Sunday, July 5, 2015

Blueprint: The Evolution of the Network

by Leon Adato, Head Geek, SolarWinds

Learn from the past, live in the present and prepare for the future.

While this may sound like it belongs hanging on a high school guidance counselor’s wall, they are words to live by, especially in IT. They apply perhaps to no other infrastructure element better than the network. After all, the network has long been a foundational building block of IT, it’s even more important today than it was in the days of SAGE and ARPANET, and its importance will only continue to grow in the future while simultaneously becoming more complex.

For those of us charged with maintaining the network, it’s valuable to take a step back and examine the evolution of the network. Doing so helps us take an inventory of lessons learned—or the lessons we should have learned; determine what today’s essentials of monitoring and managing networks are; and finally, turn an eye to the future to begin preparing now for what’s on the horizon.

Learn from the Past

Think back to the time before the luxuries of Wi-Fi and the proliferation of virtualization, and before today’s wireless and cloud computing.

The network used to be defined by a mostly wired, physical entity controlled by routers and switches. Business connections were based on T1 and ISDN, and Internet connectivity was always backhauled through the data center. Each network device was a piece of company-owned hardware, and applications operated on well-defined ports and protocols. VoIP was used infrequently, and anywhere connectivity—if even a thing—was provided by the low-quality bandwidth of cell-based Internet access.

With this yesteryear in mind, consider the following lessons we all (should) have learned that still apply today:

It Has to Work
Where better to start than with a throw back to IEEE RFC1925, “The Twelve Networking Truths”? It’s just as true today as it was in 1996—if your network doesn’t actually work, then all the fancy hardware is for naught. Anything that impacts the ability of your network to work should be suspect.

The Shortest Distance Between Two Points is Still a Straight Line
Wired or wireless and MPLS, EIGRP or OSPF, your job as a network engineer is still fundamentally to create the conditions where the distance between the provider of information, usually a server, and the consumer of that information, usually a PC, is as near to a straight line as possible. When you forget that but still get caught up in quality of service maps, automated functions and fault-tolerance, you’ve lost your way.

An Unconfigured Switch is Better than the Wizard
It was a long-standing truth that running the configuration wizard on a switch was the fastest way to break it, whereas just unboxing and plugging it in would work fine. Wizards are a fantastic convenience and come in all forms, but if you don’t know what the wizard is making convenient, you are heading for trouble.

What is Not Explicitly Permitted is Forbidden
No, this policy it’s not fun and it won’t make you popular. And it will actually create work for you on an ongoing basis. But there is honestly no other way to run your network. If espousing this policy will get you fired, then the truth is you’re going to get fired one way or the other. You might as well be able to pack your self-respect and professional ethics into the box along with your potted fern and stapler when the shoe drops. Because otherwise that huge security breach is on you.

Live in the Present 

Now let’s fast forward and consider the network of present day.

Wireless is becoming ubiquitous—it’s even overtaking wired networks in many instances—and the number of devices wirelessly connecting to the network is exploding (think Internet of Things). It doesn’t end there, though—networks are growing in all directions. Some network devices are even virtualized, resulting in a complex amalgam of the physical, the virtual and the Internet. Business connections are DSL/cable and Ethernet services, and increased use of cloud services is stretching Internet capacity at remote sites, not to mention opening security and policy issues since it’s not all backhauled through the data center. BYOD, BYOA, tablets and smartphones are prevalent are creating bandwidth capacity and security issues. Application visibility based on port and protocol is largely impossible due to applications tunneling via HTTP/HTTPS. VOIP is common, also imposing higher demands on network bandwidth, and LTE provides high-quality anywhere connectivity.

Are you nostalgic for the days of networking yore yet? The complexity of today’s networking environment underscores that while lessons of the past are still important, a new set of network monitoring and management essentials is necessary to meet the challenges of today’s network administration head on. These new essentials include:

Network Mapping
While perhaps a bit back-to-basics and also suitable as a lesson we all should have learned by now, when you consider the complexity of today’s networks and network traffic, network mapping and the subsequent understanding of management and monitoring needs has never been more essential than it is today. Moving ahead without a plan—without knowing the reality on the ground—is a sure way to make the wrong choices in terms of network monitoring based on assumptions and guesswork.

Wireless Management
The growth of wireless networks presents new problems, such as ensuring adequate signal strength and that the proliferation of devices and their physical mobility—potentially hundreds of thousands of network-connected devices, few of which are stationary and many of which may not be owned by the company (BYOD)—doesn’t get out of hand. What’s needed are tools such as wireless heat maps, user device tracking, over-subscribed access points and tracking and managing device IP addresses.

Application Firewalls
When it comes to surviving the Internet of Things, you first must understand that all of the “things” connect to the cloud. Because they’re not coordinating with a controller on the LAN, each device incurs a full conversation load, burdening the WAN and every element in a network. And worse, many of these devices prefer IPv6, meaning you’ll have more pressure to dual-stack all of those components. Application firewalls can untangle device conversations, get IP address management under control and help prepare for IPv6. They can also classify and segment device traffic; implement effective quality of service to ensure that critical business traffic has headroom; and of course, monitor flow.

Capacity Planning
Nobody plans for not growing; it’s just that sometimes infrastructure doesn’t read the plan we’ve so carefully laid out. You need to integrate capacity for forecasting tools, configuration management and web-based reporting to be able to predict scale and growth. There’s the oft-quoted statistic that 70 percent of network outages come from unexpected network configuration changes. Admins have to avoid the Jurassic Park effect—unexpected, but what in hindsight were clearly predictable outages is the bane of any IT manager’s existence. “How did we not know and respond to this?” is a question nobody wants to have to answer.

Application Performance Insight
Many network engineers have complained that the network would be stable if it weren’t for the end users. While it’s an amusing thought, it ignores the universal truth of IT—everything we do is because of and for end-users. The whole point of having a network is to run the business applications end-users need to do their jobs on. Face it, applications are king. Technologies such as deep packet inspection, or packet-level analysis, can help you ensure the network is not the source of application performance problems.

Prepare for the Future

Now that we’ve covered the evolution of the network from past to present—and identified lessons we can learn from the network of yesterday and what the new essentials of monitoring and managing today’s network are—we can prepare for the future. So, stay tuned for part two in this series to explore what the future holds for the evolution of the network.

About the Author 

 Leon Adato is a Head Geek and technical evangelist at SolarWinds, and is a Cisco Certified Network Associate (CCNA), MCSE and SolarWinds Certified Professional (he was once a customer, after all). Before he was a SolarWinds Head Geek, Adato was a SolarWinds® user for over a decade. His expertise in IT began in 1989 and has led him through roles as a classroom instructor, courseware designer, desktop support tech, server support engineer, and software distribution expert. His career includes key roles at Rockwell Automation®, Nestle, PNC, and CardinalHealth providing server standardization, support, and network management and monitoring.

About SolarWinds 
SolarWinds (NYSE: SWI) provides powerful and affordable IT management software to customers worldwide from Fortune 500® enterprises to small businesses. In all of our market areas, our approach is consistent. We focus exclusively on IT Pros and strive to eliminate the complexity that they have been forced to accept from traditional enterprise software vendors. http://www.solarwinds.com/



Got an idea for a Blueprint column?  We welcome your ideas on next gen network architecture.
See our guidelines.

The New Hewlett Packard Enterprise - $55 Billion in Annual Revenue

In an SEC filing last week, HP provided financial details on one of the two companies that will result from its upcoming split.

The mission statement for Hewlett Packard Enterprise Company is to "provide the cutting-edge technology solutions customers need to optimize their traditional IT while helping them build the secure, cloud-enabled, mobile-ready future that is uniquely suited to their needs."  It will include the current parent company's Enterprise Group, Enterprise Services, Software and Financial Services businesses. Its portfolio will include  servers, storage, wired and wireless networking, converged systems, software and services, and customized financing solutions.

The company said its competitive differentiator is its "broad and deep" end-to-end solutions portfolio and IT expertise. It also possesses a global distribution and partner ecosystem, along with a multi-year innovation roadmap.

The extensive filing provides in-depth financial data on the soon to be independent company, along with the long and required list of risks and uncertainties.

http://www.sec.gov/Archives/edgar/data/1645590/000119312515243056/d944600dex991.htm

PubNub Raises $20M for Data Stream Network for Mobile Apps

PubNub, a start-up based in San Francisco, $20 million in Series C funding for advancing its Data Stream Network for mobile applications and IoT.

PubNub's Data Stream Network is specifically designed for secure, realtime communication over the Internet.  It features an easy-to-use API that enables its customers to connect, scale, and manage realtime applications and IoT devices. The company says it delivers 250ms worldwide data transfer times and scalability for hundreds of millions of devices. Data streamed through the PubNub Data Stream Network is instantly replicated to 14 geographically distributed data centers.

The funding round was led by Sapphire Ventures with participation from existing investors, Relay Ventures and Scale Venture Partners.

“The coming explosion in growth of IoT devices combined with the existing massive demand for mobile and web realtime interaction represents an extraordinary market opportunity,” said Todd Greene, CEO of PubNub. “Sapphire Ventures brings deep infrastructure expertise, a shared vision and commitment to our company’s global growth and success evidenced by its market development team. We’re excited to work with Sapphire Ventures, Relay and Scale to achieve our vision to connect every device on the planet in real-time.”

http://www.pubnub.com

Saturday, July 4, 2015

Vodacom Deploys Base station in Shipping Container is SA

Vodacom is testing the use of shipping containers to provide an all-in-one solution for base stations deployed in townships in South Africa.

The carrier said its standard mobile base station typically has a site footprint of 30 square metres or more, including mast, which is usually 15-25 metres tall. In addition, each base station site has an equipment storage building to house radio and power equipment. The cost of each installation varies, but can be in the region of R1.5 million (circa £82,000).

Vodacom’s Chief Technology Officer Andries Delport said, “We’re seeing data volumes in Gauteng’s townships almost doubling year on year, which is well-ahead of the average growth rate countrywide. Identifying and building new sites to cater for this in densely populated areas has been difficult, and on top of that site security can be an issue.

“Our engineers went back to the drawing board and developed an entirely different approach. They repackaged the base station equipment inside a compact steel structure that is then bolted to the roof of existing shipping container shops. This means that new sites can be rolled out quite literally within weeks as opposed to the typical 12-18 month lead time to build new base stations.”

In addition to having a smaller footprint of nine square meters and being able to utilise existing infrastructure, these new base stations are more energy efficient and cost less than half the amount needed to build a traditional site (around R700,000/£38,000).

Vodacom plans to roll out five sites as an initial test, the first of which to go live is in the Alexandra township. These test sites provide mobile coverage over a radius of up to 1.5km and can service 5,000 subscribers at peak times.

http://www.vodafone.com/content/index/about/what/technology-blog.html

Friday, July 3, 2015

Emerson to Spin Off Network Power Business

Emerson recently announced plans to spin off its Network Power business and to streamline its portfolio.
The company is also exploring "other strategic options" to drive growth and accelerate value creation for shareholders.

The spinoff of Network Power will result in two separate companies with distinct strategies and investment profiles. Following completion of all actions, Emerson will continue to be a global leader in bringing technology and engineering together to provide solutions for customers in the process, industrial, commercial and residential markets.  These actions offer significant opportunities for enhanced growth, profitability, cash flow, and returns to shareholders.

As a publicly traded company, Network Power will be the world’s leading, stand-alone provider of thermal management, A/C and D/C power, transfer switches, services and infrastructure management systems for the data center and telecommunications industries.

“Emerson has a proven record of taking decisive actions to enhance shareholder value while providing an unmatched level of service to customers around the world,” said Chairman and Chief Executive Officer David Farr. “We are aligning ourselves with the changing global marketplace and our customers’ evolving needs to drive Emerson and Network Power forward. Creating two, independent companies will position both businesses to continue as leaders and to pursue distinct strategies to drive profitable growth. Emerson and Network Power will each have sharper strategic focus, enabling both companies to better allocate resources, incentivize employees and allocate capital to capture the significant long-term opportunities in their respective markets.”

http://www.emerson.com/

  • http://www.emerson.com Emerson reported $24.5 billion in revenue for fiscal 2014. The company is based in St. Louis and currently has about 115,000 employees worldwide.

Alcatel-Lucent Lands Contracts with China Mobile and China Unicom

Alcatel-Lucent announced comprehensive frame agreements with China Mobile and China Unicom, two of the world’s largest telecommunications operators,  to facilitate the transition to dynamic cloud-based networks.

Under the agreements - both spanning a year and valued at up to RMB4.53 billion (EUR 656 million) and RMB3.59 billion (EUR 520 million) for China Mobile and China Unicom respectively - Alcatel-Lucent will deliver its mobile and fixed ultra-broadband access, IP routing, agile optical networking and network functions virtualization (NFV) capabilities, as well as Nuage Networks’ software defined networking (SDN) technologies.

The agreements were signed in Toulouse during a visit by Li Keqiang, China’s Premier of the State Council, build on long-standing collaboration between Alcatel-Lucent and the two companies.

"This announcement is highly significant as it furthers Alcatel-Lucent’s role as a key technology provider in China and aligns perfectly with our strategy of bringing high-speed ultra-broadband access to open up new opportunities for both service providers and their customers alike. We are very pleased to continue working with both China Mobile and China Unicom to help them deliver on their commitments under The Broadband China’ initiative," stated Michel Combes, CEO of Alcatel-Lucent.

https://www.alcatel-lucent.com

Thursday, July 2, 2015

Renée James to Step Down as President of Intel

Renée James will be stepping down as President of Intel to pursue an external CEO role, effective January 2016.

Intel also announced a number of other executive changes.

  • Arvind Sodhani, President of Intel Capital, will retire in January after a distinguished 35-year career with the company. President of Mergers and Acquisitions Wendell Brooks will take an expanded role to also become President of Intel Capital. Merging these teams under one leader will allow clear focus across all investment opportunities for Intel.
  • On July 1, the Intel Security organization – formerly the independent McAfee division – was formally integrated into Intel operations under the leadership of General Manager Chris Young. This integration will deliver better technologies for our customers and more effective operations that enable Intel Security to advance the state of security across the industry.
  • Intel Communication and Devices Group General Manager Aicha Evans has been elevated to the company's Management Committee, reflecting the leadership role she plays across Intel's business and the importance of communication and mobility to the company's growth strategy and product portfolio.
  • Josh Walden, General Manager of Intel's New Technology Group, now leads all product and research teams that create and deploy new technology categories, such as interactive computing devices, perceptual computing and wearable devices. 
  • Intel executives Hermann Eul and Mike Bell will leave the company after a transition period.

http://newsroom.intel.com/community/intel_newsroom/blog/2015/07/02/intel-announces-leadership-changes

Wednesday, July 1, 2015

5G Novel Radio Multiservice Adaptive Network Project Gets Underway

to develop a novel, adaptive and future-proof mobile network architecture for the 5G era.

As part of the 5GPPP initiative, vendors, operators, IT companies, enterprises and academia in Europe are joining forces to launch the 5G NORMA (5G Novel Radio Multiservice adaptive network Architecture) project.

The 5G NORMA project, which is expected to run for 30 months, will propose an end-to-end architecture that takes into consideration both Radio Access Network (RAN) and Core Network aspects. The consortium envisions the architecture will enable unprecedented levels of network customizability to ensure that stringent performance, security, cost and energy requirements are met. It will also provide an API-driven architectural openness, fueling economic growth through over-the-top innovation.

Consortium members
Vendors and IT: Alcatel-Lucent, NEC, Nokia Networks, ATOS
Operators: Deutsche Telekom, Orange, Telefonica
Small and Medium-sized Enterprises: Azcom Technology, Nomor Research, Real Wireless
Academia: University Kaiserslautern in Germany, Kings College London, University Carlos III Madrid

The technical approach is based on the innovative concept of adaptive (de)composition and allocation of network functions, which flexibly decomposes the network functions and places the resulting functions in the most appropriate location. By doing so, access and core functions may no longer reside in different locations, which is exploited to jointly optimize their operation whenever possible. The adaptability of the architecture is further strengthened by the innovative software-defined mobile network control and mobile multi-tenancy concepts and underpinned by corroborating demonstrations.

"5G is not only about new radio access technology, network architecture will play an important role as well. 5G networks will have to be programmable, software driven and managed holistically to enable a diverse range of services in a profitable way. With 5G NORMA, the consortium aims to ensure economic sustainability of the network operation and open opportunities for new players, while leveraging a future-proof architecture in a cost- and energy-effective way," stated Dr. Werner Mohr, Chairman of the 5GPPP Association.

https://5g-ppp.eu/
https://5g-ppp.eu/5g-norma/
http://company.nokia.com/en

Level 3 Acquires Black Lotus for DDoS Mitigation

Level 3 Communications has acquired Black Lotus, a start-up offering global Distributed Denial of Service (DDoS) mitigation services. Details on the all-cash deal were not disclosed.

Black Lotus, which is based in San Francisco, operates a global DDoS mitigation network which monitors traffic on edge routers to generate sample data called flows which are then sent to an analysis platform. The traffic sample is then evaluated to determine if there is a DDoS attack against the destination IP, and if so traffic to that IP is diverted into one or more scrubbing centers. Once traffic is in the scrubbing center it can be filtered based on signatures which are predefined traffic patterns which are known to be DDoS attacks, or heuristics which are abnormalities in traffic patterns which may be indicative of a DDoS attack.

Level 3 said the acquisition of Black Lotus will add additional capabilities to the existing Level 3 DDoS service, which launched earlier in the year, including adding extra scrubbing centers. The Level 3 DDoS Mitigation service provides an enhanced network-based detection and mitigation scrubbing solution alongside network routing, rate limiting and IP filtering abilities. Black Lotus adds proxy-based DDoS mitigation services to the portfolio providing additional capabilities for application layer attacks, along with advanced behavioral analytics technology. The application layer is a prime target for DDoS attacks that often impact Web servers and Web hosting providers.

"At Level 3, we value security and are committed to protecting our customers and our network," said Chris Richter, senior vice president of managed security services at Level 3. "Black Lotus' proxy and behavioral technologies, combined with their experienced team of DDoS experts, perfectly complements Level 3's DDoS mitigation and threat intelligence capabilities. With this acquisition, Level 3 continues its commitment of investing in a comprehensive portfolio of services that enhance the growth, efficiency and security of our customers' operations, helping enterprises combat the cybersecurity challenges they face every day."

http://www.level3.com
https://www.blacklotus.net

Interoute Claims Fastest Transatlantic Cloud

Interoute claims that its global cloud platform, Interoute Virtual Data Centre (VDC), delivers nearly double the throughput across the Atlantic than the next best cloud provider, as evidenced by research conducted by Cloud Spectator.

The research from March 2015 compared Interoute VDC with three leading cloud providers (Amazon AWS, Rackspace and Microsoft Azure), testing network throughput and latency between Europe and USA and between providers' European data centres. In all of the comparisons, Interoute VDC demonstrated the highest throughputs and lowest latencies.

Key research findings:

Transatlantic:

  • Interoute VDC delivered 1.1 Gbps throughput, which was 96% better than Amazon AWS, 141% better than Rackspace, and 195% better than Microsoft Azure.
  • Interoute VDC had the lowest latency, between its London and New York data centres. Interoute was the only provider in the comparison with both of its transatlantic data centres located in key business cities, meaning that VDC users can access compute and storage resources, and deliver data to their customers, from two centres of European and US business activity. 

Within Europe:

  • Interoute VDC achieved 1.3 Gbps throughput between its London and Amsterdam data centres. This was 52% better than Amazon AWS (Dublin – Frankfurt) and 73% better than Microsoft Azure (Dublin - Amsterdam)
  • Interoute VDC achieved a latency of 6 milliseconds between London and Amsterdam, over three times better than the inter-data centre latency of the comparison providers.

“This independent report confirms and validates our networked cloud strategy. Building cloud into a world class network provides our customers with significantly better performance when compared with the traditional cloud models. Businesses looking to grow between Europe and US should definitely be looking at the importance of these network characteristics for their ability to shift workloads into the cloud. Interoute’s fourteen global zones are all built into high performance network with over 300 interconnects in Europe alone. So wherever you choose to put your data and connect to us, your services are typically going to perform faster on Interoute than on many other global providers,” stated Matthew Finnie, CTO of Interoute.

http://www.interoute.com/press-release/interoute-virtual-data-centre-fastest-transatlantic-cloud-service

Ixia Ships its Private and Hybrid Cloud Visibility Solution

Ixia has enhanced its Net Tool Optimizer (NTO) platform with single-pane-of-glass visibility into hybrid cloud deployments, allowing a unified view of the entire network.

The new major capabilities delivered in this release include:

  • Unified visibility for virtual and physical networks under a single management interface
  • Intelligent routing of application traffic
  • Double the available interconnects with existing hardware
  • High speed visibility with the 4x40Gbps Advanced Feature Module (AFM) hardware
  • Enabling visibility without borders - Insight into Hybrid Cloud Deployments

Ixia said its graphical user interface, patented dynamic filtering technology and "virtual tap" enable visibility into hybrid cloud deployments. Ixia’s NTO now controls a consolidated data flow from physical and virtual networks that can be then shared with existing security and application performance tools. This extends their life through the virtualization migration, leveraging existing infrastructure and reducing transition risk.

Ixia is also announcing the availability of a new advanced 160Gbps feature module, with 4x40Gbps interfaces. This module supports all existing packet grooming features such as de-duplication, slicing, stripping and tunnel termination.

http://www.ixiacom.com

June was busy for Start-ups + Networking + Cloud + Security

Cisco to acquire OpenDNS for $635 Million


Cisco agreed to acquire OpenDNS, a privately held security company based in San Francisco, for approximately $635 million in cash and assumed equity awards. OpenDNS provides a secure DNS offering with advanced threat protection for "any device, across any port, protocol or app." Its predictive security model is designed to anticipate malicious activity, including botnets and phishing. Its DNSCrypt technology converts regular DNS traffic into encrypted...

Distil Raises $21M for Bot Detection and Mitigation


Distil Networks, a start-up with offices in Arlington, Virginia and San Francisco, raised $21 million in Series B funding for its bot detection and mitigation solution. Distil helps to defend websites against malicious bots used for web scraping, brute force attacks, competitive data mining, account hijacking, unauthorized vulnerability scans, spam, man-in-the-middle attacks and click fraud. Its unique approach monitors every single Web request...

HackerOne Raises $25 Million for Vulnerability Tracking


HackerOne, a start-up based in San Francisco with offices in the Netherlands, raised $25 million in Series B funding for its vulnerability management and bug bounty platform. HackerOne, which was created by people who scaled a new security approach at Facebook, Microsoft and Google, relies on the worldwide hacker community to find and disclose software security holes. The company said it can identify security vulnerabilities on a continuous basis,...

AtScale Raises Funding for Business Intelligence Interface for Hadoop


AtScale, a start-up based in San Mateo, California, announced $7 million in series A funding for its business intelligence solution for Hadoop. AtScale aims to is the glue between two fast-growing but currently disconnected markets: Big Data, estimated at $50B by Wikibon, and the Business Analytics industry, a space IDC predicts will reach $59.2B in 2018. AtScale requires no data movement and no new visualization interface to act as the business...

Enigma Raises $28 Million for its Analytics Engine


Enigma, a start-up based in New York City, announced a $28.2 million Series B funding round to support its work in data discovery and analytics. Enigma has developed an analytics engine that can search, discover and connect billions of previously unlinked public records from thousands of governments and organizations across the world. Enigma is now focusing these capabilities on the enterprise market, bringing its unique corpus of public data...

Portworx Targets Container-Aware Storage


Portworx, a start-up based in Redwood City, California, unveiled its solution for providing elastic, scale-out block storage natively to Docker containers. Portworx PWX Converged Infrastructure for Containers allows Dockerized applications to execute directly on the storage infrastructure. It also enables Dockerized applications to be scheduled across machines and clouds, making possible the deployment of stateful, distributed applications. Key...

Rancher Labs Launches its Container Infrastructure Platform


Rancher Labs, a start-up based in Cupertino, California, announced the beta release of its platform for running Docker in production. It includes a fully-integrated set of infrastructure services purpose built for containers, including networking, storage management, load balancing, service discovery, monitoring, and resource management. Rancher connects these infrastructure services with standard Docker plugins and application management tools,...

Datawise.io Targets Network/Storage for Linux Containers


Datawise.io, a start-up based in San Jose, previewed its solution for delivering network and storage solutions for Linux containers. Project 6 is software for deploying and managing Docker containers across a cluster of hosts, with a focus on simplifying on-premises environments. Datawise.io is making it easy to pack stateless and stateful applications onto the same environment by integrating Docker and Google’s Kubernetes with additional capabilities...

Corsa Introduces SDN Metering and QoS for Big Data


Corsa Technology, a start-up based in Ottawa, unveiled new SDN metering and QoS (Quality of Service) capability for its line of performance SDN hardware. Bandwidth reservation is seen as especially interesting for organizations running Big Data workloads. The traffic engineering function, which is based on OpenFlow 1.3, allows network architects to better manage bandwidth across their network with dynamic, policy-aware metering and QoS. Metering...

PLUMgrid Names Larry Lang as CEO


PLUMgrid, a start-up offering an Open Networking Suite (ONS) for clouds based on OpenStack, named Larry Lang as chief executive officer. Founder Awais Nemat has been appointed chairman of the board of directors. Lang has held executive positions including president and CEO of Quorum Labs, vice president and general manager of the mobile internet business unit at Cisco Systems, and vice president of product management at Ipsilon Networks, now part...

AppFormix Promises Better Orchestration of VMs and Docker Containers


AppFormix, a start-up based in San Jose, California emerged from stealth mode to unveil its platform for managing the physical infrastructure and orchestrating virtual machines and Docker containers by leverating OpenStack, Kubernetes and Mesos. The company said its goal is to create a fully optimized software-defined data center by bridging the gap between application requirements and the underlying resources. The AppFormix software solution provides...

Menlo Security Raises $25 million for Isolation Platform


Menlo Security emerged from stealth to unveil its Isolation Platform, a new technology that eliminates the threat of malware from key attack vectors, including Web and email. The solution does not use endpoint software. Instead, the Menlo Security Isolation Platform isolates and executes all Web content in the cloud and away from the endpoint. It uses patent-pending, clientless rendering technology, Adaptive Clientless Rendering (ACR), to deliver...

Avi Networks Integrates Cloud ADC with Cisco ACI


Avi Networks, a start-up based in Sunnyvale, California, has integrated its Cloud Application Delivery Controller with Cisco's Application Centric Infrastructure (ACI). Avi Networks, which was founded by key engineers behind Cisco's Nexus data center platforms, offers a software-only load balancer that adopts the same approach taken by large cloud service providers, such as Amazon, Facebook and Google, in that it runs entirely on x86.  The...

Cisco to Acquire Piston Cloud for OpenStack


Cisco agreed to acquire Piston Cloud Computing, a start-up based in San Francisco, for its enterprise OpenStack solutions. Financial terms were not disclosed. Piston Enterprise OpenStack is designed for building, scaling and managing a private Infrastructure-as-a-Service (IaaS) cloud on bare-metal, converged commodity hardware.  Piston Cloud enables Cloud Foundry's Platform-as-a-Service (PaaS) offering to run on OpenStack. It also supports...

IBM Acquires Blue Box for OpenStack Cloud Migration


IBM has acquired Blue Box Group, a managed private cloud provider built on OpenStack. Financial terms were not disclosed. Blue Box, which is based in Seattle, provides a private cloud as a service platform designed to enable easier deployment of workloads across hybrid cloud environments. IBM said the acquisition reinforces its commitment to deliver flexible cloud computing models that make it easier for customers to move to data and applications...

AccelOps Builds Threat Intelligence into its Actionable Security Platform


AccelOps, a start-up based in Santa Clara, California, introduced threat intelligence capabilities for its integrated IT and operational visibility platform. The existing AccelOps virtual appliance software monitors security, performance and compliance in cloud and virtualized infrastructures on a single screen. It automatically discovers, analyzes and automates IT issues in machine and big data across organizations’ data centers and cloud resources,...

Hedvig Raises $18 Million for Distributed, Software-Defined Storage


Hedvig, a start-up based in Santa Clara, California, announced $18 million in Series B funding for its software-defined storage solution designed to bring "the power of Amazon and Facebook-like infrastructure to any enterprise data center.". Hedvig has developed a Distributed Storage Platform combines cloud and commodity infrastructure.  The system creates a virtualized pool that provisions storage with a few clicks, scales to petabytes and...

See also