1 / 42

MKSchools

Who are we?. Neil RocheSchools project managerDay to day running of MKSchools.netChris WigglesworthNetwork analystTechnical support to Neil. What is MKSchools.net. Metropolitan Area Network (MAN)Spans from Lavendon to the Lakesand from Stony Stratford to Woburn SandsOwned by Milton Keynes C

dashiell
Download Presentation

MKSchools

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

    1. MKSchools.net Neil Roche & Chris Wigglesworth

    2. Who are we? Neil Roche Schools project manager Day to day running of MKSchools.net Chris Wigglesworth Network analyst Technical support to Neil

    3. What is MKSchools.net Metropolitan Area Network (MAN) Spans from Lavendon to the Lakes and from Stony Stratford to Woburn Sands Owned by Milton Keynes Council Connects learning establishments Schools Libraries Adult education centres

    4. Area covered

    5. Beyond Milton Keynes MKSchools.net connects to: Milton Keynes Council Network Regional broadband network E2BN - http://web.e2bn.net/ National education network NGfL - http://getconnected.ngfl.gov.uk/index.php Through E2BN and JANET Internet 2 links, JANET and a commercial ISP

    6. MKSchools.net history Started in 1997 Open University KMi research project Connected a few schools to the University Dedicated project manager in 1999 Milton Keynes LEA joined E2BN in 2000 NGfL matched funding Use successful OU project as a foundation OU is contracted by Milton Keynes LEA

    7. Philosophy Build a reliable and resilient network Use proven technologies Provide duplicate services where economic Provide a network that is scalable Look past the Becta recommendations Keep on-going costs to a minimum Low subscription charges Move towards self-sustainability

    8. Technologies Technology chosen to provide best value Mix of connection technologies Resilient ring “core” network Licensed point to point microwave links Leased lines “Last mile” connections Unlicensed point to multi-point microwave links Leased lines Services use open source platforms

    9. Connections All schools in Milton Keynes connected All libraries in Milton Keynes connected Over 130 institutions connected Already meets government 2006 targets 2Mbit/s synchronous link for primary schools 8Mbit/s synchronous link for senior schools Senior schools have backup connection Rolling upgrade started

    10. Statistics All of Milton Keynes 36,000 pupils served Over 890Gb of data downloaded a month Secondary schools use 52% of traffic Libraries use 12% of traffic Process ~ 725,000 e-mails a month Stop ~ 290,000 SPAM e-mails a month Block ~ 1700 Viruses a month

    11. Reliability Contracted to provide 97.5% uptime That is up to about 9 days downtime a year Actually provide 99.5% uptime That is under 2 days downtime a year Includes power outages, lightning strikes, vandalism and equipment being turned off Core service uptime this year is 99.99% That is less than an hour of downtime

    12. What is covered

    13. What we cover MKSchools.net Managed by the Open University Cover core network Cover connections to external networks Cover up to the router in your school We do not cover The school LAN (Local Area Network) The CachePilot (supported by third party)

    14. Routers and common kit

    15. When is it covered?

    16. Active monitoring We monitor links on MKSchools.net Monitor from two sites Monitor quality as well as state We act on any onward link site problems We do not act on single site failures Frequently site problems You have to report the failure We may ring you

    17. Response times Next business day response Not guaranteed Usually far quicker! Problem resolution can take longer Replacement parts take time to delivered 3rd party faults fixed on suppliers time scale Loss of connectivity is prioritised Non critcial changes may take longer

    18. Service web site Contact Us / Feedback facility Notification of scheduled work Details of possible interruption to service Information on the likely duration Updates on unplanned outages Information on what has gone wrong Details of the impact to service Estimates of how long it will take to fix

    19. Service site registration Please register as a user As a registered user you will: Receive notifications of work by e-mail Be able to post and reply in the forums Features will be added in future Hope to build a community Provide improved communications

    20. Service.mkschools.net

    21. Diagnosing problems step 1 If you cannot access the Internet Check everything is turned on Most common problem Check power light on all equipment Check cables are in properly Has any electrical work taken place? Wireless equipment not always with router Get to know the equipment installed

    22. Diagnosing problems step 2 If all of the equipment appears to be on Try changing the browser proxy settings Try using proxy.mkschools.net port 8080 Try using 194.66.157.7 port 8080 Try using no proxy Try going to http://testcard.mkschools.net Try all of these while it is working! School network design may block them

    23. Proxy settings

    24. Test Card

    25. Interpreting results If 1. works and you can browse the web: Your connection to MKSchools.net works If it is an curriculum machine: It is a local problem Your proxy settings may be incorrect If you have a CachePilot it may be faulty If you run your own proxy it may be faulty If it is an administrative machine Contact the council helpdesk

    26. Interpreting results cont. If 1. does not work but 2. lets you browse Your connection to MKSchools.net works There is a DNS problem If it is an curriculum machine: Possibly an MKSchools.net problem (unlikely) Check http://service.mkschools.net Call MKSchools.net to see if a problem exists If it is an administrative machine Contact the council helpdesk

    27. Interpreting results cont. If 1. and 2. do not work but 3. does Your connection to MKSchools.net works There is a proxy problem If it is an curriculum machine: Probably an MKSchools.net problem Check http://service.mkschools.net Call MKSchools.net for help If it is an administrative machine Contact the council helpdesk

    28. Interpreting results cont. If none of 1. or 2. or 3. work then Try another machine, if this does not work Connection to MKSchools.net may be down Call MKSchools.net support and we will check If link is ok and it’s a curriculum machine Check the CachePilot if you have one Call the people who support your LAN If link is ok and it’s an admin machine Contact the council helpdesk

    29. Contacting MKSchools.net Web - http://service.mkschools.net Use Contact Us link and form E-mail - support@mkschools.net Phone - 0845 4589699 Answer machine message Sent to everyone in support Dealt with as soon as possible Always remember to leave contact details

    30. 3rd party contractors Prepare before work starts Agree requirements days in advance Make a note of how everything is connected If they will be affecting MKSchools.net equipment get in touch with us first Check and agree that the Internet is working Check it all works before they leave We will not fix their problems

    31. Firewall External access is protected by firewalls Policy is default deny both in and out Protect members from the Internet Stop pupils circumventing controls Protect the Internet from members Outgoing ports opened on request May need to confirm you understand risks Try to request changes in advance

    32. Services available We offer a number of free services Web proxy with URL filtering DNS servers and hosting Mail relays with virus and SPAM filtering Web site hosting with PHP, Perl and MySQL Time servers Most are resilient across two sites All are backed up regularly

    33. Web proxy with URL filtering proxy.mkschools.net on port 8080 Local proxy should be set to use this Filtering user interface called KidGuard https://proxyadmin.mkten.net/ School black and white lists Domains can be blocked e.g. xxx.com Paths can be blocked e.g. pics.com/nude/ CachePilot can also block URLs

    34. Local proxies and abuse Abuse is reported to MKSchools.net Most sites are using a local proxy CachePilot, ISA server etc. You need to be able to trace abuse Accurate logging is essential You need to log names or IP addresses along with destination and accurate time IP address needs to be traced to a person

    35. DNS servers and hosting DNS servers for name resolution 194.66.157.12, 83.100.168.21, 194.66.157.5 Can provide DNS for all domains For milton-keynes.sch.uk we do it all Ask Nominet or ISP to assign OPEN-U tag For other domains use a registrar Ask them to set the DNS servers as: robin.mkschools.net (194.66.157.12) resolute.mkschools.net (83.100.168.21)

    36. Mail relay Outgoing SMTP mail relay must be used relay.mkschools.net Incoming mail comes through relays too robin.mkschools.net, resolute.mkschools.net All mail is virus scanned Checked with three different virus scanners All mail is SPAM filtered Some marked, high scoring is deleted

    37. Web site hosting 200+Mb of web space accessible by FTP Dynamic content supported PHP and Perl languages MySQL database available Web front end to administer it Password protected directories possible Web based FTP client available http://www.mkschools.net/webftp/

    38. Time servers Three servers ntp0.mkschools.net, ntp1.mkschools.net and ntp2.mkschools.net Important for logging Necessary for Active Directory Synchronise one DC with time servers Synchronise other DCs with this DC Problems logging in if not in sync

    39. School based services Can provide reverse proxy for web sites Protects services Flexible content redirection Can provide public IP addresses Prefer to use NAT (no changes your end) Can route IP address to your network Your server is exposed to Internet Need to consider security, especially data

    40. Remote Access Limited VPN service for ICT staff Only a few accounts per schools Other remote access up to school Client based VPN SSL web based VPN Web server based services Think carefully about security Authentication weakness

    41. Future Plans Offer increased bandwidth as an option Improve communications Provide more information Allow more options for self-service Additional services Web mail front-end to existing mail servers Network backup facility What do you want? Let us know

    42. Value Price you pay includes all services Comparisons for 2MBit/s synchronous BT SDSL is £4140 per annum (no services) Easynet is £3588 per annum (no services) Anti-virus and URL filter over £500 pa Full service from RM costs £13000+ Other LEAs are charging more Usual prices about £3500 and £6500

    43. Questions? Please feel free to ask any questions We always want to hear from you Visit http://service.mkschools.net and use the Contact Us link and feedback form E-mail us at support@mkschools.net Leave a message 0845 4589699 If you have a problem please give us a chance to fix it!

More Related