Annex 8 Computer Networking

Annex 8 Computer Networking

・ Overall plan of computer network in NAMHEM ・ The problems and the future expansion plan of the NAMHEM

network

The problems and the future expansion plan of

the NAMHEM network

May 25, 2005

NAMHEM Network Topology(Current Configuration)

Router(YAMAHA)

GTS

GTS

Router(COREGA)

GTS

Radar W

S Router(Xyplex)

Radar site / Airport199.0.60.0/24

199.0.70.0/24

199.0.10.0/24199.0.30.0/24199.0.50.0/24

TV/Radio Station199.0.40.0/24

199.0.20.0/24192.168.200.0/24

Router(CX2000)

Remote Centers(via VSAT)

Firewall(FC-2)

Internet192.168.{1-22}.0172.16.0.0

PC …PC PC …192.168.

100.0/24

RouterGovernmentNetwork

Satellite Receivers’ Network

KoreanPC Cluster

NovosibirskBeijing

Server

PC PC

JapaneseP

C C

luster

JapaneseP

C C

luster

1. Internet connection2. IP masquerade (radar, airport)3. Connectivity (airport)4. Isolated networks5. Complicated routes

NAMHEM Network Issue

NAMHEM Network Issue1. Internet connection

Router(YAMAHA)

GTS

GTS

Router(COREGA)

GTS

Radar W

S Router(Xyplex)


199.0.70.0/24

199.0.10.0/24199.0.30.0/24199.0.50.0/24


199.0.20.0/24192.168.200.0/24

Router(CX2000)


Firewall(FC-2)

Internet192.168.{1-22}.0172.16.0.0

PC …PC PC …192.168.

100.0/24



KoreanPC Cluster

NovosibirskBeijing

Server

PC PC

JapaneseP

C C

luster

JapaneseP

C C

luster

No InternetConnection!!

Cannot get data from Japan

NAMHEM Network Issue2. IP masquerade

Router(YAMAHA)

GTS

GTS

Router(COREGA)

GTS

Radar W

S Router(Xyplex)


199.0.70.0/24

199.0.10.0/24199.0.30.0/24199.0.50.0/24


199.0.20.0/24192.168.200.0/24

Router(CX2000)


Firewall(FC-2)

Internet192.168.{1-22}.0172.16.0.0

PC …PC PC …192.168.

100.0/24



KoreanPC Cluster

NovosibirskBeijing

Server

PC PC

JapaneseP

C C

luster

JapaneseP

C C

luster Divided into two worlds

NAMHEM H.Q. and Airport Connection

Router

TV/Radio Station192.168.??.x/24

192.168.100.0/24

Microwave

Microwave

Router

Microwave

Router

PC

PC

RADAR site

PC

Airport

Router InternetNAMHEM H.Q.

Router???

PC

Airport Met-Office

LAN

Router

MSS.11

.4

199.0.20.0/24

.7 .254

199.0.60.0/24 199.0.50.0/24

199.0.30.0/24199.0.10.0/24

.7.254COREGA

BAR-Pro3

IP masquerade!!

The Network is Divided into Two Worlds by IP Masquerade

Airport

AirportMet-Office

RADARSite

TVstation

NAMHEMH.Q.

AimagCenters

GTS

Router

The world of192.168.xx.xx


IP Masquerade is hiding 192.168.xx.xx from 199.0.xx.xx

Internet

Internet

CivilAviationNetwork

COREGABAR Pro3

Connectivity Between the Two Worlds


NAMHEM H.Q.

Aimag Centers


RADAR site

AirportMet-Office

Airport

TV stationMSS

(192.168.100.11)

IP Masq.Router

(BAR Pro3)

IP Masq.

Outer side

Inner side

Any hosts on 192.168.xx.xx can

access to 199.0.xx.xx

No hosts on 199.0.xx.xx can access

to 192.168.xx.xx

Only MSS can be accessed from

199.0.xx.xx

Route Information of the Routers

Router(Xyplex)

RADAR site

PCMSS Router(Xyplex)

Router(Xyplex)

Airport

199.0.30.7192.168.100.11

192.168.100.4

199.0.20.7

Router(BARpro3)

199.0.20.254

There is a special configuration for MSS on BAR Pro3.

199.0.20.7 199.0.30.7192.168.100.11 199.0.30.7

IP Masquerade(Any 199.0.20.7)With static NAT192.168.100.11 199.0.20.7

199.0.40.0/24

199.0.70.0/24199.0.30.0/24

199.0.60.0/24199.0.20.0/24

199.0.50.0/24199.0.10.0/24

199.0.20.254Default

Direct (WAN)

199.0.20.254

Direct(LAN)192.168.100.4 No route to192.168.0.100/24etc.

NAMHEM Network Issue3. Connectivity Problems (airport)

Broken equipments

Router


192.168.??.x/24

Microwave

Microwave Router

Microwave

Router

PC

PC

RADAR site

PC

Airport

Router Internet

NAMHEM H.Q.

Router???

PC

Airport Met-Office

LAN

NAMHEMH.Q.

Network

Sometimes…

And sometimes…

NAMHEM Network Issue4. Isolated Networks

Router(YAMAHA)

GTS

GTS

Router(COREGA)

GTS

Radar W

S Router(Xyplex)


199.0.70.0/24

199.0.10.0/24199.0.30.0/24199.0.50.0/24


199.0.20.0/24192.168.200.0/24

Router(CX2000)


Firewall(FC-2)

Internet192.168.{1-22}.0172.16.0.0

PC …PC PC …192.168.

100.0/24



KoreanPC Cluster

NovosibirskBeijing

Server

PC PC

JapaneseP

C C

luster

JapaneseP

C C

luster

Isolated!!

Isolated!!

NAMHEM Network Issue5. Complicated Routes

Router(YAMAHA)

GTS

GTS

Router(COREGA)

GTS

Radar W

S Router(Xyplex)


199.0.70.0/24

199.0.10.0/24199.0.30.0/24199.0.50.0/24


199.0.20.0/24192.168.200.0/24

Router(CX2000)


Firewall(FC-2)

Internet192.168.{1-22}.0172.16.0.0

PC …PC PC …192.168.

100.0/24



KoreanPC Cluster

NovosibirskBeijing

Server

PC PC

JapaneseP

C C

luster

JapaneseP

C C

luster

ComplicatedRoutes!!

Routers and hosts are living together

Routing problems on some PCs

Router(YAMAHA)

GTS

GTS

Router(COREGA)

GTS

Radar W

S Router(Xyplex)


199.0.70.0/24

199.0.10.0/24199.0.30.0/24199.0.50.0/24


199.0.20.0/24192.168.200.0/24

Router(CX2000)


Firewall(FC-2)

Internet192.168.{1-22}.0172.16.0.0

…PC PC …192.168.

100.0/24



KoreanPC Cluster

NovosibirskBeijing

Server

PC PC

JapaneseP

C C

luster

JapaneseP

C C

luster

NAMHEM Network Upgrade Plan(Phase1: Connecting to the Internet)

•Add a firewall•Cisco PIX firewall ($4000-15000)•Juniper Netscreen ($2000-15000)•Broadband Router (Linksys, D-Link etc.) ($130-200)

PC

Firewall

NAMHEM Network Upgrade Plan(Phase1: Connecting to the Internet)

• Internet connectivity– PCs or workstations on 192.168.100.0/24 network

(Incl. Japanese Cluster PCs) will be able to access to the Internet.

– PCs on all aimag centers will be able to access to the Internet

• Few configuration change on NAMHEM H.Q.• No configuration change on aimag centers.

The key benefits of this plan

Airport

AirportMet-Office

RADARSite

TVstation

NAMHEMH.Q.

AimagCenters

GTS

Internet

Internet

CivilAviationNetwork

?

NAMHEM Network Upgrade PlanPhase2: Unify the two worlds

How to Unify?

How to Unify: Quit using IP masquerade

Router(Xyplex)

RADAR site

PCMSS Router(Xyplex)

Router(Xyplex)

Airport

199.0.30.7192.168.100.11

192.168.100.4

199.0.20.7

Router(RTX1000)

199.0.20.254

1. ConfigurationAdd the default route information

2. ConfigurationDisable IP Masquerade

• The PCs on airport / radar site will be able to access to the PCs on NAMHEM H.Q. / aimag centers.

• The PCs on airport have other issue.


NAMHEM Network Upgrade Plan(Phase 3: Adding a NAT router to the Airport

Met-Office network)

• Airport Met-Office PCs can access both NAMHEM network and the Internet.

Router


192.168.??.x/24

Microwave

Microwave Router

Microwave

Router

PC

PC

RADAR site

PC

Airport

Router InternetNAMHEM H.Q.

Router???

PC

Airport Met-Office

NATRouter

LAN


NAMHEMH.Q.

Network

NAMHEM Network Upgrade Plan(Phase 4: Integration of all LAN routers)

Router(Xyplex)


199.0.70.0/24

199.0.10.0/24199.0.30.0/24199.0.50.0/24

TV/Radio Station199.0.40.0/24199.0.20.0/24

192.168 200.0/24

Router(CX2000)


192.168.{1-22}.0172.16.0.0

Firewall(FC-2) Internet

192.168.100.0/24


Radar WS

GTS

Router(Layer3Switch)

PC

PC

PC

…

PC

PC

Server

Layer3Switch

Layer3Switch

stack

Layer2Switch

Layer2Switch PC

PC

Layer2Switch

Layer2Switch

PC

PC

PC

PC

Layer2Switch

PC

PC

PC

PC

RouterRouter

VSATRADAR / Airport

Firewall Internet

Computer Room Forecast Room

Other Rooms…

PCCluster


Hardware Configuration

PC

• The isolated networks will be connected• No complicated setting will be required on PCs or WAN routers.• Reliable (Redundant)

• Almost all LAN configuration will be integrated to one equipment

• Flexible network design• High Performance

– Gigabit Ethernet capability– Much faster than traditional routers



NAMHEM Network Upgrade Plan(Phase 5: Replacement of WAN equipments)

Firewall Internet

Server

Router

TV/Radio Station

192.168.??.x/24Router(Layer3Switch) Micro

wave

RouterLAN

RouterDSL

Router

Microwave Router

Microwave

Router

PC

PC

PC

RADAR site

Airport Met-Office

PC

Airport

Router

NAMHEM H.Q.

NATRouter

Internet


• Reliable firewalls– Without hard disks

• The configuration of PCs at the airport met-office will be simple (without many route settings).

• Replacement of the old microwave routers• Replacement of the broken DSL routers

NAMHEM Network Upgrade Plan(Phase 5: Replacement of WAN equipments)

Router(?)

Radar site / Airport192.168.??.x/24192.168.??.x/24

TV/Radio Station192.168.??.x/24192.168.??.x/24

192.168 200.0/24

Router(CX2000)


192.168.{1-22}.0172.16.0.0

Firewall(FC-2) Internet

192.168.100.0/24

GTS

Router(Layer3Switch)

PC

Sat Recv.

Sat Recv.

…

Server

PC

PC

Radar WS

Radar WS

NAMHEM Network Upgrade Plan(Phase 6: Migration from illegal global

addresses to private addresses)

• All addresses will be private addresses– Easy to connect all of the networks– No routing difficulties on use of Internet

• Simplified– Satellite data receiver network is integrated to

192.168.100.0/24– Radar workstations are integrated to 192.168.100.0/24


NAMHEM Network Upgrade Plan(Phase 6: Migration from illegal global

addresses to private addresses)

Annex 9 Dust and Sand Storm (DSS) Monitoring

Network

・ Equipment for Kosa Monitoring Network ・ DSS monitoring data

Equipment for Kosa Monitoring Network Page: 1 / 4

Zamin-uud Meteorological Station (Installation of Container Base） 11 August, 2007

Zamin-uud Meteorological Station (Equipment installed in the Container）

18 August, 2007


Sain Shand Aimag Center (Assembling Container) 16 August, 2007

Completion of the Equipment Installation Work at Sain Shand Aimag Center 25 August, 2007


Completion of the Equipment Installation Work at Dalanzadgad Aimag Center 4 September, 2007

Completion of the Equipment Installation Work at Dalanzadgad Aimag Center 4 September, 2007


Completion of the Equipment Installation Work at Ulaanbaatar 10 September, 2007

Completion of the Equipment Installation Work at Ulaanbaatar 10 September, 2007

Date post:	03-Dec-2021
Category:	Documents
Upload:	others
View:	1 times
Download:	0 times

Annex 8 Computer Networking

Documents