馬嘶的網路大道

雲端大腦時代：無限人群，無限腦容量，無限影響力 Smarter than you think：How technology is changing our mind for better

cloudlet 一堆新名詞 一下集中 一下分散

BGP Dynamic Neighbors

http://www.cisco.com/c/en/us/products/collateral/security/firepower-4100-series/datasheet-c78-736661.html

http://www.sdnlab.com/15878.html

12 Backhaul link user plane protection The protection of user plane data between the eNB and the UE by user specific security associations is covered by clause 5.1.3 and 5.1.4. In order to protect the S1 and X2 user plane as required by clause 5.3.3, it is required to implement IPsec ESP according to RFC 4303 [7] as profiled by TS 33.210 [5], with confidentiality, integrity and replay protection. On the X2-U and S1-U, transport mode IPsec is optional for implementation. NOTE 1: Transport mode can be used for reducing the protocol overhead added by IPsec. Tunnel mode IPsec is mandatory to implement on the eNB for X2-U and S1-U. On the core network side a SEG may be used to terminate the IPsec tunnel.. For both S1 and X2 user plane, IKEv2 with certificates based authentication shall be implemented. The certificates shall be implemented according to the profile described by TS 33.310 [6]. IKEv2 shall be implemented conforming to the IKEv2 profile described in TS 33.310 [6]

http://fibbing.net/ Centralization improves network management, but sacrifices robustness of distributed protocols solution : Central Control over Distributed Routing, manageable as SDN, but centralizes only high-level decisions, FIB installation relying on distributed protocols by injecting carefully-computed information controller injects information on fake nodes and links to the IGP control-plane https://www.youtube.com/watch?v=49REfDBUQEY just like yesterday's dunk

http://www.cnblogs.com/sammyliu/p/4543110.html

5G Deployment timelines.  Source: GSMA, Xona Partners

http://packetpushers.net/stop-specialist/ 只專一項真的會有問題 但是, 例如在SI搞firewall 就有PA, CP, Forti, J, C .....要會

http://www.cs.usfca.edu/~galles/visualization/Algorithms.html

https://www.sdxcentral.com/articles/news/linkedin-built-its-pigeon-switch-peer-into-networking-chips/2016/02/?utm_content=buffer32fc3&utm_medium=social&utm_source=facebook.com&utm_campaign=buffer https://engineering.linkedin.com/blog/2016/02/falco-decoupling-switching-hardware-and-software-pigeon It is a hard problem to detect because the buffers are inside third party merchants’ silicon chips and not entirely exposed by commercial switch vendors.

https://tools.ietf.org/html/draft-ietf-rtgwg-bgp-routing-large-dc-07

http://www.cnblogs.com/sammyliu/p/4622563.html 這世界變化快, 用不著先看就好 小型自建雲也許只要 Kvm就好

https://www.kernel.org/doc/Documentation/networking/scaling.txt RSS: Receive Side Scaling RPS: Receive Packet Steering RFS: Receive Flow Steering Accelerated Receive Flow Steering XPS: Transmit Packet Steering

http://www.sdnlab.com/15695.html well said! 现在流行自动化，我理解有三个方面： 1. 驱动力 2. 软件硬件的开源化 3. 硬件越来越便宜，且同质化 1. 驱动力。云计算已经火了好几年了，虚拟机，云应用自动化的水平越来越高。网络自动化慢慢成为瓶颈。 2.软件硬件的开源化的越来越多了。有很多开源的代码可以用，程序员也有很多，特别在OTT公司程序员很多。 3.硬件越来越便宜，并且同质化越来越厉害。 硬件便宜了，每个人管理的设备就必然多了。以前，运营商几台核心路由器要花上亿RMB。 可以专门找人来人工管理。 现在越来越便宜，且设备也越来越多。自动化需求就越来越强烈。

幽靈 Phantom http://securitytheater.phoneboy.com/

https://nullsecure.org/malware-traffic-analysis-using-splunk/ http://malware-traffic-analysis.net/

http://www.sdnlab.com/15763.html 分散式最接近用戶, 控制力度和功能也可能更多 但是要找bug時就 ......

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_bgp/configuration/15-s/irg-15-s-book/irg- selective-download.html https://eos.arista.com/arista-eos-bgp-selective-route-download/