Know Your Network; why every network operator should host a RIPE Atlas probe
ripencc
9 views
31 slides
May 31, 2024
Slide 1 of 31
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
About This Presentation
Presentation given by Lia Hestina at SANOG 41 and INNOG 7 in Mumbai, India on 29 April 2024
Slide Content
Why every network operator should
host a RIPE Atlas probe
Know Your Network
Lia Hestina | SANOG 41-INNOG 7 | Mumbai
host a RIPE Atlas probe
Know Your Network
Lia Hestina | SANOG 41-INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
11 Things Network Operators Do
2
Network
Monitoring
Network
Infrastructure
Management
Security
Management
Configuration &
Optimisation
Capacity
Planning
Software Updates and Patch
Management8 ....... to 11
Troubleshooting
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
11 Things Network Operators Do
2
Network
Monitoring
Network
Infrastructure
Management
Security
Management
Configuration &
Optimisation
Capacity
Planning
Software Updates and Patch
Management8 ....... to 11
Troubleshooting
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
No News Is Good News
The Unknown
3
Your infrastructure
System & Software
Your People
What’s Known
Monitoring Tools
Security Measures
Threats/ Unpredictability
What our competitor do
Everchanging Technology
Hijacks/ Natural Disaster
Opportunity
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
No News Is Good News
The Unknown
3
Your infrastructure
System & Software
Your People
What’s Known
Monitoring Tools
Security Measures
Threats/ Unpredictability
What our competitor do
Everchanging Technology
Hijacks/ Natural Disaster
Opportunity
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
RIPE Atlas
•RIPE Atlas is a global activemeasurements platform, funded by
RIPE NCC members and sponsors
•Goal: view Internet reachability
•Probes hosted by volunteers, using a credits system
•Data is publicly available
•atlas.ripe.net
4Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
RIPE Atlas
•RIPE Atlas is a global activemeasurements platform, funded by
RIPE NCC members and sponsors
•Goal: view Internet reachability
•Probes hosted by volunteers, using a credits system
•Data is publicly available
•atlas.ripe.net
4Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
RIPE Atlas
Measurement Types
5
PING
TRACEROUTE
DNS
HTTP (anchors)
SSL/TLS
NTP
GUI
API
CLI TOOL
Accessible via
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
RIPE Atlas
Measurement Types
5
PING
TRACEROUTE
DNS
HTTP (anchors)
SSL/TLS
NTP
GUI
API
CLI TOOL
Accessible via
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai 6
Run RIPE Atlas tests
•More than 12,000 probes connected
•More than 3,000 ASNs globally
•195 in South Asia
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Run RIPE Atlas tests
•More than 12,000 probes connected
•More than 3,000 ASNs globally
•195 in South Asia
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
•High latency -impatient gamers•Gamers from different networks•Realtime application, unpredictable
7
Some Problems
Mbappe
Online gaming company
Runs own LAN
Users from around the world
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
•High latency -impatient gamers•Gamers from different networks•Realtime application, unpredictable
7
Some Problems
Mbappe
Online gaming company
Runs own LAN
Users from around the world
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai 8
RIPE Atlas Impact
A Global Network of Internet Measurements
Talk to your peers, ISP or any that can help improve RTT
Highlatency Identified
Lowerlatency
after debugging
RIPE Atlas Impact
A Global Network of Internet Measurements
Talk to your peers, ISP or any that can help improve RTT
Highlatency Identified
Lowerlatency
after debugging
Lia Hestina |SANOG 41| Mumbai
Hooray Moments!
9
Improve Performance
Shorter path is selected, better latency, reliability &
security
Service desks RIPE Atlas ❤GUI
To validate findings
Control & Flexibility
Repeat tests as much as you need!
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Hooray Moments!
9
Improve Performance
Shorter path is selected, better latency, reliability &
security
Service desks RIPE Atlas ❤GUI
To validate findings
Control & Flexibility
Repeat tests as much as you need!
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
What It Isn’t
10
Traffic VolumeBandwidthWIFIMaking your Coffee
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
What It Isn’t
10
Traffic VolumeBandwidthWIFIMaking your Coffee
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
Dare to Take a Risk?
11
Try it Wisely
Is it NEW?
Who uses the platform?
Search for BAD review/BAD experience in Google
What do people say?
What's the source? Trusted?
Convinced?
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Dare to Take a Risk?
11
Try it Wisely
Is it NEW?
Who uses the platform?
Search for BAD review/BAD experience in Google
What do people say?
What's the source? Trusted?
Convinced?
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |APRICOT 2024 | Bangkok
Security and Privacy
12
Trust Material (regular server address, keys)
NO open Ports; initiate connection; NAT is OK
Don’t listen to local traffic/ No snooping
Measurements
No passive measurements
Initiated by probes via SSH connections from probe to server
Code of measurements publicly available
Probes
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Security and Privacy
12
Trust Material (regular server address, keys)
NO open Ports; initiate connection; NAT is OK
Don’t listen to local traffic/ No snooping
Measurements
No passive measurements
Initiated by probes via SSH connections from probe to server
Code of measurements publicly available
Probes
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
A View Into South Asia
Lia Hestina |SANOG 41| Mumbai 14
RIPE NCC Tools and Services
India
4
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
RIPE NCC Tools and Services
India
4
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
Top 10 Eyeball Networks in South Asia
With No/Low Coverage
Prototype Tool
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
https://observablehq.com/@ripencc/ripe-atlas-network-
coverage?country=IN,PK,NP,LK,BT,BD,MV,AF&countrynames=yes&labels=notCover
ed&columns=4&spacing=4&radius=68
Top 10 Eyeball Networks in South Asia
With No/Low Coverage
Prototype Tool
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
https://observablehq.com/@ripencc/ripe-atlas-network-
coverage?country=IN,PK,NP,LK,BT,BD,MV,AF&countrynames=yes&labels=notCover
ed&columns=4&spacing=4&radius=68
Lia Hestina |SANOG 41| Mumbai
Probes in South Asia
16Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Probes in South Asia
16Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
3. Finding Anomaliesin Country IXP JEDI
17
South Africa
AS9299
Kenya
India
Nepal
Not enough probes to show other countries in South Asia, data is per
Jan ‘24 Prototype Tool
Lia Hestina | SANOG 41 -INNOG 7 | Mumbaihttps://jedi.ripe.net/latest/IN/ixpcountry/index.html?A
SNS=all&ipv=v4
3. Finding Anomaliesin Country IXP JEDI
17
South Africa
AS9299
Kenya
India
Nepal
Not enough probes to show other countries in South Asia, data is per
Jan ‘24 Prototype Tool
Lia Hestina | SANOG 41 -INNOG 7 | Mumbaihttps://jedi.ripe.net/latest/IN/ixpcountry/index.html?A
SNS=all&ipv=v4
Lia Hestina |SANOG 41| Mumbai 18https://observablehq.com/@ripencc/atlas-latency-worldmap
LatencyAS13335
Cloudflare CDNMinRTT
Prototype Tool
Latency within 50ms
LatencyAS13335
Cloudflare CDNMinRTT
Prototype Tool
Latency within 50ms
Lia Hestina |SANOG 41| Mumbai 19
https://atlas.ripe.net/probes/11
978/#tab-networkProbeID11978
India
Let’s zoom in
Prototype Tool
Are these networks with
high latencyimportant to you?
https://atlas.ripe.net/probes/11
978/#tab-networkProbeID11978
India
Let’s zoom in
Prototype Tool
Are these networks with
high latencyimportant to you?
Lia Hestina |SANOG 41| Mumbai 20
https://atlas.ripe.net/probes/61
948/#tab-network
ProbeID61948
Bangladesh
Prototype Tool
Are these networks with
high latencyimportant to you?
https://atlas.ripe.net/probes/61
948/#tab-network
ProbeID61948
Bangladesh
Prototype Tool
Are these networks with
high latencyimportant to you?
Lia Hestina |SANOG 41| Mumbai 21
https://atlas.ripe.net/probes/6575/#ta
b-network
AnchorID6575
Nepal
Prototype Tool
Are these networks with
high latencyimportant to you?
https://atlas.ripe.net/probes/6575/#ta
b-network
AnchorID6575
Nepal
Prototype Tool
Are these networks with
high latencyimportant to you?
Lia Hestina |SANOG 41| Mumbai 22
https://atlas.ripe.net/probes/1006554/
#tab-network
SW ProbeID1006554
Afghanistan
Prototype Tool
Are these networks with
high latencyimportant to you?
https://atlas.ripe.net/probes/1006554/
#tab-network
SW ProbeID1006554
Afghanistan
Prototype Tool
Are these networks with
high latencyimportant to you?
Lia Hestina |SANOG 41| Mumbai 23
MinRTT
Your network neighbourhoodas seen through RIPE Atlas
Try your probe here
https://observablehq.com/
@ripencc/atlas-probe-
neighbourhood?
NOTE: As MinRTT tool, AS13335 is not seen in Pakistan and Bhutan
Possibly because there are not enough probes within the economies and/or other reasons
**This is a prototype**
Install software probes now and see the difference
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
MinRTT
Your network neighbourhoodas seen through RIPE Atlas
Try your probe here
https://observablehq.com/
@ripencc/atlas-probe-
neighbourhood?
NOTE: As MinRTT tool, AS13335 is not seen in Pakistan and Bhutan
Possibly because there are not enough probes within the economies and/or other reasons
**This is a prototype**
Install software probes now and see the difference
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai 24
https://observablehq.com/@ripencc/ripe-atlas-networkcoverage?country=BD,IN,MN,NP,PK&search=38742&labels=notCovered&columns=4&spacing=4&radius=90
We’d love to install probes in these ASNs
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
https://observablehq.com/@ripencc/ripe-atlas-networkcoverage?country=BD,IN,MN,NP,PK&search=38742&labels=notCovered&columns=4&spacing=4&radius=90
We’d love to install probes in these ASNs
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
Some Reasons to Love RIPE Atlas
25
Fair Use/
Non Monetary
Global Coverage
Regular third-party security review
Non-profit organisation
Volunteers: End Users
Measurement results open to all
By the community for the community
12,000 Probes
Trusted Source
Safe & Secure
Open Data
Community Driven
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Some Reasons to Love RIPE Atlas
25
Fair Use/
Non Monetary
Global Coverage
Regular third-party security review
Non-profit organisation
Volunteers: End Users
Measurement results open to all
By the community for the community
12,000 Probes
Trusted Source
Safe & Secure
Open Data
Community Driven
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
What’sNext?
Redeem This Voucher
SANOG41
26
Create a RIPE Access ACCOUNT
INSTALLRIPE Atlas (SW) probes strategically
Start testing, MONITORyour network performance
PEERwith RIS*
Did your probe disconnect? Reconnect it!
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
What’sNext?
Redeem This Voucher
SANOG41
26
Create a RIPE Access ACCOUNT
INSTALLRIPE Atlas (SW) probes strategically
Start testing, MONITORyour network performance
PEERwith RIS*
Did your probe disconnect? Reconnect it!
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
RIPE Atlas Community and
Supporters in South Asia
•RIPE Atlas Ambassadors
•Probe Hosts
•Sponsors
•And many more……
Thank you
for being
Amazing
•Supporters and all the local NOGs
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
RIPE Atlas Community and
Supporters in South Asia
•RIPE Atlas Ambassadors
•Probe Hosts
•Sponsors
•And many more……
Thank you
for being
Amazing
•Supporters and all the local NOGs
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |APRICOT 2024 | Bangkok
What is RIS?
•RIS is a routing data collection platform
•Collecting BGP data since 1999
•Up-to-date routing information, as
opposed to information in databases and
routing registries, such as:
-What is being announced
-Which prefixes are seen and where
-Which prefixes are not seen
28
23 collectors
1377 global peers
THANK YOU TO OUR COMMUNITY
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
What is RIS?
•RIS is a routing data collection platform
•Collecting BGP data since 1999
•Up-to-date routing information, as
opposed to information in databases and
routing registries, such as:
-What is being announced
-Which prefixes are seen and where
-Which prefixes are not seen
28
23 collectors
1377 global peers
THANK YOU TO OUR COMMUNITY
Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |APRICOT 2024 | Bangkok
How Can RIS Help Network Operators?
•Is your prefix getting announced?
-RIS Live (https://ris-live.ripe.net/)
-RIPEstat (https://stat.ripe.net/app/launchpad)
•Tools developed by others allow you to set an alert
-Try out BGP Alerter(powered by RIS Live)
-PacketVis https://packetvis.com/
29Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
How Can RIS Help Network Operators?
•Is your prefix getting announced?
-RIS Live (https://ris-live.ripe.net/)
-RIPEstat (https://stat.ripe.net/app/launchpad)
•Tools developed by others allow you to set an alert
-Try out BGP Alerter(powered by RIS Live)
-PacketVis https://packetvis.com/
29Lia Hestina | SANOG 41 -INNOG 7 | Mumbai
Lia Hestina |SANOG 41| Mumbai
Use Cases
31
Detecting DNS root manipulation
https://labs.ripe.net/author/qasim-
lone/detecting-dns-root-manipulation/
DNS vulnerability, configuration
errors that can cause DDoS
https://labs.ripe.net/author/giovane_moura/dns-
vulnerability-configuration-errors-that-can-
cause-ddos/
TheKazakhstan outage
as seen from RIPE Atlas
https://labs.ripe.net/author/emileaben/the-
kazakhstan-outage-as-seen-from-ripe-atlas/
A distributed view of the Internet
https://labs.ripe.net/author/alun_davies/ripe-
atlas-a-distributed-view-of-the-internet/
Use Cases
31
Detecting DNS root manipulation
https://labs.ripe.net/author/qasim-
lone/detecting-dns-root-manipulation/
DNS vulnerability, configuration
errors that can cause DDoS
https://labs.ripe.net/author/giovane_moura/dns-
vulnerability-configuration-errors-that-can-
cause-ddos/
TheKazakhstan outage
as seen from RIPE Atlas
https://labs.ripe.net/author/emileaben/the-
kazakhstan-outage-as-seen-from-ripe-atlas/
A distributed view of the Internet
https://labs.ripe.net/author/alun_davies/ripe-
atlas-a-distributed-view-of-the-internet/
Tags
Categories
TechnologyDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 9
- Slides 31
- Age 550 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
48 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
47 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
37 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
34 views
21
Know for Certain
DaveSinNM
22 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
26 views