Internet2 Routing Working Group Merit Route Registry Update July 30, 2002 Larry Blunk.

Slides:



Advertisements
Similar presentations
ARIN XIMemphis, TN April 2003 ARIN DBWG Tim Christensen Authentication Update.
Advertisements

Whois Database Clean Up Project Report Database SIG APNIC 16, Seoul, Korea 20 August 2003.
Database Update Johan Åhlén Assistant Manager and Denis Walker Business Analyst.
Database Update Kaveh Ranjbar Database Department Manager, RIPE NCC.
Database Update Kaveh Ranjbar Database Group Manager, RIPE NCC.
Routing Registries What are they, how do they work, and why should I care? Larry Blunk, Merit Network, Inc.The Quilt Peering Workshop, Fall 2006.
APNIC Internet Routing Registry An introduction to the IRR TWNIC Meeting, 3 December 2003 Nurani Nimpuno, APNIC.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E 36th RIPE Meeting Budapest 2000 APNIC Certificate Authority Status Report.
Long-term Archive Service Requirements draft-ietf-ltans-reqs-00.txt.
The RPLS ‘via’ attributes IETF89, London RPLS-VIA - IETF89 - Job Snijders Hibernia Networks.
Andrei Robachevsky, Shane Kerr. APNIC/APRICOT2001, February 2001, Kuala Lumpur, Malaysia. 1 Routing Registry Consistency Check Presented.
Planning. SDLC Planning Analysis Design Implementation.
Update on RIPE NCC Inter- RIR Transfer proposal Adam Gosling APNIC 38 Policy SIG Meeting 18 September 2014.
Anne Lord & Mirjam Kühne. AfNOG Workshop, 10 May The whois Database Introduction and Usage.
Scaling IXPs Scalable Infrastructure Workshop. Objectives  To explain scaling options within the IXP  To introduce the Internet Routing Registry at.
Internet Research Task Force Crypto Forum Research Group IETF 89 March 3, 2014 London List: Chairs:
Copyright © 2011 Japan Network Information Center JPNIC ’ s RQA and Routing Related Activities JPNIC IP Department Izumi Okutani APNIC32 Aug 2011, Busan.
Database Update Paul Palse Database Manager, RIPE NCC.
PDO Activities Emilio Madaio Policy Development Officer RIPE NCC RIPE Oct - 4 Nov 2011, Vienna.
DWINSA 2007 Website. Website Purpose Allow states to track status of questionnaires Allow systems >100K or states to upload project data.
João Damas. APRICOT 2002, March 2002, Bangkok. 1 Extending RPSL: IPv6, multicast, … Presented by João Damas RIPE NCC.
Database Update Kaveh Ranjbar Database Department Manager, RIPE NCC.
Lead Management Tool Partner User Guide March 15, 2013
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E APNIC Update RIPE 40 Prague, 1-5 October, 2001.
NATO Advanced Networking Workshop. Ljubljana, 19 September RIPE whois Database RIPE Network Coordination Centre.
Denis Walker. RIPE 45, May 2003, Barcelona. 1 DBupdate Denis Walker RIPE NCC.
Regional Internet Registries Statistics & Activities IETF 55 Atlanta Prepared By APNIC, ARIN, LACNIC, RIPE NCC.
APNIC Internet Routing Registry An introduction to the IRR TWNIC Meeting, 3 December 2003 Nurani Nimpuno, APNIC.
NMD202 Web Scripting Week3. What we will cover today Includes Exercises PHP Forms Exercises Server side validation Exercises.
18th APNIC Open Policy Meeting SIG: DB Thursday 2 September 2004 Nadi, Fiji Chair: Xing Li.
NCI Clinical Trials Reporting Program CTRP User Meeting July 6, 2011 Gene Kraus CTRP Program Director.
Erik Bais, May 13 th 2015 PP – unassigned yet General Transfer Policy Presenter : Erik Bais –
Electronic Security Initiative 2005 Security Assessment & Security Services 23 August 2005.
ACRIS e-Recording for Portal Companies Next Steps October 23, /23/2013.
Andrei Robachevsky. APNIC/APRICOT2001, February 2001, Kuala Lumpur, Malaysia. 1 New Version of the RIPE Database Andrei Robachevsky.
Filiz Yilmaz IGF 2006, Athens RIPE Policy History Focusing on IPv4 Filiz Yilmaz Policy Development Officer
July 2002IEPG, Yokohama, Japan RIR Co-ordination and Joint Statistics IEPG, Yokohama, Japan Prepared By APNIC, ARIN, RIPE NCC.
Natural Disaster Management Project Pakorn Apaphant Project and Application Subgroup WGISS 24 DLR, Oberpfaffenhofen, German October 15-19, 2007.
The Electronic Laboratory Exchange Network (eLEXNET) had been updated in several key areas in recent years. The New eLEXNET Home Page eCCMS — Communities.
Contractual Relationship Requirements for End Users Implementation Update:
Leo vegoda. APNIC 14, 3–6 Sept. 2002, Kitakyushu, Japan. 1 RIPE NCC Status Report at APNIC 14 Looking forward to winter…
FAA Access to CPS Online for EDExpress Users - Hands-on Ginger Klock Eric Smith Session 5.
Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. 1 New Version of the RIPE Database Andrei Robachevsky.
Policies for ASN Management in the Asia Pacific Region – Revised Draft Address Policy SIG APNIC14, Kitakyushu, Japan 4 Sept 2002.
CIWQS Review Phase II: Evaluation and Final Recommendations March 14, 2008.
© Copyright 2009 SSLPost 01. © Copyright 2009 SSLPost 02 a recipient is sent an encrypted that contains data specific to that recipient the data.
Current Policy Topics Emilio Madaio RIPE NCC RIPE November 2010, Rome.
and Collaboration Services TIF Update July 30, 2014.
Contractual Relationship Requirement for End Users Implementation update policy proposal
NEMO Basic Support update IETF 61. Status IANA assignments done Very close to AUTH48 call Some issues raised recently We need to figure out if we want.
Aut-num object Denis Walker Business Analyst RIPE NCC Database Team.
The APNIC Internet Routing Registry Database SIG APRICOT, Bangkok 5 March 2002.
Multiple Interfaces (MIF) WG documents status MIF WG IETF 80, Prague Problem statement and current practices documents.
Contractual Relationship Requirements for End Users Implementation Update: Policy Proposal
MyFloridaMarketPlace Quality Improvement Plan. Page 2 MFMP Quality Improvement Plan  The MFMP team has developed a quality improvement plan that addresses.
BGP Validation Russ White Rule11.us.
Quarterly Geo/SIG Coordinator Webinar June 25, 2014.
INFSOM-RI WP3: WP3: Software configuration tools and methodologies Status Report ETICS All-Hands – 23 May 2007 E. Ronchieri.
AS Numbers - Again Geoff Huston APNIC October 2009
Software Project Configuration Management
Global Grid Forum GridForge
RIR Co-ordination and Joint Statistics
Cross-Site Request Forgeries: Exploitation and Prevention
AFRINIC Services Update
Geoff Huston APNIC August 2009
IPv6 Address Allocation APNIC
RIPE Whois Database Software Recent Changes
FIRST How can MANRS actions prevent incidents .
prop-025-v001 Proposal on IPv6 IRR service at APNIC
By Keessun Fokeerah Member Services(MS) Team
Presentation transcript:

Internet2 Routing Working Group Merit Route Registry Update July 30, 2002 Larry Blunk

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 Agenda Introductions I2RR Status IRRd Update RADB Status RPSL Issues (RPSLng/Authorization) Web interface for Registry Timelines Web interface demo Questions

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 Merit route registry staff Deb Evans - project manager Engineers Larry Blunk - lead engineer Jake Khuon - lead architect Not present - Dale Fay, Chris Frazier University of Michigan NOC provides 24x7 frontline support Introductions - Merit staff

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 I2RR Status I2RR introduced in September 2000 Web page at Has not been actively embraced by Internet2 community Merit staff departures in 2000/2001 led to lack of responsiveness Has restaffed project over the last 12 months Merit would like to get clarity regarding the role of the I2RR in the Internet2 community. Merit believes the service is important, but needs to understand Internet2's commitment to using it going forward

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 IRRd Update Reviewed state of code in June 2001 Initial goals Fix memory leaks and other significant bugs (zombie processes) Portability enhancements Targeted Linux and FreeBSD in addition to Solaris Code clean-up (compiler warnings, etc.) RFC 2622 RPSL compliance Mandatory attributes and parsing correctness

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 IRRd Update... Initial goals cont'd... Documentation updates Support for GnuPG Performance issues IRRd 2.1 released in September 2001 Several releases since (now at 2.1.4) Next release to support inverse lookups on maintainer names and performance improvements Available at

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 RADB Status RPSL compliance has been addressed Objects missing mandatory attributes Attributes with invalid values Orphaned objects cleaned up Maintainers deleted, but objects remain in the database with mnt-by referring to maintainer Approximately 1600 paid maintainers Around 3000 maintainers at start of year Source of stale data (defunct/acquired companies) New maintainers continue to be added daily

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 RADB Consistency RADB consistency checks currently an ongoing project Route objects with prefixes which have been aggregated, announced by another AS, unrouted Announced prefixes not registered in RADB Aut-num objects with import/export policy which does not match observed policy in annouced prefixes (for example, AS PATH)

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 RADB Consistency Analysis Recent analysis of route object consistency with global routing tables route objects - compare prefix/originAS 50.8% exact or less specific prefix/match AS 35.8% exact or less specific prefix/different AS 13.4% no match (exact or less specific prefix)

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 Registry Maintainer reports Developing per maintainer reports Details number and type of objects Consistency with observed routing policy Route object prefix/originAS correctness Aut-num policy compared with AS Path info Provide an optional monthly report as well as web based reports Allow maintainers to easily correct discrepancies Working with RIPC NCC to coordinate development efforts on consistency checking tools

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 RPSLng Ipv6/Multicast support not defined in RFC2622 RPSLng task force formed to address issue Mailing list - Archive - Internet Draft submitted by Florent Parent in January (draft-parent-multiprotocol-rpsl-00.txt) Draft addresses the following classes: route, route-set, peering-set, aut-num, inet-rtr, filter-set Attempted to extend the syntax of existing attributes rather than creating new attribute names

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 RPSLng... There was considerable concern that simply extending attributes may break existing tools Informal meeting held at March 2002 IETF Consensus reached on RPSLng attributes Will create new attribute names to avoid breaking tools

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 RPSLng examples Example of new route object for IPv6 mp-route: afi ipv6 3ffe:ffff::/28 origin: AS1 Example of aut-num object aut-num: AS2 mp-import: afi ipv6.unicast from AS1 accept {3FFE:FFFF::/35};

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 RPSL Authentication security PGP is currently strongest mechanism MAIL-FROM is very weak due to ease of mail spoofing Confirmation messages provides some assurance CRYPT-PW suffers from short password support (8 characters) and dictionary attack vulnerability submission of RPSL objects protected by CRYPT-PW requires sending cleartext password

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 RPSL Authentication updates RIPE 41 meeting addressed current weaknesses in RPSL authentication RIPE to phase out support of MAIL-FROM New password-based auth mechanism based on FreeBSD's MD5-CRYPT Allows passwords much longer than 8 characters and more dictionary attack resistent Merit to move to Web-based form with SSL encryption and phase-out of MAIL-FROM Considering hiding password hashes to prevent dictionary attacks Will continue to support PGP for mail based updates

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 Registry Web interface Augment existing mail update process with a web based interface Provides a more intuitive interface (particularly for new users unfamiliar with based submissions) Security improvement for maintainers with password based authentication (SSL encryption instead of cleartext in )

Merit Route Registry Update Internet2 Routing Working Group July 30, 2002 Timelines Web interface to be completed by August 31 RPSLng to be discussed at RIPE 43 meeting in early September and should be finalized by end of September Merit targeting RPSLng implementation by the end of October Consistency checking tools being coordinated with RIPE. Ongoing effort with initial maintainer reports to be available in November

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.