BGP Peering (2)
I recorded the beginnings of a BGP training series over at Packet Pushers a short while back; they’ve released these onto youtube (so you can find the entire series there). I’m highlighting one of these every couple of weeks ’til I’ve gone through the entire set of recordings. In this recording, I’m talking through some more interesting aspects of BGP peering, including challenges with IPv6 link local nexthops, promiscuous peering, and capabilities.
VMware NSX Achieves Common Criteria Certification for Network Devices (NDcPP 2.2e)
We are excited to share that as of July 2022, VMware NSX-T version 3.1 has passed Common Criteria certification for Network Devices under Collaborative Protection Profile 2.2e, also known as NDcPP 2.2e. This is one of many testaments to our commitment to providing industry-leading certified solutions for customers from federal departments and agencies, international governments and agencies, and other highly regulated industries and sectors. Along with FIPS, DISA-STIG, ICSA Labs firewall certification, and several other independent evaluations, the NDcPP 2.2e certification validates NSX as a reliable network virtualization platform that satisfies rigorous government security standards.
VMware NSX 3.1 is now listed:
- National Information Assurance Partnership, NIAP, Product Compliant List https://www.niap-ccevs.org/Product/Compliant.cfm?PID=11217
- Common Criteria Recognition Agreement, CCRA, https://www.commoncriteriaportal.org/products/
- VMware NSX NDcPP 2.2e Certificate – https://www.commoncriteriaportal.org/files/epfiles/st_vid11217-ci.pdf
From the NIAP Security Evaluation Summary:
The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the VMware NSX-T Data Center 3.1 was evaluated are described in the Common Criteria for Information Technology Security Evaluation, Version 3.1 rev 5. The evaluation methodology used by the evaluation team Continue reading
Black Hat Postmortem: Geopolitical Risks and Complexity on the Rise
Throughout the conference, speakers noted the increased risks due to geopolitics, digital transformation, and the move to cloud.Situational Awareness for Network Migrations
At IP Architechs we perform a lot of network migrations and it is no secret network migrations/ maintenance windows can be one of the most nerve-racking things for engineers, managers, and business leaders for a variety of reasons.
For the engineers the uncertainty might be caused by fear of failure, not being able to predict the outcome due to complexity, rushed on preparation to meet a deadline, or a litany of other reasons.
For managers and business leaders it might be more along the lines of; what happens if this goes wrong, how will this effect my bottom line, are there going to be 1000s of trouble tickets come 8/9am when everyone hits the office, and so on.
The Preparation
We’re going to look at this at the perspective of the engineer throughout. The prep work is probably one of the most important pieces of success. This is where you do many things including but not limited to:
- building and testing the configuration to be implemented
- making a rollback plan — this might be something as simple as move a cable and shut an interface or a multistep/multi-device plan
- know the situation surrounding the window
Lets explore understanding the situation Continue reading
s impossible to be able to deliver those speeds to everybody across an entire county.Crawler Hints supports Microsoft’s IndexNow in helping users find new content
The web is constantly changing. Whether it’s news or updates to your social feed, it’s a constant flow of information. As a user, that’s great. But have you ever stopped to think how search engines deal with all the change?
It turns out, they “index” the web on a regular basis — sending bots out, to constantly crawl webpages, looking for changes. Today, bot traffic accounts for about 30% of total traffic on the Internet, and given how foundational search is to using the Internet, it should come as no surprise that search engine bots make up a large proportion of that what might come as a surprise is how inefficient the model is, though: we estimate that over 50% of crawler traffic is wasted effort.
This has a huge impact. There’s all the additional capacity that owners of websites need to bake into their site to absorb the bots crawling all over it. There’s the transmission of the data. There’s the CPU cost of running the bots. And when you’re running at the scale of the Internet, all of this has a pretty big environmental footprint.
Part of the problem, though, is nobody had really stopped to ask: maybe Continue reading
Authority and Responsibility
Congratulations on your promotion! You’re now a manager or leader for your team. You now have to make sure everyone is getting their things done. That also means lots of reports and meetings with your manager about what’s happening and all the new rules that have to be followed in the future. Doesn’t this all sound nice?
In truth we all want to be able to help out as much as possible. Sometimes that means putting in extra work. For many it also means being promoted to a position of responsibility in a company leading a team or group of teams. That means you will have some new responsibilities and also some new authority. But what’s the difference? And why is one more foundational than the other?
Respect My Authority
Authority is “power to influence or command thought, opinion, or behavior”. It means you have the ability to tell people what to do. You give orders and they are followed. You tell your team the direction that you want things to go and it happens. If it doesn’t there are consequences. When you tell someone they are the boss this is what they usually picture.
Responsibility is “the quality of Continue reading
Heavy Networking 642: 10Mbps Single Pair Ethernet
Single pair Ethernet. That’s right. Ethernet over a single twisted pair, rather than the four you’re used to. Or two if you’ve got a little gray in your beard. Now, single pair Ethernet isn’t fast in the way we network engineers would normally think of fast. SPE runs at 10 megabits per second. But in the use cases SPE was designed for, 10Mbps is very fast indeed. To tell us all about single pair Ethernet is Peter Jones. Although Peter wears many hats in the networking industry, today he comes to the microphone as the chairperson of the Ethernet Alliance.
The post Heavy Networking 642: 10Mbps Single Pair Ethernet appeared first on Packet Pushers.