0

When Redundancy Strikes

Networking and systems professionals preach the value of redundancy. When we tell people to buy something, we really mean “buy two”. And when we say to buy two, we really mean buy four of them. We try to create backup routes, redundant failover paths, and we keep things from being used in a way that creates a single point of disaster. But, what happens when something we’ve worked hard to set up causes us grief?

Built To Survive

The first problem I ran into was one I knew how to solve. I was installing a new Ubiquiti Security Gateway. I knew that as soon as I pulled my old edge router out that I was going to need to reset my cable modem in order to clear the ARP cache. That’s always a thing that needs to happen when you’re installing new equipment. Having done this many times, I knew the shortcut method was to unplug my cable modem for a minute and plug it back in.

What I didn’t know this time was that the little redundant gremlin living in my cable modem was going to give me fits. After fifteen minutes of not getting the system to come Continue reading

0

CEOs and Encryption: The Questions You Need to Ask Your Experts

Barely a week passes without something in the news that reminds us of the critical role encryption plays in securing our data. It is a technology that protects so much of what we rely on, as individuals protecting our privacy, as companies securing our business assets and transactions, and as governments responsible for critical national infrastructure. 

As a CEO, I needed to know what questions I should be asking my technical experts about encryption and its use, so I asked my staff to produce this paper. I found it to be so useful that I thought we should share it with other executives as they try to understand and manage this complex but indispensable technology.

We believe, at the Internet Society, that encryption is a MUST for protecting what is one of the most valuable assets we manage—data.  We hope this paper can be helpful to you.

— Kathy Brown, CEO, Internet Society

The request Kathy mentions came after the San Bernardino shootings in California (which reinvigorated the debate about third party access to encrypted information), and after a former Director of the UK’s Government Communications Headquarters (GCHQ) had set out his view in these terms:

“Encryption is overwhelmingly Continue reading

0

Another selling point of bare-metal cloud providers: local service

Several things make bare-metal cloud providers appealing compared with traditional cloud providers, which operate in a virtualized environment. Bare-metal providers give users more control, more access to hardware, more performance, and the ability to pick their own operating environment.There's another interesting angle, as articulated by Martin Blythe, a research fellow with Gartner. He maintains that bare-metal providers appeal to small and mid-sized businesses (SMBs) because those companies are often small, local players, and SMBs looking for something more economical than hosting their own data center often want to keep the data center nearby.To read this article in full, please click here

0

Another selling point of bare-metal cloud providers: local service

Several things make bare-metal cloud providers appealing compared with traditional cloud providers, which operate in a virtualized environment. Bare-metal providers give users more control, more access to hardware, more performance, and the ability to pick their own operating environment.There's another interesting angle, as articulated by Martin Blythe, a research fellow with Gartner. He maintains that bare-metal providers appeal to small and mid-sized businesses (SMBs) because those companies are often small, local players, and SMBs looking for something more economical than hosting their own data center often want to keep the data center nearby.To read this article in full, please click here

0

IBM Unwinds Tangled Data for Enterprise AI

These days, organizations are creating and storing massive amounts of data, and in theory this data can be used to drive business decisions through application development, particularly with new techniques such as machine learning. Data is arguably the most important asset, and it is also probably the most difficult thing to manage. Well, excepting people.

Data is tangled mess. It can be structured or unstructured, and it is increasingly scattered in different locations – in on-premises infrastructure, in a public cloud, on a mobile device. It is a challenge to move, thanks to the costs in everything from bandwidth to …

IBM Unwinds Tangled Data for Enterprise AI was written by Jeffrey Burt at The Next Platform.

0

Short Take – The Agile State Of Mind

We all know that agile methodologies are incredibly popular in development teams but what does it have to do with networking? In this Network Collective Short Take, Russ White explores how we might use an agile way of thinking to enhance our approach to network design.

 

The post Short Take – The Agile State Of Mind appeared first on Network Collective.

0

Technology Short Take 96

Welcome to Technology Short Take 96! Ahead, lying in wait, is a unique collection of links, articles, and thoughts about various data center technologies. Browse if you dare…OK, so I’m being a bit melodramatic. It’s still some good stuff here!

Networking

• Via Matt Oswalt and Michael Bushong, I came across this article on Juniper’s use of P4. Interesting stuff…P4 definitely has the potential to dramatically reshape networking in new ways, in my humble opinion.
• Maxime Lagresle of XING outlines how they went about troubleshooting an unexplained connection timeout on Kubernetes/Docker.
• Ajay Chenampara outlines how POAP (Power On Auto Provisioning), a feature of Cisco NX-OS, works to streamline provisioning new network switches.
• Don Schenck has a high-level overview of Istio and service meshes.
• Daniel Álvarez has a good article describing some OVN profiling and optimizing he recently performed. I believe the patches he mentioned in the post have already been accepted into the OVN codebase.

Servers/Hardware

Nothing this time around; sorry! If you have some articles you feel are worthy of inclusion in the next Tech Short Take, send them my way!

Security

• Joe Beda talks about securing the Kubernetes dashboard in the wake of several “cryptojacking” instances.
• CloudFlare discusses recent Continue reading

0

Edge Computing Applications: 3 Traits

0

Edge Computing Applications: 3 Traits

0

Hyperconverged infrastructure gets its own Gartner magic quadrant

Hyperconvergence is winning over enterprises that are drawn to its potential to ease management, streamline the deployment of new workloads, and optimize infrastructure costs.As much as 20 percent of business-critical applications currently deployed on three-tier IT infrastructure will transition to hyperconverged infrastructure by 2020, predicts Gartner, which recently gave the technology its own magic quadrant.[ Check out our What is hyperconvergence? and learn whether your network and team are up to hyperconverged storage. ] The magic quadrant is Gartner’s signature format for tech market analysis, and in prior years, the research firm tackled hyperconvergence as part of its integrated-systems research.To read this article in full, please click here

0

Hyperconverged infrastructure gets its own Gartner magic quadrant

Hyperconvergence is winning over enterprises that are drawn to its potential to ease management, streamline the deployment of new workloads, and optimize infrastructure costs.As much as 20 percent of business-critical applications currently deployed on three-tier IT infrastructure will transition to hyperconverged infrastructure by 2020, predicts Gartner, which recently gave the technology its own magic quadrant.[ Check out our What is hyperconvergence? and learn whether your network and team are up to hyperconverged storage. ] The magic quadrant is Gartner’s signature format for tech market analysis, and in prior years, the research firm tackled hyperconvergence as part of its integrated-systems research.To read this article in full, please click here

0

Video: Automated Data Center Fabric Deployment Demo

I was focused on network automation this week, starting with a 2-day workshop and continuing with an overview of real-life automation wins. Let’s end the week with another automation story: automated data center fabric deployment demonstrated by Dinesh Dutt during his part of Network Automation Use Cases webinar.

You’ll need at least free ipSpace.net subscription to watch the video.

0

ISOC’s Hot Topics at IETF 101

Tomorrow begins IETF 101 in London, United Kingdom, and it’s the third time that an IETF has been held in the country. Following on the heels of our Rough Guide to IETF 101 where we go in-depth about specific topics of interest, the ISOC Internet Technology Team is again highlighting the latest IPv6, DNSSEC, Securing BGP, TLS and IoT related developments as the week progresses.

Below are the sessions that we’ll be following in the coming week. Note this post was written in advance so please check the official IETF 101 agenda for any updates, room changes, or final details.

Monday, 18 March 2018

• IPv6 Operations (v6ops) – Viscount @ 09.30-12.00 GMT/UTC
• IP Wireless Access in Vehicular Environments (ipwave) – Sandringham @ 09.30-12.00 GMT/UTC
• IPv6 Maintenance (6man) – Viscount @ 13.30-15.30 GMT/UTC
• Inter-Domain Routing (idr) – Buckingham @ 15.50-17.20 GMT/UTC
• Crypto Forum (cfrg) – Balmoral @ 15.50-17.20 GMT/UTC
• Transport Layer Security (tls) – Balmoral @ 17.40-18.40 GMT/UTC
• Dynamic Host Configuration (dhc) – Viscount @ 17.40-18.40 GMT/UTC
• Global Routing Operations (grow) – Blenheim @ 17.40-18.40 GMT/UTC

Tuesday, 19 March 2018

• Domain Name System Operations (dnsop) – Sandringham @ 15.50-18.20 GMT/UTC
• Continue reading

0

It’s time…or is it? Choosing to stay at a job or move on.

“Should I stay or should I go.” The famous lyric by The Clash rung in my ears as I re-read the offer letter for the tenth or hundredth time. I was having trouble deciding between moving on to a new and exciting opportunity and staying with a job I loved. It’s simple, right? I”ll lay […]

0

Getting AI Leverage With GPU-Optimized Systems

The artificial intelligence revolution is quickly changing every industry, and modern data centers must be equipped to capitalize on these extraordinary new capabilities. Hewlett Packard Enterprise (HPE) and Nvidia are partnering to bring best-of-breed AI solutions to every customer, offering AI-integrated systems, services, and support capabilities to help all organizations seamlessly optimize their AI foundation, deliver differentiated outcomes, and gain competitive advantage.

High performance computing has become key to solving many of the world’s grand challenges in the realms of science, industry, and engineering. However, traditional CPUs are increasingly failing to deliver the performance gains they used to, and the …

Getting AI Leverage With GPU-Optimized Systems was written by Timothy Prickett Morgan at The Next Platform.

0

Cybersecurity: Where the Women Aren’t

So far, there's not a single female cybersecurity expert keynoting at the upcoming RSA Conference.

0

Worth Reading: The dark side of Internet scale shopping

But if this aspect was already known and widely expected for years, another that we often underestimate is that related to our privacy. Amazon, Ebay, but also Google, Facebook and others, base their business on our personal data. —Fabiana Aloisi @Connecting

0

Verizon and Colt Use SDN Orchestration to Control Each Other’s Networks

The companies claim the PoC was the first to show two-way control.

0

IBM Cloud Security Beefs Up Protection for Apps, Containers

IBM partnered with Cloudflare to offer cloud-based security services.

0

A Secure Supply Chain for Kubernetes, Part 2

Two weeks ago we shared how the upcoming release of Docker Enterprise Edition (Docker EE) is able to secure the software supply chain for Kubernetes; just as it does for Docker Swarm through a combination of scanning for vulnerabilities and implementing image promotion policies. In this blog, we’ll take a closer look at another part of this solution – Docker Content Trust and image signing.

When combined with granular Role Based Access Controls [RBAC] and the secure clustering features of Docker EE, organizations get a secure container platform solution that is ready for the enterprise.

Restricting Unverified Kubernetes Content

As discussed in Part 1 of this blog post, organizations typically have a “supply chain” for how applications progress from a developer’s laptop to production, whether that is on-premises or in the cloud. For larger organizations, the team that handles QA and testing is not always the same team that develops the applications. There may also be a separate team that handles staging and pre-production before an application is pushed to production. Since an application can pass through several teams before it gets deployed, it’s important for organizations to be able to validate the source of the application.

Docker Content Trust Continue reading