example of implementation kumpol luengpetngam telecommunication division, rth:bangkok e-mail :...

Example of Implem Example of Implementationentation

Kumpol Luengpetngam

Telecommunication Di vision, RTH:Bangkok

- E mail : kumpol@metnet.tmd.go.th

Implementation of TCP Implementation of TCP /IP at RTH Bangkok /IP at RTH Bangkok The Bangkok RTH has imp

lemented TCP/IP protocol s for Tokyo RTH, Vientiane

NMC and Kuala Lumpur N MC for data collection and

exchange.

Bangkok TCP/IP Network

MSS Host at Bangkok

TCP/IPPort

RouterCisco2600

DSUModemNokia

BB 512

NTUModem

CAT Frame Relay or

ISDN Provider

TOT PCM Mux

Provider

ETL PCM 30 Mux

Provider

DSUModemNokia

BB 512

RouterCisco2600

CAT Frame Relay or

ISDN Provider

DSUModem

RouterCisco2650

MSS at Tokyo

TCP/IPPort

NTUModem

NTUModem

NTUModem

RouterCisco1720

TCP/IPPort

MSS atVientaine

MSS VIENTIANETOT NARMPNU EXCHANGE

MSS Bangkok

Line Interface G 703(4W)

CAT

G 703(4W) Line Interface

VIENTIANE SIDE

TOKYO SIDE BANGKOK SIDE

Bangkok 64769(AS )

Tokyo 64520(AS )

Vientiane 64771(AS )

Kuala Lumpur ( 65154)

Frame RelayNetwork

Frame RelayNetwork DDN

Network

Status TCP/IP at RTH Bangkok

19310518010

1931051809. . .

19310518025. . .

19310518026. . .

19310517837. . .

19310517838. . .

A pair of official IP addresses for each pure IP link are assigned by WMO. The subnet mask is 255.255.255.252 which provides 62 subnets each with 2 hosts (routers).

Bangkok Tokyo

Frame Relay

Network

an IP address foran eligible host

a pair of IP addresses for a Frame Relay links.

for eligible hosts. Each center declares a few official IP addresses

General concepts of Addressing

Frame RelayNetworks

Router for GTS connections Cisco 2600 IOS Ver. 11.2 (3)T

NAT (Network Address Translation)MSS

-- 128 7 7 8 4. . . < > private address for THAI --> >>>>>>> >>>>>>> >>> >>>>>128772 2

Tokyo AS 64520

Bangkok AS 64769

Kuala Lumpur AS 65154

Vientiane AS 64771

DDN Network

Firewall Sentinet Ver2.1.3

20315520097. . .

193105180930

1931051801030. . . /

4THAI>>>>>

THAI2>>>>>

Private IP address

193105178 38. . ./19310518026. . .

193105178 37. . ./ 19310518025. . .

System configuration at Bangkok

GTS Circuit

Internet

LAN HUB

LAN HUB

Firewall

Firewall

Cisco Router

Digital Alpha 4000 Server

128.7.7.x

>>>>>>> Alpha 2 1 0 0 Server

128.0.7.x

TCP/IP Supported Connection Diagram

Existing Workstation>>> >>>>>>>

Circuit configuration and Protocols in transport

** - Bangkok Tokyo circuit configuration in physical level Circuit type : Frame relay Networks (NNI) Carriers : CAT (Thailand portion) Por t speeds -: 64 kbps (TMD CAT) -: 128 kbps (JMA KDDI) Delay in network : Expecting less than a few of ten milliseconds

Circuit configuration and Protocols in transport

** - Bangkok Tokyo circuit configuration in logical level

Connectivity : One Permanent Virtual Circuit (PVC) Identification of Multiplexing : Data Link Connection Identifier (DLCI) DLCI Values : 2 0 (Thailand portion) :2 0 ( J apan por t i on)

Circuit configuration and Protocols in transport

• - Bangkok Tokyo circuit configuration in logical level (next) Logical speed guarantee : Committed Information Rate (CIR)

: 1 6 Kbps (Flow from Bangkok to Tokyo) : 1 6 Kbps (Flow from Tokyo to Bangkok) Interface - : ITU T Q.9 3 3 Annex A (Thailand portion)

- : ITU T Q.9 3 3 Annex A (Japan portion)

Circuit configuration and Protocols in transport

** Protocols Link protocol : Frame Relay Network protocol : IP v4 (Internet Protocol version 4)

: ICMP (Internet Control Message Protocol) for PING Tr anspor t pr ot ocol : TCP (Transmission Control Protocol) Rout i ng pr ot ocol - : Border Gateway Protocol version 4 (BGP 4 ) Compression : None Traffic type : Meteorological message in TCP socket stream. File Transfer in future

TCP/IP TCP/IP Frame Relay Frame Relay socketssockets

The mechanism for store-and-forward, queing and others message processing should be kept.

The message structure in TCP socket stream complies with the “Recommended practices and procedure for the Implementation use and Application of TCP/IP on the GTS” (Attachment II-15 of manual on the GTS)

RoutingRoutingRouting protocol

–BGP-4 (Border Gateway protocol version 4) is used as dynamics routing protocol on the IP link.

Autonomouse Syst Autonomouse Syst em (AS) em (AS)

Autonomous System (AS) Private AS number assigned by WMO secretariat.

The AS numbers for neighbour centres are:

Bangkok RTH : AS 64769 Tokyo RTH : AS 64520 Kuala Lumpur NMC : AS 65154 Vientiane NMC : AS 64771

FilteringFilteringFiltering

–To allow only agreed protocols (port Number).

–To allow only agreed destination IP address.

–To allow only agreed source address.

Procedure for recov Procedure for recov er of missing data er of missing data

Request/Repeat of missing text message - Requests for missing text messages

should be sent on the text connection. T1T2 (in message header) of “BM” should be used.

- A requested message should be retransmitted with its original heading and with the lastest channel sequence number.

The request format The request format s s

Requesting a message (SOH) (CR)(CR)(LF) nnnn (CR)(CR)(LF) BMRR01

CaCaCaCa YYGGgg (CR)(CR)(LF) CCCC (CR)(CR)(LF) SQN nnnn= (CR)(CR)(LF)(ETX)

The request format The request format s s

Requesting a selected number of messages

(SOH) (CR)(CR)(LF) nnnn (CR)(CR)(LF) BMRR01 CaCaCaCa

YYGGgg (CR)(CR)(LF) CCCC (CR)(CR)(LF) SQN nnnn/nnnn/nnnn= (CR)(CR)(LF)(ETX)

The request format The request format s s

Requesting a continuous series of messages

(SOH) (CR)(CR)(LF) nnnn (CR)(CR)(LF) BMRR01 CaCaCaCa

YYGGgg (CR)(CR)(LF) CCCC (CR)(CR)(LF) SQN nnnn-nnnn= (CR)(CR)(LF)(ETX)

Request/Repeat of Request/Repeat of missing binary missing binary messagesmessagesRequesting a message

(SOH) (CR)(CR)(LF) nnnn (CR)(CR)(LF) BIRR01

CaCaCaCa YYGGgg (CR)(CR)(LF) CCCC (CR)(CR)(LF) SQN nnnn= (CR)(CR)(LF)(ETX)

The request format The request format s s

Requesting a selected number of messages

(SOH) (CR)(CR)(LF) nnnn (CR)(CR)(LF) BIRR01 CaCaCaCa

YYGGgg (CR)(CR)(LF) CCCC (CR)(CR)(LF) SQN nnnn/nnnn/nnnn= (CR)(CR)(LF)(ETX)

The request format The request format s s

Requesting a continuous series of messages

(SOH) (CR)(CR)(LF) nnnn (CR)(CR)(LF) BIRR01 CaCaCaCa

YYGGgg (CR)(CR)(LF) CCCC (CR)(CR)(LF) SQN nnnn-nnnn= (CR)(CR)(LF)(ETX)

To: Tokyo (text)

To: Bangkok (binary)

Port : 25703

Port : 8026

BANGKOK TOKYO

To: Bangkok (text)Port : 8025

To: Tokyo (binary)

MSS : 202 245 39 11 1. . . (cadess ) 202 245 39 12 2. . . (cadess )

Port : 25704

MSS : 203.155.200.97 203.155.200.98

ActiveOpen

Passive Open

PassiveOpen

ActiveOpen

TCP socket connections on operation basis

Bangkok-Tokyo

DDN

FTP connection - The only FTP connection, DDN to NMC Vientiane. - Using two transmitting methods: PUT and GET. - - Output for maximum 1 0 messages per file or Maximum 3 0 seconds time relay consecutively.

>>> >> >>>>>>>>>

>>> >>>> >>>>>>>>>

Get from Bangkok

PUT to Bangkok

MSS: 172.16.2.100 (AMSS)

MSS: 203.155.200.97 203.155.200.98

BANGKOK VIENTIANE

To: KL (text)

To: Bangkok (binary)

Port : 30006

Port : 9025

BANGKOK Kuala Lumpur

To: Bangkok (text)Port : 9024

To: KL (binary)

MSS : 161 142 139 230. . .

Port : 30007

MSS : 203.155.200.97 203.155.200.98

ActiveOpen

Passive Open

PassiveOpen

ActiveOpen

TCP socket connections on operation basis

Bangkok-Kuala Lumpur

Trouble shooting and Trouble shooting and problem resolution problem resolution

Steps in resolving problems:–Check the remote centre (If the security policy of the remote centre allows it.)

–Check if the link to the “outside” network is reachable.

–Check the local network by trying to reach next gateway.

–Check the local IP stack and configuration.

Basic tools for investig Basic tools for investigationationPing

–Ping will check if the destination IP address can be reached.

# 1PING TK 1 2022453911 56PING TK ( . . . ): DATA BYTES 64 2022453911BYTES FROM . . . : ICMP_SEQ=

0 59 177TTL= TIME= MS 64 2022453911BYTES FROM . . . : ICMP_SEQ=

1 59 166TTL= TIME= MS 64 2022453911BYTES FROM . . . : ICMP_SEQ=

2 59 167TTL= TIME= MS 64 2022453911BYTES FROM . . . : ICMP_SEQ=

3 59 165TTL= TIME= MS

---- ----TK1 PING STATISTICS 4 PACKETS TRANSMITTED, 4 PACKETS RECEIVED, 0% PACKET LOSS

- ROUND TRIP (MS) MIN/AVG/MAX = 165/169/177 MS # PING TKR

PING TKR (193.105.180.9): 56 DATA BYTES 64 BYTES FROM 193.105.180.9: ICMP_SEQ=0 TTL=253 TIME=162 MS 64 BYTES FROM 193.105.180.9: ICMP_SEQ=1 TTL=253 TIME=165 MS 64 BYTES FROM 193.105.180.9: ICMP_SEQ=2 TTL=253 TIME=167 MS

---->>> >>>> >>>>>>>>>>---- 3 PACKETS TRANSMITTED, 3 PACKETS RECEIVED, 0% PACKET LOSS

- 162165167ROUND TRIP (MS) MIN/AVG/MAX = / / MS#

Basic tools for investig Basic tools for investig ation (next) ation (next)

Basic tools for inv Basic tools for inv estigation (next) estigation (next)

Traceroute–Traceroute is used to show which routes are transited on the network between two centres. Firewall or packet filter on router may block the traffic as part of local security policy.

# 1TRACEROUTE TK 1 202 245 39 11 30 40TRACEROUTE TO TK ( . . . ), HOPS MAX, BYTE PACKETS > > > > >1 1 (1 2 8 .7 . 7 . 2 0 0 ) 1 1 1 2 1 203 155 200 99 1 1 1ROUTER ( . . . ) MS MS MS 3 TKR (193.105.180.9) 173 MS 193 MS 172 MS 4 TKR (193.105.180.9) 163 MS * 196 MS 5 * TKR (193.105.180.9) 149 MS * 6 TKR (193.105.180.9) 155 MS * 158 MS

Basic tools for inv Basic tools for inv estigation (next) estigation (next)

# TRACEROUTE TKR 193 105 180 9 30 40TRACEROUTE TO TKR ( . . . ), HOPS MAX, BYTE PACKETS

1 1 128 7 7 200 1 1 0SENT ( . . . ) MS MS MS 2 1 203 155 200 99 2 1 1ROUTER ( . . . ) MS MS MS 3 TKR (193.105.180.9) 156 MS * 147 MS#

Basic tools for investig Basic tools for investig ation (next) ation (next)

-# NETSTAT NRRRRRRRR RRRRRRRRRRRRRRRRR RRRRRRR RRRRR RRRR RRR RRRRRRRRR:

25525500INET . . .

ROUTE TREE FOR PROTOCOL FAMILY 2: DEFAULT 128.7.7.200 UGS 6 153463 TU0

63.174.196.210 128.0.7.200 0 0 1UGHS TU 127001 127001 1 32752 0. . . . . . UH LO

12816 128078 10 707939 1/ . . . U TU 128716 128778 38 3765211 0. / . . . U TU

161142139230 12877200 2 21309 0. . . . . . UGHS TU

Basic tools for inve Basic tools for inve stigation (next) stigation (next)

161142139231 12877200 2 7919 0. . . . . . UGHS TU 1921682128 12807200 0 9 1. . . . . . UGHS TU 2031441973 12807200 0 0 1. . . . . . UGHS TU

203155200113 12807200 0 0 1. . . . . . UGHS TU 20679349 12807200 0 0 1. . . . . . UGHS TU

2074445186 12807200 0 143 1. . . . . . UGHS TU 2074445187 12807200 0 0 1. . . . . . UGHS TU

#

Basic tools for inve Basic tools for inve stigation (next) stigation (next)