iPexpert’s Newest “CCIE Wall of Fame” Additions 11/13/2015
Please join us in congratulating the following iPexpert students who have passed their CCIE lab!
Container networking: To overlay or not to overlay
One of the key decisions in designing a compute infrastructure is how to handle networking.
For platforms that are designed to deliver applications, it is now common knowledge that application developers need a platform that can execute and manage containers (rather than VMs).
When it comes to networking, however, the choices are less clear. In what scenarios are designs based on single layer preferable vs. overlay networks ?
The answer to this question is not a simplistic one based on “encapsulation overhead”; while there are overlay networking projects that do exhibit poor performance, production ready solutions such as OpenContrail have performance characteristics on both throughput and PPS similar to the Linux kernel bridge implementation. When not using an overlay, it is still necessary to use an internal bridge to demux the container virtual-ethernet interface pairs.
The key aspect to consider is operational complexity!
From a bottoms-up perspective, one can build an argument that a network design with no encapsulation that simply uses an address prefix per host (e.g. a /22) provides the simplest possible solution to operate. And that is indeed the case if one assumes that discovery, failover and authentication can be handled completely at the “session” layer (OSI model).
I’m familiar with a particular compute infrastructure where this is the Continue reading
Test-Driven Network Development with Michael Kashin on Software Gone Wild
Imagine you’d design your network by documenting the desired traffic flow across the network under all failure conditions, and only then do a low-level design, create configurations, and deploy the network… while being able to use the desired traffic flows as a testing tool to verify that the network still behaves as expected, both in a test lab as well as in the live network.
Read more ...Money Where My Mouth is, Get Coding Giveaway (UPDATE 2.0)
WE HAVE WINNERS!! Big Congratulations to: John Swanson & Dustin Plunkett Hoping to get them both on the blog in the near future. Thanks to everyone who participated. Sign up for ACL, The StaticNAT Newsletter for future offers and to see what we are doing here at StaticNAT! So lately I have been on a …DockerVPC: Using containers as Linux Virtual host instead of VPCS
Introduction I would like to share with you DockerVPC, a bash script that helps running containers for use within GNS3 as rich virtual end-host instead of VPCS. I’am using it to avoid dealing directly with docker commands and container id’s each time I would like to rapidly deploy some disposable end-host containers inside GNS3. For […]
Cisco Shares Slip on Q2 Guidance
Slowdown aside, Cisco CEO Chuck Robbins says he is optimistic for next year.
Announcing Docker Trusted Registry 1.4 – New User Interface, Integrated Content Trust and Support for Docker Engine 1.9
The Docker Trusted Registry is a commercial registry service that you can run on-premise or in your virtual private cloud (VPC) to store and manage your Docker images. Trusted Registry is available in conjunction with a commercially supported Docker Engine … ContinuedBusyCal and Textual
I wanted to call out a couple of software packages whose vendors I’ve worked with recently that I felt had really good customer service. The software packages are BusyCal (from BusyCal, LLC) and Textual (from Codeux Software, LLC).
As many of you know, the Mac App Store (MAS) recently suffered an issue due to an expired security certificate, and this caused many MAS apps to have to be re-downloaded or, in limited cases, to stop working (I’m looking at you, Tweetbot 1.6.2). This incident just underscored an uncomfortable feeling I’ve had for a while about using MAS apps (for a variety of reasons that I won’t discuss here because that isn’t the focus of this post). I’d already started focusing on purchasing new software licenses outside of the MAS, but I still had (and have) a number of MAS apps on my Macs.
As a result of this security certificate snafu, I started looking for ways to migrate from MAS apps to non-MAS apps, and BusyCal (a OS X Calendar replacement) and Textual (an IRC client) were two apps that I really wanted to continue to use but were MAS apps. The alternatives were dismal, at best.
It Ain’t Easy Buying EZchip, Mellanox Finds
Raging Capital's raging has partially paid off.
Lucera Takes Aim at Capital Markets With SDN
Lucera is mixing its SDN with Perseus’ fiber network to serve traders around the globe.