May 04, 2016

Networker's Online

SDN is an Iteration that will Lead Innovations

I have stumbled upon a recent post from Greg Ferro on Ethrealmind, the post is titled SDN is not an innovation, it’s an iteration. I actually wanted to share this post because it kind of puts things into prespective. The word innovate refers to creating something that is new and disruptive. Innovations needs to come …

The post SDN is an Iteration that will Lead Innovations appeared first on Networkers-online.com.

by Wael Osama at May 04, 2016 09:33 AM

XKCD Comics

May 02, 2016

Networking Now (Juniper Blog)

IoT Security in an End-to-End Encrypted World

We often speak of the Internet of Things as if it was one thing.  It is, of course, not.  It is arguably one of the most diverse spaces that technology has yet created.  There are many standards and technologies addressing the challenges of this new space.

by skohalmi at May 02, 2016 06:07 PM

Network Design and Architecture

VXLAN EVPN

VXLAN EVPN – VxLAN is an overlay technology that encapsulates a Layer 2 frame into UDP header to extend your Layer 2 domain over a Layer 3 underlay infrastructure. Within the UDP header, there is VxLAN header, within this header you have a VxLAN Network identifier (VNI) represented by 24 bits, it means that you […]

The post VXLAN EVPN appeared first on Cisco Network Design and Architecture | CCDE Bootcamp | orhanergun.net.

by Driss Jabbar at May 02, 2016 01:40 PM

XKCD Comics

April 30, 2016

Networking Now (Juniper Blog)

Software Defined Secure Networks (SDSN): Why do we need them?

At this year’s RSA event Juniper announced, “software defined secure networks” (SDSN). It has been the topic of discussion with customers and partners to make them think of security in a completely different way. This blog focuses on a new way of deploying security across the entire organization and cloud assets.

 

 

by rkkumar at April 30, 2016 01:12 AM

April 29, 2016

XKCD Comics

April 28, 2016

Internetwork Expert Blog

OSI Model…moving up-and-down the stack

Hello everyone!
I recently received an email from a learner who is studying for his CCNA Routing-and-Switching Certification and he had a few excellent questions about the OSI model and how, exactly data moves from one-layer to the next. I figured my response might prove valuable to others studying for their CCNA so…here it is!
…..

  1. Learner-Question: In video of the osi model, you said that the session layer should provide the source and destination port number but the fields of those ports are at the transport header- my question is how does the session layer put this number on field which does not exist in that time (when i send the date the encapsulation process goes down from the app layer)?

    In order to thoroughly answer all of your questions below, one really needs to know about computer programming, APIs, etc…which frankly, I know very little about. But what I do know, I’ll try to explain. From my understanding, there are some kind of software “links” or “hooks” which are used to allow a program at one layer of the OSI model to communicate with a program at another layer. Many applications have software built-in that provide multi-layer functionality. For example, imagine that you open some kind of Terminal Client (like Hyperterminal, SecureCRT, PuTTY, etc). That software you’ve opened technically does not reside at ANY of the OSI layers. That software just provides the graphical display such as the buttons you can press, the pulldown menus available, etc. Now imagine that within PuTTY or Hyperterminal you press a button to initiate a Telnet connection. At that moment, the PuTTY software informs your CPU that the CPU must start the Telnet program. PuTTY provides the interface so you can see…and control…what is going on, but PuTTY itself is NOT Telnet. It’s simply the user-interface so you can control Telnet.

    The functionality of Telnet actually is actually composed of an Application-Layer process as well as a Session layer process, all rolled into one. At the Application layer, the Telnet protocol answers such questions as, “what is a “username” and what is a “password” and is that required? Shall it send data downstream to lower-levels of the OSI model one-bit-at-a-time or several bytes-at-a-time? How is the user supposed to know when Telnet is waiting for input, versus currently transmitting output?” etc etc. The Session-Layer component of Telnet knows that it should be “listening” for incoming sessions on port-23. And when initiating outgoing sessions, it should use a destination port-23. At some point, the Telnet protocol creates a hook (I think these are called APIs) that allows it to invoke the Transmission Control Protocol (TCP). TCP knows that as part of the datastructure it creates, it must reserve 2-bytes for a “destination port-number” field and another 2-bytes for a “source port-number field” but what TCP DOESN’T know is what numbers to place in those fields. So this API (or whatever it is) allows the Session-Layer component of Telnet to convey to TCP that it place the value of “23” in either the Source or Destination Port Number field (depending on who is initiating the Telnet session).

    You may now be thinking, “but what about the Presentation Layer? You didn’t include that in the Telnet process?”. I believe that once SecureCRT (or PuTTY or Hyperterminal) invoke your Application-Layer protocol (such as Telnet or SSH) that SecureCRT/Hyperterminal will provide the Presentation Layer-component. SecureCRT knows if, when you press a keystroke on your keyboard, that key should be represented by ASCII or EBCDIC, SecureCRT/Hyperterminal also knows if you pressed the button indicating that encryption should be used. So it kind of “merges” or “blends” all of that information into Telnet thus providing the Presentation-Layer components. I’m not sure HOW it does this…but it does.

  • This question is about the type code field which lays at the llc sublayer, I understood that it purpose is to provide the upper layers what protocol is “talking”‘, how does it happens if the nic strips off the frame header in the decapsulation process?

    Basically what I wrote above happens in reverse here. There is some kind of internal software “hook” (probably another API) that allows your Layer-2 protocol (Ethernet) to communicate the value in the EtherType field to the CPU. In this way the CPU knows if it needs to invoke a Layer-3 procoess (like IP) or…if that process is already running…to take the Data from the Telnet frame and forward it to the correct layer-3 process. So IP itself does NOT see that Ethernet frame or any of the fields within it. But that “hook” (API???) provides the interface so that Ethernet data can be transferred upstream to the IPv4 process. At this point, my knowledge of the specific details of how this works ends.

  • If the type code provides the protocol(and its version), why does the IP header has “vers” field?

    Once again, to answer this question I believe it’s all about the APIs that allow protocols at different layers to talk to each other. Moving downstream (from Layer-3 to Layer-2) when IPv4 (as an example) has created a full IP Packet, it will “call” the API that allows it to hook into the Layer-2 protocol. IP doesn’t even CARE what that Layer-2 protocol is. It probably does something like, “Hey Layer-2 hooking API!! I’ve got some data here. Please pass it on to whatever protocol is operating at the Datalink Layer for me!!” The API, because it is talking to IPv4 will then invoke whatever layer-2 protocol is running (Ethernet, HDLC, Frame-Relay, etc) and say, “I’ve got some Layer-3 data for you!!”. At that point, the Layer-2 protocol (Ethernet in this case) will say, “Great! Can you give me some number that I can shove into my Ethertype field that indicates WHICH Layer-3 protocol created the data?? I don’t really care personally…but the device at the other end of the link receiving this data will need to know!”. So the API (that was originally called by the IPv4 process and was DESIGNED to be an interpreter between IPv4 and Ethernet) will say, “sure…the number you need is 0×800!” and thus…Ethernet places that value into the Ethertype field. Receiving an Ethernet frame would work the same way but in reverse. This time the Layer-2 protocol would “call” that L2-to-L3 API and provide the data, ALONG WITH the value of the Ethertype field to that API. In turn, the API would then know it needs to call-out to IPv4 and transfer the data upstream.

  • by Keith Bogart, CCIE #4923 at April 28, 2016 03:23 PM

    Network Design and Architecture

    Beware: CCIE University Steals and Cheats

    With more than 13 years of IT related experience, I have spent my past few years using my passion in IT to teach Cisco network design concepts such as CCDE, CCDP and CCDA to help Cisco exam takers get successfully certified. Through my work, https://orhanergun.net/ not only became one of the most recognized and well […]

    The post Beware: CCIE University Steals and Cheats appeared first on Cisco Network Design and Architecture | CCDE Bootcamp | orhanergun.net.

    by Orhan Ergun at April 28, 2016 12:59 PM

    My Etherealmind

    Gartner Being Wrong on OpenStack

    This week saw established analyst firm scrambling to recover after realising that OpenStack is a huge, unstoppable thing.  Sean Kerner writes that 451 Research released some data : 451 Group now reports 2015 OpenStack ecosystem revenue at $1.2 billion and forecasts it will grow to $3.37 billion by 2018. From 2014 to 2018, 451 Group has […]

    The post Gartner Being Wrong on OpenStack appeared first on EtherealMind.

    by Greg Ferro at April 28, 2016 12:43 PM

    April 27, 2016

    My Etherealmind

    Blessay: IPv6 was Designed For Different Era

    IPv6 is badly designed. Constant updates make us uncertain. Lack of features make us unwilling.

    The post Blessay: IPv6 was Designed For Different Era appeared first on EtherealMind.

    by Greg Ferro at April 27, 2016 01:04 PM

    Network Design and Architecture

    MPLS Design Question

    MPLS Design Question – MPLS is one of the most commonly used encapsulation method today. Especially on Wide Area Networks of the Service Providers, Large Enterprises and some datacenters. Service Providers sell MPLS services to customers for decades. When customers want to have Service Provider redundancy so two MPLS circuit from different Service Providers, Inter AS […]

    The post MPLS Design Question appeared first on Cisco Network Design and Architecture | CCDE Bootcamp | orhanergun.net.

    by Orhan Ergun at April 27, 2016 09:33 AM

    XKCD Comics

    April 26, 2016

    My Etherealmind

    Analytics of Everything

    The ashes of network monitoring products from the last 30 years is a Sauron-sized mountain of tears on which we must build the a new generation of tools. Analytics, machine learning, big data and user interfaces are the new hope. Network as a Service A key feature in “as a Service” products is transparency & […]

    The post Analytics of Everything appeared first on EtherealMind.

    by Greg Ferro at April 26, 2016 07:39 PM

    April 25, 2016

    My Etherealmind

    Blessay: Your Future WAN is a 5G Network

    But I've been reading whitepapers about the possible future of 5G networking and its becoming clear to me that the larger part of any private WAN (if you have one at all) is going to be wireless in the next ten years.

    The post Blessay: Your Future WAN is a 5G Network appeared first on EtherealMind.

    by Greg Ferro at April 25, 2016 05:06 PM

    XKCD Comics