21c3 noc overview
play

21c3 NOC Overview Concepts, Implementation and Hardware Christian - PowerPoint PPT Presentation

Jul 04, 2023 •320 likes •504 views

21c3 NOC Overview Concepts, Implementation and Hardware Christian Carstensen, Sebastian Werner & The 21c3 NOC Crew The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 1/18 Overview What will we cover: Overview Networking

  1. 21c3 NOC Overview Concepts, Implementation and Hardware Christian Carstensen, Sebastian Werner & The 21c3 NOC Crew The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 1/18

  2. Overview What will we cover: ● Overview ● Networking terms ■ Routing Terms explained ● Recall 20c3 - Situation ● Recall 20c3 - Consequences ■ Recall 20c3 ● Recall 20c3 - Reasons ● Solution strategy ■ Solving the Problems ● Special demands ● Network Services ● BCC Network Layout - Logical ■ Networking requirements ● BCC Network Layout - OSPF ● Hardware ■ BCC Networklayout how it should be ● Implementation ● Internet uplink ■ Networklayout reality ● IP Uplink Topology ● IPSEC Realisation ● Using and abusing the network ● Sponsors The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 2/18

  3. Networking terms ■ Layer 2 OSI Data Link Layer. e.g. Ethernet or 802.11a ● Overview ● Networking terms ● Recall 20c3 - Situation ■ Switch Layer 2 based interconnection device between ● Recall 20c3 - Consequences physical networks ● Recall 20c3 - Reasons ● Solution strategy ● Special demands ■ Layer 3 OSI Network Layer. e.g. IP or IPX ● Network Services ● BCC Network Layout - Logical ■ Router Layer 3 device that connects Layer 2 segments ● BCC Network Layout - OSPF ● Hardware logically ● Implementation ● Internet uplink ■ Layer 4 OSI Transport Layer. e.g. UDP or TCP ● IP Uplink Topology ● IPSEC Realisation ■ LAN Provides physical network connectivity. ● Using and abusing the network ● Sponsors ■ VLAN Devides a LAN into several logical/virtual LANs using the same physical link. ■ Flow based routing Routing Switching on Layer 2 after a route lookup using MAC instead of IP The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 3/18

  4. Recall 20c3 - Situation ■ New Building with unknown problems... ● Overview ● Networking terms ■ about 20 different rooms with specific access profile ● Recall 20c3 - Situation ● Recall 20c3 - Consequences ● Recall 20c3 - Reasons ■ 4 floors interconnected through floor D ● Solution strategy ● Special demands ■ different network hardware arrived ● Network Services ● BCC Network Layout - Logical ■ lack of facility documentation ● BCC Network Layout - OSPF ● Hardware ■ rogue services (dhcp) and hardware (access points!!) ● Implementation ● Internet uplink ● IP Uplink Topology ● IPSEC Realisation ● Using and abusing the network ● Sponsors The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 4/18

  5. Recall 20c3 - Consequences ■ Layer3 networks connected via L2 backbone ● Overview ● Networking terms ■ 2 routers did all routing work ● Recall 20c3 - Situation ● Recall 20c3 - Consequences ● Recall 20c3 - Reasons ■ Initial cabling insufficient ● Solution strategy ● Special demands ■ WLAN got flaky ● Network Services ● BCC Network Layout - Logical ■ DHCP became unreliable ● BCC Network Layout - OSPF ● Hardware ■ A lot of extra work ● Implementation ● Internet uplink ● IP Uplink Topology ● IPSEC Realisation ● Using and abusing the network ● Sponsors The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 5/18

  6. Recall 20c3 - Reasons ■ Many VLANs that got “trunked“ ● Overview ● Networking terms ■ Attacks on flow based routing equipment (TCAM full!) ● Recall 20c3 - Situation ● Recall 20c3 - Consequences ● Recall 20c3 - Reasons ■ Hardware (HP , Foundry) got overload ● Solution strategy ● Special demands ■ Patching cables on undocumented panels is hard ● Network Services ● BCC Network Layout - Logical ■ Too many nodes in the WLAN and too powerful transcievers ● BCC Network Layout - OSPF ● Hardware ■ Lack of network monitoring ● Implementation ● Internet uplink ● IP Uplink Topology ■ Lack of user (available) documentation ● IPSEC Realisation ● Using and abusing the ■ Finally: fatigued NOCpeople... network ● Sponsors The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 6/18

  7. Solution strategy Keep it simple! ● Overview ● Networking terms ■ Smaller collision domains (Layer2 segments) ● Recall 20c3 - Situation ● Recall 20c3 - Consequences ■ Avoiding tagged (dot1q) / trunked (isl) vlans ● Recall 20c3 - Reasons ● Solution strategy ● Special demands ■ Routing not on L3 switches but on real full-featured routers ● Network Services ● BCC Network Layout - Logical ■ Reduced trust in 802.11b (Do NOT expect it to work!) ● BCC Network Layout - OSPF ● Hardware ■ Focus on 802.11a ● Implementation ● Internet uplink ■ Explicit effort to ensure documentation ● IP Uplink Topology ● IPSEC Realisation ● Using and abusing the ■ NOC Help Desk network ● Sponsors The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 7/18

  8. Special demands ■ Entrance needs to be exclusively linked to the Orga Area ● Overview ● Networking terms ■ Network-Jacks for speakers need highly-available uplink ● Recall 20c3 - Situation ● Recall 20c3 - Consequences ● Recall 20c3 - Reasons ■ WLAN (Soekris) need dedicated cabling (PoE!) ● Solution strategy ● Special demands ■ Helpdesk and Public Terminals should have high-available ● Network Services ● BCC Network Layout - Logical uplink ● BCC Network Layout - OSPF ● Hardware ■ Video streams should be privileged ● Implementation ● Internet uplink ■ Projects need “dynamic VLANing” ● IP Uplink Topology ● IPSEC Realisation ■ Wireless Mesh needs WLAN Channel 10 exclusively ● Using and abusing the network ● Sponsors ■ Server storage/housing for projects The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 8/18

  9. Network Services ■ DomainNameService (recursive & authoritative) 82.130.23.35 ● Overview ● Networking terms ■ User DNS Registration ● Recall 20c3 - Situation ● Recall 20c3 - Consequences https://yourname.congress.ccc.de ● Recall 20c3 - Reasons ● Solution strategy ■ DHCP Service https://yourname.congress.ccc.de ● Special demands ● Network Services ● BCC Network Layout - Logical ■ IPSEC Frontend ● BCC Network Layout - OSPF ● Hardware https://illuminatheros.congress.ccc.de ● Implementation ● Internet uplink ● IP Uplink Topology ● IPSEC Realisation ● Using and abusing the network ● Sponsors The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 9/18

  10. BCC Network Layout - Logical Uplink� Uplink� Lützowstr� BCC� 2mbit� 1000SX� bcc.gate� ● Overview Juniper� R� RX ACTI V ITY� LINE� ETHERNET 1000 BASE-LX� LINE� RX ACTI V ITY� ETHERNET 1000 BASE-LX� ETHERNET 100BASE-TX� PORT 3� PORT 2� PORT 1� PORT 0� N� ETWORK� S� STATUS� STATUS� LINK� RX� LINK� RX� LINK� RX� LINK� RX� STATUS� TM� TX� RX� TX� RX� M5� LT� I� nternet� rocessor� P� MGMT� PIC 0/3� PIC 0/2� PIC 0/1� PIC 0/0� CONSOLE� ● Networking terms AUX/MODEM� Uplink Netz� ● Recall 20c3 - Situation Backbone (Gbit SX Trunk)� IPSec� ● Recall 20c3 - Consequences BCC Hausnetz� d57.core� Gbit Netz� ● Recall 20c3 - Reasons PoE� trust.core� Server� Video� NOC� Switch� Wlan Netz� ● Solution strategy l2.core� Kassen Netz� ● Special demands D57� Patch Verkabelung� ● Network Services ● BCC Network Layout - Logical Helpdesk� Saal1� ● BCC Network Layout - OSPF ● Hardware Saal3� ● Implementation Orga� Wireless� c57.core� c91.core� ● Internet uplink Soekris� ● IP Uplink Topology C� Public C� Saal2� Public C� Funk� POC� ● IPSEC Realisation C57� C91� ● Using and abusing the network INFO� ● Sponsors Public B� b90.core� Kasse� CERT� Soekris� Blinken� Art&Beauty� B� Wikipedia� B90.01� Engel� Hackcenter 1� a87.core� a85.core� Soekris� A� Haecksen� Hackcenter 2� Workshop� Lockpick� A85� A87� The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 10/18

  11. BCC Network Layout - OSPF ● Overview ● Networking terms ● Recall 20c3 - Situation ● Recall 20c3 - Consequences ● Recall 20c3 - Reasons ● Solution strategy ● Special demands ● Network Services ● BCC Network Layout - Logical ● BCC Network Layout - OSPF ● Hardware ● Implementation ● Internet uplink ● IP Uplink Topology ● IPSEC Realisation ● Using and abusing the network ● Sponsors The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 11/18

  12. Hardware ■ Inhouse Internet Uplink: Juniper M7i ● Overview ● Networking terms ■ D57 (Core): Cisco Catalyst 6509 ● Recall 20c3 - Situation ● Recall 20c3 - Consequences ● Recall 20c3 - Reasons ■ C57 (Ebene C): Cisco Catalyst 4507 ● Solution strategy ● Special demands ■ B90 (Ebene B): Cisco Catalyst 4506 ● Network Services ● BCC Network Layout - Logical ■ A85 (HackCenter 1): Cisco Catalyst 6513 ● BCC Network Layout - OSPF ● Hardware ■ A87 (HackCenter 2): Cisco Catalyst 4006 ● Implementation ● Internet uplink ● IP Uplink Topology ■ Access Layer: HP ProCurve 5308xl, Cisco 3750, Cisco ● IPSEC Realisation ● Using and abusing the 3550, Cisco 4908 network ● Sponsors The 21c3 NOC Crew, January 9, 2005 21c3 NOC Overview - p. 12/18

Recommend

Inside PDF Lecture @21C3 The Portable Document Format A Short Introduction Maik Musall

Inside PDF Lecture @21C3 The Portable Document Format A Short Introduction Maik Musall

Inside PDF Lecture @21C3 The Portable Document Format A Short Introduction Maik Musall <maik@musall.de> CCC Erlangen Overview History of PDF and it's relation to PostScript Licenses and legal issues File format syntax and

584 views • 17 slides
The Kernel Accelerator Device -reconfigurable computing for the kernel- Lecture held at 21C3 in

The Kernel Accelerator Device -reconfigurable computing for the kernel- Lecture held at 21C3 in

The Kernel Accelerator Device -reconfigurable computing for the kernel- Lecture held at 21C3 in Berlin by Ludwig Jaff www.openhardware.de Why do we want the KAD ? Many things we like are too slow drive encryption cryptoanalysis

424 views • 15 slides
Workshop: Reverse Engineering the SAP R/3 Client Protocol Nils Magnus Jochen Kellner 21C3

Workshop: Reverse Engineering the SAP R/3 Client Protocol Nils Magnus Jochen Kellner 21C3

21C3, Berlin Berlin 27 December 2004 27 December 2004 Workshop: Reverse Engineering the SAP R/3 Client Protocol Nils Magnus Jochen Kellner 21C3 Chaos Communication Congress Berlin, Germany December 27 29, 2004 Nils Magnus, Jochen

620 views • 19 slides
FORTH A slightly different Programming System Carsten Strotmann, Forth Gesellschaft e.V. 21st

FORTH A slightly different Programming System Carsten Strotmann, Forth Gesellschaft e.V. 21st

Forth in Time An Overview on Forth Why learning/using Forth Summary 21C3 - Forth Crossover FORTH A slightly different Programming System Carsten Strotmann, Forth Gesellschaft e.V. 21st Chaos Communication Congress Carsten Strotmann FORTH

1.12k views • 87 slides
Tor: An Anonymizing Overlay Network for TCP Roger Dingledine The Free Haven Project

Tor: An Anonymizing Overlay Network for TCP Roger Dingledine The Free Haven Project

Tor: An Anonymizing Overlay Network for TCP Roger Dingledine The Free Haven Project http://tor.freehaven.net/ http://tor.eff.org/ December 28, 21C3 2004 Talk Outline Motivation: Why anonymous communication? Personal privacy

1.03k views • 55 slides
Squeak and Croquet Please note: The following are just screenshots from the demo made with

Squeak and Croquet Please note: The following are just screenshots from the demo made with

Squeak and Croquet Please note: The following are just screenshots from the demo made with Squeak For the real experience: Download the demo image from: http://squeak-ev.de/ 21c3

601 views • 35 slides
Apache Security - I m proving the security of your w eb server by breaking into it Sebastian

Apache Security - I m proving the security of your w eb server by breaking into it Sebastian

Risk Advisory Services Apache Security - I m proving the security of your w eb server by breaking into it Sebastian Wolfgarten, 21C3, December 2004 sebastian.wolfgarten@de.ey.com 1 Berlin, Germany - 29.12.2004 Agenda Preface

697 views • 41 slides
Hidden Data in Internet Published Documents 2004-12-27 21. Chaos Communication Congress 2004

Hidden Data in Internet Published Documents 2004-12-27 21. Chaos Communication Congress 2004

Far More Than You Ever Wanted To Tell Hidden Data in Internet Published Documents 2004-12-27 21. Chaos Communication Congress 2004 Steven J. Murdoch & Maximillian Dornseif See http://md.hudora.de/presentations/#hiddendata-21c3 This

1.16k views • 86 slides
OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 SF park overview OVERVIEW PRESENTATION / 2

OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 SF park overview OVERVIEW PRESENTATION / 2

OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 SF park overview OVERVIEW PRESENTATION / 2 Coin and card meters OVERVIEW PRESENTATION / 3 Making garages work better OVERVIEW PRESENTATION / 4 User interface and customer experience OVERVIEW

1.3k views • 24 slides
OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 Acknowledgements OVERVIEW PRESENTATION / 2 SF

OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 Acknowledgements OVERVIEW PRESENTATION / 2 SF

OVERVIEW PRESENTATION / 1 OVERVIEW PRESENTATION / 1 Acknowledgements OVERVIEW PRESENTATION / 2 SF park overview OVERVIEW PRESENTATION / 3 Coin and card meters OVERVIEW PRESENTATION / 4 Improving the customer experience at garages OVERVIEW

567 views • 25 slides
GSM System Overview GSM System Overview GSM System Overview GSM System Overview Phone Lin

GSM System Overview GSM System Overview GSM System Overview GSM System Overview Phone Lin

National Taiwan University Department of Computer Science and Information Engineering GSM System Overview GSM System Overview GSM System Overview GSM System Overview Phone Lin Phone Lin Ph.D. Ph.D. Email: plin@csie.ntu.edu.tw Email:

686 views • 41 slides
i c r o g u a r d s OVERVIEW The m i c r o g u a r d BIOFUELS s OVERVIEW

i c r o g u a r d s OVERVIEW The m i c r o g u a r d BIOFUELS s OVERVIEW

LGE UNICAMP The m i c r o g u a r d s OVERVIEW The m i c r o g u a r d BIOFUELS s OVERVIEW The m i c r o g u a r d ETHANOL s OVERVIEW The m i c Ideal conditions r o g Costs-benefits u a r d

1.39k views • 59 slides
Football First Aid: Football First Aid: An Overview An Overview Steven Richmond 95#

Football First Aid: Football First Aid: An Overview An Overview Steven Richmond 95#

Football First Aid: Football First Aid: An Overview An Overview Steven Richmond 95# Commissioner --BRYC Firefighter II, EMT-B, HTR & HZMT Tech City of Alexandria Fire and EMS Overview Overview Hyperthermia (Heat Related Injuries)

2.61k views • 31 slides
1 Corporate Overview Transaction 1 Corporate Overview Overview of Libre Group Structure

1 Corporate Overview Transaction 1 Corporate Overview Overview of Libre Group Structure

1 Corporate Overview Transaction 1 Corporate Overview Overview of Libre Group Structure Industry Business Model Hotels Overview Disclaimer This presentation does not constitute, or form any part of any offer for sale or subscription

808 views • 32 slides
HabaPalooza T EA M HYPERION COM M 362 A PRIL 29 T H 201 2 Overview Team Overview

HabaPalooza T EA M HYPERION COM M 362 A PRIL 29 T H 201 2 Overview Team Overview

HabaPalooza T EA M HYPERION COM M 362 A PRIL 29 T H 201 2 Overview Team Overview Project Overview Analysis Active Experimentation Question & Answer Team Overview Our Logo Our Tagline Our Mission Statement

1.09k views • 15 slides
Outbound Logistics Overview 1 Outbound Logistics Overview Outbound Overview Four

Outbound Logistics Overview 1 Outbound Logistics Overview Outbound Overview Four

Outbound Logistics Overview 1 Outbound Logistics Overview Outbound Overview Four Dedicated Outbound Carriers MPF Meijer Private Fleet 111 stores serviced in Michigan, northern Ohio, and Indiana. NTB Nationwide Truck

865 views • 15 slides
HabaPalooza T E A M H Y P E R I O N C O M M 3 6 2 A P R I L 2 9 TH 2 0 1 2 Overview Team

HabaPalooza T E A M H Y P E R I O N C O M M 3 6 2 A P R I L 2 9 TH 2 0 1 2 Overview Team

HabaPalooza T E A M H Y P E R I O N C O M M 3 6 2 A P R I L 2 9 TH 2 0 1 2 Overview Team Overview Project Overview Analysis Active Experimentation Question & Answer Team Overview Our Logo Our Tagline Our

934 views • 15 slides
An overview to Maltese An overview to Maltese An overview to Maltese An overview to Maltese

An overview to Maltese An overview to Maltese An overview to Maltese An overview to Maltese

An overview to Maltese An overview to Maltese An overview to Maltese An overview to Maltese Agriculture Agriculture Agriculture characteristics S mall holdings L imited resources and L and Fragmentation. 2 Maltese agriculture in figures

1.04k views • 15 slides
Library Conversations: Talking with Users University of Rochester Overview Overview Used

Library Conversations: Talking with Users University of Rochester Overview Overview Used

Rebecca Bichel December 7, 2007 Library Conversations: Talking with Users University of Rochester Overview Overview Used anthropological & ethnographic Overview Overview methods Guiding research question: What do students

941 views • 44 slides
.NET Overview Objectives Introduce .NET overview languages libraries

.NET Overview Objectives Introduce .NET overview languages libraries

.NET Overview Objectives Introduce .NET overview languages libraries development and execution model Examine simple C# program 2 .NET Overview .NET is a sweeping marketing term for a family of products

388 views • 23 slides
1 Overview Overview Regional demographic overview Regional demographic overview Workforce

1 Overview Overview Regional demographic overview Regional demographic overview Workforce

1 Overview Overview Regional demographic overview Regional demographic overview Workforce supply analysis Regional demand for workers i l d d f k Balancing supply and demand Reviewing key cluster trends Key challenges

533 views • 39 slides
EZ Overview EZ Overview The Rapid Development Platform p p Muse EZ is a

EZ Overview EZ Overview The Rapid Development Platform p p Muse EZ is a

EZ Overview EZ Overview The Rapid Development Platform p p Muse EZ is a registered trademark of Future Designs, Inc . 1 Overview What is EZ? EZ RTOS Engine EZ Four Tier Hierarchy Reusable HAL and Device

600 views • 32 slides
Overview of the Reconstruction Overview of the Reconstruction Overview of Some Legal Issues

Overview of the Reconstruction Overview of the Reconstruction Overview of Some Legal Issues

Overview of the Reconstruction Overview of the Reconstruction Overview of Some Legal Issues Related to Puerto Ricos Debt Restructuring by Sergio M. Marxuach Center for a New Economy February 25, 2020 CNE Puerto Ricos Think Tank

347 views • 13 slides
Overview & Development Table of Contents 1 Simon Owen, CEO Business Overview

Overview & Development Table of Contents 1 Simon Owen, CEO Business Overview

2018 Investor Tour INGENIA COMMUNITIES GROUP Overview & Development Table of Contents 1 Simon Owen, CEO Business Overview Guidance Update Development Overview Latitude One Overview 2 Craig Shepherd, Project

247 views • 22 slides

More recommend