Simplifying Data Center Interconnect with 128 Technology

Data center failover is an expensive, complex, and sometimes fragile component of a network design. Solving this one problem usually involves almost every other team in the IT department, and it’s inexorably linked with the very day-to-day operation of an organization.

How will a business recover from a data center outage?

How can mission critical applications move seamlessly between data centers?

How will our end-users reach an application in the event of a failover?

These are just a few high level questions that, along with very technical and legal requirements, will guide the actual design of a data center failover plan. The answers will determine bandwidth, routing protocols, storage, virtual environments, security, hardware platforms, and every minutia of design right down to how DNS will be propagated and what OSPF metrics are set to.

Continue reading “Simplifying Data Center Interconnect with 128 Technology” →

August 15, 2019 1

Simplifying Network Security with Context-Aware Micro-Segmentation

I spent about a year completely focused on network security, and one thing I learned was that spending all my time focused on securing the perimeter to the neglect of intra-LAN traffic was a recipe for disaster.

Most of the traffic in our data centers is east-west, with only a small fraction actually being northbound out to the rest of the world. The cost of massive firewall appliance clusters operating at line-rate is astronomical, and it doesn’t make sense to punt traffic all over the place if there’s a better way.

Continue reading “Simplifying Network Security with Context-Aware Micro-Segmentation” →

April 25, 2018 2

Apstra: The Intent-Driven Cure for Network Blindness

Apstra, Incorporated isn’t focused on new features, more advanced silicon, or some new widget. Instead, they’re offering a different way to look at networking. Apstra offers an early form of intent-driven networking that abstracts network programmability and allows network engineers to configure intent rather than device features. We expect the network to behave in a specific way, so we configure our intent accordingly. I was very excited to meet the Apstra team at Networking Field Day 13, and they didn’t disappoint.

Continue reading “Apstra: The Intent-Driven Cure for Network Blindness” →

November 28, 2016 0

Intent-Driven Networking with Apstra at Networking Field Day 13

In a couple weeks I’ll be headed to sunny San Jose for Networking Field Day 13. If you’re not familiar with Networking Field Day and other Field Day events, check out their website, YouTube channel, Twitter feed, and LinkedIn page. Tech Field Day does a great job bringing technology influencers, bloggers, and craft beer enthusiasts together with some of the biggest and newest names in the tech industry.

I’m particularly interested in Apstra’s presentation on Thursday afternoon. I recently wrote an article about intent-driven networking, something of particular interest to me, so I’m really interested to hear what they have to say about their platform, the Apstra Operating System, or AOS.

Continue reading “Intent-Driven Networking with Apstra at Networking Field Day 13” →

November 7, 2016 0

Network Automation: Another Tool in the Toolbox

Over the last few weeks I’ve noticed a few tweets and blog posts regarding the immaturity of network automation methods and the danger in utilizing those methods in production networks. Though I agree that processes always have room to mature and that wiggling wires in a production environment always poses some risk, I believe this new emerging narrative in social media makes several assumptions that aren’t necessarily true.

Continue reading “Network Automation: Another Tool in the Toolbox” →

July 19, 2016 0

Fate Sharing in the Network Core

Network engineers like redundancy. It’s not that we just want double of everything – we want the networks we design and manage to be super fast, super smart, and super resilient. In the LAN and in the data center we’ve been logically joining network switches using technologies such as Cisco StackWise, the Virtual Switching System and Virtual Port Channels with fabric extenders in order to consolidate control and data plane activities and provide greater fault tolerance, easier management and multichassis etherchannel for path redundancy. These are great benefits, but they can be reaped only by proper design. Otherwise, an engineer may introduce more risk into the network rather than make it more resilient.

Continue reading “Fate Sharing in the Network Core” →

March 18, 2016 2

Short and Sweet Cisco VSS

This post is a short, sweet and to the point copy/paste resource for configuring Cisco’s Virtual Switching System.

Continue reading “Short and Sweet Cisco VSS” →

January 18, 2016 6

Cisco Nexus Switches Part 2: Basic Configuration

This week’s post will cover basic information gathering and configuration of Cisco Nexus switches. I’ll be using the 5500 series as my example and covering the basics without getting into features such as fibre channel, VSANs and that sort of thing.

Continue reading “Cisco Nexus Switches Part 2: Basic Configuration” →