Kubernetes is the new Java: VMware

Zdnet | November 20, 2019

For the past few months, VMware has been banging on about why it's time to embrace Kubernetes, and the spiel that Pat Gelsinger gave during his keynote at vForum in Sydney on Tuesday was no different. The chief of VMware believes the impact Kubernetes will have on industry will not be too dissimilar to Java. "Since the time of Java and virtual machine about two decades ago, there hasn't been a technology that has achieved industry consensus and energy as Kubernetes has. This to us is a magic period of time betting aggressively that Kubernetes provides this layer for the next generation," he said.

Spotlight

The frequent media coverage reflects it: Ransomware has become a focus area for many organizations because highprofile attacks against them have risen dramatically in the past couple of years. According to ESG research, nearly twothirds of surveyed organizations across North America and Western Europe experienced a ransomware attack at some point last year, with 22% reporting weekly attacks. The attacks have helped make cybersecurity a target of IT investment, and spending is accelerating.

Spotlight

The frequent media coverage reflects it: Ransomware has become a focus area for many organizations because highprofile attacks against them have risen dramatically in the past couple of years. According to ESG research, nearly twothirds of surveyed organizations across North America and Western Europe experienced a ransomware attack at some point last year, with 22% reporting weekly attacks. The attacks have helped make cybersecurity a target of IT investment, and spending is accelerating.

Related News

VIRTUAL SERVER INFRASTRUCTURE

Open Source Project vcluster Now Runs Upstream Kubernetes Natively

Loft Labs | January 10, 2022

Loft Labs, a venture-backed startup working on developer tooling and platform technology for Kubernetes, announced that the popular open source vcluster project now supports upstream Kubernetes. Although engineers have already been able to deploy virtual clusters using vcluster on top of vanilla Kubernetes clusters, the virtual clusters themselves have always been using the opinionated K3s distribution internally rather than upstream Kubernetes. With this release, vcluster users will now be able to deploy Kubernetes-powered virtual clusters to improve and optimize utilization of computing resources without the need to use K3s within the virtualization layer. We expanded vcluster support to vanilla Kubernetes in response to feedback from our user community. Many companies working with vcluster want to start leveraging the benefits of virtual clusters in production. Making these virtual clusters run with Kubernetes rather than K3s is a big step towards production-readiness for vcluster.” Lukas Gentele, co-founder and CEO, Loft Labs With the availability of upstream Kubernetes in vcluster, users can now also use any new Kubernetes feature immediately after its release and will not have to wait for K3s to ship their adapted Kubernetes version. First launched in April 2021, vcluster is used to create lightweight Kubernetes clusters that run inside the namespaces of underlying Kubernetes clusters. Using virtual clusters solves the majority of multi-tenancy issues of Kubernetes because they offer: Better isolation than simple namespace-based multi-tenancy; Reduced cloud computing cost because virtual clusters are much more lightweight and resource-efficient than spinning up separate single-tenant clusters; Logical separation and encapsulation of application workloads from the underlying cluster’s shared infrastructure workloads (such as shared ingress controller or network plug-ins). At the same time, virtual cluster users can expect that their virtual cluster behaves just like any regular Kubernetes cluster because vcluster is a certified Kubernetes distribution, which means that it passes all conformance tests that CNCF requires. Virtual clusters are often used as development environments when engineers are building, testing and debugging cloud-native software, but they are also frequently used as ephemeral environments for executing continuous integration/continuous delivery (CI/CD) pipelines. Also, an increasing number of companies are starting to explore virtual clusters in production, where virtualizing Kubernetes can be a great way to: surpass the scalability limits of regular Kubernetes clusters; isolate heterogeneous workloads in shared clusters; and streamline and simplify cluster operations when working with large-scale multi-tenant clusters. Loft Labs builds on top of vcluster and provides an enterprise-grade Kubernetes platform called Loft which is used by large organizations to create a self-service platform for their engineering teams. When an enterprise runs Loft, their engineers can provision virtual clusters on-demand whenever they need them, either using the Loft UI (user interface), the Loft CLI (command-line interface) or even using the Kubernetes command-line tool kubectl via the custom resources provided as part of Loft. About Loft Labs Loft Labs was founded in 2019 to create open-source developer tooling and virtual cluster technology for Kubernetes, with the goal to increase developer productivity and to help engineers gain secure but unimpeded access to cloud infrastructure.

Read More

CLOUD

Alkira and Check Point Software Technologies Collaborate to Bring Enterprise-Class Security to Cloud Workloads

Alkira, Check Point Software Technologies, Ltd. | September 30, 2021

Check Point CloudGuard can be rapidly provisioned into one or multiple globally distributed Alkira Cloud Exchange Points (CXP) to provide security policy enforcement for application traffic between any set of endpoints connected to the Alkira global cloud backbone Cloud networking pioneer Alkira® and Check Point Software Technologies, a leading provider of cyber security solutions globally, today announced a technology alliance to provide Check Point Software’s CloudGuard firewalls in Alkira’s Cloud Network infrastructure as-a-Service (CNaaS). This comes as organizations deploying application workloads to the cloud are struggling with the complexity of implementing consistent enterprise-wide security controls spanning cloud, multi-cloud and on-premises environments. The Check Point CloudGuard platform provides cloud native security with advanced threat prevention for all assets and workloads enabling customers to deploy the same robust security in the cloud that they are used to with on-premises systems. Alkira brings a high-performance cloud network-as-a-service with global virtual infrastructure, advanced routing, intelligent service insertion and dynamic auto-scale, simplifying set-up and day 2 operations for enterprise cloud networking and security deployments. “Alkira and Check Point simplify security deployments and make it easier for enterprise customers to apply a single security posture across the entire enterprise network spanning cloud, multi-cloud and existing data center or colocation facilities. Delivering the Alkira virtual network infrastructure and Check Point security management tools as a service allows enterprises to avoid the costs and complexity of DIY solutions, and provides guaranteed performance and scalability.” said Atif Khan, CTO and Founder of Alkira Alkira Cloud Services Exchange® (CSX) fully automates the provisioning, licensing, service insertion, scaling and health monitoring of CloudGuard network security gateways. Alkira seamlessly inserts the CloudGuard gateways at any point in the Alkira global cloud backbone, providing stateful security controls for any on-premises, cloud, and Internet application traffic. Alkira allows customers to decouple CloudGuard from the specific cloud providers, thus providing a more efficient multi-cloud security architecture. Cloud environments offer global presence and vast compute resources but lack the necessary routing, policy and operational controls enterprises require for a streamlined cloud firewall deployment. Even in a single cloud environment, do-it-yourself solutions result in a complex sprawl of virtual machine instances and traffic management scenarios. They also tend to make inefficient use of resources. All these problems are made worse in multi-cloud environments. “The combination of Check Point CloudGuard and Alkira simplifies the process of provisioning and ongoing management in the cloud networking environment which is a big win for enterprise customers. The Check Point CloudGuard platform provides cloud native security with advanced threat prevention for all assets and workloads, across public, hybrid and multi-cloud environments, enabling customers to benefit from a single unified security platform.” added TJ Gonen, Head of Cloud Security at Check Point Check Point CloudGuard can be rapidly provisioned into one or multiple globally distributed Alkira Cloud Exchange Points (CXP) to provide security policy enforcement for application traffic between any set of endpoints connected to the Alkira global cloud backbone. Once CloudGuard has been provisioned within an Alkira CXP it can provide: Security policy to and between public clouds Cloud hosted, stateful firewall services for branches and data centers Regionalized Internet breakouts for secure SaaS application access Cloud DMZ environment for Internet facing applications Shared cloud application services for partners and M&As Alkira’s visual policy manager simplifies policy configuration, scoping and inspection, and streamlines auditing for assurance and compliance purposes. Alkira’s intent-based approach selectively routes traffic to firewalls according to need, improving efficiency of firewall utilization and optimizing network performance. Customers have a choice of bring-your-own license (BYOL) or pay-as-you-go (PAYG) licensing models. Check Point offers a multilevel security architecture that defends enterprises’ cloud, network and mobile device-held information, and a comprehensive and intuitive one-point-of-control security management system. CloudGuard is available in the Alkira network services marketplace. About Alkira Alkira delivers Cloud Networking as-a-Service (CNaaS) and developed the first Network Cloud which enables enterprises to build and deploy a secure global unified multi-cloud network infrastructure as-a-service that delivers network connectivity, advanced network and security services, and end-to-end visibility and governance. Alkira Cloud Services Exchange® (CSX) seamlessly and securely connects branches, data centers, remote users and clouds. Alkira CSX is available on the AWS and Azure Marketplaces. Alkira was founded by CEO Amir Khan, founder and former CEO of Viptela, and Atif Khan, CTO, former VP and founding team member at Viptela. Alkira has raised $76M from Sequoia Capital, Kleiner Perkins, Koch Disruptive Technologies, LLC, and GV Capital (formerly Google Ventures)

Read More

VMWARE

VMware and eero, an Amazon Company, to Deliver Whole-Home Wi-Fi to Remote Workers

VMware | November 01, 2021

VMware Inc. announced it will collaborate with eero, an Amazon company, on work-from-home capabilities that will boost remote network connectivity while extending critical security services to devices connecting to an at-home corporate network. Designed for work-from-home employees in the U.S. and delivered by strategic channel partners, the collaboration is designed to pair eero 6 series mesh Wi-Fi systems with VMware SASE Work from Home solution. In addition, as part of this agreement, VMware is announcing eero is a preferred Wi-Fi provider. “We ask a lot of our home Wi-Fi these days. At any given moment it may be supporting multiple data-intensive tasks: from joining a work video-conference call, to streaming and gaming in 4K, to supporting an online learning environment, and more. When your network is stretched too thin, your work-from-home performance can suffer,” said Sean Harris, vice president of sales and marketing, eero. “Through this collaboration with VMware, we’re able to offer fast, reliable, and more secure Wi-Fi for remote workers.” Deploying VMware and eero solutions together will enable IT teams to extend a better at-home Wi-Fi experience for their employees, working alongside VMware’s solution to deliver cloud networking and cloud security services. Channel partners will be able to offer customers a solution that brings together: eero 6 series mesh Wi-Fi systems featuring Wi-Fi 6: Employees need not be limited to working from one location in the home. eero 6 series mesh Wi-Fi systems feature Wi-Fi 6, delivering fast speeds and solid coverage for simultaneous device usage throughout the home so employees will be able to say goodbye to dead spots in the home and enjoy strong app performance. Employers will have the option to offer eero Pro 6, a tri-band, high-performance mesh Wi-Fi 6 router designed for homes with Gigabit internet connections, or eero 6, a dual-band mesh Wi-Fi 6 router designed for homes with internet connections up to 500 Mbps. With eero Secure, employees will receive an added layer of security for their home Wi-Fi, including parental controls for safe search, content filters, advanced security preventing access to sites flagged as malicious, ad blocking to protect their privacy and speed up their browsing experience, and now data usage insights to better manage time online. VMware SASE is a cloud-hosted solution that will help enable more secure, reliable, and efficient connectivity between user traffic from the eero Wi-Fi network in the home to the applications in public cloud, SaaS cloud and on-premises data centers. VMware SASE brings dynamic remediation capabilities when broadband networks experience packet loss, latency, and jitter. The solution recognizes over 3,000 apps automatically, and intelligently prioritizes business-critical application traffic, providing a better user experience. The solution handles latency-sensitive, real-time traffic like audio, video, VDI and IoT, providing a low-latency optimal path using a global network of SASE Points of Presence (PoPs) close to the eero Wi-Fi users. These PoPs are strategically placed at the doorstep of major SaaS and IaaS providers to offer under 15 milliseconds of latency between users and their applications in the majority of deployments. For IT teams, VMware SASE helps deliver operational simplicity leveraging the centralized Orchestrator to drive networking and security policies. IT can configure these policies and push them to all the remote sites powered by eero Wi-Fi systems. In addition, VMware SASE uses AIOps to give IT teams the visibility they need to determine the actual user experience when users access cloud applications. The solution compares performance benchmarks between different sites and identifies opportunities for improvement. The solution is not limited to simply identifying and analyzing issues, it also helps remediate these issues proactively with a path to self-healing. “This collaboration brings together two work-from-home technology leaders. We share a common vision to have technology be an enabler of a great remote work experience rather than an obstacle. Our technologies have played a critical role in empowering remote workers everywhere and we look forward to bringing our capabilities together to deliver a differentiated mesh Wi-Fi solution to our customers.” Craig Connors, vice president and CTO, Service Provider and Edge, VMware About VMware VMware is a leading provider of multi-cloud services for all apps, enabling digital innovation with enterprise control. As a trusted foundation to accelerate innovation, VMware software gives businesses the flexibility and choice they need to build the future. Headquartered in Palo Alto, California, VMware is committed to building a better future through the company’s 2030 Agenda.

Read More