Hmmmmmmm - do we need a translation
"an invalid update from an external source into the Easynet network"
Does this translate as an external attempt to hack a Cisco Router with a default or easily guessed password?
Early investigations of a nationwide collapse of the Easynet network have pointed the finger at a software update to a Cisco router. The outage began at 8.32am on Wednesday, and for some customers lasted most of the working day. "An Easynet edge router crashed due to a software bug condition triggered by an invalid update …
Is the SLA 99.9% per day, or 99.9% overall? I would imagine overall surely
When was the last time EasyNet went down? By my count, if it had been up without outage for the past 25 days solid, the a 6 hour outage still keeps it within 99.9% uptime
If you make it only business hours, say 7 hours per day and exclude weekends, then they are still 99.9% if they have been up solid for the past 12.5 weeks
A single edge router took down an ISP. Nice redundancy / monitoring / replacement policies there. I thought the point of buying very expensive Cisco hardware was that this sort of thing wouldn't affect the connectivity as a whole, rather than having to have some Cisco guy read commands to you over the phone when things go wrong?
They did a misconfiguration of the router which tried to automaticly update itself OMG why! Dont people research images before applying and apply images to routers put into standby mode. Old fashioned it maybe but if your going to update a critical router its best to have an 'engineer' involved not a script.
there was a major event around that time which impacted several makes of routers (apparently from multiple vendors) causing their BGP sessions to go haywire, however it was quickly suppressed at the source (well, likely at their upstream provider) and the only ones who seemed to have noticed were those with alerts set up, i suspect in easynets case this was probably a trigger event that exposed an unrelated problem with their network, which caused the extended outage
however their comments on the outage do seem to imply a single router with no automatic failover which is rather worrying...
more details: http://www.merit.edu/mail.archives/nanog/msg14487.html
Cisco has alerted customers to another four vulnerabilities in its products, including a high-severity flaw in its email and web security appliances.
The networking giant has issued a patch for that bug, tracked as CVE-2022-20664. The flaw is present in the web management interface of Cisco's Secure Email and Web Manager and Email Security Appliance in both the virtual and hardware appliances. Some earlier versions of both products, we note, have reached end of life, and so the manufacturer won't release fixes; it instead told customers to migrate to a newer version and dump the old.
This bug received a 7.7 out of 10 CVSS severity score, and Cisco noted that its security team is not aware of any in-the-wild exploitation, so far. That said, given the speed of reverse engineering, that day is likely to come.
Cisco's Nexus Cloud will eventually allow customers to manage their datacenter networks entirely from the cloud, says the networking giant.
The company unveiled the latest addition to its datacenter-focused Nexus portfolio at Cisco Live this week, where the product set got a software-as-a-service (SaaS) revamp.
"It's targeted at network operations teams that need to manage, or want to manage, their Nexus infrastructure as well as their public-cloud network infrastructure in one spot," Cisco's Thomas Scheibe – VP product management, cloud networking for Nexus & ACI product lines – told The Register.
Cisco Live In his first in-person Cisco Live keynote in two years, CEO Chuck Robbins didn't make any lofty claims about how AI is taking over the network or how the company's latest products would turn networking on its head. Instead, the presentation was all about working with customers to make their lives easier.
"We need to simplify the things that we do with you. If I think back to eight or ten years ago, I think we've made progress, but we still have more to do," he said, promising to address customers' biggest complaints with the networking giant's various platforms.
"Everything we find that is inhibiting your experience from being the best that it can be, we're going to tackle," he declared, appealing to customers to share their pain points at the show.
If you thought you were over the hump with Patch Tuesday then perhaps think again: Cisco has just released fixes for a bunch of flaws, two of which are not great.
First on the priority list should be a critical vulnerability in its enterprise security appliances, and the second concerns another critical bug in some of its outdated small business routers that it's not going to fix. In other words, junk your kit or somehow mitigate the risk.
Both of these received a CVSS score of 9.8 out of 10 in severity. The IT giant urged customers to patch affected security appliances ASAP if possible, and upgrade to newer hardware if you're still using an end-of-life, buggy router. We note that miscreants aren't actively exploiting either of these vulnerabilities — yet.
Cisco has decided it's time to leave Russia and Belarus, almost four months after stopping operations in response to Russia's illegal invasion of Ukraine.
The networking giant announced it would halt operations in Russia and Belarus "for the foreseeable future" on March 3 this year.
A June 23 update suggests Cisco sees no future in either nation.
Networking kingpin Cisco is hiring more cautiously to indicate that it, like many peers, is taking note of macroeconomic red flags.
"It's a time to be prudent," Richard Scott Herren, Cisco senior veep and chief financial officer told the Nasdaq Investor Conference. "I think it is a time for everyone to be prudent… so we're doing the same."
The hot spots – or the "highest priority items for us" – including security, will continue to see investments in headcount, he said.
Infrastructure operators are struggling to reduce the rate of IT outages despite improving technology and strong investment in this area.
The Uptime Institute's 2022 Outage Analysis Report says that progress toward reducing downtime has been mixed. Investment in cloud technologies and distributed resiliency has helped to reduce the impact of site-level failures, for example, but has also added complexity. A growing number of incidents are being attributed to network, software or systems issues because of this intricacy.
The authors make it clear that critical IT systems are far more reliable than they once were, thanks to many decades of improvement. However, data covering 2021 and 2022 indicates that unscheduled downtime is continuing at a rate that is not significantly reduced from previous years.
Here:s a novel cause for an internet outage: a beaver.
This story comes from Canada, where CTV News Vancouver yesterday reported that Canadian power company BC Hydro investigated the cause of a June 7 outage that "left many residents of north-western British Columbia without internet, landline and cellular service for more than eight hours."
That investigation found tooth marks at the base of a tree that fell across BC Hydro wires. Canadian mobile network operator shares the poles BC Hydro uses, so its optical fibre came down with the electrical wires.
RSA Conference Exclusive Establishing some level of cybersecurity measures across all organizations will soon reach human-rights issue status, according to Jeetu Patel, Cisco EVP for security and collaboration.
"It's our civic duty to ensure that everyone below the security poverty line has a level of safety, because it's gonna eventually get to be a human-rights issue," Patel told The Register, in an exclusive interview ahead of his RSA Conference keynote.
"This is critical infrastructure — financial services, health care, transportation — services like your water supply, your power grid, all of those things can stop in an instant if there's a breach," he said.
In October 2021, Cisco announced WebEx Hologram – an augmented reality meeting experience that promised "photorealistic, real-time holograms of actual people" and the chance to "share physical and digital content".
Today I tried a prototype of the service, and can report it is … intriguing.
Participating in a WebEx Hologram session requires donning a VR headset, to which end Cisco offered me a Microsoft HoloLens 2. I found the current model pleasingly light and comfortable, and calibrating it took just a few moments of flicking my eyes towards some virtual objects projected into my field of vision.
Biting the hand that feeds IT © 1998–2022