Archive

Category Archives for "Networking"

BGP Unnumbered Overview

The Border Gateway Protocol (BGP) is an IP reachability protocol that you can use to exchange IP prefixes. Traditionally, one of the nuisances of configuring BGP is that if you want to exchange IPv4 prefixes you have to configure an IPv4 address for each BGP peer. In a large network, this can consume a lot of your address space, requiring a separate IP address for each peer-facing interface.

BGP Over IPv4 Interfaces

To understand where BGP unnumbered fits in, it helps to understand how BGP has historically worked over IPv4. Peers connect via IPv4 over TCP port 179. Once they’ve established a session, they exchange prefixes. When a BGP peer advertises an IPv4 prefix, it must include an IPv4 next hop address, which is usually the address of the advertising router. This requires, of course, that each BGP peer has an IPv4 address.

As a simple example, using the Cumulus Reference Topology, let’s configure BGP peerings as follows:

Between spine01 (AS 65020, 10.1.0.0/31) and leaf01 (AS 65011, 10.1.0.1/31)

Between spine01 (10.1.0.4/31) and leaf02 (AS 65012, 10.1.0.5/31)

Leaf01 will advertise the prefix 192.0.2.1/32 and leaf02 will Continue reading

Fight for net neutrality rules gains momentum

The U.S. Supreme Court has officially ended the court fight over the repealed net neutrality rules that required internet providers to treat all online traffic equally.On Nov. 5, 2018, the court rejected appeals from the telecommunications industry seeking to throw out a lower court ruling in favor of the net neutrality rules. The Federal Communications Commission (FCC) under President Donald Trump has rolled back the rules, but the industry also wanted to completely remove the lower court’s ruling off the books.The Supreme Court's decision is a victory for advocates of net neutrality rules, as supporters hope this will push Congress to enact new net neutrality laws or encourage other states to follow California’s lead by instituting their own requirements.To read this article in full, please click here

Internet Hall of Fame Nominations Open 1 January

Do you know someone who has played a major role in the development and advancement of the Internet? On 1 January 2019, the Internet Hall of Fame will open nominations for its 2019 class of inductees.

The Internet Hall of Fame was launched in 2012 by the Internet Society. With more than 100 inductees, the Internet Hall of Fame celebrates Internet pioneers and innovators from around the world who have helped change the way we live and work today. Their trailblazing accomplishments are as broad and diverse as the Internet itself; expanding the Internet’s benefits into new regions and communities, and creating new technologies and standards that were foundational to the Internet’s development and expansion.

The Internet Hall of Fame recognizes:

  • Individuals who were instrumental in the design and development of the Internet with exceptional achievements that impacted the Internet’s global advancement and evolution; or
  • Individuals who made outstanding technological, commercial, or other advances and helped to expand the Internet’s positive impact on the lives of others; or
  • Individuals who made major contributions to the growth, connectivity, and use of the Internet, either on a global scale or within a specific region that resulted in global impact.

If you know Continue reading

Tariffs on China cause new data center equipment prices to increase

As if the end of the year doesn’t present enough challenges for IT professionals, now there is the added concern coming from the Trump administration regarding the tariffs that were imposed on China back on Sept. 24.Companies including Cisco, Dell, HPE, and Juniper Networks all called for networking and server equipment to be dropped from the tariff regulations, but they were unable to persuade the U.S. government to do that.“By raising the cost of networking products, the proposed duties would impede the development and adoption of cloud-based services and infrastructure,” the group told trade regulators before the tariff was imposed, according to Reuters.To read this article in full, please click here

Tariffs on China cause new data center equipment prices to increase

As if the end of the year doesn’t present enough challenges for IT professionals, now there is the added concern coming from the Trump administration regarding the tariffs that were imposed on China back on Sept. 24.Companies including Cisco, Dell, HPE, and Juniper Networks all called for networking and server equipment to be dropped from the tariff regulations, but they were unable to persuade the U.S. government to do that.“By raising the cost of networking products, the proposed duties would impede the development and adoption of cloud-based services and infrastructure,” the group told trade regulators before the tariff was imposed, according to Reuters.To read this article in full, please click here

What’s hot in network certifications

Network certifications typically serve as a litmus test of a network professional’s knowledge of technologies that most company already use. Increasingly, however, network professionals are looking beyond what is, and they’re getting a leg up on certifications that will set them apart from their peers in the near future.To read this article in full, please click here(Insider Story)

What’s hot in network certifications

Network certifications typically serve as a litmus test of a network professional’s knowledge of technologies that most company already use. Increasingly, however, network professionals are looking beyond what is, and they’re getting a leg up on certifications that will set them apart from their peers in the near future.To read this article in full, please click here(Insider Story)

What’s hot in network certifications

Network certifications typically serve as a litmus test of a network professional’s knowledge of technologies that most company already use. Increasingly, however, network professionals are looking beyond what is, and they’re getting a leg up on certifications that will set them apart from their peers in the near future.To read this article in full, please click here(Insider Story)

Juniper RADIUS-delivered switching filters

I’ve been experimenting with getting RADIUS to deploy switching filters to Juniper switches recently, as part of a reference architecture demo.  The concept is called REACH2020 and combines network virtualisation with the ability to identify network users and devices so that categories of user can be put into different virtual networks.   This leaves the firewall that connects the virtual networks together as a convenient single point of control.

Anyway, back to the matter in hand.  It turns out there’s a limit to the length of switching filter you can send a Juniper EX.

In this case, I am using Aruba Clearpass 6.6 to send some RADIUS attributes to a Juniper EX4300 switch using Junos 17.4.     What I need to do is send a web portal address that a connecting client will be redirected to, and a switching filter so that they can’t go anywhere other than the portal. The switching filter is required as far as I can tell – if you just send the portal address, Junos ignores the RADIUS attribute.

An alternative way of achieving this is to configure your centralised web authentication (CWA) web portal on every edge switch, but since RADIUS Continue reading

Upcoming Webinars and Events: November 2018

The last two months of 2018 will be jam-packed with webinars and on-site events:

December will be a storage, EVPN and SDN month:

Read more ...