Peter Christy

As part of our data center networking investigations, we visited with Arastra, Andy Bechtolsheim's latest venture. Andy is one of the most remarkable Silicon Valley fixtures. Not only has he made a lot of money, but along the way he's done some extremely elegant product designs, often doing things simply better than others or doing things that others didn't think could be done (or hadn't thought of). Arastra looks like another winner. It's a 10G switch, and as such is in a category most will never think about but probably use every day. But for those who deal with it directly, it's another really elegant example of Andy's work as the picture below shows:

Arastra's first product is a 48 port 1RU device which is a packaging feat not unlike the Faberge Eggs that the Romanov's were so fond of. Just putting those 48 connectors in a 1U box and still having cooling work is pretty amazing to those practiced in the art. The Arastra switch is also interesting because it's a real deviation from a lot of Andy's early work where he used high complexity custom silicon to create a barrier to others to follow. The Arastra switch has none. Instead it leverages standard parts and creates differentiation through packaging. Steve Wozniak practiced similar art with the Apple II making amazingly clever use of standard parts while others piled on expense to do the same thing. Since hardware isn't the competitive barrier here it must be software. The Arastra switch is designed for the addition of third party software (or the adaptation of existing code into switch functionality). The base operating system of the switch is LINUX and then real-time capabilities are provided by an innovative NetWare like inner environment with a shared state repository providing a lot of the coordination. NetWare was a marvelous software system when Drew Major first created it 20+ years ago in order to make a MHz class PC serve as a high-performance I/O controller (today's multicore CPU's are maybe 5,000 times more powerful). High performance software designers rediscover NetWare regularly. It's sad we don't just teach it in school.

The freezer compressor for the Safeway across the street failed resulting in the loss of $100,000 worth of food, no small hit to a modest grocery store that runs on razor thin margins. I wonder if they have reconsidered having a more costly redundant system? Earlier this year there was a spate of undersea cable failures in the Middle East, enough and some in strange enough circumstances to lead to speculation that it wasn't simply chance. In the not too distant past undersea earthquakes and landslides lead to multiple cable failures in the Far East. All of these cable failures significantly degraded Internet performance, especially for the time it took to sort out the new routes and stabilize everything. What's the point of all this? Most business executives and government leaders have no understanding of the structure or potential failure modes of the Internet that we all increasingly depend on, just like the manager of the Safeway, I'm betting had any no idea of how the freezer infrastructure was designed until the proverbial shit hit the fan. Even for network experts it's easy to design in the use of "redundant" networks for reliability only to learn under duress that all the providers share a common fiber cable. Should we be more worried about any of this? Is a more serious network failure due to not paying enough attention to risk as likely as a financial meltdown due to the inadequate understanding of the cascade started by sub-prime mortgage securities? Probably.

I was going to write a depressed tirade for the newsletter about how little apparent industry cooperation exists against spam. Then, in the middle of my funk, Cisco announced the intention to acquire IronPort. What’s exciting about that (potentially) is Cisco’s dominance in enterprise network (they aren’t allowed to say that but I am) and IronPort’s reputation information. IronPort has exploited reputation information from the beginning and it’s my belief that it provides the most important single factor in practical spam control. What, I ask, would happen if that reputation information was all of a sudden broadly available to Cisco switch and router users? In theory that would be exciting and meaningful, although there are no shortage of reasons why it might not happen, including but not limited to: (1) the acquisition not going through, (2) Cisco really operating IronPort as an autonomous division and not aggressively commingling the technology and (3) the Cisco network guys thinking it’s a bad idea. In the past some of Cisco’s most distinguished engineers have argued eloquently (if wrong) that associating reputation with IP numbers is bad thinking. I guess I’ll just have to wait and see, and keep that depressive tirade fresh and ready to use.