In Central Asia: Experts Discuss Opportunities to Grow IXPs

When the Internet Society, Asian Development Bank, and the United Nations Economic and Social Commission for Asia and the Pacific examined the regional digital economy of Central Asia in 2015, it recommended investing in the development of Carrier-Neutral Internet Exchange Points (IXPs) to drive down connectivity costs and enable more people to connect on the […]

The post In Central Asia: Experts Discuss Opportunities to Grow IXPs appeared first on Internet Society.

Heavy Networking 582: The Future Of Networking With Nick McKeown

Nick McKeown, Professor of Electrical Engineering and Computer Science at Stanford University, stops by the Heavy Networking podcast to speculate on the future of networking. Professor McKeown has been a force behind the Software Defined Networking (SDN) movement and has co-founded successful startups including Nicira and Barefoot Networks.

The post Heavy Networking 582: The Future Of Networking With Nick McKeown appeared first on Packet Pushers.

Heavy Networking 582: The Future Of Networking With Nick McKeown

IT Chimes In: How Effective is Facial Recognition?

Interconnect Anywhere — Reach Cloudflare’s network from 1,600+ locations

Customers choose Cloudflare for our network performance, privacy and security.  Cloudflare Network Interconnect is the best on-ramp for our customers to utilize our diverse product suite. In the past, we’ve talked about Cloudflare’s physical footprint in over 200+ data centers, and how Cloudflare Network Interconnect enabled companies in those data centers to connect securely to Cloudflare’s network. Today, Cloudflare is excited to announce expanded partnerships that allows customers to connect to Cloudflare from their own Layer 2 service fabric. There are now over 1,600 locations where enterprise security and network professionals have the option to connect to Cloudflare securely and privately from their existing fabric.

Interconnect Anywhere is a journey

Since we launched Cloudflare Network Interconnect (CNI) in August 2020, we’ve been focused on extending the availability of Cloudflare’s network to as many places as possible. The initial launch opened up 150 physical locations alongside 25 global partner locations. During Security Week this year, we grew that availability by adding data center partners to our CNI Partner Program. Today, we are adding even more connectivity options by expanding Cloudflare availability to all of our partners’ locations, as well as welcoming CoreSite Open Cloud Exchange (OCX) and Infiny by Epsilon Continue reading

NFA v 21.05: multiple ASN info sources, support for MPLS labels, and more.

Happy to inform you that we’ve just released the new NFA version 21.05. Highlights of this Noction Flow Analyzer release include: Multiple

The post NFA v 21.05: multiple ASN info sources, support for MPLS labels, and more. appeared first on Noction.

Basic Linux Networking tips and tricks part-5: tcpdump

Here is another post of the series on basic network troubleshooting and tools under Linux. In this post, I will talk about tcpdump. Other posts of the series This post is part of a series of basic Linux Networking tips and tricks. The other posts of this series are: The ip and nmcli commands The mtr command The ss and netstat commands The curl command tcpdump Introduction I think the most essential element to debug a network problem is a packet capture tool or sniffer, and the most common one…

The post Basic Linux Networking tips and tricks part-5: tcpdump appeared first on AboutNetworks.net.

How to use the bash shell debugging mode: 2-Minute Linux Tips

In this Linux tip, learn how to use bash shell's "debugging mode". It can help you pinpoint problems, especially in long or complicated scripts.

Lessons Learned: Technology Still Matters

In June 2020, a friend of mine asked me to do a short presentation on lessons learned during my 35 years of being a networking engineer. It went reasonably well, so I decided to turn it into a webinar, starting with regardless of what the disruptive marketers tell you, technology still matters.

Lessons Learned: Technology Still Matters

In June 2020, a friend asked me to do a short presentation on lessons learned during my 35 years as a networking engineer. It went reasonably well, so I decided to turn it into a webinar, starting with regardless of what the disruptive marketers tell you, technology still matters.

Sunlight aims at more efficient virtualization

Virtualization software is dated and does not take full advantage of modern hardware, making it extremely power-inefficient and forcing data centers to overprovision hardware to avoid poor performance.That’s the pitch of Sunlight, a virtualization-software vendor whose products take advantage of technologies that didn’t exist when Xen, KVM, VMware and Hyper-V were first developed.[Get regularly scheduled insights by signing up for Network World newsletters.] “The cloud infrastructure or virtualization stacks have been designed and built 15 to 20 years ago,” said Kosten Metreweli, chief strategy officer of Sunlight. “So the big problem here is that back then, I/O, and particularly storage, was really slow. So fast forward, and we now have NVMe storage, which pushes millions of IOPS from a single device, which is orders of magnitude better than was possible just a few years ago.”To read this article in full, please click here

Sunlight aims at more efficient virtualization

Virtualization software is dated and does not take full advantage of modern hardware, making it extremely power-inefficient and forcing data centers to overprovision hardware to avoid poor performance.That’s the pitch of Sunlight, a virtualization-software vendor whose products take advantage of technologies that didn’t exist when Xen, KVM, VMware and Hyper-V were first developed.[Get regularly scheduled insights by signing up for Network World newsletters.] “The cloud infrastructure or virtualization stacks have been designed and built 15 to 20 years ago,” said Kosten Metreweli, chief strategy officer of Sunlight. “So the big problem here is that back then, I/O, and particularly storage, was really slow. So fast forward, and we now have NVMe storage, which pushes millions of IOPS from a single device, which is orders of magnitude better than was possible just a few years ago.”To read this article in full, please click here

Cisco upgrades intent-based-networking performance, security, analytics

Cisco brought new features to its DNA Center network-control platform that promise to improve performance, management analytics and security for its enterprise network customers.The new software features integration of a ThousandEyes agent that bulks-up the platform’s network-intelligence monitoring, a two-fold increase in the number of clients the system can support, and improved security and operational capabilities.NaaS is the future but it's got challenges DNA Center is the heart of Cisco’s intent-based networking strategy and is the vendor’s core-networking control platform supporting myriad services from analytics, network management and automation to assurance setting, fabric provisioning, and policy-based segmentation for wired and wireless enterprise networks. To read this article in full, please click here

Cisco upgrades intent-based-networking performance, security, analytics

Cisco brought new features to its DNA Center network-control platform that promise to improve performance, management analytics and security for its enterprise network customers.The new software features integration of a ThousandEyes agent that bulks-up the platform’s network-intelligence monitoring, a two-fold increase in the number of clients the system can support, and improved security and operational capabilities.NaaS is the future but it's got challenges DNA Center is the heart of Cisco’s intent-based networking strategy and is the vendor’s core-networking control platform supporting myriad services from analytics, network management and automation to assurance setting, fabric provisioning, and policy-based segmentation for wired and wireless enterprise networks. To read this article in full, please click here

Enabling You to Get the Best from AWS: Introducing the New Calico AWS Expert Certification

Why Create a Course About Calico in AWS?

Calico is the industry standard for Kubernetes networking and security. It offers a proven platform for your workloads across a huge range of environments, including cloud, hybrid, and on-premises.

Given this incredibly wide support, why did we decide to create a course specifically about AWS?

Well, our previous online course continues to be a great success (it’s self-paced, so if you haven’t already, we would love for you to take it and become an expert in Kubernetes networking and security). The course covers how Kubernetes networking works, how to configure and manage a Calico network, and how to secure your Kubernetes cluster.

Once you know the underlying concepts, it becomes a more important consideration to identify the nuanced differences between possible implementations. These become even more relevant once you have selected a platform to move forward with.

Amazon’s cloud computing platform, AWS, has played a huge role in changing the landscape around how users consume compute resources and data. As little as ten years ago, it would have been difficult to anticipate the speed with which companies and other organizations would embrace moving their precious compute resources and data out of their Continue reading

From MPLS to the Internet: Optimizing Enterprise Networking in a New Era of WAN

What the Heck Happened to the Internet? Fastly’s Hard Fall and Quick Recovery

Well, wasn’t that fun? On June 8, 2021, many internet users went to their usual sites such as Amazon, Reddit, CNN, or the New York Times and found nothing but an “Error 503 service unavailable” and an ominous “connection failure” note. So, what happened? The Commercial Internet Exchange (CIX) other features became important. In particular, everyone started demanding faster performance and lower latency. The solution? CDNs. These companies, which besides Fastly include market-leader Cloudflare, all use the same basic techniques to speed up the net. They take the data from popular sites and place it in distributed caches in points of presence (PoP) close to consumers. If that sounds familiar to you even if you’re a cloud native developer and not a network administrator there’s a good reason. CDNs were one of the first business models Continue reading

Introducing Zero Trust Private Networking

Starting today, you can build identity-aware, Zero Trust network policies using Cloudflare for Teams. You can apply these rules to connections bound for the public Internet or for traffic inside a private network running on Cloudflare. These rules are enforced in Cloudflare’s network of data centers in over 200 cities around the world, giving your team comprehensive network filtering and logging, wherever your users work, without slowing them down.

Last week, my teammate Pete’s blog post described the release of network-based policies in Cloudflare for Teams. Your team can now keep users safe from threats by limiting the ports and IPs that devices in your fleet can reach. With that release, security teams can now replace even more security appliances with Cloudflare’s network.

We’re excited to help your team replace that hardware, but we also know that those legacy network firewalls were used to keep private data and applications safe in a castle-and-moat model. You can now use Cloudflare for Teams to upgrade to a Zero Trust networking model instead, with a private network running on Cloudflare and rules based on identity, not IP address.

To learn how, keep reading or watch the demo below.

Deprecating the castle-and-moat model

Private Continue reading

Supporting IXPs in Asia-Pacific: New Partnership with the Asia Pacific Internet Exchange Association

The Internet Society and the Asia Pacific Internet Exchange Association (APIX) commit to work together to support communities that build the Internet and improve digital infrastructure in the region. At the peak of the COVID-19 pandemic, average international Internet traffic increased by 48%, putting an unprecedented strain on the Internet. The trend was the same […]

The post Supporting IXPs in Asia-Pacific: New Partnership with the Asia Pacific Internet Exchange Association appeared first on Internet Society.

Serving WebP & AVIF images with Nginx

WebP and AVIF are two image formats for the web. They aim to produce smaller files than JPEG and PNG. They both support lossy and lossless compression, as well as alpha transparency. WebP was developed by Google and is a derivative of the VP8 video format.¹ It is supported on most browsers. AVIF is using the newer AV1 video format to achieve better results. It is supported by Chromium-based browsers and has experimental support for Firefox.²

Your browser supports WebP and AVIF image formats. Your browser supports none of these image formats. Your browser only supports the WebP image format. Your browser only supports the AVIF image format.

Without JavaScript, I can’t tell what your browser supports.

Converting and optimizing images​

For this blog, I am using the following shell snippets to convert and optimize JPEG and PNG images. Skip to the next section if you are only interested in the Nginx setup.

JPEG images​

JPEG images are converted to WebP using cwebp.

find media/images -type f -name '*.jpg' -print0 \
  | xargs -0n1 -P$(nproc) -i \
      cwebp -q 84 -af '{}' -o '{}'.webp

They are converted to AVIF using avifenc Continue reading