VRF route leaking: time to get a little more social!
Virtual Routing and Forwarding (VRF) is a ubiquitous concept in networking, first introduced in the late 1990s as the control and data plane mechanism to provide traffic isolation at layer 3 over a shared network infrastructure. VRF for Linux is an excellent blog that describes the technology behind VRFs, especially as it pertains to the Linux kernel. With the introduction of support for leaking of routes, VRFs get to enjoy their isolation while also having the nous to mix and mingle.
Wait, aren’t VRFs meant to be completely isolated?
You have a valid question there. That was certainly the initial use case for VRFs. Each VRF was intended to represent a customer of a service provider and isolation was a fundamental tenet. Each VRF had its own routing protocol sessions and IPv4 and IPv6 routing tables and route computation as well as packet forwarding was independent from other VRFs. All communication stayed within the VRF other than specific scenarios such as reaching the Internet. Hershey’s wouldn’t want to get too chatty with Lindt, right? No, VRFs weren’t meant to be gregarious.
As VRFs moved outside the realm of the service provider and started finding application elsewhere, such as in the Continue reading
Check Out Our New Software Testing Course – Software Testing QA: A Comprehensive Overview
Instructor: Justin Spears
Course Duration: 1hr 45min
About the Course
The modern accessibility of public, private and hybrid cloud environments has led rise to a bastion of cloud-centric practices. One of the most notable is the idea of QA and Testing in the cloud. This course will describe the concepts, methodologies and implementations of testing in a cloud environment. We will go through the full software QA lifecycle and describe where and how each component of that lifecycle can be offloaded into the cloud and further describe methods and mechanisms on how to do so effectively.
Huawei and InfoVista Partner to Improve SD-WAN User Experience
InfoVista’s VNF will be added to Huawei’s open SD-WAN service to support application monitoring and delivery capabilities, WAN optimization, and analytics.
New ‘Lazy FPU’ Chip Flaw Hits Intel Processors
Similar to the earlier Spectre and Meltdown bugs the new security flaw could allow access to sensitive data through a side channel. Intel ranks it as a “moderate” vulnerability.
Citrix’s Karl Brown Discusses the Importance of Real-Time and Dynamic Applications in Managed SD-WAN
In this interview, Karl Brown, senior director of product management for the Citrix NetScaler SD-WAN platform, talks about Citrix’s approach to SD-WAN.
History of Networking: The History of Email (part 1)
In this episode of the History of Networking, we sit with Steve Crocker to discuss the history of email. This was a long session, so we split it up into two episodes; the next episode should be published next week.
3GPP Hits Another 5G Milestone by Approving 5G SA
This latest specification means that operators can deploy 5G without being dependent upon an underlying 4G LTE network.
Veea Snaps Up MEC Platform Provider Virtuosys to Boost IoT Play
Virtuosys' software relies on containers to support and secure applications. That use is similar to a cloud deployment using VMs for greater efficiency, but uses containers because VMs were considered too "heavy" to work at the edge.
New Video Explains Routing Security and How MANRS Can Help
Routing security can be a difficult topic to explain. It’s technical. It’s filled with industry jargon and acronyms. It’s, well, nerdy. But routing security is vital to a stable and secure future Internet, and we here at the Internet Society have been supporting the Mutually Agreed Norms for Routing Security (MANRS) initiative for several years now. To help explain, at a very high level, some of the major routing security issues and how MANRS can help address them, we’re pleased to announce a new explanatory video.
Available with English, French, and Spanish subtitles, this short new video explains three major incidents that can lead to things like denial of service attacks, surveillance, and lost revenue:
- Route Hijacking – when one network operator or attacker impersonates another
- Route Leak – when a network operator unintentionally announces that it has a route to a destination
- IP Address Spoofing – when fake source IP addresses hide a sender’s identity
Network operators of all sizes have a role to play in securing the Internet’s routing infrastructure. By implementing the four simple MANRS Actions, together we can make significant improvements to reduce the most common routing threats. Those four actions are:
- Filtering – making Continue reading
Why SD-WAN Won’t Kill MPLS
The idea that SD-WAN will make MPLS obsolete plays on the frustrations of enterprise IT professionals that are dissatisfied with their current WAN provider and want to kick them to the curb.