Articles | Sharad Ahlawat

Articles

aka Blog

A Mainframe as a MicroService

Saturday/May/20 11:59
How technology has evolved.

I am now able to run my favorite Cobol programs once again, and not only on a VAX mini but also on an IBM Mainframe.

https://diyit.org/emulators/


Comments

GraphQL

Thursday/Feb/20 22:54
GraphQL is a data query language, and alternative to REST.

REST
- multiple endpoints for multiple versions
- difficult to learn and understand the API input and output
- over and under fetching of information

GraphQL
- single endpoint, more scalable and no more versioning
- API input and output are described in easy to understand schema
- request and fetch the data you want
- strong typed, easy validation of request queries


Comments

@ work

Sunday/Dec/19 06:20
Broadcom switches functioning as a Network Packet Broker. An intuitive object model to expose all packet processing ASIC capabilities through a GUI

NPB - Login as admin/admin

This particular switch is an Edgecore AS5812-54X - Trident II+ ASIC with an Intel Atom C2538

WhiteBox switch clustering - Cluster Configurator

Both these solutions are built with Angular, GraphQL, Python applications running on Intel / ARM CPU's of the white-box switch control-planes

Telemetry and the capability to pull meaningful data are key for efficient ML driven network analysis. GraphQL paired with Telegraph push and Prometheus pull models gives you the capability to efficiently stream and query metric for network overview and detailed analysis workflows.

Nearly a decade ago I had championed a project to integrate the router/switch forwarding planes with identity. Identity being a user or device/end-point level object using which you could define interaction rules between these objects, starting with simple ones likes ACL and QoS. This would allow for networking and security user policy level abstractions which could be easily modeled and validated.
Implementation was an out of the box approach to have multiple data-plane identity source paths contexts wherein existing identity unaware features/services could easily be applied to these different paths.

Over the years this concept has evolved into Intent Based Networking and Zero-Trust network concepts that leverage these same building blocks but there is lots that still needs to be done. With the CrossFlow (simultaneous Traditional + OpenFlow networking) architecture I continue pushing for this integration of networking and security policies.


Currently prototyping k3s orchestrated control-plane service pipelines for the new line of ODM Broadcom Trident III switches with multi-core CPU and 10G Ethernet paths to the ASICs


How is a switch dual control-plane programmability any better than a traditional control-plane
- you can filter and duplicate traffic without any impact to regular traffic flow
- you don’t reset the entire interface – you don’t disrupt the existing traffic
- speed and efficiency in programmability
- open standard Open-flow programming constructs
- interoperability – applications can be deployed without having to reinvent networking
Comments

Best Lists

Sunday/Feb/19 16:08
Software review sites:

https://www.capterra.com
https://www.g2.com
https://www.producthunt.com
https://www.saasworthy.com
https://www.trustradius.com

Comments

Thoughts

Tuesday/Jan/19 23:55
Anyone can achieve their fullest potential, who we are might be predetermined, but the path we follow is always of our own choosing. We should never allow our fears or the expectations of others to set the frontiers of our destiny. Your destiny can't be changed but, it can be challenged. Every man is born as many men and dies as a single one.
- martin heidegger

A man can be himself only so long as he is alone, and if he does not love solitude, he will not love freedom, for it is only when he is alone that he is really free.
- arthur schopenhauer
Comments

Architectures


NAC
Magic VLAN
EVPN Primer


Archives


© 2021 Sharad Ahlawat