Cables2Clouds

Send us a textWhat happens when three major cloud providers each reimagine network design from scratch? You get three completely different approaches to solving the same fundamental problem.The foundation of cloud networking begins with the virtual containers that hold your resources: AWS's Virtual Private Clouds (VPCs), Azure's Virtual Networks (VNets), and Google Cloud's VPCs (yes, the same name, very different implementation). While they all serve the same basic purpose—providing logical isolation for your workloads—their design philosophies reveal profound differences in how each provider expects you to architect your solutions.AWS took the explicit control approach. When you create subnets within an AWS VPC, you must assign each to a specific Availability Zone. This creates a vertical architecture pattern where you're deliberately placing resources in specific physical locations and designing resilience across those boundaries. Network engineers often find this intuitive because it matches traditional fault domain thinking. However, this design means you must account for cross-AZ data transfer costs and explicit resiliency patterns.Azure flipped the script with their horizontal approach. By default, subnets span across all AZs in a region, with Microsoft's automation handling the resilience for you. This "let us handle the complexity" philosophy makes initial deployment simpler but provides less granular control. Meanwhile, Google Cloud went global, allowing a single VPC to span regions worldwide—an approach that simplifies global connectivity but introduces new challenges for security segmentation.These architectural differences aren't merely academic—they fundamentally change how you design for resilience, manage costs, and implement security. The cloud introduced "toll booth" pricing for data movement, where crossing availability zones or regions incurs charges that didn't exist in traditional data centers. Understanding these nuances is crucial whether you're migrating existing networks or designing new ones.Want to dive deeper into cloud networking concepts? Let us know what topics you'd like us to cover next as we explore how traditional networking skills translate to the cloud world.Purchase Chris and Tim's new book on AWS Cloud Networking: https://www.amazon.com/Certified-Advanced-Networking-Certification-certification/dp/1835080839/ Check out the Fortnightly Cloud Networking Newshttps://docs.google.com/document/d/1fkBWCGwXDUX9OfZ9_MvSVup8tJJzJeqrauaE6VPT2b0/Visit our website and subscribe: https://www.cables2clouds.com/Follow us on BlueSky: https://bsky.app/profile/cables2clouds.comFollow us on YouTube: https://www.youtube.com/@cables2clouds/Follow us on TikTok: https://www.tiktok.com/@cables2cloudsMerch Store: https://store.cables2clouds.com/Join the Discord Study group: https://artofneteng.com/iaatj

Send us a textCloud security and infrastructure providers are making strategic moves to maintain competitive advantage through acquisitions and service enhancements while combating emerging threats. We explore the latest developments including Palo Alto's massive acquisition, new cloud services, and enhanced security features that are reshaping the industry.• Palo Alto Networks announces $25 billion acquisition of CyberArk to strengthen identity security capabilities, particularly for machine identities and agentic AI• AWS launches Elastic VMware Service, allowing customers to bring their own licenses without application replatforming as organizations seek alternatives amid Broadcom changes• Network World article questions why enterprises aren't fully replacing infrastructure with SD-WAN, highlighting the ongoing gradual adoption approach• Wiz discovers "zombie hosts" on Google Sites pages with SoCo 404 exploit that installs cryptocurrency mining malware• Megaport Cloud Router now supports IPsec tunnels, enabling direct encrypted connections through their fabric without additional hardwareJoin us next month for more cloud and infrastructure news updates.Purchase Chris and Tim's new book on AWS Cloud Networking: https://www.amazon.com/Certified-Advanced-Networking-Certification-certification/dp/1835080839/ Check out the Fortnightly Cloud Networking Newshttps://docs.google.com/document/d/1fkBWCGwXDUX9OfZ9_MvSVup8tJJzJeqrauaE6VPT2b0/Visit our website and subscribe: https://www.cables2clouds.com/Follow us on BlueSky: https://bsky.app/profile/cables2clouds.comFollow us on YouTube: https://www.youtube.com/@cables2clouds/Follow us on TikTok: https://www.tiktok.com/@cables2cloudsMerch Store: https://store.cables2clouds.com/Join the Discord Study group: https://artofneteng.com/iaatj

Send us a textMaking a career transition is never easy, especially in specialized technical domains. In this episode, we dive into the world of professional evolution with returning guest Will Collins, who shares his journey from cloud networking at Alkira to automation engineering at Nintex."I'm not lazy, but I hate repetition," Will explains, describing the mindset that led him toward automation throughout his career. This natural inclination eventually blossomed into a specialized focus, demonstrating how following your technical interests can create new career pathways. His experience mirrors my own recent transition from Aviatrix to a network security-focused role, giving listeners multiple perspectives on navigating change in the networking industry.The conversation explores how cloud experience fundamentally transforms your technical thinking – shifting your approach from traditional infrastructure management to a more developer-oriented mindset. We discuss how cloud environments break down traditional silos, forcing networking professionals to collaborate with application teams and security specialists in ways that weren't necessary in traditional data centers. This cross-functional experience creates valuable T-shaped professionals who understand both the depth of networking and the breadth of adjacent technologies.We also tackle tough questions about the evolution of networking as a discipline. Has it expanded, contracted, or simply morphed into something new? Will suggests "it's been watered down or diluted," pointing to the consolidation of networking and security responsibilities in many organizations. This trend requires today's professionals to master multiple domains while still maintaining core expertise.For those contemplating their next move, we offer practical advice on evaluating opportunities, balancing risk at different career stages, and the importance of developing fundamental understanding rather than relying on AI shortcuts. As Will counsels, "Learn one thing... actually learn it. That is what's going to keep you marketable in 2035, 2040."Connect with our guest:https://www.linkedin.com/in/william-collins/https://packetpushers.net/podcast/the-cloud-gambit/Purchase Chris and Tim's new book on AWS Cloud Networking: https://www.amazon.com/Certified-Advanced-Networking-Certification-certification/dp/1835080839/ Check out the Fortnightly Cloud Networking Newshttps://docs.google.com/document/d/1fkBWCGwXDUX9OfZ9_MvSVup8tJJzJeqrauaE6VPT2b0/Visit our website and subscribe: https://www.cables2clouds.com/Follow us on BlueSky: https://bsky.app/profile/cables2clouds.comFollow us on YouTube: https://www.youtube.com/@cables2clouds/Follow us on TikTok: https://www.tiktok.com/@cables2cloudsMerch Store: https://store.cables2clouds.com/Join the Discord Study group: https://artofneteng.com/iaatj

Send us a textThe tech industry's shifting strategies and priorities take center stage in this episode as we examine several major developments reshaping the landscape. We dive into Ingram Micro's recent ransomware attack by the SafePay group, analyzing both the immediate impacts and potential long-term consequences of the four-day operational disruption. The incident raises important questions about security protocols, attack vectors, and the possibility of data exfiltration that could have lingering effects.Next, we explore CoreWeave's massive $9 billion acquisition of CoreScientific, representing a fascinating pivot from cryptocurrency mining infrastructure to AI computing resources. This transaction epitomizes the tech industry's current trajectory – moving away from speculative cryptocurrency ventures toward equally speculative but potentially more productive AI applications. We discuss the diminishing returns of crypto mining versus the still-unprofitable but product-focused world of AI, questioning where this astronomical investment might lead.The networking world sees significant realignment as Arista acquires VeloCloud from Broadcom, bolstering their WAN portfolio after VMware's SD-WAN solution changed hands multiple times in recent years. We compare potential integration approaches with Cisco's historical challenges integrating Viptela, speculating on how Arista might handle this transition while maintaining their commitment to a unified operating system.Perhaps most concerning is Microsoft's continued workforce reduction – cutting 4% of employees while pledging billions toward AI development. This "robbing Peter to pay Paul" approach appears throughout the tech industry as companies bet heavily on AI's future promise while sacrificing present human capital. We contrast these widespread layoffs with contradictory reports claiming robust tech hiring, questioning the true state of industry employment.Join us biweekly for future episodes as we transition to a fortnightly schedule focusing on quality over quantity. Share your thoughts about our schedule change or any topics discussed – we're especially interested in hearing from VeloCloud customers who've experienced the product's journey through multiple corporate owners.Purchase Chris and Tim's new book on AWS Cloud Networking: https://www.amazon.com/Certified-Advanced-Networking-Certification-certification/dp/1835080839/ Check out the Fortnightly Cloud Networking Newshttps://docs.google.com/document/d/1fkBWCGwXDUX9OfZ9_MvSVup8tJJzJeqrauaE6VPT2b0/Visit our website and subscribe: https://www.cables2clouds.com/Follow us on BlueSky: https://bsky.app/profile/cables2clouds.comFollow us on YouTube: https://www.youtube.com/@cables2clouds/Follow us on TikTok: https://www.tiktok.com/@cables2cloudsMerch Store: https://store.cables2clouds.com/Join the Discord Study group: https://artofneteng.com/iaatj

Send us a textCloud network engineering interviews at tech giants require specialized knowledge beyond traditional networking – particularly when it comes to cloud-native services. In this final installment of our interview preparation series with Kam Agahian, we explore the specialized networking services that frequently appear in technical assessments.Security takes center stage as we discuss the critical boundary between networking and security responsibilities. Kam explains that while routing traffic to firewalls falls squarely on the network engineer, security policies and posture typically belong to dedicated security teams at larger organizations. We compare traditional VM-based third-party firewalls with cloud-native security services, highlighting the architectural considerations for each approach.DNS architectures represent another technical area where candidates must demonstrate proficiency. Beyond understanding traditional name resolution, you'll need familiarity with the hybrid cloud architectures that enable communication between on-premises and cloud environments. Kam singles out DNSSEC as deserving special attention during your preparation.The landscape of multi-cloud connectivity has evolved dramatically, moving beyond simple cross-cloud connections to sophisticated integration patterns. Candidates who demonstrate awareness of recent developments – like Oracle's strategy of placing databases directly in other providers' data centers – stand out in interviews by showing they stay current with industry trends.Throughout our conversation, we emphasize research as a critical interview preparation strategy. Review all cloud-related job postings at your target company to understand their technology ecosystem and identify potential multi-cloud scenarios. This contextual knowledge allows you to tailor your responses to the specific environment you'll potentially be working in.What questions do you have about preparing for cloud networking interviews? Share your thoughts and join the conversation about navigating these complex technical assessments.Connect with our guest:https://www.linkedin.com/in/agahian/Purchase Chris and Tim's new book on AWS Cloud Networking: https://www.amazon.com/Certified-Advanced-Networking-Certification-certification/dp/1835080839/ Check out the Fortnightly Cloud Networking Newshttps://docs.google.com/document/d/1fkBWCGwXDUX9OfZ9_MvSVup8tJJzJeqrauaE6VPT2b0/Visit our website and subscribe: https://www.cables2clouds.com/Follow us on BlueSky: https://bsky.app/profile/cables2clouds.comFollow us on YouTube: https://www.youtube.com/@cables2clouds/Follow us on TikTok: https://www.tiktok.com/@cables2cloudsMerch Store: https://store.cables2clouds.com/Join the Discord Study group: https://artofneteng.com/iaatj

Send us a textThe landscape of cloud security is rapidly evolving as AWS flexes its muscles with a suite of new native security offerings unveiled at AWS re:Inforce. From enhanced threat correlation capabilities in AWS Security Hub to seamless Transit Gateway integration for Network Firewall, these announcements signal Amazon's strategic expansion into territory traditionally dominated by third-party security vendors.We dive deep into the HPE-Juniper acquisition that finally received regulatory approval, but with interesting conditions – including the requirement to license parts of the coveted Mist AI technology. This could potentially open doors for competitors to leverage the same technology that made Juniper so attractive to HPE in the first place, creating a fascinating dynamic in the networking market.The most compelling theme emerging from AWS re:Inforce centers around Amazon's continued investment in native security tooling. New offerings like AWS Shield Network Security Director and IAM Access Analyzer directly challenge third-party CSPM providers, while improvements to existing services reduce the friction and complexity of implementing robust security controls. For organizations already invested in the AWS ecosystem, these integrated solutions offer compelling advantages – but they also raise important questions about vendor lock-in and multi-cloud strategies.Security vendors without a strong moat or differentiated value proposition should be concerned. As cloud service providers continue to enhance their native security capabilities, the pressure on third-party tools will only intensify. This trend follows closely on the heels of Google's acquisition of Wiz, suggesting that cloud security is becoming an increasingly strategic battleground for the major providers.For security professionals navigating these waters, the proliferation of overlapping security services presents both opportunities and challenges. While AWS continues to simplify implementation, the growing catalog of similar-sounding services can create confusion about which tools to use in which scenarios. As we discuss on the podcast, this appears to reflect AWS's organizational structure as much as customer needs – shipping the org chart rather than truly differentiated services.What's your security strategy in this evolving landscape? Are you embracing native cloud security tools or maintaining investments in third-party solutions? The answers may vary widely depending on your organization's cloud adoption strategy, but one thing is clear – the security vendor ecosystem is transforming before our eyes.Purchase Chris and Tim's new book on AWS Cloud Networking: https://www.amazon.com/Certified-Advanced-Networking-Certification-certification/dp/1835080839/ Check out the Fortnightly Cloud Networking Newshttps://docs.google.com/document/d/1fkBWCGwXDUX9OfZ9_MvSVup8tJJzJeqrauaE6VPT2b0/Visit our website and subscribe: https://www.cables2clouds.com/Follow us on BlueSky: https://bsky.app/profile/cables2clouds.comFollow us on YouTube: https://www.youtube.com/@cables2clouds/Follow us on TikTok: https://www.tiktok.com/@cables2cloudsMerch Store: https://store.cables2clouds.com/Join the Discord Study group: https://artofneteng.com/iaatj

Send us a textThe invisible threads connecting Kubernetes and networking infrastructure form the backbone of today's cloud-native world. In this revealing conversation with Marino Wijay from Kong, we unravel the complex relationship between traditional networking concepts and modern container orchestration.Marino brings a unique perspective as someone who entered the Kubernetes ecosystem through networking, explaining how fundamental networking principles directly translate to Kubernetes operations. "If you don't have a network, there is no Kubernetes," he emphasizes, highlighting how reachability between nodes forms the foundation of cluster communication.The network evolution within Kubernetes proves fascinating – from the early "black box" approach where connectivity was implicit to the sophisticated Container Network Interfaces (CNIs) like Cilium that offer granular control. Network engineers approaching Kubernetes for the first time might feel overwhelmed, but as we discover, concepts like DHCP with DNS registration, NAT, and load balancing all have direct parallels within the Kubernetes networking model.Our discussion ventures into the practical challenges organizations face when implementing service mesh technologies. While offering powerful capabilities for secure pod-to-pod communication through mutual TLS, service mesh introduces significant complexity. Marino shares insights on when this investment makes sense for enterprises versus smaller organizations with more controlled environments.The conversation takes an especially interesting turn when exploring how AI workloads are transforming Kubernetes networking requirements. From GPU-enabled clusters to specialized traffic patterns and the concept of Dynamic Resource Allocation as "QoS for AI," we examine how these resource-intensive applications are pushing the boundaries of what's possible.Whether you're a network engineer curious about containers or a Kubernetes administrator looking to deepen your networking knowledge, this episode bridges crucial gaps between these interconnected worlds. Subscribe to Cables to Clouds for more insights at the intersection of networking and cloud technologies!https://www.linkedin.com/in/mwijay/Purchase Chris and Tim's new book on AWS Cloud Networking: https://www.amazon.com/Certified-Advanced-Networking-Certification-certification/dp/1835080839/ Check out the Fortnightly Cloud Networking Newshttps://docs.google.com/document/d/1fkBWCGwXDUX9OfZ9_MvSVup8tJJzJeqrauaE6VPT2b0/Visit our website and subscribe: https://www.cables2clouds.com/Follow us on BlueSky: https://bsky.app/profile/cables2clouds.comFollow us on YouTube: https://www.youtube.com/@cables2clouds/Follow us on TikTok: https://www.tiktok.com/@cables2cloudsMerch Store: https://store.cables2clouds.com/Join the Discord Study group: https://artofneteng.com/iaatj

Send us a textWhen automation fails, it fails spectacularly—and at scale. The recent Google Cloud outage that took down over 54 global services for more than seven hours demonstrates this perfectly. A simple error—blank fields in automated policy updates—cascaded into widespread failures affecting millions of users worldwide. This episode dives deep into what went wrong, how it happened, and what it means for cloud resilience in the AI era.We also explore Cisco's dramatic pivot at Cisco Live 2025, where they've committed to refreshing their entire hardware stack and integrating AI throughout their ecosystem. Their new LLM called Deep Network suggests a future where networking infrastructure makes intelligent decisions autonomously. We discuss whether Cisco can deliver on these promises and what the unification of their Meraki and Catalyst lines might mean for customers.The Ultra Ethernet Consortium has finally released their 1.0 specification, establishing a comprehensive standard for high-performance computing environments. This 600+ page document marks a significant milestone in creating viable alternatives to InfiniBand for AI workloads. Meanwhile, Network-as-a-Service pioneer Meter secured $170 million in Series C funding, raising questions about the actual size and sustainability of the NaaS market.On the cybersecurity front, we examine two concerning developments: the mass exodus of leadership from CISA during heightened threat conditions, and a novel zero-click vulnerability in Microsoft 365 Copilot that can expose sensitive data without any user interaction. This "Echo Leak" vulnerability demonstrates how AI systems that automatically scan content create entirely new attack vectors that organizations must defend against.Join us for a fast-paced discussion about these pivotal developments in cloud computing, networking technology, and cybersecurity. What does all this mean for your infrastructure strategy? Listen and find out.Purchase Chris and Tim's new book on AWS Cloud Networking: https://www.amazon.com/Certified-Advanced-Networking-Certification-certification/dp/1835080839/ Check out the Fortnightly Cloud Networking Newshttps://docs.google.com/document/d/1fkBWCGwXDUX9OfZ9_MvSVup8tJJzJeqrauaE6VPT2b0/Visit our website and subscribe: https://www.cables2clouds.com/Follow us on BlueSky: https://bsky.app/profile/cables2clouds.comFollow us on YouTube: https://www.youtube.com/@cables2clouds/Follow us on TikTok: https://www.tiktok.com/@cables2cloudsMerch Store: https://store.cables2clouds.com/Join the Discord Study group: https://artofneteng.com/iaatj

Send us a textEntrepreneurship is often glorified as the ultimate career goal, but what happens when running your own business loses its luster? Jason Gintert takes us behind the scenes of his journey from corporate life to co-founding WAN Dynamics, and then back to the corporate world as CTO of Laketec.The entrepreneurial path wasn't always smooth. "The first two years were kind of rough," Jason reveals, describing how his income dropped to half of his previous corporate salary and required significant belt-tightening at home. Even as the business grew, unexpected challenges emerged – from the stress of having employees depend on you for their livelihood to the constant cash flow battles when large clients took 60-90 days to pay invoices.Perhaps most surprising was Jason's realization that business ownership didn't provide the freedom he expected. "It's a misconception that when you have a business, you're your own boss," he explains. "You report to your employees, your customers, your stakeholders – everybody who depends on you." Despite successfully growing the company and navigating the explosive demand for remote access solutions during COVID, Jason found himself increasingly forced into sales roles he didn't want.After selling WAN Dynamics and briefly working for the acquiring company, Jason took four months to decompress before joining Laketec. His transition back to corporate life brought welcome relief – consistent schedules, healthcare benefits, and the ability to focusConnect with Jason:https://www.linkedin.com/in/jasongintert/Purchase Chris and Tim's new book on AWS Cloud Networking: https://www.amazon.com/Certified-Advanced-Networking-Certification-certification/dp/1835080839/ Check out the Fortnightly Cloud Networking Newshttps://docs.google.com/document/d/1fkBWCGwXDUX9OfZ9_MvSVup8tJJzJeqrauaE6VPT2b0/Visit our website and subscribe: https://www.cables2clouds.com/Follow us on BlueSky: https://bsky.app/profile/cables2clouds.comFollow us on YouTube: https://www.youtube.com/@cables2clouds/Follow us on TikTok: https://www.tiktok.com/@cables2cloudsMerch Store: https://store.cables2clouds.com/Join the Discord Study group: https://artofneteng.com/iaatj

Send us a textTim and Chris discuss major cybersecurity acquisitions and innovations, examining how these changes will impact enterprise security and cloud architecture.• Zscaler acquires Red Canary MDR (Managed Detection and Response) to fill gaps in their platform despite potential integration challenges• AWS Network Firewall now supports multiple VPC endpoints without requiring Transit Gateway deployment• AWS exits the private 5G market, pivoting to partnerships with established telecommunications providers• CheckPoint acquires Veritai Cybersecurity to enhance their Infinity platform with "virtual patching" capabilities• North Korean IT workers using sophisticated techniques to infiltrate Western companies by posing as legitimate remote employeesCheck the news document for additional stories we didn't have time to cover, including a project called MPIC focused on preventing BGP attacks with certificate validation.Purchase Chris and Tim's new book on AWS Cloud Networking: https://www.amazon.com/Certified-Advanced-Networking-Certification-certification/dp/1835080839/ Check out the Fortnightly Cloud Networking Newshttps://docs.google.com/document/d/1fkBWCGwXDUX9OfZ9_MvSVup8tJJzJeqrauaE6VPT2b0/Visit our website and subscribe: https://www.cables2clouds.com/Follow us on BlueSky: https://bsky.app/profile/cables2clouds.comFollow us on YouTube: https://www.youtube.com/@cables2clouds/Follow us on TikTok: https://www.tiktok.com/@cables2cloudsMerch Store: https://store.cables2clouds.com/Join the Discord Study group: https://artofneteng.com/iaatj