Networking Archives - Page 1525 of 3464

Enhancing NSX with Check Point vSEC

While VMware NSX enables micro-segmentation of the Software Defined Data Center, it mostly polices traffic in layers 3 and 4, with only limited application level (layer 7) support. Sometimes additional layers of protection are needed for use cases such as Secure DMZ or meeting regulatory compliance requirements like PCI, in which case partner solutions can be added to the platform, with traffic steered into the supplemental solution prior to reaching the vSwitch (virtual wire). The resulting combination is high throughput due to the scale-out nature of NSX, but can also provide deep traffic analysis from the partner solution.

The usual enemy of deep traffic inspection in the data center is bandwidth. NSX addresses this issue, micro-segmentation security policy is zero trust – only traffic explicitly permitted out of a VM can pass, then steering policy to 3rd party solutions can be designed in order that bulk protocols such as storage and backup bypass them, leaving a more manageable amount of traffic for Check Point vSEC to provide IPS, anti-virus and anti-malware protection on, including Check Point’s Sandblast Zero-Day Protection against zero day attacks.

The connection between vSEC and NSX enables dynamic threat tagging, where traffic from an VM reaches Continue reading

VMware Cuts ‘Small’ Number of Jobs as Part of Business Realignment

No word on how many employees were laid off.

Today’s Mobile Networks Demand Virtual Functionality & Data Analytics

Telecom operators need new network monitoring tools. Although mobile core networks are increasingly virtualized—through powerful and flexible technologies such as Network Functions Virtualization (NFV) and Software-Defined Networking (SDN) —network monitoring and analytics functions have only recently started to be virtualized. Stand-alone virtual probes still require mirroring of all the traffic which in turn impacts performance... Read more →

Worth Reading: BGP as intent based networking

It’s interesting how the same pundits who loudly complain about the complexities of BGP (and how it will be dead any time soon and replaced by an SDN miracle) also praise the beauties of intent-based networking… without realizing that the hated BGP route selection process represents one of the first failures of intent-based approach to networking. —Ivan Pepelnjak @ ipSpace

Datanauts 116: Understanding VXLAN Networking

The Datanauts dive into VXLAN networking with guest Lukas Krattiger. We explore how it works, discuss use cases, and examine how hosts inside a VXLAN network communicate with end points on the outside. The post Datanauts 116: Understanding VXLAN Networking appeared first on Packet Pushers.

Episode 19 – BGP: Traffic Engineering

In this Community Roundtable episode, returning guests Russ White and Nick Russo continue our three part deep dive into the Border Gateway Protocol, or BGP, with a look at the mechanisms within the protocol to perform traffic engineering.

Show Notes

Influence Ingress

Classic bestpath options to influence ingress
AS-path prepend outbound to influence inbound traffic
- Why AS Path prepend doesn’t always work
  - In many areas, ISPs are in a full or almost full mesh and connected to common backbones making AS Path prepend largely irrelevant
  - Providers normally use their own local preference for outbound traffic back to a customer
- MED
  - MED is a hint, it’s often stripped or ignored
  - MED only works if the AS Path is the same on all routes
  - MED is non-transitive and doesn’t mean anything beyond the next hop
- - Longest Match
    - Be careful about this, as it pollutes the DFZ
      - DFZ = default free zone
        
        A router belongs to the DFZ if it doesn’t need a 0.0.0.0 route to reach everything on the internet
    - Tragedy of the commons here
      - An enterprise can force inbound traffic to be load-balanced better but it pushes the processing of that traffic engineering onto the internet
    - This is Continue reading

Anker’s Twin USB High Speed Car Phone Charger Is Just $8.99 Right Now

The PowerDrive 2 Elite from Anker is super compact, and can simultaneously charge 2 devices with the fastest possible charge of up to 2.4 amps per port. A soft blue LED light makes it easier to navigate in the dark. 10 safety mechanisms are built in to protect your devices from surge and temperature fluctuations, and an 18-month warranty is included for additional peace of mind.Although we haven't reviewed this model, our PCWorld team test drove the beefier PowerDrive Speed 2 model and found that it delivered on its promises (See: "Anker PowerDrive Speed 2 car charger review: Anker lights the way").To read this article in full, please click here

Is Cisco’s Mobility Express right for you?

One of the hottest topics on the minds of our customers for 2018 continues to be their wireless infrastructure. As WLAN 802.11ac wave 2 devices becoming mainstream, Cisco has placed a stake in the ground claiming to be the “value leader.”Cisco's solution to accomplish this is Mobility Express, designed to help companies easily set up wireless LAN (WLAN) networks. What exactly is Mobility Express? And is it right for you?What is Mobility Express? Mobility Express is the ability to use an access point (AP) as a controller. That means a lightweight network without a controller box. Instead one of the APs on the network acts as the controller. Here is how Cisco describes it:To read this article in full, please click here

Is Cisco’s Mobility Express right for you?

Cisco Encrypted Traffic Analytics Pushes Threat Detection to Branch Offices

The technology can detect malware in encrypted traffic without decryption.

Does Hyperconverged Infrastructure Save Money?

Hyperconverged infrastructure vendors always tout the technology's cost efficiency, arguing that HCI reduces costs because it requires less administrative burden. In this video, Keith Townsend, principal at The CTO Advisor and Interop ITX infrastructure chair, examines whether hyperconvergence really costs less than traditional three-tier IT infrastructure.

8 Things to Know About the Container Stack

Get up to speed on the rapidly evolving world of containers.

Fat Fingers Strike Again…

Level3 had a pretty bad bad-hair-day just a day before Pete Lumbis talked about Continuous Integration on the Building Network Automation Solutions online course (yes, it was a great lead-in for Pete).

According to messages circulating on mailing lists it was all caused by a fumbled configuration attempt. My wild guess: someone deleting the wrong route map, causing routes that should have been tagged with no-export escape into the wider Internet.

Software Licensing for NFV Could Get Ugly

Some existing licensing models include perpetual, pre-pay, post-pay, pay-per-use, and pay-per-GByte.

Deadline of Feb 1 for Nominations for Public Interest Registry (.ORG Operator) Board of Directors

Would you be interested in helping guide the future of the Public Interest Registry (PIR), the non-profit operator of the .ORG, .NGO and .ONG domains? If so, the Internet Society is seeking nominations for three positions on the PIR Board of Directors. The nominations deadline is 23:00 UTC on Thursday, February 1, 2018.

More information about the positions and the required qualifications can be found at: https://www.internetsociety.org/pir/call-for-nominations/

As noted on that page:

The Internet Society is now accepting nominations for the Board of Directors of the Public Interest Registry (PIR). PIR’s business is to manage the international registry of .org, .ngo, and .ong domain names, as well as associated Internationalized Domain Names (IDNs).

In 2018 there are three positions opening on the PIR Board. Two directors will serve a 3-year term that begins mid-year 2018 and expires mid-year 2021. One director will fill a vacant seat as soon as practical and serve until mid-year 2020.

If you are interested in being considered as a candidate, please see the form to submit toward the bottom of the call for nominations page.

The post Deadline of Feb 1 for Nominations for Public Interest Registry (.ORG Operator) Board of Directors Continue reading

Forget the CES hype, IoT is all about industry

This week the gadget industry descends up on Las Vegas for the annual Consumer Electronics Show (CES). And as in the previous few years, 2018’s CES is chock-full of smart devices of every stripe. Some seem very cool, others unutterably silly, and a tiny percentage might be actually useful. A few will find market success, and many more will never actually hit the market at all.In addition to all the new product previews, this year’s CES is full of summits, seminars, presentations and other sessions devoted to helping consumer products companies make, sell, deploy and monetize everything from smart cars and smart homes to smart cities.To read this article in full, please click here

Hyperconverged secondary storage market heats up

There’s no question that the hyperconverged infrastructure (HCI) has had a huge impact on simplifying technology deployments. Nutantix solutions, Cisco HyperFlex and HPE Simplivity have been widely adopted and have changed the face of the data center.HCI was initially considered niche to simplify the deployment of virtual desktop infrastructure (VDI), but it has seen increased adoption for other workloads. One use case for HCI that has flown under the radar is secondary storage. Late last year, I profiled Cohesity, the vendor that has been leading the emerging hyperconverged secondary storage market.To read this article in full, please click here

Worth Reading: Why the Full Time Job is Still Important

The new “rules” of the workplace are being defined as computers are frantically being programmed to take the lead in the workplace, when it comes to judgment and intuition. We humans need to be the idea generators, the motivators, the negotiators, and the trouble-shooters to fix computer errors, if we want to govern our emerging digital environments. In short, we need to get closer to our firms, be more tightly integrated and intimate with work performance than ever before… which means the role and tenure of the much-derided middle-manager in the Dilbert Cartoons could be taking on a whole new potential twist – and a whole new (potential) level of relevance. —Phil Fersht @ The Enterprise Irregulars

Dell EMC, VMware Fix Critical Security Flaws

The bugs could have allowed hackers to attack enterprise servers.

Cumulus content roundup: January

Got a New Year’s resolution for a data center revolution? We’ve got your back! The Cumulus content roundup is here to make sure you start out 2018 on the right foot. With a variety of blog posts, videos and networking resources at your disposal, you’ll find that upgrading your networking knowledge is an easily achievable goal (and much easier than starting a diet or going to the gym). Don’t worry, we won’t tell anyone if you’ve already broken your resolution! It’s a time for new beginnings and looking to the future; let’s check out what’s in store.

Cumulus resources

Cumulus in the Cloud overview: What is Cumulus in the Cloud, and what can it do for you? In this video overview, let CTO JR Rivers walk you through the pre-built virtual data center and teach you all about the great Cumulus tech you can play with.

NCLU: Network Command Line Utility overview: There’s a new chapter in our how-to video series. This time, our highly qualified instructors will teach you the ins and outs of Cumulus Networks CLI, the Network Command Line Utility. Watch the tutorial to learn more.

Open networking drives forward with Cumulus Linux Continue reading

« Previous 1 … 1,523 1,524 1,525 1,526 1,527 … 3,464 Next »