Welcoming Cisco to disaggregation

Earlier this week, Cisco announced that they will be offering a disaggregated solution with their Cisco IOS XR and Nexus operating systems (1). It’s true, the same organization that claimed to have killed white-box networking is jumping on the bandwagon three years later.

Open networking is no longer just the future

It’s now a requirement in today’s innovative data centers. Cumulus was founded on the notion that the future of data center networking is disaggregation, that the industry should be open and that innovation will only prevail when open networking does. The fact that one more incumbent vendor has acknowledged this notion about where the industry is headed only validates our vision. The future of networking truly is here, and we welcome Cisco to the club — really!

In the last few years, and even last several months, we’ve seen open networking takeoff. From the moment we helped bring ONIE to the market back in 2013, we knew things were going to change in the industry. Since then, we’ve seen the list of participating hardware vendors grow like crazy and our customer base grow with them. We’ve seen web-scale companies like Facebook, Google, LinkedIn and more contribute to the Continue reading

Announcing 1.1.1.1: the fastest, privacy-first consumer DNS service

Announcing 1.1.1.1: the fastest, privacy-first consumer DNS service

Cloudflare's mission is to help build a better Internet. We're excited today to take another step toward that mission with the launch of 1.1.1.1 — the Internet's fastest, privacy-first consumer DNS service. This post will talk a little about what that is and a lot about why we decided to do it. (If you're interested in the technical details on how we built the service, check out Ólafur Guðmundsson's accompanying post.)

Quick Primer On DNS

DNS is the directory of the Internet. Whenever you click on a link, send an email, open a mobile app, often one of the first things that has to happen is your device needs to look up the address of a domain. There are two sides of the DNS network: Authoritative (the content side) and Resolver (the consumer side).

Every domain needs to have an Authoritative DNS provider. Cloudflare, since our launch in September 2010, has run an extremely fast and widely-used Authoritative DNS service. 1.1.1.1 doesn't (directly) change anything about Cloudflare's Authoritative DNS service.

On the other side of the DNS system are resolvers. Every device that connects to the Internet needs a DNS resolver. By default, Continue reading

Introducing DNS Resolver, 1.1.1.1 (not a joke)

Introducing DNS Resolver, 1.1.1.1 (not a joke)

Cloudflare’s mission is to help build a better Internet and today we are releasing our DNS resolver, 1.1.1.1 - a recursive DNS service. With this offering, we’re fixing the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. The DNS resolver, 1.1.1.1, is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released.

Introducing DNS Resolver, 1.1.1.1 (not a joke)

We’re using the following IPv4 addresses for our resolver: 1.1.1.1 and 1.0.0.1. Easy to remember. These addresses have been provided to Cloudflare by APNIC for both joint research and this service. You can read more about their work via the APNIC blog.

DNS resolver, 1.1.1.1, is served by Cloudflare’s Global Anycast Network.

Background: A quick refresher on the role of the resolver in DNS

Our friends at DNSimple have made this amazing DNS Tutorial for anyone to fill in their gaps on how DNS works. They explain all about resolvers, root name servers, and much more in a very informative way.

Introducing DNS Resolver, 1.1.1.1 (not a joke)

When resolving a domain name, a query travels from your end system (i.e. a web browser) to Continue reading

Security: Mitigating Spectre on Older Intel CPUs

I suspect all of my readers are well aware of the Spectre exploit affecting, among others, Intel CPUs going back many years. Intel for their part, after a few missteps, have issued microcode updates for more recent CPUs. But for those of us with computers running older CPUs, the solutions are less likely to be forthcoming. Thankfully there is a solution.

Spectre Logo

 

Branch Prediction and Speculative Execution

The Spectre exploit affects processors which perform branch prediction, a kind of optimistic lookahead where the processor prepares and executes a potential instruction before it is actually requested. For example, if the processor encounters conditional code (like and if..then..else construct), based on previous behavior it predicts what the most likely outcome is and thus which branch of code would be executed as a result, then loads and executes that code in advance (hence “speculative execution”). If the branch prediction is correct, then since the code was already executed the code will benefit from improved performance. Spectre abuses some predictable timing behavior of the speculative execution to be able to extract other processes’ data from the CPU caches. In other words, it’s bad news for security.

The only way to restore security Continue reading

Welcome, Luxembourg City and Chișinău! Cloudflare Global Network Spans 151 Cities

Welcome, Luxembourg City and Chișinău! Cloudflare Global Network Spans 151 Cities

Welcome, Luxembourg City and Chișinău! Cloudflare Global Network Spans 151 Cities

Hot off the presses! Cloudflare just completed provisioning our Luxembourg City and Chișinău data centers, expanding our Europe network to 41 cities, and our global network to 151 cities across 74 countries. In the coming days, we'll ramp up traffic from across millions of websites using Cloudflare, and get routes optimized across all networks. Cloudflare is a participant at the Chișinău Internet Exchange (KIVIX), Luxembourg Commercial Internet eXchange (LU-CIX), and Moldova Internet Exchange (MD-IX), amongst ~180 other interconnection points.

This has been an exciting month, with 31 cities added just in March, for an average of one per day! Collectively, they provide additional resilience and performance across countries spanning a population of over one billion people. To recap, here's the list of our newest data centers: Beirut, Phnom Penh, Kathmandu, Istanbul, Reykjavík, Riyadh, Macau, Baghdad, Houston, Indianapolis, Montgomery, Pittsburgh, Sacramento, Mexico City, Tel Aviv, Durban, Port Louis, Cebu City, Edinburgh, Riga, Tallinn, Vilnius, Calgary, Saskatoon, Winnipeg, Jacksonville, Memphis, Tallahassee, Bogotá, Luxembourg and Chișinău!

We are very excited to surpass a milestone of 150 cities, or our sixth cohort of Continue reading

Wireless Thoughts From Aruba Atmosphere

I just got back from Aruba Atmosphere this week and I thought it would be a good chance to go over some of the cool stuff that I saw there.

  • Rasa is now Aruba NetInsights. That platform is going to be a big one for Aruba in the future. There’s a lot of information that is being gleaned from installations and it’s fueling some hard looks at best practices and such. Also funny that it’s being installed primarily in university campuses to profile coverage and client capabilities. Those are usually pretty hostile environments for users and administrators alike.
  • The security pieces that were shown off were also very interesting. The idea of port profiles has always made me a bit skeptical, but the way that Aruba is doing actual traffic profiling makes me think they have it this time. It’s also really cool that it can be done with non-managed devices in the middle. I think the key is that Aruba is doing actual traffic profiling instead of just looking at the basics behind the packets, like ports or VLANs. Real, automatic port security could be a huge win for places that need on-the-fly access to rapidly changing conditions. Like, Continue reading

Link Propagation 112

Welcome to Link Propagation, a Packet Pushers newsletter. Link Propagation is included in your free membership. Each week we scour the InterWebs to find the most relevant practitioner blog posts, tech news, and product announcements. We drink from the fire hose so you can sip from a coffee cup. Blogs The problem of unpredictable interface […]

Why Does Training Your Employees Matter?

In today’s competitive job market, many employers find themselves asking the question “How do I keep my employee’s satisfied?”


What’s the Secret to Retaining Top Talent?

We’ve all heard that the job market is changing. With millennial’s making up a third of the workforce and growing, according to Forbes Magazine, it’s becoming increasingly common for individuals to jump from job to job and even switch industries. In the midst of this change, many employers may wonder if training employees is a waste of time. Why would you want to spend valuable resources training someone who is just going to leave in a couple of years?

What if I were to tell you that the secret to keeping talent is fueling it, enabling your employees to learn and grow by providing them with training opportunities.


We’re Biologically Wired to Learn

As humans, we crave learning. It’s an innate survival instinct that despite our modern way of life still prevails. Whether you know it or not, your employees are already learning in the workplace every day. They’re learning about job skills, company policies and procedures, company values and colleagues, just to name a few. Why not extend this learning culture to Continue reading

Connecting 500K Bolivians to a National Research and Education Network

As players in the development of the Internet in the world, the academic and scientific communities of the five continents have made important efforts to establish National Research and Education Networks (NRENs) to interconnect universities and research centers to exchange information at a regional level. Examples of these networks are GÉANT in Europe, Internet 2 in the United States, and RedCLARA (Latin American Cooperation of Advanced Networks) in the Latin American region.

The Bolivian academic sector is made up of more than 60 universities with half a million students and 20,000 teachers. Unfortunately Bolivia is the only country that is not connected to RedCLARA. Bolivia not only lacks connection with any NREN, but also has not managed to constitute its own National Academic Scientific Network. Since 2002, several attempts have been made, involving more than 30 universities in the country. As a result, the statutes and regulations of the Bolivian Integration Academic Network (RIAB) have been drafted.

The project Red Academica Boliviana, led by the Internet Society Bolivia Chapter and supported by Beyond the Net Funding Programme, has a long-term goal: to lay the foundations that will strengthen the development of research and education in Bolivia through the Continue reading

2,600 meters closer to the stars: Cloudflare Data Center #149 in Bogotá, Colombia

2,600 meters closer to the stars: Cloudflare Data Center #149 in Bogotá, Colombia

2,600 meters closer to the stars: Cloudflare Data Center #149 in Bogotá, Colombia
At 2625 meters (8612 feet) above sea level, Bogotá (Colombia) is one of the four highest capital cities in the world. Now, it is also home to Cloudflare's 149th data center.

This is the 29th city to be added just in March, and joins our existing Colombia datacenter in Medellín, launched four years ago.

2,600 meters closer to the stars: Cloudflare Data Center #149 in Bogotá, ColombiaCC BY-SA 2.0 image by nigel_sb

Bogotá is the third largest city in South America after São Paulo (Brazil) and Lima (Peru). Bogotanos affectionately known as Rolos are proud of their city with its rich cultural heritage, and its modern transportation systems (Ciclovias, Transmilenio) despite the heavy traffic. Whether you are visiting the world famous gold museum or savoring the mouthwatering Ajiaco soup, Bogotá has something for everyone, and visitors are always warmly received by the locals.

2,600 meters closer to the stars: Cloudflare Data Center #149 in Bogotá, ColombiaCC BY-SA 2.0 image by krossbow

Bogotá is our 11th deployment in the Latin America and Caribbean Region, and is located at a Tier III facility in the Bogota Free Trade Zone specially developed to attract ICT Investments. We'll continue our expansions in the Latin America and Caribbean region (and around the world!).

Come meet the Cloudflare team at the LACNIC29 Meeting in end April Continue reading

SpaceX Gets US Approval to Launch Space-Based Broadband Service

If all goes as planned, Elon Musk’s SpaceX will eventually launch 4,425 satellites into orbit with the goal of delivering broadband service to all corners of the Earth.

The U.S. Federal Communications Commission, on Wednesday, approved SpaceX’s request to move forward with its space-based broadband proposal, on the condition that the aerospace company launch half of the satellites within six years.

Once deployed, the low-Earth orbit satellites will cover the entire United States, including Puerto Rico and the U.S. Virgin Islands, and eventually, provide “full-time coverage to virtually the entire planet,” the FCC said in its approval order.

SpaceX plans to begin launching the satellites in 2019. About 800 satellites will need to be deployed for the broadband service to be operational. The company, in the midst of launching 10 satellites on Friday, didn’t have an immediate comment on the FCC approval.

The company calls the proposed service “Starlink” and plans to offer wireless broadband speeds comparable to fiber-optic service.

The FCC imposed a number of conditions on SpaceX’s application. Several other satellite operators raised concerns about spectral interference from the SpaceX satellites, and others suggested the large number of satellites would eventually lead to orbital debris, or Continue reading

Stuff The Internet Says On Scalability For March 30th, 2018

Hey, it's HighScalability time:

 

Objective painting is not good painting unless it is good in the abstract sense. A hill or tree cannot make a good painting just because it is a hill or tree. It is lines and colors put together so that they may say something.” – Georgia O’Keeffe

 

If you like this sort of Stuff then please support me on Patreon. And I'd appreciate if you would recommend my new book—Explain the Cloud Like I'm 10—to anyone who needs to understand the cloud (who doesn't?). I think they'll learn a lot, even if they're already familiar with the basics.

 

  • 6,000: new viri spotted by AI; 300,000: Uber requests per second; 10TB & 600 years: new next-gen optical disk; 32,000: sites running Coinhive’s JavaScript miner code; $1 billion: Uber loss per quarter; 3.5%: global NAND flash output lost to power outage; 100TB: new SSD; 48TB: RAM on one server; 200 million: Telegram monthly active users; 2,000: days Curiosity Rover on Mars; 225: emerging trends; 4,425: SpaceX satellites approved; 

  • Quotable Quotes:

Show 383: Optimizing Internet Traffic With Expereo (Sponsored)

BGP is good for keeping the Internet connected. And that s about it. BGP isn t good at optimizing the path between two endpoints, as it s more about optimizing service provider costs than traffic performance.

Therefore, there are products on the market that optimize your traffic flows across the Internet despite default BGP behavior. Some of these products actually manipulate BGP, which will be the focus of our sponsored show today. Our sponsor Expereo is here to discuss their XCA and XCA Edge products with us.

Joining us from Expereo are Francois Devienne, VP of Networks; and Sander Barens, VP of Commercial Development.

Expereo is a managed service provider. We discuss how the company optimizes BGP to get the best out of the Internet, and explore Expereo’s XCA and XCA Edge products.

Show Links:

Expereo

Expereo XCA Edge

The post Show 383: Optimizing Internet Traffic With Expereo (Sponsored) appeared first on Packet Pushers.

Weekend Reads 033018: Olympic Destroyer, SONiC, and all the rest

The crippling Olympic Destroyer attack that hit several systems supporting the Pyeongchang Winter Olympics last month may have forever changed the game of attack attribution: the sophisticated attackers created a convincing forgery of malware associated with the North Korean nation-state Lazarus Group, fooling several experts who initially pinned the blame for the attacks on the DPRK. —Kelly Jackson Higgins @Dark Reading

SONiC is the default switch OS powering Azure and many other parts of the Microsoft Cloud. Since last year’s Summit, we have grown its footprint substantially and are now also powering services such as our AI platform, making sure researches have the very best experience when working on solving some of the world’s most pressing problems. —Yousef Khalidi @Azure

For decades, academics and technologists have sparred with the government over access to crypographic technology. In the 1970s, when crypto started to become an academic discipline, the NSA was worried, fearing that they’d lose the ability to read other countries’ traffic. And they acted. For example, they exerted pressure to weaken DES. —Steve Bellovin @CircleID

Cybersecurity attacks have become a weekly occurrence in many news columns. One recent example was that of one of our customers, QIWI payment system, successfully Continue reading

Juma Baldeh: Breaking Barriers to Access in Gambia

How do you shift the cultural stigma around technology and gender? As Juma Baldeh has proven in Gambia, you do it one girl at a time. Baldeh founded Hackathon Girls Banjul for girls ages 8 to 18 in her home country, in coordination with the Mozilla Foundation. As the first technology club of its kind there, members receive six months of free weekly classes on web literacy and basic computing skills. More importantly, the club gives more than 40 girls a safe space to collaborate and share experiences as they work together on projects for a tech-savvy Gambia.

“Too often I witness young girls, who are skilled in math and science, lose hope as they prepare for interviews and professional positions,” Baldeh said. “Right now, many girls in this field leave it because they think computer jobs are too difficult and they lose confidence at some point.”

The club started with a small space and just five girls, training to be proficient in basic computing skills, computer programing, online security and privacy, and research and networking. Through these skills the girls can then go on to civic participation, economic empowerment, and leadership roles. One of the many problems with Continue reading

1 1,672 1,673 1,674 1,675 1,676 3,849