Why Spanning Tree Is Important: A Demo
In this video, David Bombal shows you how Spanning Tree Protocol is essential for most layer 2 switched networks.
Upcoming Webinars and Events: Autumn 2018
On Tuesday I had the last webinar in spring 2018. One more online course session and it will be time for long summer break. In the meantime, we’re already planning the autumn events:
- We’ll start with Lean Start in Network Automation workshop in Zurich, Switzerland, on August 30th. Register here.
- Building Network Automation Solutions online course starts on September 20th.
We also have the first webinars scheduled:
- We’ll start with two introductory webinars: SDDC 101 on August 28th and SD-WAN Overview on September 4th.
- The first session of technical deep dive into VMware NSX will be on September 11th.
- Amazon Web Service Networking workshop was a huge success, and we’ll turn it into a webinar in early October.
- There will be an interesting math-focused webinar on October 8th;
- Dinesh Dutt will talk about fabric troubleshooting in mid-November;
You can attend all these webinars with an ipSpace.net webinar subscription.
Create a nested virtual machine in a Microsoft Azure Linux VM
Microsoft Azure unofficially supports nested virtualization using KVM on Linux virtual machines, which makes it possible to build network emulation scenarios in the cloud using the same technologies you would use if you were using your own PC or a local server.
In this post, I will show you how to set up a Linux virtual machine in Microsoft Azure and then create a nested virtual machine inside the Azure virtual machine. This is a simple example, but you may use the same procedure as a starting point to create more complex network emulation scenarios using nested virtualization.
Prerequisites
To follow this tutorial, you need an Azure account. Microsoft offers a free-trial period that provides up to $300 in credits for up to 30 days. Creating a free trial account is easy: follow the instructions at: https://azure.microsoft.com/free.
If you have not used MS Azure before, I recommend the free training offered on their web site. The first course you should take is the beginner-level Azure Administrator course, which demonstrates all the basic topics you will need to understands when managing virtual machines in Azure.
In this tutorial, I will use the Azure CLI to create and manage Continue reading
Serverless SDN – Network Engineering Analysis of Appswitch
Virtual networking has been one of the hottest areas of research and development in recent years. Kubernetes alone has, at the time of writing, 20 different networking plugins, some of which can be combined to build even more plugins. However, if we dig a bit deeper, most of these plugins and solutions are built out of two very simple constructs:
- a virtual switch - anything from a linux bridge through VPP and IOVisor to OVS
- ACL/NAT - most commonly implemented as iptables, with anything from netfilter to eBPF under the hood
Note1: for the purpose of this article I won’t consider service meshes as a network solution, although it clearly is one, simply because it operates higher than TCP/IP and ultimately still requires network plumbing to be in place
If those look familiar, you’re not mistaken, they are the same exact things that were used to connect VMs together and enforce network security policies at the dawn of SDN era almost a decade ago. Although some of these technologies have gone a long way in both features and performance, they still treat containers the same way they treated VMs. There are a few exceptions that don’t involve the above Continue reading
Argo Tunnels: Spread the Load
We recently announced Argo Tunnel which allows you to deploy your applications anywhere, even if your webserver is sitting behind a NAT or firewall. Now, with support for load balancing, you can spread the traffic across your tunnels.
A Quick Argo Tunnel Recap
Argo Tunnel allows you to expose your web server to the internet without having to open routes in your firewall or setup dedicated routes. Your servers stay safe inside your infrastructure. All you need to do is install cloudflared (our open source agent) and point it to your server. cloudflared will establish secure connections to our global network and securely forward requests to your service. Since cloudflared initializes the connection, you don't need to open a hole in your firewall or create a complex routing policy. Think of it as a lightweight GRE tunnel from Cloudflare to your server.
Tunnels and Load Balancers
CC BY-NC-ND 2.0 image by Carey Lyons
If you are running a simple service as a proof of concept or for local development, a single Argo Tunnel can be enough. For real-world deployments though, you almost always want multiple instances of your service running on seperate machines, availability zones, or even countries. Cloudflare’s Continue reading
HPE CEO: Software-Defined Is a Gimmick. We Have Edge to Cloud
Antonio Neri says software defined is just a means to deliver a true edge-to-cloud architecture. He says HPE can deliver, but Dell can’t.
NGINX Series C Gathers $43M from Goldman Sachs
The company is looking to boost its product offerings based on its NGINX Plus platform, as well as target Kubernetes and Istio.
Working Together with APNIC on Routing Security and MANRS in Asia Pacific
The Internet Society and APNIC signed a Memorandum of Understanding (MoU) to cooperate in supporting the MANRS initiative in the Asia Pacific Region. Paul Wilson (APNIC) and Rajnesh Singh (ISOC) signed the MoU in Brisbane, Australia on 13 June 2018.
It’s an exciting moment for everyone who believes that Internet routing security issues can be resolved through collaboration, providing limitless opportunities for good. The MoU formalises the existing long-term relationship between the two organizations to have a global, open, stable and secure Internet.
The MoU focuses on capacity building to undertake initiatives and activities to promote awareness of MANRS in the Asia-Pacific region, to cooperate and render mutual assistance, and to encourage the attendance of APNIC members to meetings, seminars, workshops and/or conferences on routing security.
Both organizations have agreed to exchange research information and training materials (whether printed, audio or visual) related to routing security in general. APNIC has a proven record of delivering hands-on and online quality training and providing analytical research data.
We look forward to welcoming more MANRS members from the Asia Pacific region, and working together with APNIC to improve routing security around the world.
The post Working Together with APNIC on Routing Security and Continue reading
Aruba Networks Joins The SD-WAN Crowd With SD-Branch Release
Don't call it an SD-WAN: Aruba Networks thinks bigger with its SD-Branch announcement, but also asks more of potential customers.Full Stack Journey 022: Site Reliability Engineering (SRE) With Michael Kehoe
Site Reliability Engineering (SRE) is the topic for the latest Full Stack Journey podcast. Guest Michael Kehoe explores SRE, its relationship w/ DevOps, essential skills, and more.
The post Full Stack Journey 022: Site Reliability Engineering (SRE) With Michael Kehoe appeared first on Packet Pushers.
Full Stack Journey 022: Site Reliability Engineering (SRE) With Michael Kehoe
Site Reliability Engineering (SRE) is the topic for the latest Full Stack Journey podcast. Guest Michael Kehoe explores SRE, its relationship w/ DevOps, essential skills, and more.
HPE Edge Systems Run Enterprise Software from Microsoft, VMware, and Others
HPE also added more software-defined storage to its edge devices. This enables use cases like AI, video analytics, or databases at the edge.
Spanish ISP Replaces Cisco Hardware Routers With 6WIND vRouter
Minorisa’s main reason for switching from Cisco and MikroTik to 6WIND and white box hardware was the higher throughput and the ability to transition to SDN.
The 6 Best Practices for Object Storage Deployment
As IT managers grapple with the growing volumes of unstructured data, object storage has emerged as a way to address the resulting challenges.
London to be Center of EE, Vodafone 5G Deployment Battle
EE's current 5G trial plans include just London, while Vodafone's plans include trials in seven markets by year-end.
GitHub Microsoft – It’s OK
Microsoft buys GitHub, and most of the press has been pretty positive, even from those you might not expect.
But , of course there’s the usual herp-derp comments, and a big spike in moving repos to Gitlab
We're seeing 10x the normal daily amount of repositories #movingtogitlab https://t.co/7AWH7BmMvM We're scaling our fleet to try to stay up. Follow the progress on https://t.co/hN0ce379SC and @movingtogitlab
— GitLab (@gitlab) June 3, 2018
Most of those repositories will be inconsequential single-user repos, but it is still so much wasted effort. If your knee-jerk reaction is to immediately stop doing real work, and move your code somewhere else, you haven’t been paying attention. The world has moved on.
Back in 2014 I wrote Keep an Open Mind:
I get frustrated because these people aren’t paying attention to what Microsoft has been doing. They have come a very long way since the 2002 Bill Gates email setting security as the top priority. It’s a big ship to turn, and it took time. Their overall security model and practices are far better than they were, and stability is no longer an issue. Their business strategy is very different now too.
But poor Continue reading