Presentation is loading. Please wait.

Presentation is loading. Please wait.

Scaling and Wholesale Computer Networks 2007 Week 7 Lecture 1 by Donald Neal.

Published byCoral McDaniel Modified over 7 years ago

Similar presentations

Presentation on theme: "Scaling and Wholesale Computer Networks 2007 Week 7 Lecture 1 by Donald Neal."— Presentation transcript:

1 Scaling and Wholesale Computer Networks 2007 Week 7 Lecture 1 by Donald Neal

2 The Players Telekordstra – A telco. See also Carrier, Incumbent. Goblinet – An ISP. See also Challenger. PFY Communications – Another ISP. PFY

3 Week 7 Lecture 1 Access Network Structure Scaling RADIUS using Proxies Scaling BRAS's with Logical Routers Access Network Wholesaling L2TP in a Wholesale Environment

4 Access Networks Aggregation Transport To provide multiple virtual IP networks, runs at layer 2. e.g. ATM, ethernet. (Contrast “Layer 2 VPN's”) Some AAA components, but data and decision making located elsewhere

5 Access – DSL / ATM Mode m ADSL Layer 2, say ATM DSLAM ATM Mode m It's The ATM Cloud! PPP IP RADIUS BRAS

6 On a BRAS Using ATM Physical Interfaces attached to ATM switch(es) Virtual Path carried by ATM switches to DSLAM VPI/VCI identify Virtual Circuit (PVC) to customer So one ATM subinterface per customer ATM device. BRAS terminates all those ATM PVC's. Aggregation is the name of the game. May allocate addresses from local pools (or by DHCP or RADIUS). Routes packets, including advertising routes for local pools. Applies QoS policies to subinterfaces.

7 From Here, Not About DSL From this point, DSL for example only. Scaling and wholesale considerations also apply to dial and wireless. Not about ATM, either.

8 PPP – RADIUS AUTH. Mode m DSLAM Mode m RADIUS Access-Request (User-Name, CHAP-Password) ivor.modem@telek.co.nzivor.modem@telek.co.nz, Secur3 Access-Accept (Framed-IP-Address, VSA's) 123.234.1.48, AverageService BRAS

9 PPP – RADIUS RADIUS PROXY RADIUS Can proxy for both authentication and accounting. BRAS

10 Logical Routers aka Virtual Routers Some shared configuration Each logical router has its own peers and its own routing/forwarding table (DHCP configuration, DNS, RADIUS accounting...) Complex vs. MPLS

11 Which Logical Router? All incoming PPP requests come to one logical router. Could just statically configure it. telek.co.nz -> telekordstra goblin.net.nz -> goblinet pfy.net.nz -> pfy

12 PPP – RADIUS BRAS RADIUS PROXY Telekordstra RADIUS Goblinet RADIUS Access-Request (User-Name, CHAP-Password) ivor.modem@telek.co.nzivor.modem@telek.co.nz, Secur3 Access-Accept (Framed-IP-Address) 123.234.1.48 Access-Accept (Framed-IP-Address, VSA's) 123.234.1.48, AverageService, telekordstra

13 PPP – RADIUS BRAS RADIUS PROXY Telekordstra RADIUS Goblinet RADIUS Access-Request (User-Name, CHAP-Password) ivan.otherone@goblin.net.nz, S3cure Access-Accept (Framed-IP-Address) 123.234.64.48 Access-Accept (Framed-IP-Address, VSA's) 123.234.64.48, AverageService, goblinet

14 But Then... BRAS RADIUS PROXY Telekordstra RADIUS Goblinet RADIUS Access-Request (User-Name, CHAP-Password) ivan.otherone@goblin.net.nz, S3cure Access-Accept (Framed-IP-Address) 123.234.64.48 Access-Accept (Framed-IP-Address, VSA's) 123.234.64.48, AverageService, goblinet

15 Layer 2 Service With The Same Network BRA S Part 1 BRA S Part 2 ISPCarrie r Aggregatio n Authentication, Accounting, IP and above ISP RADIUS

16 Layer 2 Service With The Same Network LA C LN S ISPCarrie r ISP RADIUS “L2TP extends the PPP model by allowing the L2 and PPP endpoints to reside on different devices interconnected by a packet-switched network.... instead of requiring the L2 connection terminate at the NAS (which may require long-distance toll charge), the connection may terminate at a local circuit concentrator, which then extends the logical PPP session over a shared infrastructure” - RFC2661

17 Layer 2 Service With The Same Network LA C LN S ISPCarrie r ISP RADIUS PPP IP UDP

18 Layer 2 Service With The Same Network Mode m ADSL Layer 2 DSLAM ATM Mode m PPP IP RADIUS LAC LNS L2TP Tunnel Access SeekerCarrie r

19 Layer 2 Service With The Same Network Mode m DSLAM Mode m RADIUS LAC LNS RADIUS Access-Request (User-Name, CHAP-Password – not used) ivan.otherone@goblin.net.nz, S3cure Access-Accept (attributes including Tunnel Destination and probably QoS) 234.20.15.3, BitstreamService

20 L2TP Aggregation LAC LNS LAC NAS

21 Further Reading Broadband Network Architectures pp. 259-280

Download ppt "Scaling and Wholesale Computer Networks 2007 Week 7 Lecture 1 by Donald Neal."

Similar presentations

Labcourse “Routerlab”

Labcourse “Routerlab”
1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
Layer 2 Tunneling Protocol (L2TP)

Layer 2 Tunneling Protocol (L2TP)
IPv6 over xDSL: The DIODOS Proposal Athanassios Liakopoulos Greek Research & Technology Network International IPv6 Workshop, Kopaonik,

IPv6 over xDSL: The DIODOS Proposal Athanassios Liakopoulos Greek Research & Technology Network International IPv6 Workshop, Kopaonik,
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Virtual Private Networks. Why VPN Fast, secure and reliable communication between remote locations –Use leased lines to maintain a WAN. –Disadvantages.

Virtual Private Networks. Why VPN Fast, secure and reliable communication between remote locations –Use leased lines to maintain a WAN. –Disadvantages.
DSL Access Architectures and Protocols. xDSL Architecture.

DSL Access Architectures and Protocols. xDSL Architecture.
Virtual Private Networks (VPN)

Virtual Private Networks (VPN)
© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 2: Teleworker Connectivity.

© 2006 Cisco Systems, Inc. All rights reserved. Implementing Secure Converged Wide Area Networks (ISCW) Module 2: Teleworker Connectivity.
Virtual Private Networking Karlene R. Samuels COSC513.

Virtual Private Networking Karlene R. Samuels COSC513.
MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,

MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,
Remote Networking Architectures

Remote Networking Architectures
SMUCSE 8344 MPLS Virtual Private Networks (VPNs).

SMUCSE 8344 MPLS Virtual Private Networks (VPNs).
Network+ Guide to Networks 6 th Edition Chapter 10 Virtual Networks and Remote Access.

Network+ Guide to Networks 6 th Edition Chapter 10 Virtual Networks and Remote Access.
Windows Server 2008 Chapter 9 Last Update 2012.06.07 1.0.0.

Windows Server 2008 Chapter 9 Last Update
NETWORKS – NETWORK FUNDAMENTALS. How do computers connect to each other? Wired vs. Wireless Network cards Special device on computer that lets the computer.

NETWORKS – NETWORK FUNDAMENTALS. How do computers connect to each other? Wired vs. Wireless Network cards Special device on computer that lets the computer.
Network+ Guide to Networks 6 th Edition Chapter 10 Virtual Networks and Remote Access.

Network+ Guide to Networks 6 th Edition Chapter 10 Virtual Networks and Remote Access.
Configuring Routing and Remote Access(RRAS) and Wireless Networking

Configuring Routing and Remote Access(RRAS) and Wireless Networking
Module 9: Planning Network Access. Overview Introducing Network Access Selecting Network Access Connection Methods Selecting a Remote Access Policy Strategy.

Module 9: Planning Network Access. Overview Introducing Network Access Selecting Network Access Connection Methods Selecting a Remote Access Policy Strategy.
Page 1 NAT & VPN Lecture 8 Hassan Shuja 05/02/2006.

Page 1 NAT & VPN Lecture 8 Hassan Shuja 05/02/2006.

Similar presentations

Ads by Google