Heavy Networking from Packet Pushers show

Heavy Networking from Packet Pushers

Summary: Join the Packet Pushers for weekly (or more!) conversations about data networking. Continuous professional development. Architecture and design, software defined, cloud, routing, switching, security, wireless, campus, enterprise, and more. Technical discussions with vendors about their products, deep dialog with real people who make networks work.

Join Now to Subscribe to this Podcast
  • Visit Website
  • RSS
  • Artist: Packet Pushers Interactive
  • Copyright: © 2019 Packet Pushers Interactive LLC


 Heavy Networking 480: WTF Is Digital Transformation? | File Type: audio/mpeg | Duration: 1:05:01

Welcome to Heavy Networking from the Packet Pushers Podcast network. Today’s show is all about Digital Transformation. CIOs, executives, analysts, and product managers talk about digital transformation the way exercise junkies talk about CrossFit: as the way and the truth and the blueprint for…what, exactly? Businesses already use technology. Things are pretty well digitized. Employees have laptops and mobile devices, and IT teams build and run elaborate systems to move and process data. Does digital transformation just mean adopting the latest gadget and moving data faster, or is there something more? That’s the question we’ll explore on today’s episode. We’ve brought on several guests to help puncture the hot air balloon of digital technology and see if there’s anything useful inside: Paul Beyer, Infrastructure Architect; Tobias Metz, Consultant Network Engineering & Training Coordinator; and Emma Cardinal-Richards, Senior Network Architect. In our conversation we: * Try to assemble a working definition of digital transformation * Explore how the idea of digital transformation differs from previous eras of technology adoption * See if we can tie the notion of transformation to particular technologies * Discuss the impacts of digital transformation on engineers Sponsor: ExtraHop ExtraHop is the enterprise cyber analytics company delivering performance and security from the inside out. ExtraHop offers complete visibility with machine learning to help you make quick, confident decisions about your IT environment. Explore the ExtraHop Performance Platform at extrahop.com/packetpushers. Sponsor: ITProTV Get over in-depth technical training from ITProTV. ITProTV offers online instruction in CompTIA, Cisco, VMWare, Microsoft and more. You can stream courses live and on demand on your favorite device. Sign up at itpro.tv/packet and save 25%. Use the code PACKET25 when you check out. Show Links: Paul Beyer on LinkedIn Paul Beyer’s blog Tobias Metz on LinkedIn Emma Cardinal-Richards on LinkedIn Emma Cardinal-Richards on Twitter

 Heavy Networking 479: Scaling Up Your DDoS Protection With Juniper Networks And Corero (Sponsored) | File Type: audio/mpeg | Duration: 41:42

DDoS is a significant problem. The volume of DDoS traffic is increasing by leaps and bounds, enabled in part by botnets of compromised hosts such as IoT devices. On today’s sponsored Heavy Networking, we talk with Juniper Networks and Corero about how they’ve partnered on a unique solution to thwart DDoS attacks at the network edge. The solution encompasses Juniper’s MX routers and Corero’s SmartWall Threat Defense Director (TDD). Juniper and Corero’s solution can be used by service providers, enterprises, and in the cloud. Our guests are Ashley Stephenson, CEO of Corero; and Mark Denny, Product Manager, Senior Staff at Juniper Networks. We discuss: * The growing frequency and sophistication of DDoS attacks * The integration between MX routers and Corero’s SmartWall TDD * How Junos and Corero coordinate on attack detection and response * Leveraging the MX router’s ASIC * How the solution filters malicious traffic from legitimate packets * The benefits of DDoS mitigation at the network edge * More Show Links: Juniper Networks Corero Juniper Networks And Corero: A Modern Approach To DDoS Protection At Scale – Juniper Networks (PDF) Juniper MX and Corero SmartWall Demo – YouTube

 Heavy Networking 478: Leveraging LTE For SD-WAN With Cradlepoint (Sponsored) | File Type: audio/mpeg | Duration: 49:42

Today’s Heavy Networking dives into LTE on the WAN with sponsor Cradlepoint. Cradlepoint provides wireless WAN networking using LTE for enterprise and public safety customers with a variety of use cases, including branch and remote office connections, fleet tracking, IoT, and more. The company also offers a cloud management platform to monitor and manage wireless connectivity. Our guest is Marc Bresniker, Vice President of Product Management at Cradlepoint. Marc joins us to provide some background on using LTE for WAN connections and the benefits of using Cradlepoint’s LTE solutions as part of your SD-WAN strategy. We discuss: * LTE as a WAN technology * Speeds and capabilities of LTE * Managing LTE costs * How LTE enables IoT and mobility * Using Cradlepoint for primary and secondary SD-WAN connections * Customer case studies * More Learn more about Cradlepoint’s cloud-managed LTE solutions at cradlepoint.com/packetpushers. Show Links: Cradlepoint Cradlepoint Blog Cradlepoint on Twitter Cradlepoint on Facebook Cradlepoint on YouTube

 Heavy Networking 477: Segment Routing Boot Camp With Juniper Networks (Sponsored) | File Type: audio/mpeg | Duration: 57:41

Today on Heavy Networking we go deep on segment routing. Segment routing is way to encode into a packet the path it should take through the network. And why would you want to do that? Lots of reasons, including traffic engineering and service chaining. Sound scary? Step all over everything you think you know about dynamic routing and path selection? To make sure you leave this podcast with a head full of segment routing knowledge is our guest, Ron Bonica, Distinguished Engineer at Juniper Networks, our sponsor for today’s detailed look into SR, SRv6, SRv6+, path computation, recovering from failure states, and more We discuss: * An overview of segment routing and its use cases * Ingress, transit, and egress nodes in an SR domain * Key differences among segment routing options, including SR-MPLS, SRv6, and SRv6+ * How segment routing works with nodes that aren’t in an SR domain * Hardware and software requirements to use segment routing * More This is deep, detailed show, so grab a stack of virtual donuts and a pot of coffee, and let’s go down the rabbit hole. And if you want even more information, check out the list of resources below. Show Links: Juniper Networks Segment Routing Segment Routing (SR) and Traffic Engineering (TE): Part One – Juniper Forums Segment Routing (SR) And Traffic Engineering (TE): Part Two – Juniper Forums SRv6+ Segment Routing Headers – Why We Want Them – Juniper Forums A Segment Routing Renaissance – Juniper Forums Segment Routing: Policies, Paths, and Segments – Juniper Forums Segment Routing (SR) With Multiprotocol Label Switching (MPLS) – Juniper Forums The IPv6 Compressed Routing Header (CRH) – IETF

 Heavy Networking 476: Running ACI And NSX In The Same Data Center | File Type: audio/mpeg | Duration: 1:05:43

Today on Heavy Networking, a network transformation. OK, that sounds like marketing, but it isn’t. This is a discussion about a migration to Cisco ACI and VMware NSX technologies, paired with some automation, by a network engineer who was new to both products. It wasn’t all beers and cheers on the way to success. There were rocks and pitfalls. Joining us for detailed conversation about running ACI and NSX in the same data center is Derek Wilson, a Principal Network Consultant at a big company you’ve heard of but we won’t mention. We discuss: * The impetus for a hardware refresh that led to ACI * Why he chose a spine-leaf design * How ACI simplified the physical infrastructure * Why the organization chose NSX for the overlay * How ACI and NSX interact (and don’t) * The learning curves on each product * How the team decided between Terraform and Ansible for automation tooling * More Sponsor: Cumulus Networks Cumulus Networks is announcing a brand-new networking certification: the Cumulus Certified Open Networking Professional. Learn Linux networking fundamentals, including essential concepts and commands behind Linux-based open networking, and master the Cumulus Core–everything you need to know to become proficient in Cumulus Linux. Get details at cumulusnetworks.com/cert. Sponsor: InterOptic InterOptic is your reliable data interconnect company. Stop paying OEM prices for optics, and get brand-equivalent transceivers at a fraction of the cost.  Find out more at Interoptic.com/packet-pushers. Show Links: Setting the Record Straight: Confusion about ACI on VMware Technologies – Cisco Systems Heavy Networking 438: VMware NSX Evolution For Cloud Networking And Security (Sponsored) – Packet Pushers PQ 137: WhiteSpider & Real-World Cisco ACI Deployments (Sponsored) – Packet Pushers

 Heavy Networking 475: Anticipating 5G’s Impact On Enterprise Wi-Fi | File Type: audio/mpeg | Duration: 59:43

Greg and Ethan are here today. Hi. Just us. We wanted to speculate on what the impact of 5G and private LTE might be over the next several months & years on enterprise wireless. That is, Wi-Fi. As in, will you need a private Wi-Fi network with APs you lovingly hang from the ceiling after a careful site survey and artisanally painted heat maps, along side of clever SSIDs with their accompanying policies? Or will you be at the point where you can just dump much of that responsibility on your telco, and let them do all of that for you? This is a thought exercise. We don’t have all of the answers here, but there’s a lot to think about, both from the telco and enterprise side. Greg and I will take both sides of the argument and roll these ideas around in our head. 5G is coming. Private LTE is real. Companies are coming out of stealth with offerings in this space, so it seemed like a good time to chinwag about this. We discuss: * Risks and benefits for telcos of 5G * Risks and benefits for enterprises of 5G * If 5G does take over for Wi-Fi, what does that transition look like? * Where might you want to retain Wi-Fi? * More Sponsor: Cradlepoint The future of the WAN is wireless, but a wireless connection is only as good as the edge. Cradlepoint unlocks the power of advanced cellular through wireless edge solutions that are delivered the way you consume everything IT: as a service. Reliable. Elastic. Simple to manage from anywhere. Learn more about Cradlepoint’s cloud-managed LTE solutions at cradlepoint.com/packetpushers. Sponsor: ExtraHop ExtraHop is the enterprise cyber analytics company delivering performance and security from the inside out. ExtraHop offers complete visibility with machine learning to help you make quick, confident decisions about your IT environment. Explore the ExtraHop Performance Platform at extrahop.com/packetpushers. Show Links: 5G And Enterprise IT Whitepaper – Packet Pushers Ignition (Membership required)

 Heavy Networking 474: Find Breaches With Continuous Monitoring From Open Systems (Sponsored) | File Type: audio/mpeg | Duration: 40:01

I have worked with several intrusion detection and prevention systems going back a couple of decades or so. The problem with them? Alarm floods. Never-ending updates. False positives. Mysteriously dropping legitimate traffic. Poor integration with firewalls. A lack of correlation with host logs. Old-school IDS/IPS just sucks. “Old-school” is the keyword there. We’re going to discuss a different, modern approach with our sponsor, Open Systems. The big idea is continuous monitoring, and in the Open Systems architecture, continuous monitoring expands on IDS/IPS to deliver a holistic, distributed security perspective. Joining us is Dave Martin, Senior Director for Product Management of Threat Response within Open Systems. Open Systems provides SD-WAN platform, but it also integrates a variety of security capabilities including firewalls, secure Web gateways, email protection, and intrusion detection. They also offer complementary services such as vulnerability management and assessment. On today’s episode we focus on Open Systems’ continuous monitoring capabilities. Show Links: Open-Systems.com Heavy Networking 446: How Open Systems Integrates Security And SD-WAN As A Service – Packet Pushers Open Systems Product Brief – Open Systems (PDF)

 Heavy Networking 473: Synthetic Transactions, SD-WAN Readiness, And Internet Outage Autopsies With ThousandEyes (Sponsored) | File Type: audio/mpeg | Duration: 45:48

Welcome to Heavy Networking, a uniquely nerdy podcast that puts the network at the center of the universe where it belongs. Today is a sponsored show with ThousandEyes and we’re going to feast on a smorgasbord of topics: first, a new synthetic transaction monitoring tool from ThousandEyes. Second, we’ll discuss why performance monitoring is critical to your SD-WAN readiness and ongoing operations. Third, we’ll explore postmortems on a couple of 2019’s Internet outages, including a major route leak that affected CloudFlare, and what that means when you’re relying on the Internet for critical business applications. Our guests from ThousandEyes are Alex Henthorn-Iwane, VP of Product Marketing; and Angelique Medina, Director of Product Marketing. Show Links: ThousandEyes Browser Synthetic Monitoring – ThousandEyes Introducing Internet-Aware Synthetic Transaction Monitoring – ThousandEyes Blog ThousandEyes Addresses Critical Enterprise Application Performance Visibility Gap With Internet-Aware Synthetics – ThousandEyes ThousandEyes for Application Delivery – ThousandEyes (PDF) Visibility for Your Hybrid WAN and SD-WAN Traffic – ThousandEyes Cloudflare Users Burned by Internet Routing Pile-Up – ThousandEyes WhatsApp Disruption: Just One Symptom of Broader Route Leak – ThousandEyes Internet Outage Reveals Reach of China’s Connectivity – ThousandEyes

 Heavy Networking 472: Grappling With Wireless QoS | File Type: audio/mpeg | Duration: 53:37

If you are deploying an enterprise QoS scheme, wireless QoS matters to you. Today, we go through the basics of wireless QoS, covering some of the standards, terminology, and thinking required to get your head around how we can prioritize packets over a shared medium. You ready for this? I hope so. Our guest today is Ryan Adzima, and he agreed to make us smarter about this topic. We discuss: * The major use cases for wireless QoS * Key wireless QoS standards, including 802.11e-2005 Wireless Multimedia Extensions * Differences between Distributed Coordination Function (DCF) and Hybrid Coordination Function (HCF) * How wireless QoS marking works * More Sponsor: ExtraHop ExtraHop is the enterprise cyber analytics company delivering performance and security from the inside out. ExtraHop offers complete visibility with machine learning to help you make quick, confident decisions about your IT environment. Explore the ExtraHop Performance Platform at extrahop.com/packetpushers. Sponsor: ITProTV Get over in-depth technical training from ITProTV. ITProTV offers online instruction in CompTIA, Cisco, VMWare, Microsoft and more. You can stream courses live and on demand on your favorite device. Sign up at itpro.tv/packet and save 25%. Use the code PACKET25 when you check out. Show Links: Ryan Adzima on Twitter Whiskey And Wireless Podcast Mapping Diffserv to IEEE 802.11 – IETF Techvangelist – Ryan’s Blog

 Heavy Networking 471: Routing-Centric Transformation With Arrcus’s ArcOS (Sponsored) | File Type: audio/mpeg | Duration: 41:11

Today’s Heavy Networking is a sponsored show with Arrcus. Their ArcOS network operating system takes a fresh approach to routing. ArcOS is a 64-bit, Internet-scale, modular NOS that enables programmability and runs on a variety of OEM platforms and ASICs. We’ll explore new features in ArcOS including a forthcoming analytics platform, support for 100G/400G ASICs, the startup’s latest funding round, and more. Our guests are Keyur Patel, CTO and founder; and Murali Gandluru, VP of Product Management. We discuss: * ArcOS’s support for Broadcom’s Jericho2 ASIC * New features available in Jericho2 that ArcOS leverages * How ArcOS enables routing-centric transformation * How ArcIQ Analytics ingests telemetry and provides real-time visibility, control, and security * Arrcus’s $30 millions Series B funding round * More Show Links: ArcOS – Arrcus Tech Bytes: How Arrcus Uses LSVR To Build Scalable Data Center Fabrics (Sponsored) – Packet Pushers PQ 160: Inside ArcOS®: The Internet-Scale, Carrier-Grade Network OS (Sponsored) – Packet Pushers

 Heavy Networking 470: Why Does Networking Evolve So Slowly? | File Type: audio/mpeg | Duration: 1:06:17

In a discussion on the Packet Pushers’ Slack channel, Greg shared some slides from 1999, where some of the same points he raised 20 years ago are still true today. Why is networking so slow to change? That’s the focus of our discussion today. Joining us is Emma Cardinal-Richards, Senior Network Architect at University College in London. This is her first time appearing on Heavy Networking. Also joining us is Jeremy Filliben. Jeremy is the Owner/Consultant/Instructor at Pristine Packets. You might know him as a CCDE trainer. Please welcome both Emma and Jeremy into your earbuds, and let’s get into our discussion on what it is about networking that makes it slow to change. Here’s the slides that spurred this episode: Sponsor: Tufin Tufin has pioneered a policy-based approach to network security management using automation and analytics. You can make network changes in minutes instead of days, reliably and securely. Tufin. The Security Policy Company. Find out more at tufin.com Sponsor: ThousandEyes ThousandEyes gives you performance visibility from every user to every app over any network, both internal and external, so you can migrate to the cloud, troubleshoot faster and deliver exceptional user experiences. Sign up for a free account at thousandeyes.com/packetpushers and choose a free ThousandEyes t-shirt. Show Links: Emma Cardinal-Richards on Twitter @emsk1g Jeremy Filliben’s Blog Jeremy Filliben on Twitter Ignition – Packet Pushers Premium The 2019 Accelerate State of DevOps: Elite performance, productivity, and scaling – Google Cloud Blog

 Heavy Networking 469: Actionable QoS Monitoring | File Type: audio/mpeg | Duration: 1:16:42

QoS is difficult to implement over the Internet, because hey, you don’t own all the gear between you and the destination. And even if you do own all the bits, QoS is hard to monitor. How do you know you’ve gotten it right? If it’s not working the way you want, how can you tell? When you’ve got all of that sorted, what do you do about it? These, among other things, are QoS “gotchas” you’ve maybe run into. To help us form a network design strategy to cope with these gotchas is Peter Welcher, a network architect at NetCraftsmen, a consultancy in the Washington DC area that supports folks around the world. We’re going to hit some QoS limitations to lead off the show, and then spend the rest of our time focused on how to monitor QoS in an actionable way. Sponsor: ExtraHop Today’s show is sponsored in part by ExtraHop, the enterprise cyber analytics company delivering performance and security from the inside out. ExtraHop offers complete visibility with machine learning to help you make quick, confident decisions about your IT environment. Explore the ExtraHop Performance Platform at extrahop.com/packetpushers. Show Links: Some QoS Gotchas – NetCraftsmen NetCraftsmen Peter Welcher’s blogs at NetCraftsmen Peter Welcher on Twitter Quality of Service (QoS) Fundamentals In 27 Lessons – Packet Pushers Ignition

 Heavy Networking 468: Making The Business Case For SD-WAN | File Type: audio/mpeg | Duration: 42:25

On Heavy Networking we spend a lot of time digging into the technologies that underpin SD-WAN: bonding multiple links, application ID, encryption and overlays, controllers, policy enforcement and more. And while it’s essential to understand what makes SD-WAN work, before you adopt the technology, you have to build a business case. Then, after the product or service is deployed, the business side of the house probably wants to know if the money they spent was worth it–that is, they’ll want to see a return on investment, or ROI. To walk us through the intricacies and elements of building a business case and measuring ROI we welcome Jason Gintert, co-founder WAN Dynamics. Jason is also the author of a new whitepaper available on the Packet Pushers Ignition site called SD-WAN: Building The Business Case & Understanding Your ROI, and we thought this was a good time to pick his brain. So sharpen your pencils and grab your accounting eyeshades and let’s talk some business. Show Links: SD-WAN: Building The Business Case & Understanding Your ROI – Packet Pushers Ignition Whitepaper Packet Pushers Ignition List Of SD-WAN Vendors – Packet Pushers Jason Gintert On Twitter Ohio Networking User Group

 Heavy Networking 467: The Journey To SDN | File Type: audio/mpeg | Duration: 1:10:27

On today’s Heavy Networking we look at one organization’s journey to SDN, including pitfalls, triumphs, and lessons learned. My guest is Sal Rannazzisi, principal network architect at Merck, a global pharmaceuticals company. Sal discusses how the company experimented with early SDN products, how they tested them in the lab, and how they’re approaching SDN today. He also offers details on the vendors he’s using. We discuss: * The organization’s journey to SDN * Building internal standards and processes * Dealing with legacy equipment * Whether to recruit or train for engineering talent * Managing vendor relations * Areas of concern * More Show Links: Intelligent Network Automation: Gluware Intent ’19 Podcast (Sponsored) – YouTube

 Heavy Networking 466: Securing The Network That’s Everywhere With Open Systems (Sponsored) | File Type: audio/mpeg | Duration: 46:55

As your network perimeter expands into public cloud and mobile, how do you secure it? The answer has been some combination of endless firewalls, host agents, and VPNs, maybe from a variety of vendors. How’s that working out for you? Getting a little hard to keep up with it all? Our sponsor is Open Systems. Open Systems offers an integrated solution that combines a secure cloud access security broker with cloud integrated SD-WAN and a DevOps mentality that gives you a new way to design your increasingly complex perimeter security. Moritz Mann, Head of Product Management, joins us from Open Systems for our security chat. What We Discuss In our conversation with Moritz, we chat through the following big ideas: 1. Open Systems as an SD-WAN company with integrated security. 2. Whether or not security is table stakes for SD-WAN solutions. 3. The components of the Open Systems security offering, including a firewall, web gateway, DNS filter, and security monitor. 4. The architecture of the appliance delivering these services. 5. Open Systems’ role in securing hybrid and multi-cloud environments. 6. How Open Systems secures mobile users. 7. Why inline firewall approaches struggle in the cloud era. 8. The Open Systems approach to securing cloudy conversations, including their Cloud Access Security Broker (CASB) service. For More Information * Website: https://open-systems.com/ * Twitter: https://twitter.com/securesdwan * LinkedIn: https://www.linkedin.com/company/open-systems * Moritz Mann: https://www.linkedin.com/in/moritz-mann-34b24/


Login or signup comment.