The Lippis Report

June 7th, 2011

In Lippis Report 172, I mentioned three huge trends that are starting to interact with each other creating a perfect storm that is gripping the tech industry. One of those trends is the creation of a software ecosystem in the networking market, thanks to the Clean Slate program out of Stanford University that has spawned the Software Defined Network (SDN) initiative and open controller protocol called OpenFlow. I spent a week in the Valley talking to people at Stanford and many industry executives from Cisco, Juniper, Marvell, Big Switch, Nicira, Arista, IBM and others. In this Lippis Report Research Note, I share with you what I learned. OpenFlow-based SDN is being both hyped and in its current state, limited, but it does represent a new paradigm that has the industry abuzz, filled with possibilities.

Read the rest of this entry »

May 24th, 2011

Three strong trends are taking shape that are so powerful they threaten the status quo of the networking industry. These trends are more like storms than new markets; in fact they represent a major industry discontinuity. The first storm is happening now and is represented by merchant silicon for 10 and 40 GbE chips lowering the barrier of entry for new entrants in the Ethernet switch market. The second storm is much weaker but promises to be just as big, or bigger, than the first. This second storm is the creation of a software ecosystem in the networking industry, thanks to initiatives such as Software Defined Networks (SDN), OpenFlow, Arista Network’s EOS Central, etc. The third storm is the paradigm shift in enterprise IT spending thanks to mobile and cloud computing. These three storms are starting to interact and feed upon each other, forming a perfect storm in the networking industry. The perfect storm is already doing damage, as all major IT firms position product portfolios to navigate through it and prepare for its aftermath of making existing networking legacy.

Read the rest of this entry »

March 28th, 2011

In the Lippis Report, we have discussed the fundamental changes shaping a new data center network architecture. These drivers are massive virtualization, a sea change in traffic patterns that are now dominated with east-west flows on top of existing north-south traffic, ultra low latency, the emergence of cloud spec data centers, etc. As a result, data center networking attributes are changing with requirements of traffic, steering in virtualized infrastructure, avoiding manual network changes as VMs move, removing oversubscription (thanks to spanning tree), streamlining network tiers to hasten east-west traffic flows, etc. The industry is responding to these changes and requirements with new approaches to data center networking, such as the Open Networking Foundation, Cisco’s FabricPath, Juniper’s QFabric, Brocade’s VCS, Avaya’s VENA, Nicira Networks’ network virtualization software, etc. In this Lippis Report Research Note, we explore a key technology to enabling two-tier network fabrics, and that’s link aggregation and its various approaches, including Multi-Chassis Link Aggregation Group, Transparent Interconnection of Lots of Links (TRILL) and Shortest Path Bridging (SPB).

Read the rest of this entry »

March 15th, 2011

Cisco recently launched its SecureX architecture that extends perimeter-based network security to secure modern IT, recognizing the huge growth in mobile and cloud computing. SecureX is a multi-layer architecture built upon Cisco’s AnyConnect client, its global footprint in real-time threat intelligence found in SIO (Security Intelligence Operation), Cisco TrustSec, including policy servers of NAC manager and server appliances, ASA firewall and the security enforcement features of its switches and routers. SecureX is an architecture to Cisco’s network security products and service to work together in an effort to create deeper defenses and contain exploit infestation if, and when, they occur. Fundamental to SecureX is the concept of “context aware” policy across the enterprise, including remote endpoint devices, centralized policy creation with distributed security device and network enforcement. SecureX provides for innovation injection points through APIs (Application Programming Interfaces) for management and SIEM or Security Information and Event Management. In this Lippis Report Research Note, we explore SecureX with a focus on how context increases defenses and keeps IT assets safer.

Read the rest of this entry »

February 28th, 2011

The data center switching market is heating up. To address the scale issues posed by mobile and cloud computing nearly every network vendor is launching its own version of a 10/40/100 GbE fabric to connect servers and storage to the internet. At the heart of this fabric is a two-tier (Fat-Tree) network made up of leaf/ToR and spine/Core switches. Here leafs connect servers and spines connect leafs while also being interconnected in a logical mesh. The protocols to create this logical mesh are based upon IS-IS link state routing, but each vendor is taking a unique approach with Cisco using its FastPath, Alcatel-Lucent and Avaya using SPB (802.1aq Shortest Path Bridging) while Brocade VDX is based upon TRILL (Transparent Interconnection of Lots of Links). Juniper recently announced QFabric but has not detailed what it’s using for logical meshing. At the center of new data center design are leaf and spine switches. In Lippis Report Research Note 166, we detailed the latest ToR switches. In this Lippis Report Research Note 167, we dive into performance and power consumption measurements plus the use of SPB of Alcatel-Lucent’s OmniSwitch 10K, a new entry into spine/core data center switching market.

Read the rest of this entry »

February 14th, 2011

During December 6-10, 2010, the Lippis Report and Ixia conducted the industry’s first 10GbE data center switching evaluation of Top-of-Rack and Core Ethernet switches at the modern iSimCity lab in Santa Clara, CA. We evaluated Alcatel-Lucent’s OmniSwitch 10K, Arista’s 7504 Series Data Center Switch, BLADE Network Technologies’, an IBM Company, IBM BNT RackSwitch G8124 and IBM BNT RackSwitch G8264, Force10 Network’s S-Series S4810, Hitachi Cable’s Apresia 15000-64XL-PSR, Juniper Network’s EX Series EX8216 Ethernet Switch and Voltaire®’s Vantage™ 6048. We are conducting a second round of test scheduled for the week of April 4-8 at iSimCity, and it is open to all suppliers of 10GbE data center switching. We learned a lot about these products, both in the lab and out. In this Lippis Report Research Note, we dive into the Top-of-Rack 10GbE switches we tested as they represent a new generation of products that exhibit low power consumption, low latency, high performance and are all based upon new single chip designs from Broadcom, Marvell or Fulcrum Micro.

Read the rest of this entry »

January 31st, 2011

There are powerful market forces changing IT delivery. IT application delivery is becoming increasingly centralized thanks to data center server virtualization plus mobile and cloud computing. Desktops are being virtualized, too, thanks to network speeds that deliver low latency and high bandwidth, creating a thin client user experience that is indistinguishable from a thick client but at lower desktop management cost. One serious implication of this concentration of IT in data centers is that a new IT security model is needed as mobility brings greater threat exposure while virtualization changes traffic patterns and the rules of security appliance placement. In this Lippis Report Research Note, we present a new model for IT security in the virtualized mobile and cloud-computing era.

Read the rest of this entry »

January 17th, 2011

Any IT business leader knows that the single most important technology driving data center design change is server virtualization to the point that a virtual machine (VM) is now the data center building block. As server virtualization marches on until nearly every physical server has been virtualized, networking in a virtualized environment is being forced to fundamentally change too. By networking, I mean not only layer 2 and 3 forwarding but network services too, such as application controllers, WAN optimizes, firewalls, etc., which are fundamental for mission critical application performance, cost reduction and high application availability especially where service level agreements are required.

Read the rest of this entry »

January 17th, 2011

By Force10 Networks

Deriving a return on virtualization investments means deploying effective automation techniques that can simplify the virtualized environment while allowing a policy-based deployment model. While many network vendors have chosen a proprietary path to automate network changes, Force10′s approach is to utilize open and industry standard technologies based on the extensible and modular Force10 Operating System (FTOS), across a range of the heterogeneous Force10 switch and routers portfolio.

Find out how to automate network changes in virtualized infrastructure by downloading this white paper

January 17th, 2011

By Extreme Networks

Server virtualization brings with it a set of network operational challenges: from configuration challenges around Virtual Machine (VM) switching to managing virtual machine mobility, to providing VM location and inventory in the network. There are few tools available to the network administrator that provides visibility, control and insight into the VM environment until now. Extreme Networks® XNVTM provides network-level visibility and control of the server VM environment in a hypervisor-agnostic manner and without requiring any changes to the server virtualization operating environment.

Find out how by downloading this white paper:

January 17th, 2011

By BLADE Network Technologies, an IBM Company

Server virtualization brings both benefits and drawbacks to the data center: it can maximize underutilized resources and minimize infrastructure spending—but add complexity and administrative overhead for the network administrator. BLADE Network Technologies’ VMready™ software addresses this problem by automatically migrating network policies along with virtual machines as they migrate across different physical servers.

Find out how by downloading this white paper

January 17th, 2011

By Cisco Systems

This two-page guide provides information on IPv6 client support without changing applications via using stateless NAT 64.

Learn about IPv6 endpoint support by downloading this guide.

January 17th, 2011

By Cisco Systems

This two-page guide provides information on dual stack IPv4 and IPv6 implementations and its impact from client to network infrastructure.

Learn about dual stacking IPv4 and IPv6 by downloading this guide.

January 17th, 2011

A typical “non-virtualized” data center has three network layers, Top-of-Rack, End-of-Row and Core switches. But virtualized infrastructure adds two additional layers—the virtual switch and blade switch—raising the number of tiers from 3 to 5. This significantly increases latency plus the number of network elements within the data center resulting in increased data center management complexity. I talk with Shehzad Merchant, Senior Director for Strategy at Extreme Networks, about Extreme’s flattening approach to data center network fabric through its DirectAttach.