310 likes | 482 Views
RADIUS and WLAN Infrastructure Monitoring. Jovana Palibrk, AMRES NA3 T 2 , Sofia, 19.06.2014. eduroam in Serbia. eduroam project in Serbia started at the end of 2009 Process of connecting AMRES institutions to eduroam service and installation of equipment started in 201 0
E N D
RADIUS and WLAN Infrastructure Monitoring Jovana Palibrk, AMRES NA3T2, Sofia, 19.06.2014.
eduroam in Serbia • eduroamproject in Serbia started at the end of 2009 • Process of connecting AMRES institutions to eduroam service and installation of equipment started in 2010 • AMRES applied for donation from NATO SPS NIG program (Networking Infrastructure Grant) with project “AMRES Access Infrastructure Establishment” and got donation in 2010 Academic Network of Serbia www.amres.ac.rs
eduroam in Serbia RP – Novi Sad • NATO donation enabled procurement of: • 5 Cisco 5508 Wireless Controllers that are installed in 4 University computing centers • 190 access points that have been installed in more than 80 AMRES member institutions in 17 cities FTLR RP – Belgrade RP – Kragujevac RP – Nis
What is being monitored? • eduroammonitoring system is incorporated into our in-house network monitoring system – NetIIS • AMRES institutions network administrators are already using NetIIS in their every day technical activities • Monitoring and reporting • RADIUS servers (institutional RADIUS servers and Federation Top Level RADIUS – FTLR server) • Network Access Infrastructure (wireless access points and controllers) Academic Network of Serbia www.amres.ac.rs
NetIIS – Networking Information and Monitoring System folder • NetIIS is web based networking information and monitoring system • In NetIISall object from external world are presented in easily understandable way • Objects are hierarchically organized and presented by a tree location users and group of users groups device monitor alarm action Academic Network of Serbia www.amres.ac.rs
NetIIS – Networking Information and Monitoring System • Every institution has its own location in NetIIS infrastructure, under which eduroam folder is placed • eduroam data and infrastructure elements that are being monitored are stored in that folder Academic Network of Serbia www.amres.ac.rs
Monitoring and reporting : RADIUS servers • Testing availabilityof a RADIUS server over the network • Ping RADIUS server IP address • Testing operabilityof RADIUS servers : • eapol_testprogram from the wpa supplicant software is used http://deployingradius.com/scripts/eapol_test/ • Shell script on the NetIIS runs the eapol_test • Eap-ttls and peap tunnels can be tested • In case that some test fails, the alarm is being activated and mail notifications are send to the technical contacts of the corresponding institution Academic Network of Serbia www.amres.ac.rs
Monitoring and reporting: RADIUS Ping Academic Network of Serbia www.amres.ac.rs
Monitoring and reporting : RADIUS operability testing FTLR NetIIS eapttls Proxy eapttlsIdP + FTLR eapttlsIdP eapttls RP RP RADIUS IdPRADIUS
Monitoring and reporting: RADIUS IdP • Operability of eaptunnel established directly to the IdP RADIUS server is tested eap-ttls test@inst.ac.rs eapol_test inst.ac.rs IdPRADIUS NetIIS Academic Network of Serbia www.amres.ac.rs
Monitoring and reporting: RADIUS IdP • Radius Status and Delay graphs (period of 15 days) Academic Network of Serbia www.amres.ac.rs
Monitoring and reporting: RADIUS IdP + FTLR • Operability of eaptunnel established over the FTLR serverto the IdP RADIUS server is tested eap-ttls test@inst.ac.rs eapol_test eapol_test FTLR NetIIS inst.ac.rs IdPRADIUS Academic Network of Serbia www.amres.ac.rs
Monitoring and reporting: RADIUS IdP + FTLR • Radius Status and Delay graphs (period of 15 days) Academic Network of Serbia www.amres.ac.rs
Monitoring and reporting: RADIUS RP • Operability of eap tunnel established over the institutional RADIUS sever and FTLR serverto the monitor RADIUS server is tested FTLR NetIIS monitor.eduroam.ac.rs RADIUS monitor RADIUS eapol_test eap-ttls test@monitor.eduroam.ac.rs RP RADIUS Academic Network of Serbia www.amres.ac.rs
Monitoring and reporting: RADIUS RP • Radius Status andDelay graphs (period of 15 days) Academic Network of Serbia www.amres.ac.rs
Monitoring and reporting: FTLR • The availability and operability of FTLR server are tested FTLR NetIIS monitor.eduroam.ac.rs IdPRADIUS monitor RADIUS eap-ttls test@monitor.eduroam.ac.rs eapol_test Academic Network of Serbia www.amres.ac.rs
Usage statistics – eduroam usage monitor • Total number of successfully authenticated users on given RP institution taken for: • The same IdPinstitution – local users • Other IdP institution from the same country – national users • IdPinstitution from other countries – international users radius.log 3numbers script SNMP 3 numbers eduroam usage monitor RP RADIUS NetIIS Academic Network of Serbia www.amres.ac.rs
Usage statistics –eduroam usage monitor Academic Network of Serbia www.amres.ac.rs
eduroam_usage monitor – local users • Number of local users (period of 30 days) Academic Network of Serbia www.amres.ac.rs
eduroam_usage monitor – national users • Number of national users (period of 30 days) Academic Network of Serbia www.amres.ac.rs
eduroam_usage monitor – international users • Number of international users (period of 30 days) Academic Network of Serbia www.amres.ac.rs
Usage statistics – Splunk software • RP radius servers send syslog messages to splunk server which is used for making statistics • For easier analysis , messages are formatted on RP radius servers using radius line log and syslog-ng • Messages collected on splunk server:
Monitoring and reporting – Access Points • Ping • Number of the connected users Academic Network of Serbia www.amres.ac.rs
Monitoring and reporting – Wireless LAN Controllers • Ping • Number of DHCP clients: • Bad alarm – more than 100 addresses are being used • Good alarm – less than 100 addresses are being used Academic Network of Serbia www.amres.ac.rs
Groups of monitors – Access Points Academic Network of Serbia www.amres.ac.rs
Groups of monitors – Institutional RADIUS Servers Academic Network of Serbia www.amres.ac.rs
Groups of monitors – FTLR Academic Network of Serbia www.amres.ac.rs