Datadog Integrates Azure Resource Manager Into Its Monitoring System
ARM is Datadog's newest integration.
Scale-Out Storage Architectures
A look at the shared-media model and how scale-out storage systems handle data distribution.
SD-WAN Ramping Up In The Enterprise
Fast-growing market driven by interest in a cheaper and simpler WAN as companies shift to the cloud, IDC finds.
King Abdulaziz City for Science and Technology Achieves Reliable, Secure, High-Performance Cloud Services with VMware NSX
King Abdulaziz City for Science & Technology’s (KACST) Internet Services Unit (ISU) needed to build a reliable, secure, scalable Public Cloud service that is automated and on demand. It also needed to provide seamless operations for their customers, which includes all of the academic institutions and government organizations in Saudi Arabia. ISU was able to satisfy this requirement by deploying VMware NSX for network and security virtualization and VMware vRealize Automation to automate the service creation and delivery of personalized infrastructure and applications to its customers.
Khaleel K. Al-Jadaan, the Deputy Director and Network Operations Manager of KACST’s Internet Services Unit, says, “A complete and secure cloud service was the top priority. VMware has proved to be the trusted partner, time and time again, to provide compelling and reliable solutions.”
Now KACST’s customers can request new services and manage their existing workloads by accessing the datacenter directly and securely through an automated portal. They can self-provision computational and storage resources, with built-in network and security facilities. And when multi-tier applications are provisioned automatically, all the underlying networking and security are provisioned too. With VMware’s software infrastructure platform in place, ISU is positioned to develop new services rapidly, and start Continue reading
Firepower Access Control Policies
The Firepower ecosystem is a powerful NGIPS/NGFW solution. At that heart of the configuration construct is what is known as the Access Control Policy. Comparing this to something familiar is possible by thinking about the much simpler filtering feature in the ASA. For comparison, an ASA’s access-list (ACL) has multiple access-control entries (ACE’s). Each of these entries can refer to object-groups, networks, and protocols and can apply a permit or deny action.
The Access Control Policy in Firepower is a similar concept, but there are many additional facets that are pulled together to provide a more comprehensive policy application mechanism. This article only covers the major areas of this policy control construct. There are items which are beyond the scope including variable sets and manipulating the behavior of http response pages.
Specific to the policy application, there are two main areas of the the Access Control Policy. The first area is what is known as Security Intelligence. In the policy, this is found on the second tab from the left and provides a framework for blacklisting. There are many feeds provided directly from Cisco’s Talos organization and are ready for consumption by the security policy.
The action for each feed that is Continue reading
Performance Review of Overlay Tunnels with Open vSwitch
In my previous article I presented various encapsulation techniques used to extend Layer 2 reachability across separate networks using tunnels created with Open vSwitch. Although the initial intention was to include some iperf test results, I decided to leave these for a separate post (this one!) because I hit few problems.
BRKIOT-2109 — Connecting Oil and Gas Pipelines
Presenters:
- Rick Irons-Mclean, Oil & Gas and Energy Architecture Lead
- Jason Greengrass, IoT Solution Architect
BRKEWN-2019 — 7 Ways to Fail as a Wireless Expert
Presenter: Steven Heinsius, Product Manager, Enterprise Networking Group
I'm hoping the title of this session could also be “7 Ways to not be a TOTAL Wireless Noob” since that's more my level. ?