Archive

Category Archives for "Networking"

Secondary DNS — A faster, more resilient way to serve your DNS records

Secondary DNS — A faster, more resilient way to serve your DNS records

What is secondary DNS, and why is it important?

Secondary DNS — A faster, more resilient way to serve your DNS records

In DNS, nameservers are responsible for serving DNS records for a zone. How the DNS records populate into the nameservers differs based on the type of nameserver.

A primary master is a nameserver that manages a zone’s DNS records. This is where the zone file is maintained and where DNS records are added, removed, and modified. However, relying on one DNS server can be risky. What if that server goes down, or your DNS provider has an outage? If you run a storefront, then your customers would have to wait until your DNS server is back up to access your site. If your website were a brick and mortar store, this would be effectively like boarding up the door while customers are trying to get in.This type of outage can be very costly.

Now imagine you have another DNS server that has a replica of your DNS records. Wouldn’t it be great to have it as a back-up if your primary nameserver went down? Or better yet, what if both served your DNS records at all times— this could help decrease the latency of DNS requests, distribute the load between Continue reading

GNMI. Part 3. Using gRPC to collect data in OpenConfig/YANG from Arista EOS and Nokia SR OS.

Hello my friend,

finally after some time we are writing again about the OpenConfig, Nokia SR OS and Arista EOS. This time we do that in the context of gNMI (gRPC network management interface). So, today you will learn how to collect the configuration and operational data from the network functions using gNMI. As usual, there will be a lot of Python, and a lot of fun.


1
2
3
4
5
No part of this blogpost could be reproduced, stored in a
retrieval system, or transmitted in any form or by any
means, electronic, mechanical or photocopying, recording,
or otherwise, for commercial purposes without the
prior permission of the author.

Start your network automation journey

Network automation is a must-have technology set in all the industries these days. A lot of companies are talking about it, some of them are practising NetDevOps and automation approached. And latter one create a huge positive difference in their business.

Join the industry-best network automation training.

At this training we teach you all the necessary concepts such as YANG data modelling, working with all the most relevant data formats JSON/YAML/XML/Protobuf, Linux administration basics, programming in Bash/Ansible/Python for multiple network operation systems including Cisco Continue reading

Zero-Touch Provisioning with Salt

Helping a friend of mine figure out the details of using Salt in Zero-Touch-Provisioning environments, Zach Moody sent me a description of their process, and was kind enough to allow me to turn it into a blog post.


We follow the same basic ZTP process you would with anything else. Salt drives the parts that interface with the network devices with information from our source-of-truth, NetBox.

Lenovo doubles down on AMD support, adds liquid GPU cooling

Last year, Lenovo Data Center Group (DCG) announced single-socket ThinkSystem servers using the AMD Rome generation, which has up to 64 cores per processor. Dual-socket systems are de rigueur in enterprise servers, but that's because those processors have just 20-odd cores. AMD's pitch, which Lenovo and its competitors embraced, was that it could offer more compute in a one-socket, 64-core processor than two 22-core processors, and for less money.This year Lenovo DGC is following up that launch with the 1U ThinkSystem SR645 and 2U ThinkSystem SR665 two-socket servers, featuring enhanced performance and I/O connectivity for higher performance workloads. With 128 cores/256 threads in a 1U/2U design, a whole lot of computation power can be squeezed into a small space.To read this article in full, please click here

New IP and Emerging Communications Technologies

A "New IP" framework was proposed to an ITU Study Group last year. This framework envisages a resurgence of a network-centric view of communications architectures where application behaviours are moderated by network-managed control mechanisms. It's not the first time that we’ve seen proposals to rethink the basic architecture of the Internet’s technology and it certainly won’t be the last. But is it going to really going to influence the evolution of the Internet? What can we observe about emerging technologies that will play a critical role in the coming years? Here’s my personal selection of recent technical innovations that I would add into the set of emerging technologies that will exercise a massive influence over the coming ten years.

Is Open Source the Way Forward for SD-WAN?

An open source alternative to proprietary SD-WANs could become the de facto industry standard, said...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

Cisco fortifies ACI for Amazon, Microsoft integration and multicloud management

Cisco has upgraded its core networking software to include better support for enterprise multicloud integration and management as well as tools to help telcos or hyperscalers tie together large scale data-center networks.The new features are part of the 5.0 release of Cisco's Application Centric Infrastructure (ACI) software, which runs on the company's core data center Nexus 9000 systems. READ MORE: Are new Cisco certs too much? Network pros reactTo read this article in full, please click here

Daily Roundup: HPE Slashes Salaries

COVID-19 wrecked HPE's latest earnings; Verizon updates its 5G plans; and Palo Alto Networks posted...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

Member News: Internet Society Chapters Assist Communities with Telework, Remote Education

Keep working: In recent months, several Internet Society Chapters have focused on helping people to keep working during COVID-19 lockdowns. The Benin Chapter recently published a guide to remote work, with recommendations for videoconferencing apps, project management software, and file storage services. “We are facing a real health crisis, COVID-19, which is shaking up our habits and pushing companies to adapt to new working methods,” the Chapter’s post says. “Authorizing employees to telecommute is the ideal solution for the continuity of your activity and avoiding contagion within your teams.”

Building your brand: Meanwhile, the Israel Chapter hosted a webinar on employment and careers in the digital industry. Speaker Shani Haddad, CEO and founder of Brainnu, talked about the importance of people marketing themselves and telling their own stories.

Learning at a distance: It’s not just workers dealing with new situations during the COVID-19 pandemic. The Samoan Chapter has posted about distance learning, noting that the Samoa Information Technology Association has developed an e-learning platform for students attending school from home. Education is “one of the key areas that is being heavily affected by the lockdown,” the post notes.

No censorship: The Chapter in Spain has raised concerns Continue reading

Tom’s Virtual Corner at Cisco Live US 2020

One of the things that I look forward to most during Cisco Live is the opportunity to meet with people. It’s been quite a few years since I’ve been to a session during the conference. My work with Tech Field Day has kept me very busy for the past several Cisco Live events. But at the end of the day I enjoy strolling down to the Social Media hub and talking to anyone I see. Because people make Cisco Live what it is.

The Legend of Tom’s Corner has grown over the years. It’s more than just a few tables in a place where people hang out. It stands for a community. It means a lot to so many different people. It’s about meeting new friends and catching up with old ones and feeling like you belong. For so many, Tom’s Corner and the Social Media Hub is the center of Cisco Live.

And yet, we now live in extraordinary times. The plan we had for what Cisco Live would look like for us earlier this year is radically different right now. Prohibitions on travel and meetings in large groups means we will be experiencing Cisco Live from our homes Continue reading

Verizon 5G Challenges Linger as Network Gains Uplink

“Competition in the near term will be a marketing war of coverage and speed," said William Ho,...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

Releasing Cloudflare Access’ most requested feature

Releasing Cloudflare Access’ most requested feature

Cloudflare Access, part of Cloudflare for Teams, replaces legacy corporate VPNs with Cloudflare’s global network. Instead of starting a VPN client to backhaul traffic through an office, users visit the hostname of an internal application and login with your team’s SSO provider. While the applications feel like SaaS apps for end users, your security and IT departments can configure granular controls and audit logging in a single place.

Since Access launched two years ago, customers have been able to integrate multiple SSO providers at the same time. This MultiSSO option makes it seamless for teams to have employees login with Okta or Azure AD while partners and contractors use LinkedIN or GitHub.

The integrations always applied globally. Users would see all SSO options when connecting to any application protected by Cloudflare Access. As more organizations use Cloudflare Access to connect distributed and mixed workforces to resources, listing every provider on every app no longer scales.

For example, your team might have an internal GitLab instance that only employees need to access using your corporate G Suite login. Meanwhile, the marketing department needs to share QA versions of new sites with an external agency who authenticates with LinkedIn. Asking both Continue reading

Weekly Wrap: Oracle Challenges AWS to Cloud Calculator Duel

SDxCentral Weekly Wrap for May 22, 2020: Oracle claims cloud cost-superiority over AWS; Google hugs...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

COVID-19 pandemic ratchets up threats to medical IoT

The mere fact of the COVID pandemic’s existence has pushed the American healthcare system to capacity, but another threat to that system has reared its ugly head – cyberattacks, particularly those based on ransomware, have become more common as the disease spread, targeting medical IoT devices and healthcare networks.According to Forrester Research analyst Chris Sherman, two U.S. hospitals have already been attacked via virtual care systems, after a hacker targeted a vulnerability in a medical IoT device (specifically, a remote patient-monitoring sensor) and gained access to the hospitals’ patient databases. And in another type of attack, the Fresenius Group, a medical device maker and the largest private hospital operator in Europe, has been hit by ransomware.To read this article in full, please click here

It’s 2020 And Android’s IPv6 Is Still Broken

I got into some interesting discussions about IPv6 on Twitter. Then someone asked if Android is getting DHCPv6 support in version 11 of the OS.

When IPv6 was developed, initially with RFC 2460, there was this idea that:

Forget all you've learned about IPv4, and design IPv6 from the ground up

This sounds good in theory but ignores completely the lessons we’ve learned from IPv4. Not to mention, there is no such thing as greenfield. Almost all networks, are existing ones, you don’t get to start all over again. There was this very shiny view of end to end connectivity, /64 everywhere and only SLAAC allowed. I get all of that, it’s like saying “I wish there were no wars”, but unfortunately, people are stupid, so there will be wars. There’s this naivety, similar to a teenager that is growing up. You want to change the world, then you realize the world is run by money, mega corps, and dirty politicians.

This whole mess led to the holy wars of SLAAC + RDNSS vs DHCPv6. Please note that SLAAC Continue reading