Re: Little BIG problem with Backbone
Am 2004-04-09 17:49:42, schrieb Ralph Paßgang:
>Am Freitag 09 April 2004 16:03 schrieb Michelle Konzack:
>in theory this is correct, but you should think about good manageable
>switches, so that you can build vlans. Without vlans your security in your
>network is not so good, because every computer can arpspoof and so sniff in
>the traffic of the other ips/nets you have conntected to the switch. Even
>Man-in-the-middle attacks are possible, if you don't think about vlans. You
>can also bind only fixed MAC Addresses to the switch ports, so that nobody
>can spoof another MAC/ARP of others, but I would prefer vlans :)
This is what the CISCO-Support told me too.
I have downloaded tons of PDF's...
But I think, I need an Army to reed it all !
>> BUT how does it work with the Connection to the Internet, exactly to
>> the other Backbones ?
>okay... in short: You need to contact the ripe and ask them for an "AS" Number
>and for an IP-Network for you.
>If you got you own AS Number, you can configure your cisco router (or every
>other router which is able to use BGP (routing-protocol)) to annouce this AS
>to the next AS (which normaly is the AS of your uplink (Maroc Telecom for
>example). The AS of your uplink will annouce your AS to his next AS and so
>on, until every AS in the world nows how to reach your AS.
Ah OK, this was not clear enough.
(I was on the Website of RIPE but does not understood all well)
>And you can announce over this AS Path your IPs (you got from the RIPE).
>After you made this, you should be reachable from all over the world...
In theory ;-) easier as I was thinking...
>> Any Informations are Welcome...
>I can only give you a short overview over the things you need... (bgp router,
>AS-Number, IP-Network). But you should inform yourself on other internet
Yes I know...
I had only a small CyberCenter-Network Project with some WaveLAN
AccessPoints but now the Idea is exploding and now it overrun me...
My brain is smoking (my ADSL-Rooter and mozilla too) because I am
working curently 15-18 hours a day
>sites... just search for: "bgp" which stands for "border gateway protocol" or
>AS. Even the ripe site should be quite informative.
OK, I know. Have gotten a used CISCO which support four OC-3 with BGP-4.
>In short: BGP is the protocol that makes the internet work, because all
>provider use this protocoll for their dynamic routing.
>With bgp you can also use multiple uplinks, even with the same network. So
>that you can send and recieve pakets for you network over two uplinks for
>example. This can be used for redundancy and for combining multiple uplinks
>(if you need a lot of bandwidth)
2 x 1 GBit ;-)
Nice Price for router which do the Job redunant... :-/
>> Greetings and nice Easter.
>Hope I could help you a bit.
Yes thanks, Now I know a little Bit more and can search more spcific.
Registered Linux-User #280138 with the Linux Counter, http://counter.li.org/