Docker networking with IPVLAN and Cumulus Linux

Macvlan and Ipvlan Network Drivers are being added as Docker networking options. The IPVlan L3 Mode shown in the diagram is particularly interesting since it dramatically simplifies the network by extending routing to the hosts and eliminating switching entirely.

Eliminating the complexity associated with switching broadcast domains, VLANs, spanning tree, etc. allows a purely routed network to be easily scaled to very large sizes. However, there are some challenges to overcome:
IPVlan will require routes to be distributed to each endpoint. The driver only builds the Ipvlan L3 mode port and attaches the container to the interface. Route distribution throughout a cluster is beyond the initial implementation of this single host scoped driver. In L3 mode, the Docker host is very similar to a router starting new networks in the container. They are on networks that the upstream network will not know about without route distribution.
Cumulus Networks has been working to simplify routing in the ECMP leaf and spine networks and the white paper Routing on the Host: An Introduction shows how the routing configuration used on Cumulus Linux can be extended to the hosts.

Update June 2, 2016: Routing on the Host contains packaged versions of the Continue reading

HPE’s new converged IoT systems bring horsepower to the edge

The biggest names in data centers and clouds are now vying to dominate the emerging IT battleground in factories, vehicles and power plants.The so-called industrial Internet of Things calls for data-gathering and analysis at the edge of enterprise networks, where conventional systems wouldn’t be efficient or hardy enough. IT stalwarts like HPE, IBM and Dell say they can now meet those requirements.The challenge is to make sense of large amounts of data pouring in from sensors on industrial equipment and act on what the data reveals. It may alert companies to immediate problems or give long-term insights into how things are working. For example, IoT can tell enterprises when parts are getting worn down so they can replace them before systems fail.To read this article in full or to leave a comment, please click here

Asus’ Jonney Shih on product design and artificial intelligence

If there's one thing that separates Asus from its competitors, it's the company's willingness to experiment with new designs.Asus has had a few big hits that the rest of the industry followed, like the Eee PC in 2008, which sparked the craze for netbooks. Other products have fared less well, like the PadFone, a hybrid device that includes a smartphone that docks into a tablet.But year after year, in a hardware industry that shies away from risk, Asus usually has a surprise or two up its sleeve. Last week it was a home help robot called Zenbo, whose cute antics and affordable price-tag stole the show at Computex.To read this article in full or to leave a comment, please click here

SplunkLive! makes for revealing IT management showcase

Bob Brown/NetworkWorld SplunkLive! in Boston With a company and product name like Splunk, you’ve gotta hang a bit loose, as I found upon sitting in at the company’s SplunkLive! event in Boston this week. The first customer speaker of the day gave a frank assessment of his organization’s implementation (“the on-premises solution, we struggled with it…”) and his frustrations with the licensing model. You have to give Splunk credit for having enough confidence in its offerings to showcase such a kick-off case study.To read this article in full or to leave a comment, please click here

SplunkLive! makes for revealing IT management showcase

Bob Brown/NetworkWorld SplunkLive! in Boston With a company and product name like Splunk, you’ve gotta hang a bit loose, as I found upon sitting in at the company’s SplunkLive! event in Boston this week. The first customer speaker of the day gave a frank assessment of his organization’s implementation (“the on-premises solution, we struggled with it…”) and his frustrations with the licensing model. You have to give Splunk credit for having enough confidence in its offerings to showcase such a kick-off case study.To read this article in full or to leave a comment, please click here

Qualcomm’s Connected Car Reference Platform to connect smart cars to everything

With 200 to 300 microcontrollers and microprocessors in the typical automobile, cars are already pretty smart. And Google’s and Tesla’s continued development, as well as auto manufacturers’ R&D investments in preparation of autonomous cars, indicate cars are about to get much smarter.That increased intelligence means vehicles will have more silicon devices that are more integrated, with more densely packed circuitry. Functional modules, such as control systems, infotainment, and autonomous steering and braking, multiply the number of chips per car that semiconductor manufacturers can sell into each car.To fill the gap between the connectivity capabilities of today’s cars and the complex connectivity in next-generation cars, Qualcomm today announced its Connected Car Reference Platform intended for the car industry to use to build prototypes of the next-generation connected car. Every category from economy to luxury car will be much smarter than the connected luxury car of today, creating a big opportunity for Qualcomm to supply semiconductors to automakers and suppliers.To read this article in full or to leave a comment, please click here

IDG Contributor Network: Channel coding: Is there anywhere left to go?

Channel coding, aka, error control codes, is a foundational building block in almost all modern communication systems. Over the decades there has been a long list of champions and pretenders for the crown of supreme code du jour or perhaps more accurately, code de la génération. As we approach our fifth generation of wireless, is there anything left for the information theory gang to do? Have we pushed this frontier to its limits? I would suggest not. Innovation in this space suggests a little renaissance period in channel coding is coming because of requirements for 5G. But first a look at how we got here.Channel coding history Channel coding is one of the main reasons our wireless networks work the way we like them to do—fast and error free. The general idea is simple. First pad the information/packet/bits at the source node with some redundant bits to be transmitted over the communication medium. Then, at the receiving end, exploit the redundancy of the extra padded information to overcome the side effects of the channel, e.g. randomness, noise, interference, etc.To read this article in full or to leave a comment, please click here

Microsoft Surface 5 could be powered by Intel’s Kaby Lake CPU

With the Surface 4/Surface Book doing very well and grabbing more and more market share, Microsoft isn’t saying much about the next generation of its tablet/notebook products. However, a leak from China may have some clues.All that’s known is that the next generation of Surface products was pushed back to early 2017. A leak to Indian publication Mobipicker.com says one reason for the delay is because Microsoft wanted to use the latest processor from Intel, code-named Kaby Lake. Kaby Lake is expected in the third quarter, which would make shipping by year’s end pretty tough. So, Microsoft simply pushed Surface 5 into next year rather than rushing it.To read this article in full or to leave a comment, please click here

New Windows 10 build brings Ink improvements, container support

Microsoft has released a new beta build of Windows 10 aimed at enhancing various aspects of the operating system, including support for the LastPass extension in the Edge browser, as the company hurtles toward releasing a major update in the coming months. Build 14361, released Wednesday, includes updated icons, the LastPass password manager extension for Microsoft Edge, and support for running Docker containers natively on Windows. Windows Ink, Microsoft's tools for working with pen input on a touchscreen Windows 10 device, also received several improvements.The build is another one on the road to what Microsoft is calling the Windows 10 Anniversary Update -- a major release of its latest operating system that packs in a slew of new features. To read this article in full or to leave a comment, please click here

Forget fingerprints; Iris scans could validate mobile payments

While mobile payment systems like Apple Pay and Samsung Pay are growing, they haven't lived up to the hype that surrounded their arrival in 2014.But newer biometrics security technologies beyond the use of fingerprint scans could boost adoption rates when purchases are made in-store with smartphones. Those technologies include palm vein sensors or even sensors that assess a person's typing patterns or movements.INSIDER: 5 ways to prepare for Internet of Things security threats For online purchases, iris scans could help authenticate buyers. And while SMS (Short Messaging Service) is an option, banks want greater security when using SMS payments. That's where a multimodal approach -- integrating facial, voice and behavorial scans into what's required for a purchase -- might help.To read this article in full or to leave a comment, please click here

Forget fingerprints; Iris scans could validate mobile payments

While mobile payment systems like Apple Pay and Samsung Pay are growing, they haven't lived up to the hype that surrounded their arrival in 2014.But newer biometrics security technologies beyond the use of fingerprint scans could boost adoption rates when purchases are made in-store with smartphones. Those technologies include palm vein sensors or even sensors that assess a person's typing patterns or movements.INSIDER: 5 ways to prepare for Internet of Things security threats For online purchases, iris scans could help authenticate buyers. And while SMS (Short Messaging Service) is an option, banks want greater security when using SMS payments. That's where a multimodal approach -- integrating facial, voice and behavorial scans into what's required for a purchase -- might help.To read this article in full or to leave a comment, please click here

Meet us in Dallas, TX for NANOG 68!

NANOG is traveling to Dallas, Texas for NANOG 68. This will be NANOG's third back-to-back meeting with DNS-OARC and fifteenth back-to-back meeting with American Registry for Internet Numbers (ARIN 38). We will be gathering at the Fairmont Dallas.

Dallas, home to 18 Fortune 500 companies, is the 9th largest city in the United States. The Telecom Corridor, a high-tech business concentration located just 15 miles north of Downtown Dallas, is home to over 1,600 companies focused in areas of equipment & component manufacturing, telecommunications, data processing, hosting and service providers.  The microchip was invented in Dallas in 1958.

NANOG 68 takes place on October 17-19, 2016 and will offer a great opportunity to network with colleagues, freshen-up skills, learn advanced networking techniques, and discover new network applications.  NANOG 68 will be hosted by  

 

                                   

 

 

 

 

D-Link camera can be hijacked to become a spy-cam

D-Link is working to fix a weakness that allows attackers to take over remote control of one of its cameras so they can eavesdrop, and the company is checking whether others of its products have similar vulnerabilities.The vulnerability allows for the injection of malicious code and forces a password reset, which means attackers can gain remote access to the camera’s feed, thereby enabling eavesdropping, according to Senrio, a startup that monitors devices, scores how vulnerable they are and alerts when it detects suspicious behavior.It also means that regardless of how strong a password users set up, it can be overridden.The camera – D-Link DCS-930L Network Cloud Camera – might not be the only device affected by the vulnerability, a spokesperson for Senrio says. “Senrio has also agreed to evaluate a number of additional D-link products to assess if the vulnerability can be found in the firmware in those items,” the spokesperson said in an email.To read this article in full or to leave a comment, please click here

D-Link camera can be hijacked to become a spy-cam

D-Link is working to fix a weakness that allows attackers to take over remote control of one of its cameras so they can eavesdrop, and the company is checking whether others of its products have similar vulnerabilities.The vulnerability allows for the injection of malicious code and forces a password reset, which means attackers can gain remote access to the camera’s feed, thereby enabling eavesdropping, according to Senrio, a startup that monitors devices, scores how vulnerable they are and alerts when it detects suspicious behavior.It also means that regardless of how strong a password users set up, it can be overridden.The camera – D-Link DCS-930L Network Cloud Camera – might not be the only device affected by the vulnerability, a spokesperson for Senrio says. “Senrio has also agreed to evaluate a number of additional D-link products to assess if the vulnerability can be found in the firmware in those items,” the spokesperson said in an email.To read this article in full or to leave a comment, please click here

1 2,901 2,902 2,903 2,904 2,905 3,836