Professional Documents
Culture Documents
ISP Workshops
Point of Presence
Topologies
PoP Topologies
p Core
PoP Design
p Modular
Design
p Aggregation Services separated according
to
connection speed
n customer service
n contention ratio
n security considerations
n
Web Cache
Backbone link
to another PoP
Backbone link
to another PoP
Network
Core
Consumer cable,
xDSL and
wireless Access
Consumer
Dial Access
Business customer
aggregation layer
MetroE customer
aggregation layer
Network
Operations
Centre
Channelised circuits
for leased line circuit delivery
IGP implementation
p Modular
iBGP implementation
PoP Modules
p Low
p Business
customer connections
PoP Modules
p Highband
10
PoP Modules
p PoP
Core
p Border
Network
11
PoP Modules
p ISP
Services
p Hosted
Services/DataCentres
12
PoP Modules
p Network
Operations Centre
p Out
n
13
DSLAM
BRAS
IP, ATM
Access Network
Gateway Routers
Cable RAS
To Core Routers
Cable System
Primary Rate
T1/E1
Digital Modem
Access Servers
Aggregation Edge
Channelised T1/E1
Metro Ethernet
To Core Routers
15
Aggregation Edge
Metro Ethernet
To Core Routers
Channelised OC3/OC12
16
WWW
cache
DNS
POP3s
Secondary IMAPs
SMTP
Host
(in)
SMTP
Relay
(out)
DNS
Resolver
17
vlan11
vlan12 vlan13
vlan14
vlan15
vlan16
vlan17
Customer 1
Customer 3
Customer 5
Customer 7
Customer 2
Customer 4
Customer 6
18
Border Module
To local IXP
NB: router has no default route +
local AS routing table only
ISP1
ISP2
Network
Border Routers
To core routers
19
NOC Module
Critical Services
Module
To core routers
Corporate LAN
Out of Band
Hosted Network
Gateway Routers
Management Network
Firewall
Billing, Database
and Accounting
Systems
20
Terminal server
To the NOC
NetFlow
enabled
routers
NetFlow
Collector
Out of Band Ethernet
21
Backbone Network
Design
22
Backbone Design
p Routed
Backbone
p Switched Backbone
ATM/Frame Relay core network
n Now obsolete
n
p Point-to-point
n
circuits
p ATM/Frame
23
design standardised
p ISP
24
ISP Services
Backup
Operations Centre
POP Two
Customer
connections
Customer
connections
ISP Services
POP One
POP Three
ISP Services
External
connections
Operations Centre
External
connections
25
Backbone Links
p ATM/Frame
Relay
p Leased
Line/Circuit
26
27
28
POP One
POP Three
Alternative/Backup Path
29
to be cheaper
Circuit concentration
n Choose from multiple suppliers
n
p Think
big
More redundancy
n Less impact of upgrades
n Less impact of failures
n
30
Metropolitan Links
POP One
POP Three
Metropolitan Links
31
Upstream Connectivity
and Peering
32
Transits
p
Only one
p
Too many
p
p
p
no redundancy
more difficult to load balance
no economy of scale (costs more per Mbps)
hard to provide service quality
Common Mistakes
p
No diversity
n
n
Peers
p
Public peer
n
Common Mistakes
p Mistaking
p Ignoring/avoiding
competitors because
they are competition
n
Private Interconnection
p Two
Private Interconnection
Upstream
Upstream
ISP2
PR
PR
ISP1
PR = peering router
n
n
n
n
Public Interconnection
p Service
provider participates in an
Internet Exchange Point
It exchanges prefixes it originates into the
routing system with the participants of the IXP
n It chooses who to peer with at the IXP
n
39
Public Interconnection
Upstream
ISP6-PR
ISP5-PR
IXP
ISP4-PR
ISP3-PR
ISP1
ISP2-PR
ISP1-PR
40
Public Interconnection
p
Connected to a second switch (if the IXP has two more more
switches)
Interconnected with the original router (and part of iBGP mesh)
41
Public Interconnection
Upstream
ISP6-PR
ISP1-PR2
ISP5-PR
IXP
ISP4-PR
ISP3-PR
ISP1-PR1
ISP1
ISP2-PR
Two routers
Two independent links
Separate switches (if IXP has two or more switches)
42
Upstream/Transit Connection
p Two
n
scenarios:
Which means bandwidth is cheap, plentiful, easy to
provision, and easily upgraded
p Each
43
ISP1
AR
BR
Transit
44
Transit
BR
ISP1
AR2
45
46
points to consider:
47
Transit
BR1
AR2
ISP1
BR2
Upgrade scenario:
n
n
n
Summary
p Design
n
Private interconnects
p
Public interconnects
p
considerations for:
49
Upstream Connectivity
and Peering Case Study
How Seacom chose their
international peering locations
and transit providers
50
Objective
p Obtain
51
p
p
52
p
p
10Gbps ports
Bursting bandwidth/billing
Future support for 100Gbps or N x 10Gbps
53
54
Implementing Solution
p
p
p
p
p
p
p
End Result
p
p
p
p
p
p
56
Addressing
57
ARIN http://www.arin.net
APNIC http://www.apnic.net
North America
n
AfriNIC http://www.afrinic.net
LACNIC http://www.lacnic.net
59
http://www.cymru.com/Documents/bogonlist.html
61
http://www.rfc-editor.org/rfc/rfc6752.txt
Including:
n
n
n
n
n
n
n
n
n
62
Summary:
n
64
65
One
223.10.0.0/21
223.10.0.1
223.10.6.255 /24
Infrastructure Loopbacks
Customer assignments
p Phase
Two
223.10.0.0/20
223.10.0.1
223.10.5.255
/24
/24
Original assignments
223.10.15.255
New Assignments
66
Addressing Plans
Planning
p Registries
67
infrastructure allocation
p Document
customer allocation
Contained in iBGP
n Eases operation, debugging and management
n Submit network object to RIR Database
n
68
Routing Protocols
69
Routing Protocols
p IGP
p EGP
p No
70
backbone scaling
Hierarchy
n Modular infrastructure construction
n Limiting scope of failure
n Healing of infrastructure faults using dynamic
routing with fast convergence
n
71
to large network
Hierarchy
n Limit scope of failure
n
p Policy
72
Interior
n
n
n
n
Automatic neighbour
discovery
Generally trust your IGP
routers
Prefixes go to all IGP
routers
Binds routers in one AS
together
Exterior
n
n
n
n
Specifically configured
peers
Connecting with outside
networks
Set administrative
boundaries
Binds ASs together
73
Interior
n
Carries ISP
infrastructure addresses
only
ISPs aim to keep the
IGP small for efficiency
and scalability
Exterior
n
n
n
Carries customer
prefixes
Carries Internet
prefixes
EGPs are independent
of ISP network topology
74
BGP4
and OSPF/ISIS
BGP4
IXP
Static/BGP4
Customers
75
Routing Protocols:
Choosing an IGP
p
Which to choose?
n
n
n
n
n
n
76
Routing Protocols:
IGP Recommendations
p
IGP details:
n
n
n
77
Routing Protocols:
More IGP recommendations
p To
n
Using ip unnumbered on customer point-topoint links saves carrying that /30 in IGP
p
78
Routing Protocols:
iBGP Recommendations
p iBGP
79
Routing Protocols:
More iBGP Recommendations
p Scalable
iBGP features:
80
Security
81
Security
p
p
p
p
Protect themselves
Help protect their customers from the Internet
Protect the Internet from their customers
82
83
access
84
SNMP
n
n
Advice:
filtering
Application:
n
88
Origin router:
router bgp 64509
redistribute static route-map black-hole-trigger
!
ip route 10.5.1.3 255.255.255.255 Null0 tag 66
!
route-map black-hole-trigger permit 10
match tag 66
set local-preference 1000
set community no-export
set ip next-hop 192.0.2.1
!
BCP 38 (tools.ietf.org/html/bcp38)
Blocks all unroutable source addresses the
customer may be using
Inexpensive way of filtering customers connection
(when compared with packet filters)
91
What is uRPF?
FIB:
172.16.1.0/24 fa0/0
192.168.1.0/24 se0/1
src=172.16.1.1
src=192.168.1.1
fa0/0
se0/1
router
Security Summary
p
Implement RTBF
n
n
Implement uRPF
n
p
p
They can send you the prefix you need to block with a
special community attached
You match on that community, and set the next-hop to the
null address
94
optional!
p Allows access to network equipment in
times of failure
p Ensures quality of service to customers
Minimises downtime
n Minimises repair time
n Eases diagnostics and debugging
n
95
p Full
96
Equipment Rack
Router, switch
and ISP server
consoles
Ethernet
97
to the NOC
p Full
98
Test Laboratory
99
Test Laboratory
p Designed
n
p Used
100
Test Laboratory
p Some
101
Test Laboratory
p Cant
p Every
102
Operational
Considerations
103
Operational Considerations
Operational Considerations
Maintenance
p
Operational Considerations
Support
p Differentiate
p Network
106
Operational Considerations
NOC Communications
p NOC
107
108
109
110