We’ve assembled four practical guides written by Tim Rooney, Director Product Management, Diamond IP from BT. These should help you make solid decisions on IP address management (IPAM). Best of all, they’re free to download.
IP address management Best Practices
This white paper discusses the fundamentals of successful IP address management, which provides a solid foundation for further IT or Operation automation in support of advanced IP services management. These fundamentals, or “best practices,” are derived from numerous implementations of IP management systems over the last 20 years, as well as from interactions with end users and industry analysts. Read the complete guide.
IPv6 Address Planning
IP address planning is certainly among the critical functions required within the overall process of planning and executing an IPv6 deployment project. After all, one needs IPv6 address space in order to implement IPv6 and current IPv4 space must be managed in conjunction with the addition of IPv6 space. But the overall IPv6 deployment process requires not only IPv6 address space but an assurance that network and computing infrastructure is capable of processing and supporting IPv6 address space. Read the complete guide.
Applying ITIL Best Practice Principles to IP address management
Many organizations have deployed network management systems and processes to provide structure and discipline to network configuration, changes and monitoring functions. Such discipline helps organizations reduce miscommunications and configuration errors, as well as continually improve processes and workflows. FCAPS has long been a standard framework for network management. Now the IT Infrastructure Library (ITIL) has come to the fore. Effective application of ITIL, either in concert with FCAPS or alone, can bring this important and potent discipline to the management of IP addresses. This white paper will explain how each of the main ITIL areas can be applied specifically to IP address management (IPAM), and the benefits that can be accrued from using this management framework. Read the complete guide.
Securing Domain Name Resolution with DNSSEC
DNS security extensions, DNSSEC, defined in RFCs 4033-4035 [1-3], provide a means to authenticate the origin of resolution data within DNS and to verify the integrity of that data. It enables resolvers to validate that the resolution data received for a given zone was indeed published by the corresponding zone administrator and was not tampered with en route. Thus, DNSSEC provides a means to detect packet interception, message ID guessing, and cache poisoning attacks. In fact, DNSSEC was acknowledged as the only comprehensive solution to the highly publicized Kaminsky cache poisoning DNS protocol vulnerability in 2008 . This white paper provides a high level overview of how DNSSEC works and the basic administrative requirements for configuring and managing DNSSEC configurations. Read the complete guide.