Supported by:


Advanced Registry Operation Course (AROC) Workshop

Sudan, Khartoum

24 - 30 November 2012

Theme: "Enhancing Internet Management in Africa"






    Advanced Registry Operations Course Details

Course Overview:
(40 hours) The Advanced Registry Operations Course (AROC), course #2 of the Registry Operations Curriculum, instructs the principles and components of expanding the technical operation of a registry through effective network management. Students will learn concepts and their application to a registry by installation, configuration and operation of network management tools. Through a creative use of hands-on exercises, students will gain an operational understanding of managing and monitoring a registry network. Students will gain perspectives with real-world experience from networking with other students and through sharing of best practices.

Course Objectives:
Students will:

  • Evolve their technical skills and understanding of registry operations
  • Understand network management principles related to a registry
  • Understand methods and tools used in monitoring and managing a registry
  • Understand network architecture requirements for effective network management
  • Understand the basics of contingency response planning


  • Students must have attended the Initial Registry Operations Course - or - have experience with the Unix command line, and installing and configuring core registry operation software (i.e. name server, database, etc) - or- have passed the IROC completion exam.

Target Audience:

  • ccTLD registry operators, technicians and administrators
  • ccTLD management with technical background and experience (CTO, CIO, CSO)

Time Schedule

Dates 24  - 30  November 2012

Day 1TopicNotes

Session 0Entrance Exam (TCExam)
Session 1aWelcome and Course Infrastructure
Session 1bIntroducing Your NOC
Session 2Resilient, Reliable & Robust Reg. Ops
Session 3Network Performance Definitions
Session 4Network Performance Measurements
Session 5Student Presentations

Day 2TopicNotes

Session 6Network Monitoring/Management? Intro.
Session 7SNMP
Session 8Ticketing Systems (Request Tracker)
Session 9Nagios (Part I)

Day 3TopicNotes

Session 10Nagios (Part II, include RT+Mailgate)
Session 11Cisco Configuration Elements
Session 12NetFlow and NFSen
Session 13NetFlow and NFSen

Day 4TopicNotes

Session 14RANCID and CVSWeb
Session 15Cacti
Session 16Smokeping
Session 17Available as Needed

Day 5TopicNotes

Session 18Log Management (Syslog-NG/Swatch)
Session 19DCS
Session 20Completing Your NOC
Session 21aExam
Session 21bWorkshop Evaluation
Session 21cCertificates

     AROC Architecture

In-Course Architecture

  • Students will be divided into groups of two, and each will be provided with their own “ccTLD” within the in-course architecture. Each “ccTLD” will be in a separate routed subnet from the other “ccTLDs”.
  • Students or Host Organization must provide student laptops, one for every student. All other infrastructure will be provided by the instructors.

Block Descriptions:

  • Internet access, unfiltered and able to serve 20 students with email, web surfing, instant messaging, occasional VoIP or Skype call. Highly desired but not required
  • Student WiFi – 802.11g/n wireless access for connecting student laptops to the architecture
  • GroupX Laptop – a laptop capable of web browsing and running a secure shell (SSH) client
  • Course Support – file, web, and wiki server for publishing materials to students for use in class
  • GroupX – replicates a “ccTLD” network for student use, providing nameserver, backend database, monitoring, and business process functionality
  • “ISP” router – provides connectivity between GroupX subnetworks and the core servers
  • “ISP” DNS – an open resolver, used by the external users, to query the root and “ccTLD” nameservers
  • External users – allows students to query (graphically and via command line) the root and the ccTLD nameservers from the perspective of an end-user
  • DNS Root – replicates the root DNS zone functionality
  • Traffic Generator – provides large-scale traffic generation capability for DDoS attack and background noise
  • Attack Platform – platform for launching attacks against the root, ISP, “ccTLD” and external users

Africa Top Level Domain "AFTLD" Organization - Copyrights 2008