Wednesday, December 28, 2005
Sunday, December 25, 2005
Friday, December 16, 2005
I have to admit that I am impressed with this project. Easy to use VPN for peer to peer projects. Very cool.
Thursday, December 15, 2005
Monday, December 05, 2005
Tuesday, November 22, 2005
Friday, November 18, 2005
Close on the heels of this deal is the Verizon purchase of MCI which will make another huge telecom provider.
Keep an eye on your phone bills!
Monday, November 14, 2005
Either way, this is no fun for those of us running larger Cisco networks. Ugh.
All Juniper needs to do is buy Foundry, a storage switch vendor (Sanrad?) and a good wireless company and they could be playing in a lot more Enterprise space. It is going to get very interesting in the next few years in the network vendor space. I guess you could argue that if Juniper picked up a VoIP offering for the edge, not just session border controllers but handsets also, it would look a lot like Cisco.
Thursday, November 10, 2005
I differ from the comments made by one of the article's experts, Geoff Huston, who claims that the driving force for IPv6 has to come from the service providers. I actually think that IPv6 as a rollout will happen at the edge and that the majority of the core of the Internet will stay on IPv4. This pretty much eliminates the arguements he has for why IPv6 won't come into the market.
With every major OS now supporting IPv6 and will all the transition technologies relatively baked now I think folks who want to take advantage of what IPv6 can do now have the tools and means to do it. This is a huge win for application developers (though I don't think they know it yet!) and an interesting issue for IT Professional who have to manage these new networks.
I think the only thing really holding back deployment at this point is the lack of knowledge for IT Professionals in how IPv6 works, when to implement it and how to roll it out.
But that is just my 2 cents.
Tuesday, November 08, 2005
Thursday, November 03, 2005
The next question is how fast service providers are going to offer native IPv6 offerings or transition services.
My colleagues Doug Spindler, Mike Pennacchi, Joseph Davies and I are coming up with practical IPv6 labs for folks to start using to learn all the different senerios you can do to transition to IPv6. Hope to get the stuff out there shortly.
Wednesday, November 02, 2005
Odd that they would be having those sort of issues considering the HA solutions they sell. I wonder what is going on?
Well, from what I have heard there was a power outage in Santa Clara that effected Cisco's BGP peering. Well, for a short while folks couldn't get to www.cisco.com from several different service providers. Everything looks to be up and working now though.
Microsoft also announced Microsoft Office Live which is supposed to launch in early 2006. Basically it is an online business tool set. I don't know how successful it will be but it is an interesting idea.
Friday, October 28, 2005
Tuesday, October 25, 2005
Monday, October 24, 2005
This is huge for training, labs, or vendors who want to distribute a copy of their product without having to have folks install a base OS to test something out.
I hope this pushes Microsoft to do something similar with their product line also. Even though both Virtual PC and VMWare workstation are relatively cheap products they still are not as widely available as one would like to see.
In the other camp, Microsoft is promoting their product, Network Access Protection or NAP. Microsoft is not pitching this as a security solution as much as a management solution. They are doing some really exciting things that will allow a Windows Vista client to use machine credentials, health credentials (from NAP) and Kerberos credentials from user login to build out an IPSec session to the Domain Controller. Very interesting stuff.
I was also told to expect a join announcement from both Microsoft and Cisco about how their platforms will work together some time soon. It will be interesting seeing how they are going to get the platforms working together.
Sunday, October 23, 2005
Thursday, October 20, 2005
For those who have not seen the new OS, you are missing out! There are some very cool features in Vista. I really want to get a nice workstation to see the new graphics load up also, sweet!
If anyone else wants to help build out a test IPv6 network and you have the time and machines to do so please tell me. Might be fun to test to see if ISATAP works across the public Internet! ;-)
Wednesday, October 19, 2005
I also gave a test trial of my IPv6 presentation. I got some good feedback about it and made a bunch of changes to the slide deck on the flight down this morning before presenting to the West Michigan NT User's Group. I hope the IPv6 and Vista story is interesting and compelling for IT Professionals. I really think that more people need to start paying attention to IPv6 given what Microsoft is doing with it in Vista.
Monday, October 17, 2005
Anyway, I will be giving my first 101 presentation on IPv6 in Windows Vista to a user group this Weds - we'll see how it goes!
Hope to get my IPv6 articles finished of here shortly. I might even post so short sections here.
Sunday, October 16, 2005
Wednesday, October 12, 2005
Now granted the Bill & Melinda Gates Foundation has been around for a few more years but they have given out in excess of $8B (yeah, that's a B) to date and this is the personal foundation of a Microsoft founder, not the company. Microsoft through their Microsoft Community Affairs has donated $47M in cash and $363M in software to nonprofits organizations around the world just last year.
I don't expect Google to start donating at the rate of a big established firm like Microsoft but honestly most corporations donate more then 1% to deserving causes. Now if only I could get my company to believe in some of that!
Friday, October 07, 2005
Wednesday, October 05, 2005
We haven't had much issues with the Level3 and Cogent depeering since we (j2) peer with both Level3 and Internap.
Does anyone else wonder why Cisco changes the form factor for the switches and routers so often? It sort of drives me nuts. The 2950, 3560/3550, 3750 models are all different in appearance but you can get each one in a 24 port or 48 port configuration. Now the new 2960's look like the 3560's and the new Express 500's look like the 3750's. Ugh! Is it to much to ask to get a consistant look and feel and could they please put the full model number on the front plate of the fixed-configuration gear?
On a side note - did folks see that Cisco sold its 6 millionth IP phone? Can you believe that? Wow.
On Saturday at 11:00-11:50 will be a presentation titled "Microsoft - What's new in TCP/IP in Windows Vista" which will be given by Network Architect Abolade Gbadegesin. I meet Abolade up at Microsoft during the MVP Summit and let me tell you, he really knows his stuff and is a very nice person to boot. If you have any questions about what is going on with Microsoft's new TCP/IP stack you can first check out some Cable Guy articles. He has one specifically on Next Generation TCP/IP Stack in Windows Vista and Windows Server "Longhorn" which is worth the read. It will also allow you to ask some questions with a good frame of reference. I think the most exciting stuff coming out are:
IPv6 (yeah you can turn it on in XP SP2 if you know what you are doing but it is on by default in Vista)
The new Network Access Protection (NAP) will have some news coming out soon also. Word on the street is a joint announcement with Cisco will finally come out explaining how Network Admission Control (NAC) from Cisco will work with NAP from Microsoft. This is good news since the last news announcement about Cisco and Microsoft on this topic came out in October of last year, yeah that is right a YEAR ago! I guess the lawyers have been making sure they are demonstrating their "worth" in this case - geez.
Monday, October 03, 2005
Many thanks to the Microsofties Susan Moran, Eddy Malik, and Joseph Davis for the warm welcome. It was also very nice catching up and meeting Laura Hunter, Mike Giorgio, Ed Roberts, Susan Bradley, Oliver Nguyen, Denis Jedig, Deji Akomolafe, Les Pinter and countless others who are MVP's and made the event memorable for me.
Thursday, September 29, 2005
Tuesday, September 27, 2005
Monday, September 26, 2005
Friday, September 23, 2005
In addition to all that, it would be a huge change for all the reseller and support models that Microsoft has spend years investing in. I really don't know if they are willing to rock the boat with that channel of sales.
Thursday, September 22, 2005
I have never understood why Microsoft had 7 divisions to begin with and the new organization will certainly make giving feedback to Microsoft easier and potentially more valuable since it has the potential to touch a lot more folks downstream.
In case you don't remember what the original 7 were, here you go:
Server & Tools
Microsoft Business Solutions
Mobile & Embedded Devices
The new three are:
Microsoft Platform Products & Services Division (Windows Client, Server & Tools, and MSN)
Microsoft Business Division (Information Worker and Microsoft Business Solutions)
Microsoft Entertainment & Devices Division (Home Entertainment and Mobile & Embedded Devices)
What I am excited about is the potential to get the Groove product integrated in the majority of the product suites. I think that one product could completely change the way people use and extend their work environments. The fact that Ray Ozzie is expanding his roll as CTO and primarily helping to push the software based service across all three divisions will make for some interesting changes ahead.
Tuesday, September 20, 2005
Monday, September 19, 2005
Friday, September 16, 2005
Well, I might get a chance to ask a few folks about it when I am up there at the end of the month for the MVP Summit. Then again, if I bring that up I might get the boot - haha.
Thursday, September 15, 2005
Tuesday, September 13, 2005
Monday, September 12, 2005
Thursday, September 08, 2005
Also, if you are looking for the route-server listings then hit BGP4.NET Wiki - Tools:IPv4 Route-Servers for some route-servers you can use to check BGP routes. A short list of ones I have used:
route-server.cerf.net (this one gets a ton of traffic so it can be tough to get in)
route-server.exodus.net or route-server.savvis.net (goes to the same route-server)
route-server.ip.att.net (this one gets a ton of traffic so it can be tough to get in)
They are mainly for North America so if you need something in Europe or Asia hit the list above and you should be able to find something you can use.
As for looking glasses you can get a listing at BGP4.NET Wiki - Tools:IPv4 Looking Glasses which should give you a good enough start.
Wednesday, September 07, 2005
What is tough about them is that they do change! So if you plan to use ACL's to protect your routers make sure you check back with the Bogon IPs site to make sure you aren't blocking legit traffic.
They provide some really great templates on the site to allow you to build ACL's very quickly and you can pick and choose how much you want from their list depending on your requirements. In addition, they have a very neat idea which is blocking bogons using DNS lists (like a realtime blackhole list) and you can even do BGP peering with them where they basically blackhole all the BOGON IPs on the net for you. There are some limitations and holes in that method but overall its a pretty cool solution, especially if you are running BGP as an end user (non transit).
Monday, September 05, 2005
Saturday, August 27, 2005
Friday, August 26, 2005
We all get so busy in day to day life sometimes it is good and important to reflect on what is happening to our troops over in Iraq today. I hope we are able to bring the conflict to an end and bring all our families home where they belong.
Wednesday, August 24, 2005
Thursday, August 18, 2005
Sunday, August 14, 2005
Thursday, July 28, 2005
Tuesday, July 26, 2005
Monday, July 25, 2005
Friday, July 22, 2005
My personal belief is that you are going to see SPF and DKIM become more widely deployed within the next year. Yahoo and Google both support DomainKeys and there are extensions to do DomainKeys and Identified Internet Mail available now.
Yet another Anti-Spam Solution (YAAS) to keep track of.
Wednesday, July 20, 2005
For businesses that are to small to be able to afford VTL and SAN/NAS with snapshotting features this might be a serious consideration.
Tuesday, July 05, 2005
Wednesday, June 29, 2005
I personally think the combination of SPF and DomainKeys will be what most folks go for. DomainKeys is clean, does not have any patent issues that I am aware of and is currently supported by Yahoo! and Google already in addition to making it through the first rounds of the IETF. Either way, I think every Service Provider in the world is going to do both of these for two reasons. First is to reduce the amount of UCE (SPAM) on their networks (cost savings) and second is because it is difficult to run and administer all these solutions as a SMB owner or even the small tech shops that support them. The Service Providers want it to be difficult to run MTA's and DNS on a network, that way you will pay the fees to use their solutions. A win-win as far as they are concerned. Oh, and they can really mess up your day if they refuse to do reverse DNS delegation with you and you are running an MTA. So much for the openness of the Internet!
Bigger enterprise groups will continue to run their own infrastructure since they will have the staff and expertise to support it. Something to think about.
Thursday, June 23, 2005
Thursday, June 16, 2005
Tuesday, June 07, 2005
Monday, June 06, 2005
Now Apple is a true software company (technically they were a hardware company before due to all the custom hardware development). They get to go head to head with Microsoft and also now have to buy chips from Intel who sells to folks like Dell, HP, Toshiba, IBM, and others who buy more chips in a month then Apple all year. I don't know if this is brilliant or suicide. Good luck Apple, you have a rocking OS.
Friday, May 27, 2005
Tuesday, May 24, 2005
I also have used the NANOG site which has some great looking glass links and information.
For those looking for Bogon infomation check out Team Cymru which runs a cool project that allows you to do BGP peering to filter out the Bogon address listings. You can also just get the Bogon List from them to build your own ACL. This can be tough to maintain on your own since the list changes pretty regularly. You should check their site on a monthly basis to make sure you aren't mistakenly blocking a newly activated IP address block.
Monday, May 23, 2005
Laura has her own company Protocol Analysis Institute and I recommend her as a speaker. She is very entertaining and engaging.
Doug Spindler also gave a presentation on this topic in Moraga, CA back on May 17th, 2005 you can check out that information here.
If you are at all interested in helping spread the word attend the meeting tonight and Laura can get you set up to present on the topic yourself to the local community.
Wednesday, May 18, 2005
They basically have two appliances right now, one is an all in one security gateway and the other is a voip pbx that works tightly with the security appliance. They seem remarkable cost effective given everything the products do.
They are running open source software but on the NetBSD OS. They are using Polycom phones which are very affordable and they seems to be a great fit for the SMB market. From back of the envelope math they are significantly cheaper then a similar deployment of either Cisco, Avaya or Shoreline. It remains to be seen if their product is as robust as it needs to be to support telephony for business critical needs.
The security appliance has a SPI firewall, anti-virus, anti-spam, content control, proxy services, and several other interesting services all rolled into a single device. They claim to have tested IPSec compatibility with several of the major vendors so they seem to have a product folks could use right away without cleaning out the bank to get all the features you would want.
Thursday, May 12, 2005
Tuesday, May 10, 2005
Oh, I attended the California IPv6 tech conference - there were more folks at the EBCUG meeting then the IPv6 forum! Needless to say, they don't seem to be getting much traction at all. I don't know if that is a function of the lack of interest in IPv6 or some other issues. Anyway, I think some common sense material about IPv6 might be in order. There seems to be no one who is doing a clear and compelling story around IPv6 without lossing folks in the techno-babble.
Monday, May 09, 2005
This is the first time I will attend a California IPv6 Task Force event. Hope they have some interesting stuff going on.
Thursday, May 05, 2005
Wednesday, May 04, 2005
Thursday, April 21, 2005
Mismatch duplex settings can cause all sorts of headaches. I just had to clean some up this morning between a router and a switch. Here is a cheat sheet on which settings work or not.
|Auto Detect||Half Duplex||Full Duplex|
|Auto Detect||OK||OK - not optimal||NO - see note|
OK - not optimal
NO - see note
Note: A forced duplex setting such as half or full will stop the port from sending Fast Link Pulse (FLP) or the 802.3u auto-negotiation protocol. FLP notifies the other end the auto-negotiation options of the source sending the FLP. If a port is set to auto and it does not receive FLP, the default behavior is for it to assume the other end of the connection is set to half duplex (last priority or lowest common denominator). You can now see why full/auto won't work to well. Oh, and obviously if the speed of the interfaces don't match things aren't going to work to well either. Here is the table of priority order that 802.3u uses, in case you are interested.
1 100BaseT2 full duplex
2 100BaseT2 half duplex
3 100BaseTX full duplex
4 100BaseT4 half duplex*
5 100BaseTX half duplex
6 10BaseT full duplex
7 10BaseT half duplex
Note: * 100BaseT4 supports only half duplex.
Wednesday, April 20, 2005
Saturday, April 09, 2005
Routing TCP/IP, Volume I (CCIE Professional Development) (Doyle, ISBN# 1578700418)
Routing TCP/IP, Volume II (CCIE Professional Development) (Doyle, DeHaven, Carroll, ISBN# 1578700892)
Cisco LAN Switching (Clark, Hamilton, ISBN# 1578700949)
Internet Routing Architectures, 2nd edition (Sam Halabi, ISBN# 15787050862)
CCIE Practical Studies Volume I (Solie, ISBN# 1587200023)
CCIE Practical Studies Volume II (CCIE Self-Study) (Solie, Lynch, ISBN# 1587050722)
Cisco Certification: Bridges, Routers and Switches for CCIEs (2nd Edition) (Caslow, Pavlichenko, ISBN# 0130903892)
CCIE Routing and Switching Exam Certification Guide (Bruno, ISBN# 1587200538)
Cisco OSPF Command and Configuration Handbook (Parkhurst, ISBN# 1587050714)
Configuring IPv6 for Cisco IOS (Edgar Parenti, Jr., Eric Knnip, Brian Browne, Syngress, ISBN# 1928994849)
Cisco BGP-4 Command and Configuration Handbook (Parkhurst, ISBN# 158705017X)
802.11 Wireless LAN Fundamentals (Pejman Roshan, Jonathan Leary, ISBN# 1587050773)
Wi-Fi (802.11) Network Habdbook (Neil P. Reid, Ron Seide, McGraw Hill Osborne Media, ISBN# 0072226234)
I am considering the CCIE Pratice Labs book from Cisco Press but haven't decided on it yet. I think I am going to use Certification Zone's website subscription for practice exam and study materials. They have good sample content posted up and seem to have a good reputation out there.
Monday, April 04, 2005
Visio Cafe - ultimate site for your stencil fix!
mvps.org - a great site on Visio info
Cisco's Stencil Library - this link requires that you have a CCO login account
Dell's Library - for a manufacture supplied stencil I think they are very poor in quality
Juniper's Library - includes the NetScreen product line along with the Juniper gear
HP's wonderfully stencils can be found at the Visio Cafe link.
Friday, March 25, 2005
Here are some of the apps that I use almost daily.
Trillian Pro, MindManager X5 Pro, SecureCRT, Pumpkin, PGP, Spybot Search and Destroy, Firefox, Remote Desktop, Skype, MS Office, MS Visio, Real VNC, MS Beta AntiSpyware
I might think of one or two more while I am at it but wanted to get them down to remember - since I am sure I will have to move laptops yet again sometime soon!
Wednesday, March 23, 2005
Cisco's CCIE Site
If you have any recommendations please post them up in the comments.
Saturday, March 19, 2005
Tuesday, March 15, 2005
IP DHCP and IP Address management software:
IP DHCP and DNS appliances:
Open Source IP address management software:
Some cool Network Monitoring / Management software applications:
Monday, March 14, 2005
DNS and rDNS request pages:
If you have SBC DSL and can no longer send SMTP traffic outbound except to SBC servers then you need to opt out of their SMTP blocking. Here is the link you need for that.
Opt out for port 25:
Now I have to go and update all my powerpoint slide links with this new info!
Sunday, March 13, 2005
DNS and specifically Reverse DNS issues.
Cisco routing, switching and content delivery
Sender Policy Framework (SPF)
Microsoft Network Optimization
First order of business will be to get a lot of the links I have organized and posted. Would love to have additional links for content if they are related to the above topics.