Cumulus content roundup: March

Welcome back to the Cumulus content roundup! This month we’re all about trying new networking solutions and practices. Whether it’s experimenting with EVPN or allowing automation to improve your network, we’re providing you with everything you need to help you start testing out the waters. We’ve got webinars, white papers and more to guide you, so get out your compass and start navigating the new world of networking!

What’s cooking at Cumulus?

The business benefits of Cumulus EVPN: Cumulus Ethernet Virtual Private Network (EVPN) is here to provide the solutions to your architectural complexities and make your data center even more efficient. Don’t believe us? Read this EVPN white paper to learn about the high-level business benefits your organization can leverage with Cumulus EVPN.

Networking in the container age: You definitely don’t want to miss this webinar! In this episode, you’ll learn about the popular container networking models and the pros and cons of each. Watch it now and find out how to best leverage orchestration tools such as Docker and Kubernetes.

5 Ways you can leverage the Linux community for your data center network: One of the greatest advantages of using a network operating system based Continue reading

IDG Contributor Network: IoT security: whose job is it anyway?

It’s been nearly two decades since the coining of the term “Internet of Things,” yet we are still asking the same question: “Whose responsibility is it to secure the billions of IoT devices?” Given the market’s progress of late, you would think we’d have it figured out by now; but, it’s not that simple.Although IoT security has long been a hot topic of discussion, it has become more important—and more challenging – than ever. First, gone are the days when operational technology (OT) was single-handedly responsible for securing IoT, often taking a “security by obscurity” approach by physically separating production operations and industrial networks from enterprise networks and the Internet. Although enterprises are realizing the need to converge IT with OT to drive new use cases, enable an open flow of data between networks and applications, support better business decisions, lower costs, and reduce complexity, new attack surfaces are arising between the gaps in IT and OT practices.To read this article in full, please click here

IDG Contributor Network: Submarine cable boom fueled by new tech, soaring demand

It’s been 160 years since the world’s first submarine cable linked a remote corner of Trinity Bay, Newfoundland, with Valentia Island on the west coast of Ireland in 1858. That telegraph cable failed after three weeks, but a new method for transoceanic communications had been established, and today submarine cables are a critical piece of digital infrastructure that’s fast expanding in prevalence and prominence globally – though not yet quickly enough to meet voracious demand for capacity.Between 2013 and 2017, the subsea cable industry has added an average of 32 percent of capacity annually on major submarine cable routes, according to the industry magazine SubTel Forum. Still, the industry needs to do more. “It will have to increase activity to stay ahead of demand,” SubTel Forum said in its annual report this year.To read this article in full, please click here

IDG Contributor Network: Submarine cable boom fueled by new tech, soaring demand

It’s been 160 years since the world’s first submarine cable linked a remote corner of Trinity Bay, Newfoundland, with Valentia Island on the west coast of Ireland in 1858. That telegraph cable failed after three weeks, but a new method for transoceanic communications had been established, and today submarine cables are a critical piece of digital infrastructure that’s fast expanding in prevalence and prominence globally – though not yet quickly enough to meet voracious demand for capacity.Between 2013 and 2017, the subsea cable industry has added an average of 32 percent of capacity annually on major submarine cable routes, according to the industry magazine SubTel Forum. Still, the industry needs to do more. “It will have to increase activity to stay ahead of demand,” SubTel Forum said in its annual report this year.To read this article in full, please click here

IDG Contributor Network: Submarine cable boom fueled by new tech, soaring demand

It’s been 160 years since the world’s first submarine cable linked a remote corner of Trinity Bay, Newfoundland, with Valentia Island on the west coast of Ireland in 1858. That telegraph cable failed after three weeks, but a new method for transoceanic communications had been established, and today submarine cables are a critical piece of digital infrastructure that’s fast expanding in prevalence and prominence globally – though not yet quickly enough to meet voracious demand for capacity.Between 2013 and 2017, the subsea cable industry has added an average of 32 percent of capacity annually on major submarine cable routes, according to the industry magazine SubTel Forum. Still, the industry needs to do more. “It will have to increase activity to stay ahead of demand,” SubTel Forum said in its annual report this year.To read this article in full, please click here

Recent Changes in my “Learning Tools” Repository

A couple years ago, I created a “learning-tools” repository on GitHub with the goal of creating environments/tools that would help others learn new technologies. At first, the contents of the repository were almost exclusively leveraging Vagrant, but over time I’ve extended the environments to also leverage Ansible and to use tools such as Terraform. Over the past month or so, I’ve made a few additional (albeit relatively minor) updates that I also wanted to share.

As I said, the updates are relatively minor:

• I’ve added environments for running generic versions of Fedora Atomic Host (26 and 27), Ubuntu 16.04, and Debian 9.x. These environments are probably of limited value by themselves, but in the future I may use them as the basis for more complex environments based on these operating systems. Of course, others may leverage them as the basis for projects of their own.
• I’ve added Libvirt support for a number of the Vagrant-based environments, based on my experience with the Vagrant Libvirt provider. This support is limited to areas where I was able to find Libvirt-formatted Vagrant boxes, so you’ll find Libvirt support for the environments using CentOS Atomic Host, Fedora Atomic Host, and Debian. Continue reading

Python Networking: FTP Programming

Enterprise IoT: Business uses for RFID technology

Internet of Things (IoT) has made a big buzzword over the past few years as organizations have added intelligent controls to refrigerators, soda machines, washer and dryers, medical robots and lightbulbs. While the consumerization of IoT is in our everyday life, enterprises have been looking for ways IoT can benefit them and their users to improve day to day tasks.+Related: Testing RFID devices for enterprise deployment; Most powerful internet of things companies+To read this article in full, please click here

Routing Security BoF – APRICOT 2018

On Sunday, 25 February, the first day of APRICOT 2018, a “Routing Security BoF” (birds of a feather: An informal discussion group) was organized to address the ever-growing routing related incidents happening on daily basis. We have discussed routing security in general within the Asia Pacific region but there was a need to have a platform for open and candid discussion among the network operator community to find a possible way forward, where operators can share their approach in securing their own infrastructure and keeping the internet routing table clean as well.

A quick introduction was provided by the moderator (Aftab Siddiqui) on why it is important to have this BoF. Here are the introductory slides:

The first technical community presenter was Yoshinobu Matsuzaki (Maz) from Internet Initiative Japan (IIJ), the first ISP in Japan started in 1992. IIJ is one of the few ISPs in the region implementing prefix filtering, source address validation for their end customers, and making sure that all their routing information is reflecting the current status in the peeringdb for AS2497. IIJ was the first Asia Pacific ISP to join MANRS (Mutually Agreed Norms for Routing Security), a global initiative, supported by the Continue reading

Model-Driven Telemetry Isn’t as New as Some People Think

During the Campus Evolution with Cat9K presentation (I hope I got it right - the whole event was an absolute overload) the presenter mentioned the benefits of brand-new model-driven telemetry, which immediately caused me to put my academic hat on and state that we had model-driven telemetry for at least 30 years.

Don’t believe me? Have you ever looked at an SNMP MIB description? Did it look like random prose to you or did it seem to have some internal structure?

Istanbul (not Constantinople): Cloudflare’s 124th Data Center

Cloudflare is excited to turn up our newest data center in Istanbul, Turkey. This is our 124th data center globally (and 62nd country), and it is throwing a curveball in our data center by continent tracking. Istanbul is one of the only cities in the world to span two continents: Europe and Asia. Technically, we’ll specify this is our 34th data center in Europe. In the coming weeks, we’ll continue to attract more traffic to this deployment as more networks interconnect with us locally.

March 2018 is a big month for us, as we’ll be announcing (on average) nearly one new Cloudflare data center per day. Stay tuned as we continue to meaningfully expand our geographic coverage and capacity.

Turkish Internet

The Hagia Sophia - Photo by Blaque X / Unsplash

Istanbul itself is home to more than 16 million people, and Turkey is home to over 80 million people. For reference, Turkey’s population is comparable to Germany’s, where Cloudflare turned up its 11th, 31st, 44th, 72nd and 110th data centers in Frankfurt, Düsseldorf, Berlin, Hamburg and Munich. Internet usage in Turkey is approaching 70%, while the rate of Turkish households with access to Internet now exceeds Continue reading

Routing Security is a Serious Problem – and MANRS Can Help. A Report from APRICOT 2018.

Last week, at APRICOT 2018 in Kathmandu, Nepal, there were a lot of talks and discussions focused on routing security and the Mutually Agreed Norms for Routing Security (MANRS).

First, there was a Routing Security BoF, attended by about 150 people, where we talked about what it takes to implement routing security practices, how CDNs and other players can help, and why it is so difficult to make progress in this area. The BoF included an interactive poll at the end, and it showed some interesting results:

• Participants almost unanimously see lack of routing security as a serious problem.
• Slow progress in this area is largely seen as due to a lack of incentives
• Participants see community initiatives (like MANRS) as the main driving forces for improvement, followed by CDNs and cloud providers. They doubt that governments or end-customers can effectively drive change.

My colleague Aftab Siddiqui is writing a separate blog post just about that BoF, so watch the blog in the next day or two.

Later, in the security track of the main APRICOT programme, Andrei Robachevsky, ISOC’s Technology Programme Manager, presented statistics on routing incidents and suggested a way forward based on the MANRS approach. In his Continue reading

Cisco Live 2018 – Fun for grownups!

Cisco Live 2018 is just around the corner in in June from the 10th – 14th in Orlando, FL.  Hard …

Continue reading →

The post Cisco Live 2018 – Fun for grownups! appeared first on Fryguy's Blog.

We just added another module to our Ethical Hacker v9 Technology Course series

Last week we added Certified Ethical Hacker Module 7: Sniffing to our video Library. This is the 7th video to be released as part of an 18 video CEH course series. All Access Pass members can watch Module 7 by logging into their All Access Pass account. For those who are not members, you can buy the series here.

Why You Should Watch:
Attaining sniffing capabilities is a great achievement for hackers, because even when it’s difficult to get there, the rewards might be worth the risk.

About The Course:
This is the 7th of 18 video courses in our CEH v9 Technology Course series and will prepare viewers for the sniffing portion of the Certified Ethical Hacker v9 Exam. This Module is 3 hours in length and is taught by Josué Vargas.

What You’ll Learn:
During this module you will learn about gathering valuable data through sniffing techniques. You will learn LAN based and Internet based sniffing attacks and even use an experimental setting in Wireshark as a remote sniffing tool.

About The Instructor:
Josué Vargas is a networks and security engineer and also owns his own company in Costa Rica, Netquarks Technologies S.R.L. He started Continue reading

Worth Reading: Security in the Modern Data Center

As the data center becomes more complex and dynamic, growing in scale to match the business requirements and relying heavily on diverse and relatively new cloud and virtualization technologies, the task of securing it is going to become even more difficult. —Nitzan Niv @The New Stack

Tesla GPU Accelerator Bang For The Buck, Kepler To Volta

If you are running applications in the HPC or AI realms, you might be in for some sticker shock when you shop for GPU accelerators – thanks in part to the growing demand of Nvidia’s Tesla cards in those markets but also because cryptocurrency miners who can’t afford to etch their own ASICs are creating a huge demand for the company’s top-end GPUs.

Nvidia does not provide list prices or suggested street prices for its Tesla line of GPU accelerator cards, so it is somewhat more problematic to try to get a handle on the bang for the buck over …

Tesla GPU Accelerator Bang For The Buck, Kepler To Volta was written by Timothy Prickett Morgan at The Next Platform.

Infrastructure 2.0: Whatever We’re Calling it Now, It’s Here

The modern infrastructure needs to embrace DevOps principles and apply its methodologies to the network.

A ZTE Telco Customer Wants ZTE VNFs with Red Hat OpenStack

ZTE has its own customized NFVi layer built on OpenStack.

SDxCentral’s Top 10 Articles — February 2018

Cisco-Viptela breathes life into Orange's SD-WAN; the SD-WAN hype cycle starts its decline; AT&T SD-WAN hits 150 countries.

Related Stories

• SDxCentral’s Top 10 Articles — February 2017

Responding to Readers: Questions on Microloops

Two different readers, in two different forums, asked me some excellent questions about some older posts on mircoloops. Unfortunately I didn’t take down the names or forums when I noted the questions, but you know who you are! For this discussion, use the network show below.

In this network, assume all link costs are one, and the destination is the 100::/64 Ipv6 address connected to A at the top. To review, a microloop will form in this network when the A->B link fails:

1. B will learn about the link failure
2. B will send an updated router LSP or LSA towards D, with the A->B link removed
3. At about the same time, B will recalculate its best path to 100::/64, so its routing and forwarding tables now point towards D as the best path
4. D, in the meantime, receives the updated information, runs SPF, and installs the new routing information into its forwarding table, with the new path pointing towards E

Between the third and fourth steps, B will be using D as its best path, while D is using B as its best path. Hence the microloop. The first question about microloops was—

Would BFD help prevent the microloop (or Continue reading