Member News: Chapters Respond to Proposed Internet Regulations
Big, big data: Several chapters of the Internet Society have joined the debate over proposed government Internet regulations. The Israeli Internet Association, for example, has raised concerns about a Ministry of Communications proposal to require all communications companies in Israel, including cellular, Internet, and television providers, to regularly give the ministry detailed information on the […]
The post Member News: Chapters Respond to Proposed Internet Regulations appeared first on Internet Society.
The Software-Defined Revolution: Making SD-Branch Possible
SD-Branch is the next evolution in software-defined networking, providing a single interface to configure, monitor, and troubleshooting multiple functions.Boosting Education and Research during COVID-19
When COVID-19 struck in 2020 and higher education institutions closed, National Research and Education Networks (NRENs) in Southeast Asia, instantly stepped up to ensure the continuity of education and research. We want to shine the light on how NRENs via collaboration have risen to the COVID-19 challenge of and demonstrated their commitment and creativity in […]
The post Boosting Education and Research during COVID-19 appeared first on Internet Society.
Heavy Networking 576: Deception And Canaries In Network Security
Today's Heavy Networking examines the role of deception and "canaries" in network security. A canary sits on a network segment (or multiple segments) and sounds the alarm if it comes under attack. Is this an effective security tool? How is it deployed and operated? What are the drawbacks? We discuss with guest Haroon Meer.Heavy Networking 576: Deception And Canaries In Network Security
Today's Heavy Networking examines the role of deception and "canaries" in network security. A canary sits on a network segment (or multiple segments) and sounds the alarm if it comes under attack. Is this an effective security tool? How is it deployed and operated? What are the drawbacks? We discuss with guest Haroon Meer.
The post Heavy Networking 576: Deception And Canaries In Network Security appeared first on Packet Pushers.
Katacoda Scenario: netsim-tools with Containerlab and FRRouting
TL&DR: If you’d like to see how easy it is to deploy a full-blown OSPF+BGP network with netsim-tools together with Containerlab and FRRouting, check out this Katacoda scenario.
What is Katacoda? An awesome environment that allows content authors to create scenarios running on Linux VMs accessible through a web browser. I can only hope they’ll fix the quirks and keep going – I have so many ideas what could be done with it.
Why FRR? Not too long ago Jeroen van Bemmel sent me a link to a simple Katacoda scenario he created to demonstrate how to set up netsim-tools and containerlab. His scenario got the tools installed and set up, but couldn’t create a running network as there are almost no usable Network OS images on Docker Hub (that is accessible from within Katacoda) – the only image I could find was FRR.
SecureCRT Logging
My SecureCRT logging config.VMware Debuts A SASE Distributed Work Conglomeration Called Anywhere Workspace
VMware has announced the Anywhere Workspace. Designed to help control access to premises and cloud apps, and enforce security policies regardless of where an employee may be working, Anywhere Workspace is an assemblage of several existing products in VMware’s portfolio: endpoint management for laptops and smartphones, access control, endpoint security, and cloud-based security services. The […]
The post VMware Debuts A SASE Distributed Work Conglomeration Called Anywhere Workspace appeared first on Packet Pushers.
SDN: The Evolution of Data Center Network Automation
In the last blog we talked about mainstream automation approaches leveraging Linux scripting tools and automation framework platforms, third party...
The post SDN: The Evolution of Data Center Network Automation appeared first on Pluribus Networks.
Announcing Calico Enterprise 3.5: New ways to automate, simplify and accelerate Kubernetes adoption and deployment
We are thrilled to announce the availability of Calico Enterprise 3.5, which delivers deep observability across the entire Kubernetes stack, from application to networking layers (L3–L7). This release also includes data plane support for Windows and eBPF, in addition to the standard Linux data plane. These new capabilities are designed to automate, simplify and accelerate Kubernetes adoption and deployment. Here are highlights from the release…
Application-level security and observability: Get the benefits of a service mesh, minus the operational complexity
The majority of operational problems inherent to deploying microservices in a distributed architecture are linked to two areas: security and observability. At the application level, the need to understand all aspects associated with service-to-service communication within the cluster becomes paramount. DevOps teams often struggle with these questions: Where is monitoring needed? How can I understand the impact of issues and effectively troubleshoot? How can I effectively protect application-level data?
If observability and security are your primary drivers for considering a service mesh, Calico provides L3–L7 observability and security without the additional overhead associated with a service mesh. Calico integrates Envoy at the node level to provide deep observability of microservices at the application level. Since HTTP is one of Continue reading
Announcing Calico Enterprise 3.5: New ways to automate, simplify and accelerate Kubernetes adoption and deployment
We are thrilled to announce the availability of Calico Enterprise 3.5, which delivers deep observability across the entire Kubernetes stack, from application to networking layers (L3–L7). This release also includes data plane support for Windows and eBPF, in addition to the standard Linux data plane. These new capabilities are designed to automate, simplify and accelerate Kubernetes adoption and deployment. Here are highlights from the release…
Application-level security and observability: Get the benefits of a service mesh, minus the operational complexity
The majority of operational problems inherent to deploying microservices in a distributed architecture are linked to two areas: security and observability. At the application level, the need to understand all aspects associated with service-to-service communication within the cluster becomes paramount. DevOps teams often struggle with these questions: Where is monitoring needed? How can I understand the impact of issues and effectively troubleshoot? How can I effectively protect application-level data?
If observability and security are your primary drivers for considering a service mesh, Calico provides L3–L7 observability and security without the additional overhead associated with a service mesh. Calico integrates Envoy at the node level to provide deep observability of microservices at the application level. Since HTTP is one of Continue reading
Service Mesh and Proxy in Cloud-Native Applications
The heart of any service mesh is the proxy. The proxy serves as the data plane and determines the features, functionality, and performance of your meshItaly Celebrates Internet Anniversary
On 30 April, the Internet Society Italy Chapter is scheduled to celebrate a major anniversary, marking 35 years since the country’s first connection to the Internet. On that day in 1986, at about 6 p.m., a network connection was established between the former CNUCE Institute of the National Research Council in Pisa, Italy, and a […]
The post Italy Celebrates Internet Anniversary appeared first on Internet Society.
Why Use OpenShift To Deliver Kubernetes? (Stu Miniman) – Video
Red Hat’s Stu Miniman chats with Day Two Cloud podcast hosts Ned Bellavance and Ethan Banks on why OpenShift is the right platform for some companies to consume Kubernetes. MORE PODCASTS FOR IT PROS? Why, yes, thanks for asking…packetpushers.net/subscribe. You can subscribe to the Packet Pushers’ YouTube channel for more videos as they are published. […]
The post Why Use OpenShift To Deliver Kubernetes? (Stu Miniman) – Video appeared first on Packet Pushers.
Nokia Lab | LAB 6 RSVP-TE CSPF |
Hello everyone!
Today is the second RSVP-TE lab. So I will try to show the differences between TE LSP and non-TE LSP. And we will start to investigate the real traffic engineering features - hop limit and admin groups. I'm using topology and RSVP-TE infrastructure from the previous lab.
Please check my first lab for input information.
Topology example
Lab tasks and questions:
- Comprasion TE LSP and non-TE LSP
- create LSP from R1 to R6 with an "empty" path and CSPF option - name to_R6
- create another LSP from R1 to R6 with an "empty" path and without CSPF option - name to_R6_no_CSPF
- examine LSP signaling process
- capture PATH messages for every LSP in the different point of our topology
- Do PATH messages contain ERO?
- describe the difference in signaling process - TE LSP/ non-TE LSP
- Try to increase link metric R2 - R4 and examine LSP behavior
- Does Head-end resignal LSP to_R6? Why?
- exec manual resignal (see useful debug commands for reference)
- What is the default value of resignal timer?
- examine Make-before-break process
- How does it help to keep LSP in Continue reading