Routing Experiments - PowerPoint PPT Presentation

1 / 39
About This Presentation
Title:

Routing Experiments

Description:

Minimum Route Advertisement Interval. Default: 30 seconds convergence ... Advertised to non peer-group peers: 113.0.0.1 115.0.0.1 123.0.0.2. 121 ... – PowerPoint PPT presentation

Number of Views:45
Avg rating:3.0/5.0
Slides: 40
Provided by: ISI4
Learn more at: http://www.isi.edu
Category:

less

Transcript and Presenter's Notes

Title: Routing Experiments


1
Routing Experiments
Cyber DEfense Technology Experimental Research
(DETER) Network Evaluation Methods for Internet
Security Technology (EMIST)
USC Information Sciences Institute ? University
of California, Berkeley ? University of
California, Davis ? Penn State
University Purdue University ? International
Computer Science Institute ? Stanford Research
Institute (SRI) ? Network Associates ? SPARTA
Chen-Nee Chuah, Sonia Fahmy, Denys Ma, Patrick
McDaniel, Sandy Murphy, Soon-Tee Teoh, Shih-Ming
Tseng, S. Felix Wu, Fan Zhao, Ke Zhang
2
Research Objectives
  • Realistic Internet routing experiments with
    configurable parameters
  • Study, analyze, evaluate, validate
    hypothesis/principles related to Internet routing
    and its security

3
The Internetas September 26, 2005
http//bgp.potaroo.net/cidr/
  • 20464 Autonomous Systems
  • ??? BGP Routers
  • 167138 IP Address Prefixes announced

4
Simulation versus Emulation
  • Simulation ? large-scale but might abstracting
    away low level characteristics.
  • Emulation ? experimenting realistic
    implementations and observing the unexpected
  • Implementation differences
  • Analyzing/interpreting the interactions
  • May help in accomplishing better simulation tasks
    in BGP.

5
A Little Dampening Story
SSFNet
Zebra
Cisco
per prefix per peer
per prefix per peer per AS path
6
MRAI TimerMinimum Route Advertisement Interval
  • Default 30 seconds ? convergence
  • Adaptive MRAI timer (RPI, Globecom04)
  • 30 seconds ? 5 seconds ? 0 seconds

7
Interactions/Dynamics
  • Failures/faults/attacks
  • Mobility/configuration/policy changes
  • Cross-layer interactions
  • EGP versus IGP

8
Routing Experiments on DETER in 2005
  • BGP P2P
  • BGP OSPF
  • BGP intention-driven iTrace DDoS
  • BGP Network Mobility OASC
  • We have enjoyed very much many very frustrating
    and then exciting moments.

9
(No Transcript)
10
AS-117
AS-112
AS-121
AS-113
AS-101
AS-114
11
Collecting the Results in 2004
show IP BGP
1 peer (SPRINT) Full Routing Table (9MB
compressed) BGP Updates (2 hours -- 168KB)
29 MB uncompressed routing table snapshot per
router per 3 minutes
12
Collecting the Results in 2005
show IP BGP
updates -- MRT
1 peer (SPRINT) Full Routing Table (9MB
compressed) BGP Updates (2 hours -- 168KB)
selected prefixes per router per 1 second
13
AS-117
AS-112
AS-121
AS-113
AS-101
AS-114
14
AS-117
AS-121
AS-112
AS-113
AS-114
AS-101
15
AS-117
122.0.0.0/8
AS-112
AS-121
AS-113
AS-114
AS-101
16
AS-117
122.0.0.0/8
mobility
AS-112
AS-121
AS-113
AS-114
AS-101
17
AS-117
122.0.0.0/8
mobility
AS-112
AS-121
AS-113
AS-114
AS-101
18
122.0.0.0/8
19
AS-121 ? AS-117
  • Very comment in Internet operations
  • One Transition of 122.0.0.0/8
  • AS-121 ? withdraw Tw
  • AS-117 ? announce Ta
  • Tw ? Ta prefix unreachable
  • Ta ? Tw multi-homing, OASC
  • convergence and instability
  • multiple instances in a short period of time

20
Routing dynamics occurred!
21
AS-117 announced
AS-121 withdrawn
OASC
22
(No Transcript)
23
AS-117 announced
AS-121 withdrawn
OASC
24
AS 101 Multi homing
Wed Sep 28 022600 PDT
2005
 Paths (3 available, best 3, table
Default-IP-Routing-Table)  Advertised to non
peer-group peers  101.0.0.1 101.0.0.2 112.0.0.2
114.0.0.2  114 113 121    114.0.0.2 from
114.0.0.2 (114.0.0.2)      Origin IGP, localpref
100, valid, external      Last update Wed Sep
28 021328 2005  112 117    112.0.0.2 from
112.0.0.2 (112.0.0.2)      Origin IGP, localpref
100, valid, external      Dampinfo penalty 543,
flapped 1 times in 001305      Last update
Wed Sep 28 022539 2005  113 121    113.0.0.2
from 113.0.0.2 (113.0.0.2)      Origin IGP,
localpref 100, valid, external, best      Last
update Wed Sep 28 021311 2005
25
AS 101 Multi homing
Wed Sep 28 022600 PDT
2005
 Paths (3 available, best 3, table
Default-IP-Routing-Table)  Advertised to non
peer-group peers  101.0.0.1 101.0.0.2 112.0.0.2
114.0.0.2  114 113 121    114.0.0.2 from
114.0.0.2 (114.0.0.2)      Origin IGP, localpref
100, valid, external      Last update Wed Sep
28 021328 2005  112 117    112.0.0.2 from
112.0.0.2 (112.0.0.2)      Origin IGP, localpref
100, valid, external      Dampinfo penalty 543,
flapped 1 times in 001305      Last update
Wed Sep 28 022539 2005  113 121 ?   
113.0.0.2 from 113.0.0.2 (113.0.0.2)      Origin
IGP, localpref 100, valid, external, best     
Last update Wed Sep 28 021311 2005
26
AS 113 only one available route

Wed Sep 28 022600 PDT 2005
 Paths (3
available, best 1, table Default-IP-Routing-Table
)  Advertised to non peer-group peers 
113.0.0.1 115.0.0.1 123.0.0.2  121    121.0.0.2
from 121.0.0.2 (121.0.0.2)      Origin IGP,
metric 0, localpref 100, valid, external,
best      Last update Wed Sep 28 021249
2005  114 101 112 117, (history entry)   
115.0.0.1 from 115.0.0.1 (114.0.0.2)      Origin
IGP, localpref 100, external      Dampinfo
penalty 545, flapped 1 times in 001302     
Last update Wed Sep 28 020416 2005  101 112
117, (history entry)    113.0.0.1 from 113.0.0.1
(101.0.0.3)      Origin IGP, localpref 100,
external      Dampinfo penalty 545, flapped 1
times in 001302      Last update Wed Sep 28
020413 2005
27
AS-121 withdrawn
AS-117 announced
AS-121 withdrawn
AS-117 withdrawn
OASC
28
AS-117 announced
AS-117 withdrawn
29
AS 112 got the best route from AS101
Wed Sep
28 022600 PDT 2005
 Paths (2 available,
best 1, table Default-IP-Routing-Table) 
Advertised to non peer-group peers  112.0.0.1
119.0.0.2  117    117.0.0.2 from 117.0.0.2
(117.0.0.2)      Origin IGP, metric 0, localpref
100, valid, external, best      Last update Wed
Sep 28 022525 2005  101 113 121    112.0.0.1
from 112.0.0.1 (101.0.0.3)      Origin IGP,
localpref 100, valid, external      Last update
Wed Sep 28 021339 2005

30
Intensive Mobility
31
Intensive Mobility
32
BGP Events Causality and Correlation
  • Causality Relationship among each individual BGP
    event (across different routers/ASes)
  • Critical to simply understand/correlate BGP
    behavior
  • Discovery new types of relationships (or
    filter/correct false causality in experiments)
  • Important for generating/replaying realistic BGP
    events
  • Using emulation to verify the causality
  • Maybe also with commercial routers (e.g.,
    Juniper)

33
Intention-Driven iTrace on BGP
using BGP as a global signaling mechanism
34
Intention-Driven iTrace on BGP
35
BGP Routing Update Visualization
36
Per-RT-Snapshot OASC
37
Per-Update OASC
38
Experience
  • Designing/running experiments on DETER is a
    relatively productive process.
  • 12 weeks
  • Explaining the events has been really fun for
    us
  • Lots of anomalies due to different root causes
  • DETER offers a nice platform to replay for the
    purpose of investigation
  • A challenging issue ? link with Route View and
    other PREDICT data

39
Acknowledgements
  • Thank the DETER operational team, even on
    Saturday when we were crying!!
  • Thank the EMIST Routing colleagues at
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2025 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Routing Experiments" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!