AutoMAC: A Tool for Automating Network Moves, Adds, and Changes Christopher J. Tengi Princeton University.

Slides:



Advertisements
Similar presentations
CCNA3: Switching Basics and Intermediate Routing v3.0 CISCO NETWORKING ACADEMY PROGRAM Chapter 6 – Switch Configuration Switch Configuration Starting the.
Advertisements

Virtual LANs.
1 Dynamic DNS. 2 Module - Dynamic DNS ♦ Overview The domain names and IP addresses of hosts and the devices may change for many reasons. This module focuses.
KX-NS1000 Initial Set Up For step by step : 16 May,
DHCP Dynamic Host Configuration Part 7 NVCC Professional Development TCP/IP.
University of Michigan Residence Halls Networking In-Room Student Registration System
SUMMER TRAINING REPORT PRESENTATION By Mohammed Al_Ibrahim
DHCP Dynamic Host Configuration Protocol by: Kirk Z. Moreno.
© 2003, Cisco Systems, Inc. All rights reserved. FWL 1.0— © 2003, Cisco Systems, Inc. All rights reserved.
Subnetting.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.
IIS and PWS. What is IIS and PWS? Microsoft Internet Information Server (IIS) and Peer Web Services (PWS) enable Windows NT servers with the ability to.
Network Registration and User Tracking An Open Source Approach Mark Berman Ashley Frost Williams College.
1 Chapter Overview Understanding Windows Name Resolution Using WINS.
Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.
© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—4-1 LAN Connections Using a Cisco Router as a DHCP Server.
DHCP Server © N. Ganesan, Ph.D.. Reference DHCP Server Issues or leases dynamic IP addresses to clients in a network The lease can be subject to various.
Ch 8-3 Working with domains and Active Directory.
Lesson 3 Introduction to Networking Concepts Lesson 3.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
Network Architecture and Protocol Concepts. Network Architectures (1) The network provides one or more communication services to applications –A service.
Module 7: Configuring TCP/IP Addressing and Name Resolution.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 4: Addressing in an Enterprise Network Introducing Routing and Switching in the.
Name Resolution Domain Name System.
Virtual Local Area Networks. Should I V-LAN? 1. Security V-LANs can restrict access to network resources.
Implementing Dynamic Host Configuration Protocol
Pc Naming Configuration 1.WEB REGISTER 2.FIXNAME 3.MCAFEE AGENT SETUP ITC Training: Session 2.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 6 Switch Configuration.
Dynamic and Secure DNS Tianyi Xing.  Establish a dynamic and secure DNS service in the mobicloud system.
ITIS 1210 Introduction to Web-Based Information Systems Chapter 23 How Web Host Servers Work.
Attack Lifecycle Many attacks against information systems follow a standard lifecycle: –Stage 1: Info. gathering (reconnaissance) –Stage 2: Penetration.
Chapter Three Network Protocols By JD McGuire ARP Address Resolution Protocol Address Resolution Protocol The core protocol in the TCP/IP suite that.
Dynamic Host Configuration Protocol and IP Address Assignment CIS 238 Oakton Community College.
Guide to Linux Installation and Administration, 2e1 Chapter 2 Planning Your System.
Author: Bill Buchanan. 1. Broadcast: What is the MAC address of this network address? 2. Requested host: All the hosts read the broadcast and checks.
Pack-it Technology Highly versatile Internet connectivity solution for non-Internet enabled devices. Seamless interface with RS232, Ethernet, switches,
Data Communications and Networks Chapter 5 – Network Services DNS, DHCP, FTP and SMTP ICT-BVF8.1- Data Communications and Network Trainer: Dr. Abbes Sebihi.
BAI513 - PROTOCOLS DHCP BAIST – Network Management.
Resnet Enhancements and Directions Part 1, Bruce Campbell, Information Systems and Technology.
Networks and Protocols CE Week 3a. DHCP, ARP, DNS, TCP/UDP.
DHCP Mike O’Connor Eric Tallman Matt Yasiejko. Overview DHCP defined DHCP defined How it works How it works Installation Installation dhcpd.conf dhcpd.conf.
DHCP Meha Modi. “Dynamic Host Configuration Protocol” Automatically assigns IP addresses to devices (I.e. hosts) on your network. -Prevents to enter data.
2008 D-Link Switch Training. 2 2 DHCP Relay Agent Information (Option 60/61)
ECMM6018 Enterprise Networking for Electronic Commerce Tutorial 7 Dynamic Host Protocol.
DHP Agenda: How to Access Web Interface of the DHP-1320 on Access Point Mode How to Access Web Interface of the DHP-1320 on Router Mode How to Change.
STORE AND FORWARD & CUT THROUGH FORWARD Switches can use different forwarding techniques— two of these are store-and-forward switching and cut-through.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Connecting to the Network Introduction to Networking Concepts.
Computing Facilities CERN IT Department CH-1211 Geneva 23 Switzerland t CF Automatic server registration and burn-in framework HEPIX’13 28.
Installing a Network Printer. Network printers work much like any other printer except the data flow is through a network. This means the printer must.
Switching Topic 2 VLANs.
Sample DNS configurations. Example 1: Master 'master' DNS and is authoritative for this zone for example.com provides 'caching' services for all other.
DHCP as server. What is Dynamic Host Configuration Protocol (DHCP)? Dynamic Host Configuration Protocol (DHCP) is network protocol for automatically assigning.
1 VLANs Relates to Lab 6. Short module on basics of VLAN switching.
1 Chapter 8: DHCP in IP Configuration Designs Designs That Include DHCP Essential DHCP Design Concepts Configuration Protection in DHCP Designs DHCP Design.
This courseware is copyrighted © 2016 gtslearning. No part of this courseware or any training material supplied by gtslearning International Limited to.
LAN Switching Virtual LANs. Virtual LAN Concepts A LAN includes all devices in the same broadcast domain. A broadcast domain includes the set of all LAN-connected.
Cisco Routers Routers collectively provide the main feature of the network layer—the capability to forward packets end-to-end through a network. routers.
IST 201 Chapter 11 Lecture 2. Ports Used by TCP & UDP Keep track of different types of transmissions crossing the network simultaneously. Combination.
Virtual Local Area Networks In Security By Mark Reed.
Pass4itsure Cisco Dumps
Instructor Materials Chapter 2: Scaling VLANs
Dynamic Host Configuration Protocol
BY: SALMAN 1.
Dynamic Host Configuration Protocol
IFIP-UNU ADVANCED COURSE ON NETWORKING AND SECURITY Module II-Wireless Communications Section 5 Access Points.
BY: SALMAN.
Examcollection VCE Download
Virtual Local Area Networks (VLANs) Part I
Virtual LANs.
Chapter 2: Scaling VLANs
Presentation transcript:

autoMAC: A Tool for Automating Network Moves, Adds, and Changes Christopher J. Tengi Princeton University

What’s the problem? Over 1500 hosts Over 100 IP subnets/VLANs 672 user switch ports (currently) 388 wall boxes 1072 patch points

1072 Patch Points

Why subnets? Why not a flat network? Broadcast domains User segregation Access Control

How we used to do it host registration requests Manual host database entry Manual patch installation Switch re-configuration

So, what’s wrong with that? Users never get it right the first time Manual host entry is prone to errors Patch panel diving is a pain Did you remember to set the port VLAN? Did you save the switch config?

What we wanted Automation! Less user interaction :-) Better accuracy Static switch configuration

What we did Automate the host database Automate switch port VLAN assignment Keep everyone in the right place

Automating the host database Move to a web-based registration system Use a daemon to process requests Have the daemon rebuild all the database extracts

Automating VLAN assignment No more manual switch configuration Any port, any VLAN, any time Use the host MAC address as the key Registration VLAN for unknown hosts

The nitty-gritty

Tools we used Existing host database FreeRADIUS NetReg

Tools we used - Host DB Originally only for administrators Very little field validation Input through a ‘vi’ -based interface Extracts generated manually with ‘make’

Tools we used - FreeRADIUS Config files generated from Host DB Originally implemented for Cisco APs Our user switches could “speak” RADIUS

Tools we used - NetReg Web-based data input Two to choose from  Carnegie Mellon University  Southwestern University

Integration: Tying it all together

Integration - Host database Web registration form Field validation on the form Automate request processing

Integration - RADIUS server Use MAC address to lookup VLAN Add “tunnel” A/V pairs to accept response Unknown MAC addresses are rejected

Integration - Hardware First, get a vendor to write code for you Why not 802.1X? Known hosts always land on the right VLAN  Locally registered  Mobile IP Unknown hosts land on the registration VLAN

Integration - NetReg Server Listening on the registration VLAN  Answers all DHCP requests  Specifies itself as DNS server/gateway  Answers any HTTP request Requires a CS username/password Presents the host registration form Sends the completed form for processing

Future Enhancements Virus/patch scanning on the registration VLAN Automatic isolation of newly-infected hosts Expand registration VLAN concept to b

Conclusions Automation is a good thing Open Source Software is invaluable Sometimes you can get what you want

Acknowledgements Princeton CS Technical Staff Jon Finke Rob Kolstad

Availability

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.