Addressing TCP issues with HTTP/3 and QUIC – Understanding Network and Security for Near-Edge Computing
HTTP/3 – Hypertext Transfer Protocol version 3 This is the latest revision of the HTTP protocol and is widely used for communication between web browsers and servers. It is based on Quick UDP Internet Connections (QUIC), a transport protocol developed by Google. QUIC is designed to provide a secure and efficient transport layer protocol over
Steering traffic at the network layer with IP Anycast – Understanding Network and Security for Near-Edge Computing
IP Anycast is another common approach for global traffic distribution. Figure 2.13 depicts an example of how it works: Figure 2.10 – IP Anycast Both servers have a public IP address of 144.12.11.5. Customers are automatically routed to the closest one. This makes DNS simple; you just need a single A record for myapp.io pointing
IP geolocation database – Understanding Network and Security for Near-Edge Computing
Several companies maintain databases that map IP ranges to physical locations and update this data at regular intervals. GSLB appliances typically pay for a subscription to these feeds. But where do those companies get their data? When an ISP obtains public IP space or an ASN, it ultimately does so via the Internet Assigned Numbers
Enhanced security – Understanding Network and Security for Near-Edge Computing
SD-WAN provides built-in security features, such as end-to-end encryption and segmentation, to protect sensitive data as it traverses the network. Optimizing ingress with global server load balancing (GSLB) Consider the situation shown in Figure 2.8: Figure 2.8 – A geographically distributed application This application has a server on the west coast of the US, and
Software-defined WAN (SD-WAN) – Understanding Network and Security for Near-Edge Computing
SD-WAN is the application of SDN principles to networks outside your data center or span of control. The problems that SDN solves within your data center are even larger challenges on the internet, where you definitely won’t be given access to modify equipment you don’t own. The general idea is to implement a logical overlay
Multiprotocol Label Switching (MPLS) – Understanding Network and Security for Near-Edge Computing
Whereas IP routing operates at Layer 3 of the OSI model, MPLS operates below that (often called Layer 2.5). Data is forwarded based on labels along predetermined paths, which allows MPLS to offer far more reliable packet delivery than IP routing over the internet can. The trouble with MPLS is bandwidth cost. Because many organizations
TCP RWIN FORMULA – Understanding Network and Security for Near-Edge Computing
Here’s the TCP RWIN formula: Here, we have the following: t is the throughput in megabits per second w is the RWIN in kilobits r is the RTT value in milliseconds When you’re trying to work out the effective throughput of any connection, both calculations must be performed. First, apply both the Mathis equation for
Causes of packet loss on the internet – Understanding Network and Security for Near-Edge Computing
The primary cause of packet loss on the internet is congestion or throttling at a peering point between two Autonomous Systems (ASs). ASs are typically operated by a single large organization such as an ISP, a large technology company, a cloud service provider, a university, or a government agency. Every time traffic crosses the boundary
ROUND-TRIP TIME (RTT) – Understanding Network and Security for Near-Edge Computing
Also known as latency, this represents the amount of time in milliseconds that a packet takes to travel from sender to receiver and back again. Assuming the path between the sender and the receiver is a straight line, there is no way to reduce RTT because it is limited by the speed of light. The
Understanding internet challenges – Understanding Network and Security for Near-Edge Computing
There are two types of edge computing where the cloud is concerned – near the cloud and far from the cloud. Near-edge networking assumes reliable high-speed access and is probably what you are familiar with. Servers connecting from a data center over Multiprotocol Label Switching (MPLS), a laptop in a home worker’s apartment with a