北电网络在北京和青岛部署光以太网解决方案

北电网络近日宣布,已经在北京和山东青岛部署了光以太网解决方案,为这两个城市的用户提供高速宽带业务。 作为北京市政府所属的因特网应用服务供应商,首都信息发展股份有限公司已经部署了北电网络的Pass-port~*8600路由交换机,在光纤基础设施平台上提供电子政务、电子商务及其它因特网专业技术服务。 北电网络还为中国网通集团青岛通信公司提供Pass-port8600交换机,以扩展其因特网协议(IP)广域网(WAN),从而提供高性能因特网接入和虚拟专用局域网(LAN)业     

北电网络在北京和青岛部署光以太网提供高速宽带业务

近日,北电网络在北京和山东青岛部署了光以太网解决方案,为这两个城市的用户提供高速宽带业务。首都信息发展股份有限公司已经部署了北电网络的Passport 8600路由交换机,在光纤基础设施平台上提供电子政务、电子商务及其它因特网专业技术服务。北电网络还为中国网通集团青岛通信公司提供Passport 8600交换机,以扩展其因特网协议(IP)广域网(WAN),从而提供高性能因特网接入和虚拟专用局域网(LAN)业务。     

科学研究、技术发展与经济活动

0207874企业利用因特网开展国际市场营销的问题及解决方案[刊]/王亚超//天津工业大学学报.—2001.20(6).—47～48.54(C).分析了因特网对当今国际市场营销的影响,对企业开展网上国际市场营销的前景进行了描述,指出了企业在因特网上开展国际市场营销活动的原则。针对我国企业开展国际市场营销中的问题,提出了解决方案。参4     

“巴黎地铁定价”方案在因特网QoS中的应用

文章介绍在因特网中引入“巴黎地铁定价”(PMP)方案,把网络分成价格不同的几个通道,利用价格机制来提高因特网QoS。该方案根据价格提供区分服务,避免了QoS技术给因特网带来的复杂性,是最简单的因特网QoS解决方案。     

IPv4地址不足解决方案综述

IPv4地址不足的问题日益严重,业界主要有两条解决路径:一是非兼容方式的升位,这就是采用全新的IP地址协议,如IPv6;另外一条路径是采用兼容方式的路径,如NAT(网络地址转换)技术、SuIP(超级协议)技术.文章对IPv6,NAT以及SuIP等三种技术的优势和不足进行了分析,然后对这三种技术进行了比较,最后展望了这三种解决方案的发展前景.     

下一代光因特网体系结构的选择与比较

下一代光因特网(NGOI)体系结构的基本特征是两层(业务层和传送层)和三个平面(数据平面、控制平面、管理平面)。分析和归纳了四种主流的面向下一代光因特网体系结构模型。提出了一种基于通用多协议标记交换(GMPLS)技术和光电混合交换技术的集成光因特网模型,该模型与其它模型相比较,结合了光电两个领域的技术优势,具有网络综合性能高,容易实现,扩展性好等优点。     

IPSec与NAT之间的兼容性分析和解决方案

网络安全协议(IPSec)和网络地址转换(NAT)是当前的热点技术,在因特网上都得到广泛应用,但两者在协议设计时存在的兼容性问题成为阻碍这两种技术得到进一步应用的关键问题。本文分别介绍了NAT和IPSec两种协议的基本原理,并对两者存在的不兼容性进行了详细的分析,最后给出了利用UDP封装ESP数据包的解决方案。     

移动IP路由优化性能分析及仿真

因特网技术的普及,使得人们实现了网际通信和信息共享,但基于有线方式的Internet受到空间和时间的限制,无法满足用户随时随地能够接入因特网的要求,这成为研究移动主机路由协议的驱动力.移动IP是一种简单、可扩展的全球IP移动性的解决方案,但三角路由问题的存在带来了网络花费问题和性能问题.路由优化移动IP协议是解决移动IP相关问题的侯选协议之一.本文对两种协议进行了理论分析和仿真.结果表明,是否采用路由优化协议,不能一概而论,要根据网络及业务到达特征决定.另外,两种协议都不能很好地支持将来的微小区带来的频繁切换,而解决该问题就是我们下一步的研究方向.     

惠州广电网络FTTH试验网介绍与评估

本文介绍了惠州广电网络采用FTTH试验网(两种建设模式,三个示范网)的任务目标及概况,概述了惠州广电网络FTTH试验网,通过对比方式评估了三个试验网的建网模式,阐述了FTTH试验网项目实施过程中遇到的问题及解决方案.     

科胜讯携手美信推出视频监控应用参考设计新的解决方案采用业界领先的多端口视频解码器和H.264压缩技术

用于影像、音频、视频和因特网连接应用创新半导体解决方案的领先供应商科胜讯系统公司具有数字录像(DVR)功能的、基于PC的视频监控产品推出联合开发的参考设计.科胜讯是针对影像、音频、视频和因特网连接应用的创新半导体解决方案的领先供应商.     

域间路由系统脆弱性及其应对措施

域间路由系统是互联网的关键基础设施,然而它却面临着严重的安全挑战.本文分析了域间路由协议BGP(边界网关协议)存在的脆弱性,构建了域间路由系统攻击模型,阐述了域间路由系统中基于链路和基于路由器节点的攻击模式,并指出这些攻击可能造成的危害,接着讨论了目前正在应用和研究的一些安全对策,并对路由过滤机制和协议扩展两种对策进行了性能比较.     

BGP routing policies in ISP networks

The Internet has quickly evolved into a vast global network owned and operated by thousands of different administrative entities. During this time, it became apparent that vanilla shortest path routing would be insufficient to handle the myriad operational, economic, and political factors involved in routing. ISPs began to modify routing configurations to support routing policies - goals held by the router's owner that controlled which routes were chosen and which routes were propagated to neighbors. BGP, originally a simple path vector protocol, was incrementally modified over time with a number of mechanisms to support policies, adding substantially to the complexity. Much of the mystery in BGP comes not only from the protocol complexity, but also from a lack of understanding of the underlying policies and the problems ISPs face that are addressed by these policies. In this article we shed light on goals operators have and their resulting routing policies, why BGP evolved the way it did, and how common policies are implemented using BGP. We also discuss recent and current work in the field that aims to address problems that arise in applying and supporting routing policies.     

BGP路由服务平台(RSP)的设计

目前自治域间的路由协议-边界网关协议(BGP)存在许多问题:全互联结构无法适应大规模网络,路由反射可能带来协议振荡和路由环路。文章分析了这些问题并给出了支持域间流量工程的BGP路由服务平台的设计。     

Study of BGP Peering Session Attacks and Their Impacts on Routing Performance

We present a detailed study of the potential impact of border gateway protocol peering session attacks and the resulting exploitation of route flap damping (RFD) that cause network-wide routing disruptions. We consider canonical grid as well as down-sampled realistic autonomous system (AS) topologies and address the impact of various typical service provider routing policies. Our modeling focuses on three dimensions of routing performance sensitivity: 1) protocol aware attacks (e.g., tuned to RFD); 2) route selection policy; and 3) attack-region topology. Analytical results provide insights into the nature of the problem and potential impact of the attacks. Detailed packet-level simulation results complement the analytical models and provide many additional insights into specific protocol interactions and timing issues. Finally, we quantify the potential effect of the BGP graceful restart mechanism as a partial mitigation of the BGP vulnerability to peering session attacks.     

A cascading failure model for interdomain routing system

There have been many researches on border gateway protocol (BGP) security, most of which mainly focused on how to enhance the security of the BGP protocol or the interdomain routing system. However, few works studied the vulnerabilities especially the production mechanism of security events in the interdomain routing system. It takes many obstacles to understand and improve the security of the interdomain routing system. This paper explores the cascading failure phenomenon of the interdomain routing system. First, we devise a state machine to describe the state transition of BGP nodes and then give a detailed analysis of the BGP failure. Second, on the basis of the preferential attachment characteristic, we propose a cascading failure model for the interdomain routing system, which depicts the production mechanism of cascading failure, and introduce two evaluating indicators, the proportion of failed nodes and the proportion of failed links, to assess the scale of cascading failure. Furthermore, we apply the cascading failure model to display two different cascading failure scenes. The experimental results show that random failure has less influence on the interdomain routing system, while its robustness against hostile attack is weak. Copyright ©2011 John Wiley & Sons, Ltd.     

互联网BGP路由可视及安全检测技术架构与实践

边界网关协议（border gateway protocol,BGP）是支撑互联网50年来快速发展的核心协议,因早期设计考虑不足一直存在路由劫持、路由泄露等路由安全威胁漏洞。随着互联网应用日益深入,BGP 路由安全问题逐渐引起业界重视,边界网络安全防护意义重大。提出了一种BGP路由安全检测架构,通过推理构建全球BGP路由知识库实现互联网全局路由可视性,并基于此实现路由劫持、路由泄露等路由安全事件的准实时检测。通过在杭州交换中心部署实践,证明本系统可构造较完整的互联网全局路由知识库、实现较准确和实时的BGP路由安全事件检测。     

Zebra与BGP路由监测的实现

主要研究边界网关协议（BGP）网络拓扑动态重构及网络稳定性。通过路由软件Zebra实现一个具有部分路由器功能的监测代理,并将其连接到网络中一台BGP边界路由器,通过它们之间的BGP协议交互,监测代理可捕获到整个网络的路由信息,并籍此进行BGP路由监测。     

An overview of solutions to avoid persistent BGP divergence

The Internet is a collection of multiple interconnected and self-administered domains known as autonomous systems. In order to find a path from one autonomous system to any other autonomous system, neighboring autonomous systems exchange routing information via the border gateway protocol. However, BGP suffers from several types of divergence anomalies. A divergence anomaly occurs when BGP routers permanently fail to obtain a stable path to reach a destination autonomous system. In this article we discuss the different types of BGP divergence anomalies, along with their proposed solutions.     

基于MPLS VPN的跨域BGP研究

3层MPLS VPN采用边界网关协议BGP完成了跨AS域的VPN用户之间可靠的"虚通道"连接。论文立足于成熟的MPLS标记交换技术,分析了BGP MPLS VPN网络实现的3种方式,阐述了BGP网络设计要素、路由映射、过滤以及对等体概念,着重介绍了路由信令协议CR-LDP的实现算法。文章对运营商进一步部署VPN网络有一定的参考意义。