Export logs from Cloudflare Gateway with Logpush
Like many people, I have spent a lot more time at home in the last several weeks. I use the free version of Cloudflare Gateway, part of Cloudflare for Teams, to secure the Internet-connected devices on my WiFi network. In the last week, Gateway has processed about 114,000 DNS queries from those devices and blocked nearly 100 as potential security risks.
I can search those requests in the Cloudflare for Teams UI. The logs capture the hostname requested, the time of the request, and Gateway’s decision to allow or block. This works fine for one-off investigations into a block, but does not help if I want to analyze the data more thoroughly. The last thing I want to do is click through hundreds or thousands of pages.
That problem is even more difficult for organizations attempting to keep hundreds or thousands of users and their devices secure. Whether they secure roaming devices with DoH or a static IP address, or keep users safe as they return to offices, deployments at that scale need a better option for auditing tens or hundreds of millions of queries each week.
Starting today, you can configure the automatic export of logs from Cloudflare Gateway Continue reading
Basic Linux Networking tips and tricks part-4: curl command
Here is another post of the series on basic network troubleshooting and tools under Linux. In this post, I will talk about the cURL command. Others posts of the series This post is part of a series about basic Linux Networking tips and tricks. The others posts of this series are: The ip and nmcli commands The mtr command The ss and netstat commands The curl command What is cURL? cURL is a Linux command-line tool for getting or sending data and files, using an URL syntax. Since cURL…
The post Basic Linux Networking tips and tricks part-4: curl command appeared first on AboutNetworks.net.
Updated: What is Cumulus Linux All About
Pete Lumbis started his Cumulus Linux 4.0 update with an overview of differences between Cumulus Linux on hardware switches and Cumulus VX, and continued with an in-depth list of ASIC families supported by Cumulus Linux.
You can watch his presentation, as well as the more in-depth overview of Cumulus Linux concepts by Dinesh Dutt, in the recently-updated What Is Cumulus Linux All About video.
You need Free ipSpace.net Subscription to watch the video.
VMware Posts Q1 Beat, Reports Triple-Digit VMC on AWS Growth
“We have seen that COVID-19 is not stopping customers from their cloud migration projects with...
© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.
Cisco Advances Software Push With $1B ThousandEyes Buy
“This is a big step in removing the delineation between private and public networks," analyst...
© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.
IPv6 Buzz 052: What Do Network Engineers Need To Know About IPv6?
Today's IPv6 Buzz podcast examines key topics network engineers should know when working with v6, including the complexities of auto-addressing, network security and dual-stack environments, address plans, and more. Our guest is engineer and consultant Andres Taudte.IPv6 Buzz 052: What Do Network Engineers Need To Know About IPv6?
Today's IPv6 Buzz podcast examines key topics network engineers should know when working with v6, including the complexities of auto-addressing, network security and dual-stack environments, address plans, and more. Our guest is engineer and consultant Andres Taudte.
The post IPv6 Buzz 052: What Do Network Engineers Need To Know About IPv6? appeared first on Packet Pushers.
Daily Roundup: Cisco Gets SASE
Cisco got SASE; Nutanix Q3 revenue jumped 11%; and Docker cozied up to Microsoft Azure.
© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.
Who wants to work in an office ?
I’ve been getting into the twitter poll thing lately and its producing some interesting polling by asking questions. Yesterday I asked are you eager to go back to the office ? With 129 responses we have statistical significance because the sample is large. What conclusions might we draw from this survey ? Reminder: Twitter […]
The post Who wants to work in an office ? appeared first on EtherealMind.
Instana Adds W3C API Support to APM Platform
Using these APIs the vendor claims to be able to more efficiently correlate traces, identify root...
© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.
NetApp Revenue Hits 9-Year Low
"We are confident that the demand for our products and services will be strong as we emerge from...
© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.
Secure Bare Metal Servers with VMware NSX Data Center
Securing workloads across an entire environment is the fundamental goal of a policy. But workloads come in a variety of form factors: virtual machines, containers, and bare metal servers. In order to protect every workload, experts recommend isolating workloads wherever possible — avoiding dependency on the host operating system and its firewall. Relying on the host firewall creates the dependency of a host to defend itself.
Securing virtual workloads is a task best handled by the hypervisor. Offering security via inspection of traffic on the virtual network interfaces of the virtual workload achieves the security you want. It also delivers isolation for security enforcement. Workloads to secure bare metal servers come in many form factors and a variety of means to achieve policy enforcement.
Bare Metal Servers Still Serve A Purpose
Bare metal servers remain in use for a variety of reasons. Securing these servers remains a necessary task in today’s virtualized data center. Reasons we still use bare metal servers:
- There may be no way to virtualize various operating systems, like AIX and Solaris.
- Device-specific systems, such as medical equipment, or systems specific to other virtual markets may not yet have been virtualized. In some cases they may not Continue reading
How Has COVID-19 Impacted Last Mile Networks?
If your household is anything like mine, your Internet connection has experienced a significant increase in usage over these last several months. We’re streaming more and more media each day, and we’re on seemingly endless hours of videoconferences for work and for school. While all of that streaming media consumes downstream capacity, those videoconferences can generate a significant amount of upstream traffic. I’m fortunate enough to have fiber-based broadband connectivity that can easily handle this traffic, but I know others aren’t as lucky. They’re stuck with copper-based connections or satellite links that struggle to deliver streaming media or video calls with any sort of viewable quality.
Across this spectrum of “last mile” Internet connections, I looked at the impact from both a provider and user perspective. What kind of traffic growth have last mile network providers experienced? What steps have these providers taken to ensure they have sufficient capacity? And most importantly for end users, how has increased traffic impacted last mile connection speeds?
The network connections from customer- and subscriber-facing Internet service providers are often referred to as last mile networks. These are Internet services delivered over a notional distance – the “last mile” – to subscriber premises, such Continue reading
Segregated Routing
For any network that provides routing services to customers it is important to segregate them in different virtual topologies that don’t interfere with each other.
Network Virtualization
This post is not about NFV, but it is important to understand …
Why Would You Need VXLAN Transport?
It’s amazing how sometimes people fond of sharing their opinions and buzzwords on various social media can’t answer simple questions. Today’s blog post is based on a true story… a “senior network architect” fully engaged in a recent hype cycle couldn’t answer a simple question:
Why exactly would you need VXLAN and EVPN?
We could spend a day (or a week) discussing the nuances of that simple question, but all I have at the moment is a single web page, so here we go…
Calico Egress Gateway: Universal Firewall Integration for Kubernetes
New applications and workloads are constantly being added to Kubernetes clusters. Those same apps need to securely communicate with resources outside the cluster behind a firewall or other control point. Firewalls require a consistent IP, but routable IPs are a limited resource that can be quickly depleted if applied to every service.
With the Calico Egress Gateway, a new feature in Calico Enterprise 3.0, existing firewalls and control points can now be used to securely manage access to infrastructure and services outside of the cluster. In addition, IT teams are now able to identify an application/workload in a Kubernetes namespace via the source IP.
As organizations progress on their Kubernetes journey from pilot to production, they begin migrating existing applications into the cluster, which has merged with the greater IT environment. For the platform teams involved, this creates challenges because these apps will need to communicate to services outside of the cluster.
- The Platform team will need to enable Kubernetes connectivity to infrastructure and services behind a firewall (or other third-party enforcement point such as a proxy, a DLP solution, or a monitoring solution like a SIEM.)
- The firewall will require a consistent IP to enable Continue reading