Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2004 AARNet Pty Ltd Measurement in aarnet3 4 July 2004.

Published byAlison Matthews Modified over 8 years ago

Similar presentations

Presentation on theme: "© 2004 AARNet Pty Ltd Measurement in aarnet3 4 July 2004."— Presentation transcript:

1 © 2004 AARNet Pty Ltd Measurement in aarnet3 4 July 2004

2 © 2004AARNet Pty Ltd 2 The new network AARNet3 is currently being deployed replacing the ATM oriented AARNet2 network with STM- 64 inter-capital links Redundant network design Direct transit to US carriers and peering in the US at 4 US PoPs, including commodity and R&E links Dual STM-4 as well as current dual STM-1 for receipt of commodity traffic Dual STM-64s for R&E traffic

3 © 2004AARNet Pty Ltd 3 New network design Redundancy & Resilience Support for IPv4 and IPv6 –unicast and multicast Traffic Accounting and Monitoring End to end performance measures Support QoS (diffserv) Support for large traffic flows, jumbo frames

4 © 2004AARNet Pty Ltd 4 International Connections

5 © 2004AARNet Pty Ltd 5 Topology

6 © 2004AARNet Pty Ltd 6 Operational Focus Measurement has a broad operational focus continually monitor performance of network troubleshoot networking issues – routing and paths – DOS attacks to manage and engineer upstream arrangements to effectively gauge QoS and latency on the network to measure SLAs redundant and distributed measurement

7 © 2004AARNet Pty Ltd 7 Edge measurements Delivery of service to the customer edge rather than to the region AARNet equipment (both router and monitoring machine) at customer premises Allows scaling of measurement infrastructure which was previously regionally based Allows quick centralised intervention

8 © 2004AARNet Pty Ltd 8 Traffic Accounting and Monitoring Flow based accounting has been in use since 1997 within AARNet Differentiate traffic into classes for billing and provide information for troubleshooting, network planning and security Scaling issues require accounting function to be moved to the edge of the network in AARNet3 – edge routers under AARNet control – some 40-50 servers will be deployed in the network

9 © 2004AARNet Pty Ltd 9 Edge Traffic Accounting and Monitoring Use anycast addressing for flow exports so data supplied to a central collector in an emergency Centralise reporting to a national based server Also provides AARNet with measurement device on network edge to improve performance monitoring Flow based systems have been impacted with increased probing/scanning activities over past 18 months

10 © 2004AARNet Pty Ltd 10 Flow measurements …even with extensive inbound packet filtering on Netbios and Windows file sharing inbound flows are twice that of outbound…

11 © 2004AARNet Pty Ltd 11 Flow based measurements Useful for detection of bots/infections A large number of inbound attacks seem to be the result of outbound traffic patterns Early warning to stem the flows quickly Also considering using some darknet space to monitor Not without problems with high flow rates creating large amounts of data – sometimes more than the traffic itself!

12 © 2004AARNet Pty Ltd 12 Other Passive measurements Peer route updates – now easily accessible through SNMP BGP through zebra/quagga SNMP derived traffic data to correlate General polling of network availability – interface status, peer status etc

13 © 2004AARNet Pty Ltd 13 Active Measurements ICMP – rate limiting and ACLs are affecting usefulness of ICMP measurements. UDP QoS – echoping with precedence set HTTP gets Multicast Beacon NLANR AMP project – building an Australian Mesh Traceroute and tcptraceroute On demand iperf and other measurements Plenty of tools available but little infrastructure for collation of measurements

14 © 2004AARNet Pty Ltd 14 Visualisation and presentation Many measurements but require quick visualisation of results Eg Smokeping graphs on http requests

15 © 2004AARNet Pty Ltd 15 Impartiality? Need systems which have confidence of users Home grown systems might not provide this comfort for various reasons May be running some appliances as a check and supplement against home spun solutions.

16 © 2004AARNet Pty Ltd 16 NLANR AMP NLANR AMP project – building an Australian Mesh Currently only one active AMPlet Machines ready for service http://watt.nlanr.net/active/amp-aarn/ New portable software available

17 © 2004AARNet Pty Ltd 17 The challenges ahead… Deployment of measurement infrastructure Central and redundant collation and presentation of results Distribution of systems Extensibility of tests as network grows Measuring high bandwidth applications across high latency links.

18 © 2004AARNet Pty Ltd 18 Thankyou!

Download ppt "© 2004 AARNet Pty Ltd Measurement in aarnet3 4 July 2004."

Similar presentations

NetServ Dynamic in-network service deployment Henning Schulzrinne (Columbia University) Srinivasan Seetharaman (Georgia Tech) Volker Hilt (Bell Labs)

NetServ Dynamic in-network service deployment Henning Schulzrinne (Columbia University) Srinivasan Seetharaman (Georgia Tech) Volker Hilt (Bell Labs)
Network Monitoring System In CSTNET Long Chun China Science & Technology Network.

Network Monitoring System In CSTNET Long Chun China Science & Technology Network.
Logically Centralized Control Class 2. Types of Networks ISP Networks – Entity only owns the switches – Throughput: 100GB-10TB – Heterogeneous devices:

Logically Centralized Control Class 2. Types of Networks ISP Networks – Entity only owns the switches – Throughput: 100GB-10TB – Heterogeneous devices:
Campus Networking Workshop

Campus Networking Workshop
IPv4 to IPv6 Migration strategies. What is IPv4  Second revision in development of internet protocol  First version to be widely implied.  Connection.

IPv4 to IPv6 Migration strategies. What is IPv4  Second revision in development of internet protocol  First version to be widely implied.  Connection.
 Australian Network Operators Group  Community for network operators who work with ISPs, content providers or other areas of the on-line industries.

 Australian Network Operators Group  Community for network operators who work with ISPs, content providers or other areas of the on-line industries.
COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.

COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.
Network Management Workshop intERlab at AIT Thailand March 11-15, 2008 Network Operations and Network Management.

Network Management Workshop intERlab at AIT Thailand March 11-15, 2008 Network Operations and Network Management.
Multi-Layer Switching Layers 1, 2, and 3. Cisco Hierarchical Model Access Layer –Workgroup –Access layer aggregation and L3/L4 services Distribution Layer.

Multi-Layer Switching Layers 1, 2, and 3. Cisco Hierarchical Model Access Layer –Workgroup –Access layer aggregation and L3/L4 services Distribution Layer.
QoS Solutions Confidential 2010 NetQuality Analyzer and QPerf.

QoS Solutions Confidential 2010 NetQuality Analyzer and QPerf.
UNITS meeting September 30, 2004 Network Security Roger Safian

UNITS meeting September 30, 2004 Network Security Roger Safian
IPv6 and Overlays EE122 Introduction to Communication Networks Discussion Section.

IPv6 and Overlays EE122 Introduction to Communication Networks Discussion Section.
Measurement and Monitoring Nick Feamster Georgia Tech.

Measurement and Monitoring Nick Feamster Georgia Tech.
Network Monitoring for Internet Traffic Engineering Jennifer Rexford AT&T Labs – Research Florham Park, NJ 07932

Network Monitoring for Internet Traffic Engineering Jennifer Rexford AT&T Labs – Research Florham Park, NJ 07932
NetFlow Analyzer Drilldown to the root-QoS Product Overview.

NetFlow Analyzer Drilldown to the root-QoS Product Overview.
COEN 252: Computer Forensics Router Investigation.

COEN 252: Computer Forensics Router Investigation.
Bandwidth DoS Attacks and Defenses Robert Morris Frans Kaashoek, Hari Balakrishnan, Students MIT LCS.

Bandwidth DoS Attacks and Defenses Robert Morris Frans Kaashoek, Hari Balakrishnan, Students MIT LCS.
TUNDRA The Ultimate Netflow Data Realtime Analysis Jeffrey Papen Yahoo! Inc.

TUNDRA The Ultimate Netflow Data Realtime Analysis Jeffrey Papen Yahoo! Inc.
Routing Measurements Matt Zekauskas, ITF Meeting 2006-Apr-24.

Routing Measurements Matt Zekauskas, ITF Meeting 2006-Apr-24.
Edge Protection 111. The Old World: Network Edge Core routers individually secured Every router accessible from outside “outside” Core telnet snmp.

Edge Protection 111. The Old World: Network Edge Core routers individually secured Every router accessible from outside “outside” Core telnet snmp.

Similar presentations

Ads by Google