MACSec – Media Access Control Security

How Does Internet Work - We know what is networking

Media Access Control Security or MACSec is the Layer 2 hop to hop network traffic protection. Just like IPsec protects network layer, and SSL protects application data, MACSec protects traffic at data link layer (Layer 2). MACSec is standardized IEEE 802.1AE hop-by-hop encryption that enables confidentiality and integrity of data at layer 2. It encrypts entire Ethernet packet except Source and Destination MAC addresses on any device-to-device, switch-to-switch, router-to-switch, host-to-switch directly connected wired L2 connection. If we compare MACSec with, for example IPsec, MACsec provides same security but on layer 2 for each hop separately. On each hop, packets are

MACSec – Media Access Control Security

iBGP Full meshed solution: BGP Route Reflectors

Today I am going to talk about the BGP route reflectors. The concept of BGP route reflectors resolves the expensive iBGP full meshed topology or you can say BGP route reflector are another solution for the explosion of iBGP peering within the AS. We earlier talk about the solution named as BGP confederation which also resolves the expensive iBGP full meshed network.

So lets start with the bgp Route reflector scenario where I let you know about the configuration done on the routers. As per the scenario showed in the below mentioned one router will act as route reflector and other two routers will be act as route reflector clients.

Below is the topology which has no relevance with any of the live or the enterprise network. The topology shown here is for the demo purposes.

Fig 1.1- BGP route reflectors

Without a route reflector, the network shown in above mentioned topology would require a full IBGP mesh (that is, Router A would have to be a peer of Router B). If Router C is configured as a route reflector, IBGP peering between Routers A and B is not required because Router C will reflect updates from Router A Continue reading

How to buy intent-based networking today

Cisco made a big splash earlier this year when it revealed its vision for the future of networking: An intent-based networking system that allows users to specify what they want the network to do and management software that automatically orchestrates it.Since Cisco’s announcement, intent-based networking (IBN) has caught the networking industry’s attention and has seemingly become the buzzword-du-jour. Some see it as a logical evolution of advanced network automation. Others believe it’s a fundamental shift in how enterprises use machine learning to autonomously manage networks. Meanwhile, all types of vendors, from stalwarts of the industry to myriad startups are jumping on to the IBN bandwagon.To read this article in full or to leave a comment, please click here

How to buy intent-based networking today

Cisco made a big splash earlier this year when it revealed its vision for the future of networking: An intent-based networking system that allows users to specify what they want the network to do and management software that automatically orchestrates it.Since Cisco’s announcement, intent-based networking (IBN) has caught the networking industry’s attention and has seemingly become the buzzword-du-jour. Some see it as a logical evolution of advanced network automation. Others believe it’s a fundamental shift in how enterprises use machine learning to autonomously manage networks. Meanwhile, all types of vendors, from stalwarts of the industry to myriad startups are jumping on to the IBN bandwagon.To read this article in full or to leave a comment, please click here

How to buy intent based networking today

Cisco made a big splash earlier this year when it revealed its vision for the future of networking: An intent-based networking system that allows users to specify what they want the network to do and management software that automatically orchestrates it.Since Cisco’s announcement, intent-based networking (IBN) has caught the networking industry’s attention and has seemingly become the buzzword-du-jour. Some see it as a logical evolution of advanced network automation. Others believe it’s a fundamental shift in how enterprises use machine learning to autonomously manage networks. Meanwhile, all types of vendors, from stalwarts of the industry to myriad startups are jumping on to the IBN bandwagon.To read this article in full or to leave a comment, please click here

Backing up configs with the Ansible NCLU module

With the release of Ansible 2.3 the Cumulus Linux NCLU module is now part of Ansible core. This means when you `apt-get install ansible`, you get the NCLU module pre-installed! This blog post will focus on using the NCLU module to backup and restore configs on Cumulus Linux. To read more about the NCLU module from its creator, Barry Peddycord, click here.

The consulting team uses Ansible very frequently when helping customers fully automate their data centers. A lot of our playbooks use the Ansible template module because it is very efficient and idempotent, and Cumulus Linux has been built with very robust reload capabilities for both networking and Quagga/FRR. This reload capability allows the box to perform a diff on either `etc/network/interfaces` or `etc/quagga/Quagga.conf` so when a flat-file is overridden with the template module, only the “diff” (or difference) is applied. This means if swp1-10 were already working and we added configuration for swp11-20, an ifreload will only add the additional config and be non-disruptive for swp1-10. This reload capability is imperative to data centers and our customers couldn’t live without it.

However, many customers also want to build configs with NCLU (or the net commands) when Continue reading

Using IoT to keep Mt. Washington hikers safe, predict weather

Weather on Mount Washington in New Hampshire can be biblical. On one occasion, I started an early-morning April ascent with fresh snow at the base. Mid-day we stripped to our base layer of clothing when the bright sun warmed the temperature to 60°F. At the peak elevation of 6,288 feet, dark clouds closed in, the temperature dropped and the wind picked up. We ran for cover from lightning that had a very short distance to travel between the low clouds and the high peak to travel.After hiking the mountain a half-dozen times, in all seasons and all conditions, it’s interesting to learn how the Mount Washington Weather Observatory on the peak uses IoT to update weather conditions on this frequent hiker destination.To read this article in full or to leave a comment, please click here

Worth Reading: The calculus of service availability

The vast majority of software services and systems should aim for almost-perfect reliability rather than perfect reliability—that is, 99.999% or 99.99% rather than 100%—because users cannot tell the difference between a service being 100% available and less than “perfectly” available. There are many other systems in the path between user and service (laptop, home WiFi, ISP, the power grid . . .), and those systems collectively are far less than 100% available. Thus, the marginal difference between 99.99% and 100% gets lost in the noise of other unavailability, and the user receives no benefit from the enormous effort required to add that last fractional percent of availability. Notable exceptions to this rule include antilock brake control systems and pacemakers! —Ben Treynor, Mike Dahlin, Vivek Rau, Betsy Beyer @The Communications of the ACM

The post Worth Reading: The calculus of service availability appeared first on rule 11 reader.

Introducing VMware Skyline™

VMware Skyline™: an innovative support technology, developed entirely by VMware Engineering, that provides VMware technical support engineers with extreme visibility into your (customer’s) environment.

Customers with active support subscriptions install the VMware Skyline Collector, a standalone appliance that automatically and securely collects product usage data such as configuration, feature, and performance data.

It then listens for changes, events and patterns and analyzes the information using a robust rules and machine learning engine. The rules engine is where an ever-growing library of support intelligence, product knowledge, and logic is stored to analyze inbound streams of product information. Check out the video and the blog to learn more!

The post Introducing VMware Skyline™ appeared first on Network Virtualization.

IDG Contributor Network: 6 things IT executives must do to accelerate IoT adoption

Are you ready for the Internet of Things (IoT)? Despite its transformational potential, most organizations are not. In an era of rapid disruption and digital transformation, IT executives and managers must lead the charge. You must bridge the gap between technology, business, engineering and operations. You must be evangelists, teachers, facilitators and innovators. To succeed, I’ve listed six things you must do to accelerate IoT adoption within your organization.Increase your organization’s IoT IQ Start the journey by increasing awareness, knowledge and conversations around IoT throughout the organization. This can be done in several ways:To read this article in full or to leave a comment, please click here

IDG Contributor Network: 6 things IT executives must do to accelerate IoT adoption

Are you ready for the Internet of Things (IoT)? Despite its transformational potential, most organizations are not. In an era of rapid disruption and digital transformation, IT executives and managers must lead the charge. You must bridge the gap between technology, business, engineering and operations. You must be evangelists, teachers, facilitators and innovators. To succeed, I’ve listed six things you must do to accelerate IoT adoption within your organization.Increase your organization’s IoT IQ Start the journey by increasing awareness, knowledge and conversations around IoT throughout the organization. This can be done in several ways:To read this article in full or to leave a comment, please click here

1 1,923 1,924 1,925 1,926 1,927 3,843