Technical Requirements

Security policy of the shared Layer 2 infrastructure

Extreme IX aims to ensure the Members reliable and uninterrupted Service as well as to limit the risks of deliberate or accidental mistakes, defective equipment or lack of speed of certain Member to reflect the quality of the others.

According to this the following restrictions and rules apply:

MAC Layer

  1. Extreme IX PHYSICAL INTERFACES and MEMBERS PHYSICAL INTERFACES shall work in full-duplex regime.
  1. Frames forwarded to Extreme IX ports shall have one of the following ethertypes:
    – 0x0800 – IPv4
    – 0x0806 – ARP
    – 0x86dd – IPv6
    and restricts all other ethertypes.
  1. Only one MAC address is allowed on a service port and all traffic originating from this port should come with the same source MAC address, otherwise traffic will be discarded.
    In case of VLAN Interconnect service, we allow one MAC address per VLAN ID.
  1. Frames forwarded to Extreme IX ports SHALL NOT be addressed to a multicast or broadcast MAC destination address except as follows:
    – broadcast ARP (Address Resolution Protocol) packages
    – multicast IPv6 Neighbor Discovery (ND) packages
  1. Maximum broadcast packages forwarded from the MEMBER’S equipment must not exceed 50 (fifty) in number per second per PHYSICAL INTERFACE.
  1. Members SHALL NOT announce to the ROUTE SERVERS IP address space reserved for Private networks (Private IPs).
  1. Members SHALL NOT announce to the ROUTE SERVERS AS numbers reserved for private use (Private AS).
  1. The Member must aggregate as far as possible the announced prefixes (MEMBER ADDRESS SPACE).
    The smallest IP address block allowed to be announced is /24 (256 IP addresses).
    It is NOT ALLOWED to use Spanning Tree Protocol enabled on a port connected to Extreme-IX
    It is NOT ALLOWED to use proxy ARP enabled on a router port connected to Extreme-IX.
    NOTE: DO NOT advertise the full routing table to us, we need your DNS IP Pools and End user IP Pools only!
  1. Extreme IX can limit the PUBLIC PEERING traffic in both directions (source and destination), when source IP address space or destination IP address space is not part of the prefixes announced by the Member to ROUTE SERVERS.
  1. For the purpose of monitoring on Extreme IX site, Members should not forbid ICMP (Internet Control Message Protocol) communication from/to Extreme IX IP address space.
  1. Extreme IX has implemented Quarantine VLAN. Аll new ports are placed in their own separate VLAN, together with a monitor port.

IP Layer

  1. Interfaces connected to Extreme IX ports SHALL ONLY use IP addresses (IPv4 and IPv6) and netmasks assigned to them by Extreme IX.
  1. IP packets addressed to Extreme IX Peering LAN’s directed broadcast address SHALL NOT be automatically forwarded to Extreme IX ports.
  1. IP address space assigned to Extreme IX Peering LANs SHALL NOT be advertised to other networks.

 

IP Traffic Exchange

IP traffic should be exchanged between Extreme IX members using BGP protocol by the following ways:

  1. Using Route Servers (RS) – two RSs for redundancy and resilience.
  2. Bilateral BGP sessions between Extreme IX Members / Content providers with theirs mutual agreements.

 

Route Servers Peering Policies

  1. Disabling first AS check
    The Route Servers do not have their AS first in the AS_PATH. In some cases you might need to disable the first AS check in your BGP configuration.
    – On Cisco routers please specify ‘no bgp enforce-first-as’ or ‘bgp enforce-first-as disable’ to disable the enforcement.
    – On Huawei routers please specify ‘undo check-first-as’ to disable the enforcement.
  1. Autonomous System Number (ASN)
    Extreme IX supports both 16-bit and 32-bit AS numbers.
  1. Incoming Prefixes Sanitization
    The Extreme IX route servers implement very basic incoming filters for private ASNs and prefixes received from clients. Extreme IX BLOCKs private ASNs, RFC1918 ranges, bogon prefixes and the default route.

 

Route Servers Details

Mumbai

Route Servers RS 1 RS 2
ASN AS49378 AS49378
IPv4 Address 103.77.108.200 103.77.108.240
IPv6 Address 2001:df2:1900:2::200 2001:df2:1900:2::240

 

Delhi

Route Servers RS 1 RS 2
ASN AS49378 AS49378
IPv4 Address 45.120.248.200 45.120.248.240
IPv6 Address 2001:df2:1900:1::200 2001:df2:1900:1::240

 

Hyderabad

Route Servers RS 1 RS 2
ASN AS49378 AS49378
IPv4 Address 103.77.110.200 103.77.110.240
IPv6 Address 2001:df2:1900:4::200 2001:df2:1900:4::240

 

Chennai

Route Servers RS 1 RS 2
ASN AS49378 AS49378
IPv4 Address 45.120.251.200 45.120.251.240
IPv6 Address 2001:df2:1900:3::200 2001:df2:1900:3::240

 

Kolkata

Route Servers RS 1 RS 2
ASN AS49378 AS49378
IPv4 Address 45.120.249.200 45.120.249.240
IPv6 Address 2001:df2:1900:5::200 2001:df2:1900:5::240

 

Communities

All members to Extreme IX route servers can use communities to control incoming and outgoing information.

In relation to the incoming traffic (which announces are accepted) the control is in the client – he can filter which ones of the received from RS announces he will accept.

Extreme IX RSs remove its own AS from the route, which will make them seem directly connected without a necessary BGP session between them.

With the help of BGP Community Extreme IX member may decide who he wants to “give” the traffic to. The following BGP Community is maintained for every announced prefix.

Communities coming from Extreme IX RS:

0:peer AS Prefix is announced from peer AS

 

Communities that are accepted from Extreme IX RS:

49378:0 Block Your prefix to all peers
49378:0 49378:ASPEER Block Your prefix to all peers EXCEPT ASPEER
49378:ASPEER Block Your prefix to ASPEER

 

Communities for Mumbai peers with 32-bit ASNs:


Extreme IX implements N:M filtering based on standard community strings. As standard BGP communities support only 4
bytes, this only works for 2-byte ASNs and peers with 2-byte ASNs.

For BGP peers with 32-bit ASN use current table for community:

Peer 32-bit ASN BGP Community
Cloudnet Communications 135207 65001
Logon Broadband 133968 65002
Digiking Communications 138745 65003
CreenceIS Computing 135262 65004
Utopia Networks 133315 65005
Multinet Udaipur 133469 65007
Digital Info Systems 136360 65008
Smartlink Solutions 134331 65009
Kernel Fibernet Online Network 133997 65011
Juweriyah Networks 138296 65012
Sukain Infoway 134937 65013
Optical Broadband Communications 135839 65015
Sada Smartlinks Communication 138762 65016
VCitynet 140144 65017
Maxtech Broadban 133311 65018
Cityzone Infonet 134899 65019
Wow Solutions 133590 65020
JPR Networks 132220 65021
UCN Cable Networks 133007 65022
Ethernet Xpress 134053 65023
Allnet Broadband 135724 65024
Zpoint Fibernet 134875 65025
Seven Star Digital Networks 132296 65026
Mukand Infotel 132960 65027
Khetan Cable Network 132445 65028
Laxmi Internet Service 134012 65029
Speed Global Telecom Network 135810 65030
Dreamlink Technologies 136481 65031
Gcore 199524 65032
Optical Broadband Communication 135839 65034
Typhoon Communication 138276 65035
Ncore Creative Technologies 134041 65036
Basak Telecom 136677 65037
Elxer Communications 133255 65038
Knet Solutions 135247 65039
Gazon Communications 132770 65040
Five Network Broadband Solution 132768 65041
V Net Networks 132956 65042
Sistomic Interwebs 136289 65043
Adarsh Infosolutions 133674 65044
Softech Infosol 133680 65045
Net 4 U Services 134014 65046
Galaxynet Connections 135852 65047
TGN Networks 136300 65048
Access Smart Solutions 133309 65049
PassIT Media 137144 65050
Airtech Internet Solutions 136302 65051
Riyaz Internet Services 132752 65052
Classicnet Broadband Network 134307 65053
Mira Infocomm 173083 65054
Net OnAir Networks 133994 65055
Spider Broadband 135214 65056
D-WAN Supports 133301 65057
GTPL KCBPL Broadband 135872 65058
Swastik Internet & Cables 133724 65060
Allied IT Infrastructure 134006 65061
Bluelotus Support Services 132556 65062
Assistive Networks & Technologies 136956 65063
Sun Broadband and Data Services 133684 65064
Alegra Communication 136902 65065
Sheng Li Telecom India 134006 65066
Yashash Cable Network 131210 65067
Wefe Technology 133695 65068
Soliton NetLink 134916 65069
DeeNet Services 136308 65070
Esto Internet 132051 65071
Airnet Networks 133001 65072
Powergrid Corporation 132215 65073
Digital Satellite Connect 137166 65074
Gigaline Teleservices 137633 65075
Shikhar Broadband Enterprises 136646 65076
Nas Broadband Private Limited 137142 65077
Balaji Infonet 135851 65078
NGC Broadband 136323 65079
Vilite Multimedia 135735 65080
Foxtel Telecommunication 134004 65081
Redking India IT Services 136673 65082
Falconet Internet 136287 65083
SpeedUP Network 134293 65084
Ellinovations 136665 65085
Fiberpipe Communications 138222 65086
Kings Broadband 132976 65087
Jetspot Network 134325 65088
Compatible Network 138241 65089
SK Netsol 135820 65090
Genstar Network Solutions 134022 65091
Intermedia Cable Communications 134055 65092
Nuozen Telecom 138712 65093
Swiftnet Broadband 133713 65094
Sifi Online 136696 65095
Jee Communications 135226 65096
Shree Omkar Infocom 132137 65097
Gtel Communications 135218 65098
Lightyears Broadband 135844 65099
HI REACH BROADBAND 134033 65100
NetSat Communications 135139 65101
Cybernet Introtech 137139 65102
DCS Internet Services 137609 65103
Ashok Secure Broadband Network 134942 65104
Vortex Netsol 136334 65105
Sanchar Telenetwork 131215 65106
Sanjeevan Networks 135809 65107
HYFY Giga Fiber 137132 65108
Apple Broadband Services 136716 65109
TATA Sky 134674 65110
MNR Broadband 133648 65111
Airfiber 135780 65112
Isparrow Digital India 138302 65113
Kenstar Web Solutions 138329 65114
Spiderlink Networks 134928 65115
Rural Broadband 134177 65116
Sistemos Information 132772 65117
VPS Broadband and Telecommunications 135756 65118
Udayatel Communication 136376 65120
Delix Net Solutions 137098 65121
Streamonn Internet Services 138227 65122
Silicon Care Broadnet 135795 65123
Jetway Broadband India 134913 65124
ARKCOM Telecommunications 137588 65125
RK Broadband HIFI Services 137142 65126
Skylink Fibernet 135139 65127
Hibird Infocom 138222 65128
Develentcorp 139331 65129
Multicraft Digital Technologies 135834 65130
Gramin Broadband Network 132958 65131
Sefaro Networks Private 136700 65132
Antarjal IT Communication 138737 65133
Web Werks India 133296 65134
Opticom Networks 138300 65135
Royal Connect Solutions 137622 65136
Protoact Digital Network 137678 65137
Threesa Broadband 132996 65138
Orange City Internet Services 134929 65139
Jaipur Internet Technology 137659 65141
CloudSky Broadband Services 134340 65142
Cityline Networks 135746 65143
Dronagiri Infotech 135561 65144
Stampede Communications 136714 65145
Tencent Peering 132203 65146
Vilas Internet Services 139482 65147

 

Communities for Delhi peers with 32-bit ASNs:


Extreme IX implements N:M filtering based on standard community strings. As standard BGP communities support only 4
bytes, this only works for 2-byte ASNs and peers with 2-byte ASNs.

For BGP peers with 32-bit ASN use current table for community:

Peer 32-bit ASN BGP Community
Digial Telco Network 135729 65004
Tachyon Communications 135697 65005
Weebo Networks 136946 65006
RG Technosolution 134922 65008
LM Energy and Software 135719 65009
Net Raj Technology 136643 65010
Mediant Broadband 136328 65012
DDC Broadband 135706 65013
Link Up Networks 136645 65014
Sphier Infotech 133272 65015
JDM Broadband Services 134341 65016
Praction Networks 135799 65017
Ultranet 134026 65018
SAT International 135716 65019
Rgasaa Communication 134917 65020
Fusionnet 134375 65021
Airmax Internet 135753 65022
Softech Infosol 133680 65023
Fastnet Communications 133692 65025
Gigantic Infotel 133275 65026
SS Fiber Net 136372 65027
Dehradun E-net Solutions 133278 65028
Skynet Internet Broadband 134259 65029
SVD Digital Networks 135763 65030
Ookla Telecom 136625 65031
iForce Networks 134858 65032
Userlinks Netcom 135761 65033
Multicraft Digital Technologies 135834 65035
MNR Broadband 133648 65036
Powernet Communications 135772 65037
Netway Internet 135223 65038
Oasis Cable 133651 65039
Touch Net India 132004 65040
Gigatel Networks 135193 65041
RI Networks 135031 65042
Skynet 133676 65043
Global RA Net Services-2 135692 65044
Hardwork Cable & Internet Services 133967 65045
Dheera Net Services 135842 65046
Gigacast Network 136322 65047
Indophone Networks 134946 65046
Daksh Broadband 135773 65048
Sistemos Information 132772 65049
Arichwal IT Services 134884 65050
Bhaukaal Baba Technologies Ashok Nagar 134895 65051
Bhaukaal Baba Technologies Gurgaon 134337 65052
Realtel 132754 65053
Zapbytes Technologies 133652 65055
Airnat IT Services 132540 65056
Tripleplay Broadband 132453 65057
Perfect Internet 132323 65058
Skynet Wireless Network 137667 65059
Gatiman Broadband 134875 65060
S A Internet Solution 137138 65061
Trivoz Digital Networks 136338 65062
Sifi Online 136696 65063
SBR Telecom 133989 65064
Linkwave Technologies 136377 65065
Jaipur Internet Services 137659 65066
Vajra Telecom 136632 65067
Skymax Broadband 132934 65068
Elyzium Technologies 134319 65069
Netzi Broadband Services 136354 65070
IAXN Telecom 134316 65071
Tata Sky Broadband 134674 65072
Exnet Broadband 136370 65073
Five Network Broadband 132768 65074
Net NCR Technology 135683 65075
Cyber City 136286 65076
iGen Network 134905 65077
Acme Diginet Corporation 134874 65078
Ultranet Infotech Solutions 132932 65079
DM Lot Infotech 137095 65080
Alphanet Broadband 135793 65081
Blue Sky Broadband 134945 65082
Nextel Communication 137627 65083
Reticule Infotech 134943 65084
Esto Internet 135817 65085
Radinet Info Solutions 138277 65086
Uzaina Business India 138287 65087
ADN Broadband 135738 65088
MicroNet IT Services 137650 65089
YMS Network 133645 65090
Spiderlink Networks 134928 65091
Skyhunt IT Park 133718 65092
IPnet Communications 135232 65093
Fibre Air Services 132771 65094
Falconet Internet 136287 65095
Srinagar Net Tech 133317 65096
Sai Technix 136722 65097

 

Communities for Hyderabad peers with 32-bit ASNs:


Extreme IX implements N:M filtering based on standard community strings. As standard BGP communities support only 4
bytes, this only works for 2-byte ASNs and peers with 2-byte ASNs.

For BGP peers with 32-bit ASN use current table for community:

Peer 32-bit ASN BGP Community
SVCPL 134305 65002
Delix Net Solutions 137098 65003
Blackpride Tech 135691 65004
Hi Reach Broadband 134033 65005
Zoom Fiber Solutions 132998 65006

 

Communities for Chennai peers with 32-bit ASNs:


Extreme IX implements N:M filtering based on standard community strings. As standard BGP communities support only 4
bytes, this only works for 2-byte ASNs and peers with 2-byte ASNs.

For BGP peers with 32-bit ASN use current table for community:

Peer 32-bit ASN BGP Community
Ficus Telecom 132931 65001
Velocity Internet 134016 65002
RV Broadband 135192 65003
Skylink Fibernet 135139 65004
Knet Solutions 135247 65005
Ultron Broadband 139528 65009
F2H Network 136708 65010
C32 Broadband 135801 65011
Niss Internet Services 132774 65012
RMAX Broadband 133971 65013
Alacriy Net System Service 135758 65014
Airgenie Communications 134021 65015
HYFY Giga Fiber 137132 65016
Rainbow Internet Teleservices 136349 65017
Signum Digital Networks 133685 65018
Blu Ultraband 131459 65019
Deshkal Network 132559 65020
Netfire Communications 135202 65021
Sri Vari Network 134877 65022
Fiberzone Communications 135808 65023
Access Smart Solutions 133309 65024
Netrexo Communications 135815 65025
Sri Krishna Internet Services 133693 65026
SP Internet Technologies 134863 65027
Raagav Communication 134054 65028
Durgamba Broadband Network 138717 65029
Livefibernet Service 138746 65030
Dhanam Internet Services 136706 65031
Netzy Internet Services 139575 65032
Stampede Communications 136714 65033
Sarva Airworld Network 136326 65034
TATA Sky Broadband 134674 65035
Allnet Broadband Network 135724 65036
Bluwaves Internet Services India 135206 65037
One Pipe Telecom 138279 65038
Kerala Vision Broadband 138754 65039
Arjun Telecom 133000 65040
Thamizhaga Internet Communication 136336 65041
Excitel Broadband 133982 65042
Rainbow Communication 140128 65043
Softech Infosol 138705 65044

 

Extreme IX Operations

Extreme IX provides 24/7/365 First level of support and Business hours Second Level of support to all its members.