OASIS Open Access Server In Subnet

1
OASIS Open Access Server In Subnet
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
2
Agenda of the presentation

• The project teams members
• Open Access Networks background
• Existing system
• Team achievements
• Project management
• Conclusions
• Questions and answers

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
3
Who we are

• Adrian Mahdavi
• Ke Kurt Chen
• Staffan Dahlberg
• Yidan Edward Zhou
• Gilles Grandfils

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
4
Open Access Network Concept
Operator-neutral network !
Traditional architechture
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
5
OASIS position
Goal To scale (extend via subnetting, in terms
of the amout of networks and users connected,
with the least loss of performance) an existing
Open Access Network.
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
6
The existing system design
7
Why does it need to be expanded ?

• Open.Net in It-university is expanding,
  Open.Net concept will cover Kista gallerian,
  Kista etc.
• More WLANs
• More ISP connections
• More different user types

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
8
How to expand ?

• Expand the access network by routers
• No (need MAC)
• Expand the access network by Ethernet expansion?
• No (local broadcast flooding)
• Replace the current access control with access
  control applications?
• No (extra client-end software)

Introduction
Background
Existing system
Solution
Management
Conclusions
Q A
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
9
How to solve the problem ?

• Multiple options could be used
• Packet marking, tokens
• IPv6
• PPP over Ethernet
• VPN

Introduction
Background
Existing system
Solution
Management
Conclusions
Q A
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
10
Two possible solutions

• Ethernet over IP
• Make a tunnel between routers, directly send
  Ethernet frames to the backbone.
• Authentication in subnet
• The router in the subnet acts as a firewall.
  Trust relationship with the ISPs firewall.

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
11
Our choice

• Ethernet over IP
• There will be problems with all solutions, this
  solution should have the least problems.
• Advantages
• Easy network system configuration
• Controlled broadcasting flooding by our magic

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
12
The design
MAC
Data
13
Limitations of the design

• Users can not actively open a connection to
  backbone or non Ethernet over IP subnets.
• Broadcast messages in the backbone may flood
  the subnets.

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
14
Time plan
Planning
Literature study
Design
Implementation
Testing
Techn. Ref.
Release
Pres.
Mid-term
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
15
Feedback of the planning

• Good to divide responsibilities
• Including optional goals
• Not enough checkpoints
• More time for deliverables

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
16
Encountered problems

• Communication
• Means of communication
• Individualism
• Divergent expectations on the project

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
17
Used solutions

• Communication
• Use the right means of communication
• Use a more direct way (phone / private
  meetings)

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
18
Used solutions

• Individualism
• First we used an organic structure
• Creative but messy
• More mechanical structure needed
• Organized but constrained

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
19
Things learnt

• Communication is the key
• Find a good trade-off between organic and
  mechanical structures

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
20
Things to share with other groups

• Strong knowledge about Open Access Server
• Particularly about involved techniques (GRE
  tunnelling, Ethernet over IP etc)

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
21
Things needed from other groups

• Requirements from ISPs, CSPs and users for
  future work.

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
22
What you should remember

• Scalable Operator-neutral Access network
• Technique Ethernet over IP
• Management Trade-off between Organic
  Mechanical group structure

OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
23
Question Answers
Now, It is time for discussion !
Introduction

• Your questions !
• or ...
• Hot Topics
• Management details
• Systems login scenarios
• Security issues

Background
Existing system
Solution
Management
Conclusions
Q A
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
24
Tech Notes for QA
25
Notes System Component Definition

• Registration(Configure) server Provide service
  for registration end-user ISP preference
• DHCP relay Provide dynamic end-user IP address
  configuration according to the users ISP
  configuration.
• Dynamic Filtering Firewall Control the traffic
  flow from the open access network to ISPs
  according to the combination of end users MAC
  and IP
• Access Server According to the users
  registration, send control request to filtering
  firewall and detect the online status of end
  users
• MAC-ISP DB server store the users ISP
  preference and related mapping information

Question Answer (Tech)
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
26
Notes System Function View
Qusetion Answer (Tech)
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
27
Notes Solution Design Outline

• Use Ethernet over IP to connect the access
  subnet and the backbone.
• Prevent broadcasting from subnet to backbone.
• Allow broadcasting from backcone to subnet.
• Each access subnet has an address server that
  responds to ARP requests for IP addresses of well
  known services (public services and ISP
  firewall).
• Each access subnet has a DHCP relay

Question Answer (Tech)
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
28
Notes Solution Scenario
ISP DHCP Server
Default DHCP Server
ISP Authen Server
MAC-ISP DB
Question Answer (Tech)
Central DHCP replay
Access Relay
Access Server
Fire Wall
Subnet DHCP replay
User
ARP phantom
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
29
Management Notes for QA
30
Notes Keys of teamwork

• Because a team is not just a set of
  individuals put together
• Aim guide the groups production to meet the
  best efficiency

Question Answer (Manage)
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
31
Notes Project Achievement

• Goals until mid-term
• Project plan
• Literature study paper
• Lessons learned paper
• Proposition of design

Question Answer (Manage)
Results All achieved
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
32
Notes Next Step

• Complete the design
• Implementation in test bed
• Testing
• Optional Technical refinements

Question Answer (Manage)
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH
33
Notes Project Time Usage Plan
hours
1200
Question Answer (Manage)
800
400
Jan
Feb
Mar
OASIS Open Access Server In Subnet
Communication Systems Design 2002 KTH