0

Time Synchronization, Security, and Trust

0

Worth Reading: Updating Surveillance Laws

For decades, Americans have forfeited their privacy rights for a false sense of safety. Broad, sweeping surveillance laws––such as, but certainly not limited to Section 702 of the FISA Amendments Act––have given the federal government carte blanche in the realm of surveillance. Thankfully, a recently introduced bipartisan Senate bill would restore some vital protections to Americans’ privacy. —Dan King @The Federalist

The post Worth Reading: Updating Surveillance Laws appeared first on rule 11 reader.

0

Docker in Higher Education: Announcing Tools & Resources for Teachers

At the beginning of the summer we published a blog post announcing the Docker Student Developer Kit and Campus Ambassador program. The positive reception from students has been overwhelming and we were so excited to see hundreds of applications flood in!

Many teachers took notice of the enthusiasm of their students and began to reach out, asking us for tools, resources and support in using Docker in the classroom and adding Docker to their curriculum. To this end we have put together a free package for teachers!

Making use of this offer will enable teachers to effectively use and teach Docker in the classroom as we will be able to provide:

1. Free Tools: eliminating the need for students to install anything locally, thus saving you valuable class time
2. Resources: the most up to date presentations, hands-on labs, workshops etc. on every topic for every skill level
3. Support and recognition: you will have a dedicated contact at Docker to help you through the process and also be welcomed into the online Docker Teachers community where you can collaborate and learn from other educators

If you are a teacher at a higher-education institution who would like to unlock the benefits outlined Continue reading

0

Today’s Best Practices for Protecting the Distributed Network

Sophisticated threats and distributed networks require cross-referencing data.

0

Juniper to buy advanced threat protection security startup Cyphort

Juniper today announced intentions to acquire Cyphort, a Santa Clara-based startup that offers an advanced threat detection, analytics and mitigation platform. Juniper says it will integrate Cyphort’s technology with its Sky Advanced Threat Protection (ATP) product line.+MORE AT NETWORK WORLD: DEEP-DIVE REVIEW: How Cyphort makes advanced threat protection easier than ever +Cyphort’s software platform detects advanced threats, evasion techniques and zero-day vulnerabilities using a combination of behavioral analytics, machine-learning and long-data security analysis, the company says. The platform can work across virtual infrastructure, cloud environments and edge devices. In addition to identifying threats, Cyphort creates real-time timelines of incidents and can integrate with network tools to update security postures.To read this article in full or to leave a comment, please click here

0

Juniper to buy advanced threat protection security startup Cyphort

Juniper today announced intentions to acquire Cyphort, a Santa Clara-based startup that offers an advanced threat detection, analytics and mitigation platform. Juniper says it will integrate Cyphort’s technology with its Sky Advanced Threat Protection (ATP) product line.+MORE AT NETWORK WORLD: DEEP-DIVE REVIEW: How Cyphort makes advanced threat protection easier than ever +Cyphort’s software platform detects advanced threats, evasion techniques and zero-day vulnerabilities using a combination of behavioral analytics, machine-learning and long-data security analysis, the company says. The platform can work across virtual infrastructure, cloud environments and edge devices. In addition to identifying threats, Cyphort creates real-time timelines of incidents and can integrate with network tools to update security postures.To read this article in full or to leave a comment, please click here

0

Juniper to buy advanced threat protection security startup Cyphort

Juniper today announced intentions to acquire Cyphort, a Santa Clara-based startup that offers an advanced threat detection, analytics and mitigation platform. Juniper says it will integrate Cyphort’s technology with its Sky Advanced Threat Protection (ATP) product line.+MORE AT NETWORK WORLD: DEEP-DIVE REVIEW: How Cyphort makes advanced threat protection easier than ever +Cyphort’s software platform detects advanced threats, evasion techniques and zero-day vulnerabilities using a combination of behavioral analytics, machine-learning and long-data security analysis, the company says. The platform can work across virtual infrastructure, cloud environments and edge devices. In addition to identifying threats, Cyphort creates real-time timelines of incidents and can integrate with network tools to update security postures.To read this article in full or to leave a comment, please click here

0

The Huge Premium Intel Is Charging For Skylake Xeons

There is no question that Intel has reached its peak in the datacenter when it comes to compute. For years now, it has had very little direct competition and only some indirect competition for the few remaining RISC upstarts and the threat of the newbies with their ARM architectures.

The question now, as we ponder the “Skylake” Xeon SP processors and their “Purley” platform that launched in July, is this: Is Intel at a local maximum, with another peak off in the distance, perhaps after a decline or perhaps after steady growth or a flat spot, or is this the …

The Huge Premium Intel Is Charging For Skylake Xeons was written by Timothy Prickett Morgan at The Next Platform.

0

IDG Contributor Network: Why smart cities are crucial for autonomous cars

Autonomous cars are changing the way consumer drivers and auto manufacturers alike view transportation, with bold new players like Tesla joining long-standing industry giants like BMW in their quest for a truly independent car. More so than almost anything else, smart cities and their continued development are shaping the way these autonomous cars are designed, manufactured and used around our urban environments.So how exactly are smart cities reshaping the way developers approach building truly autonomous vehicles capable of guiding themselves? What does the future of the smart cities movement hold for autonomous cars, and vice versa? A quick look at these 21st Century innovations shows just how intertwined their fates are.To read this article in full or to leave a comment, please click here

0

Video: Building Data Center Fabrics with SPB

There are two reasonable ways of building a layer-2 leaf-and-spine fabric: use VXLAN (the direction almost everyone in the industry is taking at the moment), or routing-on-layer-2 technology like TRILL or SPB.

Read more ...

0

All Of Ethan’s Podcasts And Articles For August 2017

Here’s a catalog of all the media I produced (or helped produce) in August 2017.

Packet Pushers Weekly Podcast

• Episode 350: The Future Of Visibility And Analytics
• Episode 351: Design & Build 13: Network Orchestration With Salt
• Episode 352: Cloud & Network Insights With Nokia Deepfield (Sponsored)
• Episode 353: The Business Impact Of Network Automation

Packet Pushers Priority Queue Podcast

• Episode 124: Cloud SBC Security & Analytics With Sonus Networks (Sponsored)

Datanauts Podcast

• Episode 95: Exploring Azure IaaS with Jennelle Crothers
• Episode 96: The Fuss About IoT
• Episode 97: Unpacking Azure Stack For Hybrid Clouds
• Episode 98: The Changing Face Of Application Acceleration
• Episode 99: Understanding Microservices

Packet Pushers Articles

• Understanding HPE Nimble Storage’s Cloud Volumes
• Nirmata’s Cloudy Control Plane Is The Catalyst For Container Calm
• Accelerite’s Rovius Readies Your Hybrid Cloud
• Ask The Datanauts Anything For Their 100th Episode!
• 6WIND Offers Replacement Program For Dead Brocade vRouter

EthanCBanks.com

• Beware N1Wireless.com – Bait And Switch

NetIntro Book

• In August, I finished my contributions to this book. I ended up with roughly 6 (or 7?) chapters out of 30 or so. That’s a little awkward for me as I would have hoped to have done a more or Continue reading

0

All Of Ethan’s Podcasts And Articles For August 2017

Here’s a catalog of all the media I produced (or helped produce) in August 2017.

Packet Pushers Weekly Podcast

• Episode 350: The Future Of Visibility And Analytics
• Episode 351: Design & Build 13: Network Orchestration With Salt
• Episode 352: Cloud & Network Insights With Nokia Deepfield (Sponsored)
• Episode 353: The Business Impact Of Network Automation

Packet Pushers Priority Queue Podcast

• Episode 124: Cloud SBC Security & Analytics With Sonus Networks (Sponsored)

Datanauts Podcast

• Episode 95: Exploring Azure IaaS with Jennelle Crothers
• Episode 96: The Fuss About IoT
• Episode 97: Unpacking Azure Stack For Hybrid Clouds
• Episode 98: The Changing Face Of Application Acceleration
• Episode 99: Understanding Microservices

Packet Pushers Articles

• Understanding HPE Nimble Storage’s Cloud Volumes
• Nirmata’s Cloudy Control Plane Is The Catalyst For Container Calm
• Accelerite’s Rovius Readies Your Hybrid Cloud
• Ask The Datanauts Anything For Their 100th Episode!
• 6WIND Offers Replacement Program For Dead Brocade vRouter

EthanCBanks.com

• Beware N1Wireless.com – Bait And Switch

NetIntro Book

• In August, I finished my contributions to this book. I ended up with roughly 6 (or 7?) chapters out of 30 or so. That’s a little awkward for me as I would have hoped to have done a more or Continue reading

0

One way to help Hurricane Harvey victims

Photo Credit: Texas Military Department (Flickr)

Hurricane Harvey hit Texas last Friday as a Category 4 storm. Although Harvey's category was quickly downgraded, the storm lingered around for days, bringing 50 inches of rain to the greater Houston area.

As someone who was born in Houston, it's hard to see my former city hit with such destruction, and to know that many of my friends and fellow Houstonians are in need of help and assistance. Many families have had their entire house flooded out by the storm. Displaced residents are in a state of stagnation and are seeing their supplies diminishing by the day.

The Hurricane Relief app will allow visitors to your site to donate to one of the charities helping those impacted in Houston:

The Hurricane Relief App takes two clicks to install and requires no code change. The charities listed are recommended by NPR.

Install Now

If you wanted to add your own custom list of charities for disaster relief or other causes, feel free to fork the source of this app and make your own.

0

IDG Contributor Network: SD-WAN Simplified!

This blog post is going a bit outside my usual “make sense to the C-Level” slant. I wanted to get in the weeds about reviewing SD-WAN products. We all know that’s where the fun really is!I have been doing a bit of evaluation on SD-WAN products and their configurations from the network engineer’s perspective. I have looked at numerous vendors’ products, poured over install guides, and dusted off the CLI.Everyone who knows me can tell you I am a Cisco fanatic. Hands down, I would rather implement a Cisco technology rather than any other vendor by a 1000:1 ratio. I have spent a majority of my career as a network engineer, and the best network devices to configure and troubleshoot have been Cisco.To read this article in full or to leave a comment, please click here

0

IDG Contributor Network: SD-WAN Simplified!

This blog post is going a bit outside my usual “make sense to the C-Level” slant. I wanted to get in the weeds about reviewing SD-WAN products. We all know that’s where the fun really is!I have been doing a bit of evaluation on SD-WAN products and their configurations from the network engineer’s perspective. I have looked at numerous vendors’ products, poured over install guides, and dusted off the CLI.Everyone who knows me can tell you I am a Cisco fanatic. Hands down, I would rather implement a Cisco technology rather than any other vendor by a 1000:1 ratio. I have spent a majority of my career as a network engineer, and the best network devices to configure and troubleshoot have been Cisco.To read this article in full or to leave a comment, please click here

0

SD-WAN Simplified!

This blog post is going a bit outside my usual “make sense to the C-Level” slant. I wanted to get in the weeds about reviewing SD-WAN products. We all know that’s where the fun really is!I have been doing a bit of evaluation on SD-WAN products and their configurations from the network engineer’s perspective. I have looked at numerous vendors’ products, poured over install guides, and dusted off the CLI.To read this article in full or to leave a comment, please click here

0

SD-WAN Simplified!

This blog post is going a bit outside my usual “make sense to the C-Level” slant. I wanted to get in the weeds about reviewing SD-WAN products. We all know that’s where the fun really is!I have been doing a bit of evaluation on SD-WAN products and their configurations from the network engineer’s perspective. I have looked at numerous vendors’ products, poured over install guides, and dusted off the CLI.To read this article in full or to leave a comment, please click here

0

Juniper Networks Acquires Security Firm Cyphort

Cyphort’s CEO is a Juniper alum.

0

What’s New in Docker Enterprise Edition Webinar Recap

The latest release of Docker Enterprise Edition (EE) allows organizations to modernize Windows, Linux, and Linux-on-mainframe applications—all with minimal disruption. The release also allows organizations to run containers at scale with advanced capabilities around secure multi-tenancy and policy-based automation.

In last week’s webinar, we walked through the key new features of this release and saw a demo of Docker EE in action. If you missed the webinar, you can watch it here:

Here are the top questions from the webinar:

Q: Can you provide more information about Windows support? Which version of Windows? Is this only available with Docker Enterprise Edition?

A: You can run Windows Docker containers either with Docker Community Edition for Windows (PC) which supports Windows 10 or Docker Enterprise Edition for Windows Server 2016 (including Nano Server). Docker EE Basic is included with the Windows Server 2016 license, and you also have the option to upgrade to EE Standard or EE Advanced for Windows Server 2016 to get complete lifecycle management capabilities, Docker Trusted Registry, and advanced security features like image signing and scanning.

Q: Is it possible to deploy the Windows containers on top of a native Linux host?

A: As a form of packaging Continue reading

0

Using FQDN for DMVPN hubs

I've done some testing with specifying DMVPN hubs (NHRP servers, really) using their DNS name, rather than IP address.

This matters to me because of some goofy environments where spoke routers can't predict what network they'll be on (possibly something other than internet), and where I can't leverage multiple hubs per tunnel due to a control plane scaling issue.

The DNS-based configuration includes the following:

 interface Tunnel1  
  ip nhrp nhs dynamic nbma dmvpn-pool.fragmentationneeded.net  

There's no longer a requirement for any ip nhrp map or ip nhrp nhs x.x.x.x configuration when using this new capability.

My testing included some tunnels with very short ISAKMP and IPSec re-key intervals. I found that the routers performed the DNS resolution just once. They didn't go back to DNS again for as long as the hub was reachable.

Spoke routers which failed to establish a secure connection for whatever reason would re-resolve the hub address each time the DNS response expired its TTL. But once they succeeded in connecting, I observed no further DNS traffic for as long as the tunnel survived.

The record I published (dmvpn-pool.fragmentationneeded.net above) includes multiple A records. The DNS server randomizes the record Continue reading