ixp best common practices trilogy - for the infrastructure
TRANSCRIPT
Best Common Practices for IXPs management
infrastructure
Franck Simon – France IX Services
BCP for IXPs – Management infrastructure • Monitoring and management :
– Dedicated infrastructure (DMZ or VLAN dedicated to management)
– OOB management • Console access • SSH access and VPNs
– In-‐band management
=> Secure/restrict access to your equipment
2
BCP for IXPs – Monitoring • Deploy servers/monitoring tools • Elements to monitor:
– Detect any chance of MAC address on the IXP (ARPwatch…)
– Chassis: • CPU/processor (including linecards CPU when appropriate)
• Memory usage • Fans • Power units
3
• Elements to monitor: – Ports (both members and backbone ports):
• Ports status changes • CRC, input errors… • Unicast packets, non Unicast packets, average packets size …
• OpXcal levels and opXcs temperatures • In/out traffic
=> Don’t forget to also monitor your monitoring infrastructure, not only the IXP infrastructure !
4
BCP for IXPs – Monitoring
Cf. Euro-‐IX document : h^ps://www.euro-‐ix.net/documents/1391-‐euro-‐ix-‐ixp-‐bcops-‐221014-‐pdf?download=yes
5
BCP for IXPs
QuesXons ???
6
BCP for IXPs