0

New Role with Valve

I have started a new role as a Network Engineer with Valve Corporation. My period of unemployment was short-lived, and I am gainfully employed once more.

Not Another Vendor?

Did I think about going to work for another vendor? Yes, I did. I thought a lot about what I want to do, and what type of company I want to work for. Small/medium/large, vendor/customer, Product Manager vs Engineer, etc.

For now, I decided I want to solve business problems using whichever tools are appropriate, rather than building and selling a single product. I didn’t want to work for a company that just consumes technology though. I want to work somewhere that has interesting problems, and will do whatever is needed to solve those problems - build/buy/cobble together.

Why Valve?

Valve is big enough to offer the right level of challenge, but also small enough that I can make a difference. I’m not lost in the machine, but I am working on a global network.

Valve is also quite a different company. Check out the Employee Handbook to get a sense of Continue reading

0

Why is Securing BGP just so Damn Hard?

Stories of BGP routing mishaps span the entire thirty-year period that we’ve been using BGP to glue the Internet together. We’ve experienced all kinds of route leaks from a few routes to a few thousand or more. We’ve seen route hijacks that pass by essentially unnoticed, and we’ve seen others that get quoted for the ensuing decade or longer! After some 30 years of running BGP it would be good to believe that we’ve learned from this rich set of accumulated experience, and we now understand how to manage the operation of BGP to keep it secure, stable and accurate. But no. That's is not where we are today. Why is the task to secure this protocol just so hard?

0

AT&T, Sprint, and Cisco Execs Throw Cold Water on 5G

The general consensus is that the IoT, enterprise, and security markets will be impacted...

Read More »

0

EVPN-PIM: BUM optimization using PIM-SM

Does “PIM” make you break out into hives? Toss and turn at night?! You are not alone. While PIM can present some interesting troubleshooting challenges, it serves a specific and simple purpose of optimizing flooding in an EVPN underlay.

The right network design choices can eliminate some of the elements of complexity inherent to PIM while retaining efficiency. We will explore PIM-EVPN and its deployment choices in this two part blog.

Why use multicast VxLAN tunnels?

Head-end-replication

Overlay BUM (broadcast, unknown-unicast and intra-subnet unknown-multicast) traffic is vxlan-encapsulated and flooded to all VTEPs participating in an L2-VNI. One mechanism currently available for this is ingress-replication or HREP (head-end-replication).

In this mechanism BUM traffic from a local server (say H11 on rack-1 in the sample network) is replicated as many times as the number of remote VTEPs, by the origination VTEP L11. It is then encapsulated with individual tunnel header DIPs L21, L31 and sent over the underlay.

The number of copies created by the ingress VTEP increases proportionately with the number of VTEPs associated with a L2-VNI and this can quickly become a scale problem. Consider a POD with a 100 VTEPs; here the originating VTEP would need to create 99 Continue reading

0

Cisco spreads ACI to Microsoft Azure, multicloud and SD-WAN environments

Cisco is significantly spreading its Application Centric Infrastructure (ACI) technology to help customers grow and control hybrid, multicloud and SD-WAN environments.ACI is Cisco’s flagship software-defined networking (SDN) data-center package, but it also delivers the company’s Intent-Based Networking technology, which brings customers the ability to automatically implement network and policy changes on the fly and ensure data delivery.  More about SD-WANTo read this article in full, please click here

0

Cisco spreads ACI to Microsoft Azure, multicloud and SD-WAN environments

Cisco is significantly spreading its Application Centric Infrastructure (ACI) technology to help customers grow and control hybrid, multicloud and SD-WAN environments.ACI is Cisco’s flagship software-defined networking (SDN) data-center package, but it also delivers the company’s Intent-Based Networking technology, which brings customers the ability to automatically implement network and policy changes on the fly and ensure data delivery.  More about SD-WANTo read this article in full, please click here

0

IBM’s Public Cloud set for 53-Qubit Quantum Computing Boost

The quantum computing system will be the single largest universal quantum system made available for...

Read More »

0

Why Big Switch Won Best of VMWorld, Networking

0

Huawei Booted From FIRST Cybersecurity Trade Group

Executives from Cisco and Juniper sit on the FIRST board of directors. The global security group...

Read More »

0

DoCoMo Taps O-RAN to Link 5G Vendors

The carrier will use that equipment as part of its “pre-commercial” 5G service it’s launching...

Read More »

0

Aryaka SD-WAN Glides Into Oracle’s Cloud App Store

Trying to connect your WAN to Oracle Cloud? There's an app for that. Aryaka's managed SD-WAN is now...

Read More »

0

Oracle updates Exadata big iron and its cloud commitment

Oracle OpenWorld 2019 is the platform for countless software announcements, but since 2010 the company has been in the hardware business thanks to the Sun Microsystems purchase, and the company remains committed to delivering integrated hardware and software systems.Proving the point, the company took the wraps off the Oracle Exadata X8M designed for acceleration of Oracle’s database applications, featuring new data analytics and business intelligence features along with Oracle's newfound religion on automation.The new Exadata X8M server platform uses second-generation Xeon Scalable processors and Intel's Optane DC persistent memory to accelerate performance. That's a big win for Intel, which is seeing quite a bit of momentum for AMD's Epyc processor. And it's another win for Optane, which pretty much every server vendor supports.To read this article in full, please click here

0

Oracle updates Exadata big iron and its cloud commitment

Oracle OpenWorld 2019 is the platform for countless software announcements, but since 2010 the company has been in the hardware business thanks to the Sun Microsystems purchase, and the company remains committed to delivering integrated hardware and software systems.Proving the point, the company took the wraps off the Oracle Exadata X8M designed for acceleration of Oracle’s database applications, featuring new data analytics and business intelligence features along with Oracle's newfound religion on automation.The new Exadata X8M server platform uses second-generation Xeon Scalable processors and Intel's Optane DC persistent memory to accelerate performance. That's a big win for Intel, which is seeing quite a bit of momentum for AMD's Epyc processor. And it's another win for Optane, which pretty much every server vendor supports.To read this article in full, please click here

0

Day Two Cloud 018: “I’m Not As Terrified As I Was” – Making The Transition To Cloud And DevOps

Today's Day Two Cloud podcast explores the struggle of transitioning from traditional infrastructure ops to the public cloud using DevOps principles and new tools. My guest is Aaron Strong, a cloud architect. We talk about how to skill up quickly, where to start, when and where to ask for help, and more.

0

Day Two Cloud 018: “I’m Not As Terrified As I Was” – Making The Transition To Cloud And DevOps

Today's Day Two Cloud podcast explores the struggle of transitioning from traditional infrastructure ops to the public cloud using DevOps principles and new tools. My guest is Aaron Strong, a cloud architect. We talk about how to skill up quickly, where to start, when and where to ask for help, and more.

The post Day Two Cloud 018: “I’m Not As Terrified As I Was” – Making The Transition To Cloud And DevOps appeared first on Packet Pushers.

0

How to remove carriage returns from text files on Linux

Carriage returns go back a long way – as far back as typewriters on which a mechanism or a lever swung the carriage that held a sheet of paper to the right so that suddenly letters were being typed on the left again. They have persevered in text files on Windows, but were never used on Linux systems. This incompatibility sometimes causes problems when you’re trying to process files on Linux that were created on Windows, but it's an issue that is very easily resolved.The carriage return, also referred to as Ctrl+M, character would show up as an octal 15 if you were looking at the file with an od octal dump) command. The characters CRLF are often used to represent the carriage return and linefeed sequence that ends lines on Windows text files. Those who like to gaze at octal dumps will spot the \r \n. Linux text files, by comparison, end with just linefeeds.To read this article in full, please click here

0

Cloudflare’s Approach to Research

Cloudflare’s mission is to help build a better Internet. One of the tools used in pursuit of this goal is computer science research. We’ve learned that some of the difficult problems to solve are best approached through research and experimentation to understand the solution before engineering it at scale. This research-focused approach to solving the big problems of the Internet is exemplified by the work of the Cryptography Research team, which leverages research to help build a safer, more secure and more performant Internet. Over the years, the team has worked on more than just cryptography, so we’re taking the model we’ve developed and expanding the scope of the team to include more areas of computer science research. Cryptography Research at Cloudflare is now Cloudflare Research. I am excited to share some of the insights we’ve learned over the years in this blog post.

Cloudflare’s research model

Principle	Description
Team structure	Hybrid approach. We have a program that allows research engineers to be embedded into product and operations teams for temporary assignments. This gives people direct exposure to practical problems.
Problem philosophy	Impact-focused. We use our expertise and the expertise of partners in industry and academia to select projects that Continue reading

0

How to monitor Windows to prevent credential theft attacks

Attackers are now enabling WDigest credential caching to allow them to harvest credentials. Here’s how to spot it.

0

Testing at Juniper NXTWORK

Earlier this week I did a post on Juniper NXTWORK and talked about the event. There is a lot going …

Continue reading →

The post Testing at Juniper NXTWORK appeared first on Fryguy's Blog.

0

DC 14. Real case of using ZTP to setup Mellanox SN 2010 with Cumulus Linux.

Hello my friend,

Earlier in this year we’ve discussed zero touch provisioning using the Data Centre Fabric Enabler Infrastructure. As always in my articles, I’ve used wonderful VM images, which are freely available on the Internet. Nevertheless, when you deal with real boxes, various caveats might arise. Today we’ll review how to bring Mellanox switch SN 2010 to the operational state running Cumulus Linux using the ZTP framework I’ve already created.

1
2
3
4
5
No part of this blogpost could be reproduced, stored in a 

retrieval system, or transmitted in any form or by any 

means, electronic, mechanical or photocopying, recording, 

or otherwise, for commercial purposes without the 

prior permission of the author.

Thanks

Special thanks for Avi Alkobi from Mellanox and Pete Crocker and Attilla de Groot from Cumulus for providing me the Mellanox switch and Cumulus license for the tests.

Disclaimer

It is always exciting to do something for the first time. I have never written about any particular network device. Mostly because I always separate, as far as it is possible, the relationship between my current employer, which is The Hut Group as of today, and my blog. And this is the justification, why Continue reading