TelcoCloud Training
Short & crisp courses for NFV/Telco-cloud technologies like OpenStack & Kubernetes in easy language.
Symbiosis Group of institutes in Pune, India is a well-known name for management studies in various disciplines.
Back in 2006 (18 years ago) I ๐ณ๐ฎ๐ถ๐น๐ฒ๐ฑ the MBA interview test of the "Symbiosis Institute of Digital & Telecom Management (SIDTM)". It was known by the name of SITM at that time. Later on, I dropped my plan of doing an MBA.
Today, I say with immense pride that I have been included as an industry expert in their yearly magazine "๐ฃ๐ฟ๐ฒ๐๐ถ๐๐ถ๐ผ๐ป ๐ฎ๐ฐ"
๐๐ฏ ๐ต๐ฉ๐ฆ๐ช๐ณ ๐ธ๐ฐ๐ณ๐ฅ๐ด - "As one of the industry experts who contributed to this effort, you have helped us bridge the gap between academic learning and industry experiences. We additionally shared a more detailed version of your insights with our students, who have greatly benefited from that learning. "
Attached below are a few snapshots from the magazine itself.
"๐๐ถ๐๐ฐ๐ผ๐๐ป๐ ๐ฐ๐ผ๐๐ฝ๐ผ๐ป ๐ฎ๐น๐ฒ๐ฟ๐"
Announcing discount coupons on the bestselling courses of TelcoCloud i.e. OpenStack & Kubernetes in the context of NFV (TelcoCloud)
Statistics speak for themselves -
8000 enrolments
122 Countries
An excellent rating of 4.67 out of 5
The coupon code ๐๐๐-๐ฎ๐ฌ๐ฎ๐ฐ applicable for February & get a 50%-80% discount based on your geography.
Course links here -
https://www.udemy.com/course/openstack-telcocloud-asad/?couponCode=FEB-2024
https://www.udemy.com/course/kubernetes-in-nfv-telcocloud/?couponCode=FEB-2024
Swag time ๐ ๐ ๐ค ๐ค
Ericsson India Global Services (EGI) has ranked as one of the โ๐ง๐ผ๐ฝ ๐ญ๐ฌ๐ฌ ๐๐ฟ๐ฒ๐ฎ๐ ๐ฃ๐น๐ฎ๐ฐ๐ฒ๐ ๐๐ผ ๐ช๐ผ๐ฟ๐ธโ for the 9๐๐ต ๐๐ถ๐บ๐ฒ in a row. Only a few companies can be truly proud of this stupendous achievement.
"๐๐ผ๐ ๐บ๐๐ฐ๐ต ๐บ๐ผ๐ป๐๐ต๐น๐ ๐๐ฎ๐น๐ฎ๐ฟ๐ ๐ฑ๐ผ ๐ ๐ป๐ฒ๐ฒ๐ฑ ๐ถ๐ป ๐จ๐ฆ ๐๐ผ ๐บ๐ฎ๐ถ๐ป๐๐ฎ๐ถ๐ป ๐๐ต๐ฒ ๐๐ฎ๐บ๐ฒ ๐น๐ถ๐ณ๐ฒ๐๐๐๐น๐ฒ ๐ฎ๐ ๐ ๐ฎ๐บ ๐ต๐ฎ๐๐ถ๐ป๐ด ๐ถ๐ป ๐๐ป๐ฑ๐ถ๐ฎ?"
It can be the US, UK, Dubai, Singapore, or any other city in the world but this is a very common concern among all of us at some point in our careers.
Well, the answer ๐๐๐ฃ๐ฃ๐ค๐ฉ be found by simply applying the currency conversion.
There are a lot of factors that affect this calculation.
๐ก๐๐บ๐ฏ๐ฒ๐ผ - A platform I have been using for many years for this calculation has recently released its cost of living index of 2024.
Their calculation system is very good & they have a comprehensive list of data points that they use in their matrices. Well, no platform can give you the exact figures but I found Numbeo to be quite close to the actual figures when I verified the prices with my real connections living in these countries.
In the 1st figure below, you can see the two main metrics i.e. (Cost of living including Rent + Local Purchasing power). The 1st column (๐๐ง๐๐ฃ๐๐ ๐๐ค๐ก๐ค๐ง) tells you that Dallas is almost 3.5 times and Singapore is approx 4 times costlier than Bangalore. This includes the relative prices of consumer goods like groceries, restaurants, transportation, utilities, and rented accommodation.
However, the second highlighted column (๐๐ง๐๐๐ฃ ๐๐ค๐ก๐ค๐ง) tells you the relative purchasing power in a given city based on the average net salary. A domestic purchasing power of 108 (Bangalore) means that residents with an average salary can afford, on average, ๐ด% ๐บ๐ผ๐ฟ๐ฒ goods and services compared to residents of New York City with an average salary while a value of 82 for London means that residents can afford, ๐ญ๐ด% ๐น๐ฒ๐๐ goods and services compared to residents of New York City
New York City is taken as a base reference for the calculation.
The 2nd figure gives you an exact comparison between Bangalore & Dallas which is available as a feature on the website
๐ฃ๐ฆ - This calculation assumes net earnings (after income tax).
Link here - https://www.numbeo.com/cost-of-living/rankings.jsp
Excited to see myself as one of the '๐๐ถ๐ฟ๐๐ ๐๐๐บ๐ฎ๐ป' on .xyz which is a first-of-its-kind human search engine utilizing natural language.
Try here - https://www.linkedin.com/company/bunch-xyz
"๐ฉ๐ฒ๐ป๐ฑ๐ผ๐ฟ ๐น๐ผ๐ฐ๐ธ-๐ถ๐ป ๐ถ๐ ๐ฃ๐ค๐ฉ ๐ฏ๐ฎ๐ฑ"
Yes, you heard it right.
In this world of open-source systems, the time has come when there is a requirement for a few vendors who can integrate and manage the hundreds of options available in building a tech solution.
Now, it is high time for system integrators to offer "Integration as a service" for all the solutions available in open-source & then sell the upgrade & support services for more revenue generation.
At least I would love to get locked into any such vendor.
What are your thoughts?
๐ฆ๐ผ๐๐ฟ๐ฐ๐ฒ - CNCF cloud-native landscape.
"๐ฆ๐๐ฎ๐ฟ๐๐ถ๐ป๐ด ๐ป๐ฒ๐ ๐๐ฒ๐ฎ๐ฟ ๐๐ถ๐๐ต ๐ฎ ๐ฑ๐ถ๐๐ฐ๐ผ๐๐ป๐ ๐ฐ๐ผ๐๐ฝ๐ผ๐ป ๐ผ๐ป ๐บ๐ ๐ฐ๐ผ๐๐ฟ๐๐ฒ๐"
What can be a better start to a new year than providing a huge discount on the bestselling courses of their category?
Apply coupon ๐๐๐ก-๐ฎ๐ฌ๐ฎ๐ฐ during checkout. This can give you an overall discount of 50% to 80% depending on your geography. Applicable for this month only.
Direct discounted course links are available here -
https://www.udemy.com/course/openstack-telcocloud-asad/?couponCode=JAN-2024
https://www.udemy.com/course/kubernetes-in-nfv-telcocloud/?couponCode=JAN-2024
Finding a JOB is a full-time job.
Many people are living in a dreamland that just by having the right skills Jobs will come to them.
Gaining skills is still the second most difficult thing in your career, Getting a job out of those skills remains first.
You still have few days to digest this fact & start working on it by the new year.
Wishing you all a very good year ahead
"๐๐ป๐ฑ ๐ผ๐ณ ๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐๐ฒ๐ฟ๐ถ๐ฒ๐"
This marks the end of this series & all the Q&A are included in this article. Kindly bookmark this link for your reference.
This is one of the most demanded stuff in 2023. I am looking forward to contributing more such stuff in the next year.
OpenStack interview Q&A This article contains a series of Q&A for an OpenStack operations engineer, involved in configuring VNFs, performance monitoring, network troubleshooting, and technical support roles. The whole series is divided into four major sections i.
"๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐ฃ๐ผ๐๐-๐ฎ๐ฏ"
๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ฎ๐ฏ
The most asked question to me is - ๐๐ผ ๐๐ผ๐ ๐ต๐ฎ๐๐ฒ ๐ฎ ๐ด๐ฒ๐ป๐ฒ๐ฟ๐ถ๐ฐ ๐๐ฟ๐ผ๐๐ฏ๐น๐ฒ๐๐ต๐ผ๐ผ๐๐ถ๐ป๐ด ๐ด๐๐ถ๐ฑ๐ฒ ๐ณ๐ผ๐ฟ ๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ?
๐๐ป๐ - Yes I do ๐ ๐
I used this guide during my initial OpenStack days & I found it useful for some cases. However, this doesn't claim to cover all the possible faults & problems.
Written down back in 2019 it might not contain the latest updates but the generic approach toward problem-solving is useful to build your approach.
The document is available through a public link here - https://docs.google.com/presentation/d/e/2PACX-1vSYFGHMy8iIEkhc_2F0V_N8OYGbPWlxGmCZ6WJfXZeCRYh3kl3PBQRNWWgvoWmhGbsae8XM0FzztGzP/pub?start=false&loop=false&delayms=5000&pli=1&slide=id.p2
๐๐ - I don't know the authors personally ๐ค
"๐ฒ๐ฌ๐ฌ๐ฌ ๐ต๐ฎ๐ฝ๐ฝ๐ ๐ณ๐ฎ๐ฐ๐ฒ๐ ๐๐ถ๐น๐น ๐ป๐ผ๐"
Here are some reviews on my bestselling Udemy courses i.e. "๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ & ๐๐๐ฏ๐ฒ๐ฟ๐ป๐ฒ๐๐ฒ๐", designed & created for absolute beginners in the TelcoCloud/NFV space.
I am very much happy to see that the average rating on my courses is 4.7 out of 5 which speaks for itself about the quality of the content.
Give yourself a gift of learning before the end of this year & grab the last discount of this year.
Apply coupon ๐จ๐๐๐ ๐ฌ-๐๐๐ during checkout. This can give you an overall discount of 50% to 80% depending on your geography. Applicable for this month only.
Direct discounted course links are available here -
https://lnkd.in/dEzqxKdD
https://lnkd.in/dbSwZ4-j
"๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐ฃ๐ผ๐๐-๐ฎ๐ฎ"
๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ฎ๐ฎ
"๐ฃ๐ฒ๐ฟ๐ณ๐ผ๐ฟ๐บ๐ฎ๐ป๐ฐ๐ฒ ๐บ๐ฎ๐ป๐ฎ๐ด๐ฒ๐บ๐ฒ๐ป๐ ๐ถ๐ป ๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐๐ถ๐ฎ ๐ฆ๐๐ฅ ๐๐๐ถ๐น๐ถ๐๐"
Although in every OpenStack-based datacenter, some or the other PM tools (Zabbix, Prometheus, etc) are already integrated, in the background all these PM tools are deriving their metrics from the PM counters generated by the Linux Kernel of the compute nodes.
The ๐ฆ๐๐ฅ (๐ฆ๐๐๐๐ฒ๐บ ๐๐ฐ๐๐ถ๐๐ถ๐๐ ๐ฅ๐ฒ๐ฝ๐ผ๐ฟ๐) command in Linux is a powerful tool for monitoring and analyzing system resources & if you can clearly understand the SAR utility then you understand the root of PM, as this can be used even if no PM tool is integrated with your system. Generally, it comes bundled with every Linux distribution like RHEL, CentOS, etc.
SAR commands below will help you to understand the system resource utilization in detail. With the below outputs, you can quickly conclude a resource problem is coming from the application or the infrastructure. Remember that these commands should be fired inside the compute servers as root user. The granularity of the report is generally set as 10 mins but, can also be configurable to other values.
The syntax has the following meanings -
Kindly put the syntax values as per your requirement.
sa05 is 5th day of the month
-s is start time
-e is end time
1. For ex - the following command will give you the "๐ฅ๐๐ " related metrics (used_mem, free_mem, buffer_mem) on the 10th day of the month between 9-11 AM
sar -r -f /var/log/sa/sa10 -s 09:00:00 -e 11:00:00
2. Similarly, this will give you all the "๐๐ฃ๐จ" metrics like (%CPU remained idle, used by the system, by application, etc)
sar -P ALL -f /var/log/sa/sa10 -s 09:00:00 -e 11:00:00
3. This one will fetch all the "๐๐๐ฆ๐๐ ๐/๐ข ๐๐๐ฎ๐ด๐ฒ" like (await time, %util, reads/sec, writes/sec)
sar -p -d -f /var/log/sa/sa10 -s 09:00:00 -e 11:00:00
4. This will get the "๐ฃ๐ฎ๐ฐ๐ธ๐ฒ๐ ๐ฑ๐ฟ๐ผ๐ฝ๐ & ๐ฒ๐ฟ๐ฟ๐ผ๐ฟ๐" for all the interfaces (physical or virtual) in the compute node
sar -f /var/log/sa/sa10 -n EDEV -s 09:00:00 -e 11:00:00
5. This will get the "๐ก๐ฒ๐๐๐ผ๐ฟ๐ธ ๐ง๐ฟ๐ฎ๐ณ๐ณ๐ถ๐ฐ" (TX & RX packets/sec, speed in kbps) for all the interfaces (physical or virtual) in the compute node
sar -f /var/log/sa/sa29 -n DEV -s 09:00:00 -e 09:30:00
Now, you can club these commands with other Linux utilities like 'grep', 'cut', 'awk', etc to get the desired output of your choice.
"๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐ฃ๐ผ๐๐-๐ฎ๐ญ"
๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ฎ๐ญ
What are some common problems encountered in Ceph & how they can be resolved?
๐๐ป๐ - There can be many problems in your CEPH storage system including OSD down, MON down, Storage latency, Disk problems, Low disk space, etc.
Below are some of the problematic scenarios identified via commands & log outputs along with their resolutions. Obviously, they are ๐ฏ๐ฐ๐ต the only problems in Ceph.
"๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐ฃ๐ผ๐๐-๐ฎ๐ฌ"
๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ฎ๐ฌ
What is Ceph?
๐๐ป๐ - Whoever has worked in an OpenStack environment, must have worked on Ceph. I mean it is almost impossible to skip Ceph on an openstack-based infrastructure.
It is a scalable, open-source, community focussed software-defined storage platform, extensively used in private cloud datacenters.
The picture below shows -
1. The basic architecture of ceph & its components
i.e. OSDs, MONs (monitors) & MGR (manager)
2. How does the data replication work?
Logically, the same type of data chunks are called pools, pools-->have placement groups (PGs)--> have objects-->PGs are replicated over OSDs (Disk drives) as defined by the replication factor.
(Pools & PGs are defined at the time of deployment)
& there are some other facts about ceph that need to be remembered as follows -
- Ceph is ๐๐๐ a core component of OpenStack.
- Cinder & Swift are storage components of OpenStack.
- Ceph is a highly recommended storage backend by RedHat that can manage both Cinder and Swift.
- Technically, it is possible to install OpenStack '๐ธ๐ช๐ต๐ฉ๐ฐ๐ถ๐ต' ceph.
- Ceph is capable of auto-scaling to the exabyte level
- Ceph can run on commodity hardware (COTS)
- It has ๐ฑ๐ณ๐ฐ๐ท๐ฆ๐ฏ self-managing & self-healing capabilities
- It has no single point of failure
If you want to dig deep into Ceph then read about the ๐๐ฅ๐จ๐ฆ๐ ๐ฎ๐น๐ด๐ผ๐ฟ๐ถ๐๐ต๐บ which is the actual powerhouse of Ceph.
๐๐๐ฃ๐ฉ - Search 'Ceph Architecture by Sniper networks' on Youtube. It is the most detailed description of Ceph in a single video of 38 mins.
"๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐ฃ๐ผ๐๐-๐ญ๐ต"
๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ญ๐ต
Why there are always an odd number (3,5,7) of controllers in any production-grade OpenStack environment?
๐๐ป๐ - Any highly available (HA) system, whether OpenStack or Kubernetes works on the principle of RAFT consensus algorithm for quorum. It needs a minimum fault tolerance of "one" to maintain high availability in any production-grade system.
How fault tolerance is calculated? See below -
Fault tolerance = (No of control nodes - Quorum)
Where Quorum = (n/2 + 1) Rounded off to the nearest whole number
Quorum is the minimum number of nodes required to commit any changes to the database.
In the picture below you can see that (3,5 & 7) are the best choices for an HA system while (4 & 6) are not the best choices because they give the same fault tolerance that too with an extra node. Similarly (1 & 2) give '๐ก๐ข' fault tolerance and so, are not applicable for providing HA.
More than 7 master nodes will result in an overhead for determining cluster membership and quorum and so, it is not recommended. Depending on your needs, you typically end up with 3 or 5 master nodes.
"๐๐ฒ๐น๐ฒ๐ฏ๐ฟ๐ฎ๐๐ถ๐ป๐ด ๐ง๐ต๐ฎ๐ป๐ธ๐๐ด๐ถ๐๐ถ๐ป๐ด ๐ฏ๐ ๐ฝ๐ฟ๐ผ๐๐ถ๐ฑ๐ถ๐ป๐ด ๐ฑ๐ถ๐๐ฐ๐ผ๐๐ป๐ ๐ผ๐ป ๐บ๐ ๐ฐ๐ผ๐๐ฟ๐๐ฒ๐"
I am happy to announce more than 50% discount on both of my bestselling Udemy courses i.e. "๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ & ๐๐๐ฏ๐ฒ๐ฟ๐ป๐ฒ๐๐ฒ๐", designed & created for absolute beginners in the TelcoCloud/NFV space.
"๐๐ฉ๐ช๐ด ๐ช๐ด ๐ต๐ฉ๐ฆ ๐ญ๐ข๐ด๐ต ๐ฅ๐ช๐ด๐ค๐ฐ๐ถ๐ฏ๐ต ๐ค๐ฐ๐ถ๐ฑ๐ฐ๐ฏ ๐ฐ๐ง ๐ต๐ฉ๐ช๐ด ๐บ๐ฆ๐ข๐ณ" & I am glad to share both the courses have maintained a rating of 4.7 out of 5 with excellent reviews & feedback.
Apply coupon ๐จ๐๐๐ ๐ฌ-๐๐๐ during checkout. This can give you an overall discount of 50% to 80% depending on your geography. Applicable for this month only.
Direct discounted course links are available here -
https://www.udemy.com/course/openstack-telcocloud-asad/?couponCode=UDEMY-DEC
https://www.udemy.com/course/kubernetes-in-nfv-telcocloud/?couponCode=UDEMY-DEC
"๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐ฃ๐ผ๐๐-๐ญ๐ด"
๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ญ๐ด
What are the steps involved & time taken in the OpenStack deployment for a production-grade Telco data center?
๐๐ป๐ - This seems a very basic question but it is very hard to answer. You will ๐ฏ๐ฐ๐ต find this information in any of the official documentation of OpenStack.
Deploying OpenStack in a production environment is not at all an easy task. It requires a lot of planning & ex*****on at various levels. The picture shows the steps involved in the process along with the "๐ฆ๐น๐ข๐ค๐ต ๐ต๐ช๐ฎ๐ช๐ฏ๐จ๐ด" for each task however, it doesn't include the physical installation of the rack, servers, and network devices.
This setup was a high-availability system deployed by ๐ฐ๐ฏ๐ฆ ๐ฐ๐ง ๐ฎ๐บ ๐ต๐ฆ๐ข๐ฎ ๐ฎ๐ฆ๐ฎ๐ฃ๐ฆ๐ณ๐ด using ๐ง๐ฟ๐ถ๐ฝ๐น๐ฒ๐ข ๐๐๐ฝ๐ฒ ๐ฑ๐ฒ๐ฝ๐น๐ผ๐๐บ๐ฒ๐ป๐ ๐ผ๐ณ ๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ฆ๐๐ฒ๐ถ๐ป ๐๐ฒ๐ฟ๐๐ถ๐ผ๐ป with the following details -
- 3 controllers
- 3 Storage nodes
- 12 Compute nodes
- 1 Undercloud/Director machine
- Single rack with 4 Leaf/TOR switches
- CentOS 7-x86 base image and an OpenStack (stein) image for Overcloud installation.
"๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐ฃ๐ผ๐๐-๐ญ๐ณ"
From today I am starting ๐ฆ๐ฒ๐ฐ๐๐ถ๐ผ๐ป ๐ฏ of the OpenStack interview series that will include some miscellaneous topics on Ceph storage, performance & troubleshooting in OpenStack.
At the end of this section, all the Q&A will be consolidated in the same LinkedIn article where Sections 1 & 2 are summarized (I will reshare the article after completion)
๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ญ๐ณ
A very basic question generally asked in the interviews - "Summarize the VM creation flow in simple terms"
This picture summarizes the steps in a very easy way. I am not sure about the source of the image but I have it from my initial days in OpenStack.
Cloud Security post - 3
"๐ฆ๐ฒ๐ฐ๐๐ฟ๐ถ๐๐ ๐ฎ๐ ๐ฒ๐๐ฒ๐ฟ๐ ๐น๐ฎ๐๐ฒ๐ฟ ๐ผ๐ณ ๐ฎ ๐๐ก๐"
The security; & threat model for cloud-native telecom applications is a complex web & there cannot be a single solution to this problem
Containerized network functions (CNFs) in a Telco cloud infrastructure are typically secured through a combination of hardware, network, and application-level security measures.
There is a saying in the security world that - The "๐ฐ๐น๐ผ๐๐ฑ ๐ฝ๐ฟ๐ผ๐๐ถ๐ฑ๐ฒ๐ฟ" is responsible for the security โ๐ผ๐ณโ the cloud whereas "๐๐ผ๐" are responsible for the security โ๐ถ๐ปโ the cloud.
This picture summarizes the kind of security measures taken at every layer of the stack in a cloud-based system. This includes some tools, methodologies & best practices at every level.
Cloud Security post - 2
"๐๐น๐ผ๐๐ฑ ๐ฆ๐ฒ๐ฐ๐๐ฟ๐ถ๐๐ ๐ถ๐ป ๐ง๐ฒ๐น๐ฒ๐ฐ๐ผ๐บ "
Here come our guys :-)
๐ง๐ต๐ฒ ๐ง๐ฒ๐น๐ฐ๐ผ ๐ฟ๐ฒ๐ด๐๐น๐ฎ๐๐ผ๐ฟ๐ - Working groups (by GSMA & 3GPP) specific to telecom security regulations.
- Network Equipment Security Assurance Scheme (NESAS) - It ensures that the product has been developed and tested securely. However, it doesn't ensure threat detection & its management.
- Mobile threat intelligence framework (MOTIF) - Identifying & remediating mobile cyber threats.
All the NEPs (Network equipment providers) like Nokia, Ericsson, Huawei, etc are trying to become NESAS-compliant to guarantee a secure development of the product while the operators (CSPs) to include MOTIF-compliant threat frameworks at the operational level to secure the network.
This is in addition to the compliance at the national & industry levels that is mentioned in this post --> https://www.linkedin.com/feed/update/urn:li:activity:7130789758682742784/
Cloud Security post - 1
"๐ง๐ต๐ฒ ๐๐ต๐ผ'๐ ๐๐ต๐ผ ๐ผ๐ณ ๐ฐ๐น๐ผ๐๐ฑ ๐๐ฒ๐ฐ๐๐ฟ๐ถ๐๐"
Security is the least talked about and most important topic in the cloud world. The cloud infrastructure as well as the applications are typically secured through a combination of hardware, network, virtualization/CaaS layer, and application-level security measures.
There are many regulators and standard bodies involved in identifying & remediating security vulnerabilities & threats & therefore, a complex web of threat intelligence frameworks exists in today's time.
In this post let us understand who is doing what.
1. ๐ง๐ต๐ฒ ๐ฟ๐ฒ๐ด๐๐น๐ฎ๐๐ผ๐ฟ๐ - These are national bodies defining security rules & regulations for their countries.
- Cybersecurity & Infrastructure Security Agency (CISA - child of NSA) in the USA
- European union agency for cybersecurity (ENISA) in the EU
- Cyberspace Administration of China (CAC) in China
- Likewise in other countries (not necessarily in all of them)
2. ๐ง๐ต๐ฒ ๐ถ๐ป๐ฑ๐๐๐๐ฟ๐ ๐๐๐ฎ๐ป๐ฑ๐ฎ๐ฟ๐ฑ๐ - are non-profit groups of industry experts that either work independently or along with the govt agencies to improve the security of software applications & their infrastructure.
- Center for Internet Security (CIS) - globally recognized best practices for securing IT systems and data.
- MITRE - globally accessible knowledge base of adversary tactics and techniques based on real-world observations.
There are more than 100 organizations listed in the CNCF security landscape, trying to solve the security problem of today's cloud systems.
See next post about security in Telco
"๐๐ถ๐๐ฐ๐ผ๐๐ป๐ ๐๐ผ๐๐ฝ๐ผ๐ป ๐๐น๐ฒ๐ฟ๐"
November is a month of fall, and thanksgiving and marks the entry of pink winters in various parts of the world.
To celebrate the spirit of November I am giving discount coupons on both of my Udemy courses i.e. "๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ & ๐๐๐ฏ๐ฒ๐ฟ๐ป๐ฒ๐๐ฒ๐", designed & created for absolute beginners in the TelcoCloud/NFV space.
Apply coupon ๐จ๐๐๐ ๐ฌ-๐ก๐ข๐ฉ during checkout. This can give you an overall discount of 50% to 80% depending on your geography.
Direct discounted links are available here -
https://www.udemy.com/course/openstack-telcocloud-asad/?couponCode=UDEMY-NOV
https://www.udemy.com/course/kubernetes-in-nfv-telcocloud/?couponCode=UDEMY-NOV
"๐ ๐ฒ๐ป๐๐ผ๐ฟ๐๐ต๐ถ๐ฝ ๐ณ๐ผ๐ฟ ๐ง๐ฒ๐น๐ฒ๐ฐ๐ผ๐บ ๐ฝ๐ฟ๐ผ๐ณ๐ฒ๐๐๐ถ๐ผ๐ป๐ฎ๐น๐"
In the ever-evolving tech landscape, mentorship from experienced professionals is invaluable, offering insights, real-world solutions, and industry wisdom.
Mentorship bridges the gap between theory and practice, clearing confusion, fostering confidence & a sense of community, and paving the way toward a clear career goal.
These are some testimonials I received during my mentorship sessions.
Connect with me on Topmate
https://topmate.io/telcocloudtrainer
"๐๐ฟ๐ฒ๐ฒ ๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ & ๐๐๐ฏ๐ฒ๐ฟ๐ป๐ฒ๐๐ฒ๐ ๐ฐ๐ผ๐๐ฟ๐๐ฒ๐ ๐ณ๐ผ๐ฟ ๐๐๐๐ฑ๐ฒ๐ป๐๐ & ๐ณ๐ฟ๐ฒ๐๐ต๐ฒ๐ฟ๐"
I have two bestselling courses on Udemy - "๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ & ๐๐๐ฏ๐ฒ๐ฟ๐ป๐ฒ๐๐ฒ๐".
I have designed them for absolute beginners in the TelcoCloud/NFV industry.
For those who can afford it. I always run a discount coupon. Ask me for discounts.
I can see that students & freshers are still struggling to enter the telco cloud industry just because they don't have the basic skills required in this domain.
Therefore I have decided to grant an absolutely "๐๐ฅ๐๐" access for a lifetime by providing a free coupon every month to a bunch of students & freshers (having 0-2 years of exp) for both of my courses.
Kindly take it as a facility & ๐ฏ๐ฐ๐ต as a privilege because I reserve the right to provide coupons at my discretion.
Here is how you can get it -
1. Limited coupons are available on a monthly basis & are only available to students & freshers.
3. Send me a DM on LinkedIn. (If you're not connected to me then send a connection request first)
4. Just write "Fresher coupon needed for # # #" in the message box. # # # can be either OpenStack or K8s.
5. I will check your profile & "may" ask you a few queries about your education & career.
6. A coupon will be granted to you.
No other channel (Gmail, Insta, FB) is allowed for coupons. ๐๐ฏ๐ญ๐บ ๐๐ช๐ฏ๐ฌ๐ฆ๐ฅ๐๐ฏ ๐ฎ๐ฆ๐ด๐ด๐ข๐จ๐ช๐ฏ๐จ
Course links here -
https://www.udemy.com/course/openstack-telcocloud-asad/?couponCode=UDEMY-OCT
https://www.udemy.com/course/kubernetes-in-nfv-telcocloud/?couponCode=UDEMY-OCT
"๐๐ผ๐ฏ ๐ฎ๐น๐ฒ๐ฟ๐ ๐ณ๐ผ๐ฟ ๐๐ผ๐บ๐ฒ๐ป ๐ถ๐ป ๐๐ฟ๐ถ๐ฐ๐๐๐ผ๐ป"
Ericsson is conducting a special referral drive for women across ๐ฎ๐น๐น ๐ฑ๐ผ๐บ๐ฎ๐ถ๐ป๐ on ๐ฎ๐น๐น ๐ท๐ผ๐ฏ ๐๐๐ฎ๐ด๐ฒ๐ at various locations ๐ถ๐ป ๐๐ป๐ฑ๐ถ๐ฎ.
I can refer your CV. Follow these steps -
1. Go to Ericcson's career page & search for the job(s) of your choice - https://www.ericsson.com/en/careers
2. Send me the ๐๐ผ๐ฏ ๐๐ along with your ๐๐ฉ via LinkedIn messenger only (No other communication channel)
3. If you're not my connection then first send me a connection request so that you can DM me.
4. I will refer your CV to the given job ID(s). Remember, there will be no referral without the job ID.
Emphasizing again - This is "๐ฎ๐ฝ๐ฝ๐น๐ถ๐ฐ๐ฎ๐ฏ๐น๐ฒ ๐๐ผ ๐๐ผ๐บ๐ฒ๐ป ๐ผ๐ป๐น๐"
"๐๐ฎ๐ฐ๐ธ ๐ผ๐ณ ๐๐ธ๐ถ๐น๐น๐ ๐ถ๐ ๐ฟ๐ฒ๐ด๐ฎ๐ฟ๐ฑ๐ฒ๐ฑ ๐ฎ๐ ๐๐ต๐ฒ ๐บ๐ฎ๐ถ๐ป ๐ฏ๐ฎ๐ฟ๐ฟ๐ถ๐ฒ๐ฟ ๐ถ๐ป ๐๐ต๐ฒ ๐ฎ๐ฑ๐ผ๐ฝ๐๐ถ๐ผ๐ป ๐ผ๐ณ ๐ฐ๐น๐ผ๐๐ฑ-๐ป๐ฎ๐๐ถ๐๐ฒ ๐ถ๐ป ๐ง๐ฒ๐น๐ฐ๐ผ๐"
The poll, which attracted responses from more than 200 respondents, was held during TelecomTVโs fifth annual Cloud Native Telco Summit.
Operators grapple with the migration of services and customers from existing systems to their cloud-based platforms.
As a trainer, I identified this gap 2 years ago & that is the reason I have created two courses for the Telco industry on the most used cloud technologies in telecom (i.e. OpenStack & Kubernetes). The courses are bestsellers in their category.
Why are you still waiting?
Here are the discounted links. Start your cloud-native journey today -
https://www.udemy.com/course/openstack-telcocloud-asad/?couponCode=UDEMY-OCT
https://www.udemy.com/course/kubernetes-in-nfv-telcocloud/?couponCode=UDEMY-OCT
All the Q&A of the "๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐๐ฒ๐ฟ๐ถ๐ฒ๐" till now, are collected in this article.
You can bookmark this link for your future reference.
Going forward, the upcoming Q&A will also be hosted in this article only.
OpenStack interview Q&A This article contains a series of Q&A for an OpenStack operations engineer, involved in configuring VNFs, performance monitoring, network troubleshooting, and technical support roles. The whole series is divided into four major sections i.
"๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐ฆ๐ฒ๐ฟ๐ถ๐ฒ๐ - ๐๐ป๐ฑ ๐ผ๐ณ ๐ฆ๐ฒ๐ฐ๐๐ถ๐ผ๐ป ๐ฎ"
This post marks the end of section 2 i.e. Networking & Architecture.
Now, Let's take a break for some days from the OpenStack series & discuss some other topics. After that, we will resume with section 3 of the series.
๐๐ป๐๐๐ฒ๐ฟ ๐๐ผ ๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ญ๐ฒ ๐ฏ๐ฒ๐น๐ผ๐ -
Which command options do you use to capture "tcpdump" at various interfaces across the OpenStack environment? How do you rotate the traces & manage space for bulky trace files?
๐๐ป๐ - Save the following commands & thank me later.
i. Capture a trace on a tap interface (ex. tap12345-ab), inside a compute node
(tcpdump -peni tap12345-ab)
ii. Filter a specific protocol from this trace, say ICMP
(tcpdump -peni tap12345-ab icmp)
iii. Save this trace in a file
(tcpdump -peni tap12345-ab -w trace.pcap)
iv. Keep the trace running & make 4 files of 100 MB each & rotate the filename with current date & time in the filename
(tcpdump -peni tap12345-ab -w trace-%m-%d-%H-%M.pcap -C 100 -W 4)
v. Rotate files every 1 hour or 500 MB (whichever is earlier) & keep the last 4 files only
(tcpdump -peni tap12345-ab -w trace-%m-%d-%H-%M.pcap -G 3600 -C 500 -W 4)
vi. If you want to check the same conversation on the physical NIC of compute (say ens1f0) then apply "-T vxlan" otherwise the encapsulated packets of vxlan tunnels won't be visible.
(tcpdump -nnvve -i ens1f0 -T vxlan -w trace.pcap)
"๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐ฃ๐ผ๐๐-๐ญ๐ฒ"
๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ญ๐ฒ
Which command options do you use to capture "๐๐ฐ๐ฝ๐ฑ๐๐บ๐ฝ" at various interfaces across the OpenStack environment? How do you rotate the traces & manage space for bulky trace files?
๐๐ป๐๐๐ฒ๐ฟ ๐๐ผ ๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ญ๐ฑ ๐ฏ๐ฒ๐น๐ผ๐ -
How to analyze network latency between two endpoints?
Ans - Watch this short video to know the latency analysis between two endpoints with a simple pcap capture using a cool wireshark trick.
"๐ข๐ฝ๐ฒ๐ป๐ฆ๐๐ฎ๐ฐ๐ธ ๐ถ๐ป๐๐ฒ๐ฟ๐๐ถ๐ฒ๐ ๐ฃ๐ผ๐๐-๐ญ๐ฑ"
๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ญ๐ฑ
How to analyze network latency between two endpoints?
๐๐ป๐๐๐ฒ๐ฟ ๐๐ผ ๐ค๐๐ฒ๐๐๐ถ๐ผ๐ป-๐ญ๐ฐ ๐ฏ๐ฒ๐น๐ผ๐ -
For what kind of network functions OVS is a good choice & where does SRIOV win over OVS?
๐๐ป๐ - OpenVswitch (๐ข๐ฉ๐ฆ) is a highly intelligent, multilayer software switch, managed by neutron which is the native SDN component of OpenStack. The feature that distinguishes OVS is its capability to manage the networking between all the VMs hosted on a compute server without involving the physical NIC of the host (if the VMs are part of the same subnet).
It doesn't mean that OVS doesn't work well in case of external communication but, it adds an overhead within the compute for every packet processing.
Therefore, ๐ข๐ฉ๐ฆ ๐ถ๐ ๐๐๐ถ๐๐ฎ๐ฏ๐น๐ฒ ๐ณ๐ผ๐ฟ all the ๐ฐ๐ผ๐ป๐๐ฟ๐ผ๐น-๐ฝ๐น๐ฎ๐ป๐ฒ ๐ณ๐๐ป๐ฐ๐๐ถ๐ผ๐ป๐ like - CSCFs, TAS, PCRF, HSS, MSS server, etc. i.e., for ๐ฉ๐ก๐๐ ๐ฟ๐ฒ๐พ๐๐ถ๐ฟ๐ถ๐ป๐ด ๐น๐ผ๐ ๐ป๐ฒ๐๐๐ผ๐ฟ๐ธ ๐๐ต๐ฟ๐ผ๐๐ด๐ต๐ฝ๐๐๐.
๐ฆ๐ฅ๐๐ข๐ฉ - The trick here is to avoid hypervisor altogether and have VM access the physical NIC directly & get connected to the leaf/TOR switch, thus enabling almost line throughput. This increases performance compared to OVS.
๐ฆ๐ฅ๐๐ข๐ฉ ๐ถ๐ ๐๐๐ถ๐๐ฎ๐ฏ๐น๐ฒ ๐ณ๐ผ๐ฟ ๐ฎ๐น๐น ๐๐ต๐ฒ ๐๐๐ฒ๐ฟ-๐ฝ๐น๐ฎ๐ป๐ฒ ๐ณ๐๐ป๐ฐ๐๐ถ๐ผ๐ป๐ like UPF, media gateways, SGW, PGW, vDU/vCU, etc. i.e., for ๐ฉ๐ก๐๐ ๐ฟ๐ฒ๐พ๐๐ถ๐ฟ๐ถ๐ป๐ด ๐๐ฒ๐ฟ๐ ๐ต๐ถ๐ด๐ต ๐ป๐ฒ๐๐๐ผ๐ฟ๐ธ ๐๐ต๐ฟ๐ผ๐๐ด๐ต๐ฝ๐๐๐.
Click here to claim your Sponsored Listing.
Videos (show all)
Category
Website
Address
Bhopal
462030
Bhopal
Weโre a creative branding agency, helping brands to grow online with our creative marketing services.
Bhopal
We provide you latest Technical Videos On YouTube. Check out our channel Now. https://www.youtube.co
A-17 Gujarati Colony, Rohit Nagar Phase-1
Bhopal, 462039
IBEAM Solution is a leading Digital Marketing company with offices in India and U.K .
MP Nagar Zone 1 , Bhopal Inforont Of Db City Mall
Bhopal, 462011
Web development can range from developing a simple single static page of plain text to complex web applications, electronic businesses, and social network service.
E-3, 297/A, Arera Colony
Bhopal, 462016
Mobile App, E-Commerce Company! Solution to all your business need at one place!!
MP Nagar, Zone 2
Bhopal
TechnoGaze Solutions Pvt Ltd is a Leading #Digital #Marketing #Company fully focused on delivering the best and most cost-effective solutions to clients.