Last Call for the Cisco DemoFriday: Solving the Lab Equipment Challenge with VIRL
This is it. Your last shot to register for the Cisco VIRL DemoFriday. Can your organization keep up with the increasing demand to provide new network services while still making significant changes to test and deploy networks consistently? If not, then the Cisco DemoFriday may be just for you. In this DemoFriday, Cisco will take us through VIRL (Virtual Internet Read more >
Why IPv6 Is Indispensable At LinkedIn
At a meetup hosted by LinkedIn, the company explained how moving to IPv6 fulfills user needs and why it's unavoidable.
More on Centralized Control and SDN
After I wrote a comment on a LinkedIn discussion in the Carrier Ethernet group (more details here), Vishal Sharma wrote an interesting response, going into more details of distinction between centralized control and centralized control plane.
Read more ...Migrate To New GNS3 Versions: HOWTO
All constructive criticisms much appreciated. The process I use to migrate to a new version of GNS3. Running GNS3 on WindowsCheck out these brand new videos on how to optimize CloudFlare
Someone once said that the best things in life are free and I can’t agree more. I want to draw the attention of the CloudFlare community to a great resource that helps maximize the value of our product. Troy Hunt, an experienced trainer and blogger, has produced a video course on using CloudFlare. The video series is available through Pluralsight, an online training site for developers.
Because the folks at Pluralsight think that this is a great resource, the video tutorials are being offered to everyone for a week absolutely for free.
So what can you expect to learn? The course kicks off by explaining what CloudFlare brings to the table, and then sets up a site on CloudFlare, including configuring the name server records with your DNS provider. All of this helps get things up and running quickly. Then it gets deeper.
One module of the course is devoted to understanding more about SSL and further strengthening the implementation. For example, CloudFlare’s SSL rates high on the Qualys SSL Labs Test and scores an “A” right out of the box. But you can make it better – an “A+” – just by enabling HSTS. However, you really want to Continue reading
Featured Video: Cisco & Microsoft Team Up for Cloud Services
Cisco execs explain how integrating Cisco ACI with Microsoft Cloud Platform achieves a new level of infrastructure agility with consistent control, based upon an open architecture.
Policy Automation for Cloud Federation
Two OpenStack projects that can help.
How to build your own public key infrastructure
A major part of securing a network as geographically diverse as CloudFlare’s is protecting data as it travels between datacenters. Customer data and logs are important to protect but so is all the control data that our applications use to communicate with each other. For example, our application servers need to securely communicate with our new datacenter in Osaka, Japan.
CC BY-SA 2.0 image by kris krüg
Great security architecture requires a defense system with multiple layers of protection. As CloudFlare’s services have grown, the need to secure application-to-application communication has grown with it. As a result, we needed a simple and maintainable way to ensure that all communication between CloudFlare’s internal services stay protected, so we built one based on known and reliable protocols.
Our system of trust is based on a Public Key Infrastructure (PKI) using internally-hosted Certificate Authorities (CAs). In this post we will describe how we built our PKI, how we use it internally, and how to run your own with our open source software. This is a long post with lots of information, grab a coffee!
Protection at the application layer
Most reasonably complex modern web services are not made up of one monolithic Continue reading