Let's discuss the natural evolution from just getting things working to adding all the bells and whistles, a Flannel to Cilium discussion, powered by eBPF, as the logical next step for Kubernetes networking. Looking at how Isovalent Enterprise enhances scalability, security and observability, offering a robust, production-ready platform for complex, multi-cluster environments. Transitioning to Cilium signifies embracing advanced capabilities for modern network engineering.

As infrastructure disruption becomes an acknowledged tool of state power, resilience is no longer just a cyber issue — it's operational and strategic. This piece outlines what critical infrastructure operators, boards and technology providers must reassess in a world where disruption is deliberate.

A comprehensive guide to Check Point Network Address Translation (NAT), covering concepts, configuration, automatic and manual NAT, static and hide NAT, ARP, NAT tables, and best practices. Designed as a definitive learning resource with practical examples, troubleshooting tips, and advanced scenarios for real-world deployments.

Quantum computing's rise threatens classical cryptography, prompting urgent shifts to post-quantum cryptography (PQC). Check Point leads this transition with quantum-ready solutions, ensuring secure communications through hybrid key exchanges and cryptographic agility. As PQC standards evolve, Check Point's architecture promises seamless adaptation, safeguarding digital infrastructures against future quantum threats.

As cloud-native technologies continue to converge with traditional networking in the data center and enterprise, understanding how Kubernetes, Cilium and eBPF work is crucial for network engineers. Hybrid mesh firewalls are the latest trend, and distributed firewalls (like Cisco's Hypershield) are emerging in the market.

As cloud-native technologies continue to converge with traditional networking in the data center and enterprise, understanding how Kubernetes, Cilium and eBPF works is crucial for network engineers. With hybrid mesh firewalls being the latest trend, and distributed firewalls (like Cisco's Hypershield) emerging in the market. Understanding how Kubernetes transforms traditional IP networking concepts into a dynamic, software-defined environment is crucial. This article demystifies Kubernetes security, making it accessible for network engineers familiar with ACLs and VLANs. You may think this doesn't apply to you, but if you're planning a firewall refresh anytime soon, then these concepts will need to be part of your vernacular going forward.

Learn how Cortex XDR secures the future by rewiring security operations.

Explore F5 VELOS key capabilities and learn how VELOS is a solution if your enterprise is seeking unmatched speed, security, and scalability.

Hardening your core routing protocols, such as ISIS, OSPF and BGP, is one of the simplest and cheapest ways to immediately improve your security posture. This post explores practical steps to secure routing adjacencies, filter route updates and reduce overall exposure in the control plane of your core network.

Network Access Control (NAC) is vital for organizations to secure networks and ensure compliance with regulatory frameworks like HIPAA, PCI-DSS and GDPR. By enforcing identity-based access, network segmentation and real-time monitoring, NAC mitigates cyber threats, prevents data breaches and maintains regulatory adherence, future-proofing organizational security.

As part of the "Grizzled CyberVet: Practical Cybersecurity" collection, we examine the MITRE ATT&CK framework. We simplify and explain this framework used by attackers to compromise your digital ecosystem.

K-12 and library network and wireless systems need enhanced segmentation through modern infrastructure today more than ever! In my post, I provide some clear reasons and guidance on enhancing these critical infrastructure components. I explain why it is important to implement new modern infrastructure underlay and overlay systems and what they can do to help enhance the security of staff, students and xIOT components on the supported network systems.