Tech Bytes: Manage Cloud Risks With Fortinet’s New FortiCNP Offering (Sponsored)
Today on the Tech Bytes podcast we talk about managing cloud risk with sponsor Fortinet. Fortinet recently announced its new FortiCNP product, which collects and correlates security findings, alerts and other data from cloud-native services, analyzes vulnerabilities, looks for misconfigurations, and more.
The post Tech Bytes: Manage Cloud Risks With Fortinet’s New FortiCNP Offering (Sponsored) appeared first on Packet Pushers.
Tech Bytes: Manage Cloud Risks With Fortinet’s New FortiCNP Offering (Sponsored)
Today on the Tech Bytes podcast we talk about managing cloud risk with sponsor Fortinet. Fortinet recently announced its new FortiCNP product, which collects and correlates security findings, alerts and other data from cloud-native services, analyzes vulnerabilities, looks for misconfigurations, and more.Network Break 394: New IP Infusion NOS, Cisco Breached, WLAN Gear Backlogged To 2023
This week's Network Break podcast covers tech news including IP Infusion's 6.0 release of its OcNOS network OS, the intersection of politics and supply chains, Cisco's breach by the Lapsus group, Starlink getting rejected by the FCC for subsidies, and more.BGP Peering (2)
I recorded the beginnings of a BGP training series over at Packet Pushers a short while back; they’ve released these onto youtube (so you can find the entire series there). I’m highlighting one of these every couple of weeks ’til I’ve gone through the entire set of recordings. In this recording, I’m talking through some more interesting aspects of BGP peering, including challenges with IPv6 link local nexthops, promiscuous peering, and capabilities.
VMware NSX Achieves Common Criteria Certification for Network Devices (NDcPP 2.2e)
We are excited to share that as of July 2022, VMware NSX-T version 3.1 has passed Common Criteria certification for Network Devices under Collaborative Protection Profile 2.2e, also known as NDcPP 2.2e. This is one of many testaments to our commitment to providing industry-leading certified solutions for customers from federal departments and agencies, international governments and agencies, and other highly regulated industries and sectors. Along with FIPS, DISA-STIG, ICSA Labs firewall certification, and several other independent evaluations, the NDcPP 2.2e certification validates NSX as a reliable network virtualization platform that satisfies rigorous government security standards.
VMware NSX 3.1 is now listed:
- National Information Assurance Partnership, NIAP, Product Compliant List https://www.niap-ccevs.org/Product/Compliant.cfm?PID=11217
- Common Criteria Recognition Agreement, CCRA, https://www.commoncriteriaportal.org/products/
- VMware NSX NDcPP 2.2e Certificate – https://www.commoncriteriaportal.org/files/epfiles/st_vid11217-ci.pdf
From the NIAP Security Evaluation Summary:
The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme. The criteria against which the VMware NSX-T Data Center 3.1 was evaluated are described in the Common Criteria for Information Technology Security Evaluation, Version 3.1 rev 5. The evaluation methodology used by the evaluation team Continue reading
Black Hat Postmortem: Geopolitical Risks and Complexity on the Rise
Throughout the conference, speakers noted the increased risks due to geopolitics, digital transformation, and the move to cloud.Situational Awareness for Network Migrations
At IP Architechs we perform a lot of network migrations and it is no secret network migrations/ maintenance windows can be one of the most nerve-racking things for engineers, managers, and business leaders for a variety of reasons.
For the engineers the uncertainty might be caused by fear of failure, not being able to predict the outcome due to complexity, rushed on preparation to meet a deadline, or a litany of other reasons.
For managers and business leaders it might be more along the lines of; what happens if this goes wrong, how will this effect my bottom line, are there going to be 1000s of trouble tickets come 8/9am when everyone hits the office, and so on.
The Preparation
We’re going to look at this at the perspective of the engineer throughout. The prep work is probably one of the most important pieces of success. This is where you do many things including but not limited to:
- building and testing the configuration to be implemented
- making a rollback plan — this might be something as simple as move a cable and shut an interface or a multistep/multi-device plan
- know the situation surrounding the window
Lets explore understanding the situation Continue reading
s impossible to be able to deliver those speeds to everybody across an entire county.Crawler Hints supports Microsoft’s IndexNow in helping users find new content
The web is constantly changing. Whether it’s news or updates to your social feed, it’s a constant flow of information. As a user, that’s great. But have you ever stopped to think how search engines deal with all the change?
It turns out, they “index” the web on a regular basis — sending bots out, to constantly crawl webpages, looking for changes. Today, bot traffic accounts for about 30% of total traffic on the Internet, and given how foundational search is to using the Internet, it should come as no surprise that search engine bots make up a large proportion of that what might come as a surprise is how inefficient the model is, though: we estimate that over 50% of crawler traffic is wasted effort.
This has a huge impact. There’s all the additional capacity that owners of websites need to bake into their site to absorb the bots crawling all over it. There’s the transmission of the data. There’s the CPU cost of running the bots. And when you’re running at the scale of the Internet, all of this has a pretty big environmental footprint.
Part of the problem, though, is nobody had really stopped to ask: maybe Continue reading