Skip to main content

Lessons from building large campus networks

Many moons ago I build large campus networks. Newer Ethernet technologies have arrived that changes the potential mechanism that these can be deployed in the enterprise and the data centre. Already Carrier Ethernet is making big inroads into service providers.

Building large campus networks is not just a question of cascading switches in an unplanned fashion. This laissez-faire method of building campus networks is fraught with issues, and the 800 pound gorillas seem to sell the idea that their devices can be rolled in and magically cure any issue. This might also be combined with some snake oil that layer 2 does not matter and can be discounted. Into this bubble and squeak, the security bunnies add their belief that all network devices should be firewalls. All devices should operate in a secure manner but this does not require firewall carpet bombing.

Read the full article on LinkedIn's Pulse here.
Labels:

Comments

Post a Comment

Popular posts from this blog

easywall - Web interface for easy use of the IPTables firewall on Linux systems written in Python3.

Firewalls are becoming increasingly important in today’s world. Hackers and automated scripts are constantly trying to invade your system and use it for Bitcoin mining, botnets or other things. To prevent these attacks, you can use a firewall on your system. IPTables is the strongest firewall in Linux because it can filter packets in the kernel before they reach the application. Using IPTables is not very easy for Linux beginners. We have created easywall - the simple IPTables web interface . The focus of the software is on easy installation and use. Access this neat software over on github: easywall
Post a Comment
Read more

No Scrubs: The Architecture That Made Unmetered Mitigation Possible

When building a DDoS mitigation service it’s incredibly tempting to think that the solution is scrubbing centers or scrubbing servers. I, too, thought that was a good idea in the beginning, but experience has shown that there are serious pitfalls to this approach. Read the post of at Cloudflare's blog: N o Scrubs: The Architecture That Made Unmetered Mitigation Possible
Post a Comment
Read more

Should You Buy A UniFi Dream Machine, USG, USG Pro, or Dream Machine Pro?

 
Post a Comment
Read more