In 1996, Intuitive Logic founder Christopher Beaumont launched internet connectivity services called Net Nevada, as a superior alternative to the previously existing local competitors. The following is an overview of the original topology of that service, as an example of many of the diverse technologies which were integrated to deliver services. Over the years Net Nevada received many industry acknowledgements including being awarded of the status of “Premier ISP” for the Las Vegas area.
CONNECTIVITY
Connectivity was continually upgraded in proportion to demand, generally maintaining a sustained transfer level of no more than 25% of capacity. Over the years, these upgrades included connectivity via Multiple T1's, DS3, OC3, and direct 100Mbps Ethernet connections, to providers such as UUnet, Sprint, Espire, Epoch, Level3, and Cox Communications (100Mbps via Fiber Optic)
Autonomous system number (ASN) registration with ARIN, allowed multi-home routing using BGP, also establishing dedicated IP (internet protocol) address owned directly by Net Nevada, instead of an up-line carrier/provider.
Physical connectivity from the data center to backbone and telecommunication providers was provided via redundant copper trunk, as well as 3 individual fiber optic trunks (2 configured in a ring).
SECURITY
Net Nevada was positioned with challenges unique to ISP's, of having to allow multiple levels of access and trust based on the relationship of the connection or lack thereof. Examples of this are: allowing full anonymous access to standard internet services (www, inbound email/smtp,pop3,imap), more access for our regular customers (outbound email/SMTP), protected access for temporary customers like tradeshows (no outbound email/smtp), and unique access for dedicated customers, while maintaining basic security on their behalf.
Over the years this included convention connection such as Networld Interop (multi client) or Defcon (a 'hacker' convention, which
potentially increased our threat from aspiring hackers looking to prove themselves at the Con!)
Security policies were enforced using access control lists on all of our routers, Cisco PIX firewall and Checkpoint Firewall-1 deployments, and
included maintenance of policies for our customer’s equipment as well. All violations to the security policy was recorded via monitoring, allowing for proactive response to emerging threats.
During the duration of Net Nevada’s services, NO customer was ever subject to a hacking attack. This included generic attacks, such
as the Microsoft SQL attack, which we protected by default at our gateways by disallowing the port used for the attack.
CLIENT CONNNECTIVITY
Client connectivity was provided utilizing the Ascend MaxTNT, capable of 672 simultaneous analog or ISDN connections, far exceeding that
of our competitors immediately at the time of opening.
This also made Net Nevada the first K56 dial-up service provider, and later the first V90 provider as well.
Net Nevada also provided dedicated ISDN (64K/128K/512K) in addition to T1 connectivity to businesses. This service had not
previously been offered by competitors. As an added feature (never added by any competitor) T1 customers (or later DSL) were able to automatically connect via ISDN in the event their T1 circuit was down (at no additional charge). Routing for this was accomplished
by assignment of IP network via Radius authentication, and OSPF for internal routing delegation.
Dialup users were divided into two pools, those who had signed contracts and those who hadn’t, and were assigned different ranges of
IP addresses accordingly. This was done to prevent SPAM, wherein those who had signed the contract which expressly forbid SPAM,
could send outbound email (SMTP) using our servers. This prevented the trend of people signing up for accounts to SPAM and
cancelling once caught, and was extremely effective.
HOSTING
In addition to having and offering the standard services associated with being an ISP (mail server SMTP/POP3/IMAP, personal web
pages, news server) Net Nevada offered the first anti-virus anti-spam protection on the mail server itself.
For business customers, Net Nevada offered shared server, dedicated server, and co-located server hosting options. For dynamic or database driven sites, Microsoft's ASP, Cold Fusion, and PHP were offered. For to address the diversity of client needs, both Unix (BSD) and Windows Servers were maintained for web hosting.
These services were later offered as “Datacom Hotel” to help assist customer perception that hosting was different from connectivity.
MONITORING
At the core of our Network Operations, was our logging and monitoring.
All aspects of our service were completely logged, graphed, and monitored.
MRTG was used to graph the following: the thru-put of each Ethernet port; input output and runtime of backup power supply,
temperature of Computer room (and later expanded Data Center), thru-put of Backbone Connections, each end of dedicated customer
circuits, server resource use (CPU/Memory), service response and latency.
Each Customer, Server, and Service was monitored using ICMP and IP packets, so that when any of these were down, a notification
was immediately sent to me for response, often before any client noticed the event. The product used later became CiscoWorks.
A syslog server was used to capture the logs of each router, and firewall, and used for insuring stability and security. This included
that of our dedicated clients.
CONTENT CACHING & USENET NEWSFEED
As client connectivity increased, but backbone connectivity and related pricing didn’t, an inbound satellite feed was added, streaming to a
caching server, and our news server, while optimizing our backbone traffic and maintaining service quality.
CONVENTION SERVICES
Net Nevada provided countless internet connections for conventions and tradeshows. This process included:
Ordering and Installation of the appropriate connectivity at the convention site (T1,ISDN,DSL), or an ongoing maintained connection
to a property for managed internet services (Flamingo, Hyatt Lake Las Vegas, Tropicana);
Connectivity to the convention space (via copper, fiber optic, or other technology);
Configuration and Installation of all routers, switches, and other equipment required for connectivity of all client devices.
Over the years this took many forms as the requirements of the clients diversified.
GROWING SERVICE
As the company and clients base continued to grow, there were several areas that were expanded, including the Data Center itself, to
6000 sq ft, additional power backup generators and power circuit redundancy.
Router expansion and redundancy using Cisco 7200 and 7100 Routers. Dialup and DSL expansion using Cisco 5300 access servers.
Additional routing considerations to increase efficiency of route propagation, using EIGRP.
WIFI WAN
As cable-modem was becoming a threat to dialup connectivity, other options were entertained, which included WIFI or wireless
networking. I took the initiative to become trained and certified by Aironet. And began deploying wireless networking both for
internet and for customer interconnectivity. As Sprint approached us (and other local ISP’s) with the DSL program, our efforts
towards being a wireless internet service were converted into becoming a DSL provider.
DSL
As DSL technology, Net Nevada was the first to offer Sdsl services to customers within the downtown area (Sprint Switches 2 & 7.)
This was accomplished using point to point unconditioned line (dry copper) within the phone switch area.
As Adsl evolved, we became a local DSL provider (through Sprint). This was accomplished by adding an OC3 ATM connection to
Sprint, through which all customer traffic was router to us.
Raduis authentication still allowed us to maintain our backup connectivity options interchangeably between T1, DS3, ISDN, or DSL.
Additionally or anti-spam procedures were maintained for instance limiting use of direct SMTP to outside servers to commercial
& dedicated customers, but not residential it temporary customers. Radius handshaking was established between the Redback PPPoE/PPPoA RAS servers and Cisco 7200’s/7100’s, which terminated the session on our end.
I hope this can serve as a reasonable overview and summary of what was created, engineered, built, and maintained over a period of more
than 10 years, all with a ZERO downtime history. This of course was in addition to the consulting, integration, and other work
performed for clients directly.
Christopher Beaumont
| < Prev | Next > |
|---|