Overview Fundamental concepts Typical network layout

Overview

Fundamental concepts

Typical network layout

IP subnet review

IP subnet review cont’d

Class C IP subnet example

Hi. Seas. Net DMZ subnet example

172. 16. 1. x/28 network possibilities

172. 16. 1. x/29 network possibilities

Hi. Seas. Net P 2 P subnet example

Hi. Seas. Net subnet collection

Logical Oceanus networking

Actual Oceanus networking

What is an IP tunnel?

GRE tunnels

GRE tunnel packets

IPsec tunnels

Tunnels in Hi. Seas. Net

Why bother with tunnels?

Why use Cisco routers?

Cisco gear on shore

Cisco out at sea

Cisco configuration

Basic Ship Config hostname rv-endeavor-gw ! boot-start-marker boot system flash: c 2800 nm-entservicesk 9 -mz. 12314. T 7. bin boot system flash: c 2800 nm-entservicesk 9 -mz. 1238. T 9. bin boot-end-marker ! enable secret 5 $1$/n. BM$y. IEQ 7 v/blahblah ! no ip dhcp use vrf connected ip dhcp excluded-address 131. 128. 217. 225 131. 128. 217. 239 ! ip dhcp pool dmz network 131. 128. 217. 224 255. 224 default-router 131. 128. 217. 225 ! interface Fast. Ethernet 0/0 description Ships Network ip address 131. 128. 217. 225 255. 224 no ip mroute-cache duplex auto speed auto no cdp enable interface Serial 0/0/0 description "Serial line to satellite modem" ip address 131. 128. 19. 225 255. 252 ip access-group 131 in no ip redirects no ip unreachables no ip proxy-arp ip accounting output-packets ip mtu 1400 no ip mroute-cache no keepalive fair-queue no cdp enable ! router bgp 64521 no synchronization bgp log-neighbor-changes network 131. 128. 0. 0 redistribute connected neighbor 131. 128. 19. 226 remote-as 64521 neighbor 131. 128. 19. 226 description ucsd-sdsc-roadnet -2611 neighbor 131. 128. 19. 226 next-hop-self neighbor 131. 128. 19. 226 weight 30000 neighbor 131. 128. 19. 226 distribute-list 28 out no auto-summary ! ip route 0. 0 Serial 0/0/0 205 access-list 28 permit 131. 128. 217. 224 0. 0. 0. 31 access-list 131 permit ip any 131. 128. 19. 224 0. 0. 0. 3 access-list 131 deny ip any log

More Cisco Resources

Problem solved!

Troubleshooting overview

Oceanus example

Example packet path from the ship

Ping

Ping testing ucsd-sdsc-roadnet-gw#ping knorr timeout 4 source serial 0/0/0 Type escape sequence to abort. Sending 5, 100 -byte ICMP Echos to 128. 252. 209, timeout is 4 secon Packet sent with a source address of 137. 110. 255. 93 !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 620/624 foley@epicenter 4> ping -s 128. 252. 17 PING 128. 252. 17: 56 data bytes 64 bytes from hsnkr. whoi. edu (128. 252. 17): icmp_seq=0. time=871. 64 bytes from hsnkr. whoi. edu (128. 252. 17): icmp_seq=1. time=795. 64 bytes from hsnkr. whoi. edu (128. 252. 17): icmp_seq=2. time=795. ^C

Traceroute

Traceroute output from router rv-pelican-gw#traceroute 132. 239. 4. 66 source 204. 196. 250. 12 Type escape sequence to abort. Tracing the route to 132. 239. 4. 66 1 192. 168. 2. 6 572 msec 576 msec 2 192. 168. 2. 1 628 msec 3 162. 75. 221. 73 632 msec 636 msec 4 64. 200. 121. 22 640 msec 644 msec 5 64. 200. 121. 21 648 msec 6 64. 200. 210. 53 644 msec 648 msec 7 64. 200. 210. 65 648 msec 8 64. 200. 249. 130 656 msec 648 msec 9 4. 68. 110. 13 648 msec 10 4. 68. 19. 126 656 msec 660 msec 648 msec 11 4. 69. 136. 157 656 msec 652 msec 12 4. 69. 132. 77 684 msec 680 msec 684 msec 13 4. 69. 137. 18 692 msec 4. 69. 137. 22 740 msec 4. 69. 137. 26 692 msec 14 4. 68. 20. 4 680 msec 4. 68. 20. 68 680 msec 4. 68. 20. 132 716 msec 15 4. 78. 194. 82 680 msec 684 msec 16 137. 164. 210 684 msec 688 msec 17 132. 239. 255. 145 712 msec 684 msec 18 132. 239. 4. 66 684 msec

Packet sniffing

Other tools that might help

Common carrier routing

The MTU problem

Quality of Service (Qo. S)

Accelerator capabilities

Accelerators in Hi. Seas. Net

Services offered

Security

Policy

Earth station network

Monitoring