Demo: Multi-site Active-Active with NSX, F5 Networks GSLB, and Palo Alto Networks Security
I wrote this post prior on my personal blog at HumairAhmed.com. You can also see many of my prior blogs on multisite and Cross-vCenter NSX here on the VMware Network Virtualization blog site. This post expands on my prior post, Multi-site Active-Active Solutions with NSX-V and F5 BIG-IP DNS. Specifically, in this post, deploying applications in an Active-Active model across data centers is demonstrated where ingress/egress is always at the data center local to the client, or in other words localized ingress/egress. Continue reading
Dell EMC and Nutanix: HCI Partners or Frenemies?
IDC’s tracker unleashed a maelstrom of headlines, online comments, and alternate statistics.
Nuage Networks Wins SDN Deal with Large Chinese Enterprise
Chinese insurance company virtualizes data centers with Nuage's SDN.
2017 SD-WAN and Virtual Edge Report Available Now
Download now to learn the latest on the SD-WAN and Virtual Edge market.
Every Connection Matters – Shape Tomorrow and Help Close Digital Divides
We are currently living a special moment in time, a sort of paradox.
Today, almost half of the world’s population already has Internet access. This figure is much higher than anything we could have anticipated 10 years ago, an achievement we should be happily celebrating.
But a recent report by the Internet Society, Paths To Our Digital Future, shows there are no guarantees when it comes to the Internet’s future. To achieve a digital future where people come first will require new thinking, new approaches, and new tools for this rapidly changing world around us.
And with this we find ourselves facing an even greater challenge. This is no longer the Internet of 10% of the world’s population. It is the Internet of 50% of the people around the world; in some countries, Internet penetration is now close to 100%.
The Internet has become essential, and the opportunity gap between those who are connected and those who are not grows each day. We cannot afford to remain indifferent to this Internet revolution.
If we don’t connect the remaining 50%, this gap could have long-term consequences for the opportunities that present themselves later in life.
After the United Nations adopted Continue reading
Cumulus content roundup: October
Welcome back to the Cumulus content roundup! This month, we think it’s time to get our hands dirty and play around with the latest technology. From video tutorials to how-to blogs to thought-provoking articles, this issue brings together all the resources you need to start experimenting with new configurations, networking practices and more. So, what are you waiting for? Let’s get off of the couch (or stay on the couch, if that’s where you work) and start upgrading that datacenter!
What’s new from Cumulus:
Web-scale networking how-to videos: This month, we launched a series of how-to videos to show you the ropes of web-scale networking. What’s the difference between configuring an IP address with Cisco or Cumulus Linux? How do I automate my datacenter? Watch our tutorials to answer these questions!
Cumulus Express — proof that our customers’ success is our success: Announcing Cumulus Express has done great things for Cumulus Networks, but the greatest asset we have is listening to our customers. Read on to see how paying attention to what people want returns the best rewards.
Contain yourself! Best practices for container networking: This webinar covers everything that you need to know about container architecture, the challenges they Continue reading
VOLTHA Release Provides the Brain for AT&T’s XGS-PON Plans
Eventually the carrier plans to merge all access platforms under a single SDN control.
DNS a ‘Victim of its Own Success’
Why securing the Domain Name System remains an afterthought at many organizations.
DNS a ‘Victim of its Own Success’
Why securing the Domain Name System remains an afterthought at many organizations.
Microburst: A New Post Type on MovingPackets.Net
A problem I frequently face is that I want to share thoughts and comments on something, but I don’t have the time free to write up a full post. The solution, I hope, is a new post type which I’m calling a Microburst.
A Microburst could be anything from one line to a few paragraphs; basically enough for me to convey a thought without having to go into as much depth as I would usually like to do. For that reason in particular, I think it’s important that I can distinguish my regular, shallow posts from these special, short, shallow posts. Handy, right?
The first Microburst appeared a few days ago, and more will be coming soon. Gird your loins, etc.
If you liked this post, please do click through to the source at Microburst: A New Post Type on MovingPackets.Net and give me a share/like. Thank you!
SSH HashKnownHosts File Format
The HashKnownHosts option to the OpenSSH client causes it obfuscate the host field of the ~/.ssh/known_hosts file. Obfuscating this information makes it harder for threat actors (malware, border searches, etc...) to know which hosts you connect to via SSH.Hashing defaults to off, but some platforms turn it on for you:
chris:~$ grep Hash /etc/ssh/ssh_config
HashKnownHosts yes
chris:~$
Here's an entry from my known_hosts file:
|1|NWpzcOMkWUFWapbQ2ubC4NTpC9w=|ixkHdS+8OWezxVQvPLOHGi2Oawo= ecdsa-sha2-nistp256 AAAAE2Vj<...>ZHNLpyJsv
There's one record per line, with the fields separated by spaces. The first field is the remote host (SSH server) identifier.
In this case, the leading characters |1| in the host identifier are the magic string (HASH_MAGIC). It tells us that the field is hashed, rather than a plaintext hostname (or address). The remaining characters in the field comprise two parts: a 160-bit salt (random string) and a 160-bit SHA1 hash result. Both values are base64 encoded.
The various OpenSSH binaries that use information in this file feed both the remote hosts name (or address) and the salt to the hashing function in order to produce the hash result:
So, lets validate a host entry against this record the hard way. The entry above is for an IP address: Continue reading
PQ 130: ANIMA And IoT Networking – IETF 99
Greg Ferro talks about the challenges of connecting lots of little devices to the network in a conversation recorded live at the IETF 99 conference. His guest is Michael Richardson. The post PQ 130: ANIMA And IoT Networking – IETF 99 appeared first on Packet Pushers.
Tier 1 carrier performance report: September, 2017
The post Tier 1 carrier performance report: September, 2017 appeared first on Noction.