NVA Part IV: NVA Redundancy with Azure Internal Load Balancer

Introduction

To achieve active/active redundancy for a Network Virtual Appliance (NVA) in a Hub-and-Spoke VNet design, we can utilize an Internal Load Balancer (ILB) to enable Spoke-to-Spoke traffic.

Figure 5-1 illustrates our example topology, which consists of a vnet-hub and spoke VNets. The ILB is associated with the subnet 10.0.1.0/24, where we allocate a Frontend IP address (FIP) using dynamic or static methods. Unlike a public load balancer's inbound rules, we can choose the High-Availability (HA) ports option to load balance all TCP and UDP flows. The backend pool and health probe configurations remain the same as those used with a Public Load Balancer (PLB).

From the NVA perspective, the configuration is straightforward. We enable IP forwarding in the Linux kernel and virtual NIC but not pre-routing (destination NAT). We can use Post-routing policies (source NAT) if we want to hide real IP addresses or if symmetric traffic paths are required. To route egress traffic from spoke sites to the NVAs via the ILB, we create subnet-specific route tables in the spoke VNets. The reason why the "rt-spoke1" route table has an entry "10.2.0.0/24 > 10.0.1.6 (ILB)" is that vm-prod-1 has a public IP address used for external access. If we were to set the default route, as we have in the subnet 10.2.0.0/24 in "vnet-spoke2", the external connection would fail.

Figure 5-1: ILB Example Topology.

EIGRP Third-Party Next Hops

EIGRP routing updates have always contained the next hop field (similar to BGP updates), which was unused until Cisco IOS release 12.3 when the no ip next-hop-self eigrp AS-number interface configuration command was implemented.

EIGRP does not set the next hop field by default. An EIGRP router receiving a routing update thus assumes that the next hop of the received routes is the sending router. This behavior usually works well, but prevents site-to-site shortcuts to be established in DMVPN networks, and results in suboptimal routing in some route redistribution scenarios.

Read more …

EIGRP Third-Party Next Hops

EIGRP routing updates have always contained the next hop field (similar to BGP updates), which was unused until Cisco IOS release 12.3 when the no ip next-hop-self eigrp AS-number interface configuration command was implemented.

EIGRP does not set the next hop field by default. An EIGRP router receiving a routing update thus assumes that the next hop of the received routes is the sending router. This behavior usually works well, but prevents site-to-site shortcuts to be established in DMVPN networks, and results in suboptimal routing in some route redistribution scenarios.

Read more …

Nvidia Jetson Nano — Initial thoughts, impressions, AI Specialist Certification.

< Medium: https://raaki-88.medium.com/nvidia-jetson-nano-initial-thoughts-impressions-ai-specialist-certification-2b9af95e1bba >

While browsing through various ways to get my AI-enabled bird camera setup, I came across Nvidia Jetson Nano, there are varied versions of this product and availability are limited, I Am in Europe and ordered the Nano Developer kit from Amazon US, shipping was fast with a good amount of inbound tax as well.

https://developer.nvidia.com/embedded/jetson-nano-developer-kit — is the one I have purchased while both new and old versions are available.

Unboxing Video :

Unboxing Video — Nvidia Jetson Nano

Initial Impressions and disadvantages:

  • I am surprised that this does not have WIFI and only works on an Ethernet adapter, so I ended up purchasing a Wifi-dongle which operated out of the box, I recommend a TP-Link adapter but anything will work and here is the link — https://www.amazon.co.uk/dp/B07LGMD97Z?psc=1&ref=ppx_yo2ov_dt_b_product_details
  • One of the factors is that Nvidia on its website claims that they support Raspberry Pi cameras which I have many and the reality is that they won’t end up supporting any of the latest cameras which are based on the IMX7* series, they can support the IMX219 series if you are lucky but anything other than that is a Continue reading

Image Search with Bing — ML/AI Fast.ai and AWS Sage Maker

< MEDIUM: https://aws.plainenglish.io/image-search-with-bing-ml-ai-fast-ai-and-aws-sage-maker-61fae1647c >

If you have heard about awesome AI course that fast.ai offers which is free of charge then you should definitely checkout. https://course.fast.ai/ is where you will find out all the details.

Course takes a very hands on approach and anyone can write and bring up their ML model in under 2 hours of the course. As a part of any image classification one of the basic requirements is to have number of images which is often referred to as Dataset and this Dataset is split into Test/Train/Validation for the model training.

For some of the easier examples, you can rely on search engine to give you those images for you, previously fast.ai used Microsoft’s bing.com for image search but later they replaced it with DDG (DuckDuckGo). while DDG is really nice I had throttle issues and some of the packages were outdated and hard to read.

So, I have re-written the same image-search Python function which uses Microsoft’s bing.com search engine

What are Pre-req:

  • Azure Cloud account
  • API Keys for the service

Procedure to generate keys

  • Go to Azure, create a Resource
  • Search for “Bing Search”
  • Select “Bing Continue reading

Microsoft’s first cloud region in Italy launched in Lombardy

Microsoft is launching its first cloud region in Italy, the company said on Monday.The new region, which will have three data centers, will be located in Lombardy — an administrative area in Northern Italy whose capital is Milan.Enterprises will be able to start using the new region using Microsoft Azure or Microsoft 365 in the coming weeks, the company said, adding that other services such as Dynamics 365 and Power Platform are expected to follow soon.To read this article in full, please click here

Microsoft’s first cloud region in Italy launched in Lombardy

Microsoft is launching its first cloud region in Italy, the company said on Monday.The new region, which will have three data centers, will be located in Lombardy — an administrative area in Northern Italy whose capital is Milan.Enterprises will be able to start using the new region using Microsoft Azure or Microsoft 365 in the coming weeks, the company said, adding that other services such as Dynamics 365 and Power Platform are expected to follow soon.To read this article in full, please click here

Waiting for things to happen on Linux

There are always things to wait for on a Linux system—upgrades to complete, processes to finish, coworkers to log in and help resolve problems, status reports to be ready.Fortunately, you don’t have to sit twiddling your thumbs. Instead, you can get Linux to do the waiting and let you know when the work is done. You can do this with a script or you can use the wait command, a bash built-in that watches for processes running in the background to complete.Crafting waiting within scripts There are many ways to craft waiting within a script. Here’s a simple example of simply waiting for a period of time before moving on to the next task:To read this article in full, please click here

Waiting for things to happen on Linux

There are always things to wait for on a Linux system—upgrades to complete, processes to finish, coworkers to log in and help resolve problems, status reports to be ready.Fortunately, you don’t have to sit twiddling your thumbs. Instead, you can get Linux to do the waiting and let you know when the work is done. You can do this with a script or you can use the wait command, a bash built-in that watches for processes running in the background to complete.Crafting waiting within scripts There are many ways to craft waiting within a script. Here’s a simple example of simply waiting for a period of time before moving on to the next task:To read this article in full, please click here

How to wait for things to happen on Linux

There are always things to wait for on a Linux system – for upgrades to complete, for a process to finish, for coworkers to log in and help resolve a problem, or for a status report to be ready. Fortunately, you don’t have to sit twiddling your thumbs. Instead, you can get Linux to do the waiting and let you know when the work is done. You can do this by crafting the waiting and the condition for which you are waiting in a script, or you can use the wait command – a bash builtin that will watch for a process running in the background to complete.Crafting waiting within scripts There are many ways to craft waiting within a script. Here's a simple example of simply waiting for a period of time before moving on to the next task:To read this article in full, please click here

Network Break 433: NVIDIA Melds Switches, DPUs For AI Networking Fabric; FTC Says Amazon Ring Employee Spied On Female Customers

This week's Network Break discusses a new Google offering to interconnect public clouds, NVIDIA's platform for AI networking fabrics using Ethernet switches and DPUs, and Cisco's latest security acquisition. We also cover Riverbed getting a new private equity owner, Amazon paying a pittance to the FTC to settle allegations of customer privacy violations, and more tech news.

Network Break 433: NVIDIA Melds Switches, DPUs For AI Networking Fabric; FTC Says Amazon Ring Employee Spied On Female Customers

This week's Network Break discusses a new Google offering to interconnect public clouds, NVIDIA's platform for AI networking fabrics using Ethernet switches and DPUs, and Cisco's latest security acquisition. We also cover Riverbed getting a new private equity owner, Amazon paying a pittance to the FTC to settle allegations of customer privacy violations, and more tech news.

The post Network Break 433: NVIDIA Melds Switches, DPUs For AI Networking Fabric; FTC Says Amazon Ring Employee Spied On Female Customers appeared first on Packet Pushers.

What’s new in Calico v3.26

We are excited to announce the release of Calico v3.26! This latest milestone brings a range of enhancements and new features to the Calico ecosystem, delivering an optimized and secure networking solution. This release has a strong emphasis on product performance, with strengthened security measures, expanded compatibility with Windows Server 2022 and OpenStack Yoga, and notable improvements to the Calico eBPF dataplane.

As always, let’s begin by thanking our awesome community members who helped us in this release.

Community shoutout

Big thanks to our GitHub users afshin-deriv, blue-troy, and winstonu for their valuable contributions in enhancing the Kind installation and VXLAN documentation, as well as improving the code comments.

Additionally, we would like to extend our appreciation to laibe and yankay for their efforts in updating the flannel version and improving the IPtables detection mechanism. Their contributions have been instrumental in improving the overall functionality and reliability of our project.

Finally, a huge thank-you to dilyevsky, detailyang, mayurjadhavibm, and olljanat for going above and beyond in pushing Calico beyond its original scope and for generously sharing their solutions with the rest of the community.

Community-driven enhancement request: Fine-grained BGP route control

The primary responsibility Continue reading

Tech Bytes: Building The Branch Of The Future With Palo Alto Networks SD-WAN And SASE (Sponsored)

Today on the Tech Bytes podcast we explore the branch of the future with sponsor Palo Alto Networks. We talk about how SD-WAN and SASE come together with Digital Experience Management (DEM) to meet the challenges of security, cloud, and hybrid work at the branch.

The post Tech Bytes: Building The Branch Of The Future With Palo Alto Networks SD-WAN And SASE (Sponsored) appeared first on Packet Pushers.

1 283 284 285 286 287 3,842