Topic 21 Topic 21 ADNS Overview and Basic IP Routing

Enabling Objectives21.1 DESCRIBE the basic IP routing process. 21.2 DESCRIBE an Autonomous System (AS).21.3 DESCRIBE the routing protocols used in a CSG/ESG environment.21.4 DESCRIBE the Open Shortest Path First (OSPF) routing protocol.21.5 DISCUSS the ADNS concept of operations and vision.21.6 DIFFERENTIATE major capabilities between Increment I and Increment II. 21.7 DISCUSS Increment I capabilities and constraints.21.8 DESCRIBE Increment II capabilities, components, hardware, and software.21.9 DISCUSS Increment II features.21.10 EXPLAIN the various organizations that provide ADNS support.

What is ADNS?

• ADNS is an integral part of a complex communications system that provides an automated pathway for information to travel along any available transit link.

• Provides for optimal use of bandwidth assigned by the system to:– UNCLAS– SECRET– SCI– Coalition– Other afloat networks and their shore counterparts

ADNS “Vision”

• Provide assured gateway availability for critical paths/applications

• Guarantee 100% end-to-end delivery of selected voice, video, and data

• Provide restore capabilities

• Increase information transfer efficiency

• Reduce manning and operation costs

• Provide joint interoperability

ADNS

ADNS

ADNS

ADNS

EHF EHF MDRMDR

Inmarsat Inmarsat “B” HSD“B” HSDDSCSDSCS

CWSPCWSP

NOC

OSPF

OSPFOSPF

OSPF

EIGRP

EIGRP

EIGRP

DISA Autonomous

Systems

JWICS

SIPRNET

NIPRNET

BGP-4

ASBR

DWTSDWTS

CENTRIXS

Application

Transport

Network

Data Link

Physical

Application

Transport

Network

Data Link

Physical

Network

Data Link

Physical

205.1.2.0 205.1.3.0

ROUTER

ANDingANDing

205.1.3.1 11001101 . 00000001 . 00000011 . 00000001

255.255.255.0 11111111 . 11111111 . 11111111 . 00000000

Destination IP Address

=

Subnet Mask

=

11001101 . 00000001 . 00000011 . 00000000

ANDING ANDING ANDING

205.1.3.0=

Network address

Local Machine Address = 205.1.2.12

Autonomous Systems

NOC

JWICSSIPRNET NIPRNET

CSG ESG

OSPF & EIGRP

OSPF & EIGRP

Operating System

OSPF89

IPData Link

Operating System

OSPF89

IPData Link

Physical Physical

ROUTER 1 ROUTER 2

ROUTER

ROUTER ROUTER ROUTER ROUTER

ROUTER

AUTONOMOUS SYSTEM

OSPF

205.33.1.8 205.46.4.8 205.34.9.8 205.1.16.8

205.38.8.8205.32.9.8

6

ROUTER

ROUTER ROUTER ROUTER

ROUTER

205.33.1.8 205.46.4.8 205.34.9.8 205.1.16.8

205.38.8.8205.32.9.8

7

2

2

1 ROUTER

1

2 11

Destination Next Hop(s) Cost

205.33.1.8 205.46.4.8 4

205.46.4.8 205.46.4.8 2

205.34.9.8 205.46.4.8 3

205.38.8.8 3

205.38.8.8 205.38.8.8 1

205.1.16.8 205.46.4.8 9

205.38.8.8 9

ADNS Increment I

Capabilities• Consolidated WAN access for

Multi-security level networks (via NES, TACLANE)

• Link preference: DSCS, CWSP, EHF, IMS

• Hot-standby Link Failover• Bandwidth Reservation per security

level• Ship-to-Ship LOS links w/IP (VTC

over DWTS)• Ship-to-Shore MAGTF support• Pier-side network access

Constraints

• IP traffic uses only one RF link even if more are connected

• Best Effort delivery (i.e. no application has priority)

• Fixed bandwidth allocation to each enclave

Justification for Change

• Increased demand requires more efficient use of RF bandwidth

• Need to prioritize network traffic

• Must be able to monitor and control network traffic based on applications

Inc II Capabilities

• Increment II = Inc I plus:– Traffic distribution over multiple links– Adjustable bandwidth guarantees– Application prioritization– Improved link monitoring tools– Application monitoring

Components

• Integrated Network Management (INM)– LQoSMAN

• Routing and Switching– Cisco router– Packetshaper

• TACLANE

Software

• Windows 2003 Server + patches• Internet Explorer (IE) + patches• Apache Web Server• Adobe Acrobat Reader WinZip• mIRC Chat Client (and patches)• Tera Term Pro• Norton Antivirus• IT-20 Security scripts• Cisco IOS• PacketWise• PacketShaper Tool

• 32 bit, secure, Network Operating System that controls system hardware and provides a platform for running applications. Monitors ADNS software and controls ADNS devices.

• Industry standard for large networks.• IAVA’s and FAMs are issued with

directions to download and perform updates and patches.

• Apache Web Server– Provides support for storing, managing, and

displaying of HTML based content to local and network users.

– Enables network users to access the local ADNS INM functionality using the IE browser.

• Monitor network connectivity• Configure information display• Configure and generate reports• Configure QoS and bandwidth management settings

mIRC

• mIRC is an Internet Relay Chat (IRC) program that connects to a host chat server at NCTAMS PAC and LANT.

• Chat room to allow users to communicate with each other for testing and troubleshooting.

LQoSMAN 3.x Software Tool Kit

• Standalone IBM compatible workstation running Windows Server software

• Provides status information

• Monitors via Ethernet link

• Uses SNMP

• Provides remote access and monitoring via SIPRNET web access.

User Levels

• Administrator (Monitor/Manage)– Access all software modules and monitoring– Manage the entire ADNS

• Operator (Monitor)– Monitor performance– Generate reports– Change screen preferences

• Read-Only– Web access to view how ADNS is working

Policy-Based Routing (PBR)

• Source-Based Transit Provider Selection

• Quality of Service (QOS)

• Cost Savings

• Load Sharing

Quality of Service (QoS)

• Control over resources• More efficient use of network resources. • Tailored Services

– Grades of service differentiation to the customers. • Coexistence of mission-critical applications

– Bandwidth and minimum delays required by time-sensitive multimedia and voice applications are available, and that other applications using the link get their fair service without interfering with mission-critical traffic.

• Foundation for a fully integrated network in the future

Inc 2 Enhancement # 1

• Traffic Distribution– Benefits

• Using multiple links increases effective bandwidth• Improves overall system reliability

Traffic Distribution for Force Level Platforms

RF Links Available

DSCS

Pt-to-Pt

(256k – 1536k)

CWSP

Pt-to-Pt

(1024k – 1536k)

EHF MDR

Pt-to-Pt

(128k – 1024k)

EHF TIP

Shared

(128k – 1024k)

DSCS and CWSP

SECRET, SCI, CENTRIXS, CWSP Failover

JCA, UNCLAS, DSCS Failover

DSCS and EHF MDR

SECRET, SCI, CENTRIXS, JCA, UNCLAS

DSCS Failover

DSCS and EHF TIP

SECRET, SCI, CENTRIXS, JCA, UNCLAS

SECRET ship to ship, DSCS Failover

DSCS, CWSP, and EHF MDR

SECRET, SCI, CENTRIXS, CWSP Failover

JCA, UNCLAS, DSCS Failover

Failover on loss of CWSP and DSCS

DSCS, CWSP, and EHF TIP

SECRET, SCI, CENTRIXS, CWSP Failover

JCA, UNCLAS, DSCS Failover

Failover on loss of CWSP and DSCS

Inc 2 Enhancement # 2

• Selectable Enclave Bandwidth Allocation – Baseline Configuration– SIPR-Favored– SCI-Favored

Percent Bandwidth Allocation (Force Level)

Baseline

JCA NIPR SCI SIPR UDP/ICMP Total

DSCS 1 20 25 24 128k max 70

CWSP 45 5 10 10 128k max 70

EHF 1 20 25 24 8k max 70

DWTS 1 1 5 67 74

SIPR-Favored

DSCS 1 15 20 39 128k max 75

CWSP 35 5 10 25 128k max 75

EHF 1 15 20 39 8k max 75

DWTS 1 1 5 67 74

SCI-Favored

DSCS 1 15 35 24 128k max 75

CWSP 35 5 20 15 128k max 75

EHF 1 15 35 24 8k max 75

DWTS 1 1 5 67 74

Inc 2 Enhancement # 3

• Application Prioritization – Based on source application– Packets dropped depends on:

• Degree of congestion• Priority of packets

– ADNS Inc II uses PacketShaper (Packeteer)

Unclassified Application Priorities

Priority Application or Traffic Type

6 Reserved for future use

5 Chat and DNS

4 Reserved for future use

3 CRIT_WEB, Aircraft Logistics

2 E-Mail

1 Medical

0 Default Traffic

-1 Web and SSL

Inc 2 Enhancement #4

• Application Monitoring and Blocking – PacketShaper Overview

• Traffic and Bandwidth Management system that delivers predictable efficient performance for applications running over the WAN

• 7 Layer classification, analysis, control, and reporting capabilities.

– Enables managers to keep critical traffic moving at an acceptable pace through bottlenecks and prevents any single type of traffic from monopolizing the link.

The Bottleneck

High-SpeedDISA/HSGR

Backbone

High-SpeedDISA/HSGR

Backbone

10/100/1000 Mbps

64 kbps – 1.5 Mbps

OC-3, OC-12, OC-48, OC-192

Problem: Traffic on the high-speed LAN hits the low-speed WAN access link before getting to the really high-speed shore infrastructure.

Inc 2 Enhancement #5

• RF Link Monitoring – PacketShaper– LQoSMan

• Trend reporting• Future requirements• Reports

LQoSMAN Reports

LQoSMan Alarms

Support Organization

Function Organization Phone

In-Service Engineering Activity (ISEA

SPAWAR SSC SD, Code 2631

619.524.2623

Software Support Activity SPAWAR SSC CHAS, Code 50

843.208.4108

Fleet Support Desk SPAWAR SSC SD 619.524.3717

Configuration Management

SPAWAR SSC SD, Code 2631

619.524.2623

ILS Management PEO C4I and Space 858.537.0642

Support Organization

Function Organization Phone

In-Service Engineering Activity (ISEA

SPAWAR SSC SD, Code 2631

619.524.2623

Software Support Activity SPAWAR SSC CHAS, Code 50

843.208.4108

Fleet Support Desk SPAWAR SSC SD 619.524.3717

Configuration Management

SPAWAR SSC SD, Code 2631

619.524.2623

ILS Management PEO C4I and Space 858.537.0642