VPN

Cisco Reveals Zero-Day VPN Bug Without a Fix

Cisco | November 06, 2020

Cisco doesn’t yet have a fix for a zero-day vulnerability in the Linux, MacOS, and Windows versions of its virtual private network (VPN) software, AnyConnect Secure Mobility Client. While Cisco says it isn’t aware of any instances in which attackers have exploited the vulnerability, in a security advisory updated late Thursday, the vendor warned that a proof-of-concept exploit code is available, and this would make it significantly easier to take advantage of the flaw. The high-severity bug, CVE-2020-3556, earned a CVSS score of 7.3 and is an arbitrary code execution vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client software. It’s due to a lack of authentication to the IPC listener, and attacker could exploit this vulnerability by sending crafted IPC messages to the AnyConnect client IPC listener. If exploited, an attacker could execute a malicious script via the targeted AnyConnect user.

Spotlight

VMware offers and supports a number of different storage technologies and protocols for presenting external storage devices to VMware vSphere hosts. In recent years, the iSCSI protocol has gained popularity as a method for presenting block storage devices over a network to vSphere hosts. VMware has provided support for iSCSI storage since Virtual Infrastructure 3. This paper can help you understand the design considerations and deployment options for deploying vSphere infrastructures using iSCSI storage. It highlights trade-offs and factors to consider when deploying iSCSI storage to support vSphere environments. It is a complement to, not a replacement for, VMware® product documentation.


Other News
VIRTUAL SERVER MANAGEMENT

Lightbits Labs Announces Availability of Lightbits Cloud Data Platform on VMware Marketplace

Lightbits | April 06, 2022

Lightbits®, the first software-defined NVMe® data platform for any cloud, today announced that the Lightbits Cloud Data Platform is available on VMware Marketplace. In addition to high performance and increased flexibility, Lightbits offers rich data services that result in highly resilient storage that extends across the entire virtualized platform. VMware Marketplace is a one-stop shop for VMware validated and certified ecosystem solutions that enable customers to discover, try, purchase, and deploy directly to VMware environments. Partners can easily publish their solutions for VMware customers across platforms such as VMware Cloud on AWS, VMware Tanzu, and more. Customers will be able to access and purchase these third-party partner solutions directly from their cloud environments, while also experiencing the convenience of features such as notifications, reporting, and analytics. Lightbits provides a unified, consistent, high-performance data platform for any cloud that delivers efficiency, simplicity, and agility for container-based applications in a Kubernetes environment, as well as virtualized applications in a VMware environment. The innovative Lightbits Cloud Data Platform is architected to leverage the performance and latency benefits of NVMe/TCP and Intelligent Flash Management™ (IFM), solving the complexity and high-cost problems of high-performance storage for any cloud. Lightbits provides efficiency and flexibility of disaggregation at performance that is similar to local flash. A single Lightbits cluster can deliver over 40M IOPS (random Read) and 10PB user capacity, with less than 200μs latency. Organizations previously utilizing iSCSI can instead use NVMe/TCP on the same network infrastructure and realize much higher performance. The Lightbits Cloud Data Platform is certified with VMware vSphere® 7 Update 3 and is available on the VMware Marketplace. “Lightbits is an efficient, disaggregated software-defined architecture that combines the advantages of NVMe/TCP data fabric, IFM, and enterprise data services that is easy to consume on the VMware Marketplace. IFM dramatically improves flash storage efficiency and delivers the highest performance with the lowest latencies at scale for VMware environments,” said Eran Kirzner, CEO at Lightbits. “Many Cloud Service Providers and VCPP customers are already realizing how simple it is to provision storage, control volume policies such as availability, protection, data reduction, and QoS.” We are pleased to see the Lightbits Cloud Data Platform on VMware Marketplace. Compatible technologies, such as the Lightbits Cloud Data Platform, enable our customers to build, run, manage and better secure their applications effectively and efficiently using VMware products and services. We’re excited to work with partners such as Lightbits Labs to empower customers to derive the most value from their technology investments.” Ramya Sarangarajan, Director, Product Marketing and Strategy, VMware About Lightbits Labs Lightbits Labs® (Lightbits), is a cloud data platform company that delivers ease of use and efficiency while unlocking agility for modern businesses. Creators of the NVMe® over TCP (NVMe/TCP) protocol, Lightbits is leading the digital data center transformation by making software-defined storage that is easy to deploy at scale and delivers performance equivalent to local flash to accelerate cloud-native applications in bare metal, virtual, or containerized environments. Backed by leading enterprise investors including Cisco Investments, Dell Technologies Capital, Intel Capital, and Micron, Lightbits is on a mission to make high-performance elastic block storage simple, scalable, and cost-efficient for any cloud.

Read More

SERVER VIRTUALIZATION

Leading Global Logistics Company Completes Milestone in Data Platform Modernization with Datometry

Datometry, | May 21, 2022

Datometry, the pioneer of database virtualization, announced today that a leading integrated container logistics company has completed a critical milestone of its data platform modernization with Datometry Hyper-Q. Using the Datometry Hyper-Q virtualization platform – the first to make existing applications fully interoperable with cloud databases without disrupting existing business processes – the company migrated from their on-premises system to Microsoft Azure Synapse in record time. The logistics company, ranked within the Forbes Global 2000, sought to migrate from its legacy, on-premises data warehouse – which was known for being one of the most complex and sophisticated installations of its kind – to a modern cloud data warehouse (CDW) that is cost effective, highly scalable, and supports the flexibility and speed demanded by its customers' supply chains. The company needed a solution that would enable it to maintain its existing high-volume ETL processes and simultaneously serve a large user community of business analysts and data scientists. Datometry Hyper-Q uniquely addressed its customer's business objectives, enabling the logistics leader to transfer its existing applications natively to Azure Synapse without costly rewrites of SQL code, at a fraction of the time and risk associated with typical database migrations. The customer saved tens of millions by migrating with Datometry, and its new, fully managed CDW is much more cost-effective to operate than its legacy database. The customer was able to preserve its long-standing investments in ETL, analytics, reporting and BI entirely. As a global pioneer in ocean and inland shipping, our customer – arguably the worldwide leader in logistics - has long been on the forefront of organizations' ability to meet the needs of businesses - and those businesses' customers - worldwide. An enterprise the size and scope of this customer migrating to the cloud with Datometry and Microsoft so quickly, without the cost and risk of a typical migration, demonstrates how database virtualization can unlock the benefits of the cloud for any organization." Mike Waas, CEO, Datometry. Datometry's customer considered a conventional database migration at first, but decided on Datometry for its digital transformation upon determining a conventional migration would take at least five years, cost several tens of millions of dollars, yet present only a 20% chance of success. Datometry Hyper-Q is used by leading Fortune 500 and Global 2000 enterprises to accelerate cloud modernization and move workloads between data warehouses. The Datometry Hyper-Q virtualization platform eliminates risk-laden, expensive, and time-consuming application rewrites. About Datometry Datometry is the global leader in database system virtualization. Datometry empowers enterprises to run their existing applications directly on the cloud database of their choice without the business disruption of costly and risk-laden database migrations and application rewrites. Leading Fortune 500 and Global 2000 enterprises worldwide realize significant cost savings and consistently outpace their competition by using Datometry during this critical period of transformation to cloud-native data management.

Read More

VPN

Edgecore Networks’ Pocket WFA Solution Delivers Incredible Agility with Infinite Possibilities

Edgecore Networks | February 15, 2022

Edgecore Networks, a leading provider of traditional and open network solutions for enterprises, data centers, and telecommunication service providers, announced the launch of the Pocket WFA (Work-from-Anywhere) solution that is composed of two phenomenal Edgecore products – the EWS5203 WLAN gateway-controller and the SP-W2M-AC1200-WFH wireless access point. The solution aims to provide a plug-and-play, secure, agile, reliable mechanism to support businesses through the pandemic crisis and beyond. In-Pocket Agility In a world full of uncertainty, everything is about efficiency and agility. The zero-touch configuration feature of the Pocket WFA solution reduces the deployment time from days to only minutes. Enterprises can swiftly roll out remote offices, minimizing business downtime at a friendly price. Plus, the SP-W2M-AC1200-WFH access point is just palm-size and weighs only 82g, so remote workers can easily carry it wherever they work to further ensure business productivity. On top of that, to deliver a seamless working environment, the solution allows remote workers to connect to the same SSID as they would in the office for automatic connection to the company VPN, extending enterprise services to anywhere. Taking security on board, the solution supports various user authentication methods that can be easily enforced across all deployment scenarios, such as 802.1X authentication, local authentication, and two-factor authentication, ensuring the proper identification of network users before granting access to the network. Out-of-Box Possibilities The Pocket WFA solution can be deployed in various scenarios in a number of ways, such as mobile taskforce teams, branch sites, remote classrooms, and so on. The agility and affordable price enable new services and new business models that are not bound by infrastructure limitations and can embrace limitless possibilities. Organizations globally are experiencing unprecedented workforce disruption. Virtually all companies are still determining how they will work in the short and long term. The Pocket WFA solution is rising to the challenge, helping enterprises and organizations navigate workforce shifts, such as the urgent need to shift to a remote workforce to protect and empower employees, serve customers, and establish business continuity.” Teng Tai Hsu, Vice President of Edgecore Networks The Pocket WFA solution not only assists businesses to emerge from the pandemic stronger, but also opens the door to innovative business and service opportunities in the post-pandemic era. About Edgecore Edgecore Networks Corporation is a wholly owned subsidiary of Accton Technology Corporation, the leading networking ODM. Edgecore Networks delivers wired and wireless networking products and solutions through channel partners and system integrators worldwide for data center, service provider, enterprise, and SMB customers. Edgecore Networks is the leader in open networking, providing a full line of open 1G-400G Ethernet OCP-Accepted switches, core routers, cell site gateways, virtual PON OLTs, optical packet transponders, and Wi-Fi access points that offer choice of commercial and open source NOS and SDN software.

Read More

CLOUD

Cloud Foundry Launches New Platform to Simplify Kubernetes Developer Experience

Cloud Foundry | May 17, 2022

Cloud Foundry Foundation today announced Korifi, the beta release of a new Platform-as-a-Service (PaaS) that eases much of the complexity inherent to Kubernetes, to vastly improve the application deployment experience. The Kubernetes experience has been complex for operators and developers alike, Korifi harnesses the developer-centric experience of Cloud Foundry to deliver a Cloud Foundry-compatible application platform running on Kubernetes. "As Kubernetes has matured, our community has built several Cloud Foundry abstractions to reduce Kubernetes complexities," said Chris Clark, program manager of Cloud Foundry Foundation. "The proven Cloud Foundry developer experience already saves organizations millions of dollars by maximizing developer productivity. With Korifi, we're building on a new architecture learned from previous iterations like cf-for-k8s and KubeCF. Korifi brings greater interoperability with cloud-native technologies, bringing the ease and simplicity of the Cloud Foundry app developer experience to Kubernetes." Korifi's fully open-source code base and community-driven approach ensures that adopters get complete transparency and agility. For system integrators and service providers, Korifi is an avenue to enable a cloud-native transformation for their Cloud Foundry customers and also introduce a new cloud-based product. "Thousands of developers use Cloud Foundry everyday as an easy, reliable platform to deploy and manage their mission-critical applications. Their teams rely on its stability and automation to support those fleets of developers and applications. We see Korifi as an opportunity to ensure that Cloud Foundry interoperates well with the growing ecosystem of other cloud-native technologies and deployment practices." Craig McLuckie, chair of the Cloud Foundry governing board and vice president of research and development at VMware. Cloud Foundry is an open source technology backed by the largest technology companies in the world, including, HCL, Huawei, IBM, SAP, and VMware, and is being used by leaders in manufacturing, telecommunications and financial services. Only Cloud Foundry delivers the velocity needed to continuously deliver apps at the speed of business. Cloud Foundry's container-based architecture runs apps written in any language on a choice of cloud platforms — Amazon Web Services (AWS), Google Cloud Platform (GCP), IBM Cloud, Microsoft Azure, OpenStack, and more. With a robust services ecosystem and simple integration with existing technologies, Cloud Foundry is the modern standard for deploying mission critical apps at global organizations. About Cloud Foundry Foundation The Cloud Foundry Foundation is a non-profit open source organization formed to sustain the development, promotion and adoption of Cloud Foundry as the industry standard for delivering the best experience for developers at companies of all sizes. The Foundation projects include Cloud Foundry, Paketo Buildpacks, Korifi, Eirini, BOSH, Open Service Broker API, CredHub, and more. Cloud Foundry makes it faster and easier to build, test, deploy and scale applications, and is used by more than half the Fortune 500, representing nearly $15 trillion in combined revenue.

Read More

Spotlight

VMware offers and supports a number of different storage technologies and protocols for presenting external storage devices to VMware vSphere hosts. In recent years, the iSCSI protocol has gained popularity as a method for presenting block storage devices over a network to vSphere hosts. VMware has provided support for iSCSI storage since Virtual Infrastructure 3. This paper can help you understand the design considerations and deployment options for deploying vSphere infrastructures using iSCSI storage. It highlights trade-offs and factors to consider when deploying iSCSI storage to support vSphere environments. It is a complement to, not a replacement for, VMware® product documentation.

Resources