Open Source NFV for Cost-Effective, High-Performance Networking
DPDK is now the open source framework for high-performance packet processing.
Datanauts 027: What Is A Cloud-Native Application?
What does it mean for an application to be “cloud-native”? The Datanauts and guest Tony Bourke dive into the fundamentals of applications designed to live in the cloud.
The post Datanauts 027: What Is A Cloud-Native Application? appeared first on Packet Pushers.
Datanauts 027: What Is A Cloud-Native Application?
What does it mean for an application to be “cloud-native”? The Datanauts and guest Tony Bourke dive into the fundamentals of applications designed to live in the cloud.
The post Datanauts 027: What Is A Cloud-Native Application? appeared first on Packet Pushers.
Thoughts On Encryption
The debate on encryption has heated up significantly in the last couple of months. Most of the recent discussion has revolved around a particular device in a specific case but encryption is older than that. Modern encryption systems represent the culmination of centuries of development of making sure things aren’t seen.
Encryption As A Weapon
Did you know that twenty years ago the U.S. Government classified encryption as a munition? Data encryption was classified as a military asset and placed on the U.S. Munitions List as an auxiliary asset. The control of encryption as a military asset meant that exporting strong encryption to foreign countries was against the law. For a number of years the only thing that could be exported without fear of legal impact was regular old Data Encryption Standard (DES) methods. Even 3DES, which is theoretically much stronger but practically not much better than it’s older counterpart, was restricted for export to foreign countries.
While the rules around encryption export have been relaxed since the early 2000s, there are still some restrictions in place. Those rules are for countries that are on U.S. Government watch lists for terror states or governments deemed “rogue” states. Continue reading
Scrutinizing The Cisco-Arista Legal Findings
Tom Hollingsworth delves into puzzling aspects of the initial rulings in Cisco’s lawsuit against rival Arista.
Software-Defined Architecture: What To Consider
As more parts of IT become "software-defined," be sure you're asking the right questions.
Table Sizes in OpenFlow Switches
This article was initially sent to my SDN mailing list. To register for SDN tips, updates, and special offers, click here.
Usman asked a few questions in his comment on my blog, including:
At the moment, local RIB gets downloaded to FIB and we get packet forwarding on a router. If we start evaluating too many fields (PBR) and (assume) are able to push these policies to the FIB - what would become of the FIB table size?
Short answer: It would explode ;)
Read more ...General – How to Build a Network Pt.1
Building a strong network of people is very important in creating a successful career in IT. In these posts we will start first look at why building a network is important and in the other posts we will look at how to actually build the network and how to make sure that you are also contributing to the network and not only exploiting it.
If you came here to read about connecting cables or routing protocols, sorry, this is not that kind of post. This post is about how to build a network of people.
People often understimate the power of having a big reach in the industry through a network of people. I often hear in my role that I’m almost too effective sometimes. Part of that is because I have a very good network of people that I trust and rely on. In this blog we will look at WHY you want to build a network of people.
The Borg Mind – Have you heard of Star Trek? No? Are you sure you work in IT? 
Jokes aside, there is species called the Borg in the series which do not so nice things. What it is nice about Continue reading
Ubiquity gear replacing BT HomeHub router
These are my notes from setting up Ubiquity wifi access point and router to replace the horrible BT HomeHub 5.
What’s wrong with BT HomeHub?
- It can’t hand out non-BT DNS servers
(and BT’s DNS servers MITM your queries and spoof NXDOMAIN
if the reply has rfc1918 addresses in them. This is known
and they “can’t” turn this off)
- This means that I had to turn off the DHCP server and run my own on a raspberry pi. So I’m actually replacing two devices. It was already not a all-in-one-box solution.
- The port forwarding database is not using unique key constraints, so you have to try and re-try adding port forwardings until you’re lucky and don’t hit a key collision.
- Only one wifi network. I want untrusted things (IoT) to be firewalled from the rest.
- I want to deny Internet access to some IoT things. I don’t need them to be able to connect anywhere. HomeHub doesn’t support that.
- Wifi range is not great. Not terrible, but bad enough that it doesn’t cover my home.
- I don’t know if it’s to blame, but I did not have a good experience trying to set up a second AP to automatically roam Continue reading
Ubiquity gear replacing BT HomeHub router
These are my notes from setting up Ubiquity wifi access point and router to replace the horrible BT HomeHub 5.
What’s wrong with BT HomeHub?
- It can’t hand out non-BT DNS servers
(and BT’s DNS servers MITM your queries and spoof NXDOMAIN
if the reply has rfc1918 addresses in them. This is known
and they “can’t” turn this off)
- This means that I had to turn off the DHCP server and run my own on a raspberry pi. So I’m actually replacing two devices. It was already not a all-in-one-box solution.
- The port forwarding database is not using unique key constraints, so you have to try and re-try adding port forwardings until you’re lucky and don’t hit a key collision.
- Only one wifi network. I want untrusted things (IoT) to be firewalled from the rest.
- I want to deny Internet access to some IoT things. I don’t need them to be able to connect anywhere. HomeHub doesn’t support that.
- Wifi range is not great. Not terrible, but bad enough that it doesn’t cover my home.
- I don’t know if it’s to blame, but I did not have a good experience trying to set up a second AP to automatically roam Continue reading
Managing Cisco IOS Upgrades with Ansible
I was recently asked to automate the way a client handles Cisco IOS upgrades. As I’ve been using Ansible a lot lately I decided to start there. Basically the steps required to do the upgrade can be broken down into parts which map quite nicely to tasks in an Ansible playbook. Even if you aren’t using IOS you might find it interesting to see how different Ansible modules can be combined in order to complete a set of tasks.
AT&T Considers Open Sourcing Its SDN ‘Foundation’
John Donovan introduces Ecomp on the ONS 2016 stage.
Managing Cisco IOS Upgrades with Ansible
I was recently asked to automate the way a client handles Cisco IOS upgrades. As I’ve been using Ansible a lot lately I decided to start there. Basically the steps required to do the upgrade can be broken down into parts which map quite nicely to tasks in an Ansible playbook. Even if you aren’t using IOS you might find it interesting to see how different Ansible modules can be combined in order to complete a set of tasks.
Continue reading