Packet Pushers - Fat Pipe

On today's Heavy Networking, guest Tom Costello walks us through his personal lab in the cloud. We discuss pros and cons of the cloud vs. a basement, using EVE-NG vs. CML, how automation can help you manage cloud costs, resources for those who might want a cloud lab, and more. The post Heavy Networking 662: Home Lab In The Cloud Or Your Basement? appeared first on Packet Pushers.

On today's sponsored Day Two Cloud podcast we talk about zero standing privilege with strongDM. Zero standing privilege goes beyond just-in-time credentials to a model where no credentials pre-exist, but are created in real-time and paired with appropriate permissions built from policy, also created in real-time. Can such a thing be accomplished technically---and without irritating all your end users? StrongDM's Sebastian Mankowski is here to make the case.

Take a Network Break! This week's episode covers a bunch of tech news including Arista rolling out a heap of new switches, Intel pinning its comeback hopes on newly released Xeon CPUs, a serious exploit of a Fortinet SSL VPN vulnerability, Dell pulling away from China-made chips, and more.

Today on Heavy Networking, home labs. Specifically, we’re going to discuss building and using a lab with virtualized Juniper gear in EVE-NG. Our guest is Christian Scholz, who has written and presented quite a bit on this topic. The post Heavy Networking 661: Home Labbing With EVE-NG And Juniper appeared first on Packet Pushers.

IT security is broken. Vendors ship insecure products, customers have to bolt on and then operate more and more security products, compliance and regulatory requirements don't necessarily make things safer, and getting business done always takes priority over securing systems and data. On today's Day Two Cloud podcast, guest Mick Douglas shares ideas on how to make security less excruciating and more effective.

Take a Network Break! For our first show of 2023 we skip the news to spend some time speculating on technologies and trends that may influence IT and networking in the coming year, including the influence of AI, machine learning, and ChatGPT in tech; data center network automation; cloud repatriation; and more.

On today’s Heavy Networking we get inside the process of technical writing and product documentation from a person deep in the trenches of creating docs. We also talk about why writing as a skill might be worth cultivating even if you aren’t responsible for creating the manual. The post Heavy Networking 660: Writing The Manual – An Insider’s View Of Product Documentation appeared first on Packet Pushers.

Today on Day Two Cloud we examine global network performance of some of the biggest public cloud providers. Sponsor ThousandEyes shares key findings and surprising data points from its 2022 Cloud Performance Report on AWS, Azure, and Google Cloud.

Take a Network Break! On today's episode we cover a new certification roadmap from Cisco, speculate on the future of corporate office space, and delve into an FTC lawsuit that aims to stop Microsoft's $69 billion purchase of game developer Activision. We also cover Broadcom financial results and space networking stories from Apple and SpaceX.

On today's Heavy Networking podcast, sponsored by Juniper Networks, we discuss how metro networks are evolving to Cloud Metro, how to apply cloud principles and automation to these locations, and how the attack surface changes when you transition to Cloud Metro. We also talk about how Juniper supports active assurance and zero trust security in these environments. The post Heavy Networking 659: Securing Cloud Metro With Zero Trust (Sponsored) appeared first on Packet Pushers.

On today's Day Two Cloud we continue our Kubernetes conversation with guest Michael Levan. Today's show focuses on Kubernetes deployments and managing clusters once they're up and running. We discuss whether Kubernetes is really more complex than traditional application infrastructure; examine management options such as GitOps, manifests, and Kubectl; share useful tools, and talk about why Kubernetes is all about APIs.

On today's Network Break we discuss new AWS previews for secure remote access and for connecting applications and services across VPCs. We also discuss a serious outage at Hive Social, Open RAN 5G coming to fighter jets, a promise from Broadcom not to raise prices if the VMware acquisition goes through, and more IT news.

Today on Heavy Networking, modeling your network with Batfish. Batfish is an open-source project that builds a model of your production network based on a snapshot of your network and device configurations. Engineers can then test and validate changes against this model before making those changes to the production network. Guest Rick Donato walks us through how Batfish works, use cases, and more. The post Heavy Networking 658: Using Batfish To Model And Test Your Network appeared first on Packet Pushers.

On today's Day Two Cloud podcast we walk through how to build a Kubernetes cluster to support a container-based application. We cover issues such as what constitutes a minimum viable cluster, rolling your own vs. Kubernetes-as-a-service, managing multiple clusters, pros and cons of bare metal vs. running clusters in VMs, design recommendations and gotchas using a cloud service, and more.

This week's Network Break podcast discusses UK and EU regulators wanting a closer look at Broadcom's VMware acquisition, Google settling with 40 US states over location tracking charges, and the FCC publishing responses from the 15 biggest US mobile providers regarding customer geolocation data tracking, plus even more IT news.

If you're headed to AWS re:Invent in Las Vegas, you can catch Ned & me recording a show live. On Wednesday, November 30, 2022, we’ll be at TopGolf with sponsor Prosimo from 4 to 7 pm. Join us to have some fun! Links and drinks, meet fellow engineers building clouds for their companies, and then watch us record the show. Space is limited, so register at prosimo.io. We’ll see you at TopGolf Las Vegas on Wednesday the 30th!

Today on Heavy Networking, a discussion with sponsor VMware about SD-WAN and SASE. We’re diving into announcements from VMware Explore Barcelona 2022 covering a new SD-WAN client and more. With this client, you’ll be able to connect your users to the SASE cloud with software--no hardware edge box required. We dive into how it works, the network architecture, use cases, and more. The post Heavy Networking 657: New VMware Client Connects Users To SASE, SD-WAN (Sponsored) appeared first on Packet Pushers.

Today on Day Two Cloud we examine Istio Ambient Mesh, a new option for building service meshes in a microservices environment. Istio Ambient Mesh essentially brings the concept of a load balancer to a cluster of containers. Rather than run a sidecar proxy for each pod or container, you can run Ambient Mesh per node. Our guest and guide to this open source project is Christian Posta, Global Field CTO at Solo.io.

Take a Network Break! This week we cover a new continuous integration pipeline from Arista Networks to support network automation, Cisco's intention to open a new silicon design center in Spain, and Apple spending $450 million to support emergency text messaging using satellites. We also discuss Palo Alto Networks spending $195 million for Cider Security, financial results, and more.

On today's Heavy Networking we look at the idea of embedding zero trust into applications. The way we do cyber security these days has failed in significant ways. What if we could extend the AAA or RBAC model to all applications? Better yet, what if we take the RBAC model, make authentication more robust than username & password, assess endpoint security posture constantly, and evaluate each request individually up at layer 7 for all applications? Guest Galeal Zino has opinions on what embedded zero trust looks like. We discuss. The post Heavy Networking 656: Embedding Zero Trust Into Applications appeared first on Packet Pushers.