Preview: Linux Containers on Windows

Microsoft is getting ready for the next big update for Windows Server (check out today’s complimentary Microsoft blog post) and some of the new features are very exciting for Docker users. One of the most important enhancements is that Docker can now run Linux containers on Windows, using Hyper-V technology.

Running Docker Linux containers on Windows requires a minimal Linux kernel and userland to host the container processes. This is exactly what the LinuxKit toolkit was designed for: creating secure, lean and portable Linux subsystems that can provide Linux container functionality as a component of a container platform.

We’ve been busy prototyping LinuxKit support for Docker Linux containers on Windows and have a working preview for you to try. This is still a work in progress, and requires either the recently announced  “Windows Server Insider” or Windows 10 Insider builds.

 

Running Docker Linux Containers on Windows with LinuxKit

The instructions below have been tested on Windows 10 and Windows Server Insider builds 16278 and 16281.

Be sure to install Docker for Windows (Windows 10) or Docker Enterprise Edition (Windows Server Insider) before starting.

Setup Docker and LinuxKit

A preview build of  LinuxKit is available by simply running Continue reading

Custom Server Makers Set The Datacenter Pace

Makers of tightly coupled, shared memory machines can make all of the arguments they want about how it is much more efficient and easier to program these NUMA machines than it is to do distributed computing across a cluster of more loosely coupled boxes, but for the most part, the IT market doesn’t care.

Distributed computing, in its more modern implementation of frameworks running on virtual machines or containers – or both – is by far the norm, both in the datacenter and on the public clouds. You don’t have to look any further than the latest server sales statistics

Custom Server Makers Set The Datacenter Pace was written by Timothy Prickett Morgan at The Next Platform.

Worth Reading: Global content removals

From the Internet’s earliest days, the tension between a global communication network and local geography-based laws has been obvious. One scenario is that every jurisdiction’s local laws apply to the Internet globally, meaning that the country (or sub-national regulator) with the most restrictive law for any content category sets the global standard for that content. If this scenario comes to pass, the Internet will only contain content that is legal in every jurisdiction in the world — a small fraction of the content we as Americans might enjoy, because many countries restrict content that is clearly legal in the U.S. —Eric Goldman @ CircleID

The post Worth Reading: Global content removals appeared first on rule 11 reader.

History Of Networking – Daniel Walton – BGP Churn And Add-Paths

Daniel Walton joins Network Collective for a second time to discuss the problem of churn in BGP routing tables, the steps taken to solve this problem, and the addition of add-path to the BGP protocol.

Links, FYI:

RFC 7911: Advertisement of Multiple Paths in BGP

RFC 3345: (Informational) Border Gateway Protocol (BGP) Persistent Route Oscillation Condition

Daniel Walton’s Presentation from NANOG 21 on BGP Churn

Daniel Walton
Guest
Russ White
Host
Donald Sharp
Host
Eyvonne Sharp
Host

Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/

The post History Of Networking – Daniel Walton – BGP Churn And Add-Paths appeared first on Network Collective.

History Of Networking – Daniel Walton – BGP Churn And Add-Paths

Daniel Walton joins Network Collective for a second time to discuss the problem of churn in BGP routing tables, the steps taken to solve this problem, and the addition of add-path to the BGP protocol.

Links, FYI:

RFC 7911: Advertisement of Multiple Paths in BGP

RFC 3345: (Informational) Border Gateway Protocol (BGP) Persistent Route Oscillation Condition

Daniel Walton’s Presentation from NANOG 21 on BGP Churn

Daniel Walton
Guest
Russ White
Host
Donald Sharp
Host
Eyvonne Sharp
Host

Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/

The post History Of Networking – Daniel Walton – BGP Churn And Add-Paths appeared first on Network Collective.

Extreme leverages Avaya Networking to automate network management campus-wide

It’s been about two months since Extreme Networks closed on the acquisition of Avaya Networking. As I pointed out, Extreme’s first partial quarter post close was a smashing success, which indicates the company is headed in the right direction. But now the real work begins.In the two months since the close, the company has been extremely busy (pun intended) doing a bunch of things to integrate the companies, such as onboarding workers, bringing systems together and holding a unified sales conference. These things are obviously interesting and important, but the question on most customers’ minds is how long before there is integration at a product level?To read this article in full or to leave a comment, please click here

Extreme leverages Avaya Networking to automate network management campus-wide

It’s been about two months since Extreme Networks closed on the acquisition of Avaya Networking. As I pointed out, Extreme’s first partial quarter post close was a smashing success, which indicates the company is headed in the right direction. But now the real work begins.In the two months since the close, the company has been extremely busy (pun intended) doing a bunch of things to integrate the companies, such as onboarding workers, bringing systems together and holding a unified sales conference. These things are obviously interesting and important, but the question on most customers’ minds is how long before there is integration at a product level?To read this article in full or to leave a comment, please click here

Join Global Celebrations to Inspire the World

The Internet Society’s story has been 25 years in the making.

The foundation for a global community of people dedicated to bringing the Internet to everyone started in 1992. We have come a long way since then, and today our mission has never been more important or challenging.

This milestone year presents a unique opportunity for us all to reflect on our rich heritage, and to consider how we can impact the Internet for the next 25 years. Our community has a critical role in guiding the decisions that must now be taken for the future Internet in today’s rapidly changing world.

This September, to commemorate the Internet Society’s 25th anniversary, we’d like you to join in a series of global celebrations to inspire the world to take action in shaping tomorrow and in ensuring that the Internet remains a positive force for future generations. We will honor innovators and visionaries who advanced the early Internet at our 2017 Internet Hall of Fame ceremony. We will also recognize 25 under 25 next generation leaders who are using the Internet to make a difference for their communities and beyond.

After 18 months of research, we will launch The 2017 Internet Society Continue reading

Comcast Business’ Kevin O’Toole on SD-WAN’s Transformational Promise

SD-WAN Transformational Promise Comcast Business recently launched an SD-WAN offering for distributed enterprises based on its new, virtualized ActiveCoresm platform, which leverages the agility of software-defined networking to enable better application performance, centralized network policy management and more effective cost controls. Comcast is the first cable company to introduce a carrier-grade, SD-WAN offering for multisite businesses, and is... Read more →

Amazon Discounts Fire 7 by $15, Fire HD 8 by $25 For Prime Members – Deal Alert

Amazon's best-selling tablets feature vibrant displays, generous battery life, Alexa, parental controls, and everything you need to surf, check email, watch Netflix, read books, and more. If you're a Prime member, you can get get the Fire 7 for as low as $34.99 after a $15 discount, or the Fire HD 8 for as low as $54.99 after a $25 discount. If you're looking for a tablet that won't drain your bank account these are solid considerations especially at these discounted prices. To read this article in full or to leave a comment, please click here

What does P router mean in MPLS ?

What does P router mean in MPLS ? It is used in MPLS VPN networks mostly but can be used with any MPLS application, use case.     This is very important node in MPLS, and crucial to understand MPLS.   MPLS is one of the most commonly used encapsulation mechanism in Service Provider networks […]

The post What does P router mean in MPLS ? appeared first on Cisco Network Design and Architecture | CCDE Bootcamp | orhanergun.net.

Docker Enterprise Edition for Linux on IBM Z (yes, mainframe!)

Recently we released a new version of Docker Enterprise Edition featuring expansion of the multi-architecture capabilities from Linux to Windows Server and now the IBM Z mainframe platform. Enterprise IT architecture is complex and diverse and include workloads across different server hardware types and operating systems.

Docker on IBMzDocker and IBM have partnered together to deliver the support for Red Hat Enterprise Linux, Ubuntu and SUSE Linux Enterprise Server for IBM Z (x390x) systems as certified infrastructure for Docker Enterprise Edition. This first release features support for the the IBM Z product family.

Why bring Docker containers and mainframe systems together? Enterprises across industries like financial services, government, manufacturing and more use mainframe systems for many high throughput applications. Many organizations recognize that these applications are at the core of their systems but rewriting and refactoring them for a different platform is expensive and time-consuming. By wrapping them in a container, organizations can make these applications easier to maintain and update while bringing them into the same software supply chain as other x86 applications

Multi-Architecture Support for Mainframe Systems

Docker Enterprise Edition allows for the same orchestration, security model, supply chain and integrated management that can be applied across a broader range Continue reading

IDG Contributor Network: The power of machine learning reaches data management

Machine learning is a hot topic across the technology spectrum today. From self-driving cars, to catching nefarious content in the fight against terrorism, to apps that automatically retouch photos before you even take them, it is popping up just about everywhere. Each innovation is creating a new wave of business opportunity while simplifying and automating tasks that are generally beyond the reach of how much data we human beings can process at once, or even in a lifetime.To read this article in full or to leave a comment, please click here

IDG Contributor Network: The power of machine learning reaches data management

Machine learning is a hot topic across the technology spectrum today. From self-driving cars, to catching nefarious content in the fight against terrorism, to apps that automatically retouch photos before you even take them, it is popping up just about everywhere. Each innovation is creating a new wave of business opportunity while simplifying and automating tasks that are generally beyond the reach of how much data we human beings can process at once, or even in a lifetime.To read this article in full or to leave a comment, please click here

Route-based IPsec VPN on Linux with strongSwan

A common way to establish an IPsec tunnel on Linux is to use an IKE daemon, like the one from the strongSwan project, with a minimal configuration1:

conn V2-1
  left        = 2001:db8:1::1
  leftsubnet  = 2001:db8:a1::/64
  right       = 2001:db8:2::1
  rightsubnet = 2001:db8:a2::/64
  authby      = psk
  auto        = start

The same configuration can be used on both sides. Each side will figure out if it is “left” or “right”. The IPsec site-to-site tunnel endpoints are 2001:db8:­1::1 and 2001:db8:­2::1. The protected subnets are 2001:db8:­a1::/64 and 2001:db8:­a2::/64. As a result, strongSwan configures the following policies in the kernel:

$ ip xfrm policy
src 2001:db8:a1::/64 dst 2001:db8:a2::/64
        dir out priority 399999 ptype main
        tmpl src 2001:db8:1::1 dst 2001:db8:2::1
                proto esp reqid 4 mode tunnel
src 2001:db8:a2::/64 dst 2001:db8:a1::/64
        dir fwd priority 399999 ptype main
        tmpl src 2001:db8:2::1 dst 2001:db8:1::1
                proto esp reqid 4 mode tunnel
src 2001:db8:a2::/64 dst 2001:db8:a1::/64
        dir in priority 399999 ptype main
        tmpl src 2001:db8:2::1 dst 2001:db8:1::1
                proto esp reqid 4 mode tunnel
[…]

This kind of IPsec tunnel is a policy-based VPN: encapsulation and decapsulation are governed by these policies. Each of them contains the following elements:

1 1,899 1,900 1,901 1,902 1,903 3,835