What network engineers can learn from web developers when thinking SDN.
|
|
- Horatio Harris
- 8 years ago
- Views:
Transcription
1 What network engineers can learn from web developers when thinking SDN. NETNOD Meeting October 2015 Thomas Mangin Director at various shops ( Exa Networks, IXLeeds, LINX ) Also Developer, Network Engineer, Peering Advocate, Jitsuka,
2 Unofficial Table of Contents 1. Presenting my very biased view Profit 4. Q&A on profit claims 5. Beer?
3 Table of Contents 1. Look at web vs net roles 2. Look at the free tools available 3. Present a way to automate network change 4. Q&A 5. Beer with more Q&A if you wish! This is NOT an SDN presentation.. Well, kind of.
4 What is needed Dev / Ops / Sysadmin Network Engineer To update the application easily To monitor the application To detect / prevent attacks To announce routes easily To monitor the network To detect / block DDOS Objective Provide High Availability Objective Provide High Availability
5 10 years ago: Dev/Admin - Network Engineer Scope: the application/server Little configuration Great deal of programming Did not have to understand networking Scope: the network Great deal of configuration Little programming Did not have to understand programming Nothing much to share or learn from each others
6 More recently: DevOPS - NetOPS Looking after the full stack servers and applications, but a few switches / routers Little of configuration Great deal of programming Looking after the network Mostly networking gear, but a few servers and applications Great deal of configuration Little programming Who is in charge of the TOR switch?
7 Hardware / Software Stack An open source OS ( Linux, *BSD) On commodity hardware Client Server HTTP/1.1, SPEEDY, HTML5, JSON Centralised One database (replicated / sharded) Well Automated Servers are auto-provisioned Supposed to be identical Plenty of Open-Source options Stack A buggy proprietary OS on an RE All using similar ASIC Peer-to-Peer BGP, IS-IS, OSPF Decentralised Fault tolerant design Rarely Automated Routers still manually configured Supposed to be identical Plenty of commercial solutions
8 The DevOPS is well looked after Plenty of tools Easy update / change / rollback ( ansible, chef, puppet ) Performance visibility ( statsd, graphana, ) Fault detection ( sensu, riemann, sentry ) Many cloud services ( pager duty, new relic, datadog, opsview,...) Many are big open source users And contributors Distributed database, Orchestration,
9 Is the Network Engineer so lucky? More Automation / Centralisation Router configuration generation Mostly for/by the big guys Every vendor/network has its proprietary solution which does not integrate with another YANG seems to be the industry answer to this Still some good tools exists vhttp:// Just not as many or please tell me about it during the Q&A
10 The DevOps stack web server application database Also known as LAMP stack FreeBSD, NGINX, PostGreSQL, Python.. Nowdays also needs Javascript and JSON and Every kid owning a raspberrypi knows how to write a web app beginner@home> cd ~/website; python -m SimpleHTTPServer Serving HTTP on port 8000 Every network engineer should be able to benefit from SDN
11 The Network Engineer stack BGP seems to HTTP of networking Simple, easy to understand, TCP based network protocol vhttps://github.com/exa-networks/exabgp/wiki/other-oss-bgpimplementations Could be OpenFlowone day (Ab)used by service providers since forever PERL based scripts, first RTBH Microsoft BGP as IGP in datacenter The SDN way I will speak of today, but not from far the only one
12 In the meanwhile Linux on generic ASIC Cumulus Linux on EdgeCore/Quanta/DELL Mostly on Trident + / Trident 2 chipsets NetDevOps ( a mouthful ) vhttp:// Userland fast performance TCP stack vhttps://github.com/luigirizzo/netmap vhttps://github.com/snabbco/snabbswitch/ On newer Intel chipset Filtering the DFZ to fit in TCAM vhttp:// using PMACCT
13 BGP stack BGP application database ExaBGP was created for this use Now quite widely used International backbones Large websites How to use ExaBGP is left as an exercise to the reader But I am available should you have any questions You can or jabber me at surname dot com What network engineers can learn from web developers when thinking SDN NetNOD Oct 2015
14 Monitoring, using BGP Written by a Daniel Piekacz (874 LOC)
15 Monitoring, using BGP Article by Colin Petrie RIPE experimental real-time RIS
16 Preventing DDOS, using BGP Written by Pavel Odintsov Flow collector ( SFLOW, NETFLOW, IPFIX ) Detect abnormal flows Inject IPv4/IPv6/FlowSpec using ExaBGP Other sources vhttps:// vhttps:// vhttp://perso.nautile.fr/prez/fgabut-flowspec-frnog-final.pdf
17 High Availability, using BGP Written by Vincent Bernat (534 LOC) Host HA services Announce service IP (/32) only when the service is up and running MED can be used for active / passive Or AnyCastyour DNS / NTP / HTTP service vhttp://thomas.mangin.com/data/pdf/sysadmin 4 - Mangin - BGP for sysadmin.pdf Similar solution vhttps://github.com/pyke369/exabgp-helpers
18 High Availability, using BGP Article by Allan Feid Replacing load balancer with routers Flow based balancing, controlled with BGP
19 Other possible usage, using BGP Intelligent network programming Has been done with ExaBGP (NDA, no open source solution ATM) Similar commercial offering vhttp:// vhttp:// vhttp://
20 MAD ideas, using ExaBGP Resilient Route Server My mad idea
21 ExaBGP SDN using BGP (and a little programming) Control based idea taken from SQUID Can be controlled using any language from bash to C++ Previous presentations on ExaBGP vhttp://thomas.mangin.com/data/pdf/ What network engineers can learn from web developers when thinking SDN NetNOD Oct 2015
22 Questions To help you raise your eyes from the laptop Who here already use ExaBGP What for? Where is my beer for my hard work? What other solutions exist for the Network Engineer If it is not ExaBGP based, you are doing it wrong.. :p Thank you. What network engineers can learn from web developers when thinking SDN NetNOD Oct 2015
You ll need to have: It d be great if you have:
DevOps We re looking for a Development Operations Developer with a passion for experimentation. If you re interested in helping us build the future of mobile healthcare, this job is for you. A strong background
More informationCheap and efficient anti-ddos solution
Cheap and efficient anti-ddos solution Who am I? Alexei Cioban Experience in IT 13 years CEO & Founder IT-LAB 7 years IT trainings 5 years 2 About company Year of foundation - 2007 12 employees www.it-lab.md
More informationBuilding a small Data Centre
Building a small Data Centre Cause we re not all Facebook, Google, Amazon, Microsoft Karl Brumund, Dyn RIPE71 1 Dyn what we do DNS, email, Internet Intelligence from where 28 sites, 100s of probes, clouds
More informationPluribus Netvisor Solution Brief
Pluribus Netvisor Solution Brief Freedom Architecture Overview The Pluribus Freedom architecture presents a unique combination of switch, compute, storage and bare- metal hypervisor OS technologies, and
More informationWho is Generating all This Traffic?
Who is Generating all This Traffic? Network Monitoring in Practice Luca Deri Who s ntop.org? Started in 1998 as open-source monitoring project for developing an easy to use passive monitoring
More informationDDoS Attacks. An open-source recipe to improve fast detection and automate mitigation techniques
DDoS Attacks An open-source recipe to improve fast detection and automate mitigation techniques Vicente De Luca Sr. Network Engineer vdeluca@zendesk.com AS21880 / AS61186 Introduction Tentative to solve:
More informationFlow Analysis Versus Packet Analysis. What Should You Choose?
Flow Analysis Versus Packet Analysis. What Should You Choose? www.netfort.com Flow analysis can help to determine traffic statistics overall, but it falls short when you need to analyse a specific conversation
More informationCisco To Juniper. Thomas Mangin Exa Networks LINX 51
Cisco To Juniper Thomas Mangin Exa Networks LINX 51 Scope This presentation is not about : Juniper vs Cisco A line per line conversion analysis It is about Giving you an overview how hard/easy integrating
More informationSoftware Defined Networks Four Years Later. Quo Vadis, SDN? Ivan Pepelnjak (ip@ipspace.net) Network Architect. ipspace.net AG
Software Defined Networks Four Years Later Quo Vadis, SDN? Ivan Pepelnjak (ip@ipspace.net) Network Architect ipspace.net AG Who is Ivan Pepelnjak (@ioshints) Past Kernel programmer, network OS and web
More informationEffect of anycast on K-root
Effect of anycast on K-root Some early results 1 K root anycast deployment 3 global nodes (BGP transit) LINX... 5459 25152 25152 i AMS-IX... 25152 25152 25152 i Tokyo (since 5/2005)... 25152 25152 25152
More informationTraffic analysis with NetFlow
Traffic analysis with NetFlow Paolo Lucente http://www.pmacct.net/ RIPE Regional meeting, Dubrovnik Sep 2011 Traffic analysis with NetFlow Agenda o o whoami: Paolo & pmacct Ramblings:
More informationModern Web development and operations practices. Grig Gheorghiu VP Tech Operations Nasty Gal Inc. @griggheo
Modern Web development and operations practices Grig Gheorghiu VP Tech Operations Nasty Gal Inc. @griggheo Modern Web stack Aim for horizontal scalability! Ruby/Python front-end servers (Sinatra/Padrino,
More informationDetecting BGP hijacks in 2014
Detecting BGP hijacks in 2014 Guillaume Valadon & Nicolas Vivet Agence nationale de la sécurité des systèmes d information http://www.ssi.gouv.fr/en NSC - November 21th, 2014 ANSSI - Detecting BGP hijacks
More informationRelease Notes for PicOS 2.4
January, 2015 Version: 25 www.pica8.com Pica8, Inc. 1032 Elwell Court, Suite 105 Palo Alto, CA. 94303 +1 (650) 614-5838 sales@pica8.com support@pica8.com Copyright 2015 Pica8 Inc. Pica8 is a registered
More informationPalo Alto Networks. Security Models in the Software Defined Data Center
Palo Alto Networks Security Models in the Software Defined Data Center Christer Swartz Palo Alto Networks CCIE #2894 Network Overlay Boundaries & Security Traditionally, all Network Overlay or Tunneling
More informationDDOS in academic Networks. Herramientas para la seguridad prevención y mitigación de DDOS. CSUC. 3 de Abril 2014
DDOS in academic Networks Herramientas para la seguridad prevención y mitigación de DDOS. CSUC. 3 de Abril 2014 Academic networks? Real Target for DDOS? Lesson learned; DDOS @RedIRIS Mitigation Projects
More informationTraffic Diversion Techniques for DDoS Mitigation using BGP Flowspec. Leonardo Serodio leonardo.serodio@alcatel-lucent.com May 2013
Traffic Diversion Techniques for DDoS Mitigation using BGP Flowspec Leonardo Serodio leonardo.serodio@alcatel-lucent.com May 2013 Distributed Denial of Service (DDoS) Attacks DDoS attack traffic consumes
More informationArista Software Define Cloud Networking
Reinventing Data Center Switching Arista Software Define Cloud Networking YaJian Huang - Systems Engineering Manager APAC yj@arista.com Arista Networks: Did You Know? Arista switches are deployed in production
More informationSoftware Defined Networking A quantum leap for Devops?
Software Defined Networking A quantum leap for Devops? TNG Technology Consulting GmbH, http://www.tngtech.com/ Networking is bottleneck in today s devops Agile software development and devops is increasing
More informationIntroduction to Software Defined Networking
Introduction to Software Defined Networking Introduction to SDN Ahmed Maged MENOG 15 Dubai April 2015 @amaged amaged@xegypt.org Agenda What is SDN and What it is not SDN Trends Getting Ready for SDN 2
More informationRedundancy Doesn't Always Mean "HA" or "Cluster"
Redundancy Doesn't Always Mean "HA" or "Cluster" A cautionary tale against using hammers to solve all redundancy and resiliency problems... OpenStack Design Summit Oct 2012 Randy Bias @randybias CTO, Cloudscaling
More informationSoftware Defined Networking What is it, how does it work, and what is it good for?
Software Defined Networking What is it, how does it work, and what is it good for? slides stolen from Jennifer Rexford, Nick McKeown, Michael Schapira, Scott Shenker, Teemu Koponen, Yotam Harchol and David
More informationMonitoring high-speed networks using ntop. Luca Deri <deri@ntop.org>
Monitoring high-speed networks using ntop Luca Deri 1 Project History Started in 1997 as monitoring application for the Univ. of Pisa 1998: First public release v 0.4 (GPL2) 1999-2002:
More informationSDN Services at the Customer Edge
WHITEPAPER SDN Services at the Customer Edge White Box SDN Foundation for Strategic Advantage SDN Services at the Customer Edge White Box SDN Foundation for Strategic Advantage Businesses and consumers
More informationMaking SDN a Reality. Douglas Gourlay Vice President Arista Networks. Software Defined Cloud Networks
Making SDN a Reality Douglas Gourlay Vice President Arista Networks What is SDN? Purist View a strict separation of control plane and data plane SDN = Openflow Pragmatic View a network architecture designed
More informationMPLS WAN Explorer. Enterprise Network Management Visibility through the MPLS VPN Cloud
MPLS WAN Explorer Enterprise Network Management Visibility through the MPLS VPN Cloud Executive Summary Increasing numbers of enterprises are outsourcing their backbone WAN routing to MPLS VPN service
More informationMonitor Open stack environments from the bottom up and front to back. Roger Ruttimann VP Engineering, GroundWork OpenSource November 17, 2015
Monitor Open stack environments from the bottom up and front to back Roger Ruttimann VP Engineering, GroundWork OpenSource November 17, 2015 What s ahead of us Overview: The Impact of Virtualization on
More informationNetFlow & BGP multi-path: quo vadis?
NetFlow & BGP multi-path: quo vadis? Paolo Lucente Elisa Jasinska Netnod, Stockholm Agenda About Netflix About pmacct Brief digression on BGP ADD-PATHS Putting all
More informationUse Cases for the NPS the Revolutionary C-Programmable 7-Layer Network Processor. Sandeep Shah Director, Systems Architecture EZchip
Use Cases for the NPS the Revolutionary C-Programmable 7-Layer Network Processor Sandeep Shah Director, Systems Architecture EZchip Linley Processor Conference Oct. 6-7, 2015 1 EZchip Overview Fabless
More informationHow NOC manages and controls inter-domain traffic? 5 th tf-noc meeting, Dubrovnik nino.ciurleo@garr.it
How NOC manages and controls inter-domain traffic? 5 th tf-noc meeting, Dubrovnik nino.ciurleo@garr.it Agenda Inter-domain traffic: o how does NOC monitor and control it? Common case as example: new BGP
More informationIntroduction. The Inherent Unpredictability of IP Networks # $# #
Introduction " $ % & ' The Inherent Unpredictability of IP Networks A major reason that IP became the de facto worldwide standard for data communications networks is its automated resiliency based on intelligent
More informationBrain-Slug: a BGP-Only SDN for Large-Scale Data-Centers
Global Foundation Services C# DATA CENTERS NETWORKS SERVERS ENERGY SOFTWARE SECURITY Brain-Slug: a BGP-Only SDN for Large-Scale Data-Centers Adel Abouchaev, Tim LaBerge, Petr Lapukhov, Edet Nkposong Presentation
More informationCore and Pod Data Center Design
Overview The Core and Pod data center design used by most hyperscale data centers is a dramatically more modern approach than traditional data center network design, and is starting to be understood by
More informationSDN_CDN Documentation
SDN_CDN Documentation Release 0.1.1 introom9 October 27, 2015 Contents 1 What s it about 1 2 Get the code 3 3 Contents: 5 3.1 Overview................................................. 5 3.2 sdn_module................................................
More informationOpen Source Multi-Cloud, Multi- Tenant Automation in the cloud with SlipStream PaaS
Open Source Multi-Cloud, Multi- Tenant Automation in the cloud with SlipStream PaaS A professional open source solution Robert Branchat, SixSq 5 July 2014 Lyon, France Based in Geneva, Switzerland Founded
More informationMonitoring backbone networks
R O N E N N M A N I A D U C A T I O E T W O R K Ro Net Edu Monitoring backbone networks Manuel Șubredu, Valeriu Vraciu RoEduNet Chișinău, September 9, 2014 Agenda Why? What? How? Tools? Facts! Why? A picture
More informationBest of Breed of an ITIL based IT Monitoring. The System Management strategy of NetEye
Best of Breed of an ITIL based IT Monitoring The System Management strategy of NetEye by Georg Kostner 5/11/2012 1 IT Services and IT Service Management IT Services means provisioning of added value for
More informationTE in action. Some problems that TE tries to solve. Concept of Traffic Engineering (TE)
1/28 2/28 TE in action S-38.3192 Verkkopalvelujen tuotanto S-38.3192 Network Service Provisioning Networking laboratory 3/28 4/28 Concept of Traffic Engineering (TE) Traffic Engineering (TE) (Traffic Management)
More informationIntel IT Cloud Extending OpenStack* IaaS with Cloud Foundry* PaaS
Intel IT Cloud Extending OpenStack* IaaS with Cloud Foundry* PaaS Speaker: Catherine Spence, IT Principal Engineer, Cloud Computing Acknowledgements: Aaron Huber, Jon Price November 2014 Legal Notices
More informationNetwork Virtualization and Application Delivery Using Software Defined Networking
Network Virtualization and Application Delivery Using Software Defined Networking Project Leader: Subharthi Paul Washington University in Saint Louis Saint Louis, MO 63130 Jain@cse.wustl.edu Keynote at
More informationSolution for private cloud computing
The CC1 system Solution for private cloud computing 1 Outline What is CC1? Features Technical details System requirements and installation How to get it? 2 What is CC1? The CC1 system is a complete solution
More informationThe benefits of BGP for every service provider
The benefits of BGP for every service provider UKUUG - Spring 2011 24th of March 2011 Thomas Mangin Exa Networks Whatever a speaker is missing in depth he will compensate for in length Montesquieu NO Networking
More informationHandling Flash Crowds From Your Garage
Handling Flash Crowds From Your Garage Jeremy Elson and Jon Howell Microsoft Research USENIX ATC 2008 Scaling For Many Users Scaling For Many Users... quickly Scaling For Many Users... quickly... on a
More informationData Center Use Cases and Trends
Data Center Use Cases and Trends Amod Dani Managing Director, India Engineering & Operations http://www.arista.com Open 2014 Open Networking Networking Foundation India Symposium, January 31 February 1,
More informationOpen Source Software for Routing
APNIC 34 Open Source Software for Routing A look at the status of Open Source Software for Routing Martin Winter OpenSourceRouting.org 1 Who is OpenSourceRouting Quick Overview of what we do and who we
More information! JANOG36!BoF!! maoke@bbix.net! paolo@pmacct.net!! JANOG36!mee:ng,!Kitakyushu!!Jul!2015!
! JANOG36!BoF!! maoke@bbix.net! paolo@pmacct.net!! JANOG36!mee:ng,!Kitakyushu!!Jul!2015! Introduc:on! JANOG36!mee:ng,!Kitakyushu!!Jul!2015! pmacct!is!openjsource,!free,!gpl ed!sooware! libpcap MySQL PgSQL
More informationBRINGING NETWORKS TO THE CLOUD ERA
BRINGING NETWORKS TO THE CLOUD ERA SDN enables new business models Aruna Ravichandran VICE PRESIDENT, MARKETING AND STRATEGY ARAVICHANDRAN@JUNIPER.NET SOFTWARE DEFINED NETWORKING (SDN), JUNIPER NETWORKS
More informationHO5604 Deploying MongoDB. A Scalable, Distributed Database with SUSE Cloud. Alejandro Bonilla. Sales Engineer abonilla@suse.com
HO5604 Deploying MongoDB A Scalable, Distributed Database with SUSE Cloud Alejandro Bonilla Sales Engineer abonilla@suse.com Agenda SUSE Cloud Overview What is MongoDB? 2 Getting familiar with the Cloud
More informationCompass Deploying and Monitoring a Software Defined Infrastructure
Compass Deploying and Monitoring a Software Defined Infrastructure Toward Software Defined Infrastructure Warehouse of bare-metal devices Commoditization and open standard hardware design Significantly
More informationSpotlight On Backbone Technologies
Spotlight On Backbone Technologies Shawn Stevens Technical Lead, Data Center Technologies CCIE #4618 shawn.stevens@cdw.com CDW.com/network 800.800.4239 Agenda Overview of Software-Defined Networking (SDN)
More informationQRadar Security Intelligence Platform Appliances
DATASHEET Total Security Intelligence An IBM Company QRadar Security Intelligence Platform Appliances QRadar Security Intelligence Platform appliances combine typically disparate network and security management
More informationSDN and Open Ethernet Switches Empower Modern Data Center Networks
SDN and Open Ethernet Switches Empower Modern Data Center Networks Jeff Doyle Big Switch Networks (Jeff.Doyle@bigswitch.com) April 2015 1 What Haunts Data Center Admins? Poor visibility into the network
More informationSOFTWARE-DEFINED NETWORKING AND OPENFLOW
SOFTWARE-DEFINED NETWORKING AND OPENFLOW Eric Choi < echoi@brocade.com> Senior Manager, Service Provider Business Unit, APJ 2012 Brocade Communications Systems, Inc. EPF 7 2012/09/17 Software-Defined Networking
More informationInfrastructure for active and passive measurements at 10Gbps and beyond
Infrastructure for active and passive measurements at 10Gbps and beyond Best Practice Document Produced by UNINETT led working group on network monitoring (UFS 142) Author: Arne Øslebø August 2014 1 TERENA
More informationTraffic & Peering Analysis
Traffic & Peering Analysis or how I learned to stop worrying and love route hijacking Pete Crocker pete@packetdesign.com Agenda Alternate methods of traffic / peering analysis Traffic Matrices Pros & Cons
More informationBROCADE NETWORKING: EXPLORING SOFTWARE-DEFINED NETWORK. Gustavo Barros Systems Engineer Brocade Brasil
BROCADE NETWORKING: EXPLORING SOFTWARE-DEFINED NETWORK Gustavo Barros Systems Engineer Brocade Brasil Software- Defined Networking Summary Separate control and data planes Networks are becoming: More programmatic
More informationCloudify and OpenStack Heat
Cloudify and OpenStack Heat General Cloudify is an application orchestration platform that provides a complete solution for automating and managing application deployment and DevOps processes on top of
More informationTesting Software Defined Network (SDN) For Data Center and Cloud VERYX TECHNOLOGIES
Testing Software Defined Network (SDN) For Data Center and Cloud VERYX TECHNOLOGIES Table of Contents Introduction... 1 SDN - An Overview... 2 SDN: Solution Layers and its Key Requirements to be validated...
More informationThe Virtualization Practice
The Virtualization Practice White Paper: Managing Applications in Docker Containers Bernd Harzog Analyst Virtualization and Cloud Performance Management October 2014 Abstract Docker has captured the attention
More informationCloud-Scale BGP and NetFlow Analysis. Jim Frey, VP Product, Kentik Technologies December 15, 2015
Cloud-Scale BGP and NetFlow Analysis Jim Frey, VP Product, Kentik Technologies December 15, 2015 Agenda Common NetOps Stress points Helpful Data Sets NetFlow, BGP Handling NetFlow and BGP at Cloud Scale
More informationDell Networking ARGOS 24/03/2016. Nicolas Roughol. Networking Sales Engineer. Tel : +33 6 79 34 90 28. nicolas_roughol@dell.com
Dell Networking ARGOS 24/03/2016 Nicolas Roughol Networking Sales Engineer Tel : +33 6 79 34 90 28 nicolas_roughol@dell.com Dell Networking Foundational elements for the future-ready enterprise Dell Networking
More information299-01 Q&A. DEMO Version
299-01 Riverbed Certified Solutions Professional Network Performance Management Q&A DEMO Version Copyright (c) 2014 Chinatag LLC. All rights reserved. Important Note Please Read Carefully For demonstration
More informationThe State of Application Delivery in 2015
The State of Application Delivery in 2015 a report by F5 f5.com/soad 1 Introduction F5 surveyed customers from more than 300 organizations (of all sizes) across a broad spectrum of vertical markets such
More informationAnycast Rou,ng: Local Delivery. Tom Daly, CTO h<p://dyn.com Up,me is the Bo<om Line
Anycast Rou,ng: Local Delivery Tom Daly, CTO h
More informationOpenMake Dynamic DevOps Suite 7.5 Road Map. Feature review for Mojo, Meister, CloudBuilder and Deploy+
OpenMake Dynamic DevOps Suite 7.5 Road Map Feature review for Mojo, Meister, CloudBuilder and Deploy+ Release Date: August 2012 Dated: May 21, 2012 Table of Contents OpenMake Dynamic DevOps Suite 7.5 Road
More informationPassively Monitoring Networks at Gigabit Speeds Using Commodity Hardware and Open Source Software. Luca Deri January 2003
Passively Monitoring Networks at Gigabit Speeds Using Commodity Hardware and Open Source Software Luca Deri January 2003 Current Situation: Applications Most modern applications are bandwidth hungry (P2P).
More informationSDN AND SECURITY: Why Take Over the Hosts When You Can Take Over the Network
SDN AND SECURITY: Why Take Over the s When You Can Take Over the Network SESSION ID: TECH0R03 Robert M. Hinden Check Point Fellow Check Point Software What are the SDN Security Challenges? Vulnerability
More informationFluke Networks NetFlow Tracker
Fluke Networks NetFlow Tracker Quick Install Guide for Product Evaluations Pre-installation and Installation Tasks Minimum System Requirements The type of system required to run NetFlow Tracker depends
More informationNETWORK OPERATING SYSTEMS. By: Waqas Ahmed (C.E.O at Treesol)
NETWORK OPERATING SYSTEMS By: Waqas Ahmed (C.E.O at Treesol) LEARN THE BASICS The ABC of Network Operating System HARDWARE VS SOFTWARE Hardware: The physical part of the computer. We can touch it. Software:
More informationNext-Gen Securitized Network Virtualization
Next-Gen Securitized Network Virtualization Effective DR and Business Continuity Strategies Simplify when the lights go out www.ens-inc.com Your premiere California state government technology provider.
More informationARISTA WHITE PAPER Simplifying Network Operations through Data Center Automation
ARISTA WHITE PAPER Simplifying Network Operations through Data Center Automation It s simply not good enough to have a great and scalable network alone. A data center can have tens of thousands of compute,
More informationNetFlow Tracker Overview. Mike McGrath x ccie CTO mike@crannog-software.com
NetFlow Tracker Overview Mike McGrath x ccie CTO mike@crannog-software.com 2006 Copyright Crannog Software www.crannog-software.com 1 Copyright Crannog Software www.crannog-software.com 2 LEVELS OF NETWORK
More informationLoad Balancer Comparison: a quantitative approach. a call for researchers ;)
Load Balancer Comparison: a quantitative approach a call for researchers ;) Complex Internet infrastructure high performance systems clusters grids high availability systems resilient storage resilient
More informationThe ntop Project: Open Source Network Monitoring
The ntop Project: Open Source Network Monitoring Luca Deri 1 Agenda 1. What can ntop do for me? 2. ntop and network security 3. Integration with commercial protocols 4. Embedding ntop 5. Work in
More informationAplikacija novi vladar poslovanja. Dino Novak F5 Networks
Aplikacija novi vladar poslovanja Dino Novak F5 Networks What is an application nowdays? Device native or HTTP based (no longer on client only) Dynamic (many server GET/PUT requests) Talks to backend service(s)
More informationDetection of illegal gateways in protected networks
Detection of illegal gateways in protected networks Risto Vaarandi and Kārlis Podiņš Cooperative Cyber Defence Centre of Excellence Tallinn, Estonia firstname.lastname@ccdcoe.org 1. Introduction In this
More informationDecoding DNS data. Using DNS traffic analysis to identify cyber security threats, server misconfigurations and software bugs
Decoding DNS data Using DNS traffic analysis to identify cyber security threats, server misconfigurations and software bugs The Domain Name System (DNS) is a core component of the Internet infrastructure,
More informationNetCrunch 6. AdRem. Network Monitoring Server. Document. Monitor. Manage
AdRem NetCrunch 6 Network Monitoring Server With NetCrunch, you always know exactly what is happening with your critical applications, servers, and devices. Document Explore physical and logical network
More informationThe Road to SDN: Software-Based Networking and Security from Brocade
WHITE PAPER www.brocade.com SOFTWARE NETWORKING The Road to SDN: Software-Based Networking and Security from Brocade Software-Defined Networking (SDN) presents a new approach to rapidly introducing network
More informationOpen Source Software. The Foundation for Tomorrow s Infrastructure. Al Gillen. Program VP, System Software IDC April 2013
Open Source Software The Foundation for Tomorrow s Infrastructure Al Gillen Program VP, System Software IDC April 2013 Agenda 1. Industry Trends 2. Understanding the Open Source Development Model 3. The
More informationdatacenter networking
datacenter networking david swafford network engineer 8-OCT-2013 NANOG 59 dswafford@fb.com + 7 PB each month for photos alone (as of Oct. 2012) 1.15B people (MAUs) Source: Facebook internal data, June
More informationCISCO INFORMATION TECHNOLOGY AT WORK CASE STUDY: CISCO IOS NETFLOW TECHNOLOGY
CISCO INFORMATION TECHNOLOGY AT WORK CASE STUDY: CISCO IOS NETFLOW TECHNOLOGY CISCO INFORMATION TECHNOLOGY SEPTEMBER 2004 1 Overview Challenge To troubleshoot capacity and quality problems and to understand
More informationCisco Unified Communications Remote Management Services
Cisco Unified Communications Remote Management Services What You Will Learn Our remote, high-visibility, co-management approach gives you complete ownership and control of your converged network. Cisco
More informationData Center Virtualization and Cloud QA Expertise
Data Center Virtualization and Cloud QA Expertise Highlights Broad Functional QA Experience Deep understanding of Switching and Routing Protocols Strong hands on experience in multiple hyper-visors like
More informationWedge Networks: Transparent Service Insertion in SDNs Using OpenFlow
Wedge Networks: EXECUTIVE SUMMARY In this paper, we will describe a novel way to insert Wedge Network s multiple content security services (such as Anti-Virus, Anti-Spam, Web Filtering, Data Loss Prevention,
More informationCisco IOS Flexible NetFlow Technology
Cisco IOS Flexible NetFlow Technology Last Updated: December 2008 The Challenge: The ability to characterize IP traffic and understand the origin, the traffic destination, the time of day, the application
More information- Multiprotocol Label Switching -
1 - Multiprotocol Label Switching - Multiprotocol Label Switching Multiprotocol Label Switching (MPLS) is a Layer-2 switching technology. MPLS-enabled routers apply numerical labels to packets, and can
More informationMonitoring Network Traffic using ntopng
Monitoring Network Traffic using ntopng Luca Deri Outlook What are the main activities of ntop.org? ntop s view on network monitoring. From ntop to ntopng. ntopng architecture and design.
More informationBrocade SDN/OpenFlow. Norival Figueira Office of the CTO. January 9, 2015 2014/2015 BROCADE COMMUNICATIONS SYSTEMS, INC. ALL RIGHTS RESERVED.
Brocade SDN/OpenFlow Norival Figueira Office of the CTO January 9, 2015 2014/2015 BROCADE COMMUNICATIONS SYSTEMS, INC. ALL RIGHTS RESERVED. 1 Legal Disclaimer All or some of the products detailed in this
More informationWhy Software Defined Networking (SDN)? Boyan Sotirov
Why Software Defined Networking (SDN)? Boyan Sotirov Agenda Current State of Networking Why What How When 2 Conventional Networking Many complex functions embedded into the infrastructure OSPF, BGP, Multicast,
More informationVisualizing Traffic on Network Topology
Visualizing Traffic on Network Topology NTT Communications, Kazunori Kamiya NTT Laboratories, Hiroshi Kurakami Agenda Company Introduction Motivation and Goals Things to consider Method of visualizing
More informationComputer Networking. Definitions. Introduction
Computer Networking Definitions DHCP Dynamic Host Configuration Protocol It assigns IP addresses to client devices, such as desktop computers, laptops, and phones, when they are plugged into Ethernet or
More informationManaging (VoIP) Applications DYSWIS
Managing (VoIP) Applications DYSWIS Henning Schulzrinne Dept. of Computer Science Columbia University July 2005 DYSWIS 1 Overview User experience for VoIP still inferior Existing network management doesn
More informationDDoS detection & mitigation
Introduction Name: Thomas de Looff 1 of 3 owners of PCextreme - Management - Datacenter - Network - Finance Hobbies - Programming - Running - Kitesurfing PCextreme Services - Cloud Compute & Objects -
More informationVMware Software Defined Network. Dejan Grubić VMware Systems Engineer for Adriatic
VMware Software Defined Network Dejan Grubić VMware Systems Engineer for Adriatic The Transformation of Infrastructure Infrastructure Servers Clouds Be more responsive to business, change economics of
More informationSpeeding Up Business By Simplifying the Data Center With ACI & Nexus Craig Huitema, Director of Marketing. Session ID PSODCT-1200
Speeding Up Business By Simplifying the Data Center With ACI & Nexus Craig Huitema, Director of Marketing Session ID PSODCT-1200 Agenda Disruption Cisco SDN Programmable Networks Virtual Topology System
More informationInternet2 NetFlow Weekly Reports
Internet2 NetFlow Weekly Reports Stanislav Shalunov Internet2 Fall Member Meeting, Indianapolis, 2003-10-13 What is NetFlow? Originally a Cisco proprietary technology Now supported by other vendors and
More informationHow To Use The Cloud For Dev Ops
Secure Cloud Development Resources with DevOps SESSION ID: CSV-F01 Andrew Storms & Eric Hoffmann Andrew Storms - Director of DevOps Eric Hoffmann Director of QA CloudPassage Teach Old Dogs New Tricks Applying
More informationNetFlow & BGP multi-path: quo vadis?
NetFlow & BGP multi-path: quo vadis? Paolo Lucente Elisa Jasinska NANOG61, Bellevue Agenda About Netflix About pmacct Brief digression on BGP ADD-PATHS Putting all
More information