Presentation is loading. Please wait.

Presentation is loading. Please wait.

Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. 1 New Version of the RIPE Database Andrei Robachevsky.

Published byIris King Modified over 9 years ago

Similar presentations

Presentation on theme: "Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. 1 New Version of the RIPE Database Andrei Robachevsky."— Presentation transcript:

1 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 1 New Version of the RIPE Database Andrei Robachevsky RIPE NCC

2 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 2 Outline Current status of the RIPE Database New database software RIPE Database migration

3 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 3 RIPE Database Status Contains IP allocations/assignments Domain registry Routing registry More than 4 Million objects 84% person, 11% inetnum, 0.66% route 6,700 updates/day Up to 1.5 Mqueries/day (15 queries/s) 38% IP addresses, 1% IP prefixes Up to 15% are denied

4 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 4 Distribution by object type (August 2001)

5 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 5 Queries reached 15 q/s average ( 35q/s max)

6 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 6 % of queries by object type

7 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 7 Updates 7 per min

8 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 8 Database Software v3 Functionality Architecture Performance

9 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 9 New version of the RIPE Database Supports RPSL (RFC2622) Extended syntax New objects and attributes Supports RPSS (RFC2725) New authorization rules Supports RAToolset RtConfig -protocol ripe Code is completely rewritten

10 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 10 RPSL features Provides rich syntax for expressing routing policies router configuration ready RPSL syntax extensions apply to all object types end of line comments line continuation order of attributes New objects as-block, as-set (as-macro), route-set (community) peering-set, filter-set, rtr-set New attributes member-of, mbrs-by-ref mnt-routes: [ rpsl list of prefixes | ANY] referral-by:

11 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 11 Security features Provides strong security mechanisms Protection of individual objects Protection of IP address space Protection of ASN space Protection of route space Protection of set membership Protection of hierarchical set names Protection of domain object space 4 supported auth schemes GPG public keys are supported

12 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 12 New software Mainly in C, multithreaded CPU: 70% idle RDBMS as a back-end MySQL, customized transaction support In-memory radix tree for IP lookups also more and less specific lookups for reverse delegation domains MIME and GPG support correct PGP keys are also accepted Automatic access control separate accounting for public and contact data

13 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 13 Server architecture E-mail RDBMS Core Server Update FE RDBMS Mirror Server NRTM clients Queue rules Message queues Syntax checks, acks, notifications queries

14 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 14 Query Performance (I) Query rate, q/s # of concurrent clients V2 operational zone V3 operational zone V3 V2

15 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 15 Query Performance (II) Response time, s # of concurrent clients V2 operational zone V3 operational zone V3 V2

16 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 16 Transition phases Pre-migration period Conversion to RPSL Prototype servers Transition period 23 April: Migration Night RIPE-181 compatibility mode Finalizing the migration ftp site structure deprecating legacy stuff

17 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 17 Pre-migration: RIPE181 -> RPSL Sets as-macro: => as-set: community: => route-set: RS- Reserved prefixes (RP) AS-, RS-, RTRS-, FLTR-, PRNG- mntner: - 9 cases, all resolved by the owners as-name: => ASN- Mandatory attribute: mnt-by (except dn, pn, ro) no mnt-by => mnt-by: RIPE-NCC-NONE-MNT no mnt-by (aut-num’s) => mnt-by: RIPE-NCC-AN-MNT New attribute: referral-by => referral-by: RIPE-DBM-MNT

18 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 18 Pre-migration: prototype servers Near real-time mirror of the RIPE Database whois -h rpsl.ripe.net contains live RIPE Database in RPSL format Test server for submissions mail whois -h rpsl.ripe.net -p 4343 NRTM rpsl.ripe.net, port 4444 please contact

19 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 19 Pre-migration: milestones April 5 ripe-dbase-3.0 release April 12 Advised mirrors’ switchover 4 servers switched to the RPSL mirror April 19 Migration if the TESTDatabase dress rehearsal of the migration

20 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 20 Transition: Compatibility mode RIPE-181 updates can be sent to a separate mail robot automatically converted to RPSL PGP authentication cannot be used RPSL syntax rules empty attributes are not allowed optional -> mandatory no aliases no prefix notation

21 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 21 Transition: issues  Routing Policy System Security (RFC2725) new authorisation rules for route creation need to duplicate objects in the RIPE DB encompassing inetnum with NONE auth for mnt-routes as-blocks for non RIPE space with NONE auth for mnt-lower low level of security in non RIPE space still apply in RIPE-181 compatibility mode V2 undocumented features leading white space stripping correcting misspelled attributes filtering out empty attributes

22 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 22 Transition timeline Updates in RIPE-181 to Updates in RPSL to Updates in RPE-181 to RIPE181 RPSL Production Prototype/Compatibility TEST Updates in RIPE-181 to Updates in RPSL to Updates in RPSL to Updates in RPSL to X=23 AprilY=14 MayZ=15 October

23 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 23 Future Plans Provide support for several platforms Solaris (SPARC & Intel) Linux (RedHat) FreeBSD New features DB and object schema/syntax, object library extensions to RFC2725 implementation

24 Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. http://www.ripe.net 24 More Information RIPE-181 to RPSL Migration page http://www.ripe.net/rpsl Documentation RIPE Database Reference Manual http://www.ripe.net/ripe/docs/databaseref-manual.html RIPE Database User Manual (coming soon) RIPE Database Operation Manual (coming soon) Software New whois client ftp://ftp.ripe.net/tools/ripe-whois-3.0.tar.gz Server software v3 ftp://ftp.ripe.net/ripe/dbase/software/ripe-dbase-3.0.1.tar.gz

Download ppt "Andrei Robachevsky. 12th APNIC Open Plicy Meeting, August 2001, Taipei, Taiwan. 1 New Version of the RIPE Database Andrei Robachevsky."

Similar presentations

Copyright (c) 2002 Japan Network Information Center Introduction of JPNICs New Registry System Izumi Okutani IP Address Section Japan Network Information.

Copyright (c) 2002 Japan Network Information Center Introduction of JPNICs New Registry System Izumi Okutani IP Address Section Japan Network Information.
Database SIG Summary Report Chair – Xing Li APNIC Annual Member Meeting Bangkok, March 7 2002.

Database SIG Summary Report Chair – Xing Li APNIC Annual Member Meeting Bangkok, March
Shane Kerr. RIPE 45, May 2003, Barcelona. 1 RIPE Database Operations Update Shane Kerr RIPE NCC.

Shane Kerr. RIPE 45, May 2003, Barcelona. 1 RIPE Database Operations Update Shane Kerr RIPE NCC.
APNIC Internet Routing Registry Routing SIG APNIC-15, Taipei 26 February 2003.

APNIC Internet Routing Registry Routing SIG APNIC-15, Taipei 26 February 2003.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E IEPG March 2000 APNIC Certificate Authority Status Report.
Mirjam Kühne 1 RIPE 34, September 1999 RIPE NCC Status RIPE NCC Staff presented by Mirjam Kühne.

Mirjam Kühne 1 RIPE 34, September 1999 RIPE NCC Status RIPE NCC Staff presented by Mirjam Kühne.
26 February 2003 APNIC 15 Taipei, Taiwan RWhois Database SIG Tim Christensen Database Administrator ARIN.

26 February 2003 APNIC 15 Taipei, Taiwan RWhois Database SIG Tim Christensen Database Administrator ARIN.
1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.

1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.
APNIC Member Services George Kuo. MyAPNIC 2 What is MyAPNIC A secure Member services website Internet resources management, for example: –Whois updates.

APNIC Member Services George Kuo. MyAPNIC 2 What is MyAPNIC A secure Member services website Internet resources management, for example: –Whois updates.
Database Update Kaveh Ranjbar Database Department Manager, RIPE NCC.

Database Update Kaveh Ranjbar Database Department Manager, RIPE NCC.
Database Update Johan Åhlén Assistant Manager and Denis Walker Business Analyst.

Database Update Johan Åhlén Assistant Manager and Denis Walker Business Analyst.
Database Update Kaveh Ranjbar Database Department Manager, RIPE NCC.

Database Update Kaveh Ranjbar Database Department Manager, RIPE NCC.
Database Update Kaveh Ranjbar Database Group Manager, RIPE NCC.

Database Update Kaveh Ranjbar Database Group Manager, RIPE NCC.
Routing Registries What are they, how do they work, and why should I care? Larry Blunk, Merit Network, Inc.The Quilt Peering Workshop, Fall 2006.

Routing Registries What are they, how do they work, and why should I care? Larry Blunk, Merit Network, Inc.The Quilt Peering Workshop, Fall 2006.
IPv6: The Future of the Internet? July 27th, 1999 Auug.

IPv6: The Future of the Internet? July 27th, 1999 Auug.
APNIC Internet Routing Registry An introduction to the IRR TWNIC Meeting, 3 December 2003 Nurani Nimpuno, APNIC.

APNIC Internet Routing Registry An introduction to the IRR TWNIC Meeting, 3 December 2003 Nurani Nimpuno, APNIC.
A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E 36th RIPE Meeting Budapest 2000 APNIC Certificate Authority Status Report.

A S I A P A C I F I C N E T W O R K I N F O R M A T I O N C E N T R E 36th RIPE Meeting Budapest 2000 APNIC Certificate Authority Status Report.
Andrei Robachevsky, Shane Kerr. APNIC/APRICOT2001, February 2001, Kuala Lumpur, Malaysia. 1 Routing Registry Consistency Check Presented.

Andrei Robachevsky, Shane Kerr. APNIC/APRICOT2001, February 2001, Kuala Lumpur, Malaysia. 1 Routing Registry Consistency Check Presented.
Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.

Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.
Anne Lord & Mirjam Kühne. AfNOG Workshop, 10 May 2001. The whois Database Introduction and Usage.

Anne Lord & Mirjam Kühne. AfNOG Workshop, 10 May The whois Database Introduction and Usage.

Similar presentations

Ads by Google