CLKscrew: Another side channel you didn’t know about
Network engineers focus on protocols and software, but somehow all of this work must connect to the hardware on which packets are switched, and data is processed. A big part of the physical side of what networks “do” is power—how it is used, and how it is managed. The availability of power is one of the points driving centralization; power is not universally available at a single price. If cloud is cheaper, it’s probably not because of the infrastructure, but rather because of the power and real estate costs.
A second factor in processing is the amount of heat produced in processing. Data center designers expend a lot of energy in dealing with heat problems. Heat production is directly related to power usage; each increase in power consumption for processing shows up as heat somewhere—heat which must be removed from the equipment and the environment.
It is important, therefore, to optimize power usage. To do this, many processors today have power management interfaces allowing software to control the speed at which a processor runs. For instance, Kevin Myers (who blogs here) posted a recent experiment with pings running while a laptop is plugged in and on battery—
Reply from 2607:f498:4109::867:5309: Continue reading
Call for Participation – ICANN DNSSEC Workshop at ICANN63 Barcelona
Do you have a great idea about DNSSEC or DANE that you’d like to share with the wider community? If so, and you’re planning to be in Barcelona, Spain for ICANN63 in October 2018, submit a proposal to present your idea at the DNSSEC Workshop!
Send a brief (1-2 sentence) description of your proposed presentation to [email protected] by Friday, 07 September 2018.
For more information, read the full Call for Participation below.
The DNSSEC Deployment Initiative and the Internet Society Deploy360 Programme, in cooperation with the ICANN Security and Stability Advisory Committee (SSAC), are planning a DNSSEC Workshop during the ICANN63 meeting held from 20-25 October 2018 in Barcelona, Spain. The DNSSEC Workshop has been a part of ICANN meetings for several years and has provided a forum for both experienced and new people to meet, present and discuss current and future DNSSEC deployments.
For reference, the most recent session was held at the ICANN Policy Forum in Panama City, Panama on 25 June 2018. The presentations and transcripts are available at:https://62.schedule.icann.org/meetings/699560, and https://62.schedule.icann.org/meetings/699556
At ICANN63 we are particularly interested in live demonstrations of uses of DNSSEC, DS automation or DANE. Examples Continue reading
Building a Diverse Business Development Team in EMEA
Cloudflare’s mission is to help build a better Internet, and we are also serious about building a diverse workforce where everyone can be themselves, regardless of their gender, sexual orientation, or cultural background.
The Recruiting team sat down with Anil Karavadra, EMEA Head of Business Development, to find out how he has built a diverse team since he joined.
the EMEA team pictured 1st August, some members attending Orientation
Recruiting Team: First question Anil, how did you end up at Cloudflare?
Anil Karavadra: Funny story about this--I was actually approached by my boss! He reached out to me and said “Hey would you be interested in joining Cloudflare?”, and initially I said no because I hadn’t heard of Cloudflare before! Then he suggested “Well how about we share some best practices?”, and I said okay, although I knew he was going to try and pitch Cloudflare to me. After I had a chat with him and he shared his vision to grow the EMEA BDR organisation. This sounded interesting to me so I then went through the interview process and got through. Now that I’m here I love it.
RT: How long have you been Continue reading
Northbound Networks Zodiac GX
Mininet is widely used to emulate software defined networks (SDNs). Mininet flow analytics describes how standard sFlow telemetry, from Open vSwitch used by Mininet emulate the network, provides feedback to an SDN controller, allowing the controller to adapt the network to changing traffic, for example, to mitigate a distributed denial of service (DDoS) attack.
Northbound Networks Zodiac GX is an inexpensive open source software based switch that is ideal for experimenting with software defined networking (SDN) in a physical network setting. The small fanless package makes the switch an attractive option for desktop use. The Zodiac GX is also based on Open vSwitch, making it easy to take SDN control strategies developed on Mininet.
Northbound Networks Zodiac GX is an inexpensive open source software based switch that is ideal for experimenting with software defined networking (SDN) in a physical network setting. The small fanless package makes the switch an attractive option for desktop use. The Zodiac GX is also based on Open vSwitch, making it easy to take SDN control strategies developed on Mininet.
ovs-vsctl -- --id=@sflow create sflow agent=$OVS_BR target=$IP_CONTROLLER_1 sampling=100 polling=10 -- set bridge $OVS_BR sflow=@sflowReboot the switch for the changed to take effect.
Use sflowtool to verify that sFlow is arriving at the controller host and to examine the contents of the telemetry stream. Running sflowtool using Docker is a simple alternative to building the software Continue reading
SUSE Touts Financial Growth, Hints at Future Acquisitions
CTO Thomas Di Giacomo said the company plans to invest more into its operations including a focus on acquisitions.
PQ 153: DDoS Open Threat Signaling For Coordinated Response
What if DDoS mitigation services could coordinate to thwart attacks? On today's Priority Queue, we explore Distributed Denial Of Service Open Threat Signalling, or DOTS, an IETF effort to do just that. Andrew Mortensen is our guest.
The post PQ 153: DDoS Open Threat Signaling For Coordinated Response appeared first on Packet Pushers.
First APrIGF in the Pacific a Resounding Success
The 2018 Asia Pacific Regional Internet Governance Forum (APrIGF) which was held in Port Vila, Vanuatu from August 13-16 came to an exciting close after a week of valuable dialogue on Internet Governance issues in the region. This was the first time the APrIGF was held in the Pacific and the local hosts, Vanuatu’s Office of the Government Chief Information Officer (OGCIO), Vanuatu Telecommunications and Radiocommunications Regulator (TRR), and the local people of Vanuatu showed the APrIGF community what Pacific Island hospitality is all about.
The community had the privilege of having APrIGF 2018 opened by none other than the Vanuatu Prime Minister, Charlot Salwai. Also present at APrIGF 2018 and delivering his keynote address was the godfather of the Internet himself, Vint Cerf who took time to contribute in various discussions and engage with participants. With the theme of Empowering Communities in Asia Pacific to Build an Affordable, Inclusive, Open and Secure Internet, the calibre of delegates speaks volumes for the importance of such a dialogue.
Participants from all over Asia-Pacific, representing various stakeholder groups, were present to contribute to discussion and engage in the proceedings. This was the culmination of months of planning and execution by the Continue reading
Introduction to Infrastructure as Code
Small misconfigured settings plague many IT environments, impacting security and stability. Infrastructure as code lets you apply a consistent configuration to a broad range of endpoints.
Traditional Leaf-and-Spine Fabric Versus Cisco ACI
One of my subscribers wondered whether it would make sense to build a traditional leaf-and-spine fabric or go for Cisco ACI. He started his email with:
One option is a "standalone" Spine/Leaf VXLAN-with EVPN deployment based on Nexus equipment. This approach could probably be accompanied by some kind of automation like Ansible to ease operation/maintenance of the network.
This is what I would do these days if the customer feels comfortable investing at least the minimum amount of work into an automation solution. Having simpler technology + well-understood automation solution is (in my biased opinion) better than having a complex black box.
Read more ...HCI Heats Up in Vegas With VMware, Cisco, Veeam, and Pivot3
At VMworld and at home this week, all four of the top hyperconverged infrastructure vendors made news with their HCI platforms and partnerships.
8 “Fake News” Items that Tried to Hold Back Open Networking
The parallels between the efforts of the various open networking communities to modernize the networking industry and a Saturday afternoon pee-wee soccer scrum are far too close for comfort. Both are characterized by loads of noisy, colorful – and mostly circular – movement – eventually followed by exhausted players staring at a ball that seems to be sitting pretty much right where it started.
At least that’s the way it’s been playing out for all the intrepid IT stewards running large enterprise networks — until now. After years of enduring legacy-vendor-driven “fake news” stories paired with whispered misdirection designed to hold back the disaggregated white box open networking movement as a whole, truth has – finally — won out.
Multiple Fortune 100 companies are now deploying open white box switches running Pica8’s PICOS® network operating system in their campus and branch office networks, mostly replacing aging Cisco and Juniper architectures. (A parallel, in a sense, to the on-going white box tsunami in the data center.) Enterprise IT teams now realize that the access edge for campus networks is fully in play for long-overdue upgrades and replacements by more modern, simpler, more flexible, and vastly more Continue reading
We’ve Added Two New Amazon Web Services Courses to Our Video Library!
Interested in AWS? You’re in luck, this week we added not one, but TWO Amazon Courses to our streaming library!
AWS Certified Solution Architect – Professional
Instructor: Ankush Kilam
Duration: 5hrs 25min
This course provides you with advanced technical skills needed to pass the AWS CSA Pro exam. With the AWS CSA Pro certification under your belt, you will join an exclusive club of certified professionals who are in high demand by employers worldwide. The training course is made up of 5-20 minute videos. The video lessons keep-it-simple and explain things clearly and succinctly. Together I’ll walk you through each of the major domains of Amazon Web Services, step by step.
AWS Certified Developer – Associate
Instructor: Robert Kulagowski
Duration: 7hrs 7min
This course will help you study for the AWS Certified Developer – Associate exam. Through a combination of lectures, quizzes and practical exercises, you’ll get the information necessary to earn your certification. You will learn CloudFormation, Cloudfront, DynamoDB, EBS, EC2, Elastic Beanstalk, IAM, S3, SNS, SQS, SWF and more
You Can watch both of these courses by logging into your INE Members Account