The DNS Negative Cache

Considering the DNS query chain—

• A host queries a local recursive server to find out about banana.example
• The server queries the root server, then recursively the authoritative server, looking for this domain name
• banana.example does not exist

There are two possible responses in this chain of queries, actually. .example might not exist at all. In this case, the root server will return a server not found error. On the other hand, .example might exist, but banana.example might not exist; in this case, the authoritative server is going to return an NXDOMAIN record indicating the subdomain does not exist.

Assume another hosts, a few moments later, also queries for banana.example. Should the recursive server request the same information all over again for this second query? It will unless it caches the failure of the first query—this is the negative cache. This negative cache reduces load on the overall system, but it can also be considered a bug.

Take, for instance, the case where you set up a new server, assign it banana.example, jump to a host and try to connect to the new server before the new DNS information has been propagated through the system. On Continue reading

Verizon to Use KSI Blockchain Technology Developed for Estonia

Verizon is planning to offer blockchain services for enterprises.

AI and Rules Drive Deepfence App-Focused Container Security

The company's approach is to diffuse an attack before it explodes.

Cradlepoint Brings SD-WAN to LTE Networks for First Responders, Fleets

The modem supports two concurrent LTE connections from two different operators.

Dell EMC Lets Enterprises Mix and Match Storage with Cisco Compute

The converged infrastructure offers pooled resources and greater scalability.

Full Stack Journey 018: Istio, Envoy & Service Meshes

Full Stack Journey 018: Istio, Envoy & Service Meshes

Today's Full Stack Journey dives into Istio, Envoy & service meshes with guest Shannon McFarland.

The post Full Stack Journey 018: Istio, Envoy & Service Meshes appeared first on Packet Pushers.

Worth Reading: Containers will not fix your culture problem

According to noted thought leader Jane Austen, it is a truth universally acknowledged that a techie in possession of any production code whatsoever must be in want of a container platform. Or is it? —Bridget Kromhout @ACM Queue

Address 5G Traffic Growth with Dell EMC and VMware

A new solution brief from Dell EMC and VMware discusses an innovative turnkey solution—Dell EMC NFV Ready Bundle for VMware—that is optimized to simplify and accelerate production deployments.

Demand for managed SD-WAN services skyrockets

Demand for SD-WAN delivered as a managed service is exploding as customers see the benefits that SD-WAN can bring to their distributed organizations.For example, communications service providers (CSPs) such as Verizon, NTT, and BT all report strong demand for SD-WAN services. Plus, hundreds of other CSPs, cable providers (e.g. Comcast), managed service providers (MSPs), and system integrators have recently deployed new SD-WAN services.Also on Network World: SD-WAN: What is it and why you’ll use it one day | How to make the transition to SD-WAN We also see that managed SD-WAN revenues are growing rapidly as they displace traditional managed WAN services (e.g. private lines and MPLS) — an addressable market of over $40 billion in business services.To read this article in full, please click here

Demand for managed SD-WAN services skyrockets

Demand for SD-WAN delivered as a managed service is exploding as customers see the benefits that SD-WAN can bring to their distributed organizations.For example, communications service providers (CSPs) such as Verizon, NTT, and BT all report strong demand for SD-WAN services. Plus, hundreds of other CSPs, cable providers (e.g. Comcast), managed service providers (MSPs), and system integrators have recently deployed new SD-WAN services.Also on Network World: SD-WAN: What is it and why you’ll use it one day | How to make the transition to SD-WAN We also see that managed SD-WAN revenues are growing rapidly as they displace traditional managed WAN services (e.g. private lines and MPLS) — an addressable market of over $40 billion in business services.To read this article in full, please click here

Cloud Security Alliance Puts ERP Applications in its Crosshairs

Future CSA papers will address SAP and Oracle ERP security.

CommScope Virtualizes the Baseband Radio for In-Building Wireless

This means it can add capacity without having to physically move hardware.

Segment Routing and the SRv6 Network Programming

The post Segment Routing and the SRv6 Network Programming appeared first on Noction.

Navigating the Evolving SD-WAN Market

BrandPost: The New SD-WAN Edge Enables Improved Security Architectures

With the beginning of the new year, it’s popular to opine on what the new year might bring in terms of technology advances. My predictions for the WAN in 2018 have been covered in several publications here, here and here. In this blog, I’m going to expand on one of my predictions: how the new WAN edge enables improved security architectures. I believe there are three primary ways the new WAN edge will enable improved security architectures for enterprises building an SD-WAN.To read this article in full, please click here

How to test wireless M2M IoT devices for network readiness

Machine-to-machine (M2M) communication is a significant and growing subset of the larger Internet of Things (IoT) movement, so you have to ask, “Is my network ready for machine-to-machine (M2M) devices?”To read this article in full, please click here(Insider Story)

How to test wireless M2M IoT devices for network readiness

Machine-to-machine (M2M) communication is a significant and growing subset of the larger Internet of Things (IoT) movement, so you have to ask, “Is my network ready for machine-to-machine (M2M) devices?”To read this article in full, please click here(Insider Story)

EVPN Is More than VPLS on Steroids

Tiziano Tofoni wrote a lengthy comment on my EVPN in small data center fabrics blog post continuing the excellent discussion we started over a beer last October. Today I’ll address the first part:

I think that EVPN is an excellent standard for those who love Layer 2 (L2) services, we may say that it is an evolution of the implementation of the VPLS service, which addresses some limits in the original standard (RFCs 4761 and 4762).

I might be missing something, but in my opinion there’s no similarity between EVPN and VPLS (apart from the fact that they’re trying to solve the same problem).

Marhaba Beirut! Cloudflare’s 121st location – مرحبا بيروت! موقع “كلاودفلار” ال ١٢١

Lebanon is a historic country, home to two cities among the oldest in the world. There’s a vast mix of influences from the East and West. It’s also the smallest country in continental Asia.

لبنان بلد تاريخي، موطن مدينتين من بين أقدم المدن في العالم. هناك مزيج كبير من التأثيرات من الشرق والغرب. كما أنه أصغر .بلد في آسيا القارية

CC-BY-SA Gregor Rom

Lebanon’s connection to the Internet

Lebanon is a little different to most other countries when it comes to the internet, with all connectivity to the outside world flowing via a single network, Ogero. Traffic to Lebanon was previously served from our existing deployments in Marseille and Paris, due to where Ogero connects to the rest of the internet. By deploying locally in Beirut, round-trip latency is cut by around 50 milliseconds. This might seem like almost nothing, but it adds up when you factor in a DNS lookup and 3-way handshake required to open a TCP connection. Internet penetration in Lebanon according to different sources is around 75%, which is quite high. However, the speed available to end users is low, typically in single digit megabits per second.

The Ministry of Telecommunications has an ambitious plan to Continue reading