VMware cloud design decisions: LACP part 1

Recently I’ve been helping a customer who’s working on a VMware cloud design. As is often the case, there are a set of consulting SME’s helping with the various areas; an NSX/virtualization consultant, the client’s tech team and a network guy (lucky me).

One of the interesting challenges in such a case is understanding the background behind design decisions that the other teams have made and the flow-on effects they have on other components. In my case, I have a decent background in designing a VMware cloud and networking, so I was able to help bridge the gap a little.

My pet peeve in a lot of cases is the common answer of “because it’s ‘best-practice’ from vendor X” and a blank stare when asked: “sure, but why?”. In this particular case, I was lucky enough to have a pretty savvy customer, so a healthy debate ensued. This is that story.

Disclaimer: What I’m going to describe is based on network switches running Cumulus Linux and specifically some down-in-the-weeds details on this particular MLAG implementation. That said, most of the concepts apply to similar network technologies (VPC, other MLAG implementations, stacking, virtual-chassis, etc.) as they operate in very Continue reading

Cloudflare Rate Limiting – Insight, Control, and Mitigation against Layer 7 DDoS Attacks

Today, Cloudflare is extending its Rate Limiting service by allowing any of our customers to sign up. Our Enterprise customers have enjoyed the benefits of Cloudflare’s Rate Limiting offering for the past several months. As part of our mission to build a better internet, we believe that everyone should have the ability to sign up for the service to protect their websites and APIs.

CC-BY 2.0 image by Benjamin Child

Rate Limiting is one more feature in our arsenal of tools that help to protect our customers against denial-of-service attacks, brute-force password attempts, and other types of abusive behavior targeting the application layer. Application layer attacks are usually a barrage of HTTP/S requests which may look like they originate from real users, but are typically generated by machines (or bots). As a result, application layer attacks are often harder to detect and can more easily bring down a site, application, or API. Rate Limiting complements our existing DDoS protection services by providing control and insight into Layer 7 DDoS attacks.

Rate Limiting is now available to all customers across all plans as an optional paid feature. The first 10,000 qualifying requests are free, which allows customers to start using Continue reading

Worth Reading: Building Venice

What we do with Venice is support incremental upgrades of the cluster. Both of these approaches use a cluster of storage nodes. Given that our database is both sharded and replicated, we can bring down one storage node, upgrade it to the new version of the code, and bring it back online without affecting the usability of the system. Doing this one node at a time with each storage node in the cluster lets us do a zero-downtime upgrade. —LinkedIn

The post Worth Reading: Building Venice appeared first on rule 11 reader.

Worth Reading: Building Venice

What we do with Venice is support incremental upgrades of the cluster. Both of these approaches use a cluster of storage nodes. Given that our database is both sharded and replicated, we can bring down one storage node, upgrade it to the new version of the code, and bring it back online without affecting the usability of the system. Doing this one node at a time with each storage node in the cluster lets us do a zero-downtime upgrade. —LinkedIn

The post Worth Reading: Building Venice appeared first on 'net work.

HP to ship its Omen X VR backpack PC in June

HP will make a major virtual reality push in June, when it will start shipping its Omen X VR backpack PC.The backpack PC has already been announced, but the company until now had not provided a shipping date. HP is accepting applications from gamers and commercial developers to test the product.There will be two types of Omen X backpack PCs, Ron Coughlin, president of the Personal Systems Business at HP, said in an interview. HP will release a VR backpack for gamers, and one for commercial customers, he said.Users will be able to carry the PC like a backpack and hook up a VR headset like HTC's Vive. Wearing the backpack PC allows users to move around freely.To read this article in full or to leave a comment, please click here

Attending: IETF 99, July 2017. Prague

I'm be in Prague for IETF 99 in July.

The post Attending: IETF 99, July 2017. Prague appeared first on EtherealMind.

Security researcher blasts Tizen: ‘May be the worst code I’ve ever seen’

Samsung has had enough struggles with Tizen, the open-source operating system it is positioning as an alternative to Android. But now Tizen is being blasted by a security expert for being full of egregious security flaws and sloppy programming.Israeli researcher Amihai Neiderman, who heads the research department for Equus Software, spoke at Kaspersky Lab's Security Analyst Summit and later to Motherboard, the tech site run by Vice.com. Neiderman said Tizen's code "may be the worst code I've ever seen. Everything you can do wrong there, they do it."To read this article in full or to leave a comment, please click here

Security researcher blasts Tizen: ‘May be the worst code I’ve ever seen’

Samsung has had enough struggles with Tizen, the open-source operating system it is positioning as an alternative to Android. But now Tizen is being blasted by a security expert for being full of egregious security flaws and sloppy programming.Israeli researcher Amihai Neiderman, who heads the research department for Equus Software, spoke at Kaspersky Lab's Security Analyst Summit and later to Motherboard, the tech site run by Vice.com. Neiderman said Tizen's code "may be the worst code I've ever seen. Everything you can do wrong there, they do it."To read this article in full or to leave a comment, please click here

Security researcher blasts Tizen: “May be the worst code I’ve ever seen”

Samsung has had enough struggles with Tizen, the open source operating system it is positioning as an alternative to Android. But now Tizen is being blasted by a security expert for being full of egregious security flaws and sloppy programming. Israeli researcher Amihai Neiderman, who heads the research department for Equus Software, spoke at Kaspersky Lab's Security Analyst Summit and later to Motherboard, the tech site run by Vice.com. Neiderman said Tizen's code "may be the worst code I've ever seen. Everything you can do wrong there, they do it."To read this article in full or to leave a comment, please click here

Slack makes it easier to say you’re out to lunch

Slack is making it easier for coworkers to see what other people in their organization are up to, thanks to a new status-message feature unveiled Thursday.The functionality, which is rolling out to the messaging service’s customers over the next few days, lets users set a message in their profile that informs others about their activities.Statuses will show up next to users’ names inside Slack’s chat window, in their profiles, and next to their names in the Quick Switcher, which lets users easily switch between different chat channels and direct messages. Slack An illustration shows how Slack's custom status feature looks inside the service's desktop chat app.To read this article in full or to leave a comment, please click here

Calix Introduces a VNF for Cable Operators

Calix is creating a plug-and-play path for its cable customers to follow toward virtualizing.

KT and Verizon Work on NFV Orchestrator Interoperability

The testing included the deployment of a virtual firewall.

Un-Masking FD.io – the Open Source Project that Processes Packets

'All of the other open source groups are moot if you can’t forward packets.'

Huawei Unveils Cloud Application Platform

The platform can be installed on mobile devices.

14% off APC 11-Outlet Surge Protector with USB Charging Ports and SurgeArrest – Deal Alert

Be it a lightning strike that destroys a home entertainment center or consistently fluctuating power that degrades the performance and shortens the life of your electronics – surges, lightning, and other power disturbances can have a devastating impact on the valuable electronics you rely on every day. The P11U2 from APC offers guaranteed surge protection. Connect and protect up to 11 electronics, and conveniently charge your mobile devices via 2 additional USB ports. Installation is convenient and easy with a 180-degree rotating power cord and right-angle plug. Lastly, three LED indicators inform you if there is any overload, unit, or wall wiring issues. The P11U2 averages 4.5 out of 5 stars from over 1,500 people on Amazon (read reviews), where its typical list price of $34.99 is discounted 14% to $29.99. See this deal on Amazon.To read this article in full or to leave a comment, please click here

14% off APC 11-Outlet Surge Protector with USB Charging Ports and SurgeArrest – Deal Alert

Be it a lightning strike that destroys a home entertainment center or consistently fluctuating power that degrades the performance and shortens the life of your electronics – surges, lightning, and other power disturbances can have a devastating impact on the valuable electronics you rely on every day. The P11U2 from APC offers guaranteed surge protection. Connect and protect up to 11 electronics, and conveniently charge your mobile devices via 2 additional USB ports. Installation is convenient and easy with a 180-degree rotating power cord and right-angle plug. Lastly, three LED indicators inform you if there is any overload, unit, or wall wiring issues. The P11U2 averages 4.5 out of 5 stars from over 1,500 people on Amazon (read reviews), where its typical list price of $34.99 is discounted 14% to $29.99. See this deal on Amazon.To read this article in full or to leave a comment, please click here

50% off BioShock: The Collection for PlayStation 4 and Xbox One – Deal Alert

Return to the cities of Rapture and Columbia and experience the award-winning BioShock franchise like never before, beautifully remastered in 1080p. The collection is currently discounted 50%.

Tool: TraceMON – Network Debugging Made Easy — RIPE Labs

TraceMON is a GUI for public WAN visibility.

The post Tool: TraceMON – Network Debugging Made Easy — RIPE Labs appeared first on EtherealMind.

Travelers enlists Symantec to advise cyber insurance customers

The Travelers insurance company has teamed up with Symantec to give policyholders cyber security assessments and consultation in order to help them manage risks.The self-assessment consists of filling out a 25-question survey and getting a written report of how well their network and data protection stacks up. If they want to, they can talk to a consultant who walks them through the results and recommends steps they could take to remediate risks.+More on Network World: Synack: Hackers wanted after firm gets $21.25M funding from Microsoft, HPE+To read this article in full or to leave a comment, please click here

Travelers enlists Symantec to advise cyber insurance customers

The Travelers insurance company has teamed up with Symantec to give policyholders cyber security assessments and consultation in order to help them manage risks.The self-assessment consists of filling out a 25-question survey and getting a written report of how well their network and data protection stacks up. If they want to, they can talk to a consultant who walks them through the results and recommends steps they could take to remediate risks.+More on Network World: Synack: Hackers wanted after firm gets $21.25M funding from Microsoft, HPE+To read this article in full or to leave a comment, please click here