BGP Flowspec redirect with ExaBGP
I’ve been busy as hell since the summer, not had much time to work on blog posts – but it’s all been good work! I also got a new job working for Riot Games, (Makers of the worlds largest online multiplayer game – league of legends) which has been totally fantastic.
This post is about BGP Flowspec, specifically how we can now more easily redirect traffic to a scrubbing appliance, it’s common for a device such as an Arbor TMS, or some other type of filtering box, to be installed close to the network edge, it could be a linux box full of filters, a DPI box, anything that might be useful in terms of performing traffic verification or enforcement.
In the event that a DDOS event occurs, it’s possible to redirect suspect traffic, or traffic to a specific victim host, through an appliance where it can be dropped or permitted.
Traditionally this has been done with Layer-3 VPNS, where ingress traffic from the internet is punted into a “Dirty VRF” it’s then forced through a mitigation appliance where it’s either dropped, or permitted – where it returns back into the same router but in a new “Clean VRF”
How to Become a Better Networking Engineer
Got an interesting set of questions from one of my readers. He started with:
I really like networks but I don't know if I am doing enough for this community. Most of my work is involved with technologies which are already discovered by people and I am not really satisfied with it.
Well, first you want to decide whether you want to be (primarily) a researcher (focusing on discovering new stuff), an engineer (mostly figuring out how to build useful things by using existing stuff), or an administrator (configuring stuff).
Read more ...Red Hat Doubles Down on Containers with $250M CoreOS Acquisition
The deal is set to bolster Red Hat's OpenShift and enterprise focus.
Cumulus content roundup: February
We’ve made it through the first month of the year, and the future of networking is looking bright — but is your data center ready for the brave new world? In this content roundup, we’re giving out the latest articles, videos and reports so you’re ready for 2018 and not left behind in twenty late-teen. There’s no time to waste! Get started on your data center upgrade today.
What’s new from Cumulus:
Cumulus Networks: What we do: Looking for an overview of who we are and what we’re working towards? We’ve got you covered. Watch this video for more information about our mission and our products, and share it with anyone else who wants to know what we’re all about.
Getting started with Linux: the basics – part 1: Everyone has to start their journey with Linux somewhere, so why not start here? This three part blog series about the basics of Linux networking teaches you everything you need. Check out part one to start learning the language of the data center.
Understanding Linux internetworking: Let’s say you’ve already got the hang of the basics of Linux. What’s the next step, and how can you take your Continue reading
Nuage Networks Q&A: The 5 Key Success Factors on your Digital Transformation Journey for the WAN and Beyond
Thanks to all who joined us for the Nuage Networks webinar: The 5 Key Success Factors on your Digital Transformation Journey for the WAN and Beyond. With over 20 SD-WAN solutions in the market it is increasingly difficult to select the right one. Nuage Networks provided an evaluation framework that can be used to not... Read more →
ExtraHop Makes its Security Status Official with Reveal(x)
Security has been ExtraHop customers’ top use case for its real-time analytics software.
3 Ways Mobile Operators Can Give MEC An Edge
5G and mobile edge computing are inextricably linked and will herald a new wave of innovation.
Hyperledger Sawtooth 1.0 Includes Unique Consensus Software
Sawtooth supporters include Intel, AWS, Ericsson, Huawei, IBM, and Microsoft Azure.
Verizon Sets Table With Calix Gear for NG-PON2 Deployment
The carrier claims the technology is a better long-term solution than other options.
Giving the Monkey a Smaller Club
Over at the ACM blog, there is a terrific article about software design that has direct application to network design and architecture.
What do monkeys and clubs have to do with software or network design? The primary point of interaction is security. The club you intend to make your network operator’s life easier is also a club an attacker can use to break into your network, or damage its operation. Clubs are just that way. If you think of the collection of tools as not just tools, but also as an attack surface, you can immediately see the correlation between the available tools and the attack surface. One way to increase security is to reduce the attack surface, and one way to reduce the attack surface is tools, reduce the number of tools—or the club.
The best way to reduce the attack surface of a piece of software is to remove any unnecessary code.
Consider this: the components of any network are actually made up of code. So to translate this to Continue reading
VMware Cuts 159 Employees Amid Dell Technologies Buyout Rumors
The job cuts come amid rumors that Dell Technologies is considering buying VMware — or that VMware may acquire Dell Technologies.
Short Take – Why Does History Matter
Why is it important to look backwards, when our entire industry is looking forward. This is Jordan’s take on why history matters.
The post Short Take – Why Does History Matter appeared first on Network Collective.