Campus Case Studies in Implementing Advanced

Download Report

Transcript Campus Case Studies in Implementing Advanced 

Campus Case Studies in
Implementing Advanced Services
Cas D’Angelo
[email protected]
Preparing for Advanced Services
•
•
•
•
•
Gigabit ethernet migration
Gateway routers
Performance testing TCP tuning
Multicast
Security
Gigabit ethernet migration
• Georgia Tech has installed 100+ ELANS
• Implemented as a standards based VLAN
• New standards such as 802.1q now
available
Gigabit ethernet migration
•
•
•
•
•
Gigabit ethernet - supports large MTU
Wire speed routing
Trying to go with IP only backbone
Never routed IPX across backbone
Appletalk is the next protocol to be
eliminated
Gigabit ethernet migration
• Building design moving from ATM attached
ethernet switches to Gigabit ethernet
attached 10/100 switches
Gateway routers
• Redundant routers
Internet 1
PeachNet
ATM OC-12
SoX
ATM OC-12
Gateway 2
Router
Gateway 1
Router
Gigabit Ethernet
Gigabit Ethernet
Backbone (other campus routers)
Gateway routers
• OSPF load balancing for backbone
• Packets alternate between routers
• Both advertise default route originate
Gateway routers
•
•
•
•
BGP used to control ISP traffic
Prefer SoX routes
AS padding for Internet 1 traffic
Arrangement with SoX to support large
MTU
Performance testing - TCP tuning
• Iperf: http://dast.nlanr.net/Projects/Iperf/
Tools for experimenting with bandwidth
throughput and adjusting TCP window sizes
• Nettest: http://www-itg.lbl.gov/nettest/
A secure, real-time network monitoring
framework which includes Iperf
Performance testing - TCP tuning
• Autobuf:
http://dast.nlanr.net/Features/Autobuf_v1.0/
An auto tuning-enabled FTP client and
server
Multicast
• Vendors still working out problems
• Multivendor interoperability leaves finger
pointing problems
• Within last few months have fought with
mbgp community issue
• Great tool: Access Grid + Multicast Beacon
http://dast.nlanr.net/Projects/Beacon/
Security
• Border data - Tracking flows at egress to
campus
• Research machines are target for DOS, must
be made secure
• Firewalls are being installed to ease system
administration and for contracts
Questions
• Cas D’Angelo, Network Manager
Georgia Institute of Technology
Office of Information Technology
[email protected]
• http://bart.ns.gatech.edu/cw