compiling path queries in software defined networks
play

Compiling Path Queries in Software-Defined Networks Srinivas - PowerPoint PPT Presentation

May 30, 2023 •17 likes •297 views

Compiling Path Queries in Software-Defined Networks Srinivas Narayana Jennifer Rexford and David Walker Princeton University Wheres the packet loss? Faulty network device(s) along the way. But where? A B 100 pkts 25 pkts L 2

  1. Compiling Path Queries in Software-Defined Networks Srinivas Narayana Jennifer Rexford and David Walker Princeton University

  2. Where’s the packet loss? Faulty network device(s) along the way. But where? A B 100 pkts 25 pkts L 2

  3. Where’s the packet loss? Solution idea: Check how far packets get from A to B before being dropped somewhere. A B 100 pkts 25 pkts L Fine-grained packet counters + Forwarding Complex policies 3

  4. Where’s the packet loss? Instead: nice to get A à B packet counts each step along paths where A à B traffic flows 25 25 A B 50 25 100 25 0 50 50 100 pkts 25 pkts L 4

  5. Wouldn’t it be nice to ask questions about packet paths in a network? Problem: we only observe a given packet independently at different switches. 5

  6. We’ve designed a path query system that analyzes packet paths directly in the data plane. 6

  7. Problem statement 1. Operator/application specifies network path queries 2. Translate into efficient and direct switch measurements (i.e., data plane rules) 7

  8. Problem statement Independent specifications Query Query Forwarding Compiled into data plane rules 8

  9. Solution architecture 1. Path query language Regular expressions of Query expressions Statistics packet location & headers 2. Query compiler and runtime SDN controller Payloads 9 Statistics

  10. Path Query Language 10

  11. Let’s write some queries! (1/3) • Count packets reaching switch S1 , then S2 with an internal source IP address (10.0/16) switch=S1 A hop on the wire ^ switch=S2, srcip=10.0/16 11

  12. Let’s write some queries! (2/3) • Capture packets evading a firewall in the network ingress egress ingress egress ingress egress ingress() ^ 0 or more (switch != FW)* repetitions ^ egress() 12

  13. Let’s write some queries! (3/3) • Switch-level traffic matrix: E1 E1 E2 E2 ... ... I1 I1 250 100 ... I2 I2 120 95 ... ... ... ... ... 13

  14. Let’s write some queries! (3/3) • Switch-level traffic matrix: Flow Flow #pkts pkts ingress() * 1000 ^ Count all packets, going (true)* from any ingress to any egress. ^ egress() 14

  15. Let’s write some queries! (3/3) • Switch-level traffic matrix: Flow Flow #pkts pkts groupby(ingress(), sw=I1, sw=E1 250 [switch]) sw=I1, sw=E2 100 ^ ... ... Group counts by (true)* packet’s ingress and egress switch! ^ è Traffic matrix! groupby(egress(), [switch]) 15

  16. Let’s write some queries! • More example queries in the paper 16

  17. The Runtime System 17

  18. How to analyze packet paths in the data plane? 18

  19. Packet paths on data plane • Main idea: Record path information in packets [{sw: S1 [{sw: S1, ...}, [{sw: S1, ...}, port: 1 {sw: S2 {sw: S2, ...}, srcmac: ... port: 3 {sw: S3 srcip: ... srcmac: ... port: 2 ...}] ...}] ...}] • As such, too much state! 19

  20. Reducing path state on packets • Observation 1: Queries already tell us what’s needed! • Only record path state needed by queries • Observation 2: Queries are regular expressions • Regular expressions è Finite automaton (DFA) • Distinguish only paths corresponding to DFA states 20

  21. Reducing path state on packets • Observation 1: Queries already tell us what’s needed! • Only record path state needed by queries Record only DFA state on packets (1-2 bytes) • Observation 2: Queries are regular expressions • Regular expressions è Finite automaton (DFA) • Distinguish only paths corresponding to DFA states Use existing “tag” fields (e.g., VLAN) 21

  22. Example: Query Compilation (1/3) Query: (switch=S1, srcip=10.0.0.1) ^ (switch=S2, dstip=10.0.0.3) S1 S2 switch=S1, switch=S2, srcip=10.0.0.1 dstip=10.0.0.3 Q0 Q1 Q2 22

  23. Example: Query Compilation (2/3) switch=S1, switch=S2, srcip=10.0.0.1 dstip=10.0.0.3 Q0 Q1 Q2 Switch Switch Match Match Action Action S1 state=Q0, srcip=10.0.0.1 state=Q1 DFA transition S2 state=Q1, dstip=10.0.0.3 state=Q2 S2 state=Q1, dstip=10.0.0.3 count DFA accept 23

  24. Example: Query Compilation (3/3) DFA- Forwarding DFA- Transitioning Accepting All acting on the same data plane packets! Frenetic composition operators (details in paper) 24

  25. Implementation • Prototype on the Pyretic (NSDI’13) SDN controller • Implementation publicly available online • http://frenetic-lang.org/pyretic/ • Evaluation: • Payload collection bandwidth • Rule space • See paper. 25

  26. Summary DFA state can be used to track packet paths directly on the data plane. Measurement and forwarding can be specified independently. 26

  27. Happy to answer queries ;) narayana@cs.princeton.edu 27

  28. 28

Recommend

Software Defined Multi-Path TCP Solution for Mobile Wireless Tactical Networks Qi Zhao , Pengyuan

Software Defined Multi-Path TCP Solution for Mobile Wireless Tactical Networks Qi Zhao , Pengyuan

Software Defined Multi-Path TCP Solution for Mobile Wireless Tactical Networks Qi Zhao , Pengyuan Du, Mario Gerla, Adam Brown, Jae Kim Department of Computer Science, UCLA Boeing Research & Technology, Seattle 10/31/2018 Outline

420 views • 26 slides
A Software Defined Multi-Path Traffic Offloading System for Heterogeneous LTE-WiFi Networks

A Software Defined Multi-Path Traffic Offloading System for Heterogeneous LTE-WiFi Networks

UCLA ENGINEERING Computer Science A Software Defined Multi-Path Traffic Offloading System for Heterogeneous LTE-WiFi Networks Pengyuan Du * , Qi Zhao * and Mario Gerla Department of Computer Science, UCLA IEEE WoWMoM 2019 6/11/2019 *

405 views • 28 slides
MED: The Monitor-Emulator-Debugger for Software-Defined Networks Quanquan Zhi and Wei Xu

MED: The Monitor-Emulator-Debugger for Software-Defined Networks Quanquan Zhi and Wei Xu

MED: The Monitor-Emulator-Debugger for Software-Defined Networks Quanquan Zhi and Wei Xu Institute for Interdisciplinary Information Sciences Tsinghua University Software-Defined Networks (SDN): promises and challenges SDN will simplify

414 views • 25 slides
Networks in the Software Software Age Defined Clouds and Internet Ravinder Shergill of

Networks in the Software Software Age Defined Clouds and Internet Ravinder Shergill of

Networks in the Software Software Age Defined Clouds and Internet Ravinder Shergill of Things Principal Architect Technology Strategy, TELUS June 06, 2016 TELUS RESTRICTED Storyboard Generational changes via Software Defined

601 views • 18 slides
Effective Topology Tampering Attacks and Defenses in Software- Defined Networks RICHARD

Effective Topology Tampering Attacks and Defenses in Software- Defined Networks RICHARD

Effective Topology Tampering Attacks and Defenses in Software- Defined Networks RICHARD SKOWYRA, LEI XU, GUOFEI GU, VEER DEDHIA, THOMAS HOBSON, HAMED OHKRAVI, JAMES LANDRY Software Defined Networks Allows controller to modify network

766 views • 29 slides
ENERGY EFFICIENT SOFTWARE DEFINED NETWORKS Nicolas HUIN COATI and

ENERGY EFFICIENT SOFTWARE DEFINED NETWORKS Nicolas HUIN COATI and

ENERGY EFFICIENT SOFTWARE DEFINED NETWORKS Nicolas HUIN COATI and SigNet, I3S/Inria Supervisors: Frdric Giroire & Dino Lopez 28 th September 2017 2 9/28/17 Energy Efficient Software Defined Networks Energy

927 views • 91 slides
Layering, dynamics, optimization & control in software defined networks Nikolai Matni

Layering, dynamics, optimization & control in software defined networks Nikolai Matni

Layering, dynamics, optimization & control in software defined networks Nikolai Matni Computing and Mathematical Sciences joint work with John Doyle (Caltech) and Kevin Tang (Cornell) Distributed optimal control & software defined

591 views • 21 slides
CompSci 514: Computer Networks Lecture 11: Software Defined Networking Xiaowei Yang 1

CompSci 514: Computer Networks Lecture 11: Software Defined Networking Xiaowei Yang 1

CompSci 514: Computer Networks Lecture 11: Software Defined Networking Xiaowei Yang 1 Overview Introducing SDN A real-world application of SDN Googles B4 netwok 2 Software Defined Networking Slides adapted from Mohammad

661 views • 50 slides
Software-Defined Networks Jennifer Rexford Princeton University Traditional Networks 2 control

Software-Defined Networks Jennifer Rexford Princeton University Traditional Networks 2 control

Software-Defined Networks Jennifer Rexford Princeton University Traditional Networks 2 control plane: distributed algorithms data plane: packet processing decouple control and data planes Software Defined Networks 3 decouple control and

370 views • 20 slides
An Analysis of the Feasibility of Graph Compression Techniques for Indexing Regular Path Queries

An Analysis of the Feasibility of Graph Compression Techniques for Indexing Regular Path Queries

An Analysis of the Feasibility of Graph Compression Techniques for Indexing Regular Path Queries Frank Tetzel, Hannes Voigt, Marcus Paradies, Wolfgang Lehner May 19, 2017 1 Regular Path Queries (RPQs) Matching paths conforming to regular

755 views • 15 slides
Path Query Routing in Unstructured Peer-to-Peer Networks Nicolas Bonnel, Gildas Mnier,

Path Query Routing in Unstructured Peer-to-Peer Networks Nicolas Bonnel, Gildas Mnier,

Introduction Related work Content based routing of path queries Conclusion Path Query Routing in Unstructured Peer-to-Peer Networks Nicolas Bonnel, Gildas Mnier, Pierre-francois Marteau Laboratoire Valoria - Universit de Bretagne Sud

416 views • 22 slides
Software Defined Networks A quick overview Based primarily on the presentations of Prof.

Software Defined Networks A quick overview Based primarily on the presentations of Prof.

Software Defined Networks A quick overview Based primarily on the presentations of Prof. Scott Shenker of UC Berkeley The Future of Networking, and the Past of Protocols Please watch the YouTube video of Shenkers talk

927 views • 49 slides
Procurement of innovative software-defined optics in backbone networks in HORIZON2020 ICT LEIT

Procurement of innovative software-defined optics in backbone networks in HORIZON2020 ICT LEIT

Procurement of innovative software-defined optics in backbone networks in HORIZON2020 ICT LEIT WP2015 Bart Van Caenegem European Commission bart.van-caenegem@ec.europa.eu DG CONNECT (Communications Networks, Content and Technology)

729 views • 27 slides
Software-Defined Networks Mayutan Arumaithurai , Jiachen Chen , Edo Monticelli ,

Software-Defined Networks Mayutan Arumaithurai , Jiachen Chen , Edo Monticelli ,

Exploiting ICN for Flexible Management of Software-Defined Networks Mayutan Arumaithurai , Jiachen Chen , Edo Monticelli , Xiaoming Fu and K. K. Ramakrishnan * University of Goettingen, Germany * University of California,

669 views • 36 slides
Optimization of in collaboration with: Parke Godfrey and Jarek Gryz Regular Path Queries in

Optimization of in collaboration with: Parke Godfrey and Jarek Gryz Regular Path Queries in

Optimization of in collaboration with: Parke Godfrey and Jarek Gryz Regular Path Queries in Large Graphs Nikolay Yakovets Optimization of RPQs Scalable & e ffi cient evaluation of regular path queries Evaluation Implementation RPQs

876 views • 35 slides
Differential Forms for Target Tracking and Aggregate Queries in Distributed Networks Distributed

Differential Forms for Target Tracking and Aggregate Queries in Distributed Networks Distributed

Differential Forms for Target Tracking and Aggregate Queries in Distributed Networks Distributed Networks Rik Sarkar Jie Gao Stony Brook University 1 Target Tracking with Sensor Networks 2 Target Queries Range queries : # targets within

894 views • 40 slides
Enforcing Customizable Consistency Properties in Software-Defined Networks Wenxuan Zhou , Dong

Enforcing Customizable Consistency Properties in Software-Defined Networks Wenxuan Zhou , Dong

Enforcing Customizable Consistency Properties in Software-Defined Networks Wenxuan Zhou , Dong Jin, Jason Croft, Matthew Caesar, Brighten Godfrey 1 Network changes control applications, changes in traffic load, system upgrades,

476 views • 21 slides
Wireless Software Defined Networks Giacomo Morabito University of Catania International

Wireless Software Defined Networks Giacomo Morabito University of Catania International

Wireless Software Defined Networks Giacomo Morabito University of Catania International Conference on Information Networking 2018 January 10 th , 2018 - Chiang Mai, Thailand Acknowledgements The following are the results of the work

782 views • 53 slides
I DPID It My Way! A Covert Timing Channel in Software-Defined Networks Robert Kro sche,

I DPID It My Way! A Covert Timing Channel in Software-Defined Networks Robert Kro sche,

I DPID It My Way! A Covert Timing Channel in Software-Defined Networks Robert Kro sche, Kashyap Thimmaraju , Liron Schiff and Stefan Schmid IFIP Networking 2018 14-16 May, 2018, Zurich, Switzerland 1 Outline 1. Motivation 2. Covert

999 views • 95 slides
Validating Security and Resiliency in Software Defined Networks for Smart Grids Rakesh Kumar

Validating Security and Resiliency in Software Defined Networks for Smart Grids Rakesh Kumar

Validating Security and Resiliency in Software Defined Networks for Smart Grids Rakesh Kumar DEPARTMENT OF ELECTRICAL AND COMPUTER ENGINEERING UNIVERSITY OF ILLINOIS, URBANA-CHAMPAIGN Motivation 2 Security: Access Control In United

349 views • 23 slides
FlowGuard: Building Robust Firewalls for Software-Defined Networks Hongxin Hu , Wonkyu Han

FlowGuard: Building Robust Firewalls for Software-Defined Networks Hongxin Hu , Wonkyu Han

FlowGuard: Building Robust Firewalls for Software-Defined Networks Hongxin Hu , Wonkyu Han , Gail-Joon Ahn and Ziming Zhao HotSDN 2014 Outline Introduction Challenges for Building FW in SDN FlowGuard

303 views • 19 slides
Treating software-defined networks like disk arrays Zhiyuan Teo Cornell University Joint work

Treating software-defined networks like disk arrays Zhiyuan Teo Cornell University Joint work

Treating software-defined networks like disk arrays Zhiyuan Teo Cornell University Joint work with Noah Apthorpe, Vasily Kuksenkov, Ken Birman and Robbert van Renesse 1 Problems with todays Ethernet Slow. Focus of this paper

536 views • 52 slides
Architecture for Software-Defined Wireless Networks Julius Schulz-Zander, Nadi Sarrar, Stefan

Architecture for Software-Defined Wireless Networks Julius Schulz-Zander, Nadi Sarrar, Stefan

AeroFlux: A Near-Sighted Controller Architecture for Software-Defined Wireless Networks Julius Schulz-Zander, Nadi Sarrar, Stefan Schmid WiFi needs SDN! Network services as applications Channel Selection Coarse Grained Control

573 views • 7 slides
Hierarchical Policies for Software Defined Networks Andrew Ferguson, Arjun Guha, Chen Liang,

Hierarchical Policies for Software Defined Networks Andrew Ferguson, Arjun Guha, Chen Liang,

Hierarchical Policies for Software Defined Networks Andrew Ferguson, Arjun Guha, Chen Liang, Rodrigo Fonseca, and Shriram Krishnamurthi 1 Particpatory Networking 2 3 4 5 TCP Nice: A Mechanism for Background Transfers Arun Venkataramani

1.03k views • 90 slides

More recommend