Response: Vendors Pushing Stretched Layer-2
Got this response to my Stretched Layer-2 Revisited blog post. It’s too good not to turn it into a blog post ;)
Recently I feel like it's really vendors pushing layer 2 solutions, rather than us (enterprise customer) demanding it.
I had that feeling for years. Yes, there are environment with legacy challenges (running COBOL applications on OS/370 with emulated TN3270 terminals comes to mind), but in most cases it’s the vendors trying to peddle unique high-priced non-interoperable warez.
Read more ...Semantics and complexity of GraphQL
Semantics and complexity of GraphQL Hartig & Pérez, WWW’18
(If you don’t have ACM Digital Library access, the paper can be accessed either by following the link above directly from The Morning Paper blog site, or from the WWW 2018 proceedings page).
GraphQL has been gathering good momentum since Facebook open sourced it in 2015, so I was very interested to see this paper from Hartig and Pérez exploring its properties.
One of the main advantages (of GraphQL) is its ability to define precisely the data you want, replacing multiple REST requests with a single call…
One of the most interesting questions here is what if you make a public-facing GraphQL-based API (as e.g. GitHub have done), and then the data that people ask for happens to be very expensive to compute in space and time?
Here’s a simple GraphQL query to GitHub asking for the login names of the owners of the first two repositories where ‘danbri’ is an owner.
From here there are two directions we can go in to expand the set of results returned : we can increase the breadth by asking for more repositories to be considered (i.e., changing first:2 Continue reading
masscan, macOS, and firewall
One of the more useful features of masscan is the "--banners" check, which connects to the TCP port, sends some request, and gets a basic response back. However, since masscan has it's own TCP stack, it'll interfere with the operating system's TCP stack if they are sharing the same IPv4 address. The operating system will reply with a RST packet before the TCP connection can be established.The way to fix this is to use the built-in packet-filtering firewall to block those packets in the operating-system TCP/IP stack. The masscan program still sees everything before the packet-filter, but the operating system can't see anything after the packet-filter.
Note that we are talking about the "packet-filter" firewall feature here. Remember that macOS, like most operating systems these days, has two separate firewalls: an application firewall and a packet-filter firewall. The application firewall is the one you see in System Settings labeled "Firewall", and it controls things based upon the application's identity rather than by which ports it uses. This is normally "on" by default. The packet-filter is normally "off" by default and is of little use to normal users.
Also note that macOS changed packet-filters around version 10.10. Continue reading
How U.S. Tech Firms Are Spending Their Newly Repatriated Cash
Following concerns from Senator Marco Rubio that American companies are not using their repatriated cash to invest in the American worker, we looked into what seven tech companies are planning to do with the billions they brought back.
What Drives IPv6 Deployment?
It's been six years since World IPv6 Launch day on the 6th June 2012. In those six years we've managed to place ever increasing pressure on the dwindling pools of available IPv4 addresses, but we have still been unable to complete the transition to an all-IPv6 Internet.A Hard Rain’s A-Gonna Fall In Public Cloud
Way back in the early days of the commercial Internet, when we all logged into what seemed to be new but what was actually a quite old service used by academic institutions and government agencies that rode on the backbones of the telecommunications network, there were many, many thousands of Internet service providers who provided the interface between our computers and the network capacity that was the onramp of the information superhighway.
Most of these ISPs are gone today, and have been replaced by a few major telco, cable, and wireless network operators who provide us with our Internet service. …
A Hard Rain’s A-Gonna Fall In Public Cloud was written by Timothy Prickett Morgan at The Next Platform.
Aerohive Challenges Cisco, Aruba With New A3 Network Access Software
Aerohive challenges Cisco ISE and Aruba ClearPass with its new A3 secure network access software.NSX Workshop: Secure App Infrastructure and Multi-Site Cloud Networking
[Summer 2018] Free NSX Training Workshop near you!
Secure Application Infrastructure and Multi-Site Cloud Networking
What: Attend a half-day lecture and lab designed to get you started with Micro-segmentation and Multi-Site Cloud Networking (Disaster Recovery).
Why: Not only will you get a business and technical overview of NSX Data Center, you’ll also receive hands-on experience with the products. We’ll make sure you leave knowing how NSX can help secure and extend your network across multiple sites, and into the cloud.
Sneak peek (full agenda in registration links):
- Security: Understand your network traffic flows and intelligently create security groups and policies, leveraging vRNI, Service Composer, and Application Rule Manager to secure your network.
- Disaster Recovery: Deep dive into multi-site NSX Data Center topologies, learn how to architect your network overlays, and gain visibility across your virtual and physical networks – all so you can build a resilient and flexible network.
RSVP your spot today (click below):
Link Propagation 119: Premium Links For The Discerning Technologist
Welcome to Link Propagation, a Packet Pushers newsletter. Link Propagation is included in your free membership. Each week we hand-select the most relevant practitioner blog posts, tech news, and product announcements. We age them in oak barrels for up to seven days and then distill them using ancient craft techniques handed down by Tim Berners-Lee. […]Weekend Reads 051818: Botnets and Throwhammer
Exploitation of Rowhammer attack just got easier. Dubbed ‘Throwhammer,’ the newly discovered technique could allow attackers to launch Rowhammer attack on the targeted systems just by sending specially crafted packets to the vulnerable network cards over the local area network. Known since 2012, Rowhammer is a severe issue with recent generation dynamic random access memory (DRAM) chips in which repeatedly accessing a row of memory Continue reading
Dell Still Pondering IPO, VMware Merger, Puts a New Option on the Table
Under this scenario Dell would exchange its common stock, privately held by Michael Dell and Silver Lake, for shares of the company’s publicly traded VMware stock.
Microsoft and Dell Win Mega Cloud Deal With US Intelligence Community
The contract comes as Microsoft competes against other cloud providers for a $10 billion Pentagon deal called JEDI.
Rigado Packages IoT-Focused Edge-as-a-Service Platform
The platform relies on Canonical's Ubuntu Core OS and Snaps application packaging system.
Show 390: Visualizing Complex SD-WAN With LiveAction (Sponsored)
Today on the Packet Pushers Weekly show, we investigate how to monitor hybrid and SD-WAN.
If your WAN looks like a mix of legacy MPLS, SD-WAN, and uplinks to cloud, this is your show. Our sponsor today is LiveAction, who is going to shine a light on the hybrid and SD-WAN through monitoring and automation.
Our guest is John Smith, Founder, CTO and EVP of LiveAction.
We talk about LiveAction’s software and how it works, why it’s essential to have visibility into your hybrid WAN and SD-WAN, and how LiveAction can provide highly visual and intuitive insights and actionable intelligence for day-to-day operations, troubleshooting, and long-term planning.
Show Links:
LiveAction’s Packet Pushers Resources – LiveAction
The post Show 390: Visualizing Complex SD-WAN With LiveAction (Sponsored) appeared first on Packet Pushers.
AT&T Joins SKT and Intel to Launch the Airship OpenStack Project to Build Container-Based Clouds
Airship will build clouds ‘where absolutely everything is a container from the bare metal up.’
SDxCentral’s Weekly Roundup — May 18, 2018
Red Hat enhances its virtualization game; HPE releases AI and ML suite for telcos; CA Technologies gets stamp of approval from U.S. Department of Defense.
DC Blox Snares $37M in Funding for Southeast Data Center Expansion
The Atlanta-based firm expects to add new data centers by year-end to support multi-access edge computing and cloud services.
Dustin’s Internet Community Roadtrip: In the Bay Area, What Redwoods Can Teach Us About the Internet
Dustin Phillips, Co-Executive Director of ICANNWiki, is traveling across the United States in his red Toyota Corolla, making connections with the people who are making their communities – and the Internet – a better place. While making his way to the Bay Area from Portland, Oregon, he took a slight detour.
On my way down to the Bay Area from Portland, I made a trip through the Redwood National and State Parks of Northern California. These Coastal Redwoods have existed for over 20 million years and individual trees can live over 2,000 years. What makes these ancient giants so resilient?
They find strength in community.
Redwoods grow in groves, or “communities,” where the roots only go down 10-13 feet (3-4 m) before spreading outward 60-80 feet (20-27 m). In this phenomenon, survival is dependent on interconnection, meaning the roots intertwine and fuse with each other to provide resiliency against the threats of nature and share the resources necessary to thrive.
This lesson from the redwoods is directly applicable to the Internet. The “network of networks” would be nothing without interconnection or the shared resources of open standards and protocols. Expanding wider, not deeper, is essential to the resilience Continue reading