0

REVIEW: Threat Intelligence could turn the tide against cybercriminals

In recent reviews, we looked at the advancements in endpoint security, including new ways companies are employing technology like virtual machines to get a leg up on potential attackers. But despite impressive new defensive technologies, the bad guys still seem to be getting through. According to security engineers we’ve talked with, the problem with network defense these days is two-fold. First, no matter how innovative the defensive technology deployed, it will eventually be breached or circumvented. And because most of the top attackers and groups collaborate, the tools and techniques used to successfully break down defenses are quickly shared.To read this article in full or to leave a comment, please click here(Insider Story)

0

New products of the week 09.14.15

New products of the weekOur roundup of intriguing new products. Read how to submit an entry to Network World's products of the week slideshow.HiveManager NG Virtual AppliancePricing: HiveManager NG Virtual Appliance requires the purchase of a 1-, 3-, or 5-year support contract, the price of a 1-year support contract is $1,000. Additionally, each managed access point requires a perpetual license at $80 per access point and a 1-, 3-, or 5-year support contract per access point.To read this article in full or to leave a comment, please click here

0

VXLAN Hardware Gateway Overview

One of my readers stumbled upon a 4-year-old blog post explaining the potential implementations of VXLAN hardware gateways, and asked me if that information is still relevant.

I knew that I’d included tons of information in the Data Center Fabrics and VXLAN Deep Dive webinars, but couldn’t find anything on the web, so let’s fix that.

Read more ...

0

How We Extended CloudFlare’s Performance and Security Into Mainland China

CloudFlare launched five years ago. Within a year of our launch, the biggest surprise was the strong global demand for our service. From nearly the beginning, China was the second largest source of traffic by country to our network, behind only the United States.

In retrospect, that shouldn't have been a surprise. In 2010, the year we launched, 34% of China's population, or 450 million people, were online. Today, nearly half the country is online. To put it another way, with 700 million people online, China represents a quarter of all Internet users. If your mission is to help build a better Internet, like CloudFlare's is, then China is a country you cannot ignore.

Consequently, starting in 2011, we began to investigate how CloudFlare could bring our service to the Chinese Internet. Four years later, we're excited to announce the extension of CloudFlare's performance and security platform across mainland China. This is the story of how we did it.

The Challenges

There are three major challenges to extending a service like CloudFlare's across mainland China: technical, economic, and regulatory.

Technical

From a technical perspective, the Chinese Internet, despite its many similarities, is different than the rest of the world. Unlike Continue reading

0

IPv6-based Wi-Fi Hotspots

Apple’s 2015 WWDC event included a great session on IPv6 & TCP changes coming with iOS 9. There is a related post to the IETF v6ops mailing list here. The new IPv6 hotspot is very interesting to me. These are my notes on how hotspot functionality can work with IPv6, and no NAT.

IPv4 Hotspot – (aka the simplicity of NAT?)

The current IPv4 hotspots use simple NAT, similar to most home network setups. The mobile network assigns a public IPv4 /32 address to the handset, H. The handset picks a local RFC1918 address space for its connectivity to local clients, and hands that out via DHCP. Hide NAT is used to provide outbound internet connectivity for those clients.

What about IPv6? Isn’t NAT verboten?

NAT is evil, right? We can’t use NAT to hide the local clients behind the handset. So how do we provide IPv6 hotspot functionality? One way would be to use DHCPv6 PD. When the hotspot is enabled, the mobile device could request a prefix via DHCPv6 PD. That could then be used for local devices.

Unfortunately the Continue reading

0

Researcher reveals remotely exploitable flaw in world’s most widely-used real-time OS

A security researcher discovered a serious yet simple flaw in VxWorks, a real-time operating system for the Internet of Things, which an attacker could remotely exploit without needing any interaction with a user. The OS is used in everyday things like network routers to critical infrastructure as well in NASA’s Curiosity Rover on Mars and Boeing 787 Dreamliners.Searching for VxWorks via Shodan reveals about 100,000 internet-connected devices running the OS, but VxWorks supposedly powers “billions of intelligent devices.” The researcher warned that the vulnerability “allows remote code execution on most VxWorks-based devices.”To read this article in full or to leave a comment, please click here

0

Enabling the Software-Defined Data Center Vision

Originally Posted Here We’re excited to announce our latest tier 1 partnership, this time with VMware, which demonstrates the growing

0

Wireshark Mac OS X v1.99.1 Waitpid() error quick fix

I had 1.99.1 beta running in Mavericks quite well, problems arose with upgrade to 10.10. Yosemite. I saw [crayon-563410ebcce3a627922708-i/]  every time wireshark started and did not see any interfaces to start capture on. Thanks I was not alone with this one, go to the link provided to see the details, or do not give a sh*t and apply this one

0

Network Dictionary – Fat Finger

Define "Fat Finger"

The post Network Dictionary – Fat Finger appeared first on EtherealMind.

0

Intel’s latest IoT move heats up the race for low-power networks

While mobile operators often claim bragging rights to the fastest smartphone connections, another rivalry is heating up around networks that aren't fast at all: Their claim to fame is that they don't suck up power. On Friday, Intel said it would work with cellular heavyweights Ericsson and Nokia to commercialize NB-LTE (Narrow-Band LTE), a variant of the latest cellular technology that uses a small amount of radio spectrum to efficiently carry small amounts of data. Also this week, low-power network specialist Ingenu said it would build a network across the U.S. within two years. Those are just two of the systems being promoted as the perfect glue to connect the burgeoning Internet of Things. They're vying to become the network of choice for electric meters, street lamps, pipelines and other infrastructure. By 2020, nearly 1.5 million devices will be connected to LPWA (low-power wide area) networks, Machina Research estimates. LPWA will cut the cost of IoT and make it useful for more things, Machina analyst Godfrey Chua said.To read this article in full or to leave a comment, please click here

0

SDxCentral Weekly News Roundup — September 11, 2015

Did you miss this week's top headlines? That's alright -- we got there right here for you.

0

RouterJockey is launching a clothing line?!?!???

Ok maybe that title is a bit grandiose… But due to the great response I received Friday morning from the launch of the original PCAP shirt, and the IPv6 follow-up, I decided to create a few new designs and put everything into a store front. If the demand continues I will continue to publish new shirts, and keep up with relaunching original designs into their own campaigns. Not that I expect the demand for these shirts to continue long term, but you never know. Nevertheless I appreciate everyone’s support thus far.

But I need you! Yes… You! I need your ideas, and most importantly I need your feedback. So please, contact me on twitter and let me know what you think. If you like what you see, please share the url for the store.

Without further ado…

Click to visit the RouterJockey shop

The post RouterJockey is launching a clothing line?!?!??? appeared first on Router Jockey.

0

How to run Juniper vMX in UNetLab

Juniper offers its brilliant MX routers for virtual environments – namely vMX. And we cant name ourselves engineers if we wouldn’t try to run one in the Unetlab. Running vMX in the unetlab is a simple task, yet I see many complaints about vMX not working. With this being said I invite you to a journey called “running vMX

0

iPexpert’s Newest “CCIE Wall of Fame” Additions 9/11/2015

Please join us in congratulating the following iPexpert students who have passed their CCIE lab!

This Week’s CCIE Success Stories

• Hesham Abdelkereem, CCIE #40790 (Dual, Wireless & Collaboration)
• Nadeem Akbar, CCIE #11610 (Wireless)
• Hugo Dantas, CCIE #49174 (Collaboration)

This Week’s Testimonial

Hesham Abdelkereem CCIE #40790 (Wireless & Collaboration)
The product that helped me was Video on Demand.

Nadeem Akbar CCIE #411610 (Wireless)
The CCIE Wireless Bootcamp helped me pass the exam.

We Want to Hear From You!

Have you passed your CCIE lab exam and used any of iPexpert’s self-study products, or attended a CCIE Bootcamp? If so, we’d like to add you to our CCIE Wall of Fame!

0

CCIE Benefits – What are they?

Original content from Roger's CCIE Blog Tracking the journey towards getting the ultimate Cisco Certification. The Routing & Switching Lab Exam
Now that I have passed the CCIE Lab exam people are asking me “What are the CCIE benefits?” As for tangible benefits to me personally they are in no particular order: I can now go to the CCIE Apparel store and purchase my CCIE Leather Jacket and other clothing with my CCIE digits on them […]

Post taken from CCIE Blog

Original post CCIE Benefits – What are they?

0

This Week On The Internet: Animated AT-AT, Abused Robot

From an animated AT-AT to the need for punchable robots to a post-Internet utopia, here's a selection of strange and interesting items coughed up online.

The post This Week On The Internet: Animated AT-AT, Abused Robot appeared first on Packet Pushers.

0

Docker Global Hack Day #3 Starts Next Week!

Docker Global Hack Day is on Wednesday, September 16th through Monday, September 21st! Submit Your Hack Ideas! or check out already submitted hack ideas! Three Docker Global Hack Day hackers – Nicolas De Loof, Willy Kuo, and Chia-Chi Chang – share their thoughts on participating in … Continued

0

Cisco Scores a Point in Its Patent Case Against Arista

A real ruling is months away, but Cisco can claim the latest round in its ITC case.

0

Grab your new credit card and get ready to dip your chip

This column is available in a weekly newsletter called IT Best Practices.  Click here to subscribe.  If you live in the United States and you have a credit card, chances are high your bank recently sent you a new card with an embedded smart chip. Banks and other card issuers are scurrying to put chip-enabled credit cards in their customers' hands. Debits cards, too. These cards are critical for a new security system for card-based payments that will go into effect in the U.S. soon.In the lingo of the payments industry, the new cards are called EMV cards. EMV is an open set of specifications for smart cards and other acceptance devices such as smart phones and fobs. EMV stands for Europay, MasterCard and Visa, which are the three companies that developed the standard in 1994. Today the EMV standard is managed by EMVCo LLC, which has six member organizations – American Express, Discover, JCB, MasterCard, UnionPay and Visa – and dozens of EMVCo associates. EMVCo makes decisions on a consensus basis to assure card infrastructure uniformity throughout the world.To read this article in full or to leave a comment, please click here

0

Even the FBI is worried about Internet of Things security

Dave Newman Amidst all the excitement about the possible benefits of the Internet of Things, a slew of warnings have been sounded by IT pros, vendors and analysts about looming security threats. Now you can add the FBI to that list of those cautioning enthusiasts.The Bureau this week issued a public service announcement regarding cybercrime opportunities posed by the connecting of all sorts of data-enabled devices, from medical gear to entertainment gadgets, to the Internet.To read this article in full or to leave a comment, please click here