0

Network Engineer Salary

0

is CCIE still worth it in 2022? CCIE vs Network Automation or something else?

0

What Nvidia Can’t Buy, It Can Still Get Through An Arm Partnership

While a $1.25 billion hit to the Nvidia books after the company terminated its $40 billion deal to acquire chip designer Arm Holdings from Japanese conglomerate SoftBank Group this week is a big deal, the fact that Nvidia and SoftBank were going to see a lot of regulatory scrutiny and IT market resistance is no surprise. …

What Nvidia Can’t Buy, It Can Still Get Through An Arm Partnership was written by Timothy Prickett Morgan at The Next Platform.

0

Chiplets: The First Step To Integrated Silicon Photonics For Faster Interconnects At Lower Cost

Merchant silicon applies Moore’s Law to Ethernet switching with astounding results, well documented by tech luminary Andy Bechtolsheim almost four years ago. Since then, switch chips have doubled their throughput to 25.6 Tbps, powering products with up to 64 400GbE interfaces. The problem arises when trying to transmit electrical signals off chip because the power […]

The post Chiplets: The First Step To Integrated Silicon Photonics For Faster Interconnects At Lower Cost appeared first on Packet Pushers.

0

6 Barriers to Moving and Managing Legacy Data to the Cloud

When moving legacy data to cloud, companies must overcome several barriers to take full advantage of the benefits a cloud architecture can offer.

0

Microsoft Brings eBPF to Windows

If  you want to run code to provide observability, security or network functionality, running it in the kernel of your operating system gives you a lot of power because that kernel can see and control everything on the system. That’s powerful, but potentially intrusive or dangerous if you get it wrong, whether that’s introducing a vulnerability or just slowing the system down. If you’re looking for a way to take advantage of that kind of privileged context without the potential danger, eBPF is emerging as an alternative — and now it’s coming to Windows. Not Just Networking Originally eBPF stood for “extended Berkeley Packet Filter”, updating the open source networking tool that puts a packet filter in the Linux kernel for higher performance packet tracing (now often called cBPF for classic BPF). But it’s now a generic mechanism for running many kinds of code safely in a privileged context by using a sandbox, with application monitoring, profiling and security workloads as well as networking, so it’s not really an acronym anymore. That privileged context doesn’t even have to be an OS kernel, although it still tends to be, with eBPF being a more stable and secure alternative to kernel modules Continue reading

0

Cisco NCS 5500 Series Routers

Cisco already supports industry standard sFlow telemetry across a range of products and the recent IOS-XR Release 7.5.1 extends support to Cisco NCS 5500 series routers.

0

Email Routing is now in open beta, available to everyone

I won’t beat around the bush: we’ve moved Cloudflare Email Routing from closed beta to open beta 🎉

What does this mean? It means that there’s no waitlist anymore; every zone* in every Cloudflare account has Email Routing available to them.

To get started just open one of the zones in your Cloudflare Dashboard and click on Email in the navigation pane.

Our journey so far

Back in September 2021, during Cloudflare’s Birthday Week, we introduced Email Routing as the simplest solution for creating custom email addresses for your domains without the hassle of managing multiple mailboxes.

Many of us at Cloudflare saw a need for this type of product, and we’ve been using it since before it had a UI. After Birthday Week, we started gradually opening it to Cloudflare customers that requested access through the wait list; starting with just a few users per week and gradually ramping up access as we found and fixed edge cases.

Most recently, with users wanting to set up Email Routing for more of their domains and with some of G Suite legacy users looking for an alternative to starting a subscription, we have been onboarding tens of thousands of new zones Continue reading

0

Mixed Feelings about BGP Route Reflector Cluster ID

Here’s another BGP Route Reflector myth:

In a redundant design, you should use Route Reflector Cluster ID to avoid loops.

TL&DR: No.

While BGP route reflectors can cause permanent forwarding loops in sufficiently broken topologies, the Cluster ID was never needed to stop a routing update propagation loop:

0

Mixed Feelings about BGP Route Reflector Cluster ID

Here’s another BGP Route Reflector myth:

In a redundant design, you should use Route Reflector Cluster ID to avoid loops.

TL&DR: No.

While BGP route reflectors can cause permanent forwarding loops in sufficiently broken topologies, the Cluster ID was never needed to stop a routing update propagation loop:

0

Do new technologies make IT easier?

Software-defined networking, intent-based networking, SD-WAN, and a host of other technologies are focused on making IT work easier through automation. Rather than manually configuring every part of a system, these technologies offer templates, AI assistance, and, in theory, a much lower workload for the IT worker in the field. Whether that theory translates to practice, however, remains a matter of debate.To read this article in full, please click here

0

Do new technogies make IT easier?

Software-defined networking, intent-based networking, SD-WAN, and a host of other technologies are focused on making IT work easier through automation. Rather than manually configuring every part of a system, these technologies offer templates, AI assistance, and, in theory, a much lower workload for the IT worker in the field. Whether that theory translates to practice, however, remains a matter of debate.To read this article in full, please click here

0

Making the network (even) more consumable: Salty minions for cloudlubbers ☁️

Building and integrating custom SR Linux agents — part Ⅱ

A ‘lubber’ is a “big, clumsy person”, a word more commonly used in the form of ‘landlubber’ meaning someone unfamiliar with the sea or sailing. The latter was first recorded back in 1690, combining the Middle English word ‘lubber’ (~1400) with the Germanic — or Dutch — ‘land’: “A definite portion of the earth’s surface owned by an individual or home of a nation”.

The process of combining two words to form a new one is called ‘nominal composition’ and it is used a lot in my native Dutch language. Technically this means that Dutch has exponentially more words than English for example, though we can’t be bothered to list them in dictionaries — we simply invent them as needed (against the advice of my browser’s spellchecker who argues “cloudlubber” should be written as two separate words, silly machine)

Found at the bottom of that dictionary list: Toki Pona — “simple language” — is a minimalistic constructed language consisting of only 120 words. It uses only 14 letters — a e i j k l m n o p s t u w — to form words

Insulting one’s audience from the start is generally considered bad practice, but we’re ok because I wasn’t talking Continue reading

0

Same, But Wildly Different: Securing Azure AD vs. AD On-Prem

Here are the most significant ways in which Azure AD security differs from that of AD on-premises, and what AD admins charged with securing both need to know.

0

How To Pass API Query Parameters In A Curl Request

If you’re using CLI tool curl to retrieve data from a remote API, you might send forth a command like so.

curl -H "Authorization: Bearer access_token_goes_here" \
  https://api.provider.com/thing/you_want/index.json

That results in a lovely JSON payload that makes you happy.

Let’s say that according to the API documentation, /thing/you_want/ accepts query parameters so that you can scope what you want to know about. Excellent! Instinctively, you try the following…

curl -H "Authorization: Bearer access_token_goes_here" \
  https://api.provider.com/thing/you_want/index.json?scope=1

Rather than a scoped JSON payload that also makes you happy, you get back a message indicating that the API endpoint is displeased. Your sacrifice was deemed unworthy. Nay, YOU are unworthy. You are decidedly not happy.

What has gone wrong to anger the API gods so? You asked the wrong question of the API. More accurately, curl hasn’t formatted the request in quite the way you intuited it would.

To appease the API deities, the appropriate sacrifice comes in the form of a tweaked curl command. For example…

curl -G -H "Authorization: Bearer access_token_goes_here" \
  https://api.provider.com/thing/you_want/index.json \
  -d "query=scope=1"

We added a “-G” flag to make sure curl is sending a GET and not Continue reading

0

Xilinx Benefits From Intel FPGA Shortages

As AMD is getting closer to closing its $35 billion acquisition of FPGA maker Xilinx, it is natural to think about how well that business is doing and how it is competing against its main rival, Intel – specifically, the Programmable Solutions Group, formerly known as the free-standing Altera before the latter was acquired by Intel in June 2015 for $16.7 billion. …

Xilinx Benefits From Intel FPGA Shortages was written by Timothy Prickett Morgan at The Next Platform.

0

Distributed AI Training SETI-Style on Idle Cloud

Poor utilization is not the single domain of on-prem datacenters. Despite packing instances full of users, the largest cloud providers have similar problems. …

Distributed AI Training SETI-Style on Idle Cloud was written by Nicole Hemsoth at The Next Platform.

0

Tech Bytes: AppNeta Provides SASE Observability For Ops Teams (Sponsored)

Today on the Tech Bytes podcast we’re talking about how to get end-to-end observability into cloud-delivered security, including Cloud Access Security Brokers (CASBs) and SASE. Our sponsor is AppNeta.

0

Tech Bytes: AppNeta Provides SASE Observability For Ops Teams (Sponsored)

Today on the Tech Bytes podcast we’re talking about how to get end-to-end observability into cloud-delivered security, including Cloud Access Security Brokers (CASBs) and SASE. Our sponsor is AppNeta.

The post Tech Bytes: AppNeta Provides SASE Observability For Ops Teams (Sponsored) appeared first on Packet Pushers.

0

Emotet Is Not Dead (Yet) – Part 2

Emotet attacks leveraging malicious macros embedded in Excel files continue, with new variants and novel tactics, techniques, and procedures (TTPs). Following our recent report, we observed new waves of Emotet campaigns abusing legitimate Windows features, such as batch scripts and the mshta utility, combined with PowerShell, to deliver Emotet payloads.

In this follow-up blog post, we first provide an overview of the delivery processes of Emotet payloads in typical attacks. Then, we examine the recent variants and reveal how techniques evolved in these attacks.

Emotet payload delivery chain

The Emotet infection chain typically starts with a spam email containing a malicious document in the attachment (see Figure 1). The attachment can be either a Word document or an Excel file with embedded VBA or Excel 4.0 (XL4) macros. To entice the user to enable macro execution in Microsoft Word or Excel, the file displays social engineering content when opened. Once macro execution has been enabled, the embedded macro is executed, leading to the delivery process of an Emotet payload.

Figure 1: A typical Emotet payload delivery chain.

As highlighted in Figure 1, there are typically two ways to deliver an Emotet payload:

• Executing macros to download the payload Continue reading