This week kicked off with a trip to Boston and Red Hat Summit where Cisco is talking about our partnership with Red Hat on open source projects including OpenStack, and the Kernel-based Virtual Machine (KVM) hypervisor. I’m here to highlight some of our Nexus 1000V virtual networking innovations that involve Red Hat open source distributions of red Hat Enterprise Linux (RHEL), KVM and OpenStack.
As you probably know, Cisco started shipping the Nexus 1000V virtual switch for Microsoft Hyper-V this month (and it won a Best of TechEd Show award at Microsoft’s TechEd conference). But open source virtualization and cloud infrastructure platforms continue to be an important strategy for our entire data center portfolio here at Cisco. KVM will be the next hypervisor that we’ll ship our Nexus 1000V virtual switch on, and the rest of the Red Hat open source cloud infrastructure will be an important part of our open strategy, and that includes Red Hat Linux and their Red Hat OpenStack distribution.
Read More »
Tags: Cisco ONE, IBM, KVM, Linux, Microsoft Hyper-V, Nexus 1000v, opendaylight, OpenStack, Red Hat Summit
Cisco Security Intelligence Operations is tracking reports of ongoing exploitation of a vulnerability in the popular web application framework Ruby on Rails that creates a Linux-based botnet. The vulnerability dates back to January 2013 and affects Ruby on Rails versions prior to 3.2.11, 3.1.10, 3.0.19, and 2.3.15. Cisco Security Intelligence Operations’ has previously published an analysis of CVE-2013-0156. Cisco is receiving reports of attempted infection from Cisco IPS customers participating in Global Correlation.
Read More »
Tags: botnet, data center, esa, ioc, IPS, Linux, malware, netflow, ruby on rails, TRAC, wsa
Last weekend, I was fortunate enough to be able to attend the Midwest Open Source Software Conference (MOSSCon 2013). I met some fascinating people, listened to some great talks, and learned a bunch of new things.
All in all, a win.
I also presented a talk on two things:
- The general open source philosophy at Cisco
- My specific open source work at Cisco
The slides that I presented are below (slightly edited from their original form; I used a few animations in my original slides, which don’t work on Slideshare):
Read More »
Tags: HPC, Linux, MOSSCon, mpi, Open MPI, open source, USNIC
The theme for this year’s SecCon was “Building on a Foundation of Security.” The breadth of topics discussed that are relevant to being a trusted vendor and producing trustworthy products is quite significant. Naturally many of the discussions revolved around the Cisco Secure Development Lifecycle (CSDL), Cisco’s approach to building secure products and solutions. As Graham Holmes mentioned in a recent blog post, CSDL takes a layered approach, with one of the key components being the security of the underlying operating system. As a standard part of the development process, Cisco’s product teams implement a comprehensive set of CSDL requirements to harden the base OS. These requirements were created not only by leveraging Cisco’s significant in-house security expertise, but also drawing from best practices available in the industry.
In keeping with the theme of SecCon 2012, we have decided to publish these foundational OS security requirements to enhance the knowledge of our partner ecosystem, and advance the industry as a whole. As of today, Cisco is releasing two documents that have been an integral part of CSDL: “Linux Hardening Recommendations For Cisco Products” and “Product Security Baseline Linux Distribution Requirements.” Read More »
Tags: cisco-seccon-2012, CSDL, Linux, product security, SecCon, security
Over the past years, with the growing success of UCS, the partnership between Cisco and Redhat has been stronger and stronger. Cisco is a Gold Sponsor of the RedHat Summit 2012 in Boston, and the UCS platform has been once more again praised on stage in front of the 3000 participants . During his keynote address yesterday SAP Sybase’s Irfan Khan, senior vice president and chief technology officer, announced that in two-tier SAP Sales and Distribution (SD) standard application benchmarks, Red Hat Enterprise Virtualization and its Kernel-based Virtual Machine (KVM) hypervisor running the SAP ERP 6.0 application achieved leading performance results running on… Cisco UCS servers *.
If UCS attracts more and more SAP customers, the Oracle customers can also rely on this platform to gain significant performances and reduce cost as they migrate from a Risc migration environment to Cisco UCS .Check the blogs from Cisco Timothy Stack on this topic.
One of the best way to achieve this migration from Unix to Linux, is certainly in deploying a solution such as Flexpod, presented at RedHat Summit 2012 by NetApp, which is a Silver Sponsor (see NetApp activities here) -- So I ask Jon Benedict (@CaptainKVM) , oVirt board member and NetApp Sr Virtualization Solutions Architect to share with us what Flexpod can provide in this context.
“Anyone who has had to maintain a rigid, outdated infrastructure knows it’s a time-consuming and painful process. Prior to joining NetApp I was a Red Hat solution architect and led a mainframe migration project for a large financial services company running both Red Hat Enterprise Linux (RHEL) and Solaris. We were confronted with an issue that impacted both platforms; getting the issue resolved with Red Hat and the newer Solaris versions was relatively straightforward but custom-tweaked applications running on older, end of life platforms required a ridiculously expensive per system financial investment. A key outcome of the project was the requirement that the IT team create a plan for migrating older Solaris-based applications from UNIX to Linux.
FlexPod would have been a great way to handle this, but unfortunately this project was pre-FlexPod.
The Cisco Unified Computing System represents an ideal computing platform for Linux-based applications while the joint collaboration between Cisco, NetApp and Red Hat is key to accelerating this type of transition. Instead of just upgrading servers and the operating system, our pre-validated FlexPod data center platform enables you to modernize your infrastructure holistically with an integrated solution including Cisco UCS servers, Cisco Nexus switches, and NetApp FAS storage. As my marketing guys love to say, “It’s a platform capable of meeting your needs today and scaling to meet your needs in the future.” Like me, the comment looks fluffy but it’s solid.
Read More »
Tags: Cisco, data center, FlexPod, Linux, RedHat Summit 2012, Risc Migrations