HN711: Get Cloud-Like Operation Of Your Data Center With Juniper Apstra And Terraform (Sponsored)
Today on Heavy Networking, sponsored by Juniper, we’ll talk about how Juniper’s Apstra software can help you operate your on-prem data center more like a public cloud; meaning service provisioning that’s repeatable, standardized, and straightforward to consume. We’ll also talk about how Apstra now works with Terraform to help streamline network self-service.
The post HN711: Get Cloud-Like Operation Of Your Data Center With Juniper Apstra And Terraform (Sponsored) appeared first on Packet Pushers.
HN711: Get Cloud-Like Operation Of Your Data Center With Juniper Apstra And Terraform (Sponsored)
Public clouds abstract away much of the nitty-gritty work that goes into provisioning infrastructure, including networking. Application teams can quickly connect resources and deploy applications without having to know much about the plumbing that links everything together. When they compare the public cloud experience to standing up applications in an on-prem data center, the on-prem... Read more »Cloudflare Gen 12 Server: Bigger, Better, Cooler in a 2U1N form factor
Two years ago, Cloudflare undertook a significant upgrade to our compute server hardware as we deployed our cutting-edge 11th Generation server fleet, based on AMD EPYC Milan x86 processors. It's nearly time for another refresh to our x86 infrastructure, with deployment planned for 2024. This involves upgrading not only the processor itself, but many of the server's components. It must be able to accommodate the GPUs that drive inference on Workers AI, and leverage the latest advances in memory, storage, and security. Every aspect of the server is rigorously evaluated — including the server form factor itself.
One crucial variable always in consideration is temperature. The latest generations of x86 processors have yielded significant leaps forward in performance, with the tradeoff of higher power draw and heat output. In this post we will explore this trend, and how it informed our decision to adopt a new physical footprint for our next-generation fleet of servers.
In preparation for the upcoming refresh, we conducted an extensive survey of the x86 CPU landscape. AMD recently introduced its latest offerings: Genoa, Bergamo, and Genoa-X, featuring the power of their innovative Zen 4 architecture. At the same time, Intel unveiled Sapphire Rapids as Continue reading
Hedge 204: Terry Slattery on Network Automation
Terry Slattery joins Tom and Russ to continue the conversation on network automation—and why networks are not as automated as they should be. This is part one of a two-part series; the first part of this conversation was posted as episode 203.
Security Solutions that Connect Remote Offices and Users
In this archived panel discussion, Cristina Raducanu, Nia F. Luckey, Rob Ferrill, and Tashya Denose connect to deliver an in-depth conversation detailing the importance of combining networking and security solutions during our ‘Connectivity Solutions’ live virtual event presented by Network Computing. This panel was moderated by Steve Hill on November 9, 2023.30 Days Left to Buy ipSpace.net Subscription
When I announced the lifetime ipSpace.net subscription in early September, I also mentioned that you won’t be able to purchase any ipSpace.net subscription after December 31st, 2023.
As of today, you have 30 days left to decide, and don’t wait till the last minute – I plan to turn off the purchasing process sometime during the business hours of December 31st as I hope to have more interesting things to do in the evening.
KU042: Kubernetes Long-Term Support With Kubernetes Co-Founder Brendan Burns
As Kubernetes becomes more mainstream and overall “stable,” organizations need a way to get both enterprise support and proper upgrade paths. Brendan Burns, co-founder of Kubernetes, joins the show to discuss Kubernetes LTS—long-term support.
The post KU042: Kubernetes Long-Term Support With Kubernetes Co-Founder Brendan Burns appeared first on Packet Pushers.
KU042: Kubernetes Long-Term Support With Kubernetes Co-Founder Brendan Burns
As Kubernetes becomes more mainstream and “stable,” organizations need a way to get enterprise support and proper upgrade paths. Brendan Burns, co-founder of Kubernetes, joins the show to discuss Kubernetes LTS—long-term support. Brendan shares how he and his team are bringing this to life at Microsoft with Azure Kubernetes Service (AKS), and what you can... Read more »The Growing Middle Mile Networks Funding Debate
Will the $1 billion in grants awarded to expand and upgrade these networks be enough to close the digital divide? Some say no.IPB140: IPv6 CLAT And IPv6-Only Networks
Ed, Scott, and Tom discuss the Customer-Side Translator (CLAT) function and its role in enabling client connectivity in IPv6-only networks.
The post IPB140: IPv6 CLAT And IPv6-Only Networks appeared first on Packet Pushers.
IPB140: IPv6 CLAT And IPv6-Only Networks
In this episode Ed, Scott, and Tom discuss the Customer-Side Translator (CLAT) function and its role in enabling client connectivity in IPv6-only networks. Topics discussed include: Traditional use of the CLAT and 464XLAT by mobile service providers How the CLAT may be used in enterprise IPv6-only networks Where DNS64/NAT64 doesn’t work and drives the need... Read more »The BGP Multi-Exit Discriminator (MED) Saga
Martijn Van Overbeek left this comment on my LinkedIn post announcing the BGP MED lab:
It might be fixed, but I can recall in the past that there was a lot of quirkiness in multi-vendor environments, especially in how different vendors use it and deal with the setting when the attribute does exist or does not have to exist.
TL&DR: He’s right. It has been fixed (mostly), but the nerd knobs never went away.
In case you’re wondering about the root cause, it was the vagueness of RFC 1771. Now for the full story ;)
The BGP Multi-Exit Discriminator (MED) Saga
Martijn Van Overbeek left this comment on my LinkedIn post announcing the BGP MED lab:
It might be fixed, but I can recall in the past that there was a lot of quirkiness in multi-vendor environments, especially in how different vendors use it and deal with the setting when the attribute does exist or does not have to exist.
TL&DR: He’s right. It has been fixed (mostly), but the nerd knobs never went away.
In case you’re wondering about the root cause, it was the vagueness of RFC 1771. Now for the full story ;)
Azure Key Vault Certificate Migration with Powershell
https://codingpackets.com/blog/azure-key-vault-certificate-migration-with-powershell
Unified SASE Maximizes the Potential of Observability
Unified SASE can amplify an organization’s observability capabilities, facilitating proactive threat detection, precise analysis, and better decision-making.Tigera has achieved AWS Security Competency status!
We’re happy to announce that Tigera recently achieved Amazon Web Services (AWS) Security Competency status. This designation recognizes the security capabilities of Tigera’s Calico Cloud platform in helping customers secure their AWS workloads and achieve their cloud security goals.
To receive the designation, AWS Partners must possess deep AWS expertise and deliver solutions seamlessly on AWS. After evaluating Calico Cloud’s security capabilities, including vulnerability management, container- and network-based threat detection, observability and security policy lifecycle, AWS found it surpassed the competency requirements.
This is the second AWS competency Tigera has achieved and we’re proud to add this new competency to our existing AWS Containers Software Competency. Our team is dedicated to helping companies achieve their Kubernetes and container security goals by combining our technology with the range of powerful security tools AWS provides.
Read the full press release for more details or visit us on the AWS Marketplace.
The post Tigera has achieved AWS Security Competency status! appeared first on Tigera.
D2C222: What’s New In Azure Networking (Sponsored)
Today's Day Two Cloud discusses how Azure's use of hollow core fiber will impact customers, building networks to support AI workloads, the general availability of Virtual Network Manager, routing improvements, a tech preview of IPAM in vNet Manager, updates around containers and security, and other network-related topics in Azure. Microsoft is the sponsor of this episode.
The post D2C222: What’s New In Azure Networking (Sponsored) appeared first on Packet Pushers.
D2C222: What’s New In Azure Networking (Sponsored)
From using hollow core fiber to building networks designed to support AI workloads and modern applications, there’s a lot happening in Azure networking. In this sponsored Day Two Cloud episode, recorded live at Microsoft Ignite this November, we have a wide-ranging discussion about new and forthcoming features and capabilities. My guest is Narayan Annamalai, who... Read more »BGP Labs: Set BGP Communities on Outgoing Updates
It’s hard to influence the behavior of someone with strong opinions (just ask any parent with a screaming toddler), and trying to persuade an upstream ISP not to send the traffic over a backup link is no exception – sometimes even AS path prepending is not a strong enough argument.
An easy solution to this problem was proposed in 1990s – what if we could attach some extra attributes (called communities just to confuse everyone) to BGP updates and use them to tell adjacent autonomous systems to lower their BGP local preference? You can practice doing that in the Attach BGP Communities to Outgoing BGP Updates lab exercise.
BGP Labs: Set BGP Communities on Outgoing Updates
It’s hard to influence the behavior of someone with strong opinions (just ask any parent with a screaming toddler), and trying to persuade an upstream ISP not to send the traffic over a backup link is no exception – sometimes even AS path prepending is not a strong enough argument.
An easy solution to this problem was proposed in 1990s – what if we could attach some extra attributes (called communities just to confuse everyone) to BGP updates and use them to tell adjacent autonomous systems to lower their BGP local preference? You can practice doing that in the Attach BGP Communities to Outgoing BGP Updates lab exercise.