NVIDIA ConnectX SmartNICs
This article describes how use the instrumentation built into ConnectX SmartNICs for data center wide network visibility. Real-time network telemetry for automation provides some background, giving an overview of the sFlow industry standard with an example of troubleshooting a high performance GPU compute cluster.
Linux as a network operating system describes how standard Linux APIs are used in NVIDIA Spectrum switches to monitor data center network performance. Linux Kernel Upstream Release Notes v5.19 describes recent driver enhancements for ConnectX SmartNICs that extend visibility to servers for end-to-end visibility into the performance of high performance distributed compute infrastructure.
The open source Host sFlow agent uses standard Linux APIs to configure instrumentation in switches and hosts, streaming the resulting measurements to analytics software in real-time for comprehensive data center wide visibility.
psample { Continue reading
HS031 Kolide and Honest Security
We discuss how Kolide tools engage the user to improve end-point security. Monitoring devices and then contacting the user to gather more information and provide contextual questions is a novel approach.
The post HS031 Kolide and Honest Security appeared first on Packet Pushers.
HS031 Kolide and Honest Security
We discuss how Kolide tools engage the user to improve end-point security. Monitoring devices and then contacting the user to gather more information and provide contextual questions is a novel approach.
Retailers Explore Drone Delivery Options as Market for Faster Fulfillment Emerges
Early implementers favor partnerships over Amazon’s expansive, do-it-yourself model. What are the top considerations for IT leaders?Response: Why You Shouldn’t Tie IP Addresses to Tokens – Akamai
Unique identifies are hard - part two zillion
ZTNA Revisited: Why Zero Trust Network Access Isn’t Really About the Network
One of the people who coined the term Zero Trust Network Access says that if could do it again…he’d name it something else.Network Break 395: Broadcom Ships 51.2Tbps ASIC; Extreme’s New AP Goes Outdoors; Lloyd’s Rethinks Cyber Insurance Policies
This week's Network Break podcast drills into features in Broadcom's newest Tomahawk ASIC, a new Wi-Fi 6E from Extreme for outdoor use, and a $262 million infusion for the startup DriveNets. We also cover serious Apple vulnerabilities, why Lloyd's is rethinking cyber insurance for state-sponsored attacks, Cisco financial results, and more.Internet Edge IP SLA Deep Dive
It is a common design to have an internet Edge router connected to two different internet service providers to protect against the failure of an ISP bringing the office down. The topology may look something like this:
The two ISPs are used in an active/standby fashion using static routes. This is normally implemented by using two default routes where one of the routes is a floating static route. It will look something like this:
ip route 0.0.0.0 0.0.0.0 203.0.113.1 name PRIMARY ip route 0.0.0.0 0.0.0.0 203.0.113.9 200 name SECONDARY
With this configuration, if the interface to ISP1 goes down, the floating static route which has an administrative distance (AD) of 200 will be installed and traffic will flow via ISP2. The drawback to this configuration is that it only works if the physical interface goes down. What happens if ISP1’s CPE has the interface towards the customer up but the interface towards the ISP Core goes down? What happens if there is a failure in another part of the ISP’s network? What if all interfaces are up but Continue reading