0

Heavy Networking 543: What 2020 Internet Outages Teach Us About Managing Remote Work (Sponsored)

Stuff breaks all the time. With so many people working from home, most of the stuff that's breaking isn't yours, but that doesn’t mean it’s not your problem. Today's Heavy Networking, sponsored by ThousandEyes, reviews critical outages in 2020 and considers network design tips for Internet and remote work. Our guests from ThousandEyes are Angelique Medina and Archana Kesavan.

The post Heavy Networking 543: What 2020 Internet Outages Teach Us About Managing Remote Work (Sponsored) appeared first on Packet Pushers.

0

Heavy Networking 543: What 2020 Internet Outages Teach Us About Managing Remote Work (Sponsored)

Stuff breaks all the time. With so many people working from home, most of the stuff that's breaking isn't yours, but that doesn’t mean it’s not your problem. Today's Heavy Networking, sponsored by ThousandEyes, reviews critical outages in 2020 and considers network design tips for Internet and remote work. Our guests from ThousandEyes are Angelique Medina and Archana Kesavan.

0

When Will You Need Wi-Fi 6E at Home?

The pandemic has really done a number on most of our office environments. For some, we went from being in a corporate enterprise with desks and coffee makers to being at home with a slightly different desk and perhaps a slightly better coffee maker. However, one thing that didn’t improve was our home network.

For the most part, the home network has been operating on a scale radically different from those of the average corporate environment. Taking away the discrepancies in Internet speed for a moment you would have a hard time arguing that most home wireless gear is as good or better than the equivalent enterprise solution. Most of us end up buying our equipment from the local big box store and are likely shopping as much on price as we are on features. As long as it supports our phones, gaming consoles, and the streaming box we picked up we’re happy. We don’t need QoS or rogue detection.

However, we now live in a world where the enterprise is our home. We live at work as much as we work where we live. Extended hours means we typically work past 5:00 pm or start earlier than 8:00 or Continue reading

0

Tech Bytes: Providing Secure Work-From-Anywhere With Zscaler (Sponsored)

For many organizations it’s now incumbent on IT to provide a seamless, secure experience for end users whether they’re working from home, in the office, or anywhere. On today's Tech Bytes podcast, sponsored today by Zscaler, we examine how to deliver a safe, high-performance remote access experience.

0

Tech Bytes: Providing Secure Work-From-Anywhere With Zscaler (Sponsored)

For many organizations it’s now incumbent on IT to provide a seamless, secure experience for end users whether they’re working from home, in the office, or anywhere. On today's Tech Bytes podcast, sponsored today by Zscaler, we examine how to deliver a safe, high-performance remote access experience.

The post Tech Bytes: Providing Secure Work-From-Anywhere With Zscaler (Sponsored) appeared first on Packet Pushers.

0

How to Optimize IT Costs

You do not need to sacrifice quality for a cheaper solution to save your IT department’s costs. Sometimes an optimization of infrastructure management will be sufficient. Alexander Grishin, ISPsystem’s Product Manager for VMmanager virtualization platform, shares his views on the topic.

0

Hand and Physical Therapy Tips for Arthritis

Millions of people all over the world suffer from arthritis. In the present day, it is one of the most common medical conditions in the world. There is a common misconception about arthritis that it happens due to old age and that most people suffering from it are old. Where old age can affect your bones and joints health, people from all age groups can suffer from arthritis.

What Exactly Is Arthritis?

It is a medical condition that causes pain and inflammation in your joints. It can happen on joints on any part of the body. It can cause severe pain and affect your physical functioning. People who have arthritis in their hand joints have to tolerate excruciating pain. Our hands are something we have to use on a daily basis, and when you have arthritis in your hand joints then it can have severe consequences. You will not be able to perform any task if your hands aren’t at 100% health.

How Can Physical Therapy Be Used to Treat Arthritis?

There are many ways that arthritis can be treated. Doctors would always suggest medication and then ask you to focus on physical therapy as well. Physical therapy is as Continue reading

0

PCAP Or It Didn’t Happen

The packet capture is the one tool in the network engineer’s pocket that doesn’t lie. Or does it? In this episode we talk about the fundamental components of packet captures and how to use them effectively in troubleshooting and managing your network.

It’s also time for the NetDevOps survey. Whether you’re someone who utilizes automation as a fundamental tool of your network or someone who is just thinking about starting an automation journey, your input is needed. Please take a few minutes to fill out the NetDevOps Survey.

 

Network Collective thanks NVIDIA for sponsoring today’s episode. NVIDIA is positioned as the leader in open networking and provides end-to-end solutions at all layers of the software and hardware stack. You can experience NVIDIA Cumulus in the Cloud for free!  Head on over to: https://cumulusnetworks.com/automationpod to see what a modern open network operating system looks like for yourself.

---

Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/

The post PCAP Or It Didn’t Happen appeared first on Network Collective.

0

Weekend Reads 100920

In 2007, ICANN’s Generic Names Supporting Organization Committee on New Top-Level Domains confirmed its rationale for the introduction of new Top Level Domains. It included a number of reasons, such as “to promote competition in the provision of registry services, and to add to consumer choice new gTLDs.”

Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today.

The Cybersecurity and Infrastructure Security Agency (CISA) and the Multi-State Information Sharing & Analysis Center (MS-ISAC) have jointly released an in-depth guide that not only includes recommendations on how you can reduce the chances of being the next ransomware victim, but also provide a step-by-step checklist for how to respond.

A not-so-funny thing has happened as organizations have transitioned to the cloud: In many instances, they have also lost accountability and forgotten about critical responsibilities.

Every time a government passes a law that affects the Internet, tech companies must ask themselves a critical question: can they still properly provide their services while protecting user privacy under the new rules?

Facebook recently Continue reading

0

5G Is Not the Cure-All for Network Struggles

While building out 5G is important for mobile, the immediate focus should be on shoring up broadband networks that supply connectivity to people stuck at home.

0

Exploring WebAssembly AI Services on Cloudflare Workers

This is a guest post by Videet Parekh, Abelardo Lopez-Lagunas, Sek Chai at Latent AI.

Edge networks present a significant opportunity for Artificial Intelligence (AI) performance and applicability. AI technologies already make it possible to run compelling applications like object and voice recognition, navigation, and recommendations.

AI at the edge presents a host of benefits. One is scalability—it is simply impractical to send all data to a centralized cloud. In fact, one study has predicted a global scope of 90 zettabytes generated by billions of IoT devices by 2025. Another is privacy—many users are reluctant to move their personal data to the cloud, whereas data processed at the edge are more ephemeral.

When AI services are distributed away from centralized data centers and closer to the service edge, it becomes possible to enhance the overall application speed without moving data unnecessarily.  However, there are still challenges to make AI from the deep-cloud run efficiently on edge hardware. Here, we use the term deep-cloud to refer to highly centralized, massively-sized data centers. Deploying edge AI services can be hard because AI is both computational and memory bandwidth intensive. We need to tune the AI models so the computational latency and bandwidth Continue reading

0

Faucet Deep Dive on Software Gone Wild

This podcast introduction was written by Nick Buraglio, the host of today’s podcast.

In the original days of this podcast, there were heavy, deep discussions about this new protocol called “OpenFlow”. Like many of our most creative innovations in the IT field, OpenFlow came from an academic research project that aimed to change the way that we as operators managed, configured, and even thought about networking fundamentals.

For the most part, this project did what it intended, but once the marketing machine realized the flexibility of the technology and its potential to completely change the way we think about vendors, networks, provisioning, and management of networking, they were off to the races.

We all know what happened next.

0

Data Center and Cloud Environments for Next-Generation Data Stacks

Shrey Parekh, Cisco AppDynamics’ senior manager of product marketing, and

0

Closing security gaps and eliminating blind spots in the data center: a software-based approach to securing east-west traffic

It’s no secret that traditional firewalls are ill–suited to securing east-west traffic. They’re static, inflexible, and require hair-pinning traffic around the data center. Traditional firewalls have no understanding of application context, resulting in rigid, static policies, and they don’t scale—so they’re unable to handle the massive workloads that make up modern data center traffic. As a result, many enterprises are forced to selectively secure workloads in the data center, creating gaps and blind spots in an organization’s security posture. 

 

A software-based approach to securing east-west traffic changes the dynamic. Instead of hair-pinning traffic, VMware NSX Service-defined Firewall (SDFW) applies security policies to all workloads inside the data center, regardless of the underlying infrastructure. This provides deep context into every single workload.  

 

Anyone interested in learning how the Service-defined Firewall can help them implement micro–segmentation and network segmentation, replace legacy physical hardware, or meet growing compliance needs and stop the lateral spread of threats, should check out the following sessions: 

 

Creating Virtual Security Zones with NSX Firewall Continue reading

0

FCC outs telecoms with banned Chinese 5G hardware

The Federal Communications Commission has identified 51 U.S. mobile carriers that still have Huawei and ZTE 5G gear in their networks despite a government policy that bans that equipment from US service-provider networks. 5G resources What is 5G? Fast wireless technology for enterprises and phones How 5G frequency affects range and speed Private 5G can solve some problems that Wi-Fi can’t Private 5G keeps Whirlpool driverless vehicles rolling 5G can make for cost-effective private backhaul CBRS can bring private 5G to enterprises Verizon, CenturyLink (which plans to rebrand as Lumen), and Cincinnati Bell are among the most prominent names on the list, and most of the others are small regional providersTo read this article in full, please click here

0

Meet compliance requirements cost-efficiently by implementing East-West security at scale 

Compliance is more than a necessary evil. Sure, it’s complex, expensive, and largely driven by manual processes, but it’s also a business enabler. Without the ability to prove compliance, you wouldn’t be able to sell your products in certain markets or industries. But meeting compliance requirements can’t be cost-prohibitive: if the barriers are too high, it may not make business sense to target certain markets.  

 

The goal, of course, is to meet and prove compliance requirements in the data center in a simple, cost-effective way. With the intent to provide safety and maintain the privacy of customers, new government and industry regulations are becoming more robust, and many require organizations to implement East-West security through micro-segmentation or network segmentation inside the data center. Of course, this is easier said than done. Bandwidth and latency issues caused by hair–pinning traffic between physical appliances inhibit network segmentation and micro-segmentation at scale.  

 

VMware NSX applies a software-based approach to firewalling that delivers the simplicity and scalability necessary to secure East-West traffic. It does this with no blind spots or gaps in coverage— Continue reading

0

Intrinsic Security: Take security to the next level

The other guys will have you believe that more is better. You have a problem, just buy a solution and patch the hole. Security operations too siloed? Just cobble together some integrations and hope that everything works together. 

 

VMware thinks differently. We believe that “integrated” is just another word for “complexity.” And clearly, complexity is the enemy of security. 

 

Integrated security is bolted–on security. An example would be taking a hardware firewall and making it a blade in a data center switch. That’s what the other guys do. It makes it more convenient to deploy, but it doesn’t actually improve security. 

 

Security always performs better—and is easier to operate—when it’s designed–in as opposed to bolted–on. At VMware, we call this intrinsic security. When we think about security, being able to build it in means you can leverage the intrinsic attributes of the infrastructure. We are not trying to take existing security solutions and integrate them. We are re-imagining how security could work. 

 

Enterprises that want to learn how we’ve built security directly into Continue reading

0

Simplify your micro-segmentation implementations

Micro–segmentation is a critical component of Zero Trust. But, historically, micro-segmentation has been fraught with operational challenges and limited by platform capabilities.  

 

Not anymore.  

 

VMware NSX enables a new framework and firewall policy model that allows applications to define access down to the workload level. NSX does this by understanding application topologies and applying appropriate policy per workload. Creating zones in the data center where you can separate traffic by application simultaneously helps stop the spread of lateral threats, create separate development, test, and production environments, and meet certain compliance requirements. 

 

VMworld attendees who want to learn more about how to set up micro-segmentation in their data centers should consider the following sessions: 

 

 

Permit This, Deny That – Design Principles for NSX Distributed Firewall (ISNS2315D) 

Micro-segmentation is something that is certainly easier said than done. Although micro-segmentation allows applications to define access down to the component level, the operation of such an environment can be daunting without structure and guidance. In this session, you’ll learn how to develop a Continue reading

0

IBM set to spin-off managed service business to focus on hybrid cloud

IBM doesn’t want any distractions on the road to becoming a prodigious hybrid-cloud player, and today it eliminated one of those diversions by spinning off the $19 billion Managed Infrastructure Services unit of its Global Technology Services division.The move creates an as-yet-unnamed firm, tentatively dubbed “NewCo,” which won’t actually be created until 2021 but will quickly be a big provider of managed infrastructure services. It will employ about 90,000 staffers, have more than 4,600 clients in 115 countries—including more than 75% of the Fortune 100—have a backlog of $60 billion in orders, and more than twice the scale of its nearest competitor, IBM stated. That would include Accenture, Fujitsu and Huawei.To read this article in full, please click here

0

Community Networks: Improving Connectivity for All in Haiti

The COVID-19 pandemic reminds us of the historic transition brought about by the Internet. Its place is real in our lives today and tomorrow. Celebrate, pray, play, study, work, express yourself … these verbs have been conjugated thousands of times everywhere thanks to the Internet. In Haiti, many suffer from the glaring inequality between Internet access in rural and urban areas. It is clear that tackling these problems comes down to building a safe path towards decentralization of Internet infrastructure here.

The mission of the Internet Society Haiti Chapter (ISOC Haiti) is to promote, on Haitian territory and for the benefit of all, the conditions and tools conducive to the development of an information and knowledge society – respectful of Haitian culture and values. Since 1804, our nation has raised its voice for freedom and equality so that every person may live free and in dignity, while banishing Black slavery on our land. Our motto, ‘’unity is strength,’’ reminds us that together we can achieve unimaginable things to change this nation. ISOC Haiti ​​is aware of the challenges and believes it is time for a sustainable plan of action – and not for speech.

Poor quality and expensive Internet access Continue reading