Upgrade to Pro — share decks privately, control downloads, hide ads and more …

NYNOG #2 @ Marketplace Live

nynog
October 26, 2016
Technology
0
39

NYNOG #2 @ Marketplace Live

Interconnection Track @ NYNOG #2

Christian Koch, NYNOG
Peter Hemelstine, Digital Realty
Ryan Wooley, Netflix

nynog

October 26, 2016
Tweet

More Decks by nynog

See All by nynog
NYNOG #1 @LMHQ
nynog
0
95

Other Decks in Technology

See All in Technology
アプリがつくるNOT A HOTELブランド
hokuts
0
450
【SORACOM UG】SIM Deep Dive セキュアエレメント編
soracom
PRO
0
250
PHP"オレ"カンファレンスの告知
ysknsid25
0
320
シン・Kafka / shin-kafka
oracle4engineer
PRO
6
2.7k
Microsoft Cloudで 開発ライフサイクルを保護する
kkamegawa
0
140
スタートアップの技術顧問を3年間続けて発生した事と気付き
biwakonbu
0
150
**強い**エンジニアのなり方 - フィードバックサイクルを勝ち取る / grow one day each day
soudai
60
17k
Tebiki株式会社 エンジニア採用資料
tebiki
0
4.1k
人間の尊厳、幸福、アクセシビリティ / 第116回「WEB TOUCH MEETING」アクセシビリティSP
nulabinc
PRO
2
180
インシデントレスポンスのライフサイクルを廻すポイントってなに / Pinpoints of Incidentresponse Lifecycle for Operation
sakaitakeshi
0
290
コンテナセキュリティの基本と脅威への対策
kyohmizu
3
670
株式会社EventHub・エンジニア採用資料
eventhub
0
1.9k

Featured

See All Featured
Why You Should Never Use an ORM
jnunemaker
PRO
50
8.6k
4 Signs Your Business is Dying
shpigford
175
21k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
19
1.9k
Typedesign – Prime Four
hannesfritz
36
2k
What's new in Ruby 2.0
geeforr
336
31k
Intergalactic Javascript Robots from Outer Space
tanoku
266
26k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
6
990
The Invisible Customer
myddelton
114
12k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
118
38k
Done Done
chrislema
178
15k
Statistics for Hackers
jakevdp
789
220k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
24
2.3k

Transcript

  1. None
  2. None

  3. Meetup #2 September 22nd, 2016

  4. None
  5. None
  6. None
  7. None

  8. Network A Network B

  9. None
  10. None

  11. Settlement-Free Settlement-Based No Direct Cost Direct Cost No Agreements or

    Contracts (Usually) Commercial Relationship Bilateral or Multilateral Bilateral via Private Network Interconnect (PNI) IP Transit via Internet Exchange Point Paid Peering (Customer Routes)
  12. None
  13. None
  14. None
  15. None
  16. None

  17. Cloud Provider Product Amazon Web Services Direct Connect Microsoft Azure

    Express Route Google Cloud Platform Cloud Interconnect Oracle Cloud FastConnect
  18. None

  19. North America Europe Asia Pacific New York London Tokyo Ashburn

    Amsterdam Hong Kong San Jose Frankfurt Singapore Los Angeles Paris Chicago Dallas
  20. None
  21. None
  22. None
  23. None
  24. None
  25. None
  26. None
  27. None
  28. None
  29. None

  30. • • • ◦ Many switches actually have enough ▪

    Trident 2: 144,000 routes in 1 RU ◦ “Appropriate” is relative to your peers and their routes ▪ Global table: ~600,000 IPv4 prefixes ▪ Telx NYC route server: ~7500 IPv4 prefixes ▪ Netflix: 6 IPv4 prefixes (in NYC)
  31. None
  32. None

  33. • • •

  34. • • ◦ Identify unwanted traffic ▪ IPv6 RA, CDP,

    LLDP, STP, etc. ◦ Test basic connectivity ◦ Lock down MAC address •

  35. • ◦ Low overhead, high return • ◦ If you’re

    primarily access, hit up Apple, Google, Netflix, Microsoft, etc. ◦ If you’re primarily content, find some (local) access networks

  36. • ◦ Networks shift for various reasons • • •

  37. • ◦ By prefix ◦ By AS path ◦ Don’t

    leak private ASNs in your AS path • • ◦ Many IXPs (mostly based on IXP Manager) require this • ◦ Most peers will accept only /24 and shorter for IPv4 and /48 for IPv6

  38. • ◦ Especially if you have a limited FIB device

    ◦ Set syslog warnings and read them • ◦ Not really different than transit, but no one upstream to filter for you ◦ Drop bogon prefixes ▪ RFC 1918 space ▪ Your own space ◦ Unrealistic AS-paths ▪ Consider filtering “tier 1” ISP ASNs from peers

  39. • • ◦ Planned hardware upgrades ◦ RMAs • ◦

    Some common standards but in no way universal ◦ Real-time blackhole ◦ Selective drop of announcements ▪ Opt-out: “0:$ASN” ▪ Opt-in: “24115:24115” (sometimes needed when using opt-out)
  40. None