5 things you need to know about pay-per-use hardware

Pay-per-use hardware models such as HPE GreenLake and Dell Apex are designed to deliver cloud-like pricing structures and flexible capacity to on-premises data centers. And interest is growing as enterprises look for alternatives to buying equipment outright for workloads that aren’t a fit for public-cloud environments.The concept of pay-per-use hardware has been around for more than a decade, but the buzz around it is growing, said Daniel Bowers, a former senior research director at Gartner. “There’s been a resurgence of interest in this for about four years, driven a lot by HPE and its GreenLake program.”To read this article in full, please click here

5 things you need to know about pay-per-use hardware

Pay-per-use hardware models such as HPE GreenLake and Dell Apex are designed to deliver cloud-like pricing structures and flexible capacity to on-premises data centers. And interest is growing as enterprises look for alternatives to buying equipment outright for workloads that aren’t a fit for public-cloud environments.The concept of pay-per-use hardware has been around for more than a decade, but the buzz around it is growing, said Daniel Bowers, a former senior research director at Gartner. “There’s been a resurgence of interest in this for about four years, driven a lot by HPE and its GreenLake program.”To read this article in full, please click here

5 things you nee to know about pay-per-use hardware

Pay-per-use hardware models such as HPE GreenLake and Dell Apex are designed to deliver cloud-like pricing structures and flexible capacity to on-premises data centers. And interest is growing as enterprises look for alternatives to buying equipment outright for workloads that aren’t a fit for public-cloud environments.The concept of pay-per-use hardware has been around for more than a decade, but the buzz around it is growing, said Daniel Bowers, a former senior research director at Gartner. “There’s been a resurgence of interest in this for about four years, driven a lot by HPE and its GreenLake program.”To read this article in full, please click here

5 things you nee to know about pay-per-use hardware

Pay-per-use hardware models such as HPE GreenLake and Dell Apex are designed to deliver cloud-like pricing structures and flexible capacity to on-premises data centers. And interest is growing as enterprises look for alternatives to buying equipment outright for workloads that aren’t a fit for public-cloud environments.The concept of pay-per-use hardware has been around for more than a decade, but the buzz around it is growing, said Daniel Bowers, a former senior research director at Gartner. “There’s been a resurgence of interest in this for about four years, driven a lot by HPE and its GreenLake program.”To read this article in full, please click here

5 things to know about pay-per-use hardware

Pay-per-use hardware models such as HPE GreenLake and Dell Apex are designed to deliver cloud-like pricing structures and flexible capacity to on-premises data centers. And interest is growing as enterprises look for alternatives to buying equipment outright for workloads that aren’t a fit for public-cloud environments.The concept of pay-per-use hardware has been around for more than a decade, but the buzz around it is growing, said Daniel Bowers, a former senior research director at Gartner. “There’s been a resurgence of interest in this for about four years, driven a lot by HPE and its GreenLake program.”To read this article in full, please click here

5 things to know about pay-per-use hardware

Pay-per-use hardware models such as HPE GreenLake and Dell Apex are designed to deliver cloud-like pricing structures and flexible capacity to on-premises data centers. And interest is growing as enterprises look for alternatives to buying equipment outright for workloads that aren’t a fit for public-cloud environments.The concept of pay-per-use hardware has been around for more than a decade, but the buzz around it is growing, said Daniel Bowers, a former senior research director at Gartner. “There’s been a resurgence of interest in this for about four years, driven a lot by HPE and its GreenLake program.”To read this article in full, please click here

Register for the 5th Annual Indigenous Connectivity Summit

Panorama view from above on Ulukhaktok, Northwest Territories, Canada

In its second year as a virtual event, the Indigenous Connectivity Summit will take place on 12-15 October 2021. The COVID-19 pandemic showed us that those who lack connectivity face the effects of starker inequalities. Millions of people across Canada and the United States still can’t take advantage of the benefits of a fast, affordable, […]

The post Register for the 5th Annual Indigenous Connectivity Summit appeared first on Internet Society.

Full Stack Journey 057: Open Policy Agent

What is Open Policy Agent (OPA)? And what can someone do with it? These are some of the questions that episode 57 of the Full Stack Journey podcast tackles. In this episode, Scott is joined by Diego Comas (@diegocomas on Twitter), a user/consumer of OPA, to discuss his direct experience in using OPA in real production environments.

Full Stack Journey 057: Open Policy Agent

What is Open Policy Agent (OPA)? And what can someone do with it? These are some of the questions that episode 57 of the Full Stack Journey podcast tackles. In this episode, Scott is joined by Diego Comas (@diegocomas on Twitter), a user/consumer of OPA, to discuss his direct experience in using OPA in real production environments.

The post Full Stack Journey 057: Open Policy Agent appeared first on Packet Pushers.

6 New Ways to Validate Device Posture

6 New Ways to Validate Device Posture
6 New Ways to Validate Device Posture

Cloudflare for Teams gives your organization the ability to build rules that determine who can reach specified resources. When we first launched, those rules primarily relied on identity. This helped our customers replace their private networks with a model that evaluated every request for who was connecting, but this lacked consideration for how they were connecting.

In March, we began to change that. We announced new integrations that give you the ability to create rules that consider the device as well. Starting today, we’re excited to share that you can now build additional rules that consider several different factors about the device, like its OS, patch status, and domain join or disk encryption status. This has become increasingly important over the last year as more and more people began connecting from home. Powered by the Cloudflare WARP agent, your team now has control over more health factors about the devices that connect to your applications.

Zero Trust is more than just identity

With Cloudflare for Teams, administrators can replace their Virtual Private Networks (VPNs), where users on the network were trusted, with an alternative that does not trust any connection by default—also known as a Zero Trust model.

Customers Continue reading

Musing: Does 802.1x Matter Anymore ?

802.1X has little relevance over time.  As distributed work becomes widespread, laptops and smartphones will not connect to campus or branch networks operated by IT departments. Home broadband, cafes, kids schools, 4G/5g etc. Each user device will have some software mechanism/agent/method to access resources in SaaS, on/off prem DC/cloud and on son There is a market […]

Are you ready for the 3G sunset?

All good things must come to an end, and that includes the 3G network that has been around since the late aughts. Telcos are supporting and building out vastly superior 5G networks, and they don’t want to spend time and money maintaining older technologies that aren’t used much.Removing older 3G towers makes space for 5G equipment and simplifies network management. Plus, some 3G spectrum can be used for 4G data, although 3G can’t be used for 5G, and 4G still has some years left.How to deploy 802.1x for Wi-Fi using WPA3 enterprise Verizon is cutting off 3G on Dec. 31, 2022; AT&T is turning off its 3G network in February 2022; and T-Mobile has multiple dates in 2022 for the various networks it manages since it is a mix of T-Mobile and Sprint legacy networks as a result of their merger.To read this article in full, please click here

How password hashing works on Linux

You may know that passwords are hashed on Linux systems, and the hashes are stored in the restricted access /etc/shadow file. But did you know that you can also determine the hash method that was used and report the number of days since a password was last changed from this file as well?To look at a user record in the /etc/shadow file, run a command like this:$ sudo grep nemo /etc/shadow You should see a line that looks something like this:nemo:$6$FVYIIgcEcObSsUcf$FsSBlV9soVt.Owbd4xnvhlZzjx73ZBQQBT0WMyah6qcdnH91tBf9C4EaYbRtr7jKGETP/TwBNjyrDFqhvK0NV1:18698:7:90:7::: Viewing and configuring password aging on Linux   In spite of how long that line is, it's quite easy to parse. The first two fields in the lines of this colon-separated file store:To read this article in full, please click here

How password hashing works on Linux

You may know that passwords are hashed on Linux systems, and the hashes are stored in the restricted access /etc/shadow file. But did you know that you can also determine the hash method that was used and report the number of days since a password was last changed from this file as well?To look at a user record in the /etc/shadow file, run a command like this:$ sudo grep nemo /etc/shadow You should see a line that looks something like this:nemo:$6$FVYIIgcEcObSsUcf$FsSBlV9soVt.Owbd4xnvhlZzjx73ZBQQBT0WMyah6qcdnH91tBf9C4EaYbRtr7jKGETP/TwBNjyrDFqhvK0NV1:18698:7:90:7::: Viewing and configuring password aging on Linux   In spite of how long that line is, it's quite easy to parse. The first two fields in the lines of this colon-separated file store:To read this article in full, please click here

Juniper ARP Policer on PTX

I’ve written before about the default ARP policer on Juniper MX. It can create some odd failure conditions when you’re connected to noisy networks such as large Internet Exchanges. Junos OS Evolved, as used on platforms like the PTX10003 has low default values for ARP and ICMPv6 ND DDoS protections. It will cause the same problems, but is easier to diagnose and mitigate.

Juniper DDoS Protection

Platforms like MX, QFX, PTX have Control Plane DDoS protections built in. These will automatically rate-limit various traffic types that hit the CPU. This is generally a Good Thing. Certain packet types get punted from the ASIC to the CPU, but the CPU can’t handle anywhere near the traffic levels that the forwarding ASIC can. Send enough special packets to a router, choke the CPU, and you might be able to knock things offline. So having default policies to rate-limit traffic makes sense.

Platform Defaults

Juniper might have “One Junos” but we know it’s not that simple. Behavior varies between platforms. Check these default values for some DDoS protections for different platforms:

Protocol MX QFX PTX
ARP 20,000 500 500
NDPv6 20,000 N/A 500
ICMP 20,000 N/A 500
BGP 20,000 3,000 5,000

Note Continue reading

Using Calico with Kubespray

In the Kubernetes ecosystem there are a variety of ways for you to provision your cluster, and which one you choose generally depends on how well it integrates with your existing knowledge or your organization’s established tools.

Kubespray is a tool built using Ansible playbooks, inventories, and variable files—and also includes supplemental tooling such as Terraform examples for provisioning infrastructure. If you’re already using Ansible for configuration management, Kubespray might be a good fit, and there’s even documentation for integrating with your existing Ansible repository.

There are other reasons Kubespray might be a good solution: maybe you want to use the same tooling to deploy clusters on both bare metal and in the cloud, or you might have a niche use case where you have to support different Linux distributions. Or perhaps you want to take advantage of the project’s composability, which allows you to select which components you’d like to use for a variety of services, such as your container runtime or ingress controller, or—particularly relevant to this blog post—your CNI.

In this post, we’ll go over enabling Calico when following the Quick Start tutorial or using Vagrant to deploy Kubernetes locally, as well as how to configure your Continue reading

1 672 673 674 675 676 3,835