NetworkingNexus.net

Two AMD Epyc processors crush four Intel Xeons in tests

Tests by the evaluation and testing site ServeTheHome found a server with two AMD Epyc processors can outperform a four-socket Intel system that costs considerably more.If you don’t read ServeTheHome, you should. It’s cut from the same cloth as Tom’s Hardware Guide and AnandTech but with a focus on server hardware, mostly the low end but they throw in some enterprise stuff, as well.ServeTheHome ran tests comparing the AMD Epyc 7742, which has 64 cores and 128 threads, and the Intel Xeon Platinum 8180M with its 28 cores and 56 threads. The dollars, though, show a real difference. Each Epyc 7742 costs $6,950, while each Xeon Platinum 8180M goes for $13,011. So, two Epyc 7742 processors cost you $13,900, and four Xeon Platinum 8180M processors cost $52,044, four times as much as the AMD chips.To read this article in full, please click here

Running sflowtool using Docker

The sflowtool command line utility is used to convert standard sFlow records into a variety of different formats. While there are a large number of native sFlow analysis applications, familiarity with sflowtool is worthwhile since it provides a simple way to verify receipt of sFlow, understand the contents of the sFlow telemetry stream, and build simple applications through custom scripting.

The sflow/sflowtool Docker image provides a simple way to run sflowtool. Run the following command to print the contents of sFlow packets:

$ docker run -p 6343:6343/udp sflow/sflowtool
startDatagram =================================
datagramSourceIP 10.0.0.111
datagramSize 144
unixSecondsUTC 1321922602
datagramVersion 5
agentSubId 0
agent 10.0.0.20
packetSequenceNo 3535127
sysUpTime 270660704
samplesInPacket 1
startSample ----------------------
sampleType_tag 0:2
sampleType COUNTERSSAMPLE
sampleSequenceNo 228282
sourceId 0:14
counterBlock_tag 0:1
ifIndex 14
networkType 6
ifSpeed 100000000
ifDirection 0
ifStatus 3
ifInOctets 4839078
ifInUcastPkts 15205
ifInMulticastPkts 0
ifInBroadcastPkts 4294967295
ifInDiscards 0
ifInErrors 0
ifInUnknownProtos 4294967295
ifOutOctets 149581962744
ifOutUcastPkts 158884229
ifOutMulticastPkts 4294967295
ifOutBroadcastPkts 4294967295
ifOutDiscards 101
ifOutErrors 0
ifPromiscuousMode 0
endSample   ----------------------
endDatagram   =================================

The -g option flattens the output so that it is more easily filtered using grep:

$ docker run -p 6343:6343/udp sflow/sflowtool -g | grep ifInOctets
2019-09-03T22:37:21+0000 10.0.0.231  Continue reading

Stuff The Internet Says On Scalability For September 6th, 2019

Wake up! It's HighScalability time:

Coolest or most coolest thing ever?

Do you like this sort of Stuff? I'd love your support on Patreon. I wrote Explain the Cloud Like I'm 10 for people who need to understand the cloud. And who doesn't these days? On Amazon it has 54 mostly 5 star reviews (125 on Goodreads). They'll learn a lot and likely add you to their will.

Number Stuff:

Don't miss all that the Internet has to say on Scalability, click below and become eventually consistent with all scalability knowledge (which means this post has many more items to read so please keep on reading)...

Weekly Wrap: Broadcom Releases PCIe Switches for Data Centers

Weekly Wrap for Sept. 6, 2019: Broadcom releases new PCIe switches; VMware the butt of Nutanix CEO...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

IT Hero Culture

I’ve written before about rock stars and IT super heroes. We all know or have worked with someone like this in the past. Perhaps we still do have someone in the organization that fits the description. But have you ever stopped to consider how it could be our culture that breeds the very people we don’t want around?

Keeping The Lights On

When’s the last time you got recognition for the network operating smoothly? Unless it was in response to a huge traffic spike or an attack that tried to knock you offline, the answer is probably never or rarely. Despite the fact that networks are hard to build and even harder to operate, we rarely get recognized for keeping the lights on day after day.

It’s not all that uncommon. The accounting department doesn’t get recognized when the books are balanced. The janitorial staff doesn’t get an exceptional call out when the floors are mopped. And the electric company doesn’t get a gold star because they really did keep the lights on. All of these things are examples of expected operation. When we plug something into a power socket, we expect it to work. When we plug a router Continue reading

How the California Consumer Privacy Act (CCPA) will affect you and your business | TECH(talk)

The California Consumer Privacy Act (CCPA) is, in some ways, similar to Europe's GDPR. This rule, which goes into effect in 2020, gives individual users more ownership over their own data. Users can even refuse to allow companies to sell their online data. As the compliance deadline approaches, CSO Online contributor Maria Kolokov and senior editor Michael Nadeau discuss with Juliet how CCPA may shift business models, change online behavior and reveal where exactly our data has been. Some tech companies, like Google, are even trying to exempt themselves from regulation. Failure to adhere to the rule could be an "extinction level" event.

Community Spotlight – Kevin Myers

Today’s Network Collective Community Spotlight is highlighting Kevin Myers. Kevin is an accomplished engineer working in some of the more complicated and advanced corners of the Internet. Join us as we take a look into how Kevin got his start in networking and how he ended up working on some pretty interesting technology.

Kevin Myers

Guest

Jordan Martin

Host

The post Community Spotlight – Kevin Myers appeared first on Network Collective.

Tech Mahindra Scores Multi-Year, $1B Deal With AT&T

The $1 billion agreement calls for Tech Mahindra to deliver a more advanced SDN for AT&T and...

Read More »

The New SDxCentral: New Style, Same Excellence

After years of the same-old webpage template, we have updated and refined our look. I may be biased...

Read More »

Hurricane Dorian: We Are Not Dormant

Once again, the world is witnessing the destructive power of a natural disaster. This time, the name is Dorian. What worries us is the fact that wind speeds reached the maximum intensity of five on the Saffir-Simpson scale, causing unprecedented damage to islands of the Bahamas. Of further concern is the fact that some Caribbean countries still have not fully recovered from 2017 storms, Irma and Maria. According to forecasts more storms can be expected as we are in the middle of the hurricane season.

The Caribbean remains vulnerable to natural disasters and this has a huge impact on the social and economic development of the region. According to Professor Jamal Saghir, former World Bank executive, and other experts, 20 percent of the Caribbean GDP is spent on natural disaster recovery. You must realize that we are talking about Small Islands Developing States (SIDS) that are already prone to all kinds of challenges due to their small economies.

Natural disasters are not going away and we can even expect them to have greater destructive power in the future. Although we cannot fight against nature, doing nothing is not an option.

At the Internet Society we work for an Continue reading

Intent-Based Networking with Batfish on Software Gone Wild

Imagine you would have a system that would read network device configurations, figure out how those devices might be connected, reverse-engineer the network topology, and be able to answer questions like “what would happen if this link fails” or “do I have fully-redundant network” or even “how will this configuration change impact my network”. Welcome to Batfish.

Interested? You’ll find more in Episode 104 of Software Gone Wild.

Listen to the podcast

DDSketch: a fast and fully-mergeable quantile sketch with relative-error guarantees

DDSketch: a fast and fully-mergeable quantile sketch with relative-error guarantees Masson et al., VLDB’19

Datadog handles a ton of metrics – some customers have endpoints generating over 10M points per second! For response times (latencies) reporting a simple metric such as ‘average’ is next to useless. Instead we want to understand what’s happening at different latency percentiles (e.g p99).

The ability to compute quantiles over aggregated metrics has been recognized to be an essential feature of any monitoring system… Given how expensive calculating exact quantiles can be for both storage and network bandwidth, most monitoring system will compress the data into sketches and compute approximate quantiles.

Fortunately there are plenty of quantile sketching algorithms available including the GK-sketch, the t-digest, the HDR histogram, and the Moments sketch that we looked at last year. For reasons we’ll see shortly though, none of those were good enough for Datadog, so they developed their own sketching data structure, DDSketch. Officially in the paper DDSketch stands for ‘Distributed Distribution Sketch’ but that seems a bit of a stretch… surely it’s the ‘Datadog Sketch’ ! A glance at the code repository for the Python implementation confirms my suspicion: there are several references to Continue reading

HPE’s vision for the intelligent edge

It’s not just speeds and feeds anymore, it's intelligent software, integrated security and automation that will drive the networks of the future.That about sums up the networking areas that Keerti Melkote, HPE's President, Intelligent Edge, thinks are ripe for innovation in the next few years.He has a broad perspective because his role puts him in charge of the company's networking products, both wired and wireless.Now see how AI can boost data-center availability and efficiency “On the wired side, we are seeing an evolution in terms of manageability," said Melkote, who founded Aruba, now part of HPE. "I think the last couple of decades of wired networking have been about faster connectivity. How do you go from a 10G to 100G Ethernet inside data centers? That will continue, but the bigger picture that we’re beginning to see is really around automation.” To read this article in full, please click here

HPE’s vision for the intelligent edge

Weak Chinese Switch Market Quashes Global Growth, Says Dell’Oro

Several factors led to a softening switch market in China during the quarter, not least of which...

Read More »

Q&A: HPE’s networking chief opens up about intelligent edge, Cisco and micro data centers

Since founding Aruba Networks in 2002 and then staying on when Hewlett Packard bought the firm in 2013, Keerti Melkote has seen firsthand the evolution of the wireless industry.From the initial rush to bring laptops using Wi-Fi to the enterprise and the advent of Apple iPad – which Melkote says was a defining moment for enterprise mobility because of the device’s popularity and its need for pervasive enterprise Wi-Fi connectivity – the wireless world has changed dramatically. More about edge networking How edge networking and IoT will reshape data centers Edge computing best practices How edge computing can help secure the IoT And as HPE's President, Intelligent Edge, Melkote is in a position to set the future course for the company’s wired and wireless strategy. He recently talked with Network World Senior Editor Michael Cooney to lay out HPE’s networking challenges and strategies as it negotiates one of the most technologically and competitively challenging markets.To read this article in full, please click here

Introducing Docker Hub’s New & Improved Tag User Experience

One of Docker’s core missions is delivering choice and flexibility across different application languages and frameworks, operating systems, and infrastructure. When it comes to modern applications, the choice of infrastructure is not just whether the application is run on-premises, on virtual machines or bare metal, or in the cloud. It can also be a choice of which architecture – x86, Arm, or GPU.

Today, we’re happy to share some updates in Docker Hub that make it easier to access multi-architecture images and scanning results through the Tag UX.

Navigating to Image Tags

In this example, we’re looking at a listing for a Docker Official Image that supports x86, PowerPC and IBMz as listed in the labels. When you land on the image page on Docker Hub, you can quickly identify if an image supports multiple architectures in the labels underneath the image name. For further details, you can click on ‘Tags’:

In this section, you can now view the different architectures separately to easily identify the right image for the architecture you need, complete with image size and operating system information:

If you click on the digest for a particular architecture, you will now also be able to Continue reading

StreamSets Reaches for the Sky With Cloud Service Launch

Its namesake cloud data integration platform aims to address variables that come with ingesting and...

Read More »

Prevent DNS (and other) spoofing with Calico

AquaSec’s Daniel Sagi recently authored a blog post about DNS spoofing in Kubernetes. TLDR is that if you use default networking in Kubernetes you might be vulnerable to ARP spoofing which can allow pods to spoof (impersonate) the IP addresses of other pods. Since so much traffic is dialed via domain names rather than IPs, spoofing DNS can allow you to redirect lots of traffic inside the cluster for nefarious purposes.

So this is bad, right? Fortunately, Calico already prevents ARP spoofing out of the box. Furthermore, Calico’s design prevents other classes of spoofing attacks. In this post we’ll discuss how Calico keeps you safe from IP address spoofing, and how to go above and beyond for extra security.

ARP Spoofing

ARP spoofing is an attack that allows a malicious pod or network endpoint to receive IP traffic that isn’t meant for it. Sagi’s post already describes this well, so I won’t repeat the details here. An important thing to note, however, is that ARP spoofing only works if the malicious entity and the target share the same layer 2 segment (e.g. have direct Ethernet connectivity). In Calico, the network is fully routed at layer 3, meaning that Continue reading

« Previous 1 … 1,155 1,156 1,157 1,158 1,159 … 3,841 Next »