in 2024 on the FogIXP peering LAN with a 1 Gbit entry and IPv6 peering address.
• bgp.tools - bgp.tools lists AS216427 as Andreas Duering, active under RIPE, registered on 2023-08-22, with Germany as location of operation, 0 IPv4 prefixes, 1 IPv6 prefix, and upstreams including iFog, comtrance, and Freetransit/Openfactory.
• duering-andreas.de - Duering's homepage gives self-published technical career context: electrical-engineering study with automation focus, current firmware-development work using C, microcontroller experience, automation scripting, network experimentation, Debian use, and self-hosted services.