Personal experience: presentations and webinars of VAS Experts about SKAT, CG-NAT and DPI-systems
Today we have prepared a compact selection of lectures and webinars of our experts. In them we are talking about DPI-systems, SCAT DPI platform and the intricacies of such solutions in the provider network.
/Flickr / rawpixel.com /PD
Processing of the data stream using DPI as an example: internal architecture and solutions
This is Maxim Khizhinsky's speech at the C ++ CoreHard Autumn 2017 conference. Maxim is the leading C ++ programming engineer of our company and is known. as one of the developers of the SCAT DPI platform, responsible for creating CG-NAT and BRAS functions. The conference, which Maxim addressed was held in Minsk.
The presentation reveals the essence of the model of processing the data streams Apartment Model, which we use in VAS Experts, and the requirements imposed on it (for example, the exclusion of the concept of "flow control"). Maxim also talks about the components of the model (actors) and gives examples of their pseudocode: how they "communicate" with each other, what methods they use.
What other points affect the speech:
Parallelization - why the number of threads should not exceed the number of cores, and what threatens the creation of flows "on the fly";
work Apartment Model - with one or more apartments;
memory allocation, pending actions, and tracking of external events.
SKAT for notification of subscribers: marketing campaigns
Artem Tereshchenko, our account manager, tells us that he "knows" SKAT in the context of the operator's work. In this webinar, he will focus on marketing campaigns - the opportunities that SKAT provides for this.
Here we are talking about configuring notifications through the command line, creating unique web pages with suggestions and setting the campaign time.
What else do we talk about in this webinar:
connection of the system of deep traffic analysis;
traffic marking and prioritization;
search patterns (and how to use them).
Filtering on the black lists of Roskomnadzor
The webinar is devoted to lists of Roskomnadzor (HTTP URL, * domain.com, HTTPS URL, IP, Newcamd), and ways to block addresses using SCAT (SNI, IP or SSL certificates). Here we are talking about ways to connect SKAT - installation "in the gap", an asymmetric scheme - and give recommendations as to which SKAT connection schemes should not be used.
What else is discussed in the presentation:
"Inspector" of Roskomnadzor;
work with ILV lists (with examples);
Configuring SCAT monitoring using the Zabbix template.
Webinar: SKAT DPI as BRAS
Here we are talking about the functionality of BRAS based on DPI: support for multi-user mode, setting and changing tariff options for the time of day and subscriber balance. Also we touch upon the theme of differences between L2 and L3 BRAS .
For example, L3 BRAS communicates with subscribers via intermediate routers, so "does not see" the original MAC addresses. IP addresses are issued in this way either statically in the network settings, or on the access switches via DHCP Relay. L2 operates at the data link layer, so it uses both IP and MAC addresses, as well as VLAN or QinQ network numbers, to identify subscribers.
What else is in the presentation:
functions of PCRF-server as "layers" between fastdpi-server and radius-server;
setting up SKAT to work as L2 /L3 BRAS in the provider's networks;
step-by-step algorithm for implementing BRAS.
DPI dual-use: for business and government
In this presentation, we show what types of systems are meant by the term COPM: telephony (COPM-1), selective control of Internet users (COPM-2) and user statistics (COPM-3). On an example we will outline the main differences between SORM-2 and SORM-3 and tell how we implement them in VAS Experts, taking into account the legislation (in particular, FZ-374).
What other topics do we discuss on this webinar:
Overview of the main players of the DPI-market in Russia and the possibilities of DPI-products;
comparison of its own DPI engine and ready-made foreign developments;
architecture and technology of the SKAT DPI product: what it consists of and how it works;
CG-NAT and its features: full cone, hairpinning, logging of broadcasts, etc.
P.S. The five of our thematic digests on Habr:
Network Digest: 20 materials about networks, protocols and the battle for Net Neutrality
DPI digest: IB, virtualization and regulation
Digest: DPI Technologies and SORM Equipment
DPI digest: IPv? SD-WAN and more
Digest of materials on Deep Packet Inspection
It may be interesting