MANRS Implementation Guides

Slides:

Advertisements

Similar presentations

RPKI Certificate Policy Status Update Stephen Kent.

Advertisements

Best current operational practices (BCOP) Richard Jimmerson.

This project is funded with support from the European Commission " Legal disclaimer: the contents of this material is the sole responsibility of implementing.

An Operational Perspective on BGP Security Geoff Huston GROW WG IETF 63 August 2005.

QUALITY OF SERVICE TRAINING PROGRAMME Jaroslaw Ponder Coordinator, Europe Region 1.

INACOL National Standards for Quality Online Teaching, Version 2.

OE 3B Roles & Responsibilities New GSMP V15 26 th August 2009.

Scaling IXPs Scalable Infrastructure Workshop. Objectives  To explain scaling options within the IXP  To introduce the Internet Routing Registry at.

1 APNIC support for Internet development APT/PITA Regional Meeting on ICT for the Pacific August 2004, Nadi, Fiji Paul Wilson

APPROVED JULY 2014 GACAG Overview APPROVED JULY 2014 Role of GACAG GACAG Overview Priorities and position statements GACAG Priorities GACAG's.

UN CEFACT Single Window Recommendation Simplifying International Trade Gordon Cragge Chair – International Trade Procedures Working Group (TBG 15 of UN.

Building a More Trusted and Secure Internet RIPE 70, May

Caribbean Telecommunications Union. 6th Caribbean Internet Forum (CIF), Port of Spain, October Caribbean Telecommunications Union Caribbean Internet.

Management of Internet Resources ITU Workshop on Developing a Policy and Regulatory Framework for Developing Economies of the Pacific 1 December 2003 Suva,

ISOC & The Internet Ecosystem Shernon Osepa Manager Regional Affairs Latin America & the Caribbean CANTO Oranjestad Aruba 16 July 2013.

How can we work together to improve security and resilience of the global routing system? Andrei Robachevsky.

Rob Blokzijl. RIPE 61 Rome, November RIPE Réseaux IP Européens Rob Blokzijl RIPE Chairman

Securing BGP Bruce Maggs. BGP Primer AT&T /8 Sprint /16 CMU /16 bmm.pc.cs.cmu.edu Autonomous System Number Prefix.

A BCOP document: Implementing MANRS Job Snijders (NTT) Andrei Robachevsky (ISOC)

Peering Strategies for Operators Building critical mass of peers.

Identifying, Evaluating and Prioritising Urban Adaptation Measures.

Benefits and Value of an IXP The IXP Value Proposition.

1 Internet Society Collaborative Security & MANRS ENOG 10 – 14 October 2015, Odessa Maarit Palovirta

© GEO Secretariat Work Plan Management Update GEO Work Plan Symposium 30 April – 2 May 2012.

BCOP Taskforce Administrative Matters

Webinar: How to Apply Legal Project Management to Deals

ATIS’ Machine-to-Machine (M2M) Activity

NDMC NASA –JPL Project Activities Update: Objectives and Deliverables

Technical Info, BCOP, DNSSEC Coordination, ION Conferences

Suggestions for Next Steps

Ian Bird GDB Meeting CERN 9 September 2003

Best Current Operational Practice for operators: IPv6 Prefix Assignment for end-customers – persistent vs non-persistent and what size to choose …known.

HSCN Supplier Workshop – 19th May 2016

Internet Routing Health Measurement Bar BoF

Montenegro Internet eXchange Point (MIXP) – a success story

RIPE Accountability Task Force Update – RIPE 75

We Care About Data Quality at IXPs

Work Plan Management GEO Work Plan Symposium 30 April – 2 May 2012

Pega 9/14/2018 8:48 AM Definition of Done = ready for PO acceptance

Description of Revision

APNIC Trial of Certification of IP Addresses and ASes

Internet Interconnection

CJK NGN WG (Proposal for drafting group on IPTV Standards)

Route Servers: An AMS-IX Introspective

Working together to improve routing security for all

Overview of the GMUS-2 work plan UN FAO, Rome, Italy February 21-23, 2012 Daniel Kunkel.

Chapter 8: Monitoring the Network

MANRS IXP Partnership Programme

Measuring routing (in)security

Propuestas Concepción 2018

Internet Technological Evolution and the Role and Impact of ICANN

MANRS for IXPs Why we did it? What did we do?

Data Security in Local Networks using Distributed Firewalls

Project Information Management Jiwei Ma

GSC: Standardization Advancing Global Communications

Improving global routing security and resilience

Peering Security DKNOG, March 14-15, 2019 Susan Forney and Walt Wollny

APNIC’s Engagement on Security

ICT Policy سياسات تكنولوجيا المعلومات والاتصالات

GSC: Standardization Advancing Global Communications

FIRST How can MANRS actions prevent incidents .

Internet eXchange Point Database Netnod Meeting– 2018

The Internet Technical Community

ATIS’ Machine-to-Machine (M2M) Activity

prop-025-v001 Proposal on IPv6 IRR service at APNIC

Amreesh Phokeer Research Manager AfPIF-10, Mauritius

An Application Programming Interface for Interconnection Services

Validating MANRS of a network

An Application Programming Interface for Interconnection Services

IXP FilterCheck A New Route Analysis Tool for IXPs

Presentation transcript:

MANRS Implementation Guides 21 May 2019 MANRS Implementation Guides RIPE BCOP Task Force Kevin Meynell Manager, Technical & Operational Engagement meynell@isoc.org Presentation title – Client name

What is the MANRS Initiative? Mutually Assured Norms for Routing Security (MANRS) promotes routing security best practices Aims to mitigate route leaks, route hijacks and spoofing that have been a growing problem on Internet MANRS defines four simple but concrete actions to improve Internet security and reliability: Filtering – Prevent propagation of incorrect routing information (CIDR Report & BGPStream) Anti-spoofing – Prevent traffic with spoofed source IP addresses (CAIDA Spoofer) Coordination – Facilitate global operational communication (Whois & PeeringDB) Global Validation – Facilitate validation of routing information on a global scale (IRR & RPKI) MANRS is based on existing tools and techniques, and established industry best practices (RIPE community has been an important source of input and review) Two significant categories of MANRS participants: Network Operators and IXPs See https://www.manrs.org for more information

MANRS Implementation Guide for Network Operators The MANRS Implementation Guide for Network Operators was published in January 2017 Provides technical and configuration information on how to deploy each of the MANRS Actions Authored by David Freedman, Brian Foust, Barry Greene, Ben Maddison, Andrei Robachevsky, Job Snijders, Sander Steffann, Will van Gulik, Jakob Heitz, Aris Lambrianidis, Kevin Meynell and Massimiliano Stucchi Abridged version was published as ripe-706 Looking for volunteers to review and possibly update this document

MANRS Implementation Guide for IXPs Looking to develop similar Implementation Guide for MANRS IXP Actions MANRS IXP Actions: Action 1: Use route server to validate route announcements from peers (using IRR and/or RPKI Action 2: Encouraging IXP members to employ MANRS (via capacity building, discounting, acclaim) Action 3: Layer 2 filtering Action 4: Ensure every member is contactable and responsive in mitigating network incidents Action 5: Provide monitoring and debugging tools for routing incidents/anomalies (e.g. Looking Glass) Something similar needed for IXPs on how to implement these Actions? ISOC can provide editor (me), but any subject matter experts willing to contribute content towards this? Can also be submitted as RIPE Document

Kevin Meynell meynell@isoc.org