VPP IXP Gateway – Part 1

VPP

About this series

Ever since I first saw VPP - the Vector Packet Processor - I have been deeply impressed with its performance and versatility. For those of us who have used Cisco IOS/XR devices, like the classic ASR (aggregation service router), VPP will look and feel quite familiar as many of the approaches are shared between the two.

There’s some really fantastic features in VPP, some of which are lesser well known, and not always very well documented. In this article, I will describe a unique usecase in which I think VPP will excel, notably acting as a gateway for Internet Exchange Points.

In this first article, I’ll take a closer look at three things that would make such a gateway possible: bridge domains, MAC address filtering and traffic shaping.

Introduction

Internet Exchanges are typically L2 (ethernet) switch platforms that allow their connected members to exchange traffic amongst themselves. Not all members share physical locations with the Internet Exchange itself, for example the IXP may be at NTT Zurich, but the member may be present in Interxion Zurich. For smaller clubs, like IPng Networks, it’s not always financially feasible (or desirable) to order a dark fiber between two adjacent Continue reading

How Cloudflare mitigated yet another Okta compromise

On Wednesday, October 18, 2023, we discovered attacks on our system that we were able to trace back to Okta – threat actors were able to leverage an authentication token compromised at Okta to pivot into Cloudflare’s Okta instance. While this was a troubling security incident, our Security Incident Response Team’s (SIRT) real-time detection and prompt response enabled containment and minimized the impact to Cloudflare systems and data. We have verified that no Cloudflare customer information or systems were impacted by this event because of our rapid response. Okta has now released a public statement about this incident.

This is the second time Cloudflare has been impacted by a breach of Okta’s systems. In March 2022, we blogged about our investigation on how a breach of Okta affected Cloudflare. In that incident, we concluded that there was no access from the threat actor to any of our systems or data – Cloudflare’s use of hard keys for multi-factor authentication stopped this attack.  

The key to mitigating this week’s incident was our team’s early detection and immediate response. In fact, we contacted Okta about the breach of their systems before they had notified us. The attacker used an open Continue reading

Gartner: IT spending to climb 8% to $5.1 trillion in 2024

Driven primarily by cloud and cybersecurity investments, worldwide IT spending is projected to total $5.1 trillion in 2024, an increase of 8% from 2023, according to the latest forecast from Gartner.The software and IT services segments will see double-digit growth in 2024, largely driven by cloud spending, according to Gartner.Global spending on public cloud services is forecast to increase 20.4% in 2024. The source of growth will be a combination of cloud vendors' price increases and increased utilization, just as it was in 2023, wrote John-David Lovelock, a distinguished vice president analyst at Gartner.Cybersecurity spending is also driving growth in the software segment. Roughly 80% of CIOs reported that they plan to increase spending on cyber/information security in 2024, according to Gartner's 2024 CIO and Technology Executive Survey.To read this article in full, please click here

Gartner: IT spending to climb 8% to $5.1 trillion in 2024

Driven primarily by cloud and cybersecurity investments, worldwide IT spending is projected to total $5.1 trillion in 2024, an increase of 8% from 2023, according to the latest forecast from Gartner.The software and IT services segments will see double-digit growth in 2024, largely driven by cloud spending, according to Gartner.Global spending on public cloud services is forecast to increase 20.4% in 2024. The source of growth will be a combination of cloud vendors' price increases and increased utilization, just as it was in 2023, wrote John-David Lovelock, a distinguished vice president analyst at Gartner.Cybersecurity spending is also driving growth in the software segment. Roughly 80% of CIOs reported that they plan to increase spending on cyber/information security in 2024, according to Gartner's 2024 CIO and Technology Executive Survey.To read this article in full, please click here

Heavy Networking 706: The GitNops Approach To Collaborative Network Automation

Today’s Heavy Networking is about collaborative automation via GitNops, which applies DevOps principles to networking. That means things like version control, working with sources of truth, operating infrastructure as code, and collaborating on network on changes and updates. GitNops benefits include automation, repeatability, and scalability. We'll dive into GitNops with guest Tom McGonagle.

Heavy Networking 706: The GitNops Approach To Collaborative Network Automation

Today’s Heavy Networking is about collaborative automation via GitNops, which applies DevOps principles to networking. That means things like version control, working with sources of truth, operating infrastructure as code, and collaborating on network on changes and updates. GitNops benefits include automation, repeatability, and scalability. We'll dive into GitNops with guest Tom McGonagle.

The post Heavy Networking 706: The GitNops Approach To Collaborative Network Automation appeared first on Packet Pushers.

Empowering our partners with the new Tenant Platform dashboard

Itching to get started? Apply to the Self Serve Partner Beta or Enterprise partner programs now.

Empowering our partners with the new Tenant Platform dashboard

Cloudflare has always worked closely with partners to help build a better Internet. From our earliest Hosting Partners, to our latest Cloudflare One program and Authorized Service Delivery partners, we are dedicated to supporting our peers across the networking and cybersecurity ecosystem to secure Enterprise networks, mission-critical applications, and remote employees. As part of that commitment, we are proud to announce the general availability of our first dashboard for our Tenant Platform, providing an intuitive user interface for agencies and partners to manage their client accounts.

Tenant Platform introduction

The first version of the Tenant Platform was created in 2018 to support one of our large integration partners, IBM Cloud. They needed a secure way to independently provision accounts for their clients, spin up custom subscriptions, invite service users within each new account, and begin to configure the service. This platform, although API only, worked extremely well with our OEM and integration partners that were including our solution within their current platform to support their customers.

Multi-Tenant Structure

User interface overview

As Cloudflare has expanded the type of partners and customers it works Continue reading

Weekend Reads 102023


When we were not looking – and forcing ourselves to not look at any IT news because we have other things going on – that is the moment when Nvidia decides to put out a financial presentation that embeds a new product roadmap within it.


SiFive today launched a pair of RISC-V CPU cores aimed at high-performance and AI/ML applications.


LPO is short for Linear Pluggable Optics (or Linear-drive Pluggable Optics), it is a potential technology to satisfy the low power consumption and high bandwidth demand of data centers like CPO (Co-packaged Optics).


One colocation provider has come up with a unique solution: It’s building small nuclear power plants for itself.


That’s no longer the case, however, as its latest variant, encased in compromised OfficeNote installation packages (currently in beta mode), can cause damage to any macOS devices.


In an era where every click, tap or keystroke leaves a digital trail, Americans remain uneasy and uncertain about their personal data and feel they have little control over how it’s used.


An investigation from the Wall Street Journal identified a company called Near Intelligence that purchased data about individuals and their devices from brokers who usually sell to advertisers. The company Continue reading

Palo Alto expands cloud security platform

Palo Alto Networks has bolstered its cloud security software with features that help customers quickly spot suspicious behaviors and trace security issues to their source to better protect enterprise software-as-a-service (SaaS) applications.The vendor has added a variety of new components, under the moniker Darwin, to its core cloud-security package, Prisma Cloud. The core platform already includes application-security features such as access control, advanced threat protection, user-behavior monitoring, and the ability to code security directly into SaaS applications. Managed through a single console, Prisma Cloud also includes firewall as a service, zero-trust network access (ZTNA), a cloud-access security broker (CASB), and a secure web gateway.To read this article in full, please click here

Palo Alto expands cloud security platform

Palo Alto Networks has bolstered its cloud security software with features that help customers quickly spot suspicious behaviors and trace security issues to their source to better protect enterprise software-as-a-service (SaaS) applications.The vendor has added a variety of new components, under the moniker Darwin, to its core cloud-security package, Prisma Cloud. The core platform already includes application-security features such as access control, advanced threat protection, user-behavior monitoring, and the ability to code security directly into SaaS applications. Managed through a single console, Prisma Cloud also includes firewall as a service, zero-trust network access (ZTNA), a cloud-access security broker (CASB), and a secure web gateway.To read this article in full, please click here

Palo Alto expands cloud security platform

Palo Alto Networks has bolstered its cloud security software with features that help customers quickly spot suspicious behaviors and trace security issues to their source to better protect enterprise software-as-a-service (SaaS) applications.The vendor has added a variety of new components, under the moniker Darwin, to its core cloud-security package, Prisma Cloud. The core platform already includes application-security features such as access control, advanced threat protection, user-behavior monitoring, and the ability to code security directly into SaaS applications. Managed through a single console, Prisma Cloud also includes firewall as a service, zero-trust network access (ZTNA), a cloud-access security broker (CASB), and a secure web gateway.To read this article in full, please click here

Kubernetes Unpacked 038: The Kubernetes Dev Experience In 2023

On today's Kubernetes Unpacked podcast, Michael and Kristina catch up with Arsh Sharma, Developer Experience Engineer at Okteto. Arsh dives into the key aspects to consider for incorporating a proper developer experience for Kubernetes and the overall cloud-native ecosystem.

The post Kubernetes Unpacked 038: The Kubernetes Dev Experience In 2023 appeared first on Packet Pushers.

IPB137: Running IPv6 At An Internet Exchange

On today's IPv6 Buzz, we talk with Jason Gintert of the Ohio Internet Exchange about what's involved with running an IX and where IPv6 fits in to the picture. We also discuss Jason's work with the US Networking User Association, a group that brings together network engineers to share knowledge and learn from one another.

IPv6 Buzz 137: Running IPv6 At An Internet Exchange

On today's IPv6 Buzz, we talk with Jason Gintert of the Ohio Internet Exchange about what's involved with running an IX and where IPv6 fits in to the picture. We also discuss Jason's work with the US Networking User Association, a group that brings together network engineers to share knowledge and learn from one another.

The post IPv6 Buzz 137: Running IPv6 At An Internet Exchange appeared first on Packet Pushers.

Nokia to cut 14,000 jobs in an attempt to salvage falling profit

Telecom giant Nokia has announced it will be cutting up to 14,000 jobs, a decision it blamed on the slowing demand for 5G equipment.On Thursday, the company reported that its third-quarter net sales declined by 20% year-on-year, with profit over the same period dropping by 69%. Nokia said that as a result, it will be implementing cost-cutting measures to try and save between $842 million and $1.2 billion by 2026, eliminating $422 million worth of costs in 2024 and a further $316 in 2025.“The most difficult business decisions to make are the ones that impact our people. We have immensely talented employees at Nokia and we will support everyone that is affected by this process,” said President and CEO Pekka Lundmark in a statement. “Resetting the cost base is a necessary step to adjust to market uncertainty and to secure our long-term profitability and competitiveness. We remain confident about opportunities ahead of us.”To read this article in full, please click here

1 154 155 156 157 158 3,785