Split-tunnel VPNs—friend or foe?

Virtual private networks (VPNs) provide security when remote workers access corporate networks, but they’re notoriously slow. Backhauling all traffic for all remote users through the corporate data center just isn’t practical when work from home really starts to scale. Fortunately, VPNs can be configured to operate in more than one way.

Today, most organizations—regardless of size—use some combination of on-premises and public cloud computing. This means that some requests need to go to one or more corporate data centers, while some need to find their way to the Internet.

Traditional VPNs send all requests—both corporate-bound and Internet-bound—through the corporate network because that’s where the corporate information security defenses are located. Today, this approach is causing significant performance problems.

Scaling …

The most popular traditional solution to the problem of VPN performance problems was to just buy a bigger router or firewall. The overhead of the VPN tunnel on throughput isn’t that large, and many traditional corporate applications weren’t latency sensitive. This meant that performance problems usually occurred because the device where the VPNs terminated—the router or firewall—just didn’t have enough processing power to handle the required number of concurrent sessions at the current level of throughput usage.

Times have changed, Continue reading

Apstra ramps-up intent-based networking software, bolsters Juniper, SONiC support

Aiming to help customers support modern data-center networking technologies, Apstra has enriched its Intent-Based Networking software to include better operational features but also adds  more connectivity for its third party support of Juniper and open source SONiC environments.The company’s core Apstra Operating System (AOS) was built from the ground up to support IBN in that once running it keeps a real-time repository of configuration, telemetry and validation information to constantly ensure the network is doing what the customer wants it to do.To read this article in full, please click here

Apstra ramps-up intent-based networking software, bolsters Juniper, SONiC support

Aiming to help customers support modern data-center networking technologies, Apstra has enriched its Intent-Based Networking software to include better operational features but also adds  more connectivity for its third party support of Juniper and open source SONiC environments.The company’s core Apstra Operating System (AOS) was built from the ground up to support IBS in that once running it keeps a real-time repository of configuration, telemetry and validation information to constantly ensure the network is doing what the customer wants it to do.To read this article in full, please click here

Perimeter Security is Changing

The long standing tradition of having a secure network perimeter and a lightly protected interior has been going by the wayside for quite some time now. But the introduction of new models of connectivity are forcing us to change the way we look at security all together and invent whole new models for protecting our networks. In today’s episode we’re going to be exploring how these changes are impacting security and talk about some of these new models that meet the needs of modern networks.

 

Network Collective thanks NVIDIA for sponsoring today’s episode. NVIDIA is positioned as the leader in open networking and provides end-to-end solutions at all layers of the software and hardware stack. You can experience NVIDIA Cumulus in the Cloud for free!  Head on over to:

https://cumulusnetworks.com/automationpod

to see what a modern open network operating system looks like for yourself.
Mike Pfeiffer
Guest
Katherine McNamara
Guest
Tony Efantis
Host
Jordan Martin
Host

Outro Music:
Danger Storm Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 3.0 License
http://creativecommons.org/licenses/by/3.0/

The post Perimeter Security is Changing appeared first on Network Collective.

Chapterthon 2020: A Time for Internet Society Chapters and SIGs to Shine

The Internet Society 2020 Chapterthon is live and moving fast! We’re so excited to see the applications that have already ticked in.

What is Chapterthon?

Chapterthon is an opportunity for Chapters and Special Interest Groups (SIGs) to engage their members in a worldwide Internet Society competition. Out of dozens of applicants, one Chapterthon winner is selected and awarded prize money. But the real winner is the global community, who benefit from projects that help people connect to the Internet and help them do it securely.

This year is different – one that’s been full of difficulties, but also tenacity, creativity, and uplift. So we’re doing Chapterthon a little differently, too. We’re dedicating it to the people and the medium helping us through.


I Heart the Internet

Internet Society Chapters and SIGs have developed innovative solutions to help their communities through COVID-19. We want to shine a light on their work and make sure it becomes a resource for all. So we’re asking Chapterthon participants to submit tutorials and manuals for their creative and impactful projects. These blueprints will become part of the “I Heart the Internet Knowledge Hub,” a resource for peers and partners around the world to broaden the Continue reading

Virtual Open Office Hours – Late August 2020

Virtual Open Office is a chance for people to gather and discuss any topics you find interesting. Open to Anyone. No cost or commitment. I’ll be there with a coffee/tea or a beer/cocktail (as appropriate) Tuesday, Aug 25, 1000BST/0900UTC intended for European, Australia/Oceania and East Asian Friday, Aug 28 2000BST/1900UTC which might suit people in […]

New and improved Workers Docs

New and improved Workers Docs

I’m happy to announce several updates to the Workers Docs that will allow you to take full advantage of our Workers platform. We integrated your feedback about the Docs user experience and design. We reorganized and reformatted all of our content. We upgraded the Docs engine to add new UI components. The documentation is now intuitive to navigate and the content is now easy and enjoyable to read.

You can find our new and improved documentation site here and can find the docs engine on our repo.

We hope this creates a better developer experience for you and makes the Docs more approachable to beginners. We plan to use our work and improvements for the Workers Docs to revamp docs for other Cloudflare products too.

Here’s a more detailed breakdown of the Workers Docs update.

Content Organization: We reorganized site content into four categories to make it easier for you to read and find content: Tutorials, How-to guides, Technical reference, and Learning. The new content structure is heavily inspired by Divio’s documentation system.

New and improved Workers Docs

The tutorials section groups together step by step guides for building a specific project on Workers (e.g. teaching a beginner how to cook). The how-to guides Continue reading

The current state of the UK internet: outage tracker

ThousandEyes, a firm that monitors network infrastructure, measures the UK internet for Network World UK each week, covering Monday at 12:01 UTC through Sunday at 23:59 UTC.Click NEXT below to see the latest data.[Get regularly scheduled insights by signing up for Network World newsletters.] Week of 10-16 January 2022 ISPs. Outages at UK internet service providers (ISPs) decreased 38% from 13 to 8. Globally, they were 173, up 15% from 150 the prior week.Cloud providers. In the UK, there were 0 cloud outages for the fifth week running. Globally, the number was 10, up 400% from 2 the prior week.To read this article in full, please click here

Taking A Deeper Dive Into Marvell’s “Triton” ThunderX3

Say what you will, but among the many vendors that have tried to break into the datacenter with Arm server chips, Marvell, by virtue of the hard work done by Cavium, which it acquired, and Broadcom, which sold its “Vulcan” design to Cavium when it exited the business, has been the most successful in terms of shipments and ecosystem.

Taking A Deeper Dive Into Marvell’s “Triton” ThunderX3 was written by Timothy Prickett Morgan at The Next Platform.

5G can make for cost-effective private backhaul

Equipment vendors and carriers have talked a great game about 5G's promise. Its ability to handle the high-density wireless environments created by IoT deployments and provide gigabit speeds to smartphones has been trumpeted from the rooftops. 5G resources What is 5G? Fast wireless technology for enterprises and phones How 5G frequency affects range and speed Private 5G can solve some problems that Wi-Fi can’t Private 5G keeps Whirlpool driverless vehicles rolling CBRS can bring private 5G to enterprises But it's important to realize that the most eye-catching capabilities of 5G technology aren't here yet, as many of them depend on the 5G New Radio (NR) technology operating at high, millimeter-wave frequencies, which isn't yet widely available. Nor are the vast majority of endpoints currently on the market able to communicate on those sorts of networks.To read this article in full, please click here

1 937 938 939 940 941 3,873