SlideShare una empresa de Scribd logo
1 de 18
Descargar para leer sin conexión
Copyright © 2019 Men and Mice ehf. All rights reserved.
New Best Practices
for Future-ready Hybrid & Multicloud Network Strategies
Copyright © 2019 Men and Mice ehf. All rights reserved.
About us
Men & Mice provides API-driven DNS, DHCP and
IPAM software solutions to global enterprise,
education and government organizations for effective
management, visibility, control, automation and
security of complex, hybrid IP infrastructure. Network
Managers in some of the world’s largest
organizations rely on Men & Mice to increase network
portability and adapt to changing network needs.
Copyright © 2019 Men and Mice ehf. All rights reserved.
About me
Paul Terrill
Director, Sales Operations, North America
+10 years experience assisting enterprise and other large
scale organizations transition global networks to scale and
increase resilience.
Get in touch: paul.terrill@menandmice.com
Copyright © 2019 Men and Mice ehf. All rights reserved.
What we’ll cover
• Pitfalls such as:
• Loss of control
• Compatibility hurdles
• Lost time and efficiencies
• Low visibility
• New best practices:
• Unifying management and visibility with overlays
• Adding security and control
• Automating and workflows
• Leverage service-native features (on-premise and cloud)
• Hybrid deployment scenarios and migration
Virtual appliances in cloud vs. using cloud-native services
Copyright © 2019 Men and Mice ehf. All rights reserved.
Engage DevOps, executive stakeholders
• Be the change agent not the reluctant network team
• Show advantages and risks for service adoptions
• Give transparent, unified reporting
• Rip and replace or, steady progress?
• Leverage everything while adapting the network
• Proactively prepare for change
• Direct integration
• What Orchestration tools and platforms (via plug-ins or adapters) are
ideal for Datacenter and private cloud automation?
• Workflows and reporting intelligence
• What’s making network (and business services) efficient? What’s
underperforming, causing hurdles?
DevOps + Network Team advantage
Copyright © 2019 Men and Mice ehf. All rights reserved.
Migration
Questions to consider:
• What is being migrated?
• Core network infrastructure services (DNS and DHCP)? Do the new
servers/solutions come with the same capabilities?
• Do you have automation?
• Using current platform API? How will this impact change?
• Same functionality?
• Does your new platform have it? Audit what you’re gaining and losing?
• Architectural differences?
• Do DHCP servers and DNS servers integrate between solutions? Is that
further complicated with cloud integrations?
• Is OS on the devices/services?
• Can it ensure access to corporate if internet connection goes down?
Copyright © 2019 Men and Mice ehf. All rights reserved.
DHCP
Cisco IOS DHCP
• Uses split-scopes
• Client updates DNS on its own
• Simple configuration and option
management
• IOS is on the router, lending autonomy
should internet go down
Platform B
• Uses failover
• Takes care of the DNS registration
• Advanced, elaborate options you’ll
never use
• IOS lives elsewhere, dependent on
connectivity
Both DHCP solutions give out leases to clients but administration,
configuration and setup can be quite different:
Copyright © 2019 Men and Mice ehf. All rights reserved.
Virtual Appliances
3 reasons Network Managers put DNS servers/services in the cloud:
Authoritative for Internet-facing
zones
Why: Not on virtual infrastructure
Issue: Time building or strategizing
security, scalability and availability
Best: Use services like Amazon
Route 53, Akamai or other services to
host external zones.
Authoritative for internal zones
(available to hosts in the cloud)
Why: Dev servers point to appliance
Issue: Redundancy requires more
than one, and must be copied across
multiple VPCs and accounts
Best: Host zone as private zone in
Amazon Route 53, or use the Route
53 resolver.
Internet resolution to hosts in
the cloud
Why: Provide resolution by
putting VA in VPC or account
Issue: Rigid, old school, costly
and negates advantages of cloud
services
Best: Use cloud-native features.
Copyright © 2019 Men and Mice ehf. All rights reserved.
Homegrown
Can you productize your homegrown solution or sell it? No?
Don’t.
• Ownership
• Who owns? Are they retiring? Controls sophisticated enough?
• Functionality
• Maintenance and version update resilience
• New versions of software present new incompatibilities
• Accommodate new innovations?
• New functionality comes to market (like IPv6)
• Barrier to network transformation?
• Prickly and inflexible means bigger plan, more time for deployment
• Reluctance to change because the task and costs are too large
• stifles innovation, slows teams with mundane tasks, impacts
business efficiencies
Copyright © 2019 Men and Mice ehf. All rights reserved.
APIs
Don’t fear the API
• APIs work best when they are
well strategized (not all APIs are
created equal)
• Automate the things that bog
teams down
• Liberate teams to focus on
business innovation and growth
• Compatibility shortens resolution
and increases overall efficiency
AI is not ready for primetime!
Copyright © 2019 Men and Mice ehf. All rights reserved.
APIs
Automate the things that bog teams down
• Types of APIs:
– REST (fast performance, reliability and scalability)
– SOAP/XML (more rigid in execution)
– JSON-RPC (stuck in a different time)
Things to look out for:
• Is the API fast or will you just resort to SQL database
statements?
• Can you define your own workflows with point & click?
• Does it include all features/functions of Product Interface?
• Go through all the same channels as Interface Functions?
• Does it log all API-induced changes?
Copyright © 2019 Men and Mice ehf. All rights reserved.
Why Overlays?
High Availability
• Multiple regions/DCs, cloud VNETs/VPCs to ensure transparent, always-on
APIs and Workflows (REST APIs)
• Retain / add granular Access Controls to increase security
• Cuts implementation and task time from months to days and minutes
• Leverages Cloud 24/7 monitoring for DDI
When hell breaks loose
• Overlay is not authoritative for core network services
• Network will continue to operate even if DDI tool goes down
• When back online, an overlay will synchronize again
• Redundancy addresses and mitigates significant risk management concerns
Easier and quicker to plan, organize, optimize and delegate
hybrid & multicloud strategies
Copyright © 2019 Men and Mice ehf. All rights reserved.
Compatibility
Cisco IOS
ISC DHCP
ISC Kea
Microsoft DHCP
BIND
Microsoft DNS
PowerDNS
Unbound
Plug-in
Network App & subnet data
VMWare vRealize
Orchestrator
& Automation
Men & Mice included as
a Solution Provider in
Gartner's March 2019
research report “Solution
Comparison for
Enterprise DNS, DHCP
and IP Address
Management (DDI)
Solutions.”
Copyright © 2019 Men and Mice ehf. All rights reserved.
“It's improved the way that
our 'customers' view us
because now we have a more
stable environment.
We have less errors, and we
are quicker to solve, quicker
to respond.
People bring up their
concerns, their problems and
we just fix it on the spot.”
Improving service levels and consolidate network
resources to reduce costs
• Critical network changes that used to take 30 minutes,
now take 1-3 minutes.
• Low-cost data in the cloud: very simple and fast to
migrate data to the most efficient storage platform, as
and when needed.
• Co-hosting networks on a single management platform
and co-housing equipment, which allows for better and
more efficient use of funds.
Icelandic Meteorological Office
Copyright © 2019 Men and Mice ehf. All rights reserved.
Advantages for Umbrella customers
Configure all internal DNS servers (resolvers) in one go
• Domain Controllers
• Dozens to as many as hundreds
• Visibility to correct servers not properly configured
Manage, synchronize, increase flexibility and security of
entire IP infrastructure
Bonus:
• Our community of large network customers means big data pool:
• ID operational trends across various implementations
• Quickly deploy solutions to customers with similar pain points
Copyright © 2019 Men and Mice ehf. All rights reserved.
Pitfalls to avoid
Using solutions that negate innovation by
telling you to ”buy more boxes” or “put more
VAs in the cloud.”
Solutions with slow APIs slow down your
network, team and increase costs
Wasting valuable talent on mundane task due to
solutions that don’t enable proper automation
Isolating your network into your on-premise, homegrown
or cloud provider kills visibility and increases
misconfigurations and security vulnerabilities.
Copyright © 2019 Men and Mice ehf. All rights reserved.
Increase collaboration between DevOps, Network
and Executive teams to ensure company vision
comes to life
Leverage service-native features and uses
services that are highly compatible and
synchronize
Improve control granularity and customization
• Ensure complete, unified visibility throughout and
after migration
Ditch the homegrown IPAM
Decide to be innovative, a hybrid /multicloud
networked organization
Best practices
menandmice.com

Más contenido relacionado

La actualidad más candente

ABCD's of WAN Optimization
ABCD's of WAN OptimizationABCD's of WAN Optimization
ABCD's of WAN OptimizationEdward Gilbert
 
IBM Cloud Services Portfolio
IBM Cloud Services Portfolio IBM Cloud Services Portfolio
IBM Cloud Services Portfolio Bernd Thomsen
 
HyperGrid_Customer Presentation
HyperGrid_Customer PresentationHyperGrid_Customer Presentation
HyperGrid_Customer PresentationSyed Arsalan
 
Webinar: NetApp SaaS Backup
Webinar: NetApp SaaS BackupWebinar: NetApp SaaS Backup
Webinar: NetApp SaaS BackupNetApp
 
Forrester Survey sponsored by Juniper: Building for the Next Billion - What t...
Forrester Survey sponsored by Juniper: Building for the Next Billion - What t...Forrester Survey sponsored by Juniper: Building for the Next Billion - What t...
Forrester Survey sponsored by Juniper: Building for the Next Billion - What t...XO Communications
 
IBM in Surveillance: Solutions that Deliver Innovation
IBM in Surveillance: Solutions that Deliver InnovationIBM in Surveillance: Solutions that Deliver Innovation
IBM in Surveillance: Solutions that Deliver InnovationPaula Koziol
 
IBM Aspera for Telecommunications
IBM Aspera for TelecommunicationsIBM Aspera for Telecommunications
IBM Aspera for TelecommunicationsChris Shaw
 
IBM Aspera for the CTO / CIO
IBM Aspera for the CTO / CIOIBM Aspera for the CTO / CIO
IBM Aspera for the CTO / CIOChris Shaw
 
Cloud Service Management. A New Beginning.
Cloud Service Management. A New Beginning.Cloud Service Management. A New Beginning.
Cloud Service Management. A New Beginning.Mark O'Loughlin
 
From the Network to Multi-Cloud: How to Chart an Integrated Strategy
From the Network to Multi-Cloud: How to Chart an Integrated StrategyFrom the Network to Multi-Cloud: How to Chart an Integrated Strategy
From the Network to Multi-Cloud: How to Chart an Integrated StrategyXO Communications
 
PureApp Presentation
PureApp PresentationPureApp Presentation
PureApp PresentationProlifics
 
Ibm PureApplication system
Ibm PureApplication systemIbm PureApplication system
Ibm PureApplication systemkhawkwf
 
DevOps in the Hybrid Cloud
DevOps in the Hybrid CloudDevOps in the Hybrid Cloud
DevOps in the Hybrid CloudRichard Irving
 
Simplificando a Rede Wireless - Aerohive
Simplificando a Rede Wireless - AerohiveSimplificando a Rede Wireless - Aerohive
Simplificando a Rede Wireless - AerohiveRodrigo Martini
 
Cloud computing case studies with ProfitBricks IaaS
Cloud computing case studies with ProfitBricks IaaSCloud computing case studies with ProfitBricks IaaS
Cloud computing case studies with ProfitBricks IaaSProfitBricks
 
IBM Aspera in Chemicals and Petroleum
IBM Aspera in Chemicals and PetroleumIBM Aspera in Chemicals and Petroleum
IBM Aspera in Chemicals and PetroleumChris Shaw
 
SKALI On The Cloud
SKALI On The CloudSKALI On The Cloud
SKALI On The CloudSKALI Group
 

La actualidad más candente (20)

IBM PureSystems
IBM PureSystemsIBM PureSystems
IBM PureSystems
 
ABCD's of WAN Optimization
ABCD's of WAN OptimizationABCD's of WAN Optimization
ABCD's of WAN Optimization
 
IBM Cloud Services Portfolio
IBM Cloud Services Portfolio IBM Cloud Services Portfolio
IBM Cloud Services Portfolio
 
HyperGrid_Customer Presentation
HyperGrid_Customer PresentationHyperGrid_Customer Presentation
HyperGrid_Customer Presentation
 
Webinar: NetApp SaaS Backup
Webinar: NetApp SaaS BackupWebinar: NetApp SaaS Backup
Webinar: NetApp SaaS Backup
 
Forrester Survey sponsored by Juniper: Building for the Next Billion - What t...
Forrester Survey sponsored by Juniper: Building for the Next Billion - What t...Forrester Survey sponsored by Juniper: Building for the Next Billion - What t...
Forrester Survey sponsored by Juniper: Building for the Next Billion - What t...
 
IBM in Surveillance: Solutions that Deliver Innovation
IBM in Surveillance: Solutions that Deliver InnovationIBM in Surveillance: Solutions that Deliver Innovation
IBM in Surveillance: Solutions that Deliver Innovation
 
IBM Aspera for Telecommunications
IBM Aspera for TelecommunicationsIBM Aspera for Telecommunications
IBM Aspera for Telecommunications
 
IBM Aspera for the CTO / CIO
IBM Aspera for the CTO / CIOIBM Aspera for the CTO / CIO
IBM Aspera for the CTO / CIO
 
Cloud Service Management. A New Beginning.
Cloud Service Management. A New Beginning.Cloud Service Management. A New Beginning.
Cloud Service Management. A New Beginning.
 
From the Network to Multi-Cloud: How to Chart an Integrated Strategy
From the Network to Multi-Cloud: How to Chart an Integrated StrategyFrom the Network to Multi-Cloud: How to Chart an Integrated Strategy
From the Network to Multi-Cloud: How to Chart an Integrated Strategy
 
RiOS 8.5 launch presentation
RiOS 8.5 launch presentationRiOS 8.5 launch presentation
RiOS 8.5 launch presentation
 
PureApp Presentation
PureApp PresentationPureApp Presentation
PureApp Presentation
 
Ibm PureApplication system
Ibm PureApplication systemIbm PureApplication system
Ibm PureApplication system
 
DevOps in the Hybrid Cloud
DevOps in the Hybrid CloudDevOps in the Hybrid Cloud
DevOps in the Hybrid Cloud
 
Simplificando a Rede Wireless - Aerohive
Simplificando a Rede Wireless - AerohiveSimplificando a Rede Wireless - Aerohive
Simplificando a Rede Wireless - Aerohive
 
Cloud computing case studies with ProfitBricks IaaS
Cloud computing case studies with ProfitBricks IaaSCloud computing case studies with ProfitBricks IaaS
Cloud computing case studies with ProfitBricks IaaS
 
IBM Aspera in Chemicals and Petroleum
IBM Aspera in Chemicals and PetroleumIBM Aspera in Chemicals and Petroleum
IBM Aspera in Chemicals and Petroleum
 
Pure application system
Pure application systemPure application system
Pure application system
 
SKALI On The Cloud
SKALI On The CloudSKALI On The Cloud
SKALI On The Cloud
 

Similar a Cisco Live 2019: New Best Practices for Hybrid and Multicloud Network Strategies

Deploying IBM WebSphere Application Server to the Cloud_GWC_3-24-2015
Deploying IBM WebSphere Application Server to the Cloud_GWC_3-24-2015Deploying IBM WebSphere Application Server to the Cloud_GWC_3-24-2015
Deploying IBM WebSphere Application Server to the Cloud_GWC_3-24-2015Yakura Coffee
 
Introduction to ThousandEyes
Introduction to ThousandEyesIntroduction to ThousandEyes
Introduction to ThousandEyesThousandEyes
 
Introduction to ThousandEyes
Introduction to ThousandEyesIntroduction to ThousandEyes
Introduction to ThousandEyesThousandEyes
 
Z105745 ibmz-cloud-cairo-v1902a
Z105745 ibmz-cloud-cairo-v1902aZ105745 ibmz-cloud-cairo-v1902a
Z105745 ibmz-cloud-cairo-v1902aTony Pearson
 
Cedar Day 2018 - Cloud IaaS - Ken MacMahon
Cedar Day 2018 - Cloud IaaS - Ken MacMahonCedar Day 2018 - Cloud IaaS - Ken MacMahon
Cedar Day 2018 - Cloud IaaS - Ken MacMahonCedar Consulting
 
Cloud 101 - What is the Cloud?
Cloud 101 - What is the Cloud?Cloud 101 - What is the Cloud?
Cloud 101 - What is the Cloud?RapidScale
 
Moving IBM i Applications to the Cloud with AWS and Precisely
Moving IBM i Applications to the Cloud with AWS and PreciselyMoving IBM i Applications to the Cloud with AWS and Precisely
Moving IBM i Applications to the Cloud with AWS and PreciselyPrecisely
 
Episode 1: Transition to Iaas
Episode 1: Transition to IaasEpisode 1: Transition to Iaas
Episode 1: Transition to IaasBenoitFindeis
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud ComputingUOS
 
10 Key Steps for Moving from Legacy Infrastructure to the Cloud
10 Key Steps for Moving from Legacy Infrastructure to the Cloud10 Key Steps for Moving from Legacy Infrastructure to the Cloud
10 Key Steps for Moving from Legacy Infrastructure to the CloudNGINX, Inc.
 
Protecting Your Power Systems with Cloud-based HA/DR
Protecting Your Power Systems with Cloud-based HA/DRProtecting Your Power Systems with Cloud-based HA/DR
Protecting Your Power Systems with Cloud-based HA/DRPrecisely
 
Making Money in the Cloud
Making Money in the CloudMaking Money in the Cloud
Making Money in the CloudGravitant, Inc.
 
Cloudy with SaaS-Shine 18march2015
Cloudy with SaaS-Shine 18march2015Cloudy with SaaS-Shine 18march2015
Cloudy with SaaS-Shine 18march2015Simon Baker
 
North Devon Farms - Getting to know the Cloud 14th Oct 2015
North Devon Farms - Getting to know the Cloud 14th Oct 2015North Devon Farms - Getting to know the Cloud 14th Oct 2015
North Devon Farms - Getting to know the Cloud 14th Oct 2015Get up to Speed
 
Get up to speed cloud computing and apps yeovil 9.06.15
Get up to speed   cloud computing and apps yeovil 9.06.15Get up to speed   cloud computing and apps yeovil 9.06.15
Get up to speed cloud computing and apps yeovil 9.06.15Get up to Speed
 
Compose Your Digital Enterprise
Compose Your Digital EnterpriseCompose Your Digital Enterprise
Compose Your Digital EnterpriseProlifics
 
fmb_cloud_computing.pptx
fmb_cloud_computing.pptxfmb_cloud_computing.pptx
fmb_cloud_computing.pptxMrArrow3
 
Softlayer an IBM Compay . Connaissez vous le cloud de l'avenir
Softlayer an IBM Compay . Connaissez vous le cloud de l'avenir Softlayer an IBM Compay . Connaissez vous le cloud de l'avenir
Softlayer an IBM Compay . Connaissez vous le cloud de l'avenir Patrick Bouillaud
 

Similar a Cisco Live 2019: New Best Practices for Hybrid and Multicloud Network Strategies (20)

Deploying IBM WebSphere Application Server to the Cloud_GWC_3-24-2015
Deploying IBM WebSphere Application Server to the Cloud_GWC_3-24-2015Deploying IBM WebSphere Application Server to the Cloud_GWC_3-24-2015
Deploying IBM WebSphere Application Server to the Cloud_GWC_3-24-2015
 
Introduction to ThousandEyes
Introduction to ThousandEyesIntroduction to ThousandEyes
Introduction to ThousandEyes
 
Introduction to ThousandEyes
Introduction to ThousandEyesIntroduction to ThousandEyes
Introduction to ThousandEyes
 
Z105745 ibmz-cloud-cairo-v1902a
Z105745 ibmz-cloud-cairo-v1902aZ105745 ibmz-cloud-cairo-v1902a
Z105745 ibmz-cloud-cairo-v1902a
 
Cedar Day 2018 - Cloud IaaS - Ken MacMahon
Cedar Day 2018 - Cloud IaaS - Ken MacMahonCedar Day 2018 - Cloud IaaS - Ken MacMahon
Cedar Day 2018 - Cloud IaaS - Ken MacMahon
 
Cloud 101 - What is the Cloud?
Cloud 101 - What is the Cloud?Cloud 101 - What is the Cloud?
Cloud 101 - What is the Cloud?
 
Moving IBM i Applications to the Cloud with AWS and Precisely
Moving IBM i Applications to the Cloud with AWS and PreciselyMoving IBM i Applications to the Cloud with AWS and Precisely
Moving IBM i Applications to the Cloud with AWS and Precisely
 
Episode 1: Transition to Iaas
Episode 1: Transition to IaasEpisode 1: Transition to Iaas
Episode 1: Transition to Iaas
 
Cloud Computing
Cloud ComputingCloud Computing
Cloud Computing
 
10 Key Steps for Moving from Legacy Infrastructure to the Cloud
10 Key Steps for Moving from Legacy Infrastructure to the Cloud10 Key Steps for Moving from Legacy Infrastructure to the Cloud
10 Key Steps for Moving from Legacy Infrastructure to the Cloud
 
Protecting Your Power Systems with Cloud-based HA/DR
Protecting Your Power Systems with Cloud-based HA/DRProtecting Your Power Systems with Cloud-based HA/DR
Protecting Your Power Systems with Cloud-based HA/DR
 
An introduction and overview to Software as a Service
An introduction and overview to Software as a Service An introduction and overview to Software as a Service
An introduction and overview to Software as a Service
 
Making Money in the Cloud
Making Money in the CloudMaking Money in the Cloud
Making Money in the Cloud
 
Cloudy with SaaS-Shine 18march2015
Cloudy with SaaS-Shine 18march2015Cloudy with SaaS-Shine 18march2015
Cloudy with SaaS-Shine 18march2015
 
Ms.azure in detail
Ms.azure in detailMs.azure in detail
Ms.azure in detail
 
North Devon Farms - Getting to know the Cloud 14th Oct 2015
North Devon Farms - Getting to know the Cloud 14th Oct 2015North Devon Farms - Getting to know the Cloud 14th Oct 2015
North Devon Farms - Getting to know the Cloud 14th Oct 2015
 
Get up to speed cloud computing and apps yeovil 9.06.15
Get up to speed   cloud computing and apps yeovil 9.06.15Get up to speed   cloud computing and apps yeovil 9.06.15
Get up to speed cloud computing and apps yeovil 9.06.15
 
Compose Your Digital Enterprise
Compose Your Digital EnterpriseCompose Your Digital Enterprise
Compose Your Digital Enterprise
 
fmb_cloud_computing.pptx
fmb_cloud_computing.pptxfmb_cloud_computing.pptx
fmb_cloud_computing.pptx
 
Softlayer an IBM Compay . Connaissez vous le cloud de l'avenir
Softlayer an IBM Compay . Connaissez vous le cloud de l'avenir Softlayer an IBM Compay . Connaissez vous le cloud de l'avenir
Softlayer an IBM Compay . Connaissez vous le cloud de l'avenir
 

Más de Men and Mice

Part 3 - Local Name Resolution in Linux, FreeBSD and macOS/iOS
Part 3 - Local Name Resolution in Linux, FreeBSD and macOS/iOSPart 3 - Local Name Resolution in Linux, FreeBSD and macOS/iOS
Part 3 - Local Name Resolution in Linux, FreeBSD and macOS/iOSMen and Mice
 
Part 2 - Local Name Resolution in Windows Networks
Part 2 - Local Name Resolution in Windows NetworksPart 2 - Local Name Resolution in Windows Networks
Part 2 - Local Name Resolution in Windows NetworksMen and Mice
 
Namespaces for Local Networks
Namespaces for Local NetworksNamespaces for Local Networks
Namespaces for Local NetworksMen and Mice
 
How to send DNS over anything encrypted
How to send DNS over anything encryptedHow to send DNS over anything encrypted
How to send DNS over anything encryptedMen and Mice
 
The DNSSEC KSK of the root rolls
The DNSSEC KSK of the root rollsThe DNSSEC KSK of the root rolls
The DNSSEC KSK of the root rollsMen and Mice
 
The CAA-Record for increased encryption security
The CAA-Record for increased encryption securityThe CAA-Record for increased encryption security
The CAA-Record for increased encryption securityMen and Mice
 
SMTP STS (Strict Transport Security) vs. SMTP with DANE
SMTP STS (Strict Transport Security) vs. SMTP with DANESMTP STS (Strict Transport Security) vs. SMTP with DANE
SMTP STS (Strict Transport Security) vs. SMTP with DANEMen and Mice
 
DNSSEC signing Tutorial
DNSSEC signing Tutorial DNSSEC signing Tutorial
DNSSEC signing Tutorial Men and Mice
 
BIND 9 logging best practices
BIND 9 logging best practicesBIND 9 logging best practices
BIND 9 logging best practicesMen and Mice
 
DNS High-Availability Tools - Open-Source Load Balancing Solutions
DNS High-Availability Tools - Open-Source Load Balancing SolutionsDNS High-Availability Tools - Open-Source Load Balancing Solutions
DNS High-Availability Tools - Open-Source Load Balancing SolutionsMen and Mice
 
Fighting Abuse with DNS
Fighting Abuse with DNSFighting Abuse with DNS
Fighting Abuse with DNSMen and Mice
 
What is new in BIND 9.11?
What is new in BIND 9.11?What is new in BIND 9.11?
What is new in BIND 9.11?Men and Mice
 
Yeti DNS - Experimenting at the root
Yeti DNS - Experimenting at the rootYeti DNS - Experimenting at the root
Yeti DNS - Experimenting at the rootMen and Mice
 
Windows Server 2016 Webinar
Windows Server 2016 WebinarWindows Server 2016 Webinar
Windows Server 2016 WebinarMen and Mice
 
Kea DHCP – the new open source DHCP server from ISC
Kea DHCP – the new open source DHCP server from ISCKea DHCP – the new open source DHCP server from ISC
Kea DHCP – the new open source DHCP server from ISCMen and Mice
 
RIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarRIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarMen and Mice
 
Keeping DNS server up-and-running with “runit
Keeping DNS server up-and-running with “runitKeeping DNS server up-and-running with “runit
Keeping DNS server up-and-running with “runitMen and Mice
 
PowerDNS Webinar - Part 2
PowerDNS Webinar - Part 2PowerDNS Webinar - Part 2
PowerDNS Webinar - Part 2Men and Mice
 

Más de Men and Mice (20)

Part 3 - Local Name Resolution in Linux, FreeBSD and macOS/iOS
Part 3 - Local Name Resolution in Linux, FreeBSD and macOS/iOSPart 3 - Local Name Resolution in Linux, FreeBSD and macOS/iOS
Part 3 - Local Name Resolution in Linux, FreeBSD and macOS/iOS
 
Part 2 - Local Name Resolution in Windows Networks
Part 2 - Local Name Resolution in Windows NetworksPart 2 - Local Name Resolution in Windows Networks
Part 2 - Local Name Resolution in Windows Networks
 
Namespaces for Local Networks
Namespaces for Local NetworksNamespaces for Local Networks
Namespaces for Local Networks
 
How to send DNS over anything encrypted
How to send DNS over anything encryptedHow to send DNS over anything encrypted
How to send DNS over anything encrypted
 
The DNSSEC KSK of the root rolls
The DNSSEC KSK of the root rollsThe DNSSEC KSK of the root rolls
The DNSSEC KSK of the root rolls
 
The CAA-Record for increased encryption security
The CAA-Record for increased encryption securityThe CAA-Record for increased encryption security
The CAA-Record for increased encryption security
 
SMTP STS (Strict Transport Security) vs. SMTP with DANE
SMTP STS (Strict Transport Security) vs. SMTP with DANESMTP STS (Strict Transport Security) vs. SMTP with DANE
SMTP STS (Strict Transport Security) vs. SMTP with DANE
 
DNSSEC signing Tutorial
DNSSEC signing Tutorial DNSSEC signing Tutorial
DNSSEC signing Tutorial
 
BIND 9 logging best practices
BIND 9 logging best practicesBIND 9 logging best practices
BIND 9 logging best practices
 
DNS High-Availability Tools - Open-Source Load Balancing Solutions
DNS High-Availability Tools - Open-Source Load Balancing SolutionsDNS High-Availability Tools - Open-Source Load Balancing Solutions
DNS High-Availability Tools - Open-Source Load Balancing Solutions
 
Fighting Abuse with DNS
Fighting Abuse with DNSFighting Abuse with DNS
Fighting Abuse with DNS
 
What is new in BIND 9.11?
What is new in BIND 9.11?What is new in BIND 9.11?
What is new in BIND 9.11?
 
Yeti DNS - Experimenting at the root
Yeti DNS - Experimenting at the rootYeti DNS - Experimenting at the root
Yeti DNS - Experimenting at the root
 
Windows Server 2016 Webinar
Windows Server 2016 WebinarWindows Server 2016 Webinar
Windows Server 2016 Webinar
 
Kea DHCP – the new open source DHCP server from ISC
Kea DHCP – the new open source DHCP server from ISCKea DHCP – the new open source DHCP server from ISC
Kea DHCP – the new open source DHCP server from ISC
 
DNSTap Webinar
DNSTap WebinarDNSTap Webinar
DNSTap Webinar
 
RIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinarRIPE 71 and IETF 94 reports webinar
RIPE 71 and IETF 94 reports webinar
 
Keeping DNS server up-and-running with “runit
Keeping DNS server up-and-running with “runitKeeping DNS server up-and-running with “runit
Keeping DNS server up-and-running with “runit
 
PowerDNS Webinar - Part 2
PowerDNS Webinar - Part 2PowerDNS Webinar - Part 2
PowerDNS Webinar - Part 2
 
PowerDNS Webinar
PowerDNS Webinar PowerDNS Webinar
PowerDNS Webinar
 

Último

The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...
The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...
The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...Aggregage
 
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...UbiTrack UK
 
Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1DianaGray10
 
Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™Adtran
 
AI You Can Trust - Ensuring Success with Data Integrity Webinar
AI You Can Trust - Ensuring Success with Data Integrity WebinarAI You Can Trust - Ensuring Success with Data Integrity Webinar
AI You Can Trust - Ensuring Success with Data Integrity WebinarPrecisely
 
UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6DianaGray10
 
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCostKubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCostMatt Ray
 
UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8DianaGray10
 
UiPath Platform: The Backend Engine Powering Your Automation - Session 1
UiPath Platform: The Backend Engine Powering Your Automation - Session 1UiPath Platform: The Backend Engine Powering Your Automation - Session 1
UiPath Platform: The Backend Engine Powering Your Automation - Session 1DianaGray10
 
Comparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioComparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioChristian Posta
 
Basic Building Blocks of Internet of Things.
Basic Building Blocks of Internet of Things.Basic Building Blocks of Internet of Things.
Basic Building Blocks of Internet of Things.YounusS2
 
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Will Schroeder
 
Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)Commit University
 
UiPath Studio Web workshop series - Day 7
UiPath Studio Web workshop series - Day 7UiPath Studio Web workshop series - Day 7
UiPath Studio Web workshop series - Day 7DianaGray10
 
Designing A Time bound resource download URL
Designing A Time bound resource download URLDesigning A Time bound resource download URL
Designing A Time bound resource download URLRuncy Oommen
 
Building Your Own AI Instance (TBLC AI )
Building Your Own AI Instance (TBLC AI )Building Your Own AI Instance (TBLC AI )
Building Your Own AI Instance (TBLC AI )Brian Pichman
 
VoIP Service and Marketing using Odoo and Asterisk PBX
VoIP Service and Marketing using Odoo and Asterisk PBXVoIP Service and Marketing using Odoo and Asterisk PBX
VoIP Service and Marketing using Odoo and Asterisk PBXTarek Kalaji
 
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdfIaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdfDaniel Santiago Silva Capera
 
COMPUTER 10: Lesson 7 - File Storage and Online Collaboration
COMPUTER 10: Lesson 7 - File Storage and Online CollaborationCOMPUTER 10: Lesson 7 - File Storage and Online Collaboration
COMPUTER 10: Lesson 7 - File Storage and Online Collaborationbruanjhuli
 

Último (20)

The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...
The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...
The Data Metaverse: Unpacking the Roles, Use Cases, and Tech Trends in Data a...
 
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...
 
Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1
 
Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™
 
AI You Can Trust - Ensuring Success with Data Integrity Webinar
AI You Can Trust - Ensuring Success with Data Integrity WebinarAI You Can Trust - Ensuring Success with Data Integrity Webinar
AI You Can Trust - Ensuring Success with Data Integrity Webinar
 
UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6
 
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCostKubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
 
UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8
 
UiPath Platform: The Backend Engine Powering Your Automation - Session 1
UiPath Platform: The Backend Engine Powering Your Automation - Session 1UiPath Platform: The Backend Engine Powering Your Automation - Session 1
UiPath Platform: The Backend Engine Powering Your Automation - Session 1
 
Comparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioComparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and Istio
 
Basic Building Blocks of Internet of Things.
Basic Building Blocks of Internet of Things.Basic Building Blocks of Internet of Things.
Basic Building Blocks of Internet of Things.
 
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
 
Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)
 
UiPath Studio Web workshop series - Day 7
UiPath Studio Web workshop series - Day 7UiPath Studio Web workshop series - Day 7
UiPath Studio Web workshop series - Day 7
 
201610817 - edge part1
201610817 - edge part1201610817 - edge part1
201610817 - edge part1
 
Designing A Time bound resource download URL
Designing A Time bound resource download URLDesigning A Time bound resource download URL
Designing A Time bound resource download URL
 
Building Your Own AI Instance (TBLC AI )
Building Your Own AI Instance (TBLC AI )Building Your Own AI Instance (TBLC AI )
Building Your Own AI Instance (TBLC AI )
 
VoIP Service and Marketing using Odoo and Asterisk PBX
VoIP Service and Marketing using Odoo and Asterisk PBXVoIP Service and Marketing using Odoo and Asterisk PBX
VoIP Service and Marketing using Odoo and Asterisk PBX
 
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdfIaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
 
COMPUTER 10: Lesson 7 - File Storage and Online Collaboration
COMPUTER 10: Lesson 7 - File Storage and Online CollaborationCOMPUTER 10: Lesson 7 - File Storage and Online Collaboration
COMPUTER 10: Lesson 7 - File Storage and Online Collaboration
 

Cisco Live 2019: New Best Practices for Hybrid and Multicloud Network Strategies

  • 1. Copyright © 2019 Men and Mice ehf. All rights reserved. New Best Practices for Future-ready Hybrid & Multicloud Network Strategies
  • 2. Copyright © 2019 Men and Mice ehf. All rights reserved. About us Men & Mice provides API-driven DNS, DHCP and IPAM software solutions to global enterprise, education and government organizations for effective management, visibility, control, automation and security of complex, hybrid IP infrastructure. Network Managers in some of the world’s largest organizations rely on Men & Mice to increase network portability and adapt to changing network needs.
  • 3. Copyright © 2019 Men and Mice ehf. All rights reserved. About me Paul Terrill Director, Sales Operations, North America +10 years experience assisting enterprise and other large scale organizations transition global networks to scale and increase resilience. Get in touch: paul.terrill@menandmice.com
  • 4. Copyright © 2019 Men and Mice ehf. All rights reserved. What we’ll cover • Pitfalls such as: • Loss of control • Compatibility hurdles • Lost time and efficiencies • Low visibility • New best practices: • Unifying management and visibility with overlays • Adding security and control • Automating and workflows • Leverage service-native features (on-premise and cloud) • Hybrid deployment scenarios and migration Virtual appliances in cloud vs. using cloud-native services
  • 5. Copyright © 2019 Men and Mice ehf. All rights reserved. Engage DevOps, executive stakeholders • Be the change agent not the reluctant network team • Show advantages and risks for service adoptions • Give transparent, unified reporting • Rip and replace or, steady progress? • Leverage everything while adapting the network • Proactively prepare for change • Direct integration • What Orchestration tools and platforms (via plug-ins or adapters) are ideal for Datacenter and private cloud automation? • Workflows and reporting intelligence • What’s making network (and business services) efficient? What’s underperforming, causing hurdles? DevOps + Network Team advantage
  • 6. Copyright © 2019 Men and Mice ehf. All rights reserved. Migration Questions to consider: • What is being migrated? • Core network infrastructure services (DNS and DHCP)? Do the new servers/solutions come with the same capabilities? • Do you have automation? • Using current platform API? How will this impact change? • Same functionality? • Does your new platform have it? Audit what you’re gaining and losing? • Architectural differences? • Do DHCP servers and DNS servers integrate between solutions? Is that further complicated with cloud integrations? • Is OS on the devices/services? • Can it ensure access to corporate if internet connection goes down?
  • 7. Copyright © 2019 Men and Mice ehf. All rights reserved. DHCP Cisco IOS DHCP • Uses split-scopes • Client updates DNS on its own • Simple configuration and option management • IOS is on the router, lending autonomy should internet go down Platform B • Uses failover • Takes care of the DNS registration • Advanced, elaborate options you’ll never use • IOS lives elsewhere, dependent on connectivity Both DHCP solutions give out leases to clients but administration, configuration and setup can be quite different:
  • 8. Copyright © 2019 Men and Mice ehf. All rights reserved. Virtual Appliances 3 reasons Network Managers put DNS servers/services in the cloud: Authoritative for Internet-facing zones Why: Not on virtual infrastructure Issue: Time building or strategizing security, scalability and availability Best: Use services like Amazon Route 53, Akamai or other services to host external zones. Authoritative for internal zones (available to hosts in the cloud) Why: Dev servers point to appliance Issue: Redundancy requires more than one, and must be copied across multiple VPCs and accounts Best: Host zone as private zone in Amazon Route 53, or use the Route 53 resolver. Internet resolution to hosts in the cloud Why: Provide resolution by putting VA in VPC or account Issue: Rigid, old school, costly and negates advantages of cloud services Best: Use cloud-native features.
  • 9. Copyright © 2019 Men and Mice ehf. All rights reserved. Homegrown Can you productize your homegrown solution or sell it? No? Don’t. • Ownership • Who owns? Are they retiring? Controls sophisticated enough? • Functionality • Maintenance and version update resilience • New versions of software present new incompatibilities • Accommodate new innovations? • New functionality comes to market (like IPv6) • Barrier to network transformation? • Prickly and inflexible means bigger plan, more time for deployment • Reluctance to change because the task and costs are too large • stifles innovation, slows teams with mundane tasks, impacts business efficiencies
  • 10. Copyright © 2019 Men and Mice ehf. All rights reserved. APIs Don’t fear the API • APIs work best when they are well strategized (not all APIs are created equal) • Automate the things that bog teams down • Liberate teams to focus on business innovation and growth • Compatibility shortens resolution and increases overall efficiency AI is not ready for primetime!
  • 11. Copyright © 2019 Men and Mice ehf. All rights reserved. APIs Automate the things that bog teams down • Types of APIs: – REST (fast performance, reliability and scalability) – SOAP/XML (more rigid in execution) – JSON-RPC (stuck in a different time) Things to look out for: • Is the API fast or will you just resort to SQL database statements? • Can you define your own workflows with point & click? • Does it include all features/functions of Product Interface? • Go through all the same channels as Interface Functions? • Does it log all API-induced changes?
  • 12. Copyright © 2019 Men and Mice ehf. All rights reserved. Why Overlays? High Availability • Multiple regions/DCs, cloud VNETs/VPCs to ensure transparent, always-on APIs and Workflows (REST APIs) • Retain / add granular Access Controls to increase security • Cuts implementation and task time from months to days and minutes • Leverages Cloud 24/7 monitoring for DDI When hell breaks loose • Overlay is not authoritative for core network services • Network will continue to operate even if DDI tool goes down • When back online, an overlay will synchronize again • Redundancy addresses and mitigates significant risk management concerns Easier and quicker to plan, organize, optimize and delegate hybrid & multicloud strategies
  • 13. Copyright © 2019 Men and Mice ehf. All rights reserved. Compatibility Cisco IOS ISC DHCP ISC Kea Microsoft DHCP BIND Microsoft DNS PowerDNS Unbound Plug-in Network App & subnet data VMWare vRealize Orchestrator & Automation Men & Mice included as a Solution Provider in Gartner's March 2019 research report “Solution Comparison for Enterprise DNS, DHCP and IP Address Management (DDI) Solutions.”
  • 14. Copyright © 2019 Men and Mice ehf. All rights reserved. “It's improved the way that our 'customers' view us because now we have a more stable environment. We have less errors, and we are quicker to solve, quicker to respond. People bring up their concerns, their problems and we just fix it on the spot.” Improving service levels and consolidate network resources to reduce costs • Critical network changes that used to take 30 minutes, now take 1-3 minutes. • Low-cost data in the cloud: very simple and fast to migrate data to the most efficient storage platform, as and when needed. • Co-hosting networks on a single management platform and co-housing equipment, which allows for better and more efficient use of funds. Icelandic Meteorological Office
  • 15. Copyright © 2019 Men and Mice ehf. All rights reserved. Advantages for Umbrella customers Configure all internal DNS servers (resolvers) in one go • Domain Controllers • Dozens to as many as hundreds • Visibility to correct servers not properly configured Manage, synchronize, increase flexibility and security of entire IP infrastructure Bonus: • Our community of large network customers means big data pool: • ID operational trends across various implementations • Quickly deploy solutions to customers with similar pain points
  • 16. Copyright © 2019 Men and Mice ehf. All rights reserved. Pitfalls to avoid Using solutions that negate innovation by telling you to ”buy more boxes” or “put more VAs in the cloud.” Solutions with slow APIs slow down your network, team and increase costs Wasting valuable talent on mundane task due to solutions that don’t enable proper automation Isolating your network into your on-premise, homegrown or cloud provider kills visibility and increases misconfigurations and security vulnerabilities.
  • 17. Copyright © 2019 Men and Mice ehf. All rights reserved. Increase collaboration between DevOps, Network and Executive teams to ensure company vision comes to life Leverage service-native features and uses services that are highly compatible and synchronize Improve control granularity and customization • Ensure complete, unified visibility throughout and after migration Ditch the homegrown IPAM Decide to be innovative, a hybrid /multicloud networked organization Best practices