SEC 2. Data plane and control plane protection in the networking (Nokia, Cisco and Mellanox/Cumulus) for IPv6.

Hello my friend,

After the release of the previous article outlining the data and control plane security for IPv4 in Cisco, Nokia and Mellanox/Cumulus (link) I’ve got several requests about the security in IPv6. The requests were fair enough and with this article we close this gap.

1
2
3
4
5
No part of this blogpost could be reproduced, stored in a 

retrieval system, or transmitted in any form or by any 

means, electronic, mechanical or photocopying, recording, 

or otherwise, for commercial purposes without the 

prior permission of the author.

Thanks

Special thanks for Avi Alkobi from Mellanox and Pete Crocker and Attilla de Groot from Cumulus for providing me the Mellanox switch and Cumulus license for the tests. 

Disclaimer

This is the fourth article in the series about the Mellanox/Cumulus switch. The three previous are:

• Building lab with Mellanox SN2010
• Configuring Segment Routing on Mellanox/Cumulus, Cisco IOS XR and Nokia SR OS and connecting physical and virtual networks
• Data and control plane protection in Mellanox/Cumulus, Cisco IOS XR and Nokia SR OS

Brief description

The importance of the security for the network in terms of the control and data plane protection was explained in the previous article Continue reading

Junos – Loading configs – 4 of 5 – Update

This is the fourth post in the Loading Configs series. In this post, we will cover the load update command. …

Continue reading →

The post Junos – Loading configs – 4 of 5 – Update appeared first on Fryguy's Blog.

Cheap IoT satellite network gets approval

Space communications start-up Swarm Technologies will begin delivering commercial, bi-directional Internet of Things (IoT) data early next year, according to the company, which has just received its regulatory go-ahead to launch its satellites and transmit.“Swarm will begin rolling out its commercial, two-way data offerings in early 2020,” Sara Spangelo, co-founder and CEO told me in a recent e-mail. The company aims to deploy 150 satellites before the end of 2020, she says. The FCC, in October, granted Part 25 approval for the startup to deploy and operate 150 non-geostationary, Low Earth Orbit (LEO) satellites, for non-voice purposes.To read this article in full, please click here

Arista targets cloud networking with CloudEOS software

Arista this week rolled out software it hopes will help customers more easily fuse enterprise-class networking with on-premises and hybrid-cloud services.The company rolled out two new packages. One, CloudEOS Multi Cloud, normalizes the network connectivity to and between private clouds or public clouds. The package sets up a virtual machine and can redirect traffic across the most effective and efficient networking path using real-time topology, in-band telemetry and other attributes, the company said. It also automatically encrypts all traffic on those paths as well. To read this article in full, please click here

Spirent Test Center Series: Overview and Part 1

The Spirent Test Center is one of the traffic generation tools I use in my job. I am creating a youtube series on varying use cases and aspects with it. Kinda a “how to” and “lessons learned over the years”... Read More ›

The post Spirent Test Center Series: Overview and Part 1 appeared first on Networking with FISH.

Verizon Opens SD-WAN Policy Management

Looker 7 Looks Away From Traditional Business Intelligence

VMware, Menlo Security Unite, Safeguard SD-WAN Stronghold

Microsoft Smears Premium Shine on Azure Functions

Dish Gets Deadline Reprieve in FCC Merger Approval

Vitess Earns Vernerable CNCF’s Graduate Distinction

A Step Further in Making Pakistan Digitally Accessible

In a bid to improve digital accessibility in Pakistan – a country with about 30 million persons with disability (PWDs), according to the World Health Organization –  we recently partnered with the Ministry of IT (MoIT) and the National IT Board (NITB) so that more existing government websites could include accessibility features and future websites could incorporate such designs. We set out to make five websites more accessible – as a start – and are already seeing encouraging results.

According to local study and research paper, a majority of websites in Pakistan, including government, are not accessible for PWDs. PWDs face various challenges in using websites based on their impairment.

For example, persons with visual impairments can face compatibility challenges when screen reader software is used to access visual displays that are not labelled or hyperlinks that do not make sense when read out of context. Those with low vision are not able to access websites that cannot be adjusted for font type and size, contrast, and use of colors, and individuals who are deaf are not able to understand the narration in an online video if it is not properly captioned.

As part of this commitment given by Continue reading

Day Two Cloud 022: Day Two Cloud Scales Out And Up!

The Day Two Cloud podcast is getting a new co-host, Ethan Banks; and becoming a weekly show! Now you can get deep dives on cloud and infrastructure topics including Kubernetes, cloud security, design and deployment, and more every week.

The post Day Two Cloud 022: Day Two Cloud Scales Out And Up! appeared first on Packet Pushers.

Day Two Cloud 022: Day Two Cloud Scales Out And Up!

Fortinet Locks SD-WAN, WAF Into Azure

What’s new with Workers KV?

The Storage team here at Cloudflare shipped Workers KV, our global, low-latency, key-value store, earlier this year. As people have started using it, we’ve gotten some feature requests, and have shipped some new features in response! In this post, we’ll talk about some of these use cases and how these new features enable them.

New KV APIs

We’ve shipped some new APIs, both via api.cloudflare.com, as well as inside of a Worker. The first one provides the ability to upload and delete more than one key/value pair at once. Given that Workers KV is great for read-heavy, write-light workloads, a common pattern when getting started with KV is to write a bunch of data via the API, and then read that data from within a Worker. You can now do these bulk uploads without needing a separate API call for every key/value pair. This feature is available via api.cloudflare.com, but is not yet available from within a Worker.

For example, say we’re using KV to redirect legacy URLs to their new homes. We have a list of URLs to redirect, and where they should redirect to. We can turn this list into JSON that Continue reading

29 top cloud certifications

When it comes to the most in-demand skills, the cloud is the place to be. Our guide to top cloud certifications looks at programs designed for AWS, Google and Microsoft services -- as well as vendor-neutral certifications.

Cisco Meraki ups security with new switch, software

Cisco Meraki has introduced new hardware and software the company says will help customers more effectively support and secure a wide variety of distributed network resources.The new products, which include a raft of new security features as well a new class of switches and a cellular gateway will help Meraki address customers who perhaps don’t have the IT expertise nor staffing to support the increasing number of devices that need to be managed, said Lawrence Huang, vice president of product management at Cisco Meraki.Network pros react to new Cisco certification curriculum “Threat vectors are evolving and the way customers need to protect themselves need to evolve as well – how customers support applications and IoT devices exemplify the idea its not just one perimeter that needs protecting but a collection of micorperimenters,” Huang said.To read this article in full, please click here

Cisco Meraki ups security with new switch, software

Cisco Meraki has introduced new hardware and software the company says will help customers more effectively support and secure a wide variety of distributed network resources.The new products, which include a raft of new security features as well a new class of switches and a cellular gateway will help Meraki address customers who perhaps don’t have the IT expertise nor staffing to support the increasing number of devices that need to be managed, said Lawrence Huang, vice president of product management at Cisco Meraki.Network pros react to new Cisco certification curriculum “Threat vectors are evolving and the way customers need to protect themselves need to evolve as well – how customers support applications and IoT devices exemplify the idea its not just one perimeter that needs protecting but a collection of micorperimenters,” Huang said.To read this article in full, please click here

Virtual Extensible LAN – VXLAN: Book Updates and Errata