Example of Implementation Kumpol Luengpetngam Telecommunication Division RTH

Example of Implementation Kumpol Luengpetngam Telecommunication Division, RTH: Bangkok E-mail : kumpol@metnet. tmd. go. th

Implementation of TCP/IP at RTH Bangkok The Bangkok RTH has implemented TCP/IP protocols for Tokyo RTH, Vientiane NMC and Kuala Lumpur NMC for data collection and exchange.

Bangkok TCP/IP Network BANGKOK SIDE Router MSS Host TCP/IP Cisco at Bangkok Port 2600 DSU Modem Nokia BB 512 MSS Bangkok Router NTU Cisco Modem 2600 Line Interface CAT Frame Relay or ISDN Provider TOT NTU Modem TOKYO SIDE CAT TOT PCM Mux Provider G 703(4 W( CAT Frame Relay or ISDN Provider NARMPNU EXCHANGE ETL PCM 30 Mux Provider NTU Modem DSU Modem Router TCP/IP MSS Cisco Port at Tokyo 2650 VIENTIANE SIDE MSS VIENTIANE NTU Modem G 703(4 W( Line Interface Router TCP/IP MSS at Cisco Port Vientaine 1720

Status TCP/IP at RTH Bangkok Tokyo )AS 64520 ( Kuala Lumpur )AS 65154( 193. 105. 180. 9 193. 105. 178. 38 Frame Relay Network 193. 105. 180. 26 DDN Network 193. 105. 180. 10 193. 105. 180. 25 193. 105. 178. 37 Bangkok )AS 64769( Vientiane )AS 64771(

General concepts of Addressing for eligible hosts. Each center declares a few official IP addresses an IP address for an eligible host A pair of official IP addresses for e ach pure IP link are assigned by WMO. The subnet mask is 255. 252 which provides 62 subnets each with 2 hosts (routers). Frame Relay Network Bangkok a pair of IP addresses for a Frame Relay links. Tokyo

Tokyo AS 64520 193. 105. 180. 9/30 Kuala Lumpur AS 65154 38/. 193. 105. 178 Frame Relay Networks Vientiane AS 64771 193. 105. 180. 26 DDN Network 193. 105. 180. 10/30 37/. 193. 105. 178 193. 105. 180. 25 NAT (Network Address Translation( Router for GTS connections MSS Cisco 2600 IOS Ver. 11. 2 (3)T <--> 128. 7. 7. 8 private address for THAI 4 Bangkok AS 64769 <--> 128. 7. 7. 2 private address for THAI 2 203. 155. 200. 97 Firewall Sentinet Ver 2. 1. 3 Private IP address THAI 4 )MSS( THAI 2 )MSS(

System configuration at Bangkok

TCP/IP Supported Connection Diagram Existing Workstation and Plotter GTS Circuit . 128. 7. 7 x LAN HUB Digital Alpha 2100 Server Firewall Digital Alpha 4000 Server Internet . 128. 0. 7 x LAN HUB Cisco Router Firewall

Circuit configuration and Protocols in transport **Bangkok - Tokyo circuit configuration in physical level Circuit type Carriers Port speeds 128 : Delay in network : Frame relay Networks (NNI( : CAT (Thailand portion( : 64 kbps (TMD-CAT( kbps (JMA-KDDI( : Expecting less than a few of ten milliseconds

Circuit configuration and Protocols in transport **Bangkok - Tokyo circuit configuration in logical level Connectivity : One Permanent Virtual Circuit (PVC( Identification of Multiplexing : Data Link Connection Identifier (DLCI( DLCI Values : 20 (Thailand portion( ) 20 : Japan portion(

Circuit configuration and Protocols in transport • Bangkok - Tokyo circuit configuration in logical level (next( Logical speed guarantee : Committed Information Rate (CIR( (16 Kbps (Flow from Bangkok to Tokyo : (16 Kbps (Flow from Tokyo to Bangkok : Interface : ITU-T Q. 933 Annex A (Thailand portion( : ITU-T Q. 933 Annex A (Japan portion(

Circuit configuration and Protocols in transport ** Protocols Link protocol Network protocol : Transport protocol Routing protocol Compression Traffic type : Frame Relay : IP v 4 (Internet Protocol version 4( ICMP (Internet Control Message Protocol) for PING : TCP (Transmission Control Protocol ( : Border Gateway Protocol version 4 (BGP-4 ( : None : Meteorological message in TCP socket stream. File Transfer in future

TCP/IP Frame Relay sockets l The mechanism for store-and-forward, queing and others message processing should be kept. l The message structure in TCP socket stream complies with the “Recommended practices and procedure for the Implementation use and Application of TCP/IP on the GTS” (Attachment II 15 of manual on the GTS)

Routing l Routing protocol – BGP-4 (Border Gateway protocol version 4) is used as dynamics routing protocol on the IP link.

Autonomouse System (AS( l Autonomous System (AS) Private AS number assigned by WMO secretariat. The AS numbers for neighbour centres are: Bangkok RTH : AS 64769 Tokyo RTH : AS 64520 Kuala Lumpur NMC : AS 65154 Vientiane NMC : AS 64771

Filtering l Filtering – To allow only agreed protocols (port Number). – To allow only agreed destination IP address. – To allow only agreed source address.

Procedure for recover of missing data l Request/Repeat of missing text message - Requests for missing text messages should be sent on the text connection. T 1 T 2 (in message header) of “BM” should be used. - A requested message should be retransmitted with its original heading and with the lastest channel sequence number.

The request formats l Requesting a message (SOH) (CR)(LF) nnnn (CR)(LF) BMRR 01 Ca. Ca. Ca YYGGgg (CR)(LF) CCCC (CR)(LF) SQN nnnn= (CR)(LF)(ETX)

The request formats l Requesting a selected number of messages (SOH) (CR)(LF) nnnn (CR)(LF) BMRR 01 Ca. Ca. Ca YYGGgg (CR)(LF) CCCC (CR)(LF) SQN nnnn/nnnn= (CR)(LF)(ETX)

The request formats l Requesting a continuous series of messages (SOH) (CR)(LF) nnnn (CR)(LF) BMRR 01 Ca. Ca. Ca YYGGgg (CR)(LF) CCCC (CR)(LF) SQN nnnn-nnnn= (CR)(LF)(ETX)

Request/Repeat of missing binary messages l Requesting a message (SOH) (CR)(LF) nnnn (CR)(LF) BIRR 01 Ca. Ca. Ca YYGGgg (CR)(LF) CCCC (CR)(LF) SQN nnnn= (CR)(LF)(ETX)

The request formats l Requesting a selected number of messages (SOH) (CR)(LF) nnnn (CR)(LF) BIRR 01 Ca. Ca. Ca YYGGgg (CR)(LF) CCCC (CR)(LF) SQN nnnn/nnnn= (CR)(LF)(ETX)

The request formats l Requesting a continuous series of messages (SOH) (CR)(LF) nnnn (CR)(LF) BIRR 01 Ca. Ca. Ca YYGGgg (CR)(LF) CCCC (CR)(LF) SQN nnnn-nnnn= (CR)(LF)(ETX)

TCP socket connections on operation basis MSS: 203. 155. 200. 97 203. 155. 200. 98 MSS: ) 202. 245. 39. 11 cadess 1( ) 202. 245. 39. 12 cadess 2( Active Open To: Tokyo (text( Port : 25703 To: Tokyo (binary( Port : 25704 Passive Open Port : 8025 To: Bangkok (text( Port : 8026 To: Bangkok (binary( BANGKOK TOKYO Passive Open Active Open

FTP connection - The only FTP connection, DDN to NMC Vientiane. - Using two transmitting methods: PUT and GET. - Output for maximum 10 messages per file or Maximum 30 seconds time-relay consecutively. MSS: 203. 155. 200. 97 203. 155. 200. 98 PUT to Vientiane Get from Vientiane BANGKOK MSS: ) 172. 16. 2. 100 DDN Get from Bangkok PUT to Bangkok VIENTIANE AMSS(

TCP socket connections on operation basis MSS: 203. 155. 200. 97 203. 155. 200. 98 MSS: 161. 142. 139. 230 Active Open To: KL (text( Port : 30006 To: KL (binary( Port : 30007 Passive Open Port : 9024 To: Bangkok (text( Port : 9025 To: Bangkok (binary( BANGKOK Passive Open Active Open Kuala Lumpur

Trouble shooting and problem resolution Steps in resolving problems: – Check the remote centre (If the security policy of the remote centre allows it. ) – Check if the link to the “outside” network is reachable. – Check the local network by trying to reach next gateway. – Check the local IP stack and configuration.

Basic tools for investigation l Ping – Ping will check if the destination IP address can be reached. # 64 64 PING TK 1 (202. 245. 39. 11): 56 DATA BYTES FROM 202. 245. 39. 11: ICMP_SEQ=0 TTL=59 TIME=177 MS BYTES FROM 202. 245. 39. 11: ICMP_SEQ=1 TTL=59 TIME=166 MS BYTES FROM 202. 245. 39. 11: ICMP_SEQ=2 TTL=59 TIME=167 MS BYTES FROM 202. 245. 39. 11: ICMP_SEQ=3 TTL=59 TIME=165 MS

Basic tools for investigation (next( ----TK 1 PING STATISTICS---4 PACKETS TRANSMITTED, 4 PACKETS RECEIVED, 0% PACKET LOSS ROUND-TRIP (MS) MIN/AVG/MAX = 165/169/177 MS #PING TKR (193. 105. 180. 9): 56 DATA BYTES 64 BYTES FROM 193. 105. 180. 9: ICMP_SEQ=0 TTL=253 TIME=162 MS 64 BYTES FROM 193. 105. 180. 9: ICMP_SEQ=1 TTL=253 TIME=165 MS 64 BYTES FROM 193. 105. 180. 9: ICMP_SEQ=2 TTL=253 TIME=167 MS ----TKR PING STATISTICS---3 PACKETS TRANSMITTED, 3 PACKETS RECEIVED, 0% PACKET LOSS ROUND-TRIP (MS) MIN/AVG/MAX = 162/165/167 MS #

Basic tools for investigation (next( l Traceroute – Traceroute is used to show which routes are transited on the network between two centres. Firewall or packet filter on router may block the traffic as part of local security policy.

Basic tools for investigation (next( #TRACEROUTE TK 1 TRACEROUTE TO TK 1 (202. 245. 39. 11), 30 HOPS MAX, 40 BYTE PACKETS 1 SENT 1 (128. 7. 7. 200) 1 MS 2 ROUTER 1 (203. 155. 200. 99) 1 MS 3 TKR (193. 105. 180. 9) 173 MS 193 MS 172 MS 4 TKR (193. 105. 180. 9) 163 MS * 196 MS * 5 TKR (193. 105. 180. 9) 149 MS* 6 TKR (193. 105. 180. 9) 155 MS * 158 MS

Basic tools for investigation (next( #TRACEROUTE TKR TRACEROUTE TO TKR (193. 105. 180. 9), 30 HOPS MAX, 40 BYTE PACKETS 1 SENT 1 (128. 7. 7. 200) 1 MS 0 MS 2 ROUTER 1 (203. 155. 200. 99) 2 MS 1 MS 3 TKR (193. 105. 180. 9) 156 MS * 147 MS #

Basic tools for investigation (next( #NETSTAT -NR ROUTING TABLES DESTINATION GATEWAY NETMASKS: INET 255. 0. 0 FLAGS REFS USE INTERFACE ROUTE TREE FOR PROTOCOL FAMILY 2: DEFAULT 128. 7. 7. 200 UGS 6 153463 TU 0 128. 0. 7. 200 63. 174. 196. 210 UGHS 0 0 TU 1 127. 0. 0. 1 UH 1 32752 LO 0 128. 0. 7. 8 128/16 U 10 707939 TU 1 128. 7. 7. 8 128. 7/16 U 38 3765211 TU 0 128. 7. 7. 200 161. 142. 139. 230 UGHS 2 21309 TU 0

Basic tools for investigation (next( 128. 7. 7. 200 128. 0. 7. 200 # 161. 142. 139. 231 UGHS 192. 168. 2. 128 UGHS 203. 144. 197. 3 UGHS 203. 155. 200. 113 UGHS 206. 79. 34. 9 UGHS 0 207. 44. 45. 186 UGHS 207. 44. 45. 187 UGHS 0 0 2 7919 TU 0 9 TU 1 0 0 TU 1 143 TU 1 0 TU 1