Facebook Targets Routing Space With Open/R Platform
The platform originally was part of its Terragraph wireless backhaul network.
Remote User Authentication and RBAC with NSX-T
Remote user authentication and role based access control (RBAC) is an important requirement when deploying new systems in an organization, particularly in the networking world. For that matter, systems typically leverage RADIUS or Active Directory (AD) servers, to name a few.
NSX-T integrates with VMware Identity Manager (vIDM) to get the following benefits related to user authentication:
- Support for extensive AAA Systems, including
- AD-based LDAP, OpenLDAP
- RADIUS
- SmartCards / Common Access Cards
- RSA Secure ID
- Enterprise Single Sign-On
- Common authentication platform across multiple VMware solutions
- Seamless single sign-on experience
This blog post covers the main steps required to integrate NSX-T with vIDM and to configure roles that grant different privileges to different users. It does not cover deployment and hardening of VMware Identity Manager (vIDM). At the end of the post, there is a link to a demo showing how to do the configuration and several role-based access tests.
Assuming that both NSX-T Manager and vIDM appliances are deployed, powered on and configured with the basic management details (IP address, admin users, etc.), the integration requires the following steps:
- Creating a OAuth client ID for the NSX-T Manager in vIDM
- Getting the vIDM appliance thumbprint
- Registering NSX-T Manager with Continue reading
Intel Brings 5G Closer to Reality with Multimode Modems
But the company cautions that 5G is about more than a fast connection.
Oracle Public Cloud Upgrades Target AI, Enterprise, and HPC Applications
Oracle claims the upgrades best AWS with 1,214 percent better storage performance.
Senet Wants to Expand IoT Connectivity Virtually
Cablecos, tower firms, or municipalities can get a cut of the IoT revenues.
Research: CrystalNet: Faithfully Emulating Large Production Networks
Microsoft research paper on network emulation at scale
Swarm Orchestration in Docker Enterprise Edition
At DockerCon Europe, we announced that the next release of Docker Enterprise Edition (Docker EE) would include Kubernetes integration. We’re really excited about bringing Kubernetes to our customer base and continuing to increase our involvement within the community. But it’s equally important for us to note that Swarm orchestration is not going away. Swarm forms an integral cluster management component of the Docker EE platform; in addition, Swarm will operate side-by-side with Kubernetes in a Docker EE cluster, allowing customers to select, based on their needs, the most suitable orchestration tool at application deployment time.
Here are just a few reasons that Swarm is integral to the Docker EE solution:
- Support our existing customers and ecosystem integrations
- Provide customers the flexibility in choice of orchestrators
- Provide secure and highly available clustering architecture
Existing Customers and Ecosystem Integrations
Docker now has hundreds of Docker EE customers who have standardized on Swarm orchestration. In fact, at our Customer Summit during DockerCon, all of the customers stated that they intend to continue using Swarm even with the Kubernetes announcement. Having both orchestration options available is definitely a plus for some of these customers that have organizations within the company using both Swarm and Continue reading
Gordon Bell Looks Out Into A Parallel World
It was 31 years ago when Alan Karp, then an IBM employee, decided to put up $100 of his own money in hopes of solving a vexing issue for him and others in the computing field. When looking at the HPC space, there were supercomputers armed with eight powerful processors and designed to run the biggest applications of the day. However, there also were people putting 1,000 wimpy chips into machines that leveraged parallelism to run workloads, a rarity at the time.
According to Amdahl’s Law in 1986, even if 95 percent of a workload runs in parallel, the speedup …
Gordon Bell Looks Out Into A Parallel World was written by Jeffrey Burt at The Next Platform.
SD-WAN 101: Introduction to Software-Defined Wide Area Networks
No doubt, there’s a plethora of information on the web about SD-WAN, short for Software-Defined Wide Area Network. It’s the next big thing in networking and everyone’s writing, making a video, or talking about it. But, if you’re like me, any time a new technology emerges, I prefer to learn the fundamentals before jumping into... Read more →
Deploy360 at IETF 100, Day 5: Zaìjiàn from the Lion City
There’s a couple of sessions of interest on the last day of IETF 100 before we wrap up for the week. Friday is only a half-day, but still manages to fit in sessions on human rights considerations and encryption. Human rights is not a topic that Deploy360 typically covers, but we have been increasingly asked to discuss the IRTF initiative on Human Rights Protocols Considerations. (There’s also a recent IETF Journal article on Human Rights Protocol Considerations.)
HRPC is researching the human rights threats on the Internet, whether standards and protocols can enable or threaten these, and is developing recommendations on developing Internet protocols around this. It recently published RFC 8080 outlining human rights threats on the Internet, and will be meeting at 09.30 SGT/UTC+8 to discuss three other drafts relating to Freedom of Association on the Internet, the Politics of Standards, and Unrequested Communications. There will also be a presentation on Chainiac: end-to-end software supply chain security and transparency, plus the next steps forward will be discussed.
NOTE: If you are unable to attend IETF 100 in person, there are multiple ways to participate remotely.
PERC is also meeting at the same time, and has three drafts up for discussion. Continue reading
IPv6 Migration: 5 Best Practices
Follow these expert tips to smooth the process of adopting the new Internet Protocol standard.
Pluribus Networks… 2 Years Later
I first met Pluribus Networks 2.5 years ago during their Networking Field Day 9 presentation, which turned controversial enough that I was advised not to wear the same sweater during NFD16 to avoid jinxing another presentation (I also admit to be a bit biased in those days based on marketing deja-moo from a Pluribus sales guy I’d been exposed to during a customer engagement).
Pluribus NFD16 presentations were better; here’s what I got from them:
Read more ...One Week to IPv6, Routing Security, and More at ION Belgrade
One week from today, we’ll be at ION Belgrade! Our last event of the year take place on Thursday, 23 November 2017, alongside the 3rd Republic of Serbia Network Operators’ Group (RSNOG).
As always, ION Conferences bring network engineers and leading industry experts together to discuss emerging technologies and hot technology topics. Early adopters provide valuable insight into their own deployment experiences and bring participants up to speed on new standards emerging from the IETF.
Agenda
The half-day agenda and all our great speakers for ION Belgrade will make this a great event. Here’s a quick look at the day:
- Opening Remarks
- Welcome from the ISOC Serbia Chapter
- MANRS, Routing Security, and Collaboration
- NAT64check
- What’s Happening at the IETF? Internet Standards and How to Get Involved
- Panel Discussion: IPv6 Success Stories
- Closing Remarks
Registration
ION Belgrade registration is open! Learn more about our co-host on the RSNOG main page.
Webcast
RSNOG will be live streaming the ION in the morning and RSNOG in the afternoon. The stream will be embedded on the conference main page, right above the agenda, here (Serbian) and here (English).
IPv6 Tutorial
Jordi Palet Martinez will conduct an IPv6 training session the day before the ION. Continue reading