0

Time Synchronization, Security, and Trust

0

Worth Reading: Updating Surveillance Laws

For decades, Americans have forfeited their privacy rights for a false sense of safety. Broad, sweeping surveillance laws––such as, but certainly not limited to Section 702 of the FISA Amendments Act––have given the federal government carte blanche in the realm of surveillance. Thankfully, a recently introduced bipartisan Senate bill would restore some vital protections to Americans’ privacy. —Dan King @The Federalist

The post Worth Reading: Updating Surveillance Laws appeared first on rule 11 reader.

0

Today’s Best Practices for Protecting the Distributed Network

Sophisticated threats and distributed networks require cross-referencing data.

0

Juniper to buy advanced threat protection security startup Cyphort

Juniper today announced intentions to acquire Cyphort, a Santa Clara-based startup that offers an advanced threat detection, analytics and mitigation platform. Juniper says it will integrate Cyphort’s technology with its Sky Advanced Threat Protection (ATP) product line.+MORE AT NETWORK WORLD: DEEP-DIVE REVIEW: How Cyphort makes advanced threat protection easier than ever +Cyphort’s software platform detects advanced threats, evasion techniques and zero-day vulnerabilities using a combination of behavioral analytics, machine-learning and long-data security analysis, the company says. The platform can work across virtual infrastructure, cloud environments and edge devices. In addition to identifying threats, Cyphort creates real-time timelines of incidents and can integrate with network tools to update security postures.To read this article in full or to leave a comment, please click here

0

Juniper to buy advanced threat protection security startup Cyphort

Juniper today announced intentions to acquire Cyphort, a Santa Clara-based startup that offers an advanced threat detection, analytics and mitigation platform. Juniper says it will integrate Cyphort’s technology with its Sky Advanced Threat Protection (ATP) product line.+MORE AT NETWORK WORLD: DEEP-DIVE REVIEW: How Cyphort makes advanced threat protection easier than ever +Cyphort’s software platform detects advanced threats, evasion techniques and zero-day vulnerabilities using a combination of behavioral analytics, machine-learning and long-data security analysis, the company says. The platform can work across virtual infrastructure, cloud environments and edge devices. In addition to identifying threats, Cyphort creates real-time timelines of incidents and can integrate with network tools to update security postures.To read this article in full or to leave a comment, please click here

0

Juniper to buy advanced threat protection security startup Cyphort

Juniper today announced intentions to acquire Cyphort, a Santa Clara-based startup that offers an advanced threat detection, analytics and mitigation platform. Juniper says it will integrate Cyphort’s technology with its Sky Advanced Threat Protection (ATP) product line.+MORE AT NETWORK WORLD: DEEP-DIVE REVIEW: How Cyphort makes advanced threat protection easier than ever +Cyphort’s software platform detects advanced threats, evasion techniques and zero-day vulnerabilities using a combination of behavioral analytics, machine-learning and long-data security analysis, the company says. The platform can work across virtual infrastructure, cloud environments and edge devices. In addition to identifying threats, Cyphort creates real-time timelines of incidents and can integrate with network tools to update security postures.To read this article in full or to leave a comment, please click here

0

IDG Contributor Network: Why smart cities are crucial for autonomous cars

Autonomous cars are changing the way consumer drivers and auto manufacturers alike view transportation, with bold new players like Tesla joining long-standing industry giants like BMW in their quest for a truly independent car. More so than almost anything else, smart cities and their continued development are shaping the way these autonomous cars are designed, manufactured and used around our urban environments.So how exactly are smart cities reshaping the way developers approach building truly autonomous vehicles capable of guiding themselves? What does the future of the smart cities movement hold for autonomous cars, and vice versa? A quick look at these 21st Century innovations shows just how intertwined their fates are.To read this article in full or to leave a comment, please click here

0

Video: Building Data Center Fabrics with SPB

There are two reasonable ways of building a layer-2 leaf-and-spine fabric: use VXLAN (the direction almost everyone in the industry is taking at the moment), or routing-on-layer-2 technology like TRILL or SPB.

Read more ...

0

All Of Ethan’s Podcasts And Articles For August 2017

Here’s a catalog of all the media I produced (or helped produce) in August 2017.

Packet Pushers Weekly Podcast

• Episode 350: The Future Of Visibility And Analytics
• Episode 351: Design & Build 13: Network Orchestration With Salt
• Episode 352: Cloud & Network Insights With Nokia Deepfield (Sponsored)
• Episode 353: The Business Impact Of Network Automation

Packet Pushers Priority Queue Podcast

• Episode 124: Cloud SBC Security & Analytics With Sonus Networks (Sponsored)

Datanauts Podcast

• Episode 95: Exploring Azure IaaS with Jennelle Crothers
• Episode 96: The Fuss About IoT
• Episode 97: Unpacking Azure Stack For Hybrid Clouds
• Episode 98: The Changing Face Of Application Acceleration
• Episode 99: Understanding Microservices

Packet Pushers Articles

• Understanding HPE Nimble Storage’s Cloud Volumes
• Nirmata’s Cloudy Control Plane Is The Catalyst For Container Calm
• Accelerite’s Rovius Readies Your Hybrid Cloud
• Ask The Datanauts Anything For Their 100th Episode!
• 6WIND Offers Replacement Program For Dead Brocade vRouter

EthanCBanks.com

• Beware N1Wireless.com – Bait And Switch

NetIntro Book

• In August, I finished my contributions to this book. I ended up with roughly 6 (or 7?) chapters out of 30 or so. That’s a little awkward for me as I would have hoped to have done a more or Continue reading

0

All Of Ethan’s Podcasts And Articles For August 2017

Here’s a catalog of all the media I produced (or helped produce) in August 2017.

Packet Pushers Weekly Podcast

• Episode 350: The Future Of Visibility And Analytics
• Episode 351: Design & Build 13: Network Orchestration With Salt
• Episode 352: Cloud & Network Insights With Nokia Deepfield (Sponsored)
• Episode 353: The Business Impact Of Network Automation

Packet Pushers Priority Queue Podcast

• Episode 124: Cloud SBC Security & Analytics With Sonus Networks (Sponsored)

Datanauts Podcast

• Episode 95: Exploring Azure IaaS with Jennelle Crothers
• Episode 96: The Fuss About IoT
• Episode 97: Unpacking Azure Stack For Hybrid Clouds
• Episode 98: The Changing Face Of Application Acceleration
• Episode 99: Understanding Microservices

Packet Pushers Articles

• Understanding HPE Nimble Storage’s Cloud Volumes
• Nirmata’s Cloudy Control Plane Is The Catalyst For Container Calm
• Accelerite’s Rovius Readies Your Hybrid Cloud
• Ask The Datanauts Anything For Their 100th Episode!
• 6WIND Offers Replacement Program For Dead Brocade vRouter

EthanCBanks.com

• Beware N1Wireless.com – Bait And Switch

NetIntro Book

• In August, I finished my contributions to this book. I ended up with roughly 6 (or 7?) chapters out of 30 or so. That’s a little awkward for me as I would have hoped to have done a more or Continue reading

0

One way to help Hurricane Harvey victims

Photo Credit: Texas Military Department (Flickr)

Hurricane Harvey hit Texas last Friday as a Category 4 storm. Although Harvey's category was quickly downgraded, the storm lingered around for days, bringing 50 inches of rain to the greater Houston area.

As someone who was born in Houston, it's hard to see my former city hit with such destruction, and to know that many of my friends and fellow Houstonians are in need of help and assistance. Many families have had their entire house flooded out by the storm. Displaced residents are in a state of stagnation and are seeing their supplies diminishing by the day.

The Hurricane Relief app will allow visitors to your site to donate to one of the charities helping those impacted in Houston:

The Hurricane Relief App takes two clicks to install and requires no code change. The charities listed are recommended by NPR.

Install Now

If you wanted to add your own custom list of charities for disaster relief or other causes, feel free to fork the source of this app and make your own.

0

SD-WAN Simplified!

This blog post is going a bit outside my usual “make sense to the C-Level” slant. I wanted to get in the weeds about reviewing SD-WAN products. We all know that’s where the fun really is!I have been doing a bit of evaluation on SD-WAN products and their configurations from the network engineer’s perspective. I have looked at numerous vendors’ products, poured over install guides, and dusted off the CLI.To read this article in full or to leave a comment, please click here

0

IDG Contributor Network: SD-WAN Simplified!

This blog post is going a bit outside my usual “make sense to the C-Level” slant. I wanted to get in the weeds about reviewing SD-WAN products. We all know that’s where the fun really is!I have been doing a bit of evaluation on SD-WAN products and their configurations from the network engineer’s perspective. I have looked at numerous vendors’ products, poured over install guides, and dusted off the CLI.Everyone who knows me can tell you I am a Cisco fanatic. Hands down, I would rather implement a Cisco technology rather than any other vendor by a 1000:1 ratio. I have spent a majority of my career as a network engineer, and the best network devices to configure and troubleshoot have been Cisco.To read this article in full or to leave a comment, please click here

0

SD-WAN Simplified!

This blog post is going a bit outside my usual “make sense to the C-Level” slant. I wanted to get in the weeds about reviewing SD-WAN products. We all know that’s where the fun really is!I have been doing a bit of evaluation on SD-WAN products and their configurations from the network engineer’s perspective. I have looked at numerous vendors’ products, poured over install guides, and dusted off the CLI.To read this article in full or to leave a comment, please click here

0

IDG Contributor Network: SD-WAN Simplified!

This blog post is going a bit outside my usual “make sense to the C-Level” slant. I wanted to get in the weeds about reviewing SD-WAN products. We all know that’s where the fun really is!I have been doing a bit of evaluation on SD-WAN products and their configurations from the network engineer’s perspective. I have looked at numerous vendors’ products, poured over install guides, and dusted off the CLI.Everyone who knows me can tell you I am a Cisco fanatic. Hands down, I would rather implement a Cisco technology rather than any other vendor by a 1000:1 ratio. I have spent a majority of my career as a network engineer, and the best network devices to configure and troubleshoot have been Cisco.To read this article in full or to leave a comment, please click here

0

Juniper Networks Acquires Security Firm Cyphort

Cyphort’s CEO is a Juniper alum.

0

Using FQDN for DMVPN hubs

I've done some testing with specifying DMVPN hubs (NHRP servers, really) using their DNS name, rather than IP address.

This matters to me because of some goofy environments where spoke routers can't predict what network they'll be on (possibly something other than internet), and where I can't leverage multiple hubs per tunnel due to a control plane scaling issue.

The DNS-based configuration includes the following:

 interface Tunnel1  
  ip nhrp nhs dynamic nbma dmvpn-pool.fragmentationneeded.net  

There's no longer a requirement for any ip nhrp map or ip nhrp nhs x.x.x.x configuration when using this new capability.

My testing included some tunnels with very short ISAKMP and IPSec re-key intervals. I found that the routers performed the DNS resolution just once. They didn't go back to DNS again for as long as the hub was reachable.

Spoke routers which failed to establish a secure connection for whatever reason would re-resolve the hub address each time the DNS response expired its TTL. But once they succeeded in connecting, I observed no further DNS traffic for as long as the tunnel survived.

The record I published (dmvpn-pool.fragmentationneeded.net above) includes multiple A records. The DNS server randomizes the record Continue reading

0

Worth Reading: Multiple perspectives on technical problems and solutions

So what was this architecture review meeting all about? It was pretty simple, really. It was just a presentation by the engineer(s) looking for feedback on a solution they came up with, and Kellan and I would ask questions. The meeting was open to anyone in the company who wanted to attend. The hope was that many engineers would attend, actually. The intent here was to help the engineers describe their problem as thoroughly as they can, and by asking questions, we could help draw out any tacit assumptions they made in thinking through the problem. In a nutshell: it was a critical-thinking exercise, and we wanted engineers to want to do this, because it was ideally about providing feedback. —John Allspaw @Kitchen Soap

The post Worth Reading: Multiple perspectives on technical problems and solutions appeared first on rule 11 reader.

0

Ciena Touts Diversification During its Earnings, But Stock Still Drops

Ciena joins other optical vendors that are suffering this year.

0

Pivot3 Brags About its HCI; Partners with HyTrust, Veeam and Liquidware

Which HCI competitors' products did it beat?