Making ACI Configurations Consistent
This is one of several blogs about the vendor presentations during Network Field Day 19, which took place November 7-9, 2018. This blog contains a summary of the vendor presentations and any related comments or opinions I might have (I’ll share at least some of them).
If this blog motivates you to greater interest in what the vendor had to say, you can find the cleaned up streaming video of their presentations at the Tech Field Day YouTube channel, specifically the NFD19 playlist, or by clicking on the vendor’s logo on the main #NFD19 web page (linked above).
BlueCat’s presentations were about moving beyond DNS and DDI, for visibility and leveraging core services.
BlueCat Networks offers a centrally managed DNS and IPAM address management product featuring load balanced DNS, scalable DHCP, enterprise address management, and DNS-centric security. They also provide DNS expertise and services.
Since DNS and DDI (DNS, DHCP, IPAM) are becoming a bit commoditized (my thought and phrasing). BlueCat is emphasizing that DNS also provides visibility (source of DNS query, what name / IP it was resolving). Integrated DDI can be a single source of truth, and DNS / DDI can also be part of business workflow automation.
Presentation by Jason Davis, Enterprise DNS Engagement Architect, BlueCat Networks
BlueCat told the #NFD19 delegates that what is resonating with their customer base is integration of DNS, DHCP, and IPAM with other enterprise tools, i.e. “workflows” and “business logic” for self-service automation.
BlueCat has a “strictly” RESTful API, which clearly facilitates integration with other tools. The example given was a workflow to create a VM and give it an address with automation reducing the need to interact with multiple tools, gather information, etc.
This all might be onsite or used for cloud deployments, or it might use local and cloud instances with multiple “horizons” or views, i.e. BlueCat automates DNS / DDI across multiple datacenters, clouds, internal / external — another part of the story, especially where different teams and products are used.
I can get behind that last thought. Where I’ve seen the biggest DNS problems are when various teams are each Doing Their Own Thing. I also claim being authoritative for all relevant reverse lookups, e.g. all of 10.0.0.0/8 rather than just bits of it is a good thing. Authentication and logging may be very slow, if you have gaps in IP lookups!
For more details, please follow the link above and view the BlueCat presentations.
Comments are welcome, both in agreement or constructive disagreement about the above. I enjoy hearing from readers and carrying on deeper discussion via comments. Thanks in advance!
Hashtags: #CiscoChampion #TheNetCraftsmenWay #BlueCat #NFD19 #DNS
Did you know that NetCraftsmen does network /datacenter / security / collaboration design / design review? Or that we have deep UC&C experts on staff, including @ucguerilla? For more information, contact us at firstname.lastname@example.org.
Making ACI Configurations Consistent
Six Tips to Help with Your Next Configuration Audit
Does Security Belong Near Endpoints?
Nick has over 20 years of experience in Security Operations and Security Sales. He is an avid student of cybersecurity and regularly engages with the Infosec community at events like BSides, RVASec, Derbycon and more. The son of an FBI forensics director, Nick holds a B.S. in Criminal Justice and is one of Cisco’s Fire Jumper Elite members. When he’s not working, he writes cyberpunk and punches aliens on his Playstation.
Virgilio “Bong” has sixteen years of professional experience in IT industry from academe, technical and customer support, pre-sales, post sales, project management, training and enablement. He has worked in Cisco Technical Assistance Center (TAC) as a member of the WAN and LAN Switching team. Bong now works for Tech Data as the Field Solutions Architect with a focus on Cisco Security and holds a few Cisco certifications including Fire Jumper Elite.
John is our CTO and the practice lead for a talented team of consultants focused on designing and delivering scalable and secure infrastructure solutions to customers across multiple industry verticals and technologies. Previously he has held several positions including Executive Director/Chief Architect for Global Network Services at JPMorgan Chase. In that capacity, he led a team managing network architecture and services. Prior to his role at JPMorgan Chase, John was a Distinguished Engineer at Cisco working across a number of verticals including Higher Education, Finance, Retail, Government, and Health Care.
He is an expert in working with groups to identify business needs, and align technology strategies to enable business strategies, building in agility and scalability to allow for future changes. John is experienced in the architecture and design of highly available, secure, network infrastructure and data centers, and has worked on projects worldwide. He has worked in both the business and regulatory environments for the design and deployment of complex IT infrastructures.