The document summarizes the network for the APRICOT2017 conference. NetNam provides a 100Mbps uplink connection that was upgraded to 150Mbps. The network uses IPv4 and IPv6 addressing and has no filtering. Equipment included Mikrotik and Cisco routers and switches along with Ruckus wireless access points. There were 1475 unique hosts from a variety of companies, with most being Apple devices. Network monitoring tools included syslog, SNMP, and NetFlow and one client was rate limited for heavy downloading.

1. APRICOT2017
conference network
NetNam and APRICOT technical team
Yoshinobu ʻmazʼ Matsuzaki
<maz@iij.ad.jp>
APRICOT2017 1

2. Network
• NetNam provides transit
• 100Mbps x 2 uplink
• upgraded to 150M
• Fully dual stacked
• No filtering
• APRICOT network
• AS24555
• 220.247.144.0/20
• 2001:df9::/32
APRICOT2017 2

3. Equipment
• Routers
• Mikrotik CCR1036-12G-4S
• Wireless APs
• Ruckus R710
• Ruckus R500 & ZF7372 as well
• Switches
• Cisco SG300-10MPP
• 3Com 4500 PWR 26-Port
APRICOT2017 3

4. Clients
• 1475 unique hosts during 2 weeks
• 57% Apple
• 12% Intel
• 7% Samsung
• Peak # of hosts: 514
APRICOT2017 4

5. Statistics
APRICOT2017 5

6. Monitoring and alerts
• Syslog
• SNMP
• NetFlow
•
• We have only one case that we set rate-limiting for
continuous heavy downloading
APRICOT2017 6
the client and transmitted bytes: 2001:df9:0:1:xxx:xxx:xxx:xxx 1289045889
Top 5 Src Port ordered by bytes:
Date first seen Src Port Packets(%) Bytes(%) bps
2017-02-28 12:36:32.010 443 916457(97.8) 1.3 G(97.9) 9.4 M
2017-02-28 12:49:34.160 993 20882( 2.2) 26.6 M(2.1) 2.0 M
Summary: total flows: 72, total bytes: 1289045889, total packets: 937388
avg bps: 9550875, avg pps: 868, avg bpp: 1375
Time window: 2017-02-28 12:23:39 - 2017-02-28 12:54:43

7. High CPU load on the active router
APRICOT2017 7

8. Solved by turning off the Discovery Module
APRICOT2017 8

9. Install and reconfiguration
APRICOT2017 9

10. NetNam Operations
Many thanks to:
Mr. Tran Phuoc Huy
Mr. Tran Quang Vu
APRICOT2017 10