OMG, VXLAN Encapsulation Has No Security! « ipSpace.net blog
Every now and then someone actually looks at the VXLAN packet format and eventually figures out that VXLAN encapsulation doesn’t provide any intrinsic security. TL&DR Summary: That’s old news, the sky is not falling, and deploying VXLAN won’t make your network less secure than traditional VLAN- or MPLS-based networks. Let’s start with the old news bit. This is a slide straight out of my VMware NSX
SDN, Windows and Fruity Alternatives « ipSpace.net blog
“Openness” (for whatever value of “Open”) is another perceived benefit of SDN. In reality, you’re trading hardware vendor lock-in for controller vendor lock-in. Brad Hedlund made a pretty valid comment to my “NEC Launched a Virtual OpenFlow Switch” blog post: “On the other hand, it's NEC end-to-end or no dice”, implicating the ultimate vendor lock-in. Of course he’s right and while, as Bob Planker
1
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
On the Lossiness of TCP « ipSpace.net blog
Network Node Shutdown Is a Process, not an Event « ipSpace.net blog
Should Firewalls Track TCP Sequence Numbers? « ipSpace.net blog
Can Virtual Routers Compete with Physical Hardware? « ipSpace.net blog
When Did SDN Really Start? « ipSpace.net blog
How Do I Get Started with SDN and Virtualization? « ipSpace.net blog
More Layer-2 Misconceptions « ipSpace.net blog
Stackable Data Center Switches? Do the Math! « ipSpace.net blog