Archive

Category Archives for "Networking"

Bandwidth Alliance Partners – Exciting Choices

Bandwidth Alliance Partners - Exciting Choices
Bandwidth Alliance Partners - Exciting Choices

We are tremendously excited about the value our Bandwidth Alliance partner ecosystem adds to our customers. We’re on a mission to help make the internet a better place; and ensuring everyone can access cloud resources at zero-egress rates supports that mission in many ways. It’s an easy way for our clients to build modern, cloud-centric applications without the design constraint and financial burden of egress fees.

The cloudflare bandwidth alliance partner landscape continues to grow, and incorporate a diverse group of partners, with today’s second wave announcement.  With over a dozen different partners, the range of choices can quickly become overwhelming. And, while these are all high-quality platforms which we are happy to recommend to our clients - their important differences will help determine the best fit for you, the customer.

In this post, I’ll lay out some of Cloudflare’s approach to this solution design question through the lens of a large client we recently worked with. We apply this approach across our full range of products and services, including many use cases far different from the Storage need we’ll dig into in this post. I hope that this can help all of our clients, or anyone else interested, mirror Continue reading

Expanding the Bandwidth Alliance: sharing the benefits of interconnected networks

Expanding the Bandwidth Alliance: sharing the benefits of interconnected networks
Expanding the Bandwidth Alliance: sharing the benefits of interconnected networks

At Cloudflare, our mission is to help build a better Internet. That means making the Internet faster, smarter, safer, but also more cost efficient with the help of our partners. We are always on the lookout for ways to help save customers money. With that goal we announced the Bandwidth Alliance with our founding partners during our Birthday week.

The key concept of the Bandwidth Alliance is to help reduce and in many cases waive data transfer charges, sometimes known as "bandwidth” or “egress” charges, for our mutual customers. We achieve this in partnership with the founding partners through strongly interconnected networks over peered connections. These connections typically occur within the same facility with no middleman. So, neither Cloudflare nor the cloud provider bears incremental costs. Further, we will also use our smart routing system (read details in this technical blog post) to ensure that all our customers’ traffic on participating cloud providers, once their systems are set up, qualify for this offer.

Expanding the Bandwidth Alliance: sharing the benefits of interconnected networks

Expanding the Alliance: new Partners Committed to Discounting Data Transfer Fees

We are proud to announce the following cloud providers and hosting companies have joined the Bandwidth Alliance in committing to zero data transfer fees for Continue reading

Route Leak Causes Major Google Outage

Google recently faced a major outage in many parts of the world thanks to a BGP leak. This incident that was caused by a Nigerian ISP – Mainone – occurred on 12 November 2018 between 21.10 and 22.35 UTC, and was identified in tweets from the BGP monitoring service BGPMon, as well as the network monitoring provider Thousand Eyes.

Google also announced the problem through their status page:

We’ve received a report of an issue with Google Cloud Networking as of Monday, 2018-11-12 14:16 US/Pacific. We have reports of Google Cloud IP addresses being erroneously advertised by internet service providers other than Google. We will provide more information by Monday, 2018-11-12 15:00 US/Pacific.

In order to understand this issue, MainOne Inc (AS37282) is peering at IXPN (Internet Exchange Point of Nigeria) in Lagos where Google (AS151169) and China Telecom (AS4809) are also members.

Google (AS15169) advertise their prefixes (more than 500) through the IXPN Route Server, where PCH (Packet Clearing House) collects a daily snapshot of BGP announcements of IXPN. Unfortunately, 212 prefixes (aggregates of those 500+ announcements) from Google were leaked, which was recorded by BGPMon and RIPEstat.

Looking at the RIPE stats it is evident Continue reading

BrandPost: Monetizing OTT Cloud Connect with SD-WAN

I’ve been spending some time the past few weeks researching the potential role of SD-WAN in enabling service providers to augment existing managed private cloud connect services with a “managed Over-The-Top (OTT) cloud connect service.”What if managed service providers could expand their managed cloud connect service offers to include an OTT Cloud Connect service powered by SD-WAN?Today, most managed service providers offer a private cloud connect service that enables enterprises to securely connect their on-net sites to their cloud-destined application traffic, leveraging the provider’s MPLS or Ethernet network. The applications are then backhauled to the closest provider PoP, where the service provider has “direct connects” to each of the major IaaS (AWS, Azure & Google Cloud) and some SaaS providers (SFDC, Oracle, SAP).To read this article in full, please click here

How a Nigerian ISP Accidentally Knocked Google Offline

How a Nigerian ISP Accidentally Knocked Google Offline

Last Monday evening — 12 November 2018 — Google and a number of other services experienced a 74 minute outage. It’s not the first time this has happened; and while there might be a temptation to assume that bad actors are at work, incidents like this only serve to demonstrate just how much frailty is involved in how packets get from one point on the Internet to another.

Our logs show that at 21:12 UTC on Monday, a Nigerian ISP, MainOne, accidentally misconfigured part of their network causing a "route leak". This resulted in Google and a number of other networks being routed over unusual network paths. Incidents like this actually happen quite frequently, but in this case, the traffic flows generated by Google users were so great that they overwhelmed the intermediary networks — resulting in numerous services (but predominantly Google) unreachable.

You might be surprised to learn that an error by an ISP somewhere in the world could result in Google and other services going offline. This blog post explains how that can happen and what the Internet community is doing to try to fix this fragility.

What Is A Route Leak, And How Does One Happen?

Continue reading

The perils of using voice commands with IoT machines

Earlier this week, German carmaker Volkswagen announced an upgrade to its VW Car-Net mobile app that lets iPhone users control their Golfs and Jettas using Siri commands. Specifically, iPhone users on iOS 12 can say, “Hey, Siri” to lock and unlock the car, check estimated range remain, flash the warning lights, and toot the horn. You can also add Shortcuts to Siri with personalized phrases to start/stop charging, defrosting, and climate controls; set the temperature; and even ask, “Where is my car?”Woo-hoo, pretty exciting right? Not in most cases, actually, but the announcement got me thinking about the limits and perils of voice commands in automotive applications.To read this article in full, please click here

The perils of using voice commands with IoT machines

Earlier this week, German carmaker Volkswagen announced an upgrade to its VW Car-Net mobile app that lets iPhone users control their Golfs and Jettas using Siri commands. Specifically, iPhone users on iOS 12 can say, “Hey, Siri” to lock and unlock the car, check estimated range remain, flash the warning lights, and toot the horn. You can also add Shortcuts to Siri with personalized phrases to start/stop charging, defrosting, and climate controls; set the temperature; and even ask, “Where is my car?”Woo-hoo, pretty exciting right? Not in most cases, actually, but the announcement got me thinking about the limits and perils of voice commands in automotive applications.To read this article in full, please click here

Mininet, ONOS, and segment routing

Leaf and spine traffic engineering using segment routing and SDN and CORD: Open-source spine-leaf Fabric describe a demonstration at the 2015 Open Networking Summit using the ONOS SDN controller and a physical network of 8 switches.

This article will describe how to emulate a leaf and spine network using Mininet and configure the ONOS segment routing application to provide equal cost multi-path (ECMP) routing of flows across the fabric. The Mininet Dashboard application running on the sFlow-RT real-time analytics platform is used to provide visibility into traffic flows across the emulated network.

First, run ONOS using Docker:
docker run --name onos --rm -p 6653:6653 -p 8181:8181 -d onosproject/onos
Use the graphical interface, http://onos:8181, to enable the OpenFlow Provider Suite, Network Config Host Provider, Network Config Link Provider, and Segment Routing applications. The screen shot above shows the resulting set of enabled services.

Next, install sFlow-RT and the Mininet Dashboard application on host with Mininet:
wget https://inmon.com/products/sFlow-RT/sflow-rt.tar.gz
tar -xvzf sflow-rt.tar.gz
./sflow-rt/get-app.sh sflow-rt mininet-dashboard
Start sFlow-RT:
./sflow-rt/start.sh
Download the sr.py script:
wget https://raw.githubusercontent.com/sflow-rt/onos-sr/master/sr.py
Start Mininet:
sudo env ONOS=10.0.0.73 mn --custom sr.py,sflow-rt/extras/sflow.py \
--link Continue reading

Download Malwarebytes Today and Protect Your Data for Free

Everyone lives on the internet, period. Whether you’re streaming a standup special on Netflix, answering emails from your boss, chatting on Tinder, or completing everyday errands like paying bills online, you’re likely spending most of your day tangled up in the world wide web. Unfortunately, that makes you a high-risk candidate for a cyber attack at some point along the way, be it through malware, phishing, or hacking. Best-case scenario, it sucks up your time to fix (or your money by paying someone else to fix it). Worst case scenario, it puts you and your computer out of commission for days and damages your files beyond repair. Not to mention the sheer terror of knowing some hacker has complete and total access to virtually everything about you, including all of your banking and credit card information. Malwarebytes is a free program built to help you avoid the above scenarios altogether — and it makes traditional antivirus look old, tired, and played out (seriously it’s free, download it here).To read this article in full, please click here

Download Malwarebytes Today and Protect Your Data for Free

Everyone lives on the internet, period. Whether you’re streaming a standup special on Netflix, answering emails from your boss, chatting on Tinder, or completing everyday errands like paying bills online, you’re likely spending most of your day tangled up in the world wide web. Unfortunately, that makes you a high-risk candidate for a cyber attack at some point along the way, be it through malware, phishing, or hacking. Best-case scenario, it sucks up your time to fix (or your money by paying someone else to fix it). Worst case scenario, it puts you and your computer out of commission for days and damages your files beyond repair. Not to mention the sheer terror of knowing some hacker has complete and total access to virtually everything about you, including all of your banking and credit card information. Malwarebytes is a free program built to help you avoid the above scenarios altogether — and it makes traditional antivirus look old, tired, and played out (seriously it’s free, download it here).To read this article in full, please click here

Intent Based Networking , Is it the next big thing ?

Nowadays there are some technologies which every vendor talk about. SD-WAN is very hot topic but another one is Intent Based Networking.      There is always ‘ next big thing ‘ in networking. You might hear different terms , such as Self Driven Networking , Intent Driven Networking , Intent Based networking. Indeed, all […]

The post Intent Based Networking , Is it the next big thing ? appeared first on Cisco Network Design and Architecture | CCDE Bootcamp | orhanergun.net.

In Azacualpa, Honduras: “Smart Communities” Help Preserve Collective Memory

Access to the Internet can change people’s lives for the better. This is particularly true when communities take ownership of that access and take full advantage of it to improve their quality of life. This has been the case in the community of Azacualpa, a village in Intibucá in Honduras.

In Azacualpa, the members of the community took on the task of developing and implementing the project “Smart Communities” in order to reduce the digital divide – and preserve their collective memory. The project, which is part of the Internet Society’s Beyond the Net program, finds its origin in “Radio Azacualpa – The Voice of Women,” a community radio station that started in 2017.

By 2018, Smart Communities expanded its reach by impacting the nearly 400 families that inhabit the Azacualpa Valley. To achieve its objectives, the team divided the tasks into three main groups: administrative aspects, project governance, and technical aspects. The three working groups were accompanied by the Honduras Chapter of the Internet Society and the organization Sustainable Development Network Honduras (RDS-HN).

The participation of the community was fundamental. In addition to promoting a consultation with the community, the project facilitators promoted training in communications so that community Continue reading

RHEL 8 Beta arrives with application streams and more

The leading enterprise Linux platform is now available in a new and highly innovative Beta release. Among other highlights that promise a transformation of business IT well into the future, Red Hat Enterprise Linux 8 Beta: Introduces application streams separating user space packages from core kernel operations and making it easier to update user packages without requiring major version updates of the OS itself. Provides security updates with both OpenSSL 1.1.1 and TLS 1.3 supported. Includes Composer to make it easier for both new and experienced Red Hat Enterprise Linux users to build and deploy custom images across the hybrid cloud. Adds Stratis — a new volume-management file system that is faster, more efficient and easier to manage than its predecessors. Much of the impetus for RHEL 8 has been the growing need for a common foundation that can span every IT stronghold from the data center to multiple public clouds and make application delivery a lot more manageable. Four years have passed since RHEL 7 came our way, and so much has changed in the world of IT since then, with continued virtualization and containerization along with a growing need for rapid deployment.To read Continue reading