IPv6 Buzz 041: IPv4 Address Exhaustion And You!
The Regional Internet Registry for Europe (RIPE) recently announced its supply of public IPv4 addresses was officially depleted. In today's IPv6 Buzz podcast, we discuss what that means and why it's impactful for companies everywhere. We also discuss the history of IPv4 address exhaustion and why IPv6 is key to avoiding or mitigating the negative effects.How we used our new GraphQL Analytics API to build Firewall Analytics
Firewall Analytics is the first product in the Cloudflare dashboard to utilize the new GraphQL Analytics API. All Cloudflare dashboard products are built using the same public APIs that we provide to our customers, allowing us to understand the challenges they face when interfacing with our APIs. This parity helps us build and shape our products, most recently the new GraphQL Analytics API that we’re thrilled to release today.
By defining the data we want, along with the response format, our GraphQL Analytics API has enabled us to prototype new functionality and iterate quickly from our beta user feedback. It is helping us deliver more insightful analytics tools within the Cloudflare dashboard to our customers.
Our user research and testing for Firewall Analytics surfaced common use cases in our customers' workflow:
- Identifying spikes in firewall activity over time
- Understanding the common attributes of threats
- Drilling down into granular details of an individual event to identify potential false positives
We can address all of these use cases using our new GraphQL Analytics API.
GraphQL Basics
Before we look into how to address each of these use cases, let's take a look at the format of a GraphQL query and how our Continue reading
Introducing the GraphQL Analytics API: exactly the data you need, all in one place
Today we’re excited to announce a powerful and flexible new way to explore your Cloudflare metrics and logs, with an API conforming to the industry-standard GraphQL specification. With our new GraphQL Analytics API, all of your performance, security, and reliability data is available from one endpoint, and you can select exactly what you need, whether it’s one metric for one domain or multiple metrics aggregated for all of your domains. You can ask questions like “How many cached bytes have been returned for these three domains?” Or, “How many requests have all the domains under my account received?” Or even, “What effect did changing my firewall rule an hour ago have on the responses my users were seeing?”
The GraphQL standard also has strong community resources, from extensive documentation to front-end clients, making it easy to start creating simple queries and progress to building your own sophisticated analytics dashboards.
From many APIs...
Providing insights has always been a core part of Cloudflare’s offering. After all, by using Cloudflare, you’re relying on us for key parts of your infrastructure, and so we need to make sure you have the data to manage, monitor, and troubleshoot your website, Continue reading
You Don’t Need IP Renumbering for Disaster Recovery
This is a common objection I get when trying to persuade network architects they don’t need stretched VLANs (and IP subnets) to implement data center disaster recovery:
Changing IP addresses when activating DR is hard. You’d have to weigh the manageability of stretching L2 and protecting it, with the added complexity of breaking the two sites into separate domains [and subnets]. We all have apps with hardcoded IP’s, outdated IPAM’s, Firewall rules that need updating, etc.
Let’s get one thing straight: when you’re doing disaster recovery there are no live subnets, IP addresses or anything else along those lines. The disaster has struck, and your data center infrastructure is gone.
Read more ...Day Two Cloud 027: Do Enterprises Need Kubernetes?
As an IT practitioner, do you actually need to know more about Kubernetes? Does Kubernetes and its ecosystem materially matter to your organization? Is K8s just stepping stone to more advanced technologies? We tackle these questions on today's episode of Day Two Cloud with guests Keith Townsend and Justin Warren.
The post Day Two Cloud 027: Do Enterprises Need Kubernetes? appeared first on Packet Pushers.
Day Two Cloud 027: Do Enterprises Need Kubernetes?
As an IT practitioner, do you actually need to know more about Kubernetes? Does Kubernetes and its ecosystem materially matter to your organization? Is K8s just stepping stone to more advanced technologies? We tackle these questions on today's episode of Day Two Cloud with guests Keith Townsend and Justin Warren.Cisco Rolls Out New Silicon, Router for ‘Internet for the Future’
Cisco Silicon One is a new programmable silicon architecture that the vendor claims can serve...
© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.
The Traditional Network Infrastructure Model and Problems Associated with it
In the 2000s, data center network infrastructure for large companies and large compute farms was built based on a three-layer...Telefónica Defies US, Selects Nokia, Huawei for 5G
With the blessing of German authorities, all three of the country's leading operators decided to...
© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.
Verizon CEO: Network Virtualization Is 60% Complete
Verizon’s organizational structure and network position has changed more during the last 12...
© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.
VMware vSphere Key to Slicing Red Hat’s Kubernetes Head Start
“Maybe the national anthem is still playing in this game of containers and it’s very early,”...
© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.
Claudio Jeker Honored by Internet Security Research Group with Radiant Award
This week another Radiant Award has been awarded by the Internet Security Research Group, the folks behind Let’s Encrypt. The award puts the limelight on the heroes who make the Internet more secure and trustworthy each day.
The newest Radiant Award winner is Claudio Jeker, who receives the prize for his work of a BGP4 implementation on OpenBSD. This makes me horrendously enthusiastic. Why?
OpenBSD is a open-software based operating system that is focused on being secure and feature complete. It comes with a set of tools that make it ideally suited to be deployed, for instance, as a secure route server in an Internet Exchange Point (IXP). A route server is a service that an IXP can host in order to make the participating network service providers lives a little easier. They do not have to get the routing information from each other, but can simply talk to this piece of centralized infrastructure. OpenBSD allows this type of infrastructure to be build from commodity components in a scalable and secure way.
With a route server in place, an IXP can take additional measures to secure the Internet, namely by taking the MANRS actions.
Ultimately this would not be Continue reading