Archive

Category Archives for "Networking"

IoT in 2020: The awkward teenage years

Much of the hyperbole around the Internet of Things isn’t really hyperbole anymore – the instrumentation of everything from cars to combine harvesters to factories is just a fact of life these days. IoT’s here to stay.Yet despite the explosive growth – one widely cited prediction from Gartner says that the number of enterprise and automotive IoT endpoints will reach 5.8 billion in 2020 – the IoT market’s ability to address its known flaws and complications has progressed at a far more pedestrian pace. That means ongoing security woes and a lack of complete solutions are most of what can be safely predicted for the coming year.To read this article in full, please click here

IoT in 2020: The awkward teenage years

Much of the hyperbole around the Internet of Things isn’t really hyperbole anymore – the instrumentation of everything from cars to combine harvesters to factories is just a fact of life these days. IoT’s here to stay.Yet despite the explosive growth – one widely cited prediction from Gartner says that the number of enterprise and automotive IoT endpoints will reach 5.8 billion in 2020 – the IoT market’s ability to address its known flaws and complications has progressed at a far more pedestrian pace. That means ongoing security woes and a lack of complete solutions are most of what can be safely predicted for the coming year.To read this article in full, please click here

Carrier supporting Carrier with BGP-LU

In our last post we talked about the less used method of deploying CsC where we ran OSPF and LDP inside the CSC-PE routing-instance.

Note: I can’t help myself apparently so be aware that Carrier of Carriers (CoC) is the same as Carrier supporting Carrier (CsC)

This required some changes to be made to our default LDP export policy as well as how we moved routes between the inet.3 and inet.0 tables. That being said, if you’re a single org it might make good sense to run things that way. I liked how you were able to see all of the remote LDP domain loopbacks in your local inet.3 table which in my mind made it easier to imagine the LSP paths.

That being said, it is clearly not the preferred deployment methodology. Most examples you’ll find leverage BGP (BGP-LU specifically) for the CSC-CE to CSC-PE connections as well as within the local label domains. So in this example, we’ll do just that. Larges chunks of the base configuration will be the same as they were in the previous post but for the sake of clarity I’ll post our starting post the starting configurations and diagrams here Continue reading

IETF 106 Begins Nov 16 in Singapore – Here is how you can participate remotely in building open Internet standards

photo of the "super trees" in Singapore

Starting Saturday, November 16, 2019, the 106th meeting of the Internet Engineering Task Force (IETF) will begin in Singapore. Over 1,000 engineers from around the world will gather in the convention center to join together in the debates and discussions that will advance the open standards that make the Internet possible. They are gathered, in the words of the IETF mission, “to make the Internet work better“.

Pick your protocol – the future of DNS, DOH, TLS, HTTP(S), QUIC, SIP, TCP, IPv6, ACME, NTP… and many, many more will be debated in the rooms and hallways over the next week.

What if you cannot be IN Singapore?

If you are not able to physically be in Singapore this week, the good news is you can participate remotely! The IETF website explains the precise steps you need to do. To summarize quickly:

  1. Register as a remote participant. There is no cost.
  2. Review the agenda to figure out which sessions you want to join. (I will note that there are some very interesting (to me!) Birds-of-a-Feather (BOF) sessions at IETF 106.)
  3. Choose the channel(s) you will use to participate, including:

IDG Contributor Network: Dell Tech’s PowerOne approach to hybrid cloud

Hyper Converged Infrastructure is going through a period of dynamic shifts and disruption, hybrid and multi cloud architectures are also transforming how people think about infrastructure. And with this I am watching the vendor landscape go through a period of significant transformation.For most traditional IT vendors, established norms and product roadmaps are in a state of flux as product lifecycles are being compressed. And new mega trends – AI, ML, containers and 5G, to name a few – are disrupting how IT is provisioned, managed and consumed.We are also entering a market cycle of increased “coopetition,” where traditional on-premises vendors such as IBM, Dell Tech, HPE and Cisco (among others) are having product roadmaps and revenue projections upended by hyperscale cloud providers such as AWS, Microsoft with Azure and Google Cloud Platform. While these companies are continuing to work together strategically, it’s also easy to recognize that market conditions are yielding an increased level of competition among these same organizations. These shifts are driving the incumbent infrastructure vendors to make bold moves to stay relevant and continue to drive the growth so craved by shareholders and the innovation desired by their largest customers and users.To read this Continue reading

Weekly Wrap: Juniper Guns for Cisco, Aruba With Mist AI

SDxCentral Weekly Wrap for Nov. 15, 2019: Juniper enhances its Mist AI platform and launches a new...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

Microsoft Earns Top Marks in Industrial IoT

It was lauded for adding features to its IoT platform at an “impressive rate” with richer edge...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

Amazon Challenges Pentagon’s $10B JEDI Award

“It’s critical for our country that the government and its elected leaders administer...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

How to Network for a Job

When most people hear the phrase “job networking,” they think of those white collar career type jobs that may eventually lead to someone becoming a CEO or owner of a big company. However, whether you are looking for a job in a top 500 company, or simply looking for a job with a construction company, as a cook, or as a teacher here are some helpful tips on how to network for a job.

How to Network for a Job in 6 Easy Steps

Build a Network Before Your Actually Need One

The minute you decide on the type of job that you really like, you should start building a network of people who can offer advice, let you know about job openings, and will spread the word when you are ready to start the job of your choice. Build your network of people in the trade or business you are interested in, related businesses, and people who have influence in the community, as well as people with whom you may share other interests.

Maintain Your Network

Once you have a network in place, begin maintaining your network. Call or email the people regularly just to ask how they are Continue reading

AI and Trivia

questions answers signage

Photo by Pixabay on Pexels.com

I didn’t get a chance to attend Networking Field Day Exclusive at Juniper NXTWORK 2019 this year but I did get to catch some of the great live videos that were recorded and posted here. Mist, now a Juniper Company, did a great job of talking about how they’re going to be extending their AI-driven networking into the realm of wired networking. They’ve been using their AI virtual assistant, named “Marvis”, for quite a while now to solve basic wireless issues for admins and engineers. With the technology moving toward the copper side of the house, I wanted to talk a bit about why this is important for the sanity of people everywhere.

Finding the Answer

Network and wireless engineers are walking storehouses of useless trivia knowledge. I know this because I am one. I remember the hello and dead timers for OSPF on NBMA networks. I remember how long it takes BGP to converge or what the default spanning tree bridge priority is for a switch. Where some of my friends can remember the batting average for all first basemen in the league in 1971, I can instead tell you all about Continue reading

Heavy Networking 486: Measuring Global Performance Of The Big 5 Cloud Providers (Sponsored)

Sponsor ThousandEyes comes on Heavy Networking to review their research on the global cloud performance of AWS, Azure, GCP, AliCloud, and IBM. Their data measures and compares public clouds from a networking perspective, helping us figure out optimal placement of workloads and connectivity. Our guests from ThousandEyes are Archana Kesavan, Director, Product Marketing; and Angelique Medina, Director, Product Marketing.

The post Heavy Networking 486: Measuring Global Performance Of The Big 5 Cloud Providers (Sponsored) appeared first on Packet Pushers.

Run the Antidote network emulator on KVM for better performance

Antidote is the network emulator that runs the labs on the Network Reliability Labs web site. You may install a standalone version of Antidote on your personal computer using the Vagrant virtual environment provisioning tool.

In this post, I show you how to run Antidote on a Linux system with KVM, instead of VirtualBox, on your local PC to achieve better performance — especially on older hardware.

Why use KVM instead of VirtualBox?

Antidote runs emulated network nodes inside a host virtual machine. If these emulated nodes must also run on a hypervisor, as most commercial router images require, then they are running as nested virtual machines inside the host virtual machine. Unless you can pass through your computer’s hardware support for virtualization to the nested virtual machines, they will run slowly.

VirtualBox offers only limited support for nested virtualization. If you are using a Linux system, you can get better performance if you use Libvirt and KVM, which provide native support for nested virtualization.

When to use VirtualBox

If you plan to run Antidote on a Mac or a PC, you should use Antidote’s standard installation with VirtualBox1. Vagrant and VirtualBox are both cross-platform, open-source tools.

Continue reading

EIGRP RFC 7868

Finally, informational EIGRP RFC 7868 has been published.It is not anymore Cisco’s EIGRP, it is an open standard. Without a most critical feature of EIGRP,can we really say that? Why Cisco doesn’t share the most important feature which can help in large scale EIGRP design although industry has been asking from them for a long time ?

 

EIGRP RFC 7868 specifies EIGRP Dual Algorithm, EIGRP Packets such as Update, Query and Reply, EIGRP Operation, and EIGRP Metrics (K1,K2,….K6).

And since EIGP is RFC anymore, other vendors can legally implement EIGRP. There was couple of open source EIGRP implementations already,but with the RFC status, seeing new implementations among the big vendors would not be a big deal.

In addition to EIGRP packet types and metric values, there are a couple of important things to understand about EIGRP.

Among them is how EIGRP, as a distance vector protocol, calculates a best path and advertise it to the neighbors.

Understanding what is EIGRP successor, EIGRP feasible successor, EIGRP feasibility condition, metric values and usage in real life deployments is among the most important parameters in EIGRP that should be properly understood.

EIGRP RFC is an 80-page document, which provides detailed Continue reading

BGP Best External Feature

BGP Best External is used in Active Standby BGP Topologies generally but not limited with that.BGP Best External feature helps BGP to converge much faster by sending external BGP prefixes which wouldn’t normally be sent if they are not overall BGP best path.

 

I am explaining this topic in great detail in my Live/Webex “BGP Zero to Hero” course.

There are BGP best internal, BGP best external and BGP Overall best path.

BGP Best external in an active-standby scenarios can be used in MPLS VPN, Internet Business Customers, EBGP Peering Scenarios, Hierarchical large scale Service Provider backbone and many others.

But,How active-standby scenario connection with BGP is created ? In which situation people use active-standby instead of active-active connection ?

Let’s start with the below scenario.

 

bgp best external

 

 

Figure -1 BGP Active-Standby Path Selection Example

 

First thing you should know that common reason for active-standby or primary-backup link is one link is more expensive than the other.Cost doesn’t have to be a $$ cost only but also be based on latency, performance and bandwidth.

In Figure-1 : IBGP is running in the Service Provider network. Between R1 , R2 and R3 there is an IBGP Continue reading

Taiji: managing global user traffic for large-scale Internet services at the edge

Taiji: managing global user traffic for large-scale internet services at the edge Xu et al., SOSP’19

It’s another networking paper to close out the week (and our coverage of SOSP’19), but whereas [Snap][Snap] looked at traffic routing within the datacenter, Taiji is concerned with routing traffic from the edge to a datacenter. It’s been in production deployment at Facebook for the past four years.

The problem: mapping user requests to datacenters

When a user makes a request to http://www.facebook.com, DNS will route the request to one of dozens of globally deployed edge nodes. Within the edge node, a load balancer (the Edge LB) is responsible for routing requests through to frontend machines in datacenters. The question Taiji addresses is a simple one on the surface: what datacenter should a given request be routed to?

There’s one thing that Taiji doesn’t have to worry about: backbone capacity between the edge nodes and datacenters— this is provisioned in abundance such that it is not a consideration in balancing decisions. However, there are plenty of other things going on that make the decision challenging:

  • Some user requests are sticky (i.e., they have associated session state) and always Continue reading

DXC is betting IT apps and services will stay on-premises

DXC Technology, the massive service provider formed in the 2017 merger of HPE Enterprise Services (formerly EDS) and Computer Sciences Corp., has a new CEO who is focused on shedding distraction businesses and focusing on core businesses of IT outsourcing.That means looking at "strategic alternatives," including the possible divesture of three of its businesses it feels are a distraction and slowing the company’s growth. The company feels most IT apps and services will remain on-premises and will focus on supporting that business.Last week’s conference call with financial analysts to discuss Q2 earnings was the first for new CEO Mike Salvino, who joined the company in September after 22 years at Accenture. DXC did not have a good quarter. The company reported non-GAAP earnings of $1.38 per share, which fell short of the consensus estimate of $1.44 and way down from EPS of $2.02 from the same quarter a year ago. Revenue of $4.85 billion fell short of the analyst estimate of $4.92 billion.To read this article in full, please click here

DXC is betting IT apps and services will stay on-premises

DXC Technology, the massive service provider formed in the 2017 merger of HPE Enterprise Services (formerly EDS) and Computer Sciences Corp., has a new CEO who is focused on shedding distraction businesses and focusing on core businesses of IT outsourcing.That means looking at "strategic alternatives," including the possible divesture of three of its businesses it feels are a distraction and slowing the company’s growth. The company feels most IT apps and services will remain on-premises and will focus on supporting that business.Last week’s conference call with financial analysts to discuss Q2 earnings was the first for new CEO Mike Salvino, who joined the company in September after 22 years at Accenture. DXC did not have a good quarter. The company reported non-GAAP earnings of $1.38 per share, which fell short of the consensus estimate of $1.44 and way down from EPS of $2.02 from the same quarter a year ago. Revenue of $4.85 billion fell short of the analyst estimate of $4.92 billion.To read this article in full, please click here

NetApp Treads Troubled Waters in Q2

Despite its overall financial difficulties, NetApp's Cloud Data Services business posted a 167%...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

Librem13v2 TPM upgrade

I have upgraded my TPM firmware on my Librem13v2. Its keys are now safe. \o/

Back in 2017 we had the Infineon disaster (aka ROCA). I’ve written about it before about how bad it is and how to check if you’re affected with a simple tool.

I TAKE NO RESPONSIBILITY IF YOU BRICK YOUR DEVICE OR FOR ANYTHING ELSE BAD HAPPENING FROM YOU FOLLOWING MY NOTES.

Before the upgrade

$ tpm_version | grep Chip
Chip Version:        1.2.4.40    <--- Example vulnerable version
$ cbmem -c | grep Purism         # I upgraded coreboot/SeaBIOS just before doing this.
coreboot-4.9-10-g123a4c6101-4.9-Purism-2 Wed Nov 13 19:54:43 UTC 2019 […]
[…]
Found mainboard Purism Librem 13 v2

Download upgrade tool

$ wget https://repo.pureos.net/pureos/pool/main/t/tpmfactoryupd/tpmfactoryupd_1.1.2459.0-0pureos9_amd64.deb
[…]
$ alien -t tpmfactoryupd_1.1.2459.0-0pureos9_amd64.deb
[…]
$ tar xfz tpmfactoryupd-1.1.2459.0.tgz
$ mv usr/bin/TPMFactoryUpd .
$ sudo systemctl stop trousers.service         # Need to turn off tcsd for TPMFactoryUpd to work in its default mode.
[…]
$ ./TPMFactorUpd -info
  **********************************************************************
  *    Infineon Technologies AG   TPMFactoryUpd   Ver 01.01.2459.00    *
  **********************************************************************

       TPM information:
       ----------------
       Firmware valid                    :    Yes
       TPM family                        :    1.2
       TPM firmware version               Continue reading