LinkedIn pumps water down to its server racks, uses an interesting spine and leaf network fabric

It takes a lot of horsepower to support LinkedIn’s 467 million members worldwide, especially when you consider that each member is getting a personalized experience, a web page that includes only their contacts. Supporting the load are some 100,000 servers spread across multiple data centers.  To learn more about how LinkedIn makes it all happen, Network World Editor in Chief John Dix recently talked to Sonu Nayyar, VP of Production Operations & IT, and Zaid Ali Kahn, Senior Director of Infrastructure Engineering. LinkedIn Sonu Nayyar, LinkedIn VP of Production Operations & ITTo read this article in full or to leave a comment, please click here

Worth Reading: Internet routing detours

In November 2013, the Internet intelligence company Renesys (now owned by Dyn, Oracle) published an online article detailing an attack they called Targeted Internet Traffic Misdirection. Using Traceroute data, they discovered three paths that suffered a man-in-the-middle (MITM) attack. One path originated from, and was destined to, organizations in Denver, CO, after passing through Iceland, prompting concern and uncomfortable discussions with ISP customers. Are such detours only a result of an attack? —APNIC

The post Worth Reading: Internet routing detours appeared first on 'net work.

Lenovo tunes N23 Yoga Chromebook for Android apps with ARM processor

Some Chromebooks released this year will be able to run Android apps from the Google Play Store. Lenovo has tuned its new N23 Yoga Chromebook 2-in-1 to effectively run Android mobile apps.PC makers are taking a page from smartphones and tablets and adding touchscreens to Chromebooks. Many new models can be interchangeably used as laptops or tablets.More Chromebooks are also getting ARM processors -- which dominate in smartphones and tablets -- to effectively run Android apps. Most Chromebooks today have Intel x86 chips, which dominate in PCs, but Android apps best run on ARM processors.Lenovo, for the first time, is using an ARM chip in the N23 Yoga Chromebook 2-in-1, breaking its long-time reliance on x86 chips. The device has an 11.6-inch touchscreen, and it can be used as a tablet or laptop thanks to a hybrid design.To read this article in full or to leave a comment, please click here

IDG Contributor Network: Resin.IO puts Linux and containers to work for IoT

Resin.IO is working to make the use of containers and microservices useful tools to developers of Linux-based Internet of Things (IoT) applications.CEO Alexandros Marinos said the company has been working for three years to make mainstream containers attractive to developers of embedded workloads, such as those found in IoT applications. The company calls this the "Industrial Internet."What Resin.IO offers Resin.IO offers a development and deployment framework based upon Linux and containers (Docker) that is designed to facilitate control of the on-device environment, provision devices on the network, and manage of what the company calls a "fleet" of systems. These tools also make it possible to automate operations of "the fleet" and keep it secure through the use of encrypted communications to/from devices in "the fleet" that deploys two-factor authentication.To read this article in full or to leave a comment, please click here

Internet of Things Messaging, Part 2: The Mosquitto MQTT broker

MQTT is a messaging technology for machine-to-machine communication that’s lightweight and relatively simple to implement on pretty much any device. In my first post on MQTT I covered the basics and background of the protocol and threatened to follow up with a discussion of Mosquitto, a free, open source MQTT server (the MQTT developers no longer call them “brokers”) that’s one of the most widely used messaging platforms in the Internet of Things world. Being a man of my word, here goes …The Mosquitto broker (apparently the Mosquito developers and MQTT developers do not see eye-to-eye on terminology) is part of the Eclipse IoT Working Group, “an industry collaboration of companies who invest and promote an open source community for IoT.” Mosquito currently supports MQTT versions 3.1 and 3.1.1 and support for the proposed MQTT v5, which introduces scalability and protocol improvements is under way.To read this article in full or to leave a comment, please click here

iPhone 8 Rumor Rollup: Full facial recognition, wireless charging letdown & slick concept video

iPhone 8 (or iPhone X?) security is indeed a touchy subject, though it could become less so if the latest rumors about the next great Apple smartphone prove true.Say Cheese! Apple Insider's Mikey Campbell has an excellent piece dissecting the latest research from Apple insider (small "i") and KGI analyst Ming-Chi Kuo, who says to expect Apple to deliver full-face bio-recognition technology before long on the iPhone.First up, though, might be a Touch ID replacement based on optical fingerprint reading, technology that won't require an indented button as is the case on current models. Optical fingerprint readers would work with the sort of full-screen OLED display most expect Apple to bring forth with its next slew of iPhones.To read this article in full or to leave a comment, please click here

vSphere 6.5 Security Encrypted vMotion

Interesting

Encrypted vMotion has been asked about for YEARS. It’s here now in vSphere 6.5! And, like VM Encryption, we’ve taken a different approach than you might think. We don’t actually encrypt the vMotion network. What we DO encrypt is the data going over the vMotion network. At the time of migration, a 256-bit key and 64-bit Nonce are created by vCenter. This is a one-time-use key and is not persisted!

Some thoughts:

1. what is the impact of the encryption on vMotion performance, especially at load ? Since its symmetric encryption (OTP Key would suggest that) it should light on CPU but still.
2. Joined up thinking between network and vm admins is key here. If the network already encrypts this would be silly to implement so “The best part is you don’t have to ask your network team to do anything!” would be doubling down on stupid.
3. Network encryption should lower latency (hardware acceleration) and perform better (remember, don’t ask your network team anything)
4. Security is a top down thing. If you are bothering to encrypt at all, everything should be encrypted not just the vMotion. Thats kind of pointless if all other data is in the clear.

No Continue reading

IDG Contributor Network: How to choose an IoT radio network

Cellular, short range Wi-Fi (good for WAN gateways) and Bluetooth (good for wearables) aren’t the only wireless technologies IoT development has available. Some newer networks are being developed specifically for the Internet of Things.Here’s what you need to know.Ultra-narrowband Sigfox, beginning its roll-out in the U.S., says its low-power wide-area network (LPWAN) has the lowest subscription costs (digging at expensive LTE) and that its communications proffer “radically lower energy consumption.” To read this article in full or to leave a comment, please click here

Response: ASA logout weirdness

5545x/act# logoff
^
ERROR: % Invalid input detected at ‘^’ marker.
5545x/act# logout

Logoff

I would expect nothing less from a Cisco CLI to be fair. Irrational, inconsistent and byzantine CLI is the normal.

ASA logout weirdness | Battles with Cisco product weirdness : https://ciscoweirdness.wordpress.com/2017/01/24/asa-logout-weirdness/

The post Response: ASA logout weirdness appeared first on EtherealMind.

Updated Generic Icon Set

I’ve updated the generic icons linked from this page to include a virtual router/switch. I’ve also added two different spine and leaf topologies to the presentation. I may add other “generic” topologies over time, as I run across ones that seem worth including. These are completely public domain; I would encourage you to use them instead of the normal sets of vendor icons in drawing, books, blogs, etc.

Updated: Thanks to Greg Ferro, there is now a version of these in Omnigraffle! They’re linked on the same page.

The post Updated Generic Icon Set appeared first on 'net work.

Severe vulnerability in Cisco’s WebEx extension for Chrome leaves PCs open to easy attack

Anyone who uses the popular Cisco WebEx extension for Chrome should update to the latest version pronto. Google security researcher Tavis Ormandy recently discovered a serious vulnerability in the Chrome extension that leaves PCs wide open to attack.In older versions of the extension (before version 1.0.3) malicious actors could add a “magic string” to a web address or file hosted on a website. The magic string was designed to remotely activate the WebEx browser extension. Once the extension was activated the bad guys could execute malicious code on the target machine. To read this article in full or to leave a comment, please click here

Severe vulnerability in Cisco’s WebEx extension for Chrome leaves PCs open to easy attack

Anyone who uses the popular Cisco WebEx extension for Chrome should update to the latest version pronto. Google security researcher Tavis Ormandy recently discovered a serious vulnerability in the Chrome extension that leaves PCs wide open to attack.In older versions of the extension (before version 1.0.3) malicious actors could add a “magic string” to a web address or file hosted on a website. The magic string was designed to remotely activate the WebEx browser extension. Once the extension was activated the bad guys could execute malicious code on the target machine. To read this article in full or to leave a comment, please click here

On the ‘net: The background of I2RS

Through this (probably far too long) series on SDNs, we have looked at BGP, Fibbing, and Openflow. BGP and Fibbing would be described as augmented control planes; the distributed control plane is not replaced, but rather augmented with a controller that modifies the best path decisions of the control plane by interacting with the control itself in a somewhat “native” way. Openflow, on the other hand, replaces the distributed control plane; it would actually be difficult to build a system that talks directly to the FIB that does not entirely replace the control plane. But in the original classification, there was a third type of SDN highlighted, a hybrid model. Are there any instances of this sort of model being developed? —ECI Blog

The post On the ‘net: The background of I2RS appeared first on 'net work.

Oracle to Lay Off 450 in Its Hardware Operation

The company’s hardware product revenues were down 10 percent year-over-year for its fiscal 2017 second quarter.

Verizon Expands 5G Market Trials Across the U.S.

The 10 pilot markets will not be limited to Verizon's wireline territory.

Cumulus & Apstra Demo on Facebook’s Backpack & Wedge Switches

Facebook shows off the OCP ecosystem at an invitation-only event.

Cisco’s all-in-one Spark Board puts the cloud on a wall

Cloud-based collaboration software has helped enterprises take meetings beyond the conference room. Now Cisco Systems is bringing its Spark cloud platform back inside.On Tuesday, Cisco introduced the Spark Board, an all-in-one collaboration device that can be a screen-sharing presentation tool, a digital whiteboard and a videoconferencing display. It’s designed to make it easier to set up and use connected conference rooms, taking the place of a hodgepodge of components that are managed and operated separately.After selling various voice and video tools for years, Cisco has made Spark the centerpiece of the company’s collaboration portfolio. It’s a text messaging, voice, videoconferencing and presentation platform that runs completely in the cloud, with encryption, so meeting participants on the road can use all those functions. Through the cloud, a Spark session can also incorporate older Cisco tools like WebEx and Telepresence.To read this article in full or to leave a comment, please click here

Announcing Backpack running Cumulus Linux — completing our networking portfolio with a modular platform

We are thrilled to announce our integration with Backpack — the industry’s first commercially supported open chassis with Cumulus Linux. You can now have a consistent operating model across fixed and modular platforms.

With Backpack and Cumulus Linux, you can simplify hyperscaling your network infrastructure, especially as you migrate from 40G to 100G platforms.

When Facebook first approached us about the technology, we were thrilled to be a part of it. We’ve always believed the chassis is an important part of the ecosystem, but we also knew the technology needed to be improved.

In fact, when Cumulus Networks was first founded, we were working on developing a chassis that would work seamlessly with open networking ecosystems. No really, we did! Don’t believe us? Here’s the proof:

Clearly, we never quite got it right. But luckily for us and open networking enthusiasts everywhere, Facebook did. Read more about Facebook and Cumulus Networks.

What is Backpack?

This is Facebook’s second generation modular switch platform based on web-scale principles. Cumulus Networks collaborated with Facebook to provide ONIE support for Backpack. Backpack is an 8RU chassis with 128x 100G ports built as a distributed model where each line card and fabric card have dedicated CPUs Continue reading

Box launches standalone Notes app to help teams collaborate

Box Notes is getting its own standalone web app and a new desktop app for Windows and Mac. It's a new turn for the product, which allows users to collaboratively edit documents in real time.Notes gives users a workspace for jotting down ideas and sharing them with others. Those notes can include rich text elements like embedded images, tasks and tables, in addition to plain text. The service is designed to give users a shared workspace in the cloud for discussing ideas and working on them with other people. Making Notes a standalone app could help it appeal to a broader audience and increase its usage. To read this article in full or to leave a comment, please click here

Cisco adds some Spark to meetings

In the technology industry, we like to swing pendulums too far one way or the other and make general statements like “everything is moving to the cloud” or “everything is connecting over wireless,” and those statements are, of course, false. There are still more on-premises workloads than cloud ones, and there’s a huge world of devices that are connected with wires. The collaboration industry is no different, as there has bee a significant rise in the number of tools to improve virtual meetings. We have web conference platforms, audio bridges and advancements in video. And recently there has been an explosion in the number of team messaging products. All of these products help workers conduct virtual meetings.To read this article in full or to leave a comment, please click here