Cisco Smart Building IoT Discussion and Digital Ceiling Strategy

At NFD11 Cisco has presented their vision of modern buildings and how IoT could change the way LED lightning inside of office buildings is designed today. Basically modern LED lights consume less power as that what we can deliver with UPoE over an Ethernet cable.  The maximum power that can be delivered over an ethernet cable was increased over time. At the beginning the main use-case was to deliver power to VoIP Phones. With the original IEEE 802.3af standard it was possible to deliver ~15 Watts. After that we had 30Watts with the 802.3at for power hungry access-points and now with UPoE Cisco has increased this with a proprietary standard up to ~60 Watts UPoE specifications . That makes it possible to deliver to all office lights of a building the power via Ethernet cables and UPoE without the need of traditional power cables. Cisco has formed up a strategic partnership with Phillips to deliver that vision of IoT based LED lightning for buildings. Philips and Cisco form global strategic alliance

To enhance their IoT strategy Cisco has aquired recently Jasper Technologys . With that acquisition Cisco can round up the IoT story to a full blown service that goes beyond LED lightning. The prediction is is that it will start with digital lightning and grow to building automation with sensors. This Cisco calls the Digital Ceiling strategy. Besides the PoE capabilities Cisco is contributing to open protocols like CoAP to deliver a complete package for IoT. Partners will get a predictable infrastructure that can deliver all the needed features for IoT deployments.

The Network Autobahn View

IoT and the automation around buildings is getting more momentum. I am personal still concerned about the security aspect. Cisco mentioned a new Class of switches for building automation that works PNP, so that it is easy to deploy for facility managers. If some hacker is messing up my PC that is one thing, but when my lights are shut down or I have in the winter no heating because somebody is manipulating my building automation network it becomes a completely different story IMHO. For a corporate network you have in most cases IT Security people that do hardening and logging of all the systems. When now Janitors have to apply these task in the next generation of buildings I have my doupts that this will be secured probably. I compare this to the situation that we have with a lot of SCADA Systems that are a security nightmare, the world where telnet and default passwords is still a common thing. I have to admit that IoT brings a lot of benefits regarding to automation, but always remember with great power comes great responsibility.

 

Posted in All | Leave a comment

Cisco Live Berlin #CLEUR and TechField Day Extra

ciscolive

I have the pleasure to attend to the Cisco Live event wich is this year in my beloved hometwon Berlin. Even more exciting is that on the Cisco Live I will be part of the Tech Field Day Extra event by GestaltIT. With me together there will be joining other delgates from a wide range of different backrounds the Tech Field Day Extra at Cisco Live. Lokking forward to meet up with:

Amy Arnold  @AmyEngineerTFD-Extra-Cisco-Live-300

David Varnum  @Overlaid

Francesco Bonetti  @FBonez

James Green  @JDGreen

John Harrington  @NetworkSherpa

Max Mortillaro  @DarkkAvenger

Peter Paul Engelen  @PPJM_Engelen

This time I will not be the one with a jet-lag. If you would like to meet up at Cisco Live in Berlin drop me a massage , glad to talk about all of the new tech goodness that we will see during the event. As a born Berliner I am happy to have this great event directly in my backyard.

See you in Berlin

Posted in All | Leave a comment

Cisco IOS XE Denali @ NFD11

Cisco_denali_2IOS XE 16.x Denali

It is quiet hard to track software release streams and available features sets across the different Cisco switch and router familys. I have been more than one time get confused with the same software release version on different platforms that has different feature sets.  It is not nice when there is a feature missing that you had expected. Cisco has addressed that problem finally with the 16.x Denali release. Cisco has worked on the Denali release for 3 years to bring a unified SW release across multiple platforms. In the backround Cisco has 3 abstraction components the CLI, the unified SW Stack and the ASIC related part of the code. The big benefit here is that you didn´t need a separate
development team for each switch / device family. CLI and unified Software Stack can be developed centralized with one team across different products. That enables faster development for new features and feature parity across different device families. Besides the benefit of exactly the same CLI on all devices that runs Denali Cisco has also added a new WebUI that is completely rebuild and has more features and a better usebility than the previous web interface. Costumers have demanded this for a long time and finally Cisco has responded with Denali.Cisco_denali

The Network Autobahn View

Thanks Cisco for releasing Denali. I have been waiting for this a long time. Besides Cisco internally all Cisco customers will benefit from this unified Software release approach. It makes tracking of software releases more easy and also the testing process. Cisco internally benefits also from a unified approach. I suggest that makes the development process faster and more efficient. At the end of the day hopefully the costumers get paid back with more new features that come out across multiple device platforms. I see here a general trend in the IT industry. It is needed to have an abstraction layer that is independent from the underlying hardware platform. Hopefully all new Cisco devices will follow this unified SW approach in the future.

Posted in All | Leave a comment

Silver Peak @ NFD11

silverpeakSilverpeak has shown their Unity EdgeConnect SDWAN solution. Silverpeak has done WAN optimization for many years and has leveraged from that for their SDWAN products.
Silverpeak has several different Hardware Platforms that all have the same feature set from a software prospective.
The devices can handle multiple WAN connections and traffic types. You have seemless failover between WAN links and active-active loadbalancing across all these links as well. All the WAN links will use an encrypted tunnel for the outgoing traffic. The connected endpoints can be centrelized managed with a controller with a nice looking UI.

Network Autobahn View
The Silverpeak SDWAN solution has looked well put toghter. I was impressed by the Silver Peak CEO David Hughes. Hughes has shown a very deep technical understanding of the product. It looks like as if all the expierence that Silverpeak has in the WAN optimization space has been put into the SDWAN product from the beginning. Many problems that we had in the WAN space are finally solved. To buy a SDWAN product today will pay off very quickly when you compare the ISP costs of a privte MPLS that you can safe.

Posted in All, Blog | Leave a comment

Netscout @ NFD11

netscoutThe Business Unit inside of NETSCOUT that many of you know as Fluke networks has shown at the NFD11 their new TruView product. It is a monitoring and network measurement as a service offering.
The components of TruView are measurement endpoints and a cloud based management and analytics platform. The endpoints can be deployed as software package or hardware device. The TruView Pulse 1000 comes in a small form factor that is PoE powered. The Endpoints have to establish a connection to the Cloud based management to get registered. It was quiet impressive how easy the deployment of these measurement endpoints is. Pulse1000NetScout has put in serious thoughts to keep the complete process as simple as possible to get results fast and easy. After an endpoint is registered you get immediately results of the performance tests. The cloud based Pure View server presents the results of the performance test.

Network Autobahn View
To have constant data from all your locations that are based on real data like emulated VoIP calls is pretty need. The biggest value for me is that you have a base line and can compare that to the current data.
Instead of shipping expensive measurement equipment that is complex to configure to a remote location, than make one test session and ship everything back. NetScout offers with TruView a compelling model with many small measurement endpoints, that can stay in the remote locations and gives constant data output. At the moment all the data will be in the cloud. I would like to see a server version of TruView so that it can be hosted in your own data center and all the measurement data would stay in your own control.

Posted in All, Blog, Monitoring | Leave a comment

Skyport Systems @ NFD11

skyportSkyport Sytems has used the NFD11 to show the first time their new innovativ product.
Skyport is a startup company with a very unique product that brings a new layer of security to the table.
Basicly you can verify that a server is not compromised for e.g. by a rootkits. The problem is to verify that a server is not compromised these days. To survive a wipe/installtion process, rootkids are placed in HW componetnts like e.g. the Firmware of HardDisks and SSDs. Even with a fresh OS installation the server would be immediatly compromised again. At the moment it is hard to address this attack vector. Skyport positioned their product as an extra layer of security for the high mission critical appliactions. How does it work ? Skyport has shown a Hardware based NIC that has TPM Chips, CPUs and RAM. So all the hardware and firmware inside of a server can by verified and inspected.
It is also possible to control and manipulate the traffic that goes across the Skyport hardware. Besides Firewall functionsalitys you have with Shield WEB Application a Crypto Creditional Proxy that can act as an encryption break up point so that SSL encrypted data can be inspected here as well.
You also get new Logging capabilities for your Skyport protected servers. Of course you can run a Virtualization Hypervisor on a Skyport protected Server.

Network Autobahn View:
We have to protect a System against attackers in all possible ways. Skyport adds an additional layer of security and addresses an attack vector that is not covered by any other classic security solution that I am aware of.
Will we deploy a Skyport NIC to all our servers ? Maybee not, but for the buissness critical application I see a pretty sharp usecase.

For more informations check out the Video from the NFD11 Skyport presentation:

Posted in All | Leave a comment

Network Field Day 11 Aftermath

NFD-Logo-400x398I have attended to Networking Field Day 11 in San Jose California wich is organized by GestaltIT.
It was a buisy week with a lot of state of the art tech. I had the pleasure to see from a wide range of vendors their products and visions. Some vendors had their first preseation at NFD and other are regular contributer. In my view the Network Field Day event is a win win situation for everybody. The vendors can present their newest innovations to the right audience insteat of an oldschool broadcast approach of merketing.
This is the introducing to a series of blog posts about the presnations that I have seen at NFD11.
I will give you fo all preenations a quick overview and my opinion as well. If that caught your interest check out the TechFiled Youtube Channel
and watch the complete presnation.

Network Field Day 11 Videos

Posted in All | Leave a comment

Happy New Year in IT

2016When the year is ending and everybody is thinking about XMAS in a lot of  IT departments  it starts to get hectic. There is some IT budget left and it has to be spended before the year is ending. I have seen this in many businesses and it is especially true for government organisations. So like at home where I have to assemble some Lego Toys for my children on XMAS there are delivered a lot of large packages at the office that have to be unboxed and rolled out into production before the year is ending. So not for all IT folks the end of the year is as relaxed as it should be. On the first weeks of the new Year I had often to do a lot of clean up work to get everything right for that was no time during the installation like monitoring and documentation.

Hopefully you all have finished your 2015 projects in time and stayed at home with your family at XMAS instead of being busy in the office.

Happy New Year 2016.

Cheers
Dominik

 

Posted in All | 2 Comments
Powered by WP Tutor.io