DEDS Migration to secured FTP For discussion with GNP Industry.

Slides:



Advertisements
Similar presentations
Caltech Proprietary Videoconferencing Security in VRVS 3.0 and Future Videoconferencing Security in VRVS 3.0 and Future Kun Wei California Institute of.
Advertisements

Secure File Transfer Protocol (SFTP) With Secure Copy (SC) What is a Secure File Transfer Protocol with Secure Copy???
1 DEDS Migration CPS IT Industry Meeting Revised for follow-up call
1 Automated SFTP Windows and SUN Linux and SUN. 2 Vocabulary  Client = local=the machine generating the SFTP request  Server = remote = the machine.
The VeriTrak Enterprise Application Created for The Verification Company By CTO Source, Inc. This presentation provides an overview of the system and links.
Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.
WSUS Presented by: Nada Abdullah Ahmed.
Setting Up a Virtual Private Network Chapter 9. Learning Objectives Understand the components and essential operations of virtual private networks (VPNs)
1 Web Servers / Deployment Alastair Dawes Original by Bhupinder Reehal.
Introducing Web ViewPoint V5 AAH
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
Content Overview Update Process Additional Tools.
© Tally Solutions Pvt. Ltd. All Rights Reserved 1 Data Synchronisation in Shoper 9 January 2010.
Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.
Citrix ® Secure Gateway Phil Montgomery Senior Product Manager Citrix Products and Services October 2001.
ManageEngine TM Applications Manager 8 Monitoring Custom Applications.
JOIN A COMMUNITY OF 80,000 E-COMMERCE SITES WORLDWIDE.
Barracuda Networks Confidential1 Barracuda Backup Service Integrated Local & Offsite Data Backup.
Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.
FTP. SMS based FTP Introduction Existing System Proposed Solution Block Diagram Hardware and Software Features Benefits Future Scope Conclusion.
Getting Connected to NGS while on the Road… Donna V. Shaw, NGS Convocation.
FTP File Transfer Protocol. Introduction transfer file to/from remote host client/server model  client: side that initiates transfer (either to/from.
Accessing the Internet with Anonymous FTP Transferring Files from Remote Computers.
Hosted Exchange The purpose of this Startup Guide is to familiarize you with ExchangeDefender's Exchange and SharePoint Hosting. ExchangeDefender.
IGEL UMS Product Marketing Manager October 2011 Florian Spatz Universal Management Suite.
Chapter 7: Using Windows Servers to Share Information.
IT 424 Networks2 IT 424 Networks2 Ack.: Slides are adapted from the slides of the book: “Computer Networking” – J. Kurose, K. Ross Chapter 2: Application.
DEDS Migration to a New Architecture. Impact for Openreach CPs Guide for CPs using DEDS for downloading/uploading files.
Csci5233 Computer Security1 Bishop: Chapter 27 System Security.
IMPLEMENTING F-SECURE POLICY MANAGER. Page 2 Agenda Main topics Pre-deployment phase Is the implementation possible? Implementation scenarios and examples.
Portable SSH Brian Minton EKU, Dept. of Technology, CEN/CET)‏
| nectar.org.au NECTAR TRAINING Module 5 The Research Cloud Lifecycle.
Immunization Data Exchange (BYIM v 2.0*1) Transporting the Message to the IIS Nathan Bunker & John Parker Updated 08/05/2011.
FTP Server and FTP Commands By Nanda Ganesan, Ph.D. © Nanda Ganesan, All Rights Reserved.
FTP File Transfer Protocol. Computer Center, CS, NCTU 2 FTP  FTP File Transfer Protocol Used to transfer data from one computer to another over the internet.
Module 11: Implementing ISA Server 2004 Enterprise Edition.
Computer Emergency Notification System (CENS)
2  Supervisor : MENG Sreymom  SNA 2012_Group4  Group Member  CHAN SaratYUN Sinot  PRING SithaPOV Sopheap  CHUT MattaTHAN Vibol  LON SichoeumBEN.
Hands-On Microsoft Windows Server Implementing Microsoft Internet Information Services Microsoft Internet Information Services (IIS) –Software included.
Communication Systems The Internet The largest wide area network in the world. It is made up of thousands of linked networks. What.
Remote Controller & Presenter Make education more efficiently
Computer Networking From LANs to WANs: Hardware, Software, and Security Chapter 13 FTP and Telnet.
REMOTE LOGIN. TEAM MEMBERS AMULYA GURURAJ 1MS07IS006 AMULYA GURURAJ 1MS07IS006 BHARGAVI C.S 1MS07IS013 BHARGAVI C.S 1MS07IS013 MEGHANA N. 1MS07IS050 MEGHANA.
1 Installing and Maintaining ISA Server Planning an ISA Server Deployment Understand the current network infrastructure. Review company security.
Networking in Linux. ♦ Introduction A computer network is defined as a number of systems that are connected to each other and exchange information across.
2.1 © 2004 Pearson Education, Inc. Exam Designing a Microsoft ® Windows ® Server 2003 Active Directory and Network Infrastructure Lesson 2: Examining.
 Load balancing is the process of distributing a workload evenly throughout a group or cluster of computers to maximize throughput.  This means that.
FTP File Transfer Protocol Graeme Strachan. Agenda  An Overview  A Demonstration  An Activity.
Linux Services Configuration
Enterprise Messaging & Collaboration. e-Interact Modules.
VIRTUAL HOSTING WITH PureFTPd And MYSQL (Quota And Bandwidth Management) BY Odoh Kenneth Emeka Sun Yu Patrick Appiah.
FTP COMMANDS OBJECTIVES. General overview. Introduction to FTP server. Types of FTP users. FTP commands examples. FTP commands in action (example of use).
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter One Introduction to Exchange Server 2003.
File Transfer Protocol (FTP) CIS 130. File Transfer Protocol (FTP) Copy files from one internet host (server) to your account on another host –Need domain.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 6: Planning, Configuring, And Troubleshooting WINS.
Integrity Check As You Well Know, It Is A Violation Of Academic Integrity To Fake The Results On Any.
SSH. 2 SSH – Secure Shell SSH is a cryptographic protocol – Implemented in software originally for remote login applications – One most popular software.
Chapter 7: Using Network Clients The Complete Guide To Linux System Administration.
1 E-Site - FTP Services Setup / install guide. 2 About FTP services can run on any desired port(s) Runs as a windows service Works for all sites installed.
L’Oreal USA RSA Access Manager and Federated Identity Manager Kick-Off Meeting March 21 st, 2011.
Getting Connected to NGS while on the Road…
Chapter 7: Using Windows Servers
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 6: Planning, Configuring, And Troubleshooting WINS.
FTP - File Transfer Protocol
AlwaysOn Availability Groups 101
Telnet/SSH Connecting to Hosts Internet Technology.
Lab 7 - Topics Establishing SSH Connection Install SSH Configure SSH
Configuring Internet-related services
Getting Connected to NGS while on the Road…
Web Servers / Deployment
Presentation transcript:

DEDS Migration to secured FTP For discussion with GNP Industry

Introduction  Communication Providers (CP) connect into BT (DEDS) using ISDN/VPN setups and use FTP to exchange Single Line Geographical Number port requests/response files.  CP uploads and downloads the Number port request and response files from DEDS server if CP is gaining the number.  DEDS uploads and downloads the Number port request and response files from CP server if BT is gaining the number. 2

3 Limitations of current setup ISDN access to DEDS is slow due to limited bandwidth. Being older technology, ISDN setup is difficult and costly to maintain in terms of availability of equipment and skills to maintain them. VPN access is limited by availability of VPN ports on BT firewall. Ports are almost exhausted. Existing DEDS hardware has scalability limitations. Failover capability is limited and slow on existing infrastructure.

FIREWALL EXISTING SETUP 4 FIREWALL Primary DEDS Secondary DEDS Number Porting application FTP CP n CP 1 FTP XFB DEDS CLUSTER

PROPOSED SETUP 5 NEW DEDS NEW DEDS DR DNSSWITCHINGDNSSWITCHING DNSSWITCHINGDNSSWITCHING Number Porting application XFB FTPS (one way SSL/TLS over internet) CP n CP 1 FTPS (one way SSL/TLS over internet) Data Mirrorin g

Advantages of the proposed set up  Data transfer through a secured and Fast channel.  Move from an old ISDN set up to a scalable secured FTP channel which is exposed to the internet. ISDN call charges borne by CP’s would be eliminated.  Maintenance of ISDN, which is an old technology is not required.  Secured FTP clients/server are readily available and many of them are freeware.  CPs using Fax and as communication mode can easily migrate to electronic medium as the proposed setup is being exposed to internet. Additional Benefit targeted with the proposed set up  Better failover capabilities for DEDS which would ensure minimal loss of service. 6

Rationale of FTPS FTPS is a widely used standard alongside SFTP. Each has its own advantages and disadvantages. Few specific reasons for choosing FTPS: –Chrooting – Required to ensure each CP has isolated working area on DEDS server for Data Security. –Time bound login –It is necessary to restrict CP access to DEDS outside of agreed service hours. –Logging – Formatted logging which enables automated trapping and monitoring of error scenarios. It is also possible to generate MIS of upload/download activities.. –Command Execution – To ensure CP can execute only certain commands necessary for transfer of files and restrict potentially harmful commands for health of DEDS. 7

What is Changing? DEDS hardware will be migrated to new scalable Architecture. This hardware will be accessed by CP’s systems using standard Internet URL calls. DEDS will be exposed to internet with IP filtering applied on BT firewall to accept calls only from registered IP’s FTPS replaces Normal FTP by using one way SSL/TLS and basic authentication. CP’s will upload/download the files to/from DEDS via One Way SSL/TLS over internet using FTPS client. DEDS would upload/download files from CP’s server using FTPS client. CP would need to host FTPS server on their servers to allow for FTPS transfers by DEDS. 8

Impacts of the Change Number Porting order requests are initiated by the Gaining CP. –For Numbers exporting out of BT, order files are uploaded by CP onto DEDS (BT) and responses are downloaded by CP from DEDS (BT). CP would need to host FTPS client (compatible with pureftpd product used on DEDS). X509 certificates will be used by BT on DEDS server as Server Certificate. CPs will be provided with the required public key certificate of DEDS(BT). CPs would need to install/import it on their servers to be able to connect to DEDS. Port number to be used by FTPS client while connecting to DEDS would be provided by DEDS support team. These ports will need to be configured by CP onto the FTPS client. Changes needed in the process /automation to suit migration to secured FTP. CPs can continue using the same used id and password while accessing DEDS. The folder structure on DEDS would also remain the same. –For Numbers importing into BT, order files are uploaded by DEDS onto CP servers and responses are downloaded by DEDS from CP servers. CPs has to host FTPS server on its machine. CPs will have to open up their firewall(s) to allow FTPS connections from DEDS. CPs have to provide BT with the necessary public key for DEDS. This would need to be installed on DEDS and would be used for authentication while connecting to CP machines. CPs will have to provide IPs, ports, usernames and passwords of their systems to DEDS. 9

How Migration will be managed? Migration will be managed in three phases. Phase –I : New DEDS server will be available in live ready for CPs to migrate. –Once Phase – I is complete, CPs may start migration to new DEDS. It is necessary that CP build the capabilities for FTPS transfer as mentioned in the previous slides. Phase –II : Number Port application will be migrated to new DEDS during phase – II. During Phase I & Phase II, BT will internally manage synchronisation of existing DEDS and new DEDS system. Phase –III : The old DEDS server will be decommissioned as all CPs would have migrated to FTPS connectivity with New DEDS. DEDS support team will guide the CP’s during the migration process. 10

How can CP’s go about it? Approach BT Product Manager / BT Account Manager contact to schedule migration to NEW DEDS. Complete FTPS client and server installation & configuration. –FTPS clients and servers are available either commercially or as free-ware. Test connectivity to BT system with on-ramp server. (DEDS Support team will make this available) Test connectivity to NEW DEDS (Live) Start using new DEDS! 11

Milestones Phase-I : This is expected to be ready by end-May’10 Phase-II : This is planned to start in Jun’10. Phase-III : Plan is to start decommission of OLD DEDS by end of Phase II, but this is subject to the CP transition plans to be discussed between CP’s and BT Account Managers / Product Line leads. 12

FTPS Client Samples CoreFTP Lite (Windows) URL: SmartFTP (Windows) URL: IglooFTP Pro (Windows, Linux) URL: FlashFXP (Windows) URL: SDI FTP (Windows) URL: LFTP (Unix, MacOS X) URL: RBrowser (MacOS X) URL: FTPTLS (OpenBSD, possibly other Unix as well) URL: user.tu-chemnitz.de/~grmo/ftptls/ Port: chemnitz.de/~grmo/ftptls/port/ftptls-port.tar.gzhttp://www-user.tu- chemnitz.de/~grmo/ftptls/port/ftptls-port.tar.gz Glub Tech Secure FTP Client (at least Unix, MacOS X and Windows) URL: NOTE: BT does not recommend any specific product. The list above is for reference only. CPs are requested to take their own informed decision. 13

Thank You 14

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.