Welcome to Scribd!

0% found this document useful (0 votes)

59 views

IDNIC RPKI Hands On Lab v2: Environment

Uploaded by

This document provides instructions for setting up a hands-on lab environment to demonstrate RPKI (Resource Public Key Infrastructure) using GNS3 and Bird routers. It includes steps to install GNS3 and set up the lab topology with a Bird router VM, configure the router interfaces and Bird daemon, and apply RPKI filtering configurations to the BGP protocol.

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

IDNIC RPKI Hands On Lab v2: Environment

Uploaded by

Agung Wahyu arianto

0% found this document useful (0 votes)

59 views4 pages

Original Title

hands-on-lab-rpki

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Download as pdf or txt

0% found this document useful (0 votes)

59 views4 pages

IDNIC RPKI Hands On Lab v2: Environment

Uploaded by

Agung Wahyu arianto

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Download as pdf or txt

Jump to Page

You are on page 1of 4

Search inside document

IDNIC RPKI Hands On Lab v2

Environment
Install & Buka Software GNS3 v2.2.3

Setting Remote Server 

 
Host : 119.82.225.28

Port : 3080 TCP

VM Ini sudah berisi

• VM Bird

• Upstream Provider

Memulai Lab 
 
Buka GNS 3.

Buat Project Baru

Klik “Projects Library”

Klik “IDNIC” 
 
Klik “Duplicate”

Beri nama sesuai nama PT / Instansi Anda. 

 
Klik OK

Topologi Lab RPKI

Konfigurasi Router Bird

Router bird sudah mendukung RPKI. Untuk menggunakan protokol RPKI, kita harus menginstall
libssh terlebih dahulu sebelum melakukan compile router Bird.

Setup Network 
Klik kanan pada icon Server RPKI Validator -> Edit Configuration lalu masukkan konfigurasi
berikut 
 
auto eth0
iface eth0 inet static
address 192.168.30.[3 - 50]
netmask 255.255.255.0
gateway 192.168.30.2
up echo nameserver 8.8.8.8 > /etc/resolv.conf

Berikut ini adalah cara instalasi bird. Di dalam VM ini sudah terinstall bird. Jadi tidak perlu dijalankan
lagi.

 
Step 1
Install library-library pendukung

apk add make gcc g++ linux-headers readline-dev libssh flex bison ncurses-dev libssh-
dev musl ncurses-libs

Step 2 
Install Bird Routing Daemon

wget ftp://bird.network.cz/pub/bird/bird-2.0.6.tar.gz
tar zxf bird-2.0.6.tar.gz
cd bird-2.0.6/
./configure --prefix=/usr --sysconfdir=/etc
make -j2
make install
echo “” > /etc/bird.conf
Konfigurasi Bird

roa4 table ROA4;

roa6 table ROA6;

protocol rpki VALIDATOR {

roa4 { table ROA4; };
roa6 { table ROA6; };
remote <IP RPKI Validator>;
port 3323;
refresh keep 30;
retry keep 30;
expire keep 3600;
transport tcp;
}

filter peer_in_v4 {
if (roa_check(ROA4, net, bgp_path.last) = ROA_INVALID) then
{
print "Ignore invalid ROA ", net, " for ASN ", bgp_path.last;
reject;
}
accept;
}

filter accept_all {
accept;
}

protocol bgp {
debug all;
local as <3 - 55>;
neighbor 192.168.3.55;
ipv4 {
import keep filtered;
import filter peer_in_v4;
export filter accept_all;
};
}

Sample MTCNA Test Answer Key
Document6 pages
Sample MTCNA Test Answer Key
Glen Bastes
100% (4)
Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 Security
From Everand
Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 Security
Redouane MEDDANE
No ratings yet
HoVPN Configuration Guide
Document9 pages
HoVPN Configuration Guide
Abdelilah Charboub
No ratings yet
Install OpenSBC On Vyatta Firewall
Document18 pages
Install OpenSBC On Vyatta Firewall
nudocristopher
No ratings yet
BIRD Internet Routing Daemon: Introduction, Version 2.0.x
Document29 pages
BIRD Internet Routing Daemon: Introduction, Version 2.0.x
Ogev Gustav
No ratings yet
WCCP Proxy Configuration
Document7 pages
WCCP Proxy Configuration
Md Ariful Islam
No ratings yet
AULA 8 - INTRODUÇÃO AO OSPF.,
Document13 pages
AULA 8 - INTRODUÇÃO AO OSPF.,
Esdras Vieira
No ratings yet
SECURE10LG
Document150 pages
SECURE10LG
Azzafir
No ratings yet
CCNP Security Secure Lab Guide
Document150 pages
CCNP Security Secure Lab Guide
bkaraqa
67% (3)
TCPIP Advanced Fundamentals and Routed Protocol Features
Document25 pages
TCPIP Advanced Fundamentals and Routed Protocol Features
Vicente AWS
No ratings yet
Configuring DHCP Server and DHCP Relay in Arubaos-Switch
Document8 pages
Configuring DHCP Server and DHCP Relay in Arubaos-Switch
aliveli85
No ratings yet
Cisco Router Basic Configuration Reference
Document2 pages
Cisco Router Basic Configuration Reference
Glenn Ian Bislumbre
No ratings yet
Cisco Router Basic Configuration Reference: Command Example Description
Document2 pages
Cisco Router Basic Configuration Reference: Command Example Description
Alonso Sal y Rosas
No ratings yet
Fa Re Commands Latest
Document5 pages
Fa Re Commands Latest
vinoshan nadson
No ratings yet
Bigip Conf
Document3 pages
Bigip Conf
sam
No ratings yet
25-8-2018 CCNA 200 125 551Q CCNAv6 PDF
Document250 pages
25-8-2018 CCNA 200 125 551Q CCNAv6 PDF
iliutza
No ratings yet
Aa Juniper
Document15 pages
Aa Juniper
Siva Teja
No ratings yet
RFC Trex Error
Document4 pages
RFC Trex Error
Ganesh Sawnt
No ratings yet
ISM Journal rUGVED
Document46 pages
ISM Journal rUGVED
571TYIT sunil
No ratings yet
Router Auditing
Document24 pages
Router Auditing
Bala JE/BSNL
100% (1)
Example For Configuring PPPoE Access For IPv4 Users
Document7 pages
Example For Configuring PPPoE Access For IPv4 Users
FTTH ISP
No ratings yet
Openstack Users Ja Sogabe e
Document48 pages
Openstack Users Ja Sogabe e
rockerptit
No ratings yet
CCNP Tshoot Ch10 IP Services Troubleshooting
Document7 pages
CCNP Tshoot Ch10 IP Services Troubleshooting
Abdelrahim Hussam Moubayed
No ratings yet
IOs XR
Document22 pages
IOs XR
Không Biết Gì Hết
No ratings yet
Lab - Analysis On Management Plane
Document14 pages
Lab - Analysis On Management Plane
Anderson Bataglini
No ratings yet
Examples of DHCP
Document18 pages
Examples of DHCP
Jerome Tacata
No ratings yet
MTCNA
Document6 pages
MTCNA
xash2
No ratings yet
Addpac Voip Gateway Series: Release Note
Document8 pages
Addpac Voip Gateway Series: Release Note
amoscoso
No ratings yet
Juniper RPM and Event Policy
Document7 pages
Juniper RPM and Event Policy
Alex Machado
No ratings yet
F5 Ltm-140130073252-Phpapp
Document149 pages
F5 Ltm-140130073252-Phpapp
akino johnkennedy
No ratings yet
AAA Command ASR1000-IOS-XE-Troubleshooting-ISG
Document67 pages
AAA Command ASR1000-IOS-XE-Troubleshooting-ISG
Maciej Krakowski
No ratings yet
CCNA Security Lab 3 - Cisco Context-Based Access Control - CLI
Document10 pages
CCNA Security Lab 3 - Cisco Context-Based Access Control - CLI
velramsen
No ratings yet
Routing Module
Document34 pages
Routing Module
chinthasreenivasarao
No ratings yet
CN Full Manual r2021
Document44 pages
CN Full Manual r2021
chandrakanth.b
No ratings yet
Digitalworld - Local Mercy Walkthrough SOG - Re
Document1 page
Digitalworld - Local Mercy Walkthrough SOG - Re
gytu
No ratings yet
cs3591 Lab
Document16 pages
cs3591 Lab
karan20032004
No ratings yet
Usage
Document25 pages
Usage
c4sp3r2222
No ratings yet
Python Dev Web Ser
Document9 pages
Python Dev Web Ser
Hemant Homkar
No ratings yet
Lab 4 - Router As A DHCP Server
Document7 pages
Lab 4 - Router As A DHCP Server
Miticuta Surub
No ratings yet
Finals Cisco 2
Document33 pages
Finals Cisco 2
eun mun kang
No ratings yet
EDU 311 80a MOD 05 Layer 3
Document35 pages
EDU 311 80a MOD 05 Layer 3
anhtuan29
No ratings yet
CCNA Labs
Document28 pages
CCNA Labs
Cuong Nm
67% (6)
Latest Dump Compiled by Genius PDF
Document127 pages
Latest Dump Compiled by Genius PDF
Mateus Gerboni
100% (1)
NXLD90 Router Security Configuration Guide
Document6 pages
NXLD90 Router Security Configuration Guide
Abu Fadilah
No ratings yet
Implementing Advanced Cisco IOS Features: Configuring DHCP: Manipulating Routing Updates
Document15 pages
Implementing Advanced Cisco IOS Features: Configuring DHCP: Manipulating Routing Updates
rajkumarlodh
No ratings yet
DHCP CCNP
Document9 pages
DHCP CCNP
Kumari Priyanka
No ratings yet
Iptables 2
Document34 pages
Iptables 2
Claudemir De Almeida Rosa
No ratings yet
CN Lab Record Final
Document77 pages
CN Lab Record Final
Mohamedashfaquen Dr.NGP Itech
No ratings yet
CN Lab Record Final
Document77 pages
CN Lab Record Final
sham kevin
No ratings yet
Multi-Node OCP Cluster Installation Steps 2
Document15 pages
Multi-Node OCP Cluster Installation Steps 2
htv6041
No ratings yet
QoS Practice Labs - English
Document65 pages
QoS Practice Labs - English
nguyenquocxa
No ratings yet
3.CheckPoint Commands
Document17 pages
3.CheckPoint Commands
nagendra_badam
No ratings yet
Rip Implementations: Ripv1 Ripv2 Ripng (Rip Next Generation)
Document2 pages
Rip Implementations: Ripv1 Ripv2 Ripng (Rip Next Generation)
JaydenVanTongeren
No ratings yet
Manual - IP - DHCP Server - MikroTik Wiki
Document15 pages
Manual - IP - DHCP Server - MikroTik Wiki
mona_mi8202
No ratings yet
Maquette Cisco
Document4 pages
Maquette Cisco
Youssef Moutahaddir
100% (1)
Load Balanced Quangga
Document4 pages
Load Balanced Quangga
Achmad Muzaqi
No ratings yet
Lab Manual
Document20 pages
Lab Manual
onlyviki
No ratings yet
CISCO PACKET TRACER LABS: Best practice of configuring or troubleshooting Network
From Everand
CISCO PACKET TRACER LABS: Best practice of configuring or troubleshooting Network
Mulayam Singh
No ratings yet
Network with Practical Labs Configuration: Step by Step configuration of Router and Switch configuration
From Everand
Network with Practical Labs Configuration: Step by Step configuration of Router and Switch configuration
Mulayam Singh
No ratings yet
Nagios, 2nd Edition: System and Network Monitoring
From Everand
Nagios, 2nd Edition: System and Network Monitoring
Wolfgang Barth
Rating: 4 out of 5 stars
4/5 (7)