IXLeeds Technical UpdateIXLeeds 2 / 12 of September 2012Thomas Mangin
Technical UpdateSince IXLeeds 1 ....Work on our core servicesEmailNew switching platformLooking GlassRoute ServerBehind the scene
Mailing ListsLIThe initial Leeds Interconnect groupopsfor operational discussionplease make sure you are subscribedmembersfor members discussionvery low volumeevent-announcenew mailing list, subscribe if you want to know about IXLeeds’ events.http://mailman.ixleeds.net/mailman/listinfo/members
Contacting us by firstname.lastname@example.org , email@example.com problems with the LAN or servicesgoes to andy and thomasplease do _not_ send only one of us direct firstname.lastname@example.org , email@example.com question about ixleedsgoes to the whole board (currently)firstname.lastname@example.org board email address
Migration to the Brocade RX8Installation and Migration in MarchSurprises during installationBack to front installation (wrong cold aisle)Front to side airflow intake for powerSide to side air-flow intake for the switchOvernight workNo complicationPort security works well (some of you know about it)Thank you tofor the donation and the configuration template / manualsAndy and Craig for their help on the night
TrafficTraffic at the exchangeStill driven by a very few membersMost networks are eyeballsOver 300 Mb this AutumnThis week around 100 MbLive graphs ?changed a few time the backend(witchtrial on previous server, cacti, going to FranceIX)need to be merged to keep historydifferent RRD format .. not as simple as it sounds at first.ETA: with SFlow or before
New Looking GlassNew tools availablehttp://lg.ixleeds.net/by Daniel Piekacz (in the room) from Exa Networksusing ExaBGP (our current route-collector)Publicly released last weekhttps://code.google.com/p/gixlg/Already other public location using it ..http://www.freestone.net/lg/
New Looking GlassA few glitches to ironNothing major.I am on it ...Still not completed.IPv6 still on Cisco ..Google “IPv6 vlan ubuntu bug” (now fixed)
Looking GlassPublic visibility of the collector
Route ServersFinally ... They are readyThank you tofor sharing their work with usAndy for installing the server and configuring them ...You can connect !Collector : 184.108.40.206 / AS 51526RS1 : 220.127.116.11 / AS 57932RS2 : 18.104.22.168 / AS 57932Not yet available on the 9k LAN“Preempting : No Martin, no IPv6. At least not yet”
Behind the sceneIntranetWe are missing contact information for a fewmembers, we will be contacting you shortly.
Behind the scenecontinued ...Quickly* to not be too boringPaper .. workThe connection policy ratifiedRIPE resources request and transferDocumentation (network, servers, ...)Server .. workNew servers installation and maintenanceWEB, DNS, NTP, SYSLOG, MAIL/Mailing Lists, ...Offsite backupsWebsite .. workWebsite (DB integration) whizz-kid anywhere ?Late .. workquite a _lot_ on our todo lists .....* Yes I can speak even faster
Technical Updatetime is limited .. problem happensSFLOW statusLAN issuesand lesson learned
SFLOWA work in progress.Thank you very much toFor sharing their work with us ..is there any IX we did not borrow something from ?Planning to make their work generic.And release it to every Euro-IX membersSome work leftThe code is good, need cleanup and making generic
IssuesOne global LAN issueall the port went downrequired a reboot of the switchfound an issue with remote syslog ...Many port security violationA few member suffering from MAC leaksRoute CollectorTwo separate issues (one in April) not service affecting (one last week)Fixed quickly (but some members left their session down)left members without session while it was updated / fixed
IssuesWhat did we learnNeed for better (external) monitoringMembers were faster to detect the fault than we wereBetter out of band solutionMake sure we have console OOBThe right console cables is now left on-siteWe could not access the switch before the reboot :(
9,000 Bytes MTU VLANInspiration : draft-mlevy-ixp-jumboframes-00Took some convincing to get RIPE to agree ..Allows to pass encapsulated traffic unfragmentedL2TP, SAN, ...Requires a new portNo extra cost - Just ask for itNew Service
New ServiceMember to Member PIProvided by many IXeshttps://www.euro-ix.net/tools/ixp_matrix“vlan services”Possible onexisting port as a VLANmost practical, preferred routeon a dedicated portfor free (as long as we have no port pressure constraint)Like normal peering LAN, two optionsIPv4 / IPv61500 / 9000 Bytes MTU
Moving Forward ..Starting new services ?Private User GroupPoint to Multi-PointStill BGP between different speakersProvide more value to our membersstarting partnership to become as well a plaform for servicesA marketplace for transit ?Allowing different joining condition for foreign networks ?Require a consultationBoard strategic review on new servicesPresentation to members for a vote
Technical UpdateGood of the internetL-ROOTM-LABNews ServiceMore ?
Looking ForwardIX helping to keep traffic localone of the reason for peeringIX helping with resiliencepeering is distributedIX helping internet researchhelps our members
For the good of the internetProviding connectivity to friendly organisationL-ROOT DNS ServerConnecting an AnyCast DNS serverProvide resilience for DNSGoogle “godaddy outage million sites”M-LABMeasurement Lab (M-Lab) is an open, distributedserver platform for researchers to deploy Internetmeasurement tools.
For the good of the t’interwebNews servicerequested by a memberaccess to usenet news to your customers via IXLeedsbinary free to begin withonce online, point your DNS to it :DAny more ?mirror of popular sites ? Distribution, etc.others