Arista enables visibility at cloud speed

You can’t manage what you can’t see. That phrase that has been used over and over again with network managers as they look to get a better handle on the goings on in their networks. The problem is pervasive visibility is hard. Collecting information from multiple systems, rolling it up into an aggregated view and then trying to do some kind of manual machine learning on it is next to impossible. I suppose if Mr. Spock were running the network, things might be OK. But the last time I checked, the U.S. wasn’t accepting H1-Bs from Vulcan, so humans will have to do. + Also on Network World: Cloud monitoring: Users review 5 top tools + The need for visibility has created a rising tide in the network packet broker market, and most of these do a fine job in the enterprise space, but the RISC-based processers that some of them use do not operate at cloud speeds when there are multiple 100 Gig-E connections that need to be tapped. I want to be clear that I’m making distinction between an enterprise monitoring cloud traffic and an actual cloud provider monitoring its internal traffic. The latter is Continue reading

Arista enables visibility at cloud speed

You can’t manage what you can’t see. That phrase that has been used over and over again with network managers as they look to get a better handle on the goings on in their networks. The problem is pervasive visibility is hard. Collecting information from multiple systems, rolling it up into an aggregated view and then trying to do some kind of manual machine learning on it is next to impossible. I suppose if Mr. Spock were running the network, things might be OK. But the last time I checked, the U.S. wasn’t accepting H1-Bs from Vulcan, so humans will have to do. + Also on Network World: Cloud monitoring: Users review 5 top tools + The need for visibility has created a rising tide in the network packet broker market, and most of these do a fine job in the enterprise space, but the RISC-based processers that some of them use do not operate at cloud speeds when there are multiple 100 Gig-E connections that need to be tapped. I want to be clear that I’m making distinction between an enterprise monitoring cloud traffic and an actual cloud provider monitoring its internal traffic. The latter is Continue reading

IBM Watson wants to do your tax returns

If anyone can make sense of the over 74,000 pages of the US tax code, IBM’s Watson can. Or at least that’s the plan as Big Blue has teamed up its Watson cognitive supercomputer with the tax return specialists at H&R Block to help customers with tax filing options.As part of the first phase of the collaboration, H&R Block and IBM development teams trained tax language Watson, first applying the technology to the myriad questions and topics discussed during the return filing process.The service uses cloud-based Watson services to understand context, interpret intent and draw connections between clients’ statements and relevant areas of their return, the companies said.To read this article in full or to leave a comment, please click here

IBM Watson wants to do your tax returns

If anyone can make sense of the over 74,000 pages of the US tax code, IBM’s Watson can. Or at least that’s the plan as Big Blue has teamed up its Watson cognitive supercomputer with the tax return specialists at H&R Block to help customers with tax filing options.As part of the first phase of the collaboration, H&R Block and IBM development teams trained tax language Watson, first applying the technology to the myriad questions and topics discussed during the return filing process.The service uses cloud-based Watson services to understand context, interpret intent and draw connections between clients’ statements and relevant areas of their return, the companies said.To read this article in full or to leave a comment, please click here

Fighting ire with hire: Tech firms say immigration boosts employment

U.S. President Donald Trump is seeking to channel populist anger to stem immigration, but tech companies want him to know that hiring immigrants is necessary for the country's economy and boosts overall employment.Apple, Facebook, Microsoft, Amazon and Alphabet are said to be writing Trump a letter expressing their concern about the order on immigration he signed last Friday, and other changes to immigration policy he may plan.The letter, a draft of which has been published by a number of media outlets, including Recode.net, highlights the companies' dependence on immigrants for their success, and warns that the new policy could affect many visa holders already contributing to the U.S. economy.To read this article in full or to leave a comment, please click here

Orchestrating HPC Engineering in the Cloud

Public clouds have proven useful to a growing number of organizations looking for ways to run their high-performance computing applications to scale without having to limit themselves to whatever computing capabilities they have in-house or to spending a lot of money to build up their infrastructure to meeting their growing needs.

The big three – Amazon Web Services, Microsoft Azure and Google Cloud – have rolled out a broad array of compute, networking and storage technologies that companies can leverage when their HPC workloads scale to the point that they can no longer be run on their in-house workstations or …

Orchestrating HPC Engineering in the Cloud was written by Nicole Hemsoth at The Next Platform.

ENISA online training material updated and extended — ENISA

Free Training materials on IT Security incident and breach response. Looks quite good.

The new training material provides a step-by-step guide on how to address and respond to incidents, as an incident handler and investigator, teaching best practices and covering both sides of the breach. The material is technical and aims to provide a guided training both to incident handlers and investigators, while providing lifelike conditions. The training material mainly uses open source and free tools.

ENISA online training material updated and extended — ENISA : https://www.enisa.europa.eu/news/enisa-news/enisa-online-training-material-updated-and-extended

The post ENISA online training material updated and extended — ENISA appeared first on EtherealMind.

Why 2017 will be the worst year ever for security

Sony. Anthem. The Office of Personnel Management. Target. Yahoo. The past two years have seen one mega-breach after another—and 2017 promises to be the most catastrophic year yet.Security experts have long warned that most organizations don’t even know they’ve been breached. Attackers rely on stealth to learn about the network, find valuable information and systems, and steal what they want. Only recently have organizations improved their detection efforts and started investing the time, capital, and people needed to uncover vulnerabilities. When they do, the results are often alarming.[ 18 surprising tips for security pros. | Discover how to secure your systems with InfoWorld's Security Report newsletter. ] “I think we are going to find more, not less, breaches in 2017,” says Ray Rothrock, CEO of RedSeal, a security analytics firm.To read this article in full or to leave a comment, please click here

Introducing VMware NSX for vSphere 6.3 & VMware NSX-T 1.1 

This past week at VMware has been quite exciting! Pat Gelsinger, VMware CEO, reported on the Q4 2016 earnings call that VMware NSX has more than 2,400 customers exiting 2016. Today, we continue that momentum by announcing new releases of our two different VMware NSX platforms – VMware NSX™ for vSphere® 6.3 and VMware NSX-T 1.1.

These releases continue to accelerate digital transformation for organizations through the most critical IT use cases – Security, Automation, and Application Continuity – while expanding support for new application frameworks and architectures.

As more and more customers adopt NSX for vSphere, we continue to add features to make it easier for you to deploy, operate and scale-out your environment. NSX empowers customers on their cloud journey. It is driving value inside the data center today and expanding across datacenters and to the cloud via our Cloud Air Network partnerships, and soon to VMware Cloud on AWS and native public cloud workloads via VMware Cross-Cloud Services.

Let’s take a look at some of the new features in NSX for vSphere 6.3:

Security

Some of the new capabilities delivered in NSX for vSphere 6.3 are the Application Rule Manager (available in NSX Advanced Continue reading

Why 2017 will be the worst year ever for security

Sony. Anthem. The Office of Personnel Management. Target. Yahoo. The past two years have seen one mega-breach after another—and 2017 promises to be the most catastrophic year yet.Security experts have long warned that most organizations don’t even know they’ve been breached. Attackers rely on stealth to learn about the network, find valuable information and systems, and steal what they want. Only recently have organizations improved their detection efforts and started investing the time, capital, and people needed to uncover vulnerabilities. When they do, the results are often alarming.[ 18 surprising tips for security pros. | Discover how to secure your systems with InfoWorld's Security Report newsletter. ] “I think we are going to find more, not less, breaches in 2017,” says Ray Rothrock, CEO of RedSeal, a security analytics firm.To read this article in full or to leave a comment, please click here

AT&T’s ECOMP: The Enterprise Implications

NANOG – the art of running a network and discussing common operational issues

The North American Network Operators Group (NANOG) is the loci of modern Internet innovation and the day-to-day cumulative network-operational knowledge of thousands and thousands of network engineers. NANOG itself is a non-profit membership organization; but you don’t need to be a member in order to attend the conference or join the mailing list. That said, if you can become a member, then you’re helping a good cause.

The next NANOG conference starts in a few days (February 6-8 2017) in Washington, DC. Nearly 900 network professionals are converging on the city to discuss a variety of network-related issues, both big and small; but all related to running and improving the global Internet. For this upcoming meeting, Cloudflare has three network professionals in attendance. Two from the San Francisco office and one from the London office.

With the conference starting next week, it seemed a great opportunity to introduce readers of the blog as to why a NANOG conference is so worth attending.

Tutorials

While it seems obvious how to do some network tasks (you unpack the spiffy new wireless router from its box, you set up its security and plug it in); alas the global Internet is somewhat more complex. Continue reading

Cost optimization gains ground in IT infrastructure decisions

In business, as in life, a great deal of time is spent predicting the future, especially at the dawn of a new year. Market watchers are scrambling to identify the top IT trends that will shape buying patterns in 2017. Amid all the data gathering and crystal-ball gazing, I prefer to look back and learn from what’s happened in the past so I’ll be better prepared to handle what lies ahead. Last month, I attended the Gartner Data Center, Infrastructure & Operations Management Conference, which never fails to deliver an insider’s look at the latest priorities, challenges and transformations in the corporate data center. This past conference provided lots of valuable insight, especially when it came to the topic of cost optimization. To read this article in full or to leave a comment, please click here

WAN Connectivity Options: A Primer

Home products that fix/mitigate bufferbloat…

My new years resolution is to restart blogging.

Trying to steer anything the size of the Internet into a better direction is very slow and difficult at best. From the time changes in the upstream operating systems are complete to when consumers can buy new product is typically four years caused by the broken and insecure ecosystem in the embedded device market. Chip vendors, box vendors, I’m looking at you… So much of what is now finally appearing in the market is based on work that is often four years old. Market pull may do what push has not.

The fq_codel & cake work going on in the bufferbloat project is called SQM – “smart queue management.”

See What to do About Bufferbloat for general information. And the DSLReports Speedtest makes it easy to test for bufferbloat. But new commercial products are becoming increasingly available.  Here’s some of them.

Evenroute IQrouter

First up, I’d like call out the Evenroute IQrouter. DSL users have often suffered more than other broadband users, due to bad bloat in the modems compounded by minimal bandwidth, so the DSL version of the IQrouter is particularly welcome.   Often DSL ISP’s seem to have the tendency (more Continue reading

HPE acquires security startup Niara to boost its ClearPass portfolio

Hewlett Packard Enterprise has acquired Niara, a startup that uses machine learning and big data analytics on enterprise packet streams and log streams to detect and protect customers from advanced cyberattacks that have penetrated perimeter defenses. The financial terms of the deal were not disclosed. Operating in the User and Entity Behavior Analytics (UEBA) market, Niara’s technology starts by automatically establishing baseline characteristics for all users and devices across the enterprise and then looking for anomalous, inconsistent activities that may indicate a security threat, Keerti Melkote, senior vice president and general manager of HPE Aruba and cofounder of Aruba Networks, wrote in a blog post on Wednesday.To read this article in full or to leave a comment, please click here

HPE acquires security startup Niara to boost its ClearPass portfolio

Hewlett Packard Enterprise has acquired Niara, a startup that uses machine learning and big data analytics on enterprise packet streams and log streams to detect and protect customers from advanced cyberattacks that have penetrated perimeter defenses. The financial terms of the deal were not disclosed. Operating in the User and Entity Behavior Analytics (UEBA) market, Niara’s technology starts by automatically establishing baseline characteristics for all users and devices across the enterprise and then looking for anomalous, inconsistent activities that may indicate a security threat, Keerti Melkote, senior vice president and general manager of HPE Aruba and cofounder of Aruba Networks, wrote in a blog post on Wednesday.To read this article in full or to leave a comment, please click here

HPE acquires security startup Niara to boost its ClearPass portfolio

Hewlett Packard Enterprise has acquired Niara, a startup that uses machine learning and big data analytics on enterprise packet streams and log streams to detect and protect customers from advanced cyberattacks that have penetrated perimeter defenses. The financial terms of the deal were not disclosed. Operating in the User and Entity Behavior Analytics (UEBA) market, Niara’s technology starts by automatically establishing baseline characteristics for all users and devices across the enterprise and then looking for anomalous, inconsistent activities that may indicate a security threat, Keerti Melkote, senior vice president and general manager of HPE Aruba and cofounder of Aruba Networks, wrote in a blog post on Wednesday.To read this article in full or to leave a comment, please click here

Why OSPF Needs Forwarding Address with NSSA Areas

In the previous blog posts I described how OSPF tries to solve some broken designs with Forwarding Address field in Type-5 LSA – a kludge that unnecessarily increases the already too-high complexity of OSPF.

NSSA areas make the whole thing worse: OSPF needs Forwarding Address in Type-5 LSAs generated from Type-7 LSAs to ensure optimal packet forwarding. Here’s why:

Hackers are seeking out company insiders on the black market

If you’re the CEO of a company, here’s another threat you need to worry about: hackers trying to recruit your employees for insider-related crimes.Researchers at security firms RedOwl and IntSights have noticed growing activity from online black market dealers trying to recruit company employees for insider trading and cashing out stolen credit card numbers. These dealers are appearing on underground forums located on the dark web, which are accessible through Tor, a browser designed for anonymous web surfing, according to the researchers, who published their findings on Tuesday. To read this article in full or to leave a comment, please click here