Contacts

NOC (Network Operations Center)

Traffic statistics

Network management

Mgmt Section

Fault reporting

Procedure

Trouble Ticket System

go to TTS

Other networks connections

other network

Customized connectivity

your connectivity

Security

go to GARR CERT

Documents

go to Documents

FAQs

NOC Team

Meet the team

The trouble ticket system allows tracking of all interventions involving service interruptions, software/hardware updates, and maintenance of GARR equipment and lines.

Trouble tickets are issued and managed by the NOC in response to:

• Identification of an issue following an alarm generated by NOC monitoring procedures
• Identification of an issue by the NOC
• Notification from an APM (Access Port Manager) of GARR network users
• Notification from telecommunication operators

The NOC monitors the evolution of the issue and provides appropriate updates following relevant status changes. Upon completion of operations, the trouble ticket is closed, reporting details about the nature of the intervention/problem.
The responsible individuals for access to the GARR network are informed of the existence of an issue by sending an email to the APM mailing list for every opening/modification/closure of a trouble ticket.
The names of the Access Port Managers (APMs) are communicated to the NOC by the GARR Directorate.

The GARR NOC can only be directly contacted by the GARR users' Access Port Managers (APMs).

Each APM represents a single entity/institution connected to GARR and is responsible for managing the configuration of the user router through which access to GARR is established. They also interact with the NOC whenever issues arise with the connections that affect this access.

Upon request, GARR provides end-to-end connectivity services to establish direct, physical, or virtual links between two or more locations in order to extend its data centers geographically or to segregate data from specific applications and share resources transparently.

 Dedicated connectivity is a fee-based service.

Contacts

GARR NIC (Network Information Center)

statistics

Domain Name Registration for .IT

more

Domain Name Registration for .EU

more

AAMS filters

more

DNSSEC activation

more

REFERENCES AND INFORMATION

more

Organization data modification form

go to the form

Forms and Documentation

more

Statistics

more

FAQs

whois

Go to LOCAL INTERNET REGISTRY - LIR

go to LIR

Any organization authorized to access the GARR network can request domain names from the GARR NIC

From 08/02/2011, the GARR-NIC has become a Registrar. Now, it's possible to manage the registration and maintenance procedures of ".it" domains synchronously on behalf of all entities belonging to the GARR Community.
The synchronous registration of a ".it" domain allows the GARR-NIC to complete, in real-time, both the procedures for updating already registered domains and for registering new domain names, without requiring the registering entity to send any paper documentation to the Registry

REQUEST PROCEDURE

To register a new ".it" domain name, you need to::

• To download the registration form for the request and maintenance of a domain
• Submit the registration request signed by the Legal Representative (APA) of the requesting Entity .
• The registration requests for a new '.it' domain name should be sent via email to This email address is being protected from spambots. You need JavaScript enabled to view it. and cc'd to: This email address is being protected from spambots. You need JavaScript enabled to view it.
  
  Fill in by indicating:
  • In the request, you need to provide the details of the entity requesting the domain (registrant), the administrative contact for the domain (admin), and the technical contact (APM) for the domain, such as the DNS manager.
  • Within the form, there is a section dedicated to the authoritative nameservers for the domain name zone you intend to register. You must specify the primary nameserver and at least one secondary nameserver. If you do not have a secondary nameserver, you can request to use GARR's secondary DNS service.
  • The DNS must be configured in accordance with the specifications outlined in rfc1912
  • Before initiating a request for a new .it domain, it is recommended to read the service description and, in case of any doubts, contact the GARR NIC

ADDRESSES WITH ACCENTS IN THE .IT DOMAIN

Starting from July 11, 2012, it will be possible to register domain names in the .it level even using words with accents. For example, we could use web addresses that contain words like university, health, or city. Those that are technically referred to as Internationalized Domain Names (IDNs) will be accepted, meaning accented words and non-Latin names, including characters commonly used in French such as ç or in German such as ß.

We would like to inform you that there is no initial period allowing owners of names, trademarks, and logos to benefit from any sort of pre-emption right. Therefore, the assignment will be made on a first-come, first-served basis.

For users who are part of the GARR network, the rules for requesting domain name assignments remain unchanged. The request, signed by the Legal Representative of their organization (APA), must be sent as usual to the GARR NIC service.

Any organization authorized to access the GARR network can request domain names from the GARR NIC

Before initiating a request for a new .eu domain, it is necessary to read the service description, and, in case of doubts, contact the GARR NIC

REQUEST PROCEDURE

To register a new ".eu" domain name, you need to:

• Read the documentation available in the Forms Section
• To download the registration form for the Request and Maintenance of a domain.
• The completed form with the registration request must be sent by email to This email address is being protected from spambots. You need JavaScript enabled to view it. and copied to This email address is being protected from spambots. You need JavaScript enabled to view it..
  
  Fill in by indicating:
  • Organization
  • Contact Person: First Name, Last Name
  • Phone
  • address
  • Valid Email Address. A valid email address is important, being the only means through which to contact you: it will be used as a communication tool. EURid reserves the right to revoke a domain name if not accompanied by a valid email address.
• Registrations are made on a "first come, first served" basis, meaning that the Registry processes the registration of a domain name based on the first request received. The registration of a .eu domain name lasts for one year. Unless otherwise notified in advance by EURid through GARR-NIC, the domain name will be renewed upon its expiry.
• A domain name must be unique. To check the availability of a name, use the WHOIS search tool .
• Domain names must meet certain technical requirements:
  • at least 2 characters between 'a' and 'z'
  • numbers from '0' to '9' and the hyphen '-'
  • a maximum of 63 characters
  • must not begin or end with a hyphen
  • cannot contain a hyphen '-' in the third and fourth position.

In accordance with EU Regulation 733/2002 and CE Regulation 874/2004, certain names cannot be registered, and others are reserved for use by EU institutions or the governments of member states, EEA countries, and candidate countries.

The ability to use special Latin characters, as well as characters from the Greek and Cyrillic alphabets (without mixing different alphabets) for registering domain names under the .eu extension in Latin was introduced in December 2009. In 2016, EURid introduced the .eu extension in Cyrillic (.ею), and in 2019, the .eu extension in Greek (.ευ). With the introduction of these two new extensions, a rule was implemented stating that the alphabet used for the .eu extension must match the alphabet used for the domain name (latin.latin, cyrillic.cyrillic, and greek.greek).

For more information about .eu IDN domains, please visit these links:

EURid's Timeline

Domain names (IDNs)

TERMS AND CONDITIONS FOR REGISTRATION

At the time of registering a domain name, it is necessary to consent to the terms and conditions for end-users. This includes being bound to an extrajudicial resolution of disputes if a third-party claimant with recognized rights to the domain name alleges that your registration was made for speculative or abusive purposes. GARR-NIC will submit these conditions to you at the time of registration for formal signature. Non-compliance with these conditions may result in the loss of the domain name.

UPDATE OF THE NAME SERVER

our domain name will be active only after the EURid name server is updated. The update is performed five times a day. Of course, this will be possible only if GARR-NIC has also made the necessary changes.

WHOIS

Once registered, your domain name will be immediately stored in the WHOIS database. Some of your data will be publicly available through the WHOIS lookup function, which allows interested parties to find out who owns a specific domain name or associated website. Of course, the WHOIS database will be subject to restrictions to prevent misuse and comply with data protection requirements. Anyone accessing information through WHOIS will be subject to a disclaimer, which essentially states that the information cannot be used for commercial purposes.

GARR, for its institutional purposes, is the holder of the authorization granted by the Ministry of Economic Development to operate as the manager of the public network dedicated to the Italian academic and research community.

For this reason, it is subject to the provisions of the State Customs and Monopoly Agency, which require the inhibition of domain names related to unauthorized websites offering online gambling or tobacco and inhalation liquid products
The inhibition provisions are indeed an obligation for the entities holding the authorization granted by the Ministry of Economic Development to operate as managers of a public network.

The national list of companies authorized to provide electronic communication services to the public is available on the website of the Ministry of Economic Development.

WEBSITES SUBJECT TO INHIBITION

The list of websites subject to inhibition is available on the website of the Customs and Monopolies Agency, in the Monopolies section.

Customs and Monopolies Agency website

To enable DNSSEC on .it and .eu domain names already registered with GARR, you need to request it from GARR via email, writing to This email address is being protected from spambots. You need JavaScript enabled to view it..

To create the "chain-of-trust" along the hierarchical structure of DNS, depending on whether it is a .it or .eu domain, it will be necessary to update the domain registration with a DS (Delegation Signer) record. To obtain the DS record to associate with a domain name already registered with GARR, two different methods are available:

• For .it domains, whoever manages the master nameserver of the zone to be signed must generate the DS record and transmit it via email to This email address is being protected from spambots. You need JavaScript enabled to view it.. GARR will take care of updating the domain registration by providing the DS record to the .it ccTLD Registry;
• For .eu domains, whoever manages the master nameserver of the zone to be signed must transmit via email to GARR the public key associated with the signed zone. GARR will take care of updating the domain registration by providing the public key to EURid, which will in turn generate the DS record.

For all domain names registered with GARR, even in cases where a domain name has DNS service managed by third parties, the transmission of the DS record or public key to the .it and .eu ccTLD Registries respectively is still GARR's responsibility. Therefore, even in these cases, the User who wants to enable DNSSEC on their domains must communicate the aforementioned information to GARR.

To activate DNSSEC on a .eu domain, you will need to communicate via email to This email address is being protected from spambots. You need JavaScript enabled to view it. the type of public key (ZSK or KSK) you want to use, the algorithm used to generate the ZSK and KSK keys, and the public key that GARR must communicate to EURid for DS record generation.

The algorithms supported by EURid for key generation are the following:

• 3-DSA/SHA-1
• 5-RSA/SHA-1
• 6-DSA-NSEC3-SHA1
• 7-RSASHA1-NSEC3-SHA1
• 8-RSA/SHA-256
• 10-RSA/SHA-512
• 13-ECDSAP256SHA256
• 14-ECDSAP384SHA384
• 15-ED25519
• 16-ED448

Regarding domains under the .it ccTLD, the User who wants to enable DNSSEC on their zones must communicate to GARR the following four fields, which compose the DS record associated with the domain name that has been signed:

• keytag: this value is automatically calculated when the DS record is generated and strictly depends on the information related to the public key;
• algorithm: the algorithms supported by the .it Registry are the following:
  • 3 (DSA/SHA-1)
  • 5 (RSA/SHA-1)
  • 6 (DSA-NSEC3-SHA1)
  • 7 (RSASHA1-NSEC3-SHA1)
  • 8 (RSA/SHA-256)
  • 10 (RSA/SHA-512)
  • 12 (ECC-GOST)
  • 13 (ECDSAP256SHA256)
  • 14 (ECDSAP384SHA384)
• digest type: the values supported by the .it Registry are the following:
• 1 (SHA-1)
• 2 (SHA-256)
• 3 (GOST R 34.11-94)
• 4 (SHA-384)
• digest: is the hash generated from the public key according to the algorithm and digest type values.

• Web Link IANA
  The Internet Assigned Numbers Authority (IANA) is responsible for the global coordination of the DNS Root, IP addressing, and other Internet protocol resources
• Web Link ICANN
  To reach another person on the Internet you have to type an address into your computer - a name or a number. That address has to be unique so computers know where to find each other. ICANN coordinates these unique identifiers across the world. Without that coordination we wouldn't have one global Internet.
• Web Link CENTR
  CENTR is an association of Internet Country Code Top Level Domain Registries such as .uk in the United Kingdom and .es in Spain. Full Membership is open to organisations, corporate bodies or individuals that operate a country code top level domain registry.
• Web Link Registro.it
  The Registry is the registry of .it Internet domains, the Internet plate of Italy. In December 1987, IANA (Internet Assigned Numbers Authority) assigned the management of .it to the National Research Council (Cnr) arrow in virtue of the technical and scientific expertise gained by its researchers, among the first in Europe to adopt the IP protocol. Thus, the .it Registry was born, which today is based at the Institute of Informatics and Telematics of the Cnr in Pisa.
• Web Link Archivio RFC
  Funded by the Internet Society to edit and publish RFCs online. The RFC Editor maintains the master repository of RFCs as well as RFC meta-data, which can be searched online. The search results include the meta-data, links to the RFC text itself, and links to any errata.
• Web Link GARR LIR
  The GARR-LIR (Local Internet Registry) is the service responsible for managing the allocation of IPv4 and IPv6 addresses for entities within the GARR community.

source: GARR annual report 2024 

Support and Contacts

GARR CS (Certification Service)

statistics

Types of Certificates Issued

more

Certificate Request

more

Documents

go to documents

GARR participates in the Trusted Certificate Service (TCS)M promoted by Géant for the benefit of European research networks.

Through this service, GARR provides its community with digital x.509 certificates (also available in e-Science version, valid for authentication on GRID resources) issued by one of the major commercial Certification Authorities: HARICA, automatically recognized by nearly all existing web browsers.

source: GARR annual report 2024 

Contacts

IDP in the Cloud (Identity as a Service)

idp in the cloud Portal

Who is IDP in the Cloud designed for?

more

A SECURE and easy-to-use service

more

How to apply for the service?

more

IDP in the Cloud portal

go to the portal

FAQs

IDEM service website

go to the website

IdP in the Cloud is the Identity as a Service (IDaaS) solution for organizations within the GARR community, designed to comply with the IDEM Federation and eduGAIN Interfederation standards. This service provides secure access to thousands of federated web resources.

By subscribing to the service, institutions can significantly reduce the costs associated with federated access, particularly the integration of their digital identity management systems with IDEM and eduGAIN.

The service is tailored for organizations with limited resources, small IT staff, or smaller, partitioned communities (such as IRCCS, Scientific Institutes for Research, Hospitalization, and Healthcare). Currently, it serves 41 institutions, supporting around 3,500 users and handling 8,000 authentications annually.
While these may not seem like large numbers in absolute terms, IdP in the Cloud is vital for enabling these institutions to access a wide range of GARR services (Filesender, GARR Cloud, GARR Meet, SCARR, GINS), research services, bibliographic resource reservation systems (such as Nilde), scientific journals, and more.

SIMPLE
Immediate activation of the IdP even without specialized skills in Identity & Access Management technologies.

FAST
Activation and deactivation of users, on-premise and cloud applications, and access from any device, including mobile.

SECURE
Ensuring the integrity of access for each user, utilizing security standards (SAML), and complying with IDEM and eduGAIN requirements.

UNIFIES ACCESS
Provides access to hundreds of selected and approved applications by the organization.

SECURES EVERY DEVICE
Ensures secure access from the office, laboratory, home, and on the go.

APPLIES ACCESS POLICIES
Defines roles, privileges, assurance levels, and strengthened authentication contexts.

SIMPLIFIES REPORTING
Provides easy statistics on who accessed what.

To activate the IdP in the Cloud service, you can contact the IDEM service at idem-help@garr.it.

Your IdP in the Cloud account allows you to access all federated resources registered within the IDEM Federation and all resources in the eduGAIN inter-federation.

Note: Access for end users may be subject to agreements or contracts between your institution and the resource provider. To find out if an agreement has been established for accessing a specific resource, please contact your institution's Identity Provider administrator. Refer to the IDEM Identity Services page for a list of contacts.

Contacts

eduVPN

what is a VPN?

more

eduVPN for researchers

more

Download the eduVPN client app

download eduVPN

An international community project

more

eduVPN for institutions

more

documentation

go to docs

A VPN, or Virtual Private Network, is a tool that establishes a secure connection between a user’s device—such as a computer, tablet, or smartphone—and a remote server over the internet. By using a VPN, all transmitted data is encrypted, making it unreadable to anyone attempting to intercept it. This is especially useful when browsing on public networks (like Wi-Fi in airports, malls, or cafes), where data is more exposed. A VPN also hides the user’s IP address, adding an extra layer of privacy and security. This process safeguards browsing activity, ensuring that data remains private and protected from hackers or anyone attempting to track online behavior.

eduVPN Secure Internet is a national service managed and provided directly by GARR. It is a service dedicated to students, teachers, and researchers who, through the IDEM credentials provided by their organization, can easily access reliable networks (global research networks) avoiding connecting to public Wi-Fi hotspots.

A VPN is especially useful for the education and research community and offers several advantages.

Protection on public and unsecured networks: When studying or conducting research off-campus, many people rely on public Wi-Fi networks in places like libraries, cafes, or airports, which are often vulnerable to cyber attacks. A VPN helps protect personal and research data while browsing, ensuring that sensitive information and login credentials are encrypted and protected from potential interception.

Unrestricted access to international resources: Certain research tools and educational content may only be accessible from specific regions. A VPN can help bypass these geographic restrictions, allowing students and researchers to access international academic resources and relevant information, enhancing the effectiveness and quality of their work.

Secure collaboration and data transfer: Conducting research and collaborating often requires sharing files or discussing data and findings. A VPN ensures these communications and data transfers are secure, providing added peace of mind for those handling sensitive projects requiring discretion and confidentiality.

International mobility: For researchers in particular, a VPN allows access to the same university resources while traveling, enabling them to work securely and continuously even off-campus and during international mobility periods

download eduVPN

With eduVPN, organizations connected to the GARR network have the opportunity to provide their employees, students, and researchers with access to a private corporate network for accessing resources located within the local network.

To use the service in "Institute Access" mode and ensure access to the company VPN, the organization must take care of the configuration procedures on its own following the instructions on the website https://www.eduvpn.org/how-to-deploy-eduvpn

eduVPN was established in 2015 as a project of the Dutch research network SURF, which continues to play a leading role in the development of the service.

Within the international community, the service has expanded widely to over twenty countries.