In part 1 of this series, I pointed out that there are three interesting questions we can ask about BGP security. The third question I outlined there was this: What is it we can actually prove in a packet switched network? This is the first question I want dive in too—this is a deep dive, so be prepared for a long series. This question feels like it is actually asking three different things, what we might call “subquestions,” or perhaps “supporting points.” These three questions are:
These are the things I can try to prove, or would like to know, in a packet switched network. Note that I want to intentionally focus on the data plane and then transfer these questions to the control plane (BGP). This is the crucial point to remember: If I Continue reading
A paltry 15% of the radio spectrum that is suitable for broadband in the US has been made available to the private sector.
Interest in SDS is growing as companies look for alternatives to high-priced storage drives.
It's time to delegate the manual process of firewall policy changes to software intelligence.
Harry Taluja asked an interesting question in his comment to one of my virtualization blog posts:
If vShield API is no longer supported, how does a small install (6-8 ESXi hosts) take care of east/west IPS without investing in NSX?
Short answer: It depends, but it probably won’t be cheap ;) Now for the details…
Read more ...Typically when things start to get complicated, we talk about getting ‘back to basics’. The premise, of course, is to better compartmentalize, keep things in simple, digestible chunks, and not lose sight of the fundamentals.
For instance, if you’re not hitting the golf ball straight, it’s because you’ve incorporated too much variance into your swing. A good golf instructor will break the swing down into its components, and help you work on the basics.
We’re pretty far into the software-defined networking (SDN) hype cycle now. Every networking company (or even network service company) has an SDN story. In a lot of cases, SDN is still vapor-ware or marketecture. And for customers, there’s plenty of ‘SDN fatigue’ – which story should you believe?
In short, things have gotten a little complicated.
So what does getting back to basics mean in an SDN context? It’s means understanding the fundamentals components of an SDN solution. Fortunately, we can draw from real data and learn what’s working from customers that have already deployed.
Recently, EMA published research on the impact of SDN on network management. The report featured survey data from over 226 early adopters of SDN – both in the service roviders and Continue reading
VMware, Huawei & EMC make the Top 3.
Howdy. In my last post I discussed the need for an open source framework to drive merchant switching silicon. Towards the end of that long post, I mentioned a future post talking about the Switch Abstraction Interface (SAI) and switchdev in depth. Welcome to that post. There’s been a lot of synergy between both projects, […]
The post What Are SAI And Switchdev And Why Do We Need Them To Succeed? appeared first on Packet Pushers.
Howdy. In my last post I discussed the need for an open source framework to drive merchant switching silicon. Towards the end of that long post, I mentioned a future post talking about the Switch Abstraction Interface (SAI) and switchdev in depth. Welcome to that post. There’s been a lot of synergy between both projects, […]
The post What Are SAI And Switchdev And Why Do We Need Them To Succeed? appeared first on Packet Pushers.
Diving into the BGP Table First a Look at the Local BGP Table Before we begin… let’s take a look at the BGP table. One would assume (rightly so) that anything called the “BGP table version” probably is tied somehow... Read More ›
The post Understanding BGP Table Version – Part 1: Intro to BGP Table Version appeared first on Networking with FISH.
**This blog is a formatting cleanup and update to a previous blog I posted in 2013 on NetworkWorld.
Years and years ago I was trying to learn more about BGP and I was reading some book with a chapter on the topic. Back then I pretty much believed that if it made it into a book it must be true and my knowledge had to be in error. So to say I was confused back then would be an understatement.
Why? Well ya see… they basically said that the reason one must set the TTL to 2 for eBGP peers that are directly connected, but peering with their loopbacks, was cause “the TTL gets decremented on the way to the loopback”
When I try to help someone deprogram this brain washing, I find pictures help. So for those who’d like to get deprogrammed and learn the truth… Let’s go play in the lab!!!
In the picture above we have 3 Routers in 3 different BGP ASes. We all probably know that if we peer R1 and R2 Continue reading