5 Things Every Network Needs

Run a service provider network, enterprise, commercial, health, financial, or retail network?  Run any sort of network? Well then, here are 5 things your network NEEDS today! Redundancy Security Capacity Management Logging (SIEM) Application/Customer/Endpoint Visibility  Redundancy Have you ever owned a computer that didn’t blue screen or give you the spinning beach ball of death? … Continue Reading

DDoS Protection with NetFlow

DDoS Protection: The Problem with NetFlow

“Netflow collection.” This is what I kept hearing from DDoS providers when I asked how they monitored networks.  But there are a couple problems with utilizing NetFlow. Problem 1: Sampling Rates… I’ve very rarely seen a sampling rate of 1 on routers.  Cisco’s CRS shelves and ASR9ks as well as Juniper’s TX Matrix Plus and MX960s are certainly capable … Continue Reading

Network Diagrams…. You NEED them!

There is so much truth in the saying “a picture is worth a thousand words”. Pictures matter, especially in the technical field! I majored in Computer Science in college.  These days, “Computer Science” should be called “Computer Programming”.  They taught the OSI model from layer 1 to layer 7, but the majority of the time was spent on application … Continue Reading

What is a Network? #NYTechDay

I spent a few hours at a trade/tech show yesterday in NYC.  My company sponsored a portion of the show and wanted to show off their shiny new network architect in their booth, so I sat down and prepared myself for the deluge of questions. I’m not sure what I was expecting.  Maybe a little … Continue Reading

Layered Security on A Network Device

I recently co-authored a whitepaper discussing the layered network security approach typically implemented with PCI Compliance. This got me thinking about layered security in general. Data center security, network security, application security, physical security, and national security… One thing these entirely different security architectures have in common is the layered approach to securing critical assets. … Continue Reading

Where is httpd.conf on Mac OS X Server?

Mac OS X Server is awesome! But it “hides” configuration files for some of the services it runs. Finding them can be a pain… This is the directory where OS X Server puts all of the relevant httpd.conf files: /Library/Server/Web/Config/apache2/sites/

SSH to a New Cisco IOS-XR Device

If you have a Cisco device you’re wanting to get SSH access to, you can’t just SSH into the box right from the get go. There are a couple things to do first:  Add an IP Address to an Interface (from config mode)

Enable SSH (from config mode)

Create a DSA key (from … Continue Reading

Segmenting Datacenter Servers (Security and Performance)

In data center networking, you really don’t care what is hosted on a server. Let’s face it. You know it’s true. Some business unit probably calls this app “critical”. It probably generates a report that 3 people in the company see. But it’s important to them. To you, it’s a VLAN, an IP address, a … Continue Reading

Configure Fabric Extender to Nexus 5k via Port-Channel

First, let’s just enjoy this moment.. This is my first Cisco-centered blog…. EVER! Ok, now that we’re done with that collective “WHAT?!!”, let’s get to business! Cisco has a pretty neat technology called Fabric Extenders. If you follow my blog, then you’re probably a Juniper gear-head, so think of it as EX virtual-chassis’ using the … Continue Reading