Scribd
Upload
148 views11 pages

07 Andreu-Renetcol

The document discusses RENETCOL, a network monitoring tool used by RENATER. It provides 3 sentences: RENATER uses RENETCOL to monitor over 1200 network sites, collect NetFlow data from routers, and provide accounting, security and capacity planning through visualizations and traffic analysis. RENETCOL's architecture includes NetFlow exporters, an aggregator, sender and GUI to analyze flows and generate reports on IPv4, IPv6, interfaces and autonomous systems. A live demo then showed RENETCOL's real-time monitoring and visualization capabilities.

Uploaded by

Makis Nikas
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
148 views11 pages

07 Andreu-Renetcol

The document discusses RENETCOL, a network monitoring tool used by RENATER. It provides 3 sentences: RENATER uses RENETCOL to monitor over 1200 network sites, collect NetFlow data from routers, and provide accounting, security and capacity planning through visualizations and traffic analysis. RENETCOL's architecture includes NetFlow exporters, an aggregator, sender and GUI to analyze flows and generate reports on IPv4, IPv6, interfaces and autonomous systems. A live demo then showed RENETCOL's real-time monitoring and visualization capabilities.

Uploaded by

Makis Nikas
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 11

renetcol

[email protected]

GÉANT CBP network monitoring workshop - Brno - April 2012


plan
• RENATER Context
• Functionalities
• Architecture
• RENATER case study
• Requirement
• Demo

GÉANT CBP network monitoring workshop - Brno - April 2012


RENATER CONTEXT 1/2

• More than 1200 sites


– Only 200 directly connected
– 1000 through regional network (campus,
metropolitan network…)
• How make accounting ?
– 2001-2007 : NetFlow export version 5
– Since 2007 : NetFlow export version 9 with
renetcol

GÉANT CBP network monitoring workshop - Brno - April 2012


RENATER CONTEXT 2/2

• 61 routers, 700 interfaces with Netflow (include


sub-interfaces)
• NetFlow is configured:
– in full mode on (no sampling):
• 44 Cisco 7600,
• 4 Cisco 7200,
• 2 Cisco 3845.
– in sampled mode (1 packet / 10) on:
• 3 Cisco CRS-1,
• 8 Cisco 12400 (IOS-XR).
• NDE : until 130 Mbit/s ~ 315000 flows per second

GÉANT CBP network monitoring workshop - Brno - April 2012


Functionalities
• Today:
– Real-time Flows viewer/recorder
– RRD accounting for IPv4 subnet (CIDR)
– RRD accounting for BGP AS number
– RRD accounting for IPv6 links
– Inter-POP flows Matrix
– DoS attack detection
• Next:
– Flow historic
– Accounting for IPv6 subnet
– New architecture of core: SMP arch, flows reception on 4 ports, to reached the million
of flows per second (fps) on a single hardware (currently in pre-production, release in
May 2012).
– DDoS detection
• Performance:

GÉANT CBP network monitoring workshop - Brno - April 2012


Architecture

renetcolGUI

NetFlow data export

renetcolGUI

renetcol
SM
renetcolAgg renetcolSender

RRD RRD RRD


Ifc IPv6 AS IPv4 Prefixes

hardware
GÉANT CBP network monitoring workshop - Brno - April 2012
RENATER CASE STUDY
RENETCOL for accounting, security, capacity NetFlow Data Export to 2 destinations
planning & IPv6 WeatherMap

CaNA* RENETCOL
RENETCOL (Paris1) Accounting mode for
RENETCOL (Paris2) IP subnets, AS BGP and IPv6
RENETCOL (Marseille1)
RENETCOL
RENETCOL (Marseille2)
Flow matrix mode for
french LHCOPN subnets

GéANT flows selection for


DoS detection statistics on AS BGP in LHCOPN

*: CaNA, Catalyst for NetFlow Flows selection on demand


Analyser (a replicator/duplicator) for CERT troubleshooting with GUI

GÉANT CBP network monitoring workshop - Brno - April 2012


Requirements
• Debian 32 bits distrib
• gcc , make
• Embedded GNU C Library: Profiling
Libraries (libc6-prof)
• RRD library
• Python/GTK for renetcolGUI

GÉANT CBP network monitoring workshop - Brno - April 2012


Now… Live Demo

GÉANT CBP network monitoring workshop - Brno - April 2012


Links
• http://renetcol.renater.fr/

• http://pasillo.renater.fr/weathermap/weathermap_france_ipv6.html

• Screenshots :
– http://renetcol.renater.fr/wiki/wint
– http://renetcol.renater.fr/wiki/rtfm
– http://renetcol.renater.fr/wiki/tipfields

• http://www.renater.fr

GÉANT CBP network monitoring workshop - Brno - April 2012


?

GÉANT CBP network monitoring workshop - Brno - April 2012

You might also like