0

The Path the Resolverless DNS

Telecommunications infrastructure is not isolated from the world of politics, and its not just limited to pronoucments of who can provide 5G networks in various countries. The world of undersea cables is similarly being shaped by these same political tensions, and this is clearly evident in the western Pacific Ocean.

0

Hedge 132: DNS Complexity and the DNAME

We all intuitively know the DNS is complex—and becoming more complex over time. Describing just how complex, however, is difficult. Siva Kesava and Ryan Beckett just published a research paper taking on the task of describing DNS complexity, particularly in light of the new DNAME record type. It turns out its complex enough that you can no longer really validate zone files.

download

0

Network Service Mesh: Linking multicloud workloads

Networking multicloud-based enterprise workloads can be complicated and tedious, but there is an open-source software project underway that may change that.Called Network Service Mesh, the project would enable cloud-based Kubernetes workloads to communicate securely regardless of where they are located in disparate clouds and is under the auspices of the Cloud Native Computing Foundation, which is part of the Linux Foundation. [ Get regularly scheduled insights by signing up for Network World newsletters. ] And the need for such technology is growing.  Cisco recently issued a study that says organizations with 5,000 or more employees are likely use more than 10 public-cloud providers and 20 to 100 SaaS providers across categories such as email, collaboration and video calling, and customer-relationship and human-capital management.To read this article in full, please click here

0

3 Questions About Behavioral Analytics, Answered

Behavioral analytics can power faster, smarter threat detection and response. How can you make these tools work for you?

0

The Role of Hop-by-Hop Analysis in Network Visibility

Hop-by-hop analysis can help NetOps realize increased visibility, which is needed to deliver the high-performance network experience that users demand today.

0

Cisco, Kyndryl team up on edge networking, private cloud, managed services

Cisco and Kyndryl have partnered to help enterprise customers implement a broad range of technologies from private 5G to data-center gear to edge devices.Under the partnership the companies will also provide software-defined networking (SDN), and secure multi-network wide area network (WAN) technology delivered as services, the vendors stated.  [ Get regularly scheduled insights by signing up for Network World newsletters. ]To read this article in full, please click here

0

IPv6 Buzz 102: The Problem With IPv4 Thinking

In this episode of IPv6 Buzz Ed, Scott, and Tom discuss "IPv4 thinking", what exactly it is, how it can be harmful to your IPv6 migration efforts, and—most importantly—how to avoid it.

The post IPv6 Buzz 102: The Problem With IPv4 Thinking appeared first on Packet Pushers.

0

IPv6 Buzz 102: The Problem With IPv4 Thinking

In this episode of IPv6 Buzz Ed, Scott, and Tom discuss "IPv4 thinking", what exactly it is, how it can be harmful to your IPv6 migration efforts, and—most importantly—how to avoid it.

0

Using Ixia-c to test RTBH DDoS mitigation

Remote Triggered Black Hole Scenario describes how to use the Ixia-c traffic generator to simulate a DDoS flood attack. Ixia-c supports the Open Traffic Generator API that is used in the article to program two traffic flows: the first representing normal user traffic (shown in blue) and the second representing attack traffic (show in red).

The article goes on to demonstrate the use of remotely triggered black hole (RTBH) routing to automatically mitigate the simulated attack. The chart above shows traffic levels during two simulated attacks. The DDoS mitigation controller is disabled during the first attack. Enabling the controller for the second attack causes to attack traffic to be dropped the instant it crosses the threshold.

The diagram shows the Containerlab topology used in the Remote Triggered Black Hole Scenario lab (which can run on a laptop). The Ixia traffic generator's eth1 interface represents the Internet and its eth2 interface represents the Customer Network being attacked. Industry standard sFlow telemetry from the Customer router, ce-router, streams to the DDoS mitigation controller (running an instance of DDoS Protect). When the controller detects a denial of service attack it pushed a control via BGP to the ce-router, Continue reading

0

The Zero Trust Approach to Data Management

Results of a September 2021 increased by 82% from 2020 to 2021 while big game hunting (BGH) ransomware attacks became more common. As attackers have become more sophisticated and more adaptable, they Continue reading

0

Data Center Switching ASICs Tradeoffs

A brief mention of Broadcom ASIC families in the Networking Hardware/Software Disaggregation in 2022 blog post triggered an interesting discussion of ASIC features and where one should use different ASIC families.

Like so many things in life, ASIC design is all about tradeoffs. Usually you’re faced with a decision to either implement X (whatever X happens to be), or have high-performance product, or have a reasonably-priced product. It’s very hard to get two out of three, and getting all three is beyond Mission Impossible.

0

Data Center Switching ASICs Tradeoffs

A brief mention of Broadcom ASIC families in the Networking Hardware/Software Disaggregation in 2022 blog post triggered an interesting discussion of ASIC features and where one should use different ASIC families.

Like so many things in life, ASIC design is all about tradeoffs. Usually you’re faced with a decision to either implement X (whatever X happens to be), or have high-performance product, or have a reasonably-priced product. It’s very hard to get two out of three, and getting all three is beyond Mission Impossible.

0

Arista switches target low-latency, high-density networks

Arista Networks has rolled out two new switches that are designed to reduce network latency and decrease the need for cables and devices in high-density environments.The 7130LBR Series and 7130B Series are aimed helping customers consolidate servers, network and FPGA devices in Layer 1 networks that are typically found in financial, banking and trading environments along with certain enterprise environments such as those that support lots of video and test labs. Read more: How to choose an edge gatewayTo read this article in full, please click here

0

‘Integration Tax’ Limits Network Automation

For every dollar spent on a new tech product, it costs several dollars to integrate that product. How can businesses overcome those costly obstacles that impede network engineering and ops teams' abilities to deploy new tech, like automation?

0

Potential Routing and Management Limitations in Private 5G Deployments

Businesses are expecting private 5G networks to be as easy to install and manage as Wi-Fi. And with few exceptions, that’s not the case right now.

0

ISC ’22: The AMD-Intel-Nvidia HPC race heats up

The International Supercomputer Conference (ISC) kicked off in Hamburg, Germany this week with the release of the TOPP500 list of the fastest supercomputers, with a computer named Frontier taking first place.Deployed at the US Department of Energy’s Oak Ridge National Labs, it is the first exascale machine (1018 floating point operations per second)—an HPE-Cray EX system powered by AMD Epyc CPUs and Instinct MI250 GPUs.Intel had hoped to win the exascale battle with another DoE computer called Aurora, but AMD beat it to the punch. Frontier also beat out competitors from China and Japan that had hoped to win the exascale race.To read this article in full, please click here

0

ISC ’22: The AMD-Intel-Nvidia HPC race heats up

The International Supercomputer Conference (ISC) kicked off in Hamburg, Germany this week with the release of the TOPP500 list of the fastest supercomputers, with a computer named Frontier taking first place.Deployed at the US Department of Energy’s Oak Ridge National Labs, it is the first exascale machine (1018 floating point operations per second)—an HPE-Cray EX system powered by AMD Epyc CPUs and Instinct MI250 GPUs.Intel had hoped to win the exascale battle with an other DoE computer called Aurora, but AMD beat it to the punch. Frontier also beat out competitors from China and Japan that had hoped to win the exascale race.To read this article in full, please click here

0

Day Two Cloud 149: On-Prem Cloud Networking With Netris (Sponsored)

Today's Day Two Cloud sponsor Netris promises to deliver a cloud-like experience for running your physical network. Netris software lets you build a private cloud on premises, and integrates with Terraform and Kubernetes. Our guest is Alex Saroyan, Netris CEO and founder.

0

Thinking Outside the Box for Network Acceleration

There is a continued push to go even “faster.” Lowering port to port latency while maintaining features and increasing link speeds and system density is a significant technology challenge for designers and the laws of physics. Since the first release of Arista’s 7100 and 7150 switch families, the company has been a partner in building best-in-class low latency trading networks that are today deployed in global financial institutions and trading locations.

Cutting edge customers took the approach of disaggregating network functions into pools of functionality – extremely fast Layer 1 switching, operating as low as 5 ns and FPGA-driven trading pipelines running at under 40 ns with the Arista 7130 family. This approach allowed more sophisticated L2 / L3 networking functionality, such as the ability to tap any flow or enable routing protocols, to run on general-purpose systems, including the Arista 7050X, 7060X and 7170 full-featured platforms, using merchant silicon with billions of packets per second and low latency.

0

MLAG Deep Dive: System Overview

Multi-Chassis Link Aggregation (MLAG) – the ability to terminate a Port Channel/Link Aggregation Group on multiple switches – is one of the more convoluted¹ bridging technologies². After all, it’s not trivial to persuade two boxes to behave like one and handle the myriad corner cases correctly.

In this series of deep dive blog posts, we’ll explore the intricacies of MLAG, starting with the data plane considerations and the control plane requirements resulting from the data plane quirks. If you wonder why we need all that complexity, remember that Ethernet networks still try to emulate the ancient thick yellow cable that could lose some packets but could never reorder packets or deliver duplicate packets.