Snippet: The story of the EFP
For a while now, the concept of EVC’s (Ethernet Virtual Circuits) and EFP’s (Ethernet Flow Points), has eluded me.
In this short post, i will provide you with a simple example of a couple of EFP’s. In a later post i will discuss the MEF concept of EVC’s.
As always, here is the topology i will be using:
Its a very simple setup. R1 connects to R2 through its G1 interface and connects to R3 through its G2 interface.
On R2 and R3, we have the very common configuration of using subinterfaces for the individual Vlan’s in question. Namely Vlan 10 for the connection between R1 and R2 and Vlan 20 between R1 and R3.
Here is the configuration of R2 and R3:
R2#sh run int g1.10 Building configuration... Current configuration : 98 bytes ! interface GigabitEthernet1.10 encapsulation dot1Q 10 ip address 10.10.10.2 255.255.255.0 end R3#sh run int g1.20 Building configuration... Current configuration : 98 bytes ! interface GigabitEthernet1.20 encapsulation dot1Q 20 ip address 10.10.10.3 255.255.255.0 end
Now on R1 is where the “different” configuration takes place:
R1#sh run int g1 Building configuration... Current configuration : Continue reading
BGP VPLS explained (Nokia & Juniper)
It may very well be that VPLS days are numbered and EVPN is to blame. Nevertheless, it would be naive to expect VPLS extinction in the near future. With all its shortcomings VPLS is still very well standardized, interop-proven and has a huge footprint in MPLS networks of various scale. In this post I will cover theory andArribem a Barcelona! Cloudflare’s 101st data center
Hola Barcelona! The land of Antoni Gaudí, Salvador Dalí, Ferrán Adriá and Lionel Messi is now also home to Cloudflare.
Located alongside the Mediterranean, Barcelona, is the capital of the autonomous community of Catalonia, the second-most populated municipality in Spain and the core of the fifth-most populous urban area in the Europe. Our data center in Barcelona is our 3rd in the Iberian Peninsula following our deployments in Madrid and Lisbon, our 28th in Europe, and 101st globally. This means not only better performance in Catalonia and Spain, but additional redundancy for European data centers. As of this moment, Cloudflare has a point of presence (PoP) in 7 out of Europe's 10 most populous urban areas, and with number 8 coming soon (all roads have been said to lead there…).
CC BY-NC-ND 2.0 image by Luc Mercelis
Cloudflare has connected to the Catalunya Neutral Internet Exchange (“CATNIX”). This raises the number of exchanges that Cloudflare is a participant in to over 150. As we expand our peering, more visitors get served locally. If you wish to connect with us at CATNIX (or any of our other locations) you can find our peering details on our PeeringDB profile.
Only a Continue reading
Reliability of Clustered Solutions: Another Data Point
A while ago I wrote:
I haven’t seen any hard data, but intuition suggests that apart from hardware failures a standalone firewall might be more stable than a state-sharing firewall cluster.
Guillaume Sachot (working for a web hosting company) sent me his first-hand experience on this topic:
Read more ...Scoring the DNS Root Server System
The process of rolling the DNS Root’s Key Signing Key of the DNS has now started. During this process there will be a period where the root zone servers’ response to a DNS query for the DNSKEY resource record of the root zone will grow from the current value of 864 octets to 1,425 octets. Does this present a problem? Let’s look at the DNS Root Server system and score it on how well it can cope with large responses. It seems that awarding stars is the current Internet way, so let’s see how many stars we’ll give to the Root Server System for their handling of large responses.SC16 live real-time weathermaps
From the SCinet web page, "The Fastest Network Connecting the Fastest Computers: SC16 will host the most powerful and advanced networks in the world – SCinet. Created each year for the conference, SCinet brings to life a very high-capacity network that supports the revolutionary applications and experiments that are a hallmark of the SC conference."
The real-time weathermap leverages industry standard sFlow instrumentation built into network switch and router hardware to provide scaleable monitoring of the SCinet network. Link colors are updated every second to reflect operational status and utilization of each link.
Connect to http://inmon.sc16.org/sflow-rt/app/OSiRIS-weather/html/ to see an animated diagram of the SC16 OSiRIS demonstration connecting SCinet with University of Michigan, Michigan State, Wayne Continue reading
Unable to access Cisco ASA through AnyConnect VPN?
How Does Internet Work - We know what is networking
I stepped on this issue few weeks ago. I was implementing a new ASA Firewall solution, first time for me with software newer than version 8.4.2 It seems that all those stories about changes in the NAT logic after that version were true. This is what I found out about ASA packet processing. Configuration was really straightforward and everything worked fine except one thing. When connected remotely using Cisco AnyConnect I was able to access all devices inside the network (inside ASA firewall), but not the ASA itself. I wasn’t able to connect with SSH nor with ASDM. I, of course,
Brocadecom
The news is public: Broadcom is acquiring Brocade, my employer. Official announcement here, and some (unofficial) commentary here. What’s happening, and what does it mean for me? There’s limits to what I can say – either because I don’t have the answers, or because it’s not public. But here’s a little bit of info for readers wondering what will happen to me.
What’s Happening?
Broadcom has announced its intention to acquire Brocade for approximately $5.5 billion:
This morning we announced a definitive agreement under which Broadcom will acquire Brocade. Broadcom believes the SAN business is a strong complement to its portfolio of enterprise storage and networking solutions, and its intention is to continue to deliver the market-leading storage networking solutions and innovation for which Brocade is so well known.
When will this happen?
Closing of the transaction is presently expected in the second half of Broadcom’s fiscal year 2017, which ends in October 2017, and is subject to regulatory approvals in various jurisdictions, customary closing conditions as well as the approval of Brocade’s stockholders.
What about the IP business?
This is the tricky bit. Broadcom is well-known as a maker of “merchant silicon,” used by many networking Continue reading