0

Listen to the Hedge Podcast 39 to Learn about the Open Standards Everywhere Project

What is our Open Standards Everywhere (OSE) project all about? How did it get started? What are the project goals? What are some of the challenges web server operators face? How can we work together to make web servers more secure and available?

Recently Russ White and his team interviewed me on The Hedge Podcast Episode 39 to discuss all these questions and much more. I’ve known Russ for a good number of years and it was fun to talk with him and his co-hosts Eyvonne Sharp and Tom Ammon about all things related to the OSE project. I hope you enjoy listening to the episode as much as we enjoyed having the conversation!

I would encourage you to listen to some of the other Hedge podcast episodes, too, as they have some great content. A few I personally enjoyed included: episode 37 about DNS privacy; episode 31 about network operator groups (NOGs); and episode 30 with Ethan Banks from the Packet Pushers Network about why understanding the fundamentals of networking is so important.

Thank you to Russ, Eyvonne, and Tom for having me on the show!

Want to be more involved Continue reading

0

Nokia Mellows 5G Outlook for 2020

“There have been some customers that have slightly pushed back their plans, but by and large...

Read More »

0

Daily Roundup: Coronavirus Claims GSMA Jobs

Coronavirus claimed 200 GSMA jobs; IBM Cloud suffered a massive outage; and Versa helped service...

Read More »

0

Siemplify SOARs With Cloud-Native Security Operations

Siemplify competes against SOAR vendors including Palo Alto Networks, IBM, Splunk, and Swimlane...

Read More »

0

Making it Easier to Get Started with Cluster API on AWS

I’ve written a few articles about Cluster API (you can see a list of the articles here), but even though I strive to make my articles easy to understand and easy to follow along many of those articles make an implicit assumption: that readers are perhaps already somewhat familiar with Linux, Docker, tools like kind, and perhaps even Kubernetes. Today I was thinking, “What about folks who are new to this? What can I do to make it easier?” In this post, I’ll talk about the first idea I had: creating a “bootstrapper” AMI that enables new users to quickly and easily jump into the Cluster API Quick Start.

Normally, in order to use the Quick Start, there are some prerequisites that are needed first (these are all clearly listed on the Quick Start page):

• You need kubectl installed
• You need kind (which in turn requires Docker) or an existing Kubernetes cluster up and running

For Linux users (like myself), these prerequisites are pretty easy/simple to handle. But what if you’re a Windows or Mac user? Yes, you could use Docker Desktop and then install kind (or use docker-machine, if you’re feeling adventurous). Then you’d Continue reading

0

The Hedge Podcast Episode 39: Dan York and Open Standards Everywhere

The Internet Society exists to support the growth of the global ‘net across the world by working with stakeholders, building local connectivity like IXs and community based networks, and encouraging the use of open standards. On this episode of the Hedge, Dan York joins us to talk about the Open Standards Everywhere project which is part of the Internet Society. More information about Open Standards Everywhere can be found—

• At the project page
• At this blog post
• In this draft documentation on GitHub
• At this test site

download

0

14 IT certifications that will survive and thrive in the pandemic

These tech certifications not only have high value now, but employers will continue to value them as the coronavirus continues.

0

IBM Cloud Back Online After Mass Outage

Outage tracking services reported a surge in errors beginning shortly before 6 p.m. in the Eastern...

Read More »

0

The Pursuit Of Storage That Spans The Clouds

Every IT supplier has cloudy envy. And not just because utility-style pricing has become normalized by the big public clouds, but because they want to have a more regular, annuity-like revenue stream rather than always chasing the next deal. …

The Pursuit Of Storage That Spans The Clouds was written by Jeffrey Burt at The Next Platform.

0

Coronavirus Claims 200 Jobs at GSMA

Massive job cuts, which impacted about a fifth of the association’s workforce, hit four months...

Read More »

0

How To Manage Docker Hub Organizations and Teams

Docker Hub has two major constructs to help with managing users access to your repository images. Organizations and Teams. Organizations are a collection of Teams and Teams are a collection of DockerIDs.

There are a variety of ways of configuring your Teams within your Organization. In this blog post we’ll use a fictitious software company named Stark Industries which has a couple of development teams. One which works on the front-end of the application and the other that works on the back-end of the application. They also have a QA team and a DevOps team. 

We’ll want to set up our Teams so that each engineering team can push and pull the images that they create. We’ll give the DevOps team access privileges to pull images from the dev teams repos and the ability to push images to the repos that they own. We’ll also give the QA team read-only access to all the repos.

Organizations

In Docker Hub, an organization is a collection of teams. Image repositories can be created at the organization level. We are also able to configure notifications and link to source code repositories.

Let’s set up our Organization.

Open your favorite browser and navigate Continue reading

0

Day Two Cloud 052: Moving Back Home From The Cloud

Today's Day Two Cloud episode is a frank conversation about cloud migration, multicloud, cloud repatriation, and more. If you're here for rainbows and unicorns, prepare for disappointment. We talk about what's real, how expensive it can be to move to cloud, why people bring workloads back on premises, and more. Our guest is Bobby Allen, CTO at CloudGenera.

0

Day Two Cloud 052: Moving Back Home From The Cloud

Today's Day Two Cloud episode is a frank conversation about cloud migration, multicloud, cloud repatriation, and more. If you're here for rainbows and unicorns, prepare for disappointment. We talk about what's real, how expensive it can be to move to cloud, why people bring workloads back on premises, and more. Our guest is Bobby Allen, CTO at CloudGenera.

The post Day Two Cloud 052: Moving Back Home From The Cloud appeared first on Packet Pushers.

0

NTC – Security and Networking

The increased rate of change in networking isn’t just impacting the operational models used to run networks. Network security posture, infrastructure, and operations are having to adapt quickly as well. In this episode we sit down with Henry Jiang, CISO of Diligent Corporation, to talk about how security is adapting to current infrastructure trends.

---

Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/

The post NTC – Security and Networking appeared first on Network Collective.

0

High Availability Load Balancers with Maglev

Background

We run many backend services that power our customer dashboard, APIs, and features available at our edge. We own and operate physical infrastructure for our backend services. We need an effective way to route arbitrary TCP and UDP traffic between services and also from outside these data centers.

Previously, all traffic for these backend services would pass through several layers of stateful TCP proxies and NATs before reaching an available instance. This solution worked for several years, but as we grew it caused our service and operations teams many issues. Our service teams needed to deal with drops of availability, and our operations teams had much toil when needing to do maintenance on load balancer servers.

Goals

With the experience with our stateful TCP proxy and NAT solutions in mind, we had several goals for a replacement load balancing service, while remaining on our own infrastructure:

1. Preserve source IPs through routing decisions to destination servers. This allows us to support servers that require client IP addresses as part of their operation, without workarounds such as X-Forwarded-For headers or the PROXY TCP extension.
2. Support an architecture where backends are located across many racks and subnets. This prevents solutions that cannot Continue reading

0

How Should Network Architects Deal with Network Automation

A network architect friend of mine sent me a series of questions trying to figure out how he should approach network automation, and how deep he should go.

There is so much focus right now on network automation, but it’s difficult for me to know how to apply it, and how it all makes sense from an Architect’s PoV.

A network architect should be the bridge between the customer requirements and the underlying technologies, which (in my opinion) means he has to have a good grasp of both as opposed to fluffy opinions glanced from vendor white papers, or brushed off so-called thought leaders.

0

MANRS Fellowship Program Now Open

The first-ever MANRS (Mutually Agreed Norms for Routing Security) Fellowship Program is now accepting applications. If you are an emerging leader eager to improve the well-being of the Internet’s global routing system, apply now.

The program gives highly motivated individuals the chance to work alongside MANRS ambassadors, who are industry leaders participating in the Ambassador Program. Together, they will train diverse communities on good routing practices, analyze routing incidents, research into ways to secure routing, and survey the global policy landscape.

Fellows will improve their skills and bring new perspectives and ideas to MANRS. They will also gain valuable insights and networking opportunities from well-respected professionals called MANRS Ambassadors under the MANRS Ambassadors Program. The selection process for this program is currently underway.

The Internet Society supports this program as part of its work to reduce common routing threats and establish norms for network operations.

You can apply for a fellowship in three different areas: training, research, and policy. Each fellow will receive a stipend of $750 a month. There is no age requirement and you can apply for more than one category but will only be selected for one of them.

Online training

Responsible for: Conducting MANRS online tutorial Continue reading

0

Aruba Assembles SDN Tech for Edge Services Platform

Aruba Edge Services Platform is comprised of 35 services, including a dozen new insights that were...

Read More »

0

Daily Roundup: IBM Quits Facial Recognition Biz

IBM quit the facial recognition business; A10, Dell teamed up on application delivery; and Alibaba...

Read More »

0

Creating a Multi-AZ NAT Gateway with Pulumi

I recently had a need to test a configuration involving the use of a single NAT Gateway servicing multiple private subnets across multiple availability zones (AZs) within a single VPC. While there are notable caveats with such a design (see the “Caveats” section at the bottom of this article), it could make sense in some use cases. In this post, I’ll show you how I used TypeScript with Pulumi to automate the creation of this design.

For the most part, if you’re familiar with Pulumi and using TypeScript with Pulumi, this will be pretty straightforward. The code I’ll show you makes a couple assumptions:

1. It assumes you’ve already created the VPC and the subnets earlier in the code. I’ll reference the VPC object as vpc.
2. I’ll assume you’ve already created subnets in said VPC, and that the subnet-to-AZ ratio is 1:1 (exactly one subnet of each type—public or private—in each AZ). The code will reference the subnet IDs as pubSubnetIds (for public subnets) or privSubnetIds (for private subnets). (How to create the subnets and capture the list of IDs is left as an exercise for the reader. If you’d be interested in seeing how I do it, let me know. Continue reading