If you haven’t made the leap from traditional wide area networking to SD-WAN, or perhaps you’re thinking about adding security services to your SD-WAN infrastructure, this episode is for you. Rajesh Kari from Palo Alto Networks joins the show to share customer stories from the front lines of multi-branch businesses’ networks. Industry verticals including retail,... Read more »

With “The Cathedral and the Bazaar” as his guide, Srivats launched Ostinato, his open source project, in 2010. He needed an affordable network traffic generator at his day job, he was passionate enough to build one during his nights and weekends, and end users loved it– it has been downloaded hundreds of thousands of times.... Read more »

To run AI workloads, a network needs thousands of GPUs and those GPUs must operate in sync. If there is congestion or dropped frames, very expensive efforts could be delayed or disrupted. While there are advantages to using Ethernet for AI networking (including engineers well-trained in the protocol and a robust ecosystem), it wasn’t designed... Read more »

Where there are containers, there is networking. Today we dig into the networking that underlies Kubernetes, the open source orchestration platform for container-based applications. Our guest Karim El Jamali takes us through the essential concepts: Nodes, pods, clusters, CNIs, virtual ethernet pairs, ingress controller, eBPF, and service meshes. As container-based applications grow in popularity, it’s... Read more »

Fiserv is one of the largest payment processors in the world, In 2023 it handled more than 35 billion transactions worth $2.03 trillion US dollars. Its network is critical to the business. The organization knew it needed network automation, but early attempts got some things wrong. On today’s Heavy Networking we talk about how Fiserv... Read more »

Matt Horn built a data center network through automation, remotely. This is the future of network engineering. Matt shares how his team did it technically: Terraform, a little Ansible, leveraging pipelines, etc. But he also shares the processes and culture that made it happen: Management and peer buy-in, tight enforcement based on user access, and... Read more »

Today we metaphorically pop open the hood of switches and routers, taking a look at the mechanics of how they work. We cover the three states: configuration, operational, and forwarding. We talk RIB and FIB, along with CAM, TCAM, and MPLS. We also cover line rate, port-to-port latency, and buffers. Whether it’s been awhile since... Read more »

Right now, we have the building blocks for network automation, but we don’t have end-to-end designs or complete systems. It’s like having a bunch of Legos but no instructions for how to build your spaceship. Ryan Shaw, David Sinn, and their colleagues in the Network Automation Forum are tackling this problem. Their goal is to... Read more »

One dark day, Ivan Pepelnjak stopped labbing. He just couldn’t make himself yet again go through assigning addresses, building links, putting devices in place, setting up OSPF, BGP, VXLAN, EVPN, etc. before even being able to start whatever simulation or test he wanted to do. But from that darkness arose netlab. Ivan created netlab to... Read more »

The days of network cowboy heroism are over… or at least they need to be. It’s time for network engineering to grow up and standardize how networks are built. Not only will this make life easier for all of us as we inherit networks when we move from company to company, but it’s the only... Read more »

Yale’s efforts to load-balance RADIUS servers is a case study in system design for resiliency. First, there was a lone, redundant PSN. Next, F5s load balancers entered the picture. Then the network team realized a feature in IOS-XE was the answer… and brought Cisco along the learning journey with them. Hear it all from the... Read more »

Guest Dinesh Dutt introduces his newest creation, SuzieQ. It’s a network observability platform application that has both a free, open source version and an enterprise version. Lightweight, fast, and platform-agnostic, SuzieQ’s use cases include network documentation, troubleshooting, fabric-wide visibility, network refresh and redesign, low/no code validation, audits and compliance, and proactive health checks. Hosts Ethan... Read more »

Remote and hybrid work means network engineers have to grapple with lossy residential networks such as home wireless that your work-from-home folks are using to access company resources. Their Wi-Fi sucks, and so their use of corporate resources sucks. Sure, you’ve got them plumbed into a SASE fabric, but that doesn’t fix their user experience... Read more »

On today’s episode, we discuss networking sources of truth. That’s right, sources of truth, because you’re likely to have more than one depending on your environment and your point of view. On LinkedIn, Ethan Banks quoted someone at the AutoCon0 conference who essentially said that the network itself shouldn’t be used as a source of... Read more »

At AutoCon0 in November 2023, guest Jeremy Schulman delivered a talk from the main stage about delivering network assurance. If the term “network assurance” doesn’t mean anything to you, think about how you prove after an install or a change that the network is doing what it’s supposed to be doing. If you’re doing it... Read more »

At NewYork-Presbyterian Hospital, patients are the priority. That focus on patient care extends to the hospital’s campus network, data center, wireless network, and SD-WAN. These networks are instrumental for delivering medical applications and connecting medical devices. On today’s Heavy Networking, we talk with network architects and engineers at NewYork-Presbyterian about their use of automation to... Read more »

SD-WAN is evolving to encompass more features and capabilities around security, application performance, network visibility, and more. On today’s Heavy Networking, sponsored by Palo Alto Networks, we look at how SD-WAN has transformed from a simple network connectivity solution to a comprehensive networking and security system. We discuss the limitations of legacy branch routers and... Read more »

Welcome to Heavy Networking! On today’s show we’ve got a roundtable conversation on the state of automation in the networking industry. This show was inspired by the recent AutoCon conference, which is a new conference focused specifically on network automation. Ethan Banks and I both attended, as did two our guests, and we’re going share some takeaways and perceptions of the event, and get into issues such as sources of truth, which was a major topic at AutoCon. We also talk about the...

Today we’re talking security, but security you don’t always see. Fortinet, today’s sponsor, has millions of devices in the field. These are real-world devices seeing real-world traffic, all day, everyday. While those devices have a primary protection role, they can also serve as sensors that collect threat signals and feed threat intelligence services that can, in turn, make all those devices more capable. Why do you care? Because FortiGuard Security Services are a component of your...

Public clouds abstract away much of the nitty-gritty work that goes into provisioning infrastructure, including networking. Application teams can quickly connect resources and deploy applications without having to know much about the plumbing that links everything together. When they compare the public cloud experience to standing up applications in an on-prem data center, the on-prem experience…isn’t so great. There are tickets and configurations and ports and policies and hours–or days–of...

We continue our Future of Networking series with part two of our conversation with Brad Casemore. Now retired, Brad has participated in the industry as both a technologist and IDC analyst. In this episode we look at the rise of zero trust and what it means for campus networking. We discuss how geopolitics influences IT from supply chains to technology access to control of critical materials. We also discuss the growing importance of visibility and observability in public cloud and on prem,...

Cloud environments often have poor visibility and monitoring, and sensitive corporate data can be placed in many different locations – object stores, databases, and so on. Maintaining access control is hard, and managing compliance and governance on that access and data is a real problem. And each cloud has its own proprietary security tools that don’t work across your estate. On today’s Heavy Networking, sponsored by Palo Alto Networks, we’ll talk about how Palo Alto Networks employs a...

The Future of Networking series continues with Brad Casemore, who survived multiple decades in the technology sector, including sixteen years as an analyst for IDC. He’s been a longtime observer of networking markets, technologies, and trends. Recently retired from the analyst business, we’ve invited Brad onto the show as a kind of exit interview to explore where networking has been and where it might be going. We talk about the interest in AI and try to separate the hype from the reality,...

AIOps has been making the rounds in networking marketing departments for a few years now. The big promise has been that AI is going to perform analytical thinking for us and, when things are going wrong, make life easier for engineers. The reality has been somewhat different. We’ve gotten lots of statistical analysis tools branded as AIOps–not really AI, but simpler math models that can detect when certain metrics deviate too far from normal. Fancy threshold alerting was mostly all that was...