engyak.co
open-menu closeme
Home
Archive
Wi-Fi and Radio
Open Source
Python
Information Security
Improving productivity with code
Network Design Patterns
IPv6 / IP Design
github twitter linkedin rss
  • The Role of Trust and Failure in Information Security

    calendar Jul 3, 2022 · 5 min read · Network Security  ·
    Share on: twitter facebook linkedin copy

    The principles that define the information security field are decades older than computing, and we'd do well to learn from the lessons that precede our industry. We as security professionals naively construct an "our stuff versus them" model when attempting to defend our networks in our early career. As we …


    Read More
  • Bogons, and how to leverage public IP feeds with NSX-T

    calendar Jan 16, 2022 · 3 min read · Network Security Datacenter Networking Python Routing & Switching Studies BGP NSX-T Design Patterns  ·
    Share on: twitter facebook linkedin copy

    Have you ever wondered what happened to all the privately-addressed traffic coming from any home network? Well, if it isn't explicitly blocked by the business, it's routed, and this is not good. Imagine what data leakage can occur when a user mistypes a destination IP - the traffic goes out to the Service Provider, who …


    Read More
  • Leverage Idempotent, Declarative Profiles with the NSX-ALB (Avi) REST API

    calendar Jan 2, 2022 · 5 min read · Load Balancing TLS VMWare Network Security Python Avi Programmability Design Patterns Network Automation NSX-ALB  ·
    Share on: twitter facebook linkedin copy

    Idempotence and Declarative Methods - not just buzzwords Idempotence Coined by Benjamin Peirce, this term indicates that a mathematical operation will produce a consistent result, even with repetition. Idempotence is much more complicated subject in mathematics and computer science. IT and DevOps use a simplified …


    Read More
  • Get rid of certificate errors with Avi (NSX-ALB) and Hashicorp Vault!

    calendar Oct 10, 2021 · 7 min read · Load Balancing TLS VMWare Network Security Avi NSX-ALB  ·
    Share on: twitter facebook linkedin copy

    Have you ever seen this error before? This is a really important issue in enterprise infrastructure because unauthenticated TLS connections teach our end users to be complacent and ignore this error. TLS Authentication SSL/TLS for internal enterprise administration typically only addresses the confidentiality aspects …


    Read More
  • VMworld 2021 is right around the corner! Here are my top 10 sessions!

    calendar Aug 25, 2021 · 8 min read · VMWare Network Security Avi NSX-T Network Automation  ·
    Share on: twitter facebook linkedin copy

    VMworld 2021 is online this year I'll really miss some of the sessions and exploration we've had in past years in person, but I think VMware made the right call this year. We can expect to see a fundamental shift with online conventions - and this will need some unique strategy compared to previous years. The Basics I …


    Read More
  • NSX-T Transitive Networking

    calendar Jan 3, 2021 · 6 min read · eBGP VMWare Home Lab IPv6 Network Security Datacenter Networking Spine and Leaf BGP NSX-T  ·
    Share on: twitter facebook linkedin copy

    One major advantage to NSX-T is that Edge Transport Nodes (ETNs) are transitive Transitivity (Wikipedia) (Consortium GARR) is an extremely important concept in network science, and in computer networking. In simple terms, a network node (any speaker capable of transmitting or receiving on a network) can have the …


    Read More
  • NSX-T 2.5 Getting Started, Part 1

    calendar Sep 29, 2019 · 3 min read · eBGP VMWare Home Lab Network Security Datacenter Networking Spine and Leaf iBGP Routing & Switching Studies BGP NSX-T  ·
    Share on: twitter facebook linkedin copy

    Since NSX-T 2.5 just came out, it's about time to do a full rebuild and getting started guide. NSX-T differs greatly from NSX-V in that the initial setup is quite a bit more complicated and doesn't have many guardrails or direct paths to initial set-up. We'll be skipping the appliance deployment, because if you have …


    Read More
  • NSX-T Datacenter 2.5 Upgrade Process and Preview

    calendar Sep 21, 2019 · 2 min read · VMWare Network Security NSX-T  ·
    Share on: twitter facebook linkedin copy

    Now that NSX-T Datacenter 2.5 is downloadable, it's time to try this out in my home lab. First things first, if you log in more than 90 days out, you'll be locked out of the appliance completely. If you make any changes the normal linux way (passwd and chage) the appliance will automatically revert it in about a …


    Read More
  • NSX-T Datacenter 2.5 Released!

    calendar Sep 21, 2019 · 2 min read · VMWare Network Security NSX-T  ·
    Share on: twitter facebook linkedin copy

    As of 19 September 2019, NSX-T 2.5 has been officially released and is available for download! It's been a bit since the announcement, so let's cover some of the new capabilities of interest with NSX-T 2.5. This is a summary of what I found interesting, the complete release notes are here NSX Intelligence VMWare will …


    Read More
  • Minemeld installation, continued

    calendar Mar 3, 2019 · 1 min read · VMWare Home Lab Network Security  ·
    Share on: twitter facebook linkedin copy

    I cheated/pivoted a little bit - decided to simulate a bit more closely what I'd be using at work. I bootstrapped a CentOS VM and followed the instructions in: https://github.com/PaloAltoNetworks/minemeld-ansible 1sudo yum install -y wget git gcc python-devel libffi-devel openssl-devel zlib-dev sqlite-devel bzip2-devel …


    Read More
    • ««
    • «
    • 1
    • 2
    • »
    • »»

ENGYAK.co

A blog about IT

Disclaimer

The opinions expressed on this site are my own personal opinions and do not represent my employer’s view in any way.

Recent Posts

  • Automate Cisco IOS/IOS-XE documentation with Ansible (with examples)
  • Document Networks as Code with D2!
  • Document vSphere as Code with D2!
  • Diagram as Code with D2!
  • Enable ToFU (Trust on First Use) with OpenSSH
  • Deploy vSphere VMs with Ansible!
  • Why Automate? VM Deployment with vSphere's REST API
  • What happens to packets with a VMware vSphere Distributed Switch?

Series

SPINE-AND-LEAF-FABRICS 8 WHY-AUTOMATE 8 D2 4

Tags

DATACENTER-NETWORKING 43 VMWARE 43 ROUTING-SWITCHING-STUDIES 35 NSX-T 32 HOME-LAB 31 BGP 28 NETWORK-AUTOMATION 23 PROGRAMMABILITY 22 DESIGN-PATTERNS 20 EBGP 20 IPV6 15 NETWORK-SECURITY 15 AVI 13 ANSIBLE 12 FOSS/LINUX 12 NSX-ALB 11 IBGP 10 LINUX 10
All Tags
802.3BY1 ANSIBLE12 ANYCAST3 AVI13 BGP28 BIND91 CISCO-NX-OS3 CLOUD1 CONTINUOUS-DELIVERY5 DATACENTER-NETWORKING43 DESIGN-PATTERNS20 DIAGRAMS4 DNS1 EBGP20 FOSS/LINUX12 GITOPS1 HOME-LAB31 IBGP10 INFORMATION-SECURITY5 IPV615 IS-IS3 JENKINS4 JINJA4 JSON4 LAYER-12 LAYER-22 LINUX10 LOAD-BALANCING9 NETWORK-AUTOMATION23 NETWORK-SECURITY15 NFV3 NGINX1 NSX1 NSX-ALB11 NSX-T32 NSX-V2 OSPF5 PAN-OS3 PROGRAMMABILITY22 PYTHON8 RIPV22 ROUTING-SWITCHING-STUDIES35 SPANNING-TREE1 SPINE-AND-LEAF10 TLS3 UNBOUND1 UNEARNED-UPTIME2 VCENTER1 VCSA1 VMWARE43 VSPHERE4 WI-FI4 WPA32 XML1 YAML1
[A~Z][0~9]
engyak.co

Copyright 2019-  ENGYAK.CO. All Rights Reserved

to-top