Kentik

JANUARY 24, 2022

Back in the 1990s, NetFlow was introduced on Cisco routers as a means to collect information about IP network traffic as it enters or exits an interface. You can also learn about the protocols in use, the ports being used, the top interfaces, etc. IP protocol. Source port for UDP or TCP, 0 for other protocols.

Application 96

Application IP Address DNS Port 96

Kentik

JULY 8, 2019

Border Gateway Protocol (more commonly known as BGP ) is the routing protocol that makes the internet work. It is the language spoken by routers to determine how packets can be sent from one router to another to reach their final destination. Presenting it to the routers they are paired with.

Routers 58

Routers Protocol Internet Advertising 58

Kentik

FEBRUARY 8, 2016

Designed before the dawn of the commercial Internet, the Border Gateway Protocol (BGP) is a policy-based routing protocol that has long been an established part of the Internet infrastructure. Why is an understanding of BGP helpful in understanding Internet connectivity and interconnectivity?

Advertising 49

Advertising Routers Internet Protocol 49

NW Kings

JANUARY 7, 2025

In this blog, we will explore what static routes are, how they differ from dynamic routes, and how to configure them on routers like Cisco devices. This characteristic makes them efficient for routers with limited processing capabilities. What is a Static Route? A static route is a manually configured path in a routing table.

Routers 52

Routers IP Address Protocol Topology 52

Kentik

JANUARY 10, 2022

If you’re a person who works from home, you almost certainly have to deal with occasional internet connection issues. Or, perhaps one or more of the 10-20 routers in the path needed to reach the destination gets busy for a hundred milliseconds or so. More often than complete outages, you’re likely dealing with occasional slowness.

IP Address 98

IP Address DNS TCP Application 98

Kentik

MAY 8, 2023

While redundancy is a significant contributor to network resilience, other mechanisms, protocols, and methods can also contribute to overall network resilience. Additional network resilience mechanisms Successfully routing a packet over the internet from its source to its destination is not trivial.

Network 52

Network Networking IP Address TCP 52

Kentik

OCTOBER 12, 2021

The Internet Engineering Task Force (IETF) is also working toward changes that will impact pervasive monitoring. The IETF community’s technical assessment is that pervasive monitoring (PM) is an attack on the privacy of internet users and organizations. These protocols helped the NPM identify applications. It’s encrypted HTTPS.

Encryption 84

Encryption DNS IP Address Protocol 84

CloudFaire

JANUARY 3, 2025

The Internet is designed to provide multiple paths between two endpoints. Attempts to exploit multi-path opportunities are almost as old as the Internet, culminating in RFCs documenting some of the challenges. As a result, Internet devices usually use a single path and let the routers handle the path selection.

TCP 144

TCP Port Server Advertising 144

CATO Networks

OCTOBER 30, 2019

Network packets, the protocol data units (PDUs) of the network layer, are often taken for granted by network pros. We all get the concept: to transmit data over a TCP/IP network like the Internet requires the data be broken down into small packets (usually less than 1500 bytes) containing the relevant application data (payload) and headers.

WAN 52

WAN Routers TCP Protocol 52

Kentik

MARCH 19, 2020

This could mean the users are saturating the internet connectivity or that they’ve saturated the LAN (or maybe WAN). This configuration is known as a “split-tunnel” configuration and is set up by rules to exclude specific ports, protocols, or networks. More advanced VPNs can do this by application type.

VPN 69

VPN Network Networking Gateway 69

Kentik

MAY 21, 2019

The Mirai botnet was first discovered back in 2016, but has continued to persist and abuse common vulnerabilities and exposures (CVEs) on IoT devices, including home routers and many other network-connected devices. These addresses were apparently port scanning IP addresses that belonged to the company sending the letter.

Port 81

Port IP Address Internet Network 81

Kentik

JANUARY 13, 2021

Send these pings using the Internet Control Message Protocol (ICMP) or TCP to one or any of the devices you believe to be involved. Ping is a utility that’s available on practically every system, be it a desktop, server, router, or switch. Get the Path with Traceroute. That’s also true for flow data, which summarized packets.

Network 114

Network Networking TCP Protocol 114

CATO Networks

APRIL 20, 2016

Originally, the concept of SDN emerged as a way to unbundle a hardware networking device (like a router) into a software-based control plane and a hardware-based data plane. SD-WAN uses a software-based control plane to drive on-premise edge devices to dynamically allocate Wide Area Network (WAN) traffic between MPLS and Internet links.

Network Security 52

Network Security Cloud Network Networking 52

CATO Networks

JANUARY 17, 2018

The University of Pennsylvania, for example, uses network scanning in the study of global trends in protocol security. However, while research projects will stop at scanning Internet IP-ranges for potentially open services, malicious actors will go further and attempt to hack or even gain root privilege on remote devices.

Network 52

Network Networking Server Port 52

Kentik

APRIL 24, 2017

Comparing flow protocols for real-world large-scale networks. A lot of ink has been spilled over the years on the topic of flow protocols, specifically how they work and their relative accuracy. One of the things that can be rather confusing is that there are a lot of different flow protocol names.

Protocol 40

Protocol Routers Bandwidth Internet 40

CATO Networks

NOVEMBER 15, 2017

Multiprotocol label switching protocol (MPLS) based networks, can no longer answer the business needs of a global enterprise. Instead, remote locations generate an increasing amount of traffic bypasses the data center and goes directly to the Internet. Software-defined Wide Area Networks ( SD-WAN ) can get the job done. Here is why.

MPLS 52

MPLS WAN Cloud Wide Area Network 52

Kentik

AUGUST 1, 2016

In particular we’ve learned that speaking or advertising BGP to your service providers and/or peers lets you do two things: Make semi-intelligent routing decisions concerning the best path for a particular route to take outbound from your network (otherwise you would simply set a default route from your border routers into your service providers).

Routers 40

Routers Advertising IP Address Ethernet 40

Kentik

JULY 25, 2016

In part 1 of this series, we established that BGP is the protocol used to route traffic across the interconnected Autonomous Systems (AS) that make up the Internet. The core function of BGP is provide a mechanism through which any Autonomous System — a network connected to the Internet — can get traffic to any other AS.

Advertising 40

Advertising Internet Routers Protocol 40

Kentik

OCTOBER 20, 2021

These technologies, however, are generally not effective at trying to gain visibility into traffic patterns traversing the internet. We can’t telnet to the routers in the path because different companies in different countries own them. How then can we gain visibility into why a connection is slow for a given user? NPM wrap-up.

Encryption 52

Encryption Routers DevOps Application 52

Kentik

JUNE 7, 2023

They capture detailed information about network traffic, including: Source and destination IP addresses Ports Protocols Packet counts By analyzing these logs, you can gain visibility into the volume, patterns, and characteristics of traffic, such as whether it’s being dropped or incorrectly routed, to identify connectivity issues.

Cloud 97

Cloud Gateway Port IP Address 97

CATO Networks

DECEMBER 3, 2018

The core of the Internet is based on a plethora of peering agreements between the various carriers that transport IP traffic. For example, a new release of software for routers in Carrier A has an issue with the router software in Carrier B. A private interconnect can avoid core internet peering issues as well as congestion.

WAN 40

WAN Routers Internet Cloud 40

Kentik

FEBRUARY 13, 2017

Another fun project utilized kFlow (Kentik’s internal flow-data protocol) to send measurements from an Intel Arduino board and GPIO-connected temperature sensor to the Kentik Data Engine (KDE), our distributed big data backend. So a major area of interest is exploring the use of lower-cost edge routers or even white box-based solutions.

Routers 40

Routers DNS Protocol Engineering 40

NW Kings

JANUARY 9, 2025

Ensuring security protocols are in place. Think of Network Engineers as the builders of digital highways, ensuring secure and efficient communication between devices whether in an office or over the internet. They design, maintain, and manage cloud infrastructure and services. Managing cloud storage solutions.

Engineering 52

Engineering Cloud Network Networking 52

Kentik

MARCH 7, 2016

For Internet-related traffic, there’s no better source of that information than NetFlow and BGP. But while these protocols have been around for a couple of decades, their potential utility to network operators was initially unrealized, and the process of exposing more value has been a long, gradual evolution. In the beginning….

Protocol 40

Protocol Server Internet Engineering 40

Kentik

JANUARY 19, 2018

And a Google Cast protocol bug caused temporary Wi-Fi outages. Google Cast protocol bug causing temporary Wi-Fi outages on many routers (The Register) “Wi-Fi router vendors have started issuing patches to defend their products against Google Chromecast devices,” reported The Register earlier this week.

Network 40

Network Networking Routers Artificial Intelligence 40

CATO Networks

JUNE 1, 2020

For example, the trombone effect (the inefficient backhauling of cloud bound traffic through a specific network endpoint) often meant MPLS connectivity to cloud assets was worse than standard Internet connections. As a result, businesses turned to SD-WAN and Internet-based VPN solutions as an alternative. The solution?

Network 52

Network Networking TCP MPLS 52

Kentik

MARCH 13, 2019

Distributed denial-of-service (DDoS) attacks have been a continuous threat since the advent of the commercial Internet. A common DDoS mitigation technique is Remotely-Triggered Black Hole (RTBH), which requires extensive pre-configuration of discard routes and/or uRPF on all edge routers. IP Protocol. Destination Prefix.

IP Address 49

IP Address Port Routers DNS 49

CATO Networks

JUNE 5, 2023

With the growth of cloud computing, remote work, mobile and Internet of Things (IoT), companies have users and IT assets everywhere, requiring connectivity. Often, organizations will deploy SD-WAN routers at their branch locations and near their cloud edge. Corporate networks are rapidly becoming more complex and distributed.

WAN 52

WAN SASE Network Security Cloud 52

Confluent

JUNE 26, 2019

So you wouldn’t apply DDD to, say, infrastructure software or building routers, proxies, or caching layers, but instead to business software that solves real-world business problems. From a technology perspective, this could include different APIs, frameworks, communication protocols, and datastores. How to build systems like this.

Application 109

Application Protocol PaaS Blockchain 109

Kentik

JANUARY 29, 2020

The flow analytics are used to make decisions on how traffic is being sent or received to other internet-connected peers via traffic engineering and optimization. SNMP is the oldest of the network management protocols in use today. This could mean finding an application or network owner or blocking malicious traffic, such as a DDoS.

Port 16

Port Network Networking Data Centers 16

CATO Networks

OCTOBER 5, 2020

All Cisco products running IOS were impacted, including IOS XR Software, NX-OS Software, and RV160 VPN Router. Even worse was how Cisco handled vulnerabilities Cisco IOS XRs Distance Vector Multicast Routing Protocol (DVMRP) (CVE-2020-3566, CVE-2020-3569). One mitigation suggests rate limiting the IGMP protocol.

Firewall 52

Firewall Protocol SASE Network 52

Kentik

JANUARY 29, 2020

The flow analytics are used to make decisions on how traffic is being sent or received to other internet-connected peers via traffic engineering and optimization. SNMP is the oldest of the network management protocols in use today. This could mean finding an application or network owner or blocking malicious traffic, such as a DDoS.

Port 78

Port Network Networking Data Centers 78

Kentik

JULY 10, 2018

Monitoring needs to span multiple domains: the private enterprise data center and WAN; fixed and mobile service provider networks; the public Internet; and hybrid multi-cloud infrastructure. Performance metrics and other types of monitoring data can be collected in real time using streaming telemetry protocols such as gRPC.

Cloud 45

Cloud Digital Transformation Data Centers Application 45

CATO Networks

NOVEMBER 19, 2019

AdRolls Global Director of IT Adrian Dunne faced several challenges when attempting to scale the companys Internet-based VPNs. Internet-based VPN gained popularity over the last decade in part as a lower-cost, albeit flawed, alternative to MPLS (Multiprotocol Label Switching).

VPN 40

VPN WAN Internet MPLS 40

CATO Networks

MARCH 5, 2017

SD-WANs Arent Enough Leveraging Direct Internet Access (DIA) allows SD-WANs to improve agility and reduce bandwidth costs, but fails to address, and sometimes exacerbates, other critical challenges. The Internet Limits Peak Performance Applications remain constrained by Internet performance.

WAN 52

WAN Network Networking Internet 52

Kentik

JULY 31, 2017

When it comes to routing traffic on the global Internet, BGP is the one and only protocol. While it’s not perfect, it has withstood the test of time and is now so embedded in how the Internet works that it would be near impossible to change. In the main pane you’ll see visualizations of your BGP Path data.

Internet 40

Internet Routers Engineering Network 40

Kentik

AUGUST 14, 2017

We know that flows are a set of packets that share common attributes including protocol, source and destination IP, and src, dst, and next-hop AS. are generated by individual routers, switches, and hosts rather than system wide. Inbound traffic: The flow represents ingress traffic from a peer, transit provider, Internet Exchange, etc.

IP Address 40

IP Address Routers Network Networking 40