Best Practice Documents

'Campus Best Practices' work within these technical areas: physical infrastructure, campus networking (including IPv6), wireless, security, network monitoring and real-time communications. Within these areas Best Practice Documents (BPDs) are produced. All BPDs will be published on this page. 

Physical infrastructure
This area addresses the requirements for generic cabling systems on campus, both fibre and twisted pair. The requirements of the infrastructure in telecommunications and server rooms are also dealt with. This includes power supply, ventilation and cooling, and fire protection, as well as general ICT room-plan guidelines. Recommendations for building an audio-visual (AV) infrastructure in lecture halls and meeting rooms are also covered.
Click here to download the documents

Campus networking
This area deals with the campus network itself, with the routers and switches as its basic building blocks. Requirements to both Layer 2 and Layer 3 are covered. Recommendations for a redundant design are given.
There is a particular emphasis on guidelines for implementing IPv6 on campus. Lightpaths on campus are also dealt with.
Click here to download the documents

This area focuses on the wireless infrastructure on campus. Radio planning, design of the wireless network, security considerations, including the implementation of IEEE 802.1X are covered. eduroam requirements and radius setup are dealt with. Cookbooks for controller-based implementations are given. Legal aspects are examined.
Click here to download the documents

Network monitoring
This area focuses on network monitoring of the campus network. General requirements and framework conditions for monitoring are given.
NetFlow/IPFIX analysis is covered. Security monitoring, anomaly detection and behaviour analysis are also dealt with. Particular considerations for IPv6 monitoring are given. References to a number of open source tools are given, many of which have been developed within the GÉANT community. 
Click here to download the documents

Real-time communications
This area recommends infrastructures for real-time communications with an emphasis on open standards, and Session Initiation Protocol (SIP), in particular. The infrastructure itself should be media transparent, coping with voice, video, messaging, document sharing, and presence.
Particular focus is given to Voice over IP (VoIP) and IP telephony. Best practices from a number of NRENs in Europe are given. Security concerns are discussed and implemented solutions are recommended. Performance issues are also covered.
Click here to download the documents

This area deals with security considerations for the campus network. A template for a security policy is proposed, based on core principles, as defined in ISO/IEC 27002. An ICT security architecture for higher education is recommended. Traffic filtering technologies are discussed and general applications are recommended. Adoption of digital certificates in a public key infrastructure (PKI) is covered.
Click here to download the documents