February 14, 2020
Eric Chou, author of Master Python Networking Third Edition, discusses what’s new in this edition of the book. He touches on a thorough update to Python 3, a new section on Azure, and additional information provided about Ansible, Nornir, and more. Have a listen. I think you’ll find this book is likely a good one to add to your network automation library. For More Information * Book * @ericchou
February 14, 2020
I see abstractions. I see automation. I see orchestration. I see people who think that because they can use a fancy management tool, they are an infrastructure expert. For networking, this drives me a little nuts. Technology fundamentals are the foundation of network engineering. By contrast, Ansible and Terraform are tools that help you build a network, but in no way replace those fundamentals. Sometimes I worry that tooling is replacing actual knowledge of how a network works. Abstractions–management layers, web UIs, magical scripts–may be replacing deep knowledge. Welcome to Heavy Networking, grumpy old network engineer edition. I’ve gathered a couple of other grumpy folks to chat about what young networkers should know but don’t. Our guests are Chris Young and Ivan Pepelnjak. We discuss: * The problems that come with a lack of understanding core concepts * What newer engineers do know * Just how deep core knowledge needs to go * Does Spanning Tree matter? * Are network engineers expected to be too multi-disciplinary? * More Sponsor: ThousandEyes ThousandEyes gives you performance visibility from every user to every app over any network, both internal and external, so you can migrate to the cloud, troubleshoot faster and deliver exceptional user experiences. Sign up for a free account at and choose a free ThousandEyes t-shirt. Sponsor: VIAVI Solutions VIAVI Solutions is a network performance management leader enabling IT teams to understand user experience with a patent-pending End-User Experience score. VIAVI delivers  outcomes, not just more data. Learn more at Show Links: Chris Young on Twitter Kontrolissues – Chris Young’s site IP Space – Ivan Pelpeljak’s site Ivan Pepelnjak on Twitter
February 12, 2020
NRE Labs is a web site that offers free online training in automation for networkers and infrastructure engineers. While it’s sponsored by Juniper Networks, the lab is a free platform and operates under an open-source license. NRE Labs recently relaunched the site with new lessons, mobile support, and a simpler URL: The site includes lessons on Ansible for networking, introductions to YAML and Bash, Linux basics, and more. I’m joined today by Matt Oswalt, the Tech Lead for NRE Labs, to tell us about the changes and what we can expect to see on the site going forward. Show Links: NRE Labs NRE Labs Catalog NRE Labs Community Matt Oswalt on Twitter Launching – Packet Pushers
February 12, 2020
When Kubernetes was first designed, it was all about stateless architectures. It turns out, there’s more than just stateless applications–there’s a lot of complex architectures out there. It today’s episode, we talk about Kubernetes Operators, a way to automate and ensure that complex applications stay up and running. Our guest is Rob Szumski, Senior Manager, Product Management, Red Hat OpenShift. We discuss: * The problems Operators were designed to solve * Operator components * The relationship between Operators and Custom Resource Definitions * Operator creation and maintenance * Real-world use cases * More Show Links: Rob Szumski on Twitter Rob Szumski on LinkedIn Operator Framework – GitHub Red Hat OpenShift Operator Certification – Red Hat Red Hat OpenShift Blog – Red Hat
February 10, 2020
How do you manage the performance of SaaS applications such as Office 365 and Salesforce when you don’t own the applications or the networks they run across? On today’s Tech Bytes podcast, sponsored by Riverbed, we discuss the SaaS challenges poised by hybrid networks, latency, and remote and mobile workers, and how Riverbed helps network engineers meet those challenges. Our guests from Riverbed are Marco Di Benedetto, SVP and CTO; and Paul Griffiths, Senior Director, Office of the CTO. We discuss: * The use of compression and TCP acceleration * Getting performance visibility into public networks * Tracking metrics from the client all the way to the service * Riverbed products including SaaS Accelerator * More Show Links: Riverbed blogs
February 10, 2020
Take a Network Break! Google breaks out cloud revenue for the first time, Cisco tackles significant CDP vulnerabilities, HPE buys a cloud security startup, the Trump administration ponders an all-American 5G, and more tech news.
February 8, 2020
It's an all-FU Network Break where we share follow-ups from listeners about our commentary and analysis. No news, no ads--just us responding to you responding to us.
February 7, 2020
Today's Heavy Networking episode discusses automating your incident response. Our sponsor today is NetBrain, and we explore their product that deeply understands network topology to help you get to the bottom of a ticket without you having to query interfaces device by device while you troubleshoot.
February 6, 2020
The best way to learn IPv6 is to get it into the lab and play with it. On today’s show we share advice, learnings, and tips on building a lab and getting your hands dirty with this protocol. We discuss: * The benefits of a lab, whether at home or in the office * Learning labs vs. production labs * Ah-ha moments that come in the lab * Classroom labs vs. building your own * More Sponsor: 128 Technology Set your network free with Session Smart™ Networking from 128 Technology, the only tunnel-free solution for SD-WAN and cloud networking. Visit to learn more about going tunnel-free today. Show Links: NRE Labs Free Range Routing Quagga Your Hosts: * Ed Horley @ehorley * Tom Coffeen @ipv6tom * Scott Hogg @scotthogg
February 5, 2020
Moving from legacy infrastructure to an automated and cloud-friendly environment is complex (to say the least). On today’s Day Two Cloud episode, we talk with a guest who’s in the midst of this transformation at a large healthcare company. One key idea to this transformation is “everything as code.” That includes networking, infrastructure, security, and documentation. Yes, documentation. We dive into how to get beyond using Microsoft Office as your infrastructure management strategy. Our guest is William Collins, a cloud architect. We discuss: * How documentation underpins automation * Getting away from spreadsheets * Applying automation principles such as creation, version control, and repeatability to documentation * Why documentation may be a good place to start for infrastructure teams that don’t do much coding * Getting buy-in on transforming documentation practices * The importance of talking to teams in person and providing a proof of concept * Tool recommendations * More Show Links: William Collins on Twitter Heavy Networking 494: Hybrid Cloud Networking – All The Details – Packet Pushers
February 3, 2020
Welcome to Tech Bytes. Today we’re discussing the Network Query Engine from sponsor Forward Networks. Forward creates a real-time data model of your network that you can query to verify intent, speed troubleshooting, and check configuration changes. Our guest is Andreas (Andi) Voellmy, a member of the technical staff at Forward. We discuss: * How Forward builds its data model and what the model encompasses * How Forward gathers state data from network devices * Network Query Engine (NQE) use cases * How In-App NQE simplifies queries * More Show Links: Schedule a live demo with Forward Networks Forward Networks’ Network Query Engine GitHub repository Query Your Network Like A Database – Forward Networks Forward Networks blog Forward Networks’ Network Query Engine – Network Field Day Forward Networks Gartner Peer Insights – Gartner @FwdNetworks – Forward Networks on Twitter Forward Networks
February 3, 2020
Today's Network Break reports on Apstra's latest software release for Intent-Based Networking, Cisco rolls out new products including Kubernetes on Hyperflex, VMware layoffs get social media attention, and the United Kingdom lays down the rules for Huawei gear in its telecom networks. We also review financial results for several big tech companies.
January 31, 2020
Where will SD-WAN go in the coming years? Will it swallow up branch security? How about end point and mobile device management? Could it extend its reach from the branch to become the way you manage your campus network? The Packet Pushers examine those and other questions in today's Heavy Networking episode.
January 29, 2020
You’ve got this cloud thing and it’s starting to look like the wild West. Accounts and subscriptions are created willy-nilly. Your devs have stitched together a networking nightmare. Nothing is named or tagged consistently. And you’re pretty sure a VM with 16 vCPUS and half a terabyte of RAM is a bit over the top for a development environment. Time to impose a little law and order in this one-horse town. There’s a new sheriff and its name is Cloud Governance. Today’s Day Two Cloud episode explores how to bring some governance order to your cloud chaos. Our guest is Steve Buchanan, Cloud Architect at Avanade. We discuss: * How governance differs from strategy, compliance, and accountability * Translating governance ideas into practice * Making sure governance policies keep pace with new services and changing business demands * Practical examples and blueprints, particularly around Azure * More Show Links: Steve Buchanan on Twitter – Steve’s blog What is Azure Policy? – Microsoft Azure What is Azure Blueprints – Microsoft Azure Azure Architecture Framework – Microsoft Azure
January 27, 2020
On today’s Tech Bytes episode we have a conversation about conquering hybrid network complexity with sponsor Riverbed. We explore how Riverbed’s SteelConnect EX enables SD-WAN, security, and a full routing stack to smooth your transition from a legacy architecture to a modern hybrid network. Our guests from Riverbed are Marco Di Benedetto, SVP and CTO; and Brandon Carroll, Senior Tech Evangelist. We discuss: * Hybrid networks and what makes them complex * How Riverbed can be deployed in greenfield and brownfield networks on prem and in the cloud * Riverbed’s strong routing stack under the covers of its SD-WAN products * How to meet the ongoing challenges of networks that extend from data centers to the WAN to the cloud * More Show Links: Riverbed Riverbed blogs Riverbed SteelConnect EX Brandon Carroll on Twitter Riverbed Enterprise Use Cases for Digital Networking – Tech Field Day
January 27, 2020
Today's Network Break dives into VMware's Nyansa acquisition, the implications of 3G's expiration date, Microsoft's plans to insert Bing as the default search engine in Chrome browsers for an upcoming Office 365 release, financial results from Intel and IBM, and more.
January 24, 2020
Cisco IOS XR version 7 is the topic of Heavy Networking in this sponsored episode. We dig into what's new in this latest network OS release, the hardware platforms it runs on (including whitebox), key security features, and more. Our guests from Cisco are Bhavna Prasad, Product Manager; and Reda Haddad, Distinguished Engineer.
January 23, 2020
In this week’s IPv6 Buzz episode, Ed and Tom talk in depth about IPv6 Router Advertisements (or RAs), what they are, what they do, and why they’re critical to IPv6 operations. Topics discussed include: * How IPv6 host configuration differs from IPv4 and the role that Router Advertisements play * The critical information Router Advertisement can contain * Configuration options for RAs * What RA flags accomplish * Security considerations when working with RAs Thanks for listening! Sponsor: 128 Technology Set your network free with Session Smart™ Networking from 128 Technology, the only tunnel-free solution for SD-WAN and cloud networking. Visit to learn more about going tunnel-free today. Sponsor: ITProTV Start or grow your IT career with online IT training from ITProTV. From CompTIA, Cisco, and Microsoft, ITProTV has over 4,000 hours of training. Stream courses live or on demand on your favorite device. Get a 7-day free trial and 30% off all plans at Use the promo code “BUZZ” when you check out. Show Links: Neighbor Discovery for IP version 6 (IPv6) – IETF Internet Control Message Protocol (ICMPv6) for IPv6 Specification – IETF IPv6 Router Advertisement Options for DNS Configuration – IETF IPv6 Router Advertisement Guard – IETF Cisco IPv6 First Hop Security (FHS) – Cisco Systems Jeff Carrell: Troubleshooting IPv6 in Wireshark – YouTube Neighbor Discovery Protocol – Wikipedia Your Hosts: * Ed Horley @ehorley * Tom Coffeen @ipv6tom
January 22, 2020
Learning cloud technologies is a daunting task. A typical place to start is with certifications, giving you some practical knowledge and a badge for your resume. But where to start? AWS, Azure, and Google Cloud all have certifications. Too many certifications in fact. Microsoft and AWS have a combined 22 different certifications along multiple paths. What if you chose poorly? How do you prepare? And how do you deal with failure? Our guest, Mike Pfeiffer, is here to help us find guidance in the foggy world of cloud certifications. We discuss: * The value of certifications and reasons for getting them * Recommendations for people just getting started * Can certifications keep up with cloud tech churn and service releases? * Non-cloud certs to consider * Exam prep tips * More Show Links: AWS Certifications Microsoft Certifications Google Cloud Certifications Certified Kubernetes Administrator – CNFC Mike Pfeiffer on Twitter Mike Pfeiffer on LinkedIn Mike Pfeiffer’s Web site
January 21, 2020
Today’s Full Stack Journey episode explores Contour, an an Envoy-based Kubernetes Ingress controller developed by Heptio/VMware. My guest is Steve Sloka (Twitter, GitHub). We discuss Steve’s journey into Docker, containers, and Kubernetes as a developer, and their impact on his career. Then, we spend some time chatting about Contour, its benefits, and how it compares to other Ingress controllers. Over the course of these two topics, Scott and Steve address questions like: * How did getting into Kubernetes and containers impact your career? * Was it beneficial to straddle both the infrastructure and software development sides of IT? * What is Kubernetes Ingress? * Why create and develop Contour? * What are some benefits of Contour as compared to other Ingress controllers? * How would someone get started as a user of Contour? Sponsor: ITProTV Grow your IT career with online IT training from ITProTV. From CompTIA, Cisco, and Microsoft, ITProTV has over 4,000 hours of training. Stream courses live or on demand on your favorite device. Get a 7-day free trial and 30% off all plans at Use the promo code “FULL” when you check out. Show Notes: Project Contour GitHub repository for Contour Steve Sloka on GitHub Steve Sloka on Twitter
January 20, 2020
Today’s show looks back at some of the most impactful Internet outages of 2019 with sponsor ThousandEyes. We’ll discuss what happened in these outages, who was affected, and lessons learned. Our guest is Angelique Medina, Director of Product Marketing at ThousandEyes. We examine a June 2019 incident that impacted large swathes of Google Cloud, and a June 2019 route leak that snared CloudFlare, though it wasn’t CloudFlare’s fault. We discuss: * How these outages occurred * Why Internet visibility is critical as more applications and services move to the cloud * How ThousandEyes can help network engineers understand and diagnose problems * Getting mean time to innocence * Remediation strategies * More Show Links: Looking Back at the Biggest Internet Outages of 2019 – ThousandEyes Network Intelligence Blog – ThousandEyes Angelique Medina on Twitter ThousandEyes on Twitter
January 20, 2020
Today's Network Break podcast analyzes Equinix's acquisition of Packet, privacy announcements from Google and Verizon, a US Senate proposal to spend a billion dollars on 5G, and more tech news.
January 17, 2020
For network automation you need a single source of truth that’s programmatically accessible, reflects intended state, and enables others to stand up infrastructure correctly without you getting in the middle of every provisioning request. Tim Schreyack joins us today to discuss network automation approaches using Ansible and Python, and of course, a single source of truth.
January 15, 2020
Today’s Day Two Cloud episode explores network automation through the lenses of infrastructure as code and CI/CD pipelines. As network automation permeates organizations, does it make sense for network engineers to adopt more developer-like processes, methods, and tools? Can you successfully automate your infrastructure without elements such as code repositories and a CI/CD processes? Our guests for this conversation, sponsored by Cisco, are Carl Moberg, Senior Director of Product Management at Cisco; and Kristian Larsson, who has dual roles at Cisco and Deutsche Telekom. We discuss: * Infrastructure as code as a valid concept * Whether network engineers will really use CI/CD pipelines in network automation * How many developer tools or concepts need to be embraced by operations teams * Building a CI/CD tool chain * How to select tools based on your specific requirements * How version testing becomes a welcome safety net instead of a pain-in-the-butt task * Grappling with the cultural and process changes * More Show Links: Carl Moberg on Twitter Kristian Larsson on Twitter Kristian Larsson’s blog “Network Automation ramblings” Robust Network Automation – Kristian Larsson on YouTube Cisco Network Services Orchestrator (NSO) – Cisco Systems
January 14, 2020
Today's Network Break analyzes an HPE/Cumulus Networks deal on Ethernet storage switches, yet another open-source network OS project from the Linux Foundation, Accenture's purchase of Symantec's security services biz from Broadcom, a Cisco reorganization of its enterprise networking businesses, and more tech and IT news.
January 13, 2020
Cushman & Wakefield is a real estate and property management company with offices in 70 countries around the world. As the company adopts more SaaS and PaaS services, it needed to rethink its WAN strategy to enable fast, secure, local access to the cloud without having to backhaul all traffic to regional data centers. The company chose SD-WAN from Silver Peak as a critical element of its cloud-first approach. On today’s Tech Bytes podcast, sponsored by Silver Peak, we talk with Chris Butcher, Platform Architect, Global Networks, Cloud and Perimeter Security at Cushman & Wakefield. We discuss: * Key applications and services Cushman & Wakefield relies on * How Silver Peak supports Cushman & Wakefield’s cloud-first approach * Tackling network complexity * Deploying EdgeConnect devices to two hundred locations around the world * Cost savings * More Show Links: Silver Peak Cushman & Wakefield
January 10, 2020
If one of your New Year's resolutions is to blog more, or start a blog, this episode is for you. We discuss the benefits of technical blogging including raising your profile, improving your own understanding, contributing to the community, and creating new opportunities in your professional life. Our guests are John Mark Troyer and Stephen Foskett.
January 9, 2020
If you’re looking for a way to bring IPv6 into your environment, the WLAN may be your best bet. Guest Jeffry Handal joins the IPv6 Buzz podcast to tell us why. Jeffry is a consulting systems engineer at Cisco/Meraki and a long-time IPv6 evangelist and presenter (who still finds time to volunteer his time to many worthy causes). Jeffry cut his teeth on IPv6 with an early deployment on the wireless network of Louisiana State University (LSU). This WLAN serves 40,000 users and over 100,000 devices. Topics discussed include: * Jeff’s experience deploying IPv6 at LSU and how the industry has advanced * Why IPv6 is key to enabling network platforms to scale * Why the enterprise space is finally paying attention to IPv6 and how network vendors are responding * How IPv6 features are prioritized (or not!) by vendors * Security capabilities enabled by IPv6 * Why IPv6 multicast requires platform optimization Thanks for listening! Show Links Jeffry Handal on Twitter Jeffry Handal on LinkedIn IPv6 Device Compatibility – Meraki Meraki Go Community – Meraki IPv6 @ Meraki – Meraki IPv6 Buzz 039: Bringing IPv6 Into Enterprise Wireless – Packet Pushers Your Hosts * Ed Horley @ehorley * Scott Hogg @scotthogg
January 8, 2020
Edge computing is all the rage in cloud conversations. From industrial controls to IoT sensors to cell tower infrastructure to automation systems and even drones, there are innumerable use cases where data needs to be collected, packaged up, and shipped off somewhere to be processed and analyzed. On today’s Day Two Cloud episode, we sit down with Rob Hirschfeld to examine the challenges of working in edge environments. Many of those challenges revolve around the infrastructure itself: how to provision, configure, and operate equipment in remote locations, how to ensure logical and physical security, and how to manage it all remotely. Rob is founder and CEO of RackN, and a member of the LF Edge group at the Linux Foundation. In this episode, recorded at Kubecon 2019, we discuss: * The shifting definitions of “edge” * The need for edge standards * Unique edge use cases such as drones * Management and security challenges, including physical security * Whether AWS and Azure will “own” the edge * The role of Kubernetes in edge environments * More Show Links: RackN Edge Unpopular Opinions – YouTube LF Edge – Linux Foundation Rob Hirschfeld on Twitter (@zehicle) RackN Day Two Cloud 003: Building And Automating A Private Cloud Underlay – Packet Pushers
January 6, 2020
Based on what we know about Space Networks like Starlink, I propose that next generation cars won’t use 5G. Its doesn’t make sense to deal with telcos when cars are mostly outdoors, have enough power and space for a satellite link.
January 2, 2020
Software Defined Infrastrcture has changed the way we operate networks but little impact on the process of design or decision making. Doing the same old thing better isn’t enough, enter Data Driven Infrastructure where the design process changes to a full cycle, adversarial, interative cycle.
December 25, 2019
Welcome to a special holiday episode of Day Two Cloud with guest Kelsey Hightower, a Kubernetes evangelist and contributor. In early December, Kelsey tweeted an open invitation to podcasters who wanted to bring him on to talk all things Kubernetes and cloud. Day Two Cloud jumped at the chance to have a conversation. We discuss: * Kelsey’s tech background and his involvement with the Kubernetes project * The problem of rapid iteration and stability * OpenStack as a cautionary tale; what did the Kubernetes project learn and do differently? * Whether traditional infrastructure / operations folks should invest time in learning Kubernetes innards * If we’ll get to a point where K8s, to most consumers, is a black box we consume * Areas for improvement, including networking and multi-cluster management * Future thoughts Show Links: Kubernetes Kelsey Hightower on Twitter Keynote: Reflections (Kelsey Hightower) – YouTube
December 23, 2019
In our last episode of 2019, we cover several follow-ups and discuss news from Google and Cisco, and examine a new industry consortium to connect smart home devices. Have a happy holiday and a great new year and we'll see you in 2020.
December 20, 2019
The Packet Pushers hosted a livestream Q&A where a panel of commentators answered live audience questions. Topics covered include Cisco's new ASIC, whether multi-cloud will get its own hypervisor, a new Cisco certification path, and more.
December 18, 2019
The network has lagged behind other IT disciplines when it comes to automation. This lag is painfully apparent in the cloud, where resources can be spun up and down with a few clicks, or more likely, a few API calls. But cloud doesn’t make networking go away. In fact, network connectivity, as well as the accompanying policies and controls, are just as critical in the cloud as on premises. On today’s Day Two Cloud podcast, we welcome two guests who are on a mission to get network engineers to delight their application counterparts by making networking something that can be consumed effortlessly, while still enabling the network teams to meet their own demands and requirements. Our guests are Carl Moberg, Senior Director of Product Management at Cisco; and Peter Sprygata, Distinguished Engineer at Ansible by Red Hat. Cisco is our sponsor for this discussion, and Carl and Peter are going to get into details about how Cisco’s Network Services Orchestrator (NSO) integrates with Ansible to help automate hybrid and multi-cloud deployments. We discuss: * Using Ansible and NSO for cloud automation * How these tools work together * Use cases including tying resources from on-prem into public cloud, and linking multiple public clouds * Key takeaways Show Links: Cisco Network Services Orchestrator (NSO) Red Hat Ansible Carl Moberg on Twitter Peter Sprygata on Twitter
December 17, 2019
Today’s episode is the story of a career journey, and the influence of open source on that career. Scott is joined by Matt Broberg (@mbbroberg on Twitter, GitHub, and just about everywhere else), currently a technical editor and open source advocate at Scott and Matt hit on topics such as: * The importance of doing something you love * Why it’s necessary for technologists to understand business fundamentals * The “pull” of open source on Matt’s career * How to stay technical when you’re not in a technical role (TL;DR: your “hands on” time is under your control!) * Sharing is caring–why sharing with others in our communities is so critical Matt is an engaging guest, so listeners should be able to extract a few nuggets of wisdom from the conversation. Matt wanted to share a quote with listeners, but couldn’t find until after the show recording has concluded, so we included it here in the show notes! “He who receives an idea from me, receives instruction himself without lessening mine; as he who lights his [candle] at mine, receives light without darkening me.” ~ Thomas Jefferson Give this episode a listen, and let us know your feedback! This is the final episode of 2019. Thanks for listening, and see you in 2020! Show Links: * Figuring out how you like to learn (this YouTube video, this personal research) * Interstitial journaling * Matt’s #1 recommendation for 2020 * Matt’s website
December 17, 2019
The growing complexity of IT environments make it harder for SecOps teams to keep pace with developers, manage access to resources, and ensure that the right controls are in place and policies are met. Sponsor Tufin joins the Heavy Networking podcast to discuss how automation can boost SecOps effectiveness while tackling initiatives such as zero trust and network segmentation on premises and in the cloud.
December 16, 2019
SD-WAN is the topic for today’s Tech Bytes conversation with sponsor Fortinet. If you’ve paid any attention to the SD-WAN market over the past couple of years, you know you have a lot of vendor choices. In this episode, we talk with Fortinet about how it differentiates itself from competitors, including its ability to inspect TLS 1.3, custom ASICs, and more. Our guests from Fortinet are Alex Samonte, director of technical architecture; and Nirav Shah, senior director of products and solutions. We discuss: * How Fortinet handles TLS for traffic encryption and application identification * The challenges of TLS 1.3 and how Fortinet addresses them * Fortinet’s use of custom ASICs for security and SD-WAN * Integrations with Azure ExpressRoute and AWS Direct Connect * The evolution of SD-WAN at the branch Show Links: FortiGate: Secure SD-WAN TLS 1.3: What This Means For You – Fortinet Secure SD-WAN Needs to Support Your Cloud On-Ramp Strategy – Fortinet
December 16, 2019
On today's Network Break we analyze Cisco's new ASIC platform and the 8000 router series, dig into a string of AWS announcements related to networking and security, and discuss new products from Cato Networks and Silver Peak.
December 13, 2019
Today's Heavy Networking drills into routing complexities and options for hybrid cloud networking. Our guest is William Collins, lead cloud architect at a large healthcare company. He shares his experiences connecting resources on premises to public cloud services. We also discuss the importance of design and governance, and why your networking skills are absolutely critical when it comes to the cloud.
December 12, 2019
In November of 2019, the Regional Internet Registry for Europe, or RIPE, announced that its supply of public IPv4 addresses was officially depleted. In today’s episode of IPv6 Buzz, Ed, Scott, and Tom discuss what that means and why it’s impactful for companies everywhere (not just in Europe). They also discuss the history of IPv4 address exhaustion and why IPv6 adoption is key to avoiding or mitigating the negative effects of it. Topics discussed include: * IANA and the Regional Internet Registries (e.g., RIPE, ARIN, APNIC, LACNIC, and AFRINIC) * The history of IPv4 address exhaustion among IANA and the RIRs * The role that cloud service providers play in IPv4 address exhaustion and its effect on customers * The impact of IPv4 exhaustion on enterprises and how they can manage it Thanks for listening! Sponsor: 128 Technology Set your network free with Session Smart™ Networking from 128 Technology, the only tunnel-free solution for SD-WAN and cloud networking. Visit to learn more about going tunnel-free today. Show Links: The RIPE NCC Has Run Out of IPv4 Addresses (November 2019) – RIPE ARIN Finally Runs Out of IPv4 Addresses (from Sept 24th, 2015) – ARIN ARIN Finally Runs Out of IPv4 Addresses – Scott Hogg via Network World IPv4 Address Report – (Geoff Huston) LACNIC’s IPv4 Depletion Phases – LACNIC IPv4 Address Exhaustion – Wikipedia Your Hosts: * Ed Horley @ehorley * Tom Coffeen @ipv6tom * Scott Hogg @scotthogg
December 12, 2019
Kubernetes…you’ve heard the term. You might know loosely what it means, or perhaps you’ve caught wind of some Dev team using it in your organization. Despite all the talk about Kubernetes, actual adoption remains relatively low, particularly in the enterprise. Not everyone is a Netflix or an Uber or a Google. We’re not all trying to solve planet-scale distributed computing platforms, we just want to make sure our website doesn’t go down and that finance can process payroll. As an IT practitioner and curious person, do you actually need to know more about Kubernetes? Does Kubernetes and its ecosystem materially matter to your organization? Is K8s just stepping stone to more advanced technologies, becoming the laser disk of media formats? Those are the questions we are going to try and answer on this episode of Day Two Cloud. Our guests are Keith Townsend, founder and principle at The CTO Advisor; and Justin Warren, a technology analyst and IT consultant at PivotNine. We discuss: * Reasons for the hype around Kubernetes * Whether OpenStack is an apt comparison to Kubernetes * Enterprise adoption of Kubernetes, or the lack thereof * How enterprise vendors are approaching Kubernetes * Key takeaways for listeners Show Links: Justin Warren on Twitter Eigen Magic – Justin Warren’s Blog Keith Townsend on Twitter The CTO Advisor – Keith Townsend’s Blog Day Two Cloud 025: The KubeCon 2019 Wrap-Up – Packet Pushers
December 10, 2019
5G presents a new set of challenges for service provider networks. As networks become increasingly dynamic and distributed to deliver an ever-evolving set of services, providers have to contend with increased complexity. Juniper Networks joins the Packet Pushers to discuss how its automation capabilities and tools can help tame the complexity beast. Our guest is Amit Bhardwaj, Director of Product Management at Juniper Networks.
December 9, 2019
Take a Network Break! Broadcom ships its fastest ASIC yet, the 15.6Tbps Tomahawk 4; Juniper Networks gets a new CTO, enables cloud control of its EX switches; and rolls out new CPE; Palo Alto Networks reports its latest quarterly financials, and we cover lots of listener follow-up.
December 9, 2019
Silver Peak is our sponsor for this Tech Bytes episode, and we’re talking SD-WAN with their customer, the Vitec Group. The Vitec Group manufactures and distributes camera accessories for film and broadcast television production. Vitec Group has deployed Silver Peak’s Unity EdgeConnect edge devices to sites from Central America, across North America and Europe, to Asia. It’s also deployed virtualized EdgeConnects in Azure. The company has been able to migrate off its MPLS circuits while also improving performance of critical applications and key jobs such as backups. Our guest is Ben Skinner, head of corporate networks and infrastructure at Vitec Group. We discuss: * WAN problems that affected voice services and other critical applications * Why the company chose Silver Peak * Deploying Unity EdgeConnect devices globally, including in the public cloud * Key metrics of SD-WAN benefits including faster backups and application performance boosts * Management benefits of Silver Peak’s Unity Orchestrator * More Show Links: Silver Peak Silver Peak SD-WAN Vitec Group
December 6, 2019
Streaming telemetry is an essential element in a network automation framework. On today's Heavy Networking, sponsor Juniper Networks joins the podcast to discuss how telemetry differs from traditional monitoring such as SNMP, how telemetry informs and enhances automation, and how to consume telemetry to make it actionable without overwhelming network operators (or your collectors). Our guest is Javier Antich from Juniper's Automation Software team.
December 6, 2019
I was hosting a panel for ONUG London this week and this was the topic of discussion. Enterprise are signalling that they believe in multi-cloud. It is a problem that multi-cloud means different things to different people e.g. Infrastructure  vs Developers, Pre-pack vs DIY, On-prem vs Off-prem cloud and so on. The marketing fog surrounding this market does create some confusion about what exactly multi-cloud is. Perhaps the most substantial challenge of multi-cloud is the lack of interoperability and divergence of public cloud services.  This is further compounded by aggressive addition of new services to clouds that are internally developed with zero consideration for customer interoperatibility. Perhaps the most visible aspect of this is that AWS continues its corporate branding that there is only one cloud. Its not public, multi or hybrid. AWS is THE CLOUD and the small number of salary slaves who are permitted to speak in public must toe this line or become un-salary slaves. Each cloud vendor has fully incompatible network plans. From the models of their virtual networks, to their private APIs and total lack of transparency into upcoming plans, there is not  The conclusion is that the future of public cloud interoperability is none. Customers are on their own and face hostile suppliers who are truly uncaring what the customer wants. Lets face it, Azure, Google are AWS are bigger than any their customers and they have very few reasons to listen to you.
December 4, 2019
Cloud networking is a pain in the butt. The constructs use things you’re familiar with, like IP addresses, routing, and so on. But then…it gets weird. Plus, the way networking is done in one cloud isn’t the same in a different cloud. The temptation is to pave over the public cloud native networking with virtual machines of routers and firewalls you know that work more like how you want. But is that the right way to go about cloud networking? VMs plus some IPSEC tunnels? Especially when you get into multi-cloud? Today on Day Two Cloud, we talk about multi-cloud networking with sponsor Aviatrix. Aviatrix has built a networking solution that’s multi-cloud capable and leverages cloud-native constructs wherever possible. And they do it in a way designed to make the life of IT engineers better. Our guests are Rod Stuhlmuller, VP Marketing; and Nauman Mustafa, VP Solutions Engineering from Aviatrix. We discuss: * A definition of multi-cloud infrastructure * How Aviatrix views cloud-native networking * Using cloud-native tools vs. running routers, firewalls, etc. in VMs in the cloud * Challenges such as visibility, and network correctness in cloud networking * How Aviatrix works * Customer case studies * More Show Links: Aviatrix Day Two Cloud Show on Twitter Ned Bellavance on Twitter Ethan Banks on Twitter
December 3, 2019
Heavy Networking revisits segment routing on today's episode. This time we look at segment routing as it's being use in an international science network. Our guest is Nick Buraglio. We discuss which flavor of segment routing in use, the problems the network was trying to solve and how segment routing addresses them, challenges of path computation, and more.
December 2, 2019
Cloud networking can be opaque and complex. If your organization has workloads running in multiple clouds, your network operations team has to deal with the individual quirks and idiosyncrasies of each cloud service. The result? An operational mishmash of networking constructs, tools, and management. On today’s Tech Bytes episode, sponsor Arista Networks introduces us to CloudEOS, a cloud-native version of Arista’s network operating system. CloudEOS is designed to provide a common operational experience from private and hybrid clouds to public clouds and all the way into your Kubernetes hosts. CloudEOS uses APIs and automation tools such as Terraform to help network engineers keep pace with their developer counterparts, while also employing key standards such as BGP, EVPN, and VXLAN. Our guest for this CloudEOS introduction is Doug Gourlay, Vice President and General Manager, Cloud Networking Software, at Arista Networks. Show Links: Delivering a Multi Cloud and Cloud Native Operator Experience – Arista Networks Arista Networks Demonstrating CloudEOS™ – YouTube Introducing CloudEOS – YouTube Demonstrating CloudEOS – YouTube Exploring CloudEOS – YouTube
December 2, 2019
Today's Network Break is an Analyst Holiday Party. Instead of news coverage, we examine a few broad topics including whether Kubernetes has legs in the enterprise, the complexities of multi-cloud, the recent financial woes of legacy networking vendors, and more. Our party guests are Eric Hanselman, Chief Analyst at 451 Research; Brad Casemore, Research VP of Data Center Networks at IDC; and Keith Townsend, founder of The CTO Advisor.
November 29, 2019
With more than 2,800 branch deployments in North America alone, our guest Snehal Patel is running one of the largest SD-WAN deployments on the globe. He stops by the Heavy Networking podcast to share his experiences, both good and bad, on deployment and operations, management, training, security, working with carriers, and more. Snehal is a global network architect for a brand-name retailer.
November 28, 2019
From the virtually limitless supply of IPv6 addressing to good vendor support to IPv6-only efforts and beyond, Ed, Scott, and Tom discuss what they’re most thankful for when it comes to IPv6 in this holiday episode of IPv6 Buzz. Happy Thanksgiving from Ed, Scott, and Tom!
November 27, 2019
KubeCon is the annual conference for the Cloud Native Computing Foundation. Ned Bellavance and Ethan Banks went. In this episode of Day Two Cloud, they share their impressions of the event, the big ideas from the show, and some thoughts on a few of the many vendors they spoke to. They cover: * Why everyone is lost * Whether the enterprise is ready for Kubernetes * Use cases and business cases for Kubernetes * Why observability and connectivity are key issues * Keynote highlights * The importance of community * More Show Links: KubeCon 2019 North America Cloud Native Computing Foundation Kubernetes Community Days CoreDNS Jaeger Vitess Rook NATS
November 27, 2019
BBR is a congestion control algorithm (CCA) that's growing in use on the Internet. However, a design element in BBR starves competing CCAs for bandwidth on shared links, allowing BBR to consume more than its fair share. On today's Heavy Networking we speak with researchers at Carnegie Mellon University who have measured BBR's unfairness. We discuss the research, learn how BBR differs from legacy algorithms such as Cubic and Reno, and explore impacts to the Internet. Our guests are Ranysha Ware, Ph.D. student; and Justine Sherry, Associate Professor of Computer Science.
November 26, 2019
On episode 36 of the Full Stack Journey, Scott talks with a guest who is just beginning their professional IT career. Kori Younger (@sdndaughter on Twitter, @cyberkori on Instagram) joins Scott to discuss the career-long journey of learning that lies ahead of this talented new IT professional, as well as discussing some of the challenges that new IT professionals and recent college graduates face in starting their careers. Scott and Kori discuss things like: * How Kori prepared for a career in IT * How studying business prepared Kori to better understand the role of technology * The importance of diversity and inclusion for all under-represented minorities in technology * What a failure resume is, and why it’s important * Whether a college degree is worth it, or if certifications are good enough Whether you’re new to the IT industry or have been around for a couple of decades, there are perspectives and lessons here for all listeners! Sponsor: Pilot Fiber Pilot Fiber is hiring network engineers for support and infrastructure roles! With hundreds of happy customers in NYC, we’re out to prove that a happy team means happier customers.  Pilot is looking for technical pros who share a passion for driving an unprecedented end-to-end experience. Find out more at Show Links: Total – Kori’s Web site Kori Younger on Twitter Kori Younger on Instagram
November 25, 2019
Today’s Tech Bytes podcast looks at Application Performance Management (APM) with sponsor SolarWinds. SolarWinds brings together several APM tools into a SaaS-based portfolio, the SolarWinds APM Suite. The suite includes Web app performance and user experience monitoring, application performance and infrastructure monitoring, and log analysis and management. The goal is to help infrastructure teams solve problems faster and get unified visibility across user experience, infrastructure, metrics, traces, and logs. Our guest today is Denny LeCompte,  senior vice president and general manager of application management at SolarWinds. We discuss: * SolarWinds’ approach to APM * The suite’s components and capabilities * How the company differentiates its products from others on the market * Integrations with Azure to enable better monitoring and management of cloud services * More Show Links: SolarWinds SolarWinds on Twitter OrangeMatter – SolarWinds OrangeMatter Podcast – SolarWinds SolarWinds On YouTube SolarWinds Helps Tech Pros Win Their Digital Transformation Bets with Microsoft Azure – BusinessWire
November 25, 2019
Keysight took a different approach to this Tech Field Day briefing and spent a lot of time talking about the current state of networking threats and the events that you are protecting against. If you aren’t aware from what your network security is doing, its an good presentation for that.   Keysight has many business units delivering testing of hardware. Ixia is a business unit of Keysight that offers testing of network appliance and devices. The session covered three appliances. Breaking Point is an appliance that can generate very high data rates for testing. Threatarmor –  a Network Security Solution with a Security Rule for Every IP Address on the Internet. Keysight Ixia Visibility – fits into a category industry people call a ‘packet broker’ or what I call a reverse switch/router 🙂      
November 25, 2019
Today's Network Break episode discusses new data center software and switches from Extreme, new networking cloud tools from Google, Microsoft's support for DoH, an internal re-organization at Cisco and more tech news.
November 22, 2019
Forescout is a Network Access Control company that has been successful in the large US companies. Its not a company that has come to my attention in the last 10 years so I’m fresh to the whole thing. Its large vendor, 1200 staff with 400 engineers and  3500 customers.  Key features – Agentless, non-disriptve to endpoints, uses network as a source of truth – Flows, taps, packets capture, sensors, device polling: WMI, SSH:,  – Claims of 20 different method or techniques of data collection leading to 100% visibility – Allows consumption of encrypted data and data analysis can get signal out of that – Real time discovery leading to continuous posture assessment – Operates at scale, they claim up to 2M endpoints/devices – NAC – Discovering unknown devices.  – Trace data flows in the network, e.g. who is using telnet, identify the source, track it down and prevent that somehow.  – NAC is not access through authentication but enforcement in network  but using the existing control points in your networks aka firewalls, routers, switches etc. Control is the keyword.  – This constant monitoring delivers visibility into constant compliance and for audits, you can show current state but also easily prove that you have future issues managed.  – By analysing the data, they can find out of date systems.  – The need to collect data is key to this type of solution and this means you must have control of the network and the ability to deploy taps, flow agents and  collectors, span pots and so forth. This is much easier than attempting to deploy endpoint agents on the current software we have.  – This process can support existing segmentation technologies and its usefulness.  They have a newer product called eyeControl which will deploy configuration changes to the network for certain cases. This seems to be in the early stages and now that SDN is accepted I suspect customers will expect this functionality.   What I felt was missing  Authentication – a key part of µset is identity. Action as Configuration – this is  visibility only derived from analytics. . Its doesn’t configure the control points. Once you have derived a conclusion from the data, you need to act manually. This isn’t a bad thing, SDN across multiple vendors is not a solved problem, and often at odds with your existing IT functions.  But you kind of what automation or orchestration to do the thing. So get out your preferred solution for that.  Forescout believes that they can address  this over time.  Over the last five years, we have seen Cisco and Aruba bundle their NAC products into the campus portfolio which is changing that market. NAC is one method of segmentation, and perhaps a part of a microsegmentation strategy.  What stands out is that Forescout is different type of campus microsegmentation from Cisco’s SD-Access or Aruba’s Clearpass NAC.  1. Uses existing technology and requires no upgrades, although it might work better with some.  2. Doesn’t change the user experience or the end points in the network  3. Provides information so your existing processes can handle the change.  If that works for you, then it might be worth a closer look.    Forescout Company Introduction with Pedro Abreu Forescout Transforming Network Segmentation
November 22, 2019
Today's Heavy Networking dives into a research project, Geneva, that uses genetic algorithms to evade Internet censorship. The project was developed at the University of Maryland. We drill into how it works with guests Dr. David Levin and graduate student Kevin Bock from the University of Maryland.
November 21, 2019
In this episode of Network Neighborhood, we welcome Ramzi Marjaba, Hybrid Senior Sales Engineer at Ixia Solutions Group at Keysight Technologies. Ramzi is also the creative power behind, a career-oriented resource site for sales engineers featuring a blog, a podcast, and more.
November 20, 2019
“Strategy” seems like one of those words that executives get all excited about and deliberate over for months, while real work actually gets done every day by technical people. But when it comes to the cloud, don’t dismiss strategy in favor of “Let’s just build it now and figure it out as we go.” That’s an excellent way to create problems for yourself, and the organization, including technical debt, unexpected costs, security and compliance trouble, and other bedevilments. IT needs a cloud strategy that aligns high-level business goals with more nitty-gritty operational details Today on Day Two Cloud we have a frank discussion about developing and refining a cloud strategy with IT operations in mind. Our guest is Ed Horley. You may recognize his voice from the IPv6 Buzz podcast, which he co-hosts. He’s also co-founder and CEO of HexaBuild, an IT consultancy. Ed is also an author and a recognized expert on IPv6. We discuss: * Why a strategy is important beyond the C-Suite * The risks of not having a strategy, including shadow IT, technical debt, the need to refactor later on, and others * How to incorporate general goals along with more specific operational requirements and objectives, particularly around identity and access management * Using discovery and documentation as you develop the strategy * Suggestions for getting the ever-elusive “buy-in” from various stakeholders * What happens when strategy runs into what people actually do Key Takeaways: * Start early and often because someone already deployed something into the cloud from your company – you just don’t know which department, what cloud, and if they did anything with best practices. *  Strategy isn’t hard – consensus is. Use RACI to help move the project and decision making forward. * Learn by doing – it is really hard to do strategy and architecture and never used, deployed or run any cloud infrastructure. Start with things like the AWS Well Architected Framework and other best practices. * Do NOT underestimate how important identity and secrets are in the strategy – it can break your entire strategy and project if you get it wrong! Show Links: Responsibility Assignment Matrix (RACI) – Wikipedia Ed Horley on Twitter – Ed Horley’s blog IPv6 Buzz Podcast – Packet Pushers IPv6 Buzz on Twitter
November 19, 2019
Fortinet sponsors today's Heavy Networking podcast. You probably know Fortinet as a firewall company, but today's conversation focuses on Fortinet's secure SD-WAN capabilities. Fortinet guests Nirav Shah, senior director of products and solutions; and Alex Samonte, director of technical architecture come on the podcast to talk about key SD-WAN features, how SD-WAN is evolving, the role of SD-WAN in cloud access, and more.
November 19, 2019
Time for a break! Enjoy a virtual donut as we analyze the latest tech news, including a new wired automation service from Juniper, Docker's divestment of its enterprise biz, a new SD-WAN entrant from Untangle, the rollout of a commercial version of AT&T's open network OS, and more!
November 18, 2019
Today’s topic is traffic decryption, particularly how and why to do it for security and operations purposes. In particular, we look at decrypting traffic running within the enterprise data center. Our sponsor is ExtraHop and our guest is Tom Stitt, Senior Director, Product Marketing, Security at ExtraHop. We delve into key details about ExtraHop’s Reveal(x) product, a Network Detection and Response (NDR) platform that provides visibility, security, and performance monitoring for enterprises. We discuss: * Why you want to decrypt internal traffic * Reveal(x)’s out-of-band decryption mechanism * The use of a secret sharing agent for TLS 1.3 encrypted sessions * How Reveal(x) can identity compliance-sensitive traffic and leave it encrypted * More Show Links: ExtraHop Demo Reveal(x) Cloud for AWS How Decryption Helped Beat the Nazis – ExtraHop Blog Encryption vs. Visibility:Why SecOps Must Decrypt Traffic for Analysis – ExtraHop (PDF)
November 15, 2019
Sponsor ThousandEyes comes on Heavy Networking to review their research on the global cloud performance of AWS, Azure, GCP, AliCloud, and IBM. Their data measures and compares public clouds from a networking perspective, helping us figure out optimal placement of workloads and connectivity. Our guests from ThousandEyes are Archana Kesavan, Director, Product Marketing; and Angelique Medina, Director, Product Marketing.
November 14, 2019
In this week’s episode, Ed and Tom discuss enterprise wireless and IPv6 with Joe Neville. Joe is a technical consultant at HPE/Aruba, where he is heavily focused on IPv6 in the enterprise. He’s recently produced a series of in-depth IPv6 configuration videos and has also been a featured speaker at UK IPv6 Council events. Topics discussed include: * What constitutes proper vendor support for IPv6 in enterprise Wi-Fi * Operational considerations when enabling IPv6 in Wi-Fi * The impact of the lack of DHCPv6 support in Android for enterprises considering deploying IPv6 * How the various IPv6 options available for auto-configuration both solve and create operational challenges * The role IPv6-only will play in the enterprise Thanks for listening! Your Hosts: * Ed Horley @ehorley * Tom Coffeen @ipv6tom Sponsor: Pilot Fiber Pilot Fiber is hiring network engineers for support and infrastructure roles! With hundreds of happy customers in NYC, we’re out to prove that a happy team means happier customers. Pilot is looking for technical pros who share a passion for driving an unprecedented end-to-end experience. Find out more at Show Links: Joe Neville’s IPv6 Videos – YouTube Nullzero – Joe’s Blog MSIT Ongoing Journey to IPv6-only and Lessons Learned From it – RIPE Presentation
November 13, 2019
You need to put workloads in places that make operational and economic sense. When you’ve done that thoughtfully, you’re going to end up with workloads in a mix of places: AWS. Azure. GCP. And then a variety of on-premises locations–colocation, your own data centers, and edge locations where data must be processed immediately to be useful. So…yeah. You’ve got compute spread all over the place. How do you make smart decisions about where, architecturally, certain workloads should be placed? And when you’ve sorted that out, how do you handle that operationally? To help you reduce your stress is our sponsor VeloCloud, a VMware company. Joining us from VeloCloud is Marco Murgia, Senior Director of Product Engineering. We discuss: * How cloud and SaaS affect network design and operations * The pros and cons of connecting your data center to cloud providers such as AWS and Azure * Stitching together applications and services from disparate public clouds * Whether engineers need to understand each public cloud’s peculiarities * The role of mid-mile and last-mile connectivity * How to take advantage of edge compute * More Show Links: VeloCloud Architecture – VMware VeloCloud Analyst Reports, White Papers and eBooks – VMware VeloCloud VeloCloud By VMware Blogs VeloCloud On Twitter
November 12, 2019
Guest Alex Marcham returns to Heavy Networking to explore edge exchanges. Like Internet exchanges, the goal of an edge exchange is to provide direct interconnection and traffic exchange between provider networks, but edge exchanges move that infrastructure closer to end users. Alex walks us through how these exchanges work.
November 12, 2019
On today’s Tech Bytes, our sponsor is Tufin, and we’re going to dig into the concept of agility in the enterprise, particularly as organizations adopt cloud services and container-based applications. Our guest is Aleck Brailsford, Director of Sales Engineering for the Americas at Tufin. We discuss: * How automated policy management helps organizations streamline operations * Using Tufin to ensure that security and compliance controls are part of application deployments * The challenges presented by cloud and container-based applications * Getting visibility into and policy control in Kubernetes environments * More Show Links: 3 Steps to Meeting Cloud Agility with Security Policy Automation -Tufin Applying Zero Trust Principles to Your Network – Tufin Expert Q&A on the 5 Steps to Doing Security Automation Right – Tufin Ask the Expert: How DevOps Improves Business Agility – Tufin From Risk to Action – Security Automation and Orchestration – Tufin Tufin Integration With Swimlane – Tufin 5 Clear Signs You Need to Automate Network Security Operations – Tufin Tech Bytes: Implementing Sensible Network Segmentation With Tufin (Sponsored) – Packet Pushers
November 12, 2019
Brad Casemore from IDC joins Network Break as a guest commentator, and we've got a ton to talk about, including a new campus automation framework from Pica8, new IPS capabilities in VMware's NSX, the release of a limited beta for VMware's Kubernetes wrangler Tanzu Mission Control, an Infoblox acquisition, and more FU than you can shake a virtual donut at.
November 8, 2019
Today on Heavy Networking, sponsor Open Systems comes on the podcast to discuss the new opportunities--and challenges--for networking in a time when more applications and services are running in the cloud. We explore how cloud services affect WAN design, how organizations can use SD-WAN to enhance networking and security, and much more. Our guest is Silvan Tschopp, head of solutions architecture at Open Systems.
November 6, 2019
Change is inevitable, and sometimes even welcome. Sometimes you need to shift careers or try out a new food. Other times someone tells you that you only need one space after a period, and while that person is obviously a lunatic, you discover the world is full of lunatics and you are outnumbered.  So I guess what I am saying is that change can be bad (two spaces 4 LIFE), but change can also be good. On this episode of Day Two Cloud, we talk about the best possible change: Day Two Cloud getting even better! Packet Pushers co-founder Ethan Banks is joining as a co-host. And Day Two Cloud is also becoming a weekly show! With the addition of a co-host, we have more shoulders to put to the content generation wheel. On this episode we discuss: * Why Ethan is coming aboard and the show is going weekly * How to connect with Ned and Ethan at Kubecon 2019 * Upcoming deep-dives series on Kubernetes, public cloud, security, and service meshes * Individual show ideas * The launch of the Day Two Cloud dedicated Web site If you’d like to get Day Two Cloud sent to your favorite podcatcher, you can subscribe here. And if you’d like to get more podcasts in the Packet Pushers’ network, you can subscribe to individual shows or get the full feed of every podcast here. Show Links: Day Two Cloud Show on Twitter Day Two Ned Bellavance on Twitter Ethan Banks on Twitter Day Two Cloud episode catalog – Packet Pushers
November 5, 2019
Managed Service Providers (MSPs) are trying to sell SD-WAN services by convincing you that you don't have the staff, training, or competence to operate an SD-WAN. On today's Heavy Networking, Greg Ferro and Ethan Banks pick this argument apart to see if there's anything to it.
November 4, 2019
As the throughput on WAN circuits ramps up, organizations may struggle to monitor performance and the end user experience. On today’s Tech Bytes podcast, we talk with sponsor AppNeta about how to get visibility all the way to up 100Gbps links. Our guests are Adam Edwards, Chief Customer Officer; and Mike Hustler, VP of Engineering at AppNeta. We discuss * The challenges of monitoring 100Gbps links * Active and passive network monitoring techniques * AppNeta’s concept of lightweight continuous monitoring * How AppNeta optimizes its software to leverage off-the-shelf components * AppNeta’s deployment architecture More Links: End to End Application Monitoring – AppNeta
November 4, 2019
The latest Network Break covers Fortinet's acquisition of endpoint security company EnSilo, digs into Gigamon's new network detection and response product, covers Extreme Networks' launch of ExtremeCloud IQ, reports on the latest tech financial results, and more.
November 1, 2019
TRex is an open source traffic generator, and the project is backed by Cisco. On today's Heavy Networking, TRex's lead developer Hanoch Haim joins us to dive into details on the software. Haim is also a Principal Engineer at Cisco.
October 31, 2019
In this week’s episode Ed, Scott and Tom discuss IPv6 in the United States’ federal government and Department of Defense with Jeremy Duncan. As a founder and leading partner of the consultancy Tachyon Dynamics, Jeremy is an IPv6 expert with nearly 15 years of working with the protocol in the federal and DoD space (including while serving in the Marine Corps). He’s also a participant with the North American IPv6 Task Force and has delivered talks at the NAv6TF summit. Topics discussed include: * How the US federal government views IPv6 adoption and how the DoD responded in deploying IPv6 * Future adoption and use of IPv6  for the DoD (as well as for civilian enterprises that work with the DoD) * How the DoD has been able to innovate using IPv6 * What the federal government needs to do to continue promoting IPv6 adoption both internally and externally Thanks for listening! Show Links: Tachyon Dynamics USGv6 Program – NIST 2015 IG Report on IPv6 Adoption – Department of Defense (PDF) DISA HPC/DREN Your Hosts: * Ed Horley @ehorley * Tom Coffeen @ipv6tom * Scott Hogg @scotthogg
October 30, 2019
Every project starts out with a great idea. But no great idea survives first contact with reality. Implementation details get in the way. Users have “requests” and “opinions”.  And the worst part is they’re probably right. That first idea turns into a second idea, and a third idea and so on, until it gets molded into something resembling a finished project. How does technical implementation and user feedback shape a solution? When is it time to make a significant change in your design? And how do you know you’re headed in the right direction? Those are the topics we’ll be discussing on this episode of Day Two Cloud. My guest is Michael Fraser, co-founder and CEO of Refactr. We discuss: * Cloud complexity and the bewildering number of choices for building infrastructure * How initial designs and assumpti0ns change when tested in the real world * The challenges of building for a true multi-cloud environment * Juggling the nuances of different cloud environments * Deciding when it’s time to pivot to a new approach * More Show Links: Michael Fraser on Twitter Ned Bellavance on Twitter
October 29, 2019
Gareth Rushgrove joins Scott Lowe on the Full Stack Journey podcast. Today’s episode examines Infrastructure-as-Code (IaC). IaC is not a new topic on the podcast; we’ve talked about Terraform  (Episode 27), Pulumi (Episode 30), and Lyra (Episode 32). This time around, Scott and Gareth’s conversation focuses on the value of testing and validation for IaC environments. The episode explores topics such as: * The importance of IaC to IT professionals, even those working in smaller organizations * The types of testing (unit and integration) and validation you can incorporate into IaC implementations * Some of the tools available for validation and testing * A natural path or “progression” for folks to use when adopting validation and testing * Should IT professionals using IaC also look at at CI pipelines? If you’re learning or adopting IaC, this is a highly-recommended listen! Show Links: Gareth Rushgrove on Twitter Gareth’s DevOps Weekly newsletter Conftest Open Policy Agent
October 28, 2019
Today's Network Break examines new campus and data center switches from Aruba, looks at new SD-WAN gear from Riverbed, discusses Teridion PoPs in China for SD-WAN, explores financial results from Juniper and AWS, and much more. Guest Ed Horley joins as guest commentator.
October 25, 2019
ExtraHop is our sponsor for today's Heavy Networking podcast. We dive into Network Detection and Response (NDR) with CTO and co-founder Jesse Rothstein. We explore how to enhance your security posture with NDR, how to use it in the cloud, ExtraHop's ability to take advantage of native cloud traffic mirroring, how ExtraHop deals with encrypted traffic, and more.
October 23, 2019
This is, sadly, the final episode of the Datanauts podcast. Chris Wahl and I had an extraordinary adventure busting IT silos, comparing notes, lobbing things over the wall at each other, and trying to sort out what the new IT stack looks like. Why? We’ll get there. Read on. But There Was So Much More To Talk About! For all of us in IT, the changes over the last five years have complicated our lives and introduced us to new tradeoffs. * Automation abstracts away important details while speeding configuration. * Orchestration enables application elasticity, but only if the app has been architected to function that way. * Cloud postulates that you don’t need infrastructure design anymore, but very public outages, along with common sense, have busted the #noops myth. In other words, we’re still figuring it out. All of us. Engineers. Architects. Developers. End users. Vendors. Open source groups. Standards bodies. Consortiums. Training companies. Resellers. The Datanauts mission isn’t really over, at least not in principle. Chris and I could keep podcasting indefinitely, having great conversations with people from all over the industry. There is much silo busting yet to be done. Reality’s Cold, Fishy Slap To The Face Reality sometimes gets in the way of what we’d like to do, though. That reality has, in the best possible way, intruded on Chris’ world. He’s got new opportunities both personal and professional that make it impossible for him to keep going as the Datanauts co-host. And so, that’s it. We’re aiming our infrastructure rocket into the IT universe and heading “out there.” That-a-way. Chris explains more in the recording for those who want the details. Filling The Void In Your Heart Over the years, many of you told us that Datanauts was a favorite. And now, we’re taking that favorite away from you. Perhaps you’re angry…or weeping uncontrollably. Maybe you just threatened a pet. A coworker cubicles away might have felt your stress ball land on their head as you hurled it over the top. Don’t be like that. Sure, Datanauts is leaving a void in your heart, but we hope to fill that void with the Day Two Cloud podcast. Author and PluralSight course creator Ned Bellavance has been running this show on the Packet Pushers network since the start of 2019, and I have now joined him as co-host. Day Two Cloud will be a weekly podcast starting in November 2019, and we’re covering cloud operations of all kinds. Private. Hybrid. Multi. And of course, public. IaaS, PaaS, SaaS, serverless. Automation. Orchestration. Security. Conversations with vendors, engineers, and industry friends–all with a healthy dose of humor and cynicism. Datanauts Forever! We won’t be taking the catalog of Datanauts shows away. The archive of published shows will remain available here. And of course, Chris is still a social human you can interact with! If you want to keep up with Chris, you can follow him on Twitter or check out his blog at Wahl Network. Our deepest thanks to all of you that subscribed and listened. Datanauts was one of the most downloaded channels on the Packet Pushers podcast network. We’ll miss it as much as you will.
October 22, 2019
Today's Heavy Networking tries to leak some of the hot air out of the term "digital transformation" to see what this term really means for IT and the business, and what the impact of transformation might be on engineers responsible for such initiatives. Our guests are Paul Beyer, Infrastructure Architect; Tobias Metz, Consultant Network Engineering & Training Coordinator; and Emma Cardinal-Richards, Senior Network Architect.
October 21, 2019
Today’s Tech Bytes podcast, sponsored by ExtraHop, explores networking and the public cloud. Yes, you still need to do networking, but the cloud is going to make things a little more dynamic. We look at how you can get visibility into cloud networking for security and performance by leveraging native traffic mirroring capabilities in AWS and Azure. We’ll also explore how ExtraHop’s Reveal(x) Cloud product uses cloud traffic for network detection and response. Our guest is Matt Cauthorn, VP of CyberSecurity Engineering at ExtraHop. Show Links: ExtraHop Try Reveal(x) Cloud – ExtraHop How Traffic Mirroring In The Cloud Works – ExtraHop Matt Cauthorn on Twitter
October 21, 2019
On today's Network Break we examine Cumulus's move into campus networking, Thoma Bravo's multi-billion-dollar bid for Sophos, and the limited debut of 5G in the UK. We also try to parse a buzzword-laded press release announcing stealthy startup Pensando Systems, discuss the EU's interim measures against Broadcom for anti-competitive behavior, and more tech news.
October 18, 2019
On today's sponsored Heavy Networking, we talk with Juniper Networks and Corero about how they've partnered on a unique solution to thwart DDoS attacks at the network edge using Juniper's MX routers and Corero's SmartWall Threat Defense Director (TDD). The solution can be used by service providers, enterprises, and in the cloud. Our guests are Ashley Stephenson, CEO of Corero; and Mark Denny, Product Manager, Senior Staff at Juniper Networks.
October 17, 2019
IPv6 special addresses, such as Link Local Addresses, are IP addresses registered for specific reasons. In this follow-up to last week’s episode IPv4 Special Addresses and IPv6 Adoption, Ed, Scott and Tom discuss IPv6 special address ranges, how they are used, and what to watch out for when using them. Topics discussed include: * Understanding the special IPv6 ranges, including the ones used in production networks * Problems caused by the use of Unique Local Addresses (ULAs) and the operational circumstances where it’s OK to use them * The special prefix reserved for DNS64/NAT64 and whether it should be used in production networks * What IPv4-mapped IPv6 addresses are and when are they used Thanks for listening! Show Links: IANA IPv6 Special-Purpose Address Registry – IANA FE80::1 is a Perfectly Valid IPv6 Default Gateway Address – Infoblox IPv6 Tunnel Broker 3 Ways to Ruin Your Future Network with IPv6 Unique Local Addresses – Infoblox The Bogon Reference – Team Cymru Your Hosts: * Ed Horley @ehorley * Tom Coffeen @ipv6tom * Scott Hogg @scotthogg
October 16, 2019
The network is always assumed guilty until proven innocent. And that has gotten even harder as new cloud networking technologies roll out. VPCs, Vnets, DirectConnect, Kubernetes, Calico–the list goes on and on. Making sure that the things that should talk can, and things that shouldn’t don’t is no small feat. How does an organization ensure that they are prepared for the cloud networking challenge? How do you select the right solution for a given environment? How do you monitor and troubleshoot this spaghetti monster of networks? My guest to help answer these questions is Andrew Wertkin, Chief Strategy Officer at BlueCat Networks. We discuss: * The need to create cross-functional teams that include network engineers when adopting public cloud * The role of network design in hybrid and multi-cloud deployments * The criticality of DNS in the cloud * Tips for monitoring cloud networks * Options for connecting multiple clouds * Application migration and application onboarding * More Show Links: Network Disrupted Podcast Heavy Networking 433: An Insider’s Guide To AWS Transit Gateways – Packet Pushers Datanauts 168: Why Design Process Matters For Data Centers And The Cloud – Packet Pushers Datanauts 163: Hybrid Cloud DNS Design With AWS Route 53 – Packet Pushers
October 15, 2019
Today’s Tech Bytes episode, sponsored by Tufin, explores network segmentation, why organizations need it, and how to implement sensible segmentation even as networks get more complex. Our guest is Sagi Bar-Zvi, Strategic Pre-Sales Manager at Tufin. We discuss: * How Tufin uses software to improve operational security and change control * Employing network segmentation to accelerate business agility * Using Tufin to get global visibility into rule sets and policies across firewalls and other devices * How Tufin integrates with modern development workflows * More Show Links: Whitepaper: A Practical Guide To Network Segmentation – Tufin Webinar: How to Define Network Zones – Tufin Blog: Network Segmentation: Secure Your Network, Contain Attacks – Tufin Blog: Network Segmentation in the Cloud: Mission Impossible? – Tufin Tufin’s Security Rules Podcast: iTunes, Spotify, Google Play and SoundCloud. Tufin’s Blog Tufin on Twitter
October 15, 2019
Today's Heavy Networking show is sponsored by Cradlepoint, which provides wireless WAN networking. Our guest Marc Bresniker, VP of Product Management, joins us to discuss using LTE for WAN connections including IoT, and to explore the benefits of using Cradlepoint's LTE solutions as part of your SD-WAN strategy.
October 15, 2019
Today's Network Break podcast is chock full of inspirational cynicism. We cover fresh funding for Forward Networks, Vodafone trialing OpenRAN gear, SUSE closing the door on OpenStack, Extreme Networks shifting StackStorm to the Linux Foundation, and more tech news.
October 11, 2019
Today on Heavy Networking we go deep on segment routing, a way to encode into a packet the path it should take through the network. Guest Ron Bonica, Distinguished Engineer at Juniper Networks, offers a detailed look at how segment routing works; discusses use cases; explores the differences among SR-MPLS, SRv6, and SRv6+; and more. Juniper is our sponsor for today's show.
October 8, 2019
On today's Heavy Networking our guest walks us through a project that brought both ACI and NSX into the same data center at a very large company. We discuss the drivers for ACI in the underlay and NSX in the overlay, the learning curves on each product, challenges and successes, and more. Our guest is Derek Wilson, a Principal Network Consultant.
October 7, 2019
MidSouth Bank serves Louisiana and Texas with 49 branches and nearly two billion dollars in assets. When Daniel Hereford joined the bank as SVP and CIO, the organization was transitioning to a hybrid cloud model and needed more flexibility from its WAN to support this transformation. On today’s Tech Bytes podcast, sponsored by Silver Peak, we talk with Hereford about how he migrated off MPLS and onto DIA and broadband to enable new levels of application visibility and performance for the bank’s mission-critical applications such as voice and banking systems, while also cutting costs. Hereford discusses the ongoing rollout, how he’s retiring routers in favor of Silver Peak’s EdgeConnect devices, and steps he’s taking to ensure security and privacy meet regulatory requirements. Show Links: Silver Peak
October 7, 2019
Today's Network Break analyzes Adtran's entry into the SD-WAN market, a new IBN product from Lumina Networks, the latest software upgrade from NTOP, Google's timeline for blocking HTTP elements in HTTPS sessions in Chrome, plus a couple of detailed follow-ups, and a Tech Bytes show.
October 4, 2019
On today's Heavy Networking podcast, Greg and Ethan engage in a thought experiment: Will 5G and private LTE allow enterprises to get rid of their own wireless networks and shift much of that responsibility on telcos and just let them do it? They explore this idea from the telco and enterprise perspectives.
October 3, 2019
In this episode, Ed, Scott and Tom discuss IPv4 special address ranges, the reasons behind efforts to make them globally routable, and what impact this is likely to have on IPv6 adoption. Topics discussed include: * The special reserved IPv4 ranges being considered for new allocation and deployment * Security implications of attempting to deploy previously reserved addresses * Likely operational issues with using previously reserved addresses Show Links: IANA IPv4 Special-Purpose Address Registry – IANA IANA-Reserved IPv4 Prefix for Shared Address Space – IETF Linux kernel announces a patch to allow as a valid address range – Packtpub AWS re:Invent 2016: Moving Mountains: Netflix’s Migration into VPC – Slideshare Your Hosts: * Ed Horley @ehorley * Tom Coffeen @ipv6tom * Scott Hogg @scotthogg
October 2, 2019
CI/CD: You’ve seen it in literature, heard it on podcasts, and you have a vague notion of what it might be. Now you’re being asked to help the development team put together an automated delivery process for their cloud application. Suddenly CI/CD is not an abstract concept, but an immediate and imminent reality. How do you get your head around continuous integration and delivery? How do you select a toolset to accomplish your goals? How many licks does it take to get to the center of a Tootsie Pop? CI/CD is the topic for this episode of Day Two Cloud. My guest is Nathaniel Avery, a Senior Solutions Engineer for a government contractor. We discuss: * Just what CI/CD means * The range of tools, such as Jenkins and GitHub, that go into a CI/CD toolset * Details on the app being built * Nathaniel’s role in developing a CI/CD pipeline * Operational challenges and successes * The role of group dynamics * More Show Links: Nathaniel Avery on Twitter Not Your Dad’s IT – Nathaniel Avery’s Blog
Loading earlier episodes...
      0:00:00 / 0:00:00