Avoiding traceroute anomalies with Paris Traceroute - PowerPoint PPT Presentation

1 / 21
About This Presentation
Title:

Avoiding traceroute anomalies with Paris Traceroute

Description:

Avoiding traceroute anomalies with Paris Traceroute. Brice Augustin (Universit Pierre et Marie Curie-LIP6/CNRS) Xavier Cuvellier, Timur Friedman, Renata Teixeira ... – PowerPoint PPT presentation

Number of Views:129
Avg rating:3.0/5.0
Slides: 22
Provided by: Bri7163
Category:

less

Transcript and Presenter's Notes

Title: Avoiding traceroute anomalies with Paris Traceroute


1
Avoiding traceroute anomalies with Paris
Traceroute
  • Brice Augustin
  • (Université Pierre et Marie Curie-LIP6/CNRS)
  • Xavier Cuvellier, Timur Friedman, Renata Teixeira
  • (Université Pierre et Marie Curie-LIP6/CNRS)
  • Fabien Viger, Benjamin Orgogozo, Matthieu Latapy
  • (Université Denis Diderot-LIAFA/CNRS)
  • Clémence Magnien
  • (Ecole Polytechnique-CREA/CNRS)

2
Contributions
  • Identified traceroute deficiencies on load
    balanced paths
  • Measured paths are inaccurate and incomplete
  • False diamonds, false loops and false cycles
  • Built a new traceroute Paris traceroute

3
Traceroute under load balancing
Actual topology
A
C
Dst
E
Src
L
TTL 2
B
D
TTL 3
Inferred topology
A
C
False link
Dst
E
Src
L
D
B
Missing nodes and links
4
Anomalies false diamonds
A
C
Actual topology
Dst
E
Src
L
B
D
Inferred topology
A
C
Dst
E
Src
L
D
B
5
Anomalies false loops and cycles
TTL 3
A
Actual topology
Src
Dst
L
D
B
C
TTL 4
TTL 2
Inferred topology
Src
Dst
L
D
B
6
Anomalies happen even under per-flow load
balancing
Port 2
Flow 1
A
C
Port 1
Dst
E
Src
L
TTL 2
Port 3
B
D
TTL 1
TTL 3
  • Traceroute uses the destination port as
    identifier
  • Per-flow load balancers use the destination port
    as part of the flow identifier

7
Paris traceroute
  • Solves the problem with per-flow load balancing
  • Probes to a destination belong to same flow
  • How to identify probes?
  • Use the UDP checksum
  • Does not address per-packet load balancing

Checksum 3
Checksum 2
Port 1
Port 1
A
C
Checksum 1
Port 1
Dst
E
Src
L
TTL 2
TTL 3
B
D
TTL 1
8
Measurement infrastructure
5000 reachable destinations
  • Measurements
  • 1 round takes 100 minutes
  • 2 months
  • 1465 rounds

Paris traceroute
Classic traceroute
Classic traceroute
Paris traceroute
Paris

Paris traceroute
INTERNET
Source
9
Unusual observations
Diamonds
Loops
Cycles
A
A
A
C
B
B
B
D
C
C
  • What portion of these are false, i.e. anomalies?

10
Measurement artifacts are common
From our LIP6 vantage point
  • Diamonds appear in 30 of the destinations
  • Paris traceroute removes 10,662 from 19,159 (56)
  • Loops appear in 4.5 of the measured routes
  • Paris traceroute removes 5,047 from 5,795 (87)
  • Cycles appear in 0.25 of the measured routes
  • Paris traceroute removes 3,886 from 5,674 (68)
  • Other causes
  • Routing changes
  • NAT boxes
  • Buggy routers
  • Per-packet load balancing

11
Conclusion
  • Classic traceroute leads to anomalies
  • False diamonds, false loops and false cycles
  • Per-flow load balancers cause most of the
    anomalies
  • Paris traceroute reports more precise paths

12
More information
www.paris-traceroute.net
13
Future Directions
  • Exhaustive algorithm
  • Find all paths
  • Fine characterization of load balancers
  • Impact on inferred graphs (stats, dynamics)
  • Broader experiments
  • More sources and destinations
  • Path diversity
  • Optimize Internet connections by selecting the
    appropriate flow identifier

14
Anomalies false loops and cycles
TTL 3
A
Dst
D
Src
L
B
C
E
TTL 5
TTL 4
TTL 2
Dst
D
Src
L
B
E
15
AnomaliesLoops caused by buggy routers
-bash traceroute Dst traceroute to Dst 1 B
0.289 ms 2 B 0.278 ms 3 Dst 0.578 ms
Dst
Src
A
B
X
Forwards the probe with TTL equal to 0
Rejects the probe with a TTL of 0 and sends it
back to the source
TTL 1
TTL 2
TTL 1
Rejects the probe with a TTL of 0 and sends it
back to the source
Forwards the probe with TTL equal to 0
-bash traceroute-paris Dst traceroute to Dst 1
B 0.289 ms !T0 2 B 0.278 ms 3 Dst
0.578 ms
Src
Dst
B
16
AnomaliesLoops caused by NAT boxes
Response TTL 254 IP Identifier 12375
Response TTL 252 IP Identifier 9356

Dst (NAT)
Src
B
C
A
Dst
B
TTL 2
TTL 3
TTL 3
Response TTL 253 IP Identifier 5286
2
Dst
Src
A
See Bellovin 2002
17
An intriguing traceroute output
A
-bash -bash traceroute F traceroute to F, 64
hops max, ... 1 A 0.353 ms 0.358 ms 0.222
ms 2 B 0.848 ms C 0.264 ms B 0.985 ms 3 D
0.225 ms E 0.718 ms D 0.778 ms 4 F 0.590 ms
0.609 ms 0.750 ms -bash -bash -bash
C
B
?
E
D
F
18
An intriguing traceroute output
-bash -bash traceroute F traceroute to F, 64
hops max, ... 1 A 0.353 ms 0.358 ms 0.222
ms 2 B 0.848 ms C 0.264 ms B 0.985 ms 3 D
0.225 ms E 0.718 ms D 0.778 ms 4 F 0.590 ms
0.609 ms 0.750 ms -bash -bash -bash
traceroute F traceroute to F, 64 hops max, ...
1 A 0.253 ms 0.354 ms 0.325 ms 2 C 0.342
ms 0.364 ms B 0.825 ms 3 E 0.216 ms D 0.614
ms 0.820 ms 4 F 0.612 ms 0.503 ms 0.728
ms -bash
A
C
B
?
E
D
F
19
Anomalies diamonds
A
C
Dst
E
Src
L
B
D
A
C
Dst
E
Src
L
D
B
20
What we expect with per-flow load balancing
Flow 1
A
C
Dst
E
Src
L
TTL 2
B
D
TTL 3
A
Dst
E
Src
L
D
21
How traceroute works
Src
Dst
A
B
0
0
1
1
TTL 1
TTL 2
TTL 3
Src
Dst
A0
B0
Src
Dst
A1
B1
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Avoiding traceroute anomalies with Paris Traceroute" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!