NetworkingNexus.net

Kubernetes Pod Networking on AWS: Getting There from Here

Thinking about running Kubernetes on AWS? To optimize your chances of success, you’ll need to have a solid understanding of Kubernetes pod networking. As applications grow to span multiple containers deployed across multiple clusters, operating them becomes more complex. Containers are grouped into pods, and those pods can be networked and scaled to meet your specific needs.

Kubernetes provides an open source API to manage this complexity, but one size doesn’t fit all. So you’ll want to get a handle on the different methods available to support your project. Then when you’re ready to move forward, you’ll have a much clearer idea of what will work best for you. If this sounds challenging, not to worry. Our short video explains Kubernetes pod networking on AWS and can answer many of the questions you may have. We’ve also included some great examples to help guide you.

Want to learn more about Calico Enterprise? Check out these resources.

————————————————-

Free Online Training
Access Live and On-Demand Kubernetes Training

Calico Enterprise – Free Trial
Network Security, Monitoring, and Troubleshooting
for Microservices Running on Kubernetes

The post Kubernetes Pod Networking on AWS: Getting There from Here appeared first on Tigera.

A Place for Things and Things in Their Place

This morning I was going to go for a run and I needed to find a rain jacket to keep from getting completely soaked. I knew I had one in my hiking backpack but couldn’t locate it. I searched for at least ten minutes in every spot I could think of and couldn’t find it. That is, until I looked under the brain of the pack and found it right next to the pack’s rain cover. Then I remembered that my past self had put the jacket there for safe keeping because I knew that if I ever needed to use the pack rain cover I would likely need to have my rain jacket as well. Present me wasn’t as happy to find out past me was so accommodating.

I realized after this little situation that I’ve grown accustomed to keeping my bags organized in a certain way both for ease of use and ease of inspection. Whether it’s a hiking backpack or an IT sling bag full of gadgets I’ve always tried to set things up in simple, sane manner to figure out how to find the tools I need quickly and also discover if any of them are Continue reading

How Peering and Infrastructure Development Improved Connectivity in Kenya, Speeding Economic Growth

The country can become a continental digital leader with strengthened Internet Exchange Points (IXPs).

In January this year, Internet users in Kenya reached 22.86 million, a 16% jump from 2019. A leap that was made with no major impact on network quality and speed, and no increase in connectivity costs. Between 2012 and now, the percentage of mobile broadband subscribers increased 100-fold to cover nearly 42% of the country’s population, while the price of data decreased by 50%. This would have been unimaginable a decade ago when around 70% of the country’s traffic went through Europe.

A recent Internet Society report shows IXPs played an important role in this success. The report shines a light on how the combination of peering and Internet infrastructure development improved connectivity in Kenya. It discusses how Kenya was able to localize Internet traffic – from 30% in 2012 to 70% in 2019 – by growing its IXP membership, through attracting local, regional, and international networks, including popular Content Delivery Networks (CDNs). This allowed the local networks to efficiently exchange regional and international traffic without incurring major additional costs.

The report reveals how informed stakeholders and the local technical community in Kenya Continue reading

Heavy Networking 539: Preventing The 4poKalypse With Inter-Domain Multicast

The 4poKalypse is coming, and service providers need more tools in their toolbox to combat congestion in eyeball networks. Local content caches close to the eyeballs (pretty much how we do it today) isn’t going to be quite enough. Jake Holland of Akamai is here to tell us just why inter-domain multicast is important, and why...this time...we can make it work.

Heavy Networking 539: Preventing The 4poKalypse With Inter-Domain Multicast

The post Heavy Networking 539: Preventing The 4poKalypse With Inter-Domain Multicast appeared first on Packet Pushers.

Weekend Reads 091120

In our final article on Kubernetes RBAC, we are focusing on RBAC itself. Everything else in the series led towards this key piece. In part one we discussed authentication and authorization on a high level and in part two we focused specifically on authentication. Now let’s dive into authorization.

LitmusChaos is a CNCF sandbox project. Its mission is to help Kubernetes SREs and developers to find weaknesses in Kubernetes platform and applications running on Kubernetes by providing a complete Chaos Engineering framework and associated chaos experiments.

China’s drive for technological dominance has resulted in a long-term, government-driven national strategy. This includes the creation of native technologies which reflect local policies and politics, micromanagement of the internet from the top down, and the use of international standards development organisations (SDOs), such as the UN agency the International Telecommunication Union (ITU), to legitimize and protect these technologies in the global marketplace.

The implementation of prop-132 (AS0 for unallocated and unassigned spaces) is completed, and APNIC is now publishing an AS0 Route Origin Authorization (ROA) covering the undelegated IPv4 and IPv6 ranges under our management.

Privacy has become a business imperative. May 25, 2020, marked the two-year anniversary of General Data Protection Regulation Continue reading

DNS Flag Day 2020 – ISC

The DNS protocol needs refreshing but a global, distributed database is not easy to change. The folks leading the DNS architecture are making small but substantial changes once per year. There is a non-zero but small risk that something will break for some people. This year they are addressing DNS Fragmentation on UDP and required […]

Security Channel at AnsibleFest 2020

Security automation is an area that encompasses different practices, such as investigation & response, security compliance, hardening, etc. While security is a prominent topic now more than ever, all of these activities also greatly benefit from automation.

For the second year at AnsibleFest, we will have a channel dedicated to security automation. We talked with channel Lead Massimo Ferrari to learn more about the security automation channel and the sessions within it.

Security Channel

The sessions in this channel will show you how to introduce and consume Red Hat Ansible Automation Platform in different stages of maturity of your security organization as well as using it to share processes through cross-functional teams. Sessions include guidance from customers, Red Hat subject matter experts and certified partners.

What will Attendees learn?

The target audience is security professionals who want to learn how Ansible can support and simplify their activities, and automation experts tasked with expanding the footprint of their automation practice and support security teams in their organization. This track is focused on customer stories and technical guidance on response & remediation, security operations and vulnerability management use cases.

Content is suitable for both automation veterans and Continue reading

Guide to the Virtual Cloud Network at VMworld 2020

The countdown to VMworld 2020 is nearly at an end and we are eager to share our latest advancements in network and security virtualization that are powering the Virtual Cloud Network with you. With this year’s FREE virtual event having such a jam-packed agenda on all things virtualization, we’ve put together this comprehensive guide to navigating the Virtual Cloud Network.

Our engineers, technologists and customers will be dropping knowledge in over 100+ live and on-demand technical sessions, hands-on labs, and interactive roundtable sessions throughout the event, covering all technical levels from beginner to advanced. Read on to get a curated list of can’t-miss activities going on between September 29 and October 1.

If you haven’t already registered, make sure to do so here and then jump into the content catalog and schedule your sessions today. See you online!

(For Security-specific programming, check out this post on the top security sessions you must attend at VMworld)

Virtual Cloud Networking Education Track at VMworld

(Note: Scheduled Sessions are offered during several timeslots to

accommodate regional time zones. Click the session links to attend the most convenient one for you. And for the full-list of scheduled and on-demand sessions, click here. Continue reading

7 Benefits of Deploying a Hyper-Converged Infrastructure

HCI is more straightforward to manage than legacy alternatives. That means your tech staff can spend less time on mundane chores and focus their attention on more pressing matters.

NTC – Cisco Devnet With Stuart Clark

From barber to Technical Leader and Developer Advocate, learn how Stuart Clark on the Cisco DevNet team transformed his career over the past 15 years. In this episode, we talk with Stuart about his career journey, his role as a Developer Advocate focused on network automation, and the role Cisco DevNet can play along the way for those looking to enhance their automation skills. We close by asking the question, “Will there be a DevNet Expert exam?” Listen and find out!

Links:

DevNet: https://developer.cisco.com/
Automation Exchange: https://developer.cisco.com/network-automation/
Code Exchange: https://developer.cisco.com/codeexchange/
DevNet Certifications: https://developer.cisco.com/certification/

Stuart Clark

Guest

Jason Edelman

Host

Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/

The post NTC – Cisco Devnet With Stuart Clark appeared first on Network Collective.

Trust No One. And Be Quick About It.

The migration of apps to clouds and users to home requires rethinking security in a major way.

Add Watermarks to your Cloudflare Stream Video Uploads

Since the launch of Cloudflare Stream, our customers have been asking for a programmatic way to add watermarks to their videos. We built the Watermarks API to support a wide range of use cases: from customers who simply want to tell Stream “can you put this watermark image to the top right of my video?” to customers with more detailed asks such as “can you put this watermark image in a way it doesn’t take up more than 10% of the original video and with 20% opacity?” All that and more is now available at no additional cost through the Watermarks API.

What is Cloudflare Stream?

Cloudflare Stream provides out-of-the-box video infrastructure so developers can bring their app ideas to market faster. While building a video streaming app, developers must ask themselves questions like

“Where do we store the videos affordably?”
“How do we encode the videos to support users with varying Internet speeds?”
“How do we maintain our video pipeline in the long term?”

Cloudflare Stream is a single product that handles video encoding, storage, delivery and presentation (with the Stream Player.) Stream lets developers launch their ideas Continue reading

Musing: Hidden Complexity of Dual SIM Phones

It hadn’t occurred to me that having Dual SIMs in a smartphone has hidden aspects of complexity. In this slide, having multiple SIMs means thinking about activity – are both SIMs active at all times ? If so, are you willing to incur the battery and product penalty to have dual radios operating simultaneously. Or […]

Lenovo introduces four new HCI solutions

Lenovo Data Center Group on Thursday introduced four new hyperconverged infrastructure (HCI) products aimed at a variety of workloads, including virtual desktop infrastructure (VDI), SAP HANA, Microsoft Azure, and Kubernetes.HCI products have grown in popularity because they are easily deployed and can get a variety of workloads up and running quickly. HCI is available either in hardware/appliance form or as software. HCI hardware vendors are the usual suspects – HP Enterprise, Dell, Lenovo – while the software vendors include Nutanix and VMware.Lenovo is focused on ready-to-deploy HCI solutions from both software firms. It boasts that its hardware is easy to deploy and manage with simple updates, automatic scalability and a consumption-based use model.To read this article in full, please click here

Lenovo introduces four new HCI solutions

Video: ASICs 101

Earlier this year, Pete Lumbis returned as an ipSpace.net webinar guest speaker with a great presentation describing data center switching ASICs from the perspective of networking engineers. After a brief intro, he started with ASIC Basics… a topic which generated a 25-minute Q&A session.

All of the above-mentioned videos are available with Free ipSpace.net Subscription.

Getting Started with Docker Using Node – Part II

In part I of this series, we learned about creating Docker images using a Dockerfile, tagging our images and managing images. Next we took a look at running containers, publishing ports, and running containers in detached mode. We then learned about managing containers by starting, stopping and restarting them. We also looked at naming our containers so they are more easily identifiable.

In this post, we’ll focus on setting up our local development environment. First, we’ll take a look at running a database in a container and how we use volumes and networking to persist our data and allow our application to talk with the database. Then we’ll pull everything together into a compose file which will allow us to setup and run a local development environment with one command. Finally, we’ll take a look at connecting a debugger to our application running inside a container.

Local Database and Containers

Instead of downloading MongoDB, installing, configuring and then running the Mongo database as a service. We can use the Docker Official Image for MongoDB and run it in a container.

Before we run MongoDB in a container, we want to create a couple of volumes that Docker can manage to Continue reading

Server Hunger Is Stronger Than Economic Uncertainty

The appetite for compute capacity, and presumably also for storage and networking capacity, in the datacenter of the world might be waning in some sectors of the economy, but thanks to the voracious hunger of the hyperscalers and cloud builders and more than a few large enterprises that need to do more, not less, computing in the face of the coronavirus pandemic, server sales are now consistently at the levels we saw way back in the Dot-Com Boom more than twenty years ago. …

Server Hunger Is Stronger Than Economic Uncertainty was written by Timothy Prickett Morgan at The Next Platform.

Cisco extends Meraki SD-WAN to Microsoft Azure

Cisco Meraki added to its SD-WAN portfolio with support for workloads running in Microsoft Azure cloud environments.Specifically, Cisco said it has integrated its SD-WAN Powered by Cisco Meraki offering with Microsoft’s Azure Virtual WAN service, which will let customers automate secure connectivity between Meraki MX appliances at branch locations directly with the Azure service, regardless of geographical location.More about SD-WAN: How to buy SD-WAN technology: Key questions to consider when selecting a supplier • How to pick an off-site data-backup method • SD-Branch: What it is and why you’ll need it • What are the options for security SD-WAN? The Meraki SD-WAN package is tyically aimed at what Cisco calls “lean IT environments” and includes a variety of integrated branch connectivity, security, management, orchestration and automation support.To read this article in full, please click here

« Previous 1 … 848 849 850 851 852 … 3,795 Next »