RBI Cloud setup .pptx Shared by iftas sifynoc team

OkGoogle19 21 views 21 slides Oct 11, 2024
Slide 1
Slide 1 of 21
Slide 1
1
Slide 2
2
Slide 3
3
Slide 4
4
Slide 5
5
Slide 6
6
Slide 7
7
Slide 8
8
Slide 9
9
Slide 10
10
Slide 11
11
Slide 12
12
Slide 13
13
Slide 14
14
Slide 15
15
Slide 16
16
Slide 17
17
Slide 18
18
Slide 19
19
Slide 20
20
Slide 21
21

About This Presentation

RBI Cloud team

Size: 3.21 MB
Language: en
Added: Oct 11, 2024
Slides: 21 pages

Slide Content

IFTAS - Cloud Setup Training Created by R.R.Ram Manoj

RBI-IFTAS Cloud DC Banks VRF:- 9434-ICLOUD-HUB VRF:- 9435-ICLOUD-SPOKE SIFY GDC

RBI-IFTAS Cloud DC Banks VRF:- 9434-ICLOUD-HUB VRF:- 9435-ICLOUD-SPOKE Hardware used CISCO 1921 CISCO 1941

RBI-IFTAS Cloud DC Banks VRF:- 9434-ICLOUD-HUB VRF:- 9435-ICLOUD-SPOKE Service Provider

RBI-IFTAS Cloud DC Banks VRF:- 9434-ICLOUD-HUB VRF:- 9435-ICLOUD-SPOKE Protocols

TCL BSNL Sify Servers DC-DC connectivity Servers PRY Traffic PATH SCY Traffic PATH TRY Traffic PATH All the providers are delivered only single link, no backup link Each link connected with dedicated router(1:1)

TCL BSNL Sify Servers Member bank-DC connectivity Servers Bank can take any of the service providers based on the feasibility Each link connected with dedicated router at bank side (1:1) VTI(GRE over IPSEC ) running between MB to DC and BGP is running through the VTI interface VTI(GRE over IPSEC) VTI(GRE over IPSEC) VTI(GRE over IPSEC)

Traffic Patten DC-DC Traffic Pattern Site PRY ISP SCY ISP TRI ISP 1 TRI ISP 2 HYD IFTAS-GPX TCL SIFY BSNL RCOM MB DC's MB ISP Combination Link Priority ISP1 ISP2 IPS3 PRY-ISP SCY-ISP TRD-ISP GPX DC(MUM) SIFY RCOM - SIFY RCOM - SIFY TATA - SIFY TATA - RCOM TATA - TATA RCOM - SIFY TATA RCOM SIFY TATA RCOM SIFY BSNL - SIFY BSNL - RCOM BSNL - RCOM BSNL - TATA BSNL - TATA BSNL - IFTAS DC(HYD) SIFY RCOM - SIFY RCOM - SIFY TATA - SIFY TATA - RCOM TATA - TATA RCOM - SIFY TATA RCOM SIFY TATA RCOM SIFY BSNL - SIFY BSNL - RCOM BSNL - RCOM BSNL - TATA BSNL - TATA BSNL - DC-DC MB-DC

SLA ( New Ni design)

INTERNET and OFFNET DDOS

INTERNET: IFTAS CLOUD team having the two Internet sites at HYD IFTAS DC and GPX Mumbai HYD DC – SIFY (Managed) + TCL (Un-Managed ) GPX DC – Airtel (Un-Managed ) + TCL (Un-Managed ) Only Sify router is under managed services. Lastmile with BGP and weight attributes. Site is protected with Cloud DDOS services PE : 1.7.0.229 Interface - Bundle-Ether8.125 RP/0/RSP0/CPU0:AP-HYD-GGD-T1-ST-SIP-CA91-R01-GDC#sh run int Bundle-Ether8.125 Tue Mar 30 19:31:27.997 IST interface Bundle-Ether8.125 description INDIAN FINANCIAL TECHNOLOGY & ALLIED SERVICES-SIFY-GDC-3932792-60-MBPS-ECINT-ETH-PRIMARY-4602420617 service-policy input RATE-LIMIT-IN-60MB service-policy output RATE-LIMIT-OUT-60MB ipv4 address 223.31.193.57 255.255.255.252 encapsulation dot1q 125

OFFNET DDOS ( without Attack ) Airtel TCL DDOS NMS INTERNET SIFY NTA Data Polling GPX DC ( Un-Managed ) GPX DC is connected with Airtel and TCL. DDOS GENIE monitor the traffic in WAN interface using NTA

OFFNET DDOS ( with Attack ) Airtel TCL DDOS NMS INTERNET SIFY NTA Data Polling GPX DC ( Un-Managed ) Running GRE tunnel from Chennai PE to GPX(R1/R2) and IFTAS(R1) routers Static routes for GPX LAN pool pointing towards Tunnel interface (Manual additions when attacks) Chennai PE 100.70.3.10 GRE Tunnel

PE Tunnel Interface Chennai PE - 100.70.3.10

Steps to follow when attacks Steps Tasks Owner Step 1 DDOS team intimate the attack to IFTAS cloud team(Mail/Call) Sify DDOS Step 2 IFTAS team will raise the request to Airtel and TCL to supress the LAN advertisement on eBGP then should confirm back to Sify IFTAS Step 3 Sify DDOS team send request to Netops add the static routes in Chennai IPE(100.70.3.10) towards GRE tunnel and starts advertise the LAN pool in the Gateways Sify DDOS Step 4 SIFY DDOS team shold confirm forward traffic from Iterne to IFTAS CE routed through DDOS device and ensure scrubbing is on progress. Sify DDOS Step 5 SIFY DDOS team provide the confirmations back to IFTAS traffic routed through Sify Cloud DDOS protected services Sify DDOS Step 6 After Attack is stopped inform IFTAS team to rollback the changes Sify DDOS

Tools Used Beamon

Tools Used Ioni (back end tool) Fusion

Daily Incident

Support Work flow Helpdesk & IFTAS Sify NOC LM Provider RF Team Fiber Team Netops Team Customers Other ISP

Customer Team Cloud Team [email protected] [email protected] 040-47524072

Thank You
Tags
Categories
Sports
Download
Download Slideshow Get the original presentation file
Quick Actions
Statistics
  • Views 21
  • Slides 21
  • Age 420 days
Related Slideshows
figurative-language power point.pptththtrht 32
figurative-language power point.pptththtrht
acecamero20
21 views
Figurative-Language-powerpoint.pptgttgth 22
Figurative-Language-powerpoint.pptgttgth
acecamero20
23 views
Plasma proteins functions electroforesis - Copy.pptx 44
Plasma proteins functions electroforesis - Copy.pptx
DratoshKatiyar
22 views
FORMATO 4. PLANTEAMIENTO DEL PROBLEMA. 4 Oct. 2022.ppt 2
FORMATO 4. PLANTEAMIENTO DEL PROBLEMA. 4 Oct. 2022.ppt
LuisLopez350618
19 views
Cristiano Ronaldo jugador portugués, la leyenda 4
Cristiano Ronaldo jugador portugués, la leyenda
laparchizacorp
19 views
🎮✨ Top 10 Most Used Software Tools by Indie Game Developers (2025 Edition) 10
🎮✨ Top 10 Most Used Software Tools by Indie Game Developers (2025 Edition)
cheapersgamecomcare
19 views
View More in This Category