Learning > MANRS
Mutually Agreed Norms for Routing Security (MANRS)
What is the MANRS course?
The Mutually Agreed Norms for Routing Security (MANRS) is a global initiative, led by the Global Cyber Alliance (GCA) and supported by the Internet Society, to work with operators, enterprises, and policymakers to implement crucial fixes needed to reduce the most common routing threats.
MANRS comprises four simple but concrete steps that will dramatically improve Internet security and reliability. The first two operational improvements eliminate common routing issues and attacks, while the second two procedural steps provide a bridge to universal adoption and decrease the likelihood of future incidents.
This course gives you an understanding of how critical is to ensure that Internet traffic is reliably routed around the world to build a trustworthy, global Internet. Based on common network operational practices in place today, the global Internet routing system does not have sufficient security controls to prevent the injection of false routing information, including impersonation of networks.
What are the course objectives?
- Find out what MANRS is and why should you join this initiative.
- Learn the four actions all network operators should implement to improve both the Internet’s routing security and their own network’s operational efficiency.
- Understand the importance of routing security to the future and stability of the Internet.
- Learn how to prevent routing outages or attacks – such as hijacking, leaks, and spoofing – that can lead to stolen data, lost revenue, reputational damage, and more, all on a global scale.
- Understand the databases and repositories MANRS participants should use to document routing policy and maintain contact information.
- Apply anti-spoofing measures within your network and identify points/devices in the network topology where anti-spoofing measures should be applied. Identify adequate techniques to be used (for example, uRPF, or ACL filtering), configure your devices to prevent IP spoofing, and then verify that the protection works.
What are the expected outcomes of this course?
- Recognize the most common vulnerabilities in Internet routing
- Describe agreed good practices that help us make the Internet traffic more secure
- Apply filtering to announcement and route learning
- Discriminate traffic with spoofed source IP addresses from leaving a network by validating that the source address is correct
- Produce routing policy IRR, that including ASN and IP Prefix between networks
- Create valid Route Origination Authorizations (ROAs) for all IP prefixes that a network is authorized to originate
- Show the organization’s technical information in a globally accessible repository for rapid problem resolution
- Construct a community concerned with routing security and reduce the impact on routing security incidents
Who should attend this course?
This course does not have prerequisites.
You should attend this course if:
- You are a network administrator/engineer with knowledge and experience of networking and peering and are also familiar with Autonomous System Numbers (ASNs).
How do I enroll in a course?
When do I start?
Self-paced course
Duration:
4 weeks
Available in
English, French and Spanish