The post Noction Flow Analyzer v 21.08 has just been released. appeared first on Noction.
This last week I was talking to someone at a small startup that intends to eliminate all the complex routing from campus networks. In the past, when reading blog posts about Kubernetes, I’ve read about how it was designed to eliminate routing protocols because “routing protocols are so complex.”
Color me skeptical.
There are two reasons for complexity in a design. The first is you’re solving a hard problem. The second is you’ve made bad design choices in the past, and you’re pasting complexity on top to solve some perceived problem (whether perceived or real).
The problem with all this talk about building something that’s “less complex” is people tend to see complexity of the first kind and think, “we can get rid of that complexity if we start over.” Failing to understand the past before building the future is a recipe for repeated failures of the same kind. Building a network without a distributed routing protocol hasn’t been tried before either, right? Well, yes, it has … We either forget how it turned out, or we say “well, that’s not the same thing I’m talking about here” (just like “real socialism hasn’t ever been tried”).
Even worse, Continue reading
Concerns over scanning iPhone photos; No more Zoombombing; Banning Chinese hardware; Breaking the language barrier: More U.S. broadband funding.
The post The Week in Internet News: Apple Plans to Scan U.S. iPhone Photos appeared first on Internet Society.
This week's Network Break podcat discusses Marvell's Innovium buy and its impact on the high-end Ethernet market, new Juniper security software for applications, Arista financial results and component concerns, and more IT news.
The post Network Break 345: Marvell Acquires High-End Ethernet ASICs; Arista CEO Says Component Shortage ‘Worst I’ve Seen’ appeared first on Packet Pushers.
Today on the Tech Bytes sponsored podcast we're talking SD-WAN with Ascent Health & Wellness, a digital healthcare platform for pharmaceutical distribution. We discuss how the company deployed Aruba EdgeConnect to ensure uptime for critical pharmaceutical fulfillment services, speed up order processing, and provide robust performance for cloud-based business apps.
The post Tech Bytes: Pharma Distributor Ensures Uptime, App Performance With Aruba SD-WAN (Sponsored) appeared first on Packet Pushers.
Have you ever found that a network usage reported by your commercial NetFlow analyzer does not match the actual values or that software contains bugs? ...
The post Free and Open Source NetFlow analyzers. When Free isn’t really Free. appeared first on Noction.
The post Tier 1 Carriers Performance Report: July, 2021 appeared first on Noction.
Online learning was on the rise for many years. However, the pandemic pushed this learning even further as people are now doing everything from their homes. After all, online is more effective, cheaper, and doesn’t require much time and effort than conventional education.
If you want to make use of this time to learn more, you are in the right place. Here are the top online learning websites for you to learn new skills.
Udemy is one of the most popular online learning platforms out there. You can choose from more than a hundred thousand courses. That is why it is an ideal choice for people that want to diversify their education by learning new things.
Keep in mind that you will have to purchase a course and then start learning. However, courses are not too expensive and will not put a significant dent in your pocket. After each course, you get a completion certificate.
Skillshare is a highly diverse learning platform. It has more than twenty-thousand classes, and it offers a two-month free trial to all its users. After that, you can either pay $15 each month or $99 per year.
From lifestyle to music Continue reading
Two interesting container images were released in June/July 2021:
Both images can be downloaded with no strings attached (two major wins for the good guys) and are supported with the latest release of netsim-tools:
Two interesting container images were released in June/July 2021:
Both images can be downloaded with no strings attached (two major wins for the good guys) and are supported with the latest release of netsim-tools:
This chapter introduces Data-Plane operation and explains how the data packets from EP3 (IP 172.16.30.3) in Datacenter Fabric are forwarded via SD-WAN to EP1 (IP 172.16.100.10) in Campus Fabric. (1) EndPoint3 sends the ICMP Request packet to its gateway switch Leaf-11. Leaf-11 makes routing decisions based on the VRF NWKT routing table. Before forwarding the packet, Leaf-11 adds a VXLAN header where it uses L3VNI 10077. It also sets the outer IP header where it uses the Border-Leaf-13 tunnel interface’s IP address 192.168.50.13 as a destination. Spine-1 routes the packet to Border-Leaf-13 based on the outer IP address. Border-Leaf-13 notices that the destination IP address of the received IP packet belongs to its’s NVE1 tunnel interface. It removes the outer IP header and based UDP destination port it notices that this is VXLAN encapsulated packet. It knows that L3VNI 10077 belongs to VRF NWKT. It strips off the VXLAN header and routes the packet to vEdge-2. The ingress interface towards DC in vEdge-2 belongs to VPN 10. vEdge-2 consults its routing table. Based on it, vEdge-2 constructs tunnel headers and sends ICMP Request to vEdge-1 via Public-Internet using MPLS Label 1003 as a VPN identifier. Routers in Internet routes packet based on the outer destination IP address. When vEdge-1 receives the packet, it notices that the destination IP address is its’ Public IP address. It first removes the outer IP header. Then it checks the tunnel header. Based on the Label value 1003, it knows that packet belongs to VPN 10. It consults the VPN 10 RIB and routes the packet to Border-PxTR-13. The ingress interface on Border-PxTR-13 belongs to VRF 100_NWKT that belongs to LISP Instance 100. It checks the Instance 100 specific LISP mapping in order to know how it should route the packet. The LISP mapping Database does not contain the information because this is the first packet to destination 172.16.100.10. Border-PxTR-13 sends a LISP Map-Request message to MapSrv-22, which replies with a LISP Map-Reply message, where it describes the RLOC of Edge-xTR-11 that has registered the IP address 172.16.100.10. I have excluded the Map-Request/Reply processes from figure 6-1 to keep the figure simple. Border-Leaf-13 encapsulates the ICMP Request packet with a tunnel header. It sets the Instance-Id 100 on the VXLAN header and adds the outer IP header where it uses the Edge-xTR-11’s IP address 192.168.0.13 as a destination address. Core-1 routes the packet to Edge-xTR-11 based on the outer IP header destination address. Edge-xTR-11 processes the ingress IP packet because the destination IP address belongs to it. Based on the destination UDP port 4789, it knows that the following header is a VXLAN header. Edge-xTR-11 knows that the LISP Instance-Id 100 is bind to BD 100. Because Edge-xTR-11 has an L3 interface in BD 100, it resolves the MAC address for the IP address 172.16.100.10 from the ARP table and the egress interface for the MAC from the MAC address table. EP1 processes the ICMP Request packet and sends the ICMP Reply to EP3.
Figure 6-1:End-to-End Data-Plane Operation.
Continue reading