Home Page

Project Focused on DNS, DHCP, and IP address management (IPAM) at RIT

The interface and workflows that administrators use to manage computer objects in CLAWS will change.

Project Overview

The ITS Netcomm team, eager to take ownership and drive the evolution of the DDI service, is excited to partner on this project that will integrate core network services into their team portfolio. The team recognizes this as the foundational step in the DDI service's lifecycle, paving the way for continuous product and service improvements beyond project completion. 

What are the goals of the project?

  • A reliable DDI service foundation in a future focused, scalable product solution

  • Remove DNS, DHCP, IPAM functionality from CLAWS

  • At the end of the project, transition from project to DDI service lifecycle

We understand that replacing a bespoke, incremental, internally developed system like CLAWS and it's rich feature set with commercial off the shelf (COTS) solution(s) may leave some ITS internal and external partners disappointed and will leave gaps in functionality, but COTSs provide a lot of benefits in creating reliable, sustainable foundations for the future.  

Share your concerns with the team using the form below.

Project Team Members: See our Sharepoint Project Page

Our project approach is, first and foremost, to work in ways that are aligned with our principles.  They are our guardrails.  This is not to say that they won't change, but 

  • They won't be changed from outside the core team

  • They won't change without intention and thoughtful conversation within the core team

  • They won't change frequently

Since this project is complex in nature and we anticipate learning important things we didn't know as we go along, we understand that

  • The closer the plan is today, the more accurate it will be.  We will strive to meet our next milestone, and future milestones will be adjusted according to what we've accomplished.   We will not work in phases, we work in a way that will support DDI lifecycle

  • Replacing a home grown system that provided rich functionality with COTS solution will leave gaps and disappoint people

  • We must embrace and embody continuous improvement 

  • We must strive to create plans of work achievable in regular time periods, planned at a regular cadence

  • We must welcome participants to the project conversation, with the expectation that new participants honor the principles

  • Our goal is to create a reliable, adaptable solution that lays the groundwork for future growth. We're not going to be everything to everybody.  

  • History matters, but we won't start from a place of status quo. Expect change.

  • We value the power of simplicity, even when it demands tough choices. We are willing to sacrifice some functionality to ensure our solutions are intuitive, reliable, and sustainable. Less is more, with intention.

  • We strive to provide frequent, clear, and honest communication. We'll embrace constructive dissent and the understand the value of learning from mistakes. We'll share what we can, when we can.

  • We'll focus on delivering value, not hitting dates. We adapt, learn, and iterate, prioritizing milestones as stepping stones. At the end of the project, seamless transition to DDI operational service support is key. We'll be outcome-driven, not deadline focused.

  • We strive to provide a standard suite of services equitably across internal and external stakeholders. No haves and have nots.

  • We all need to learn more in this space, no one knows it all. Everyone is expected to be a learner.

  • We'll ask why something was done for clarity of understanding, without judgment. We adhere to the Retrospective Prime Directive:

"Regardless of what we discover, we understand and truly believe that everyone did the best job they could, given what they knew at the time, their skills and abilities, the resources available, and the situation at hand."

--Norm Kerth, Project Retrospectives: A Handbook for Team Review

Design Approach

  • Foundational, reliable & sustainable first; Future growth second

  • Modular/Interchangeable components

  • Standards-based

  • Enforce permission structures within the tool

  • Leverage mature off-the-shelf and open source for middleware functions

  • Beyond “start”-like webpages, no custom-developed user interfaces

Learn basics about DDI

DDI is shorthand for the integration of DNS, DHCP, and Internet Protocol Address Management (IPAM) into a united service or solution.  DDI comprises the foundation of core network services that enables all communications over an IP-based network.

Domain Name Server (DNS) can be thought of as the phone book for the internet.  It translates human readable domain names that we easily remember, like www.rit.edu into IP addresses which allows computers, servers, and other networked devices, each with their own unique IP addresses, to exchange information.

See the following for more information on DNS:

Dynamic Host Configuration Protocol (DHCP) is the standard mechanism to dynamically assign IP addresses within a network.  When a device (smartphone, laptop, etc.) joins a network it typically asks for an IP address from a DHCP server.  The server assigns an IP address and other parameters and then the device can communicate with both the internal network and the public internet.

See the following for more information on DHCP:

Internet Protocol Address Management (IPAM) is a method for planning, tracking, and managing IP address space on a network.  IPAM software tools can give network admins a real-time inventory of both used and unassigned IP addresses, including details like their subnets, status, hostname, and associated hardware.

See the following for more information on IPAM:

Network Access Control, sometimes called "NAC", is the process of restricting unauthorized users and devices from gaining access to a corporate or private network. NAC ensures that only users who are authenticated and devices that are authorized and compliant with security policies can enter the network.

See the following for more information on NAC:

Michelle Poysa headshot
Michelle Poysa
IT Project Manager III
585-475-2835
mlpits@rit.edu
Shawn Plummer headshot
Shawn Plummer
ITS Director
585-475-5348
sapits@rit.edu
Geremy Gersh headshot
Geremy Gersh
Associate CIO and Chief Technology Officer
585-353-6126
gegits@rit.edu
Alex Polge headshot
Alex Polge
Network Engineer II
585-475-6288
appits@rit.edu
Arthur Miller headshot
Arthur Miller
ITS Network Engineering Manager
585-475-6161
admits@rit.edu
Jim Shanks headshot
Jim Shanks
Network Engineer III
585-475-5560
jesppt@rit.edu
Joshua Winterkorn headshot
Joshua Winterkorn
Network Engineer II
585-475-6589
jawits@rit.edu
Kevin Schoenfeld headshot
Kevin Schoenfeld
Network Engineer IV
585-475-7660
kjsits@rit.edu
Robert Heine headshot
Robert Heine
Network Engineer II
585-475-4909
rghits@rit.edu
Ronald Soriano Cabrera headshot
Ronald Soriano Cabrera
Network Engineer II
585-475-5579
rasits@rit.edu
Tony Lam headshot
Tony Lam
Network Engineer III
585-475-5566
axlits@rit.edu
Valerie Slujalkovsky Torchio headshot
Valerie Slujalkovsky Torchio
Network Engineer II
585-475-5844
vxsits@rit.edu

Your Questions

Thank you for asking! Here are the questions we have received, with answers when we have them

Q1: Will there be some deliberate body of work to look at DNS filtering, DNS sec? Will we have assurance that it's not spoofed?
A1 (Feb 27, 2024): Yes, we want to build a platform that we can build those things on top of, sustainably, reliably.

Q2: Is there anything about UX (User Experience) that you intend to change with this project?
A2(Feb 27, 2024): TBD.We'll consider it a win if it's intuitive enough that the process guides itself.

Q3: Will the DDI solution/platform integrate with Service Now?
A3 (September 5, 2024): Although we can't answer specifics about particular applications integrating with a future DDI platform, we do anticipate that the new DDI solution will have the capacity to integrate with other RIT systems.

Q4: Will configuration/setup of Student Affairs digital displays, including Apple TV players and Peloton bikes in the fitness center, which are connected to the network be affected by this project?
A4 (September 9, 2024): Here are some answers, please reach out if they do not answer your question

  • If you normally submit a ticket with RSC to have devices registered, your process is likely to remain the same
  • There is no need to register a device that is using wifi via eduroam

  • Will the DDI platform become utilized for possible use by the RIT Service Desk, or will it be delegated to a specific team?

  • The RIT Service Desk gets tickets for DNS changes, computer registrations, and the like. How would DDI impact this process?

  • Would CampusIT have full access to the platform? EG: Large scale projects in GCCIS needing modifications to 30+ computers, DNS, registrations, etc.

There are times when a college’s local support team moves a large number of devices and need multiple CLAWS entries deleted/added for the devices. Right now, we would add/remove these objects in CLAWS as computer items. DDI doesn’t use computer objects, so how would a large move/CLAWS adjustment work with the new DDI platform in regards to DHCP/DNS etc?

Feedback / Questions

Click here to submit a feedback form.