Exchange Points, Route Servers and Registries

ahuja@umich.edu Exchange Points, Route Servers and Routing Registries

Abha Ahujaahuja@umich.edu

Objectives

To be able to explain what an exchange point isTo be able to explain why people use XPsTo understand why they are importantTo review some current exchange point designs

used todayTo think about how to set up an exchange point in

your environmentTo understand why Route Servers are usefulTo be able to explain what routing registries do

and why you should use one

Introduction to Exchange Points

a bit of historyWhat are they?Why use them?

A Bit of History…End of NSFnet - one major backbonemove towards commercial Internet

private companies selling their bandwidthneed for coordination of routing

exchange between providers Traffic from ISP A needs to get to ISP B

Routing Arbiter project created to facilitate this

What is an Exchange Point?Network Access Points (NAPs)

established at end of NSFnet Major providers connect their

networks and exchange trafficHigh-speed network or switchSimple concept - where providers

come together to exchange traffic

Exchange points

ISPs connect at Exchange Points or Network Access Points

to exchange traffic

XP 1 XP 2

Conceptual Diagram of XP

Customer Router

Exchange Point Medium

Why use an Exchange Point?Routers are attached to exchange trafficMLPA, bilateral, customer/transit

relationshipsExamples in U.S:

AADS Mae-East/Mae-West Pacbell PAIX

Why XPs?Multiple service providersEach with Internet connectivity

InternetInternet

Why XPs?

Is not cost effectiveBackhaul issue causes cost to both

partiesInternetInternet

Why XPs?Domestic Interconnection

InternetInternet

Exchange Structures layer 2 models (the NAP or IX)

tailored bilateral policies

Why use an Exchange Point?Peering

Shared medium vs. point-to-point Shared

can exchange traffic with multiple peers at one location via one interface

Point-to-Pointfor high volumes of traffic

The Need for Exchanges

Why use an Exchange Point?KEEP LOCAL TRAFFIC LOCAL!!!

ISPs within a region peer with each other at local exchange

No need to have traffic go overseas only to come back

Exchange Point DesignEthernetFDDIATMDesigns range from the simple to the

complex Fddi gigaswitches to ethernet switches

When can an XP be a bad thing?

Too many exchange points in one region competing exchanges defeats the

purposeBecomes expensive for ISPs to

connect to all of them

Exchange Point policies/politics

AUPsNobody is obliged to peerdon’t spoof

Exchange Point etiquetteDon’t point defaultThird-party next-hopFilter! Filter! Filter!

Or do reverse path check

Exchange Point examples

AADS (Ameritech) in Chicago, USA ATM switches

Pacbell in California, USA trunked (geographically diverse) ATM

switchesPAIX in Palo Alto, California, USA

Fddi gigaswitchesMAE West in California, USA

trunked Fddi gigaswitches

Exchange Point examplesLINX in London, UK

Ethernet switchesAMS-IX in Amsterdam

Ethernet switchesNSPIXP-2 in Tokyo, Japan

Ethernet switches

Features of XPsRedundancy

multiple switchessupport

NOC to provide 24x7 support for problems at the exchange

DNS, Routing Registries, NTP servers servers often colocated at these

centralized points

Features of XPslocation

neutral colocation facilitiesaddress spaceASRoute serversstatistics

More info about IXshttp://www.ep.nethttp://www.rsng.net

Things to think about...Do you need to be at an Exchange

Point?Would you want to start an

Exchange Point?Would keeping local traffic local

benefit your ISP?Would your environment (politically,

etc.) support an Exchange Point?

DiscussionHow would you build an exchange

point in your environment?Who would connect?What services would you provide?What policies would you enforce?What does your environment look

like? Is it feasible to set up an XP?

Route Server BackgroundWhat is a Route Server?Features of a Route ServerAdvantages of using a Route ServerExchange Point Design with a Route

Server

What is a Route Server?Unix box which runs Route Server

softwareExchanges routing information with

service provider routers at a NAP based on policy

Does not forward packets

Route Server at an XP

NAP R3R2

ROUTE SERVER

Features of a Route ServerScalable RoutingSimplified Routing Processes on ISP

RoutersInsertion of RS Autonomous System

Number in the Routing Path

Features of a Route Server (con)

Handling of Multi-Exit DiscriminatorRoute Flap Dampening MechanismUses Policy registered in IRR

Diagram of N-squared Mesh

With the Route Servers

RS Exchange Point Routing Flow

TRAFFIC FLOW

ROUTING INFORMATION FLOW

Advantages of Using a Route Server

Scalable RoutingSeparation of Routing and

ForwardingSimplify Routing Configuration

Management on ISPs routersEnforce Good Routing Engineering

Advantages of Using a Route Server (con)

PREVENTS SPREAD OF BOGUS ROUTING INFORMATION!

Peering with the Route Servers

Any ISP attached to a NAP can peer with the Route Servers

ISP must register their policy in the Internet Routing Registry

Must use BGP

RSdRoute Server DaemonOriginally developed by ISI during RA

projectDeveloped from GateDMulti-vieweBGP onlyUses import-from only

Things to think about...How would using a route server

benefit you?Consider setting one up yourself for

your community, or talk to Merit...

Route Server Referenceshttp://www.rsng.nethttp://www.merit.edu/ipmahttp://www.isi.edu/ra

What is the Routing Registry? contact names, email addresses and

telephone numbers for an AS routing policy for an AS (what other

ASes does it connect to, which routes do they exchange)

information about routes (most important is which AS originates the route)

several other types of information

What is the Routing Registry?Distributed database collectively

known as Internet Routing Registry (IRR) RADB, RIPE, CW, ANS, Canet

Providers register routing policyUsed for planning, debugging and

generating backbone router configshttp://www.radb.net/

What is the Routing Registry?Can be used by anyone worldwide

debugging configuring engineering routing addressing

What happens if I don’t use a database?

Routing Horror Stories AS7007 announcing bogus routes

So, I need to use the database because…..

Filters generated off the IRR protect against inaccurate routing information

Makes troubleshooting and debugging easier

Keep track of policySecurityFilter! Filter! Filter!!

Why Bother with all of this?View of global routing policy in a single

cooperatively maintained databaseto improve integrity of Internet’s

routinggenerate router configs

protect against inaccurate routing info distribution

verification of Internet routing

Why Bother using the database (con)

Many providers require that you register your policy (or they won’t peer with you)

Policy Languagesexpress policy with aut-num objects,

route objects, AS-MACROScurrently RIPE-181moving to RPSL

more policy control

What is RPSL?Routing Policy Specification

LanguageDesigned to replace current

language (RIPE-181)Enhanced and more generalized

How does the language work?

Object-orientedExpress policy in objects

person mntner role aut-num route

Can make sets of objects

Describing PolicyUse the language to describe your

relationship with other Peers routes importing routes exporting specific policies

interfaces, MEDs, communities

Querying the Databasewhois -h whois.radb.net AS237whois -h whois.radb.net MAINT-

AS237whois -h whois.radb.net

198.108.60.0

How to Register your IRR policy

Register one or more maintainersRegister AS and policy informationRegister RoutesDescribes your import and export

policy At the very least, provides contact

information

Register your maintainer

mntner: MAINT-AS237descr: Maintainer for AS 237admin-c: Abha Ahujaupd-to: ahuja@merit.edumnt-nfy: ahuja@merit.edumnt-by: MAINT-AS237auth: MAIL-FROM ahuja@merit.educhanged: ahuja@merit.edu 941219source: RADB

Register your Routes

route: 35.0.0.0/8descr: Merit Network, Inc.descr: University of Michigandescr: 4251 Plymouth Road, Suite Cdescr: Ann Arbordescr: MI 48105-2785, USAorigin: AS237mnt-by: MAINT-AS237changed: ahuja@merit.edu 931113source: RADB

Register your aut-numDescribe your policy!Peering relationshipsimport-fromexport-tocan use AS-sets

Register your aut-num (con)aut-num: AS237as-name: MICHNET-ASNdescr: MichNet Primary ASdescr: Merit Network Inc.descr: Ann Arbor, MI USAas-in: AS3561 accept ANYas-out: AS3561 announce AS237admin-c: JMD24tech-c: JMD24notify: MCI-notify@merit.edumnt-by: MERIT-MAINT-MCIchanged: sobo@merit.edu 980202source: CW

Register your aut-num (con)

as-set: AS237:AS-CUSTOMERSdescr: ASs for which MichNet provides descr: transit servicemembers: AS229,AS237,AS238,AS7016,AS10330tech-c: MichNet NOCadmin-c: MichNet NOCremark: transit ASs of MichNetnotify: routing-notify@merit.edumnt-by: MAINT-AS237changed: ahuja@merit.edu 990222source: RADB

Router ConfigurationCurrently configs by hand - slow and

inaccurateConfiguring routers using the IRR

lots of tools available!!! RtConfig by ISI

route and Aspath filters.Import and export

Filtering is a good thing...

Router ConfigurationCurrently configs by hand - slow and

inaccurateConfiguring routers using the IRR

lots of tools available!!!Filtering is a good thing... Plans for some routers to support

RPSL directly

Router Configuration

GRF 400

IRR Database Server

Configuration Machine

How do I use the IRR to generate configs?

Tools available to generate config files gated rsd Cisco

RAToolSet http://www.isi.edu/ra/RAToolSet RtConfig Aoe, Roe

RIPE181 whois queries, flags, objects RPSL whois queries, flags, objects Complete support for RAToolSet

queries (fast!) Cisco configuration and management

interface Complete automated mirroring support

What does the RADB support now?

How do I participate?Set up your own registry

Private for your ISP? Community for the region? Download the software (IRRd)

Use the RADB

Things to think about...How would you register your policy?

Try to describe it in an aut-num objectHow would registering your policy

benefit you? The community?

Resourceshttp://www.radb.nethttp://www.irrd.nethttp://www.isi.edu/ra/rpshttp://www.isi.edu/ra/RAToolSethttp://www.ietf.org/html.charters/rps-

charter.htmlhttp://www.rsng.nethttp://www.ripe.net

SpecificsRegister your policy in the RADB

Merit can assist (db-admin@radb.net)Questions? Need help?

irrd-support@merit.edu db-admin@radb.net

Exchange Points, Route Servers and Registries

Documents

Scaling AMS-IX Route Servers · Scaling AMS-IX Route Servers University of Amsterdam, Security and Networking Engineering David Garay August 18, 2019 Supervisors (AMS-IX): Stavros

TBI Registries and Trauma Registries: State by StateTBI Registries and Trauma Registries: State by State . State TBI Registry Trauma Registry Other Information 1. Alabama ... traumatic

Dynamic P2P with BGP Route Servers-2.pdf

Multinational Registries: Challenges and Opportunities...Multinational Registries: Challenges and Opportunities. White Paper, addendum to Registries for Evaluating Patient Outcomes:

Network Explorations with Qrator Radar...Qrator)Labs) Network Explorations with Qrator Radar Retrieving)Route)Policy) Common)prac@ces) 1. Route)Registries) a. Outdated) b. Incomplete)

Route Servers: What, Why, and How? Andy Davidson Allegro Networks / LONAP August 2014 Peer 2.0/SFO

Dual Use Registries

Sex Offender Registries

Route Server Security & the Role of IXPs · •Advantages of route servers •Why security matters •State of route servers around the world and ... •Misconfguratons are easy to

Internet Routing Registries

Registries: Clinical Perspective

XML Registries Source: Java TM API for XML Registries Specification

ROUTE FILTERING WITH RPKI · The Resource Certification (RPKI) system allows Local Internet Registries (LIRs) to request a digital certificate listing the Internet number resources

Metadata Registries (MDR)

Peering at Peerings: On the Role of IXP Route Servers · Peering at Peerings: On the Role of IXP Route Servers Philipp Richter TU Berlin prichter@inet.tu-berlin.de Georgios Smaragdakis

Exchange Points, Route Servers and Routing Registries1 Exchange Points, Route Servers and Registries Abha Ahuja ahuja@wibh.net

North American Association of Central Cancer Registries ... · North American Association of Central Cancer Registries, Inc. ... The North American Association of Central Cancer Registries

Deeds Registries Act - gimmenotesgimmenotes.co.za/.../12/LPL4804-deeds-registries-act_47_of_1937.pdf · DEEDS REGISTRIES ACT 47 OF 1937 ... Deeds Registries Amendment Act, ... the

Route Servers, · Arnaud FENIOUX - FranceIX @afenioux #RIPE72 2016-05-25. Route Servers Definition 2 - Multi-Lateral Peering Exchange - Available at all locations of an IXP - Members

Specialized Registries:2015 – 2017 Public Health Measure · 16.02.2016 · Specialized Registries Described (2015 – 2017) Specialized Registries. Case Reporting • ‘‘reportable