APRICOT 2003 Full Agenda ( For meeting room
information please click
here)
[1]pLast
update:
Instructors:Phillip Harris, Vincent Ng, Ong Beng Hui
Introduction to OSPF and BGP, Introduction to BGP policy, Router Configuration Essentials,
BGP Route Reflectors, Policy Routing. Participants should bring their own
laptop if they have one.
Instructors:Bill Manning, Joe Abley, Ed Lewis and Olaf
Kolkman
System fundamentals, Basic DNS (Server, Client, Dynamic Update, Upgrading,
Adding Zones, Using Slaves), Advanced DNS (IPv6, DNSSEC, AD integration).
Participants *must* have their own laptop computer and will have some homework
pre-assigned.
Instructors:Joel Obstfeld, Srinath Beldona,
Wojciech Dec
Introduction to BGP, BGP Multihoming basics, More advanced multihoming
practices, Case Study.
Instructors:Gaurab Upadhaya, Ritesh Joshi, Paul
Gampe
Evolution of Internet infrastructure, structure of the Internet, IP routing,
Multi-Provider Issues, Peering, Capacity Management and Planning, Business and
Pricing Models, Network Operations Management, Security, DNS, IP Address
Registries.
Instructors:Evi Nemeth, Ned McClain and Merike
Kaeo
Introduction to network security, System Security, Network Security, Dealing
with DOS attacks.
Instructor:Philip Smith, Cisco Systems Inc.
This
tutorial introduces service providers to BGP, including iBGP, eBGP and common
attributes. It will then introduce some more advanced features of BGP, and look
at the various scaling techniques available, when to use BGP instead of an IGP,
and examine policy options available through the use of local preference, MED
and communities.
The second half of the tutorial will then cover multihoming techniques,
providing example strategies for configuring multiple connections to
neighbouring ISPs, and finishing with a case study using many of the techniques
covered in the tutorial.
Instructor:Merike Kaeo, Merike, Inc.
This
tutorial will provide a comprehensive view of the most widely deployed security
technologies, and some newly emerging technologies. It will relate these
technologies to features implemented in varying vendor equipment and through
the use of specific configuration examples will show how to implement these
features to secure the core and edge of your networks.
Instructor:Matt Kolon, Juniper Networks
The Introduction to Service Provider IP
Routing workshop focuses on Internet router configuration, operation, and
troubleshooting. This course also provides a brief review of the operational
characteristics of common protocols, including OSPF, IS-IS, BGP, and
Multiprotocol Label Switching (MPLS).
The tutorial combines lecture and labs, with significant time allocated for hands-on experience with Internet software configuration, operation, and protocol troubleshooting.
Tutorial Contents
Day One
* Review of introductory
topics: IP concepts and addressing
* Hardware and software
router architecture
* Command-line interface
and configuration basics
* Protocol-independent
route properties
* Routing policy
* Open Shortest Path
First (OSPF) protocol
Instructor:Mark Williams,
Nortel Networks
Multi-protocol
label switching (MPLS) is an emerging networking technology originally designed
to give connectionless L3 protocols such as IP some of the advantages of
connection-oriented operation while still allowing them to function as
connectionless protocols from an end-system point of view. Early applications
such as traffic engineering, the enhancement of quality of service (QoS)
guarantees and the unification of L2 connection-oriented and L2 connectionless
topologies are by now well-deployed if not as widely-deployed as at first
expected.
There is a second class of application for MPLS, however, which promises to
increase the deployment of MPLS in core networks considerably, and this is not
necessarily tied to IP services. The recursive tunneling nature of MPLS makes
it a natural candidate technology for the provision of virtual private networks
(VPNs) when combined with a mechanism for the discovery and distribution of VPN
topology and membership information. The first application of MPLS in this area
was that defined in informational RFC RFC2547bis for the provision of IP VPNs.
This approach, uses MPLS as a tunneling mechanism and multiprotocol BGP for
membership discovery. Since these VPNs are provisioned on the provider backbone
and not on customer premises equipment (CPE) it falls into the general category
of provider-provisioned vpns (PPVPN).
The same approach can be used to provide of L2 frame services
This one-day tutorial starts with the basics of MPLS and its first
"IP-services" applications such as traffic engineering and then goes
on to introduce and explain the concept of MPLS-based PPVPNs. It then goes on
to deal with the specific example of a PPVPN that offers an IEEE 802.1D
compliant private bridged Ethernet service, known as a Generic Virtual Private
LAN Service (GVPLS).
Instructor:Lim Wang; Wojciech Dec, Cisco Systems Inc.
Metro Network, with Ethernet as the last mile
access technology, can deliver a variety of broadband services to the home and businesses.
This tutorial discusses the architectural options for delivering high quality
video, voice, and Internet services to the home; and how VPN services can be
offered with tight Service Level Agreement to the businesses. What Metro
technology, security and Quality of Service mechanism are needed to offer these
services?
Instructor:Ray Hunt, Department of Computer Science,
The growth and
development of wireless and mobile networks requires careful consideration be
given to the security issues of these networks. In many situations the security
architectures designed for fixed networks can be adapted for use in wireless
and mobile networks. However there are some important differences to be
considered.
In recent times we
have seen the largest Distributed Denial of Service attacks, the largest virus
attacks and some of the most dramatic web server attacks in the entire history
of the computer-communications industry. Wireless and mobile data networks are
equally vulnerable to these attacks and careful architectural design is
necessary.
This tutorial will
cover a number of very pertinent topics of interest in the area of Wireless LAN
and WAN security. It will focus on some of the (unreasonable) hype and
criticisms of WEP and look at some of the real security issues facing Wireless
LAN network users.
This
tutorial commences by examining local and wide area lower layer wireless and
mobile infrastructure including the types of threats that they face. It then
proceeds to examine the protocols and architecture that go to make up the
security infrastructure for these networks.
The high cost of Internet bandwidth, both
international and national, continues to be a major constraint for users and
service providers in this region.
Optimising the use of the available bandwidth while providing a good service to
users is a prime concern of network managers. Since much Internet traffic is
due to web access, web caching is a widely used solution. However, other types
of traffic, such as multimedia and voice, are also important.
This tutorial will introduce caching systems and the Squid cache in particular.
Participants will learn how Squid can be configured to optimise performance. We
will show how to use Squid as a bandwidth manager, and the setting up of a set
of inter-connected caches.
Network traffic can be categorised as real-time, on-line, and off-line, and
this tutorial will show how to deal with each of these types of traffic to make
the most of your Internet connections. We will also show how differentiated
levels of service can be provided to different groups of users.
Instructor:Sonam Nuri Sherpa,
Mercantile Communications (Pvt.) Ltd.
This workshop will cover the theoretical
guidelines followed by technical hands-on on the establishment of different
services required by an ISP.
Instructor:Hisn Chia Fu,
This tutorial intends to present basic concepts as well
as modern techniques of Multimedia News Web Services. The tutorial mainly
contains three parts. ±[1]p
Part I introduces basic concepts and standards, on multimedia
information (text, image, audio, & video) processing, and some AI and soft-computing
techniques such as neural networks, fuzzy and genetic computing. Part II
then goes into the technical aspects of web service development. ±[1]p
In this part, we will introduce modern development tools for web service
programming, such as ASP, Visual Studio .net, .net Framework, C# etc,. Part
III addresses case studies on Multimedia News Web Services. As
the concluding remarks to this special topic, issues on wireless multimedia
processing are addressed in the last section of this tutorial.
Instructor:Ross Callon,
Juniper Networks
This
1/2 day tutorial will discuss methods for improving the availability and
reliability of IP data networks. This will include network wide approaches to
minimize the effect of link or equipment failures, as well as methods for
improving the availability and reliability of network equipment.
Topics to be discussed include:
*Reliable
Networks
*Dynamic routing
*MPLS Fast Re-Route
*Graceful
Restart
*Reliable
Platforms
*System
architecture
*Software
and protocol robustness
*Hardware
redundancy
*Processor redundancy vs stateful mirroring
*Reliable Services
Instructor:Shankar Vemulapalli, Cisco Systems Inc.
This presentation is going to
talk about the High Availability [HA] of a
Cisco Router during a failure scenario. This includes Stateful Swith Over
[SSO] with Non Stop Forwarding [NSF] mechanisms.
SSO describes an approach to providing Route Processor redundancy
to provide state synchronization, fault recognition and containment,
non-disruptive (or minimally-disruptive) swithover from the Active RP to
redundant Standy RP, thereby providing an increase in both system and network
availability.
NSF mechanism is the ability of a router to continue to forward traffic toward
a router which may be recovering from a transient failure. Also, the
ability of a router recovering from a transient failure in the control plane to
continue correctly forwarding traffic sent in by a peer. This is in the
form of extensions to the Routing protocols OSPF, IS-IS and BGP which are being
standardized in the Internet Engineering Task Force [IETF].
This is a very useful feature in Internet Service provider (ISP) market as ISPs
want to increase revenue by honoring Service Level Agreements (SLAs) with their
customers.
Instructor:Poey Chin Lai,
The tutorial presents a knowledge based framework to identify cultural
specific needs and peculiarities that can be transformed and packaged as
technology based applications. The development process draws upon the
discipline of the innovative change approach of the technology, application
system development and in particular of human factors. Wireless and mobile
technologies are emphasized as the interconnection platform for emerging
application systems and of the current technology business trend. A role-play
session is included to identify, acquire and develop leverage knowledge from
The objectives of the tutorial are to present an insight on the
innovative change approach in the knowledge development management specifically
for application system developers. In addition, to exemplify knowledge
utilization in creating internet and wireless application systems tailored to
cultural specifics that are useable, functional, coherent, publicly acceptable,
sustainable, profitable and more importantly successfully implemented using the
innovative change approach.
Instructor:Philip Smith, Cisco Systems Inc.
This tutorial follows on from the
BGP Introduction and Deployment tutorial by Introducing some of the best current
practices for ISPs, including how to configure external peering sessions and
how to deploy BGP
The second half of the tutorial covers common problems ISPs have when deploying
BGP within their network. It looks at problems with peer establishment, missing
routes, inconsistent route selection, and convergence issues. It also looks at
real world examples of common errors which are made when deploying BGP, both as
iBGP and eBGP, in service provider networks.
Instructor:Paul Vixie, Vixie
Enterprises
Instructor: Ray
Hunt, Department of Computer Science,
Internet/Intranet architectures
are built upon a pair of protocols designed over 25 years ago and to which
virtually no consideration was given to security. Although the IPv6 networking
family has been designed to address this issue, the majority of existing
network infrastructure is subject to substantial threats. This tutorial
examines the current security risks resulting from using
Instructor:Vach Kompella, TiMetra
Networks
This tutorial will provide an in-depth
technical overview of Virtual Private LAN Service (VPLS). This is the emerging
standard for delivering Ethernet services to residential and business customers
over an IP/MPLS network, as described in IETF draft-lasserre-vkompella.
( note: the Speaker is co-author of this draft). This tutorial will discuss
the VPLS service architecture and the how it addresses the many issues facing
service providers trying to build networks for Ethernet services, including:
signaling, scaling, replication and Inter-metro services. The tutorial will
compare VPLS with several alternative architectural approaches and examine the
technical benefits that VPLS brings to the service provider and customer. The
second half of the tutorial will discuss the operational and management (OAM)
requirements for Ethernet services and the latest developments and standards
work in this area, including MAC Ping and MAC Traceroute (note: the Speaker is also co-author of many relevant drafts in this
area).
Instructor:Matt Kolon, Juniper Networks
The Introduction to Service Provider IP Routing workshop focuses on Internet
router configuration, operation, and troubleshooting. This course also provides
a brief review of the operational characteristics of common protocols,
including OSPF, IS-IS, BGP, and Multiprotocol Label Switching (MPLS).
The tutorial combines lecture and labs, with
significant time allocated for hands-on experience with Internet software
configuration, operation, and protocol troubleshooting.
Tutorial Contents
Day Two
* Intermediate-System-to-Intermediate-System (IS-IS)
protocol
* Border Gateway Protocol (BGP)
* Multiprotocol Label Switching (MPLS) concepts
* Static and signaled label-switched paths (LSPs)
* Resource Reservation Protocol (RSVP)
* Named paths Explicit Route Objects (ERO)
Instructor:Zaheer Aziz, Cisco Systems Inc.
Speaker would like to explain
fundamentals of MPLS including its architecture and applications. Main focus
would be on MPLS-VPN application. This section will cover Multi-Protocol BGP,
Deployment scenarios of MPLS-VPN using simple and complex network examples from
his past experience working with ISPs. Further advance topics like Carrier
Supporting Carriers and Inter-AS MPLS-VPN will also be discussed.
RSVP, OSPF and IS-IS extensions, TE Tunnels. This section will describe best
practices in designing fault tolerant networks with Link and Node protection
using MPLS restoration techniques.
Instructor:Bill Woodcock, Packet Clearing House
This tutorial will provide members of the Internet policy and operations
community with the information necessary to build and optimize local and
regional Internet exchanges. Bill Woodcock, research director of Packet
Clearing House, will spend a half-day covering the organizational, technical,
and financial issues which confront Internet service providers who wish to
exchange local traffic locally. Specifically, we'll discuss problems like site
qualification and selection, business model and financial planning, regulatory
and legislative lobbying and compliance, organizational structure and
governance, equipment selection, connection methods, requirements for BGP
peering, and planning for sustainability. Depending upon the composition and
backgrounds of the workshop attendees, we may also delve into issues of
developing-country ISP operational economics and appropriate technologies.
Instructor:George Vernon Neville-Neil, Nominum Inc.
Abstract of Entry: Deploying a
DHCP service in any organization requires a significant amount of effort.
DHCP doesn't just provide a set of addresses to clients, it is used to manage a
large percentage of an installation's configuration information. The
service interacts with other critical network infrastructure such as the Domain
Name System. New features in the latest versions of DHCP, in particular the
fail over protocol, provide significant improvements over prior versions of the
protocol but also add complexity to the configuration and deployment
process. This tutorial will provide practical information on deploying
DHCP services including real world examples and information on how to debug
problems.
Instructor:Jeff Doyle, Juniper Networks
Network designers and operators are almost universally
familiar with OSPF, but most are not as acquainted with IS-IS. As a
result, networkers often wonder whether OSPF or IS-IS is the best IGP for
their network. The objective of this tutorial is to provide designers and
operators with the information necessary to make more informed choices between
these two protocols. After a brief look at general link state routing issues,
including an examination of how SPF calculations work, a side-by-side
comparison of the two protocols is made. The comparisons range from each
protocol's implementation of general link state functions and concepts
such as database synchronization, designated routers, and areas, to design
issues such as scalability, extensibility, and security.
Instructor:Robin Gross, IP JUSTICE
In the wake of recent enforcement of strict
new copyright laws, it is increasingly risky to build and distribute hard ware
or software that plays digital media. Russian computer programmer Dimitry
Sklyrov spent six weeks in a
Chair:Tim John
Keynoter:H. T. Kung, William
H. Gates Professor of Computer Science and Electrical Engineering, Division of
Engineering and Applied Science, Harvard University; Member of the National
Academy of Engineering; Member of the Academia Sinica (in Taiwan)
Keynoter:Fred Baker, Chair,
ISOC¡ƒ[1]¦„[1]@s
Board of Trustees;Cisco Fellow
Track Chair: Bill Manning
Speaker: Andrew
Officially
representing the MPLS Forum, the speaker will provide a survey
and status report of past, current, and future standardization work in the
Internet Engineering Task Force's MPLS, PWE3 (Pseudo-Wire Edge to Edge
Emulation) and PPVPN (Provider Provisioned Virtual Private Networks)
Working Groups, ITU-T Study Group 13, and the MPLS Forum, to inform the
audience on current standardization activities and predictions on future
activities and work completion.
Speaker: Randy Ottman, Metro
Ethernet Forum
Service providers currently realize considerable revenue in providing
customers with Layer 2 access circuits based on technologies like Frame Relay
that serve to interconnect multiple sites. Implementing Ethernet MPLS-based
Layer 2 VPNs will enable service providers to offer similar Layer 2 services to
customers over a common packet network. From a customer¡ƒ[1]¦„[1]@s
perspective the service is identical, however, the service provider is able to
support VPN traffic together with other traffic, e.g. Internet, on a single
infrastructure. Additionally, the service provider is not responsible for
the customer¡ƒ[1]¦„[1]@s
routing topology and connectivity.
This presentation
will examine the technology needed to enable service providers to build such an
infrastructure today and will review the Ethernet MPLS-based VPN standards
efforts that are currently underway with standards bodies, such as the IETF.
Attendees will learn:
*How the use of MPLS and enhanced Quality of Service (QoS) capabilities can
provide Layer 2 VPN service over a single common packet core network at service
levels equal to, or surpassing, the customer¡ƒ[1]¦„[1]@s
experience with traditional Layer 2 VPNs.
*How network management platforms can ease the management burden of this
architecture by enabling rapid provisioning and robust management of the
network.
*How deterministic QoS will give service providers much more flexibility in
rolling out VPNs than was previously possible.
Speaker: Monique Morrow, Cisco Systems, Inc.
Focus of the presentation is a ¡ƒ[1]§tool box¡ƒ[1]¨
approach when managing MPLS-based networks. One tool does not fit all is the
premise of the presentation itself. Presentation compares and contrasts MPLS,
IP, ATM architectures as well as standards (emerging) such as ITU-T y.1711 and
IETF MPLS LSP PING. Architectural topics include dynamic and static routing,
equal-cost-multipath, label stacking and penultimate hop popping and
relationship between control and data planes. The presentation explores tool
applicability within MPLS networks and includes overview of MIBs, MPLS service
MIBS and examines pseudowire MIB relationships.
Speaker:Ahed Alkhatib,
Nortel Networks
The
advantages of the Internet for business communications have become apparent to
most enterprises and Service Providers delivering Managed IP VPN service
solutions. ±[1]p
While providing a standard and cost efficient means of communications, the
Internet (and IP) presents its own set of challenges, especially when the need
for secure communications is introduced.
Businesses
concerned with delivering secure communications
But the IPSec
protocol that underlies these IP VPNs providing the encryption and tunneling
services for secure end-to-end communications does not define a method for
exchange of dynamic routing information
This
presentation will address the use of IPSec to secure communications of an IP
network and address how the dynamic exchange of routing information between the
sites of a VPN can significantly simplify the management and improve the scale
of the VPN.
Speaker:Matt
Kolon, Juniper Networks
This presentation focuses on the components
required for routers to exhibit true non-stop forwarding in the face of
maintenance intervals, component failure or software error. The concepts of
protocol
Speaker:Rajiv Asati, Cisco Systems
Inter-AS is one of the ways for (MPLS-VPN) Service Providers to provide seamless VPN connectivity to a VPN customer, that has sites located in the areas not served by a single Service Provider. Inter-AS has become highly important in today's time since lot of Service Providers have deployed MPLS-VPN and face a continuing challenge of satisfying their customers' requirements while working with other service providers
This presentation is aimed to
demystify various ways of deploying Inter-AS and discussing the pros and cons
of each. The presentation is broken down in the following -
*what is Inter-AS
*Building Blocks
*Deployment Techniques
*RT rewrite
*Conclusion
Speaker:Roger Geerts,
Juniper Networks
There is continuing growth in MPLS infrastructure throughout the region. Together with this, there is also an increasing number of applications and features available. This sessions discusses some of the trends, challenges and design options that Service Providers face as they rollout these MPLS applications. With particular focus on -
* MPLS Traffic Engineering
* MPLS QoS
* Layer 3 MPLS VPNs
* Layer 2 MPLS VPNs
Speaker: Ray Irani, Cisco Systems, Inc.
¡ƒ[1]§Discuss the fundamental
concepts and architectural design principles of Layer 2 Tunneling Protocol
version 3 (L2TPv3) VPN which allows service providers and large enterprises to
leverage their existing native IP core networks to offer high-speed Layer 2
tunneling or VPN services to end-user customers without further increasing
their expenditure for capital equipment and quickly enabling new IP Services to
be deployed.¡ƒ[1]¨
Speaker: Andrew
This talk will discuss ongoing and ground-breaking work in the Internet Engineering Task Force's PWE3 (Pseudo-Wire Edge to Edge Emulation) and PPVPN (Provider Provisioned Virtual Private Networks) Working Groups on carrying Layer 2 protocols (ATM, Frame Relay, Ethernet) over IP- and MPLS-based networks, including interworking between these Layer 2 protocols. This work will allow service providers to provide Layer 2 services and VPNs using converged IP/MPLS-based infrastructures. The talk wi