using the ripe atlas api for measuring ipv6 reachability
play

Using the RIPE Atlas API for Measuring IPv6 Reachability Vesna - PowerPoint PPT Presentation

May 10, 2023 •165 likes •906 views

Using the RIPE Atlas API for Measuring IPv6 Reachability Vesna Manojlovic Community Builder for Measurement Tools BECHA@ripe.net / @Ms_Multicolor BalCCoN 2014 | Novi Sad 1 Overview 2 Short intro to RIPE, RIPE NCC What is IPv6 &

  1. Using the RIPE Atlas API for Measuring IPv6 Reachability Vesna Manojlovic Community Builder for Measurement Tools BECHA@ripe.net / @Ms_Multicolor BalCCoN 2014 | Novi Sad 1

  2. Overview 2 • Short intro to RIPE, RIPE NCC • What is IPv6 & Getting IPv6 • What is RIPE Atlas • How to use measurements • IPv6-related RIPE Atlas use cases • How to take part in the RIPE Atlas community • Appendix 1: IPv6 documents • Appendix 2: RIPEstat Vesna Manojlovic, BalCCoN 2014 2

  3. RIPE and the RIPE NCC 3 � � � � � � � � � � � � • RIPE Network Coordination Centre • Réseaux IP Européens • Started in 1992 • Started in 1989 � � • Not-for-profit organisation • Not a legal entity • Has members: Local Internet Registries (LIRs) • An open community - no official membership � � • Implements policies • Makes polices � � • Facilitates two RIPE Meetings each year • Meets twice a year � � • Provides services to both members and non- • Work is done in various Working Groups on members mailing lists • Governed by an Executive Board elected by the membership •Neutral, impartial, open, transparent Vesna Manojlovic, BalCCoN 2014 3

  4. The Five RIRs 4 Vesna Manojlovic, BalCCoN 2014 4

  5. Not Only an RIR: RIPE NCC Services 5 Text goes here Vesna Manojlovic, BalCCoN 2014 5

  6. Related Events in SEE Region 6 • Peering Forum, September 2014, Split, Croatia - http://www.peering-forum.eu/ � • EURO-IX meeting, October 2014, Bucharest, Romania - https://euro-ix.net/events/51 � • OpenFest, November 2014, Sofia - http://openfest.org/ � • SEE4, April 2015, Belgrade, Serbia (RIPE NCC regional meeting) - http://www.ripe.net/see4 Vesna Manojlovic, BalCCoN 2014 6

  7. Increasing Academic Involvement: RACI 7 https://ripe69.ripe.net/programme/raci/ Vesna Manojlovic, BalCCoN 2014 7

  8. IPv6: Why & What 8

  9. Ran-out of IPv4 9 • RIPE NCC is currently giving out IPv4 space from the “Last /8” • Only to LIRs • Only one /22 (1024 IP addresses) per member (LIR) Vesna Manojlovic, BalCCoN 2014 9

  10. IPv6 Address Basics 10 • Longer addresses, larger address space • IPv6 address has 128 bits - Written in hexadecimal, using : as a separator • For example: 2001: 0 db8: 00 3e:ef11: 0000:0000 :c100: 00 4d - shortened to: 2001:db8:3e:ef11::c100:4d • Each interface can have multiple addresses: - link-local: fe80::bae8:56 ff :fe1d:138 - “private” (ULA): fc00::/7 - 6to4 tunnel: 2002::/16 - public: 2000::/3 (e.g. 2001:470:26:200:bae8:56 ff :fe1d:138) • NOT BACKWARDS COMPATIBLE WITH IPv4!!! - translation technologies needed Vesna Manojlovic, BalCCoN 2014 10

  11. IPv6 Subnetting 11 Vesna Manojlovic, BalCCoN 2014 11

  12. Getting IPv6 12

  13. IPv6 Address Space Distribution IETF 13 /3 IANA /12 RIR /32 LIR /60 /56 /48 End User Allocation PA Assignment PI Assignment Vesna Manojlovic, BalCCoN 2014 13

  14. Getting IPv6 from the RIPE NCC 14 • To qualify for an allocation an organisation must: • Be an LIR • Have a plan for making assignments within two years • Minimum allocation size is /32 � • To qualify for a PI assignment an organisation must: - Meet the contractual requirements for PI resources • LIRs must demonstrate special routing requirements - PI space cannot be used for sub-assignments - Minimum assignment size is /48 Vesna Manojlovic, BalCCoN 2014 14

  15. Getting IPv6 Otherwise 15 • For local network, use “private” IPv6 space (ULA) - FC00::/8 and FD00::/8 - http://tools.ietf.org/html/rfc4193, http://tools.ietf.org/html/rfc5375 • For learning/testing/transition, use tunnels - SixXS: https://www.sixxs.net/ - Hurricane Electric https://www.tunnelbroker.net/ • For small SOHO, ask your upstream ISP - No, you are not the first one to ask... - Ask for a sub-allocation if you are a business - Ask for /48 is you are a home user Vesna Manojlovic, BalCCoN 2014 15

  16. IPv6 Security Considerations 16 • Everybody can claim to be a router - Use RA Guard to filter unauthorised RAs (RFC 6105) � • SEcure Neighbor Discovery (SEND) - RFC3971 • Neighbor solicitation/advertisement spoofing • DoS attack • Router solicitation and advertisement attacks • No implementations (yet) Vesna Manojlovic, BalCCoN 2014 16

  17. IPv6RIPEness.ripe.net 17 • Measure of IPv6 readiness for LIRs - allocation; reverse DNS; route6 object in RR; BGP seen in RIS � � � � � � � � • 4 stars == free T-shirt! Vesna Manojlovic, BalCCoN 2014 17

  18. IPv6 RIPEness in Serbia 18 • 4 star: http://ipv6ripeness.ripe.net/4star/RS.html � � � � � • 5 star: http://ipv6ripeness.ripe.net/5star/RS.html Vesna Manojlovic, BalCCoN 2014 18

  19. RIPE Atlas 19

  20. RIPE Atlas Probe Deployment 20 Vesna Manojlovic, BalCCoN 2014 20

  21. RIPE Atlas Basics RIPE Atlas 21 • RIPE Atlas is a global active measurements platform � • Goal is to provide the view of the Internet reachability � • Small hardware probes are hosted by volunteers � • Built-in measurements are run towards root-name servers from all probes - visualized as Internet Tra ffi c Maps - data is publicly available for analysis RIPE NCC - Measurements Tools Workshop - September 2014 21

  22. Internet Tra ffi c Maps RIPE Atlas 22 RIPE NCC - Measurements Tools Workshop - September 2014 22

  23. RIPE Atlas Early September 2014 23 • 6,600+ active probes • 2,050+ probes do IPv6 � • 17,500+ registered users (3,000 active monthly) � • Four types of customised measurements available to probe hosts: ping, traceroute, DNS, SSL • And of course, ping6 and traceroute6 :-) Vesna Manojlovic, BalCCoN 2014 23

  24. RIPE Atlas Participation and Benefits 24 • Anyone can become a RIPE Atlas probe host � • Major personal and operational benefit: • See your network from the outside! • Have ~6,500 external vantage points to do customised measurements towards the destination of your choice • Data of built-in measurements available to everyone • Maps, data from public probes, API to download raw data Vesna Manojlovic, BalCCoN 2014 24

  25. Measurement Devices 25 • v1 & v2: Lantronix XPort Pro � • v3: TP-Link TL-MR3020 powered from USB port - Does not work as a wireless router! � • RIPE Atlas anchor: Soekris net6501-70 Vesna Manojlovic, BalCCoN 2014 25

  26. RIPE Atlas Anchors 26 • Anchors: well-known targets and powerful probes • Regional baseline & “future history” • 73 anchors installed • Anchoring measurements • Measurements between anchors • 200 probes targeting each anchor with measurements • Each probe measures four to five anchors • Apply: https://atlas.ripe.net/about/anchors/ � • The only RIPE Atlas anchor in Balkans is hosted by SOX, Belgrade! Vesna Manojlovic, BalCCoN 2014 26

  27. Probes per country, in RIPEstat RIPE Atlas 27 RIPE NCC - Measurements Tools Workshop - September 2014 27

  28. Naming&Shaming: Probes at BalCCon2013 RIPE Atlas 28 ? ? ? ? ? ? ? ? RIPE NCC - Measurements Tools Workshop - September 2014 28

  29. RIPE Atlas New Features 29 • Seismograph - Multiple ping measurements in one view - Stacked chart and interactive control panel - Based on RIPEstat widget framework • Zoomable ping graph - Replacing multiple RRDs graphs: zoom in/out in time, in the same graph, without loss of detail - Easier visualisation of an event’s details - Selection of RTT class (max, min, average) • Latest results API - https://atlas.ripe.net/docs/measurement-latest-api/ Vesna Manojlovic, BalCCoN 2014 29

  30. Seizmograph RIPE Atlas 30 • Powerful Anchors Mesh Visualization • https://labs.ripe.net/Members/massimo_candela/seismograph-user-guide RIPE NCC - Measurements Tools Workshop - September 2014 30

  31. Zoomable Ping Graph 31 Text goes here Vesna Manojlovic, BalCCoN 2014 31

  32. New Success Stories 32 • Helped Wikimedia to identified ways to decrease latency and improve performance - https://labs.ripe.net/Members/emileaben/ how-ripe-atlas-helped-wikipedia-users � • Investigating problems of slow servers - http://engineering.freeagent.com/2014/01/24/ atlas-probes/ � • TimeWarnerCable outage - https://labs.ripe.net/Members/emileaben/ time-warner-cable-outage Vesna Manojlovic, BalCCoN 2014 32

  33. Older Use Cases 33 • IXP: Measuring the e ff ect of installing L-root in Belgrade / SOX � � • DNS: Looking for most popular instances of .FR anycast servers � • Events: Measuring Internet 
 outage in Turkey Vesna Manojlovic, BalCCoN 2014 33

  34. Security Aspects 34 • Probes have hardwired trust material 
 (registration server addresses / keys) • The probes don’t have any open ports; they only initiate connections - this works fine with NATs, too • Measurements are scheduled by centralised “command servers” via reverse ssh tunnels • Probes don’t listen to local tra ffi c; there are no passive measurements running • Measurement source code published • Reported vulnerabilities: https://atlas.ripe.net/docs/security/ Vesna Manojlovic, BalCCoN 2014 34

  35. At Hackerspaces 35 � � � � � � � � � � • http://hackerspaces.org/wiki/RIPE_Atlas Vesna Manojlovic, BalCCoN 2014 � 35

  36. How to Use Measurements 36

Recommend

Measuring DNSSEC using RIPE Atlas Kaveh Ranjbar RIPE NCC RIPE Atlas Coverage RIPE Atlas 2

Measuring DNSSEC using RIPE Atlas Kaveh Ranjbar RIPE NCC RIPE Atlas Coverage RIPE Atlas 2

Measuring DNSSEC using RIPE Atlas Kaveh Ranjbar RIPE NCC RIPE Atlas Coverage RIPE Atlas 2 DNSSEC Workshop, ICANN 51 - October 2014 RIPE Atlas Coverage RIPE Atlas 3 DNSSEC Workshop, ICANN 51 - October 2014 Measurement Devices RIPE Atlas

468 views • 18 slides
World IPv6 Launch and RIPE Atlas traceroute6 Visualisation Bert Wijnen bwijnen@ripe.net

World IPv6 Launch and RIPE Atlas traceroute6 Visualisation Bert Wijnen bwijnen@ripe.net

World IPv6 Launch and RIPE Atlas traceroute6 Visualisation Bert Wijnen bwijnen@ripe.net (presenter) Emile Aben emile.aben@ripe.net Rene Wilhelm wilhelm@ripe.net Robert Kisteleki robert@ripe.net TREX Workshop 2012 14 September 2012 RIPE NCC

384 views • 19 slides
RIPE Atlas ! Robert Kisteleki ! RIPE NCC Science Group ! robert@ripe.net ! Introduction " RIPE

RIPE Atlas ! Robert Kisteleki ! RIPE NCC Science Group ! robert@ripe.net ! Introduction " RIPE

RIPE Atlas ! Robert Kisteleki ! RIPE NCC Science Group ! robert@ripe.net ! Introduction " RIPE Atlas: " There are many Atlases, this is RIPE Atlas RIPE Atlas " A prototype system for a next generation Internet measurement

629 views • 30 slides
RIPE Atlas Tools for Operators and IXPs Michela Galante RIPE NCC 24 May 2017 | LACNIC 27 | Foz

RIPE Atlas Tools for Operators and IXPs Michela Galante RIPE NCC 24 May 2017 | LACNIC 27 | Foz

RIPE Atlas Tools for Operators and IXPs Michela Galante RIPE NCC 24 May 2017 | LACNIC 27 | Foz do Iguau Overview Introduction to RIPE Atlas Use cases IXP Country Jedi New: TraceMON How to take part in RIPE Atlas RIPE

732 views • 47 slides
RIPE Atlas Highlights (and more) Robert Kisteleki RIPE NCC Science Division At a Glance RIPE

RIPE Atlas Highlights (and more) Robert Kisteleki RIPE NCC Science Division At a Glance RIPE

RIPE Atlas Highlights (and more) Robert Kisteleki RIPE NCC Science Division At a Glance RIPE Atlas Highlights 2 Better UIs and APIs Probe tagging New measurement types Data streaming Anchors Other Bits: locality checks,

337 views • 21 slides
Open-sourcing RIPE Atlas Vesna Manojlovic (Presented by Philip Homburg) 30 January 2016 |

Open-sourcing RIPE Atlas Vesna Manojlovic (Presented by Philip Homburg) 30 January 2016 |

Open-sourcing RIPE Atlas Vesna Manojlovic (Presented by Philip Homburg) 30 January 2016 | FOSDEM Overview Introduction to RIPE & the RIPE NCC What is RIPE Atlas? Open-sourced RIPE Atlas tools How to take part in the RIPE

492 views • 28 slides
RIPE Atlas ICANN meeting 2014, Singapore ! ccTLD Tech Day RIPE and RIPE NCC ! ! ! ! ! ! !

RIPE Atlas ICANN meeting 2014, Singapore ! ccTLD Tech Day RIPE and RIPE NCC ! ! ! ! ! ! !

RIPE Atlas ICANN meeting 2014, Singapore ! ccTLD Tech Day RIPE and RIPE NCC ! ! ! ! ! ! ! ! ! ! ! ! RIPE Network Coordination Centre Rseaux IP Europens Started in 1992 Started in 1989 Not-for-profit

372 views • 24 slides
Lessons Learned From Using the RIPE Atlas Platform for Measurement Research RIPE 68, Warsaw

Lessons Learned From Using the RIPE Atlas Platform for Measurement Research RIPE 68, Warsaw

Lessons Learned From Using the RIPE Atlas Platform for Measurement Research Lessons Learned From Using the RIPE Atlas Platform for Measurement Research RIPE 68, Warsaw Vaibhav Bajpai, Steffie Jacob Eravuchira, Jrgen Schnwlder

351 views • 15 slides
Participating in RIPE Policy Development RIR Bottom-up Model Rules POLICIES RIPE NCC LIRs

Participating in RIPE Policy Development RIR Bottom-up Model Rules POLICIES RIPE NCC LIRs

Participating in RIPE Policy Development RIR Bottom-up Model Rules POLICIES RIPE NCC LIRs PDP WGs RIPE Community Mailing Lists / RIPE Meetings 2 Working Groups Address Policy IPv6 Routing RIPE NCC Services Database

90 views • 6 slides
A practical comparison between RIPE Atlas and ProbeAPI Cristin Varas Speedchecker Ltd.

A practical comparison between RIPE Atlas and ProbeAPI Cristin Varas Speedchecker Ltd.

A practical comparison between RIPE Atlas and ProbeAPI Cristin Varas Speedchecker Ltd. Outline Introduction Hardware (Atlas) vs. Software Probes (ProbeAPI) Coverage Measurements (ICMP) Conclusion Questions? Atlas

567 views • 20 slides
IPv6 Update Andrea Cima Registration Services Manager, RIPE NCC ICANN Meeting, Prague 28 June

IPv6 Update Andrea Cima Registration Services Manager, RIPE NCC ICANN Meeting, Prague 28 June

IPv6 Update Andrea Cima Registration Services Manager, RIPE NCC ICANN Meeting, Prague 28 June 2012 Getting an IPv6 allocation from the RIPE NCC To qualify, an organisation must: Be an LIR Have a plan for making assignments within

403 views • 15 slides
Quantifying Interference between Measurements on the RIPE Atlas platform Thomas Holterbach

Quantifying Interference between Measurements on the RIPE Atlas platform Thomas Holterbach

Quantifying Interference between Measurements on the RIPE Atlas platform Thomas Holterbach Cristel Pelsser Laurent Vanbever Randy Bush Research and Applications of Internet Measurements Saturday, 31 October 2015 Yokohama, Japan The RIPE

399 views • 15 slides
IPv6 from an RIR perspective ICANN Meeting, Lisbon 2007 Alex Le Heux, RIPE NCC Alex Le Heux

IPv6 from an RIR perspective ICANN Meeting, Lisbon 2007 Alex Le Heux, RIPE NCC Alex Le Heux

IPv6 from an RIR perspective ICANN Meeting, Lisbon 2007 Alex Le Heux, RIPE NCC Alex Le Heux ICANN, Lisbon 2007 http://www.ripe.net 1 Outline About the RIPE NCC Allocation principles IPv6 policy development Statistics Alex Le Heux ICANN,

524 views • 31 slides
Countries, IXPs and RIPE Atlas Emile Aben | 2016-02 | AIMS workshop - San Diego RIPE Atlas

Countries, IXPs and RIPE Atlas Emile Aben | 2016-02 | AIMS workshop - San Diego RIPE Atlas

Countries, IXPs and RIPE Atlas Emile Aben | 2016-02 | AIMS workshop - San Diego RIPE Atlas emile.aben@ripe.net | AIMS - Sun Diego | 2016-02 2 Coverage For Countries Some countries well covered, others not so much Can we create

590 views • 16 slides
Deploying MDA Traceroute on RIPE Atlas Probes Kevin Vermeulen 1 , Stephen Strowes 2 , Timur

Deploying MDA Traceroute on RIPE Atlas Probes Kevin Vermeulen 1 , Stephen Strowes 2 , Timur

Deploying MDA Traceroute on RIPE Atlas Probes Kevin Vermeulen 1 , Stephen Strowes 2 , Timur Friedman 1 1 Sorbonne University, 2 RIPE NCC Summary Multipath Detection Algorithm (MDA) and its limits Towards a better MDA: Survey on load

444 views • 18 slides
Global IPv6 statistics Measuring the current state of IPv6 for ordinary users Steinar H.

Global IPv6 statistics Measuring the current state of IPv6 for ordinary users Steinar H.

Global IPv6 statistics Measuring the current state of IPv6 for ordinary users Steinar H. Gunderson Software Engineer 1 Motivation There is too little data about IPv6 among clients Existing measurements mostly on a small scale and/or

517 views • 20 slides
Shrug Daemon Doing DNS the Hard Way Since 2015

Shrug Daemon Doing DNS the Hard Way Since 2015

Shrug Daemon Doing DNS the Hard Way Since 2015 https://en.wikipedia.org/wiki/Ayn_Rand#/media/File:Objectivist1.jpg Problem Statement RIPE Atlas probes have 2 DNS resolvers: Resolver local to probe RIPE Atlas central resolvers

713 views • 6 slides
Multipath Detection with RIPE Atlas Stephen Strowes <sds@ripe.net> | March 14th, 2018 |

Multipath Detection with RIPE Atlas Stephen Strowes <sds@ripe.net> | March 14th, 2018 |

Multipath Detection with RIPE Atlas Stephen Strowes <sds@ripe.net> | March 14th, 2018 | AIMS 2018 a.k.a. cant we just use RIPE Atlas for this? Stephen Strowes <sds@ripe.net> | March 14th, 2018 | AIMS 2018

345 views • 13 slides
Global Network Interference Detection over the RIPE Atlas Network Adventures in Pervasive

Global Network Interference Detection over the RIPE Atlas Network Adventures in Pervasive

Global Network Interference Detection over the RIPE Atlas Network Adventures in Pervasive Measurement Collin Anderson, Philipp Winter and Roya USENIX FOCI, August 2014 Once Upon a Time Starting from the Dark Ages For Now We See Through

488 views • 31 slides
1 Ethics of Internet Measurements Example of RIPE Atlas Vesna Manojlovic, Community Builder

1 Ethics of Internet Measurements Example of RIPE Atlas Vesna Manojlovic, Community Builder

Vesna Manojlovic | SEE8 | April 2019 1 Ethics of Internet Measurements Example of RIPE Atlas Vesna Manojlovic, Community Builder BECHA@ripe.net SEE8 | April 2019 | Sarajevo, Bosnia Overview Technical is political Ethics of

274 views • 26 slides
Fingerprint-based detection of DNS hijacks using RIPE Atlas MAPRG Meeting, IETF 99 20 th July

Fingerprint-based detection of DNS hijacks using RIPE Atlas MAPRG Meeting, IETF 99 20 th July

Fingerprint-based detection of DNS hijacks using RIPE Atlas MAPRG Meeting, IETF 99 20 th July 2017, Prague Pawe Foremski Maciej Andziski Farsight Security, Inc. NASK IITiS PAN DNS hijacks? DNS hijack: you think Google answers your

420 views • 30 slides
Detecting routing anomalies using RIPE Atlas Todor Yakimov Graduate School of Informatics

Detecting routing anomalies using RIPE Atlas Todor Yakimov Graduate School of Informatics

Detecting routing anomalies using RIPE Atlas Todor Yakimov Graduate School of Informatics University of Amsterdam Wednesday, February 5, 2014 Todor Yakimov (UvA) Detecting routing anomalies using RIPE Atlas Wednesday, February 5, 2014 1 / 17

723 views • 17 slides
Discovering Path MTU black holes in the Internet using RIPE Atlas Maikel de Boer Jeffrey Bosma

Discovering Path MTU black holes in the Internet using RIPE Atlas Maikel de Boer Jeffrey Bosma

Discovering Path MTU black holes in the Internet using RIPE Atlas Maikel de Boer Jeffrey Bosma 5 July 2012 Introduction Black holes A sphere of influence into which or from which communication or similar activity is precluded. ~

761 views • 31 slides
Measuring IPv6 with adver3sements for fun and profit George

Measuring IPv6 with adver3sements for fun and profit George

Measuring IPv6 with adver3sements for fun and profit George Michaelson, APNIC how to measure the Internet What do we mean when we say

596 views • 59 slides

More recommend