Quietly at just after 10pm, #INEX traffic went over 50Gig for the first time – 51.178Gig. Taking bets on when we hit 100! #peeringprizes
— INEX (@ComePeerWithMe) January 31, 2013
Category: IP Networking
For OpenVPN Fans – Optimising for GE Networks
I came across this article today which discusses OpenVPN optimisations for Gigebit Ethernet networks.
http://community.openvpn.net/openvpn/wiki/Gigabit_Networks_Linux
It also shows the phenomenal improvement that can be made thanks to the AES-NI instruction set on newer Intel and AMD chips.
So it’s finally happened…
RIPE put out a press release today:
RIPE NCC Begins to Allocate IPv4 Address Space From the Last /8
14 Sep 2012
On Friday 14 September, 2012, the RIPE NCC, the Regional Internet Registry (RIR) for Europe, the Middle East and parts of Central Asia, distributed the last blocks of IPv4 address space from the available pool.
This means that we are now distributing IPv4 address space to Local Internet Registries (LIRs) from the last /8 according tosection 5.6 of “IPv4 Address Allocation and Assignment Policies for the RIPE NCC Service Region“.
This section states that an LIR may receive one /22 allocation (1,024 IPv4 addresses), even if they can justify a larger allocation. This /22 allocation will only be made to LIRs if they have already received an IPv6 allocation from an upstream LIR or the RIPE NCC. No new IPv4 Provider Independent (PI) space will be assigned.
It is now imperative that all stakeholders deploy IPv6 on their networks to ensure the continuity of their online operations and the future growth of the Internet.
In other words, for all intents and purposes, Europe (and Central Asia and the Middle East) is out of IPv4 addresses. Funnily enough, I’m actually happy that this long predicted day has arrived and we can start the next phase of IPv6 deployment.
NOCtools – A Mixed Bag of Tools and Utilities for NOC Engineers
NOCtools is a mixed bag of tools and utilities that are useful for NOC engineers. This project originally started out as a way to highlight and utilise our OSS_SNMP library (a PHP SNMP library for people who hate SNMP).
It since grew into a way to graphically present information on network topology that is normally difficult and cumbersome to do by logging into individual devices. Such information includes a discovered L2 topology by CDP, using this to present rapid-PVST port roles and so forth.
From the company blog:
Today, we are introducing NOCtools which uses this library to provide a number of useful tools including:
- CDP Neighbours:Â for a given CDP enabled device, display its CDP neighbours with information and also a graph showing connected ports.
- CDP L2 Topology:Â graph the layer 2 network topology based on a recursive crawl of CDP neighbours.
- RSTP Topology & Port Roles: similar to CDP L2 Topology above but this takes a specific VLAN and identifies and graphs Per-VLAN Spanning Tree port roles.
- Per-VLAN RSTP Port Roles:Â a tool that will display the per-VLAN Rapid STP port roles for a given VLAN (or for all VLANs) on a device.
- Inter-Device VLAN Comparison:Â a tool that will compare VLANs available (and their respective names) across selected devices allowing you to ensure consistency as well as perform simple security audits.
Follow the links about for screen shots and more details. We are releasing this under a GNU GPL license in the hope that the wider networking community will benefit from them.
What the Hell is INEX? An IXP?
In a few recent posts, I’ve mentioned INEX.
INEX is a neutral, industry-owned association, founded in 1996, that provides IP peering facilities for its members. INEX membership is open to all organisations that can benefit from peering their IP traffic and there are currently 57 members.
INEX can also be considered Ireland’s IP Peering Hub. INEX membership provides high-speed, reliable and resilient IP traffic exchange facilities for both Irish and International organisations, allowing them to route IP traffic efficiently thereby providing faster, more reliable and lower-latency internet access for their customers.
So what the hell is an IXP? Well, Euro-IX commissioned the following, the Internet Revealed: A file about IXPs, a couple of years ago which brilliantly explains IXPs.
Follow Up – IPv6 Statistics at INEX
A couple of days ago, I was talking about World IPv6 day with some notes on the Irish context.
INEX is a neutral, industry-owned association, founded in 1996, that provides IP peering facilities for its members. INEX membership is open to all organisations that can benefit from peering their IP traffic and there are currently 57 members.
INEX can also be considered Ireland’s IP Peering Hub. INEX membership provides high-speed, reliable and resilient IP traffic exchange facilities for both Irish and International organisations, allowing them to route IP traffic efficiently thereby providing faster, more reliable and lower-latency internet access for their customers.
As a follow up to the previous post, here’s a like for like comparison of IPv4 and IPv6 traffic over peering LAN 1 of the exchange:
Notes:
- As a layer 2 exchange, traffic over INEX is symmetrical – traffic originating from one member is destined for another.
- INEX runs two peering LANs for resiliency. The IPv6 traffic on LAN 2 was negligible over the same period. See the public statistics and the weathermaps of each LAN showing the network topology.
World IPv6 Day with Irish Statistics
In case it passed you by, today was World IPv6 Day. In a nutshell: “Major Internet service providers (ISPs), home networking equipment manufacturers, and web companies around the world are coming together to permanently enable IPv6 for their products and services by 6 June 2012.” This includes top content providers such as Facebook (see under their hood), Google (read what they had to say), Yahoo! and Microsoft. In fact, you may not even have noticed but Google were advertising it front and centre on their search page:
Over at INEX, we were unable to pull out IPv6 traffic statistics on the exchange until recently and my colleague just got the first pass of that project complete this week in time for World IPv6 Day. Here’s how it looked over the hours leading up to and into World IPv6 Day:
Now, the peek of almost 40Mbps is, most assuredly, small compared to the overall peek of 24Gbps, but there is a very pronounced jump in IPv6 traffic which is certainly a good sign and a move in the right direction. The overall peering statistics at INEX are public and we’ll be breaking out IPv4 and IPv6 into separate graphs shortly also.
Why does IPv6 amount to < 0.2% of the traffic at the exchange? Well there are two main factors:
- Until today, there has been very little mass or popular content available over IPv6. So, even if you were IPv6 enabled, there was very little for you access.
- None of the large ISPs in Ireland are providing IPv6 connectivity to end users outside of certain closed test programs.
This is the classic chicken and egg problem: with no content available the ISPs were not motivated to provide IPv6 connectivity; and, conversely, with no IPv6 enabled eyeballs the content providers were not motivated to make their services available over IPv6.
While today was not necessarily a content provider only day, I’m unaware of any Irish ISPs that got involved. But, now that we have significant content available over IPv6, hopefully the ISPs will begin to ramp up their own programs. And – to be fair – it’s not all bad news with the ISPs in Ireland. Most have their core and edge networks IPv6 enabled, it’s the access layer that’s the issue (and it’s a really really big issue and a very difficult issue).
AMS-IX (the Amsterdam Internet Exchange) is in the top three IXPs in the world by traffic volume and they also make their IPv6 statistics public. As a second demonstration of traffic levels on World IPv6 Day, here is the week to date showing a huge differential for today:
If you’re not sure what all this is about, well then here are a few words from the creator of the Internet himself:
And if you’re keen to start experimenting with IPv6, first email and ask your ISP. They’ll say no, but do it anyway! Then head over to SixXSÂ (and be sure to choose either HEAnet or Digiweb as your PoP as both are INEX members and as such you’ll have the lowest possible latency).
Interesting Network Infrastructure Developments
I was recently asked for a few bullet points on some recent “interesting network infrastructure developments”. In the five minutes I had, I offered the following:
- TRILL – Transparent Interconnection of Lots of Links – a new layer 2 routing protocol which promises to replace STP. What’s really interesting about TRILL is that it does not need to be loop free; there are no blocking ports; and frames can take the shortest path. See http://www.ipjforum.org/?p=582 and http://en.wikipedia.org/wiki/TRILL_(computing).
- Open Networking Foundation – https://www.opennetworking.org/ – “The Open Networking Foundation (ONF) is a non-profit consortium dedicated to the transformation of networking through the development and standardization of a unique architecture called Software-Defined Networking (SDN), which brings direct software programmability to networks worldwide. The mission of the Foundation is to commercialize and promote SDN and the underlying technologies as a disruptive approach to networking that will change how virtually every company with a network operates.” – members include Facebook, Google and Microsoft.
- OpenFlow – http://www.openflow.org/ – “OpenFlow enables networks to evolve, by giving a remote controller the power to modify the behavior of network devices, through a well-defined “forwarding instruction set”. The growing OpenFlow ecosystem now includes routers, switches, virtual switches, and access points from a range of vendors.” – adopted by Googleand others.
- OpenCompute – slightly off networking but relevant – http://opencompute.org/ – “A small team of Facebook engineers spent the past two years tackling a big challenge: how to scale our computing infrastructure in the most efficient and economical way possible. … Everyone has full access to these specifications. We want you to tell us where we didn’t get it right and suggest how we could improve. And opening the technology means the community will make advances that we wouldn’t have discovered if we had kept it secret.”
Engineers Ireland – IPv6 Presentation
This evening I will be presenting the following to Engineers Ireland on behalf of INEX.
- PDF version:Â IPv6 – Engineers Ireland – April 25 2012
- PowerPoint (2010) version:Â IPv6 – Engineers Ireland – April 25 2012
We’re IPv6 Ready! Are you?
Open Solutions has been certified by INEX to their Platinum standard. This means both our website and our DNS name servers are IPv6 enabled.
We should of course disclose that not only do we contract services to INEX, we also developed the website and web application that powers IPv6Ready.ie!
It is vital that content owners and businesses that generate even a small proportion of their revenue through an online presence become IPv6 Ready.
To this end, IPv6 Ready is an initiative by INEX to promote the uptake of IPv6 in the Internet and broader business communities. While IPv6 has been available and in active use for over 10 years, its take up has been stunted by the continued, but increasingly limited, availability of IPv4 address space. INEX, with the IPv6 Ready initiative is encouraging businesses to delay no longer and invest in IPv6 to ensure the future of their Internet related activity.
Even if you’re not IPv6 Ready just yet, you can still make your users and customers aware that you realise the importance of this by displaying the IPv6 Pending badge which you receive by signing up at IPv6Ready.ie.
Test your site now: www.ipv6ready.ie.
—
Open Solutions has been a part of INEX’s operations team since April 2008, working with the expanding number of INEX Members and ensuring the smooth running of the exchange. We assist with the administration of the switching frabic, provide member support, and develop INEX’s provisioning and management systems.
IPv6 Ready is a PHP application using our standard application framework of Zend, Doctrine ORM and Smarty running on a FAMP stack.