Cisco this week said it issued a software update to address a vulnerability in its Cisco REST API virtual service container for Cisco IOS XE software that scored a critical 10 out of 10 on the Common Vulnerability Scoring System (CVSS) system.With the vulnerability an attacker could submit malicious HTTP requests to the targeted device and if successful, obtain the token-id of an authenticated user. This token-id could be used to bypass authentication and execute privileged actions through the interface of the REST API virtual service container on the affected Cisco IOS XE device, the company said.To read this article in full, please click here
Cisco this week said it issued a software update to address a vulnerability in its Cisco REST API virtual service container for Cisco IOS XE software that scored a critical 10 out of 10 on the Common Vulnerability Scoring System (CVSS) system.With the vulnerability an attacker could submit malicious HTTP requests to the targeted device and if successful, obtain the token-id of an authenticated user. This token-id could be used to bypass authentication and execute privileged actions through the interface of the REST API virtual service container on the affected Cisco IOS XE device, the company said.To read this article in full, please click here
Aruba has expanded its switch portfolio to include new software and switches that bring the company’s automation and software intelligence to campus networks.The HPE company is offering up a new release of its switch software – AOS-CX 10.4 – and the Aruba stackable CX 6300 and modular CX 6400 Series switches. The company also said it had integrated its switch-configuration software, NetEdit, into its Network Analytics Engine (NAE). NAE uses embedded analytics and automation to simplify management, accelerate troubleshooting of application-performance issues and remediate common network problems, Aruba stated. [Get regularly scheduled insights by signing up for Network World newsletters.]
AOS-CX is the network operating system software that Aruba introduced with its first core switch – the 19.2Tb/sec 8400 programmable, modular campus core and aggregation switch in 2017. Aruba describes AOS-CX as a cloud-native, programmable software package that can automate and simplify many critical and complex network functions such as end-to-end network monitoring, troubleshooting, network performance and security-related issues. To read this article in full, please click here
Aruba has expanded its switch portfolio to include new software and switches that bring the company’s automation and software intelligence to campus networks.The HPE company is offering up a new release of its switch software – AOS-CX 10.4 – and the Aruba stackable CX 6300 and modular CX 6400 Series switches. The company also said it had integrated its switch-configuration software, NetEdit, into its Network Analytics Engine (NAE). NAE uses embedded analytics and automation to simplify management, accelerate troubleshooting of application-performance issues and remediate common network problems, Aruba stated. [Get regularly scheduled insights by signing up for Network World newsletters.]
AOS-CX is the network operating system software that Aruba introduced with its first core switch – the 19.2Tb/sec 8400 programmable, modular campus core and aggregation switch in 2017. Aruba describes AOS-CX as a cloud-native, programmable software package that can automate and simplify many critical and complex network functions such as end-to-end network monitoring, troubleshooting, network performance and security-related issues. To read this article in full, please click here
ORLANDO – Corporate network infrastructure is only going to get more involved over the next two to three years as automation, network challenges and hybrid cloud become more integral to the enterprise.Those were some of the main infrastructure trend themes espoused by Gartner vice president and distinguished analyst David Cappuccio at the research firm’s IT Symposium/XPO here this week.[Get regularly scheduled insights by signing up for Network World newsletters.]
Cappuccio noted that Gartner’s look at the top infrastructure and operational trends reflect offshoots of technologies – such as cloud computing, automation and networking advances the company’s analysts have talked about many times before.To read this article in full, please click here
ORLANDO – Corporate network infrastructure is only going to get more involved over the next two to three years as automation, network challenges and hybrid cloud become more integral to the enterprise.Those were some of the main infrastructure trend themes espoused by Gartner vice president and distinguished analyst David Cappuccio at the research firm’s IT Symposium/XPO here this week.[Get regularly scheduled insights by signing up for Network World newsletters.]
Cappuccio noted that Gartner’s look at the top infrastructure and operational trends reflect offshoots of technologies – such as cloud computing, automation and networking advances the company’s analysts have talked about many times before.To read this article in full, please click here
VMware has taken another step to integrate its virtual kingdom with Amazon Web Services' world with an on-premise service that will let customers automate database provisioning and management. The package, Amazon Relational Database Service (RDS) on VMware is available now for customers running VMware vSphere 6.5 or later and supports Microsoft SQL Server, PostgreSQL, and MySQL. Other DBs will be supported in the future, the companies said.To read this article in full, please click here
VMware has taken another step to integrate its virtual kingdom with Amazon Web Services' world with an on-premise service that will let customers automate database provisioning and management. The package, Amazon Relational Database Service (RDS) on VMware is available now for customers running VMware vSphere 6.5 or later and supports Microsoft SQL Server, PostgreSQL, and MySQL. Other DBs will be supported in the future, the companies said.To read this article in full, please click here
VMware has taken another step to integrate its virtual kingdom with Amazon Web Services' world with an on-premise service that will let customers automate database provisioning and management. The package, Amazon Relational Database Service (RDS) on VMware is available now for customers running VMware vSphere 6.5 or later and supports Microsoft SQL Server, PostgreSQL, and MySQL. Other DBs will be supported in the future, the companies said.To read this article in full, please click here
VMware has taken another step to integrate its virtual kingdom with Amazon Web Services' world with an on-premise service that will let customers automate database provisioning and management. The package, Amazon Relational Database Service (RDS) on VMware is available now for customers running VMware vSphere 6.5 or later and supports Microsoft SQL Server, PostgreSQL, and MySQL. Other DBs will be supported in the future, the companies said.To read this article in full, please click here
While 5G deployments are nascent, Cisco says it expects rapid future development of the mobile technology will be expand industrial IoT use cases.The IIoT includes a broad range of products from connected sensors, robots and machinery to vehicles, building automation, asset tracking and remote agriculture systems. And in the industrial networking realm there are wireless access technologies including low-power wide-area networks (LoRaWAN), Narrow Band-IoT and others.To read this article in full, please click here
VMware has wrapped up its $2.1 billion buy of cloud-native endpoint-security vendor Carbon Black and in the process created a new security business unit that will target cybersecurity and analytics to protect networked enterprise resources.When VMware announced the acquisition in August, its CEO Pat Gelsinger said he expected Carbon Black technology to be integrated across VMware’s product families such as NSX networking software and vSphere, VMware's flagship virtualization platform. “Security is broken and fundamentally customers want a different answer in the security space. We think this move will be an opportunity for major disruption,” he said. To read this article in full, please click here
VMware has wrapped up its $2.1 billion buy of cloud-native endpoint-security vendor Carbon Black and in the process created a new security business unit that will target cybersecurity and analytics to protect networked enterprise resources.When VMware announced the acquisition in August, its CEO Pat Gelsinger said he expected Carbon Black technology to be integrated across VMware’s product families such as NSX networking software and vSphere, VMware's flagship virtualization platform. “Security is broken and fundamentally customers want a different answer in the security space. We think this move will be an opportunity for major disruption,” he said. To read this article in full, please click here
There have been significant changes in wide-area networks over the past few years, none more important than software-defined WAN or SD-WAN, which is changing how network pros think about optimizing the use of connectivity that is as varied as Multiprotocol Label Switching (MPLS), frame relay and even DSL.What is SD-WAN?
As the name states, software-defined wide-area networks use software to control the connectivity, management and services between data centers and remote branches or cloud instances. Like its bigger technology brother, software-defined networking, SD-WAN decouples the control plane from the data plane.To read this article in full, please click here
There have been significant changes in wide-area networks over the past few years, none more important than software-defined WAN or SD-WAN, which is changing how network pros think about optimizing the use of connectivity that is as varied as Multiprotocol Label Switching (MPLS), frame relay and even DSL.What is SD-WAN?
As the name states, software-defined wide-area networks use software to control the connectivity, management and services between data centers and remote branches or cloud instances. Like its bigger technology brother, software-defined networking, SD-WAN decouples the control plane from the data plane.To read this article in full, please click here
IBM continued its Red Hat and open-source integration work this week by adding Red Hat OpenShift support to its blockchain platform and bringing a Kubernetes Operator for Apache CouchDB along side its hybrid-cloud services offering. The ability to deploy IBM Blockchain on Red Hat OpenShift, the company’s flagship enterprise Kubernetes platform, means IBM Blockchain developers will have the ability to deploy secure software, either on-premises, in public clouds or in hybrid cloud architectures.To read this article in full, please click here
Cisco this week warned its IOS and IOS XE customers of 13 vulnerabilities in the operating system software they should patch as soon as possible.All of the vulnerabilities – revealed in the company’s semiannual IOS and IOS XE Software Security Advisory Bundle – have a security impact rating (SIR) of "high". Successful exploitation of the vulnerabilities could allow an attacker to gain unauthorized access to, conduct a command injection attack on, or cause a denial of service (DoS) condition on an affected device, Cisco stated. "How to determine if Wi-Fi 6 is right for you"
Two of the vulnerabilities affect both Cisco IOS Software and Cisco IOS XE Software. Two others affect Cisco IOS Software, and eight of the vulnerabilities affect Cisco IOS XE Software. The final one affects the Cisco IOx application environment. Cisco has confirmed that none of the vulnerabilities affect Cisco IOS XR Software or Cisco NX-OS Software. Cisco has released software updates that address these problems.To read this article in full, please click here
Cisco this week warned its IOS and IOS XE customers of 13 vulnerabilities in the operating system software they should patch as soon as possible.All of the vulnerabilities – revealed in the company’s semiannual IOS and IOS XE Software Security Advisory Bundle – have a security impact rating (SIR) of "high". Successful exploitation of the vulnerabilities could allow an attacker to gain unauthorized access to, conduct a command injection attack on, or cause a denial of service (DoS) condition on an affected device, Cisco stated. "How to determine if Wi-Fi 6 is right for you"
Two of the vulnerabilities affect both Cisco IOS Software and Cisco IOS XE Software. Two others affect Cisco IOS Software, and eight of the vulnerabilities affect Cisco IOS XE Software. The final one affects the Cisco IOx application environment. Cisco has confirmed that none of the vulnerabilities affect Cisco IOS XR Software or Cisco NX-OS Software. Cisco has released software updates that address these problems.To read this article in full, please click here
Cisco is significantly spreading its Application Centric Infrastructure (ACI) technology to help customers grow and control hybrid, multicloud and SD-WAN environments.ACI is Cisco’s flagship software-defined networking (SDN) data-center package, but it also delivers the company’s Intent-Based Networking technology, which brings customers the ability to automatically implement network and policy changes on the fly and ensure data delivery.
More about SD-WANTo read this article in full, please click here
Cisco is significantly spreading its Application Centric Infrastructure (ACI) technology to help customers grow and control hybrid, multicloud and SD-WAN environments.ACI is Cisco’s flagship software-defined networking (SDN) data-center package, but it also delivers the company’s Intent-Based Networking technology, which brings customers the ability to automatically implement network and policy changes on the fly and ensure data delivery.
More about SD-WANTo read this article in full, please click here
Michael Cooney