Thursday, October 22, 2020
Security Field Day 4 - Cisco Security Update - Tetration all the things
Tuesday, October 20, 2020
Security Field Day 4 - A quick virtual hit of security
It has been awhile since I paid close attention to what is going on in the security space so I am excited to catch a few sessions with the Tech Field Day team for their Security Field Day 4 event happening tomorrow, Oct 21 virtually. You can catch everything live tomorrow and ask questions via twitter, just use the hashtag #XFD4 and cc: @techfieldday so those who are participating can ask your question live to the presenters.
Looks like the day will be with Cisco, and I think they need to impress, there are a lot of security companies out there with fantastic brands and products, this is a tough market. I hope they bring out the ThousandEyes team to talk about integration with AppDynamics to elevate Application level security and end to end monitoring and telemetry. I guess we will see what they have to say shortly!
Join me - you can hit the main website at https://techfieldday.com/ to watch live, it is 11-12 and 1-3pm PDT.
- Ed
In a spirit of fairness (and also because it is legally required by the FTC), I am posting this Disclosure Statement. It is intended to alert readers to funding or gifts that might influence my writing. My participation in Tech Field Day events was voluntary and I was invited to participate in XFD4. Tech Field Day is hosted by Gestalt IT and my hotel, transportation, food and beverage was/is paid for by Gestalt IT for the duration of the event if travel was involved. In addition, sometimes small swag gifts were/are provided by some of the sponsors of the event to delegates. It should be noted that there was/is no requirement to produce content about the sponsors and any content produced does not require review or editing by Gestalt IT or the sponsors of the event.
Monday, May 04, 2020
Cloud Field Day 7 - VMware Cloud on AWS
Day 1
Day 2
- You have a relatively easy way to getting your existing environment running in public cloud - but it really isn't public cloud in how the IT market defines it. You are leveraging public cloud infrastructure and a few of their constructs but you are really running VMware SDDC as a Service.
- You will be paying to run your existing application and platforms in AWS but you won't have as much control over size, scale and costs as if you were to do the effort to port and move to AWS.
- You will have to address a shared administrative role and permissions (VMware is running the environment in AWS for you), some enterprises that is a deal breaker.
- You need to evaluate the benefits this solution versus starting to adopt public cloud in an incremental way and port or migration your applications to a native cloud architecture.
- You can potentially reduce or completely decommission any data centers you operate for disaster recovery or high availability reasons and leverage VMware Cloud on AWS and scale as needed.
- You could use VMware Cloud on AWS to potentially spin out a division or company and then hand off that infrastructure, applications and platforms to a new team with much less headache than moving things out of your data center.
- You will still have data gravity problems, they just won't look the same as they do for public cloud services.
- You will need to have a savvy networking team as the requirements around VMware NSX and AWS networking services are not going to get easier.
Tuesday, April 21, 2020
Cloud Field Day 7 - All virtual but still a Tech Field Day event in every way
Monday, January 13, 2020
Network Field Day 21 - NGINX - Making Sense of Service Mesh
If you have spent any significant time as a practitioner in network engineering you will eventually end up helping with a project that involves a distributed publish/subscribe message system - which today we call a service mesh. In earlier times, we might have referred to it as a service or message bus and used technology like the Common Object Request Broker Architecture (CORBA) which is a standard developed by the Object Management Group (OMG) to provide interoperability among distributed objects. Or maybe you installed and used a commercial software solution like Tibco Rendezvous which has been around for 20 years or you were involved in the financial industry and you implemented the FIX protocol.
My point is, the concepts and design ideas for a service mesh have been around for decades and really are nothing new at all. Effectively, they are a distributed message queue with a standard API run over a network. What has changed over time is the ubiquity of their use in many common platforms and architectures today. I believe one of the reasons so many platforms use them is because developers have become increasingly frustrated with the networking NAT/PAT/DNS problems and would prefer to have a more elegant routing and name space than what classic IPv4 and DNS provide. There is a lot to unpack around that last sentence and I likely won't get to it in this post but just accept that the way many enterprises are deploying and running their network are not optimal for application developers trying to deploy new application workloads within the data center environment.
There are many options to choose from for a service mesh. A not so brief list of some options would be:
Istio/Envoy
Console Connect
Linkerd2
Maesh
NGINX Service Mesh
Microsoft Azure Service Fabric
RabbitMQ
Hashicorp Consul
AWS App Mesh