packet classification
play

Packet Classification Omid Mashayekhi Vaibhav Chidrewar What is - PowerPoint PPT Presentation

Feb 27, 2024 •415 likes •574 views

Packet Classification Omid Mashayekhi Vaibhav Chidrewar What is Packet Classification? Definition: The function of identifying and categorizing packets of data moving across the network Rule Source IP Dest IP Action R1 152.163.190.69/

  1. Packet Classification Omid Mashayekhi Vaibhav Chidrewar

  2. What is Packet Classification? Definition: The function of identifying and categorizing packets of data moving across the network Rule Source IP Dest IP Action R1 152.163.190.69/ 152.163.80.11/ Deny 255.255.255.255 255.255.255.255 R2 152.168.3.0/ 152.163.200.157/ Permit 255.255.255.0 255.255.255.255

  3. Applications of Packet Classification Switches , Routers, Firewalls, Intrusion Detection Systems (IDS) ● Packet Filtering ● Policy Routing ● Accounting and Billing ● Traffic Rate Limiting

  4. Requirements ● Fast Search Speed ● Low Storage ● Scalability ● Faster updates ● Support any number of fields (?????)

  5. Crowded Space

  6. Linear Search Link list of rules stored in decreasing order of priority ● Pros ○ Simple ○ Memory efficient O(N) ○ Fast Update ● Cons ○ Prohibitively slow speed for large N - O(N) ■ Can use caching , parallel search with sublists

  7. Grid of Tries

  8. Grid of Tries ● Pros: ○ Fast Search O(W) ● Cons: ○ Does not scale with > 2 fields ○ Incremental updates are difficult ■ rebuilding in O(NW) is suggested ○ Storage Complexity - O(NW)

  9. HiCuts

  10. HiCuts

  11. HiCuts ● Pros ○ fast ○ uses characteristics of real world classifiers ● Cons ○ precomputation required for building classifier ○ increment update can take time ○ Heuristics based

  12. TCAM

  13. TCAM

  14. TCAM ● Pros ○ Very Fast ○ Supports wildcards ● Cons ○ High Cost ○ Extra circuitry required for handling wildcards ○ High power requirement

  15. Why yet another packet classification method? ● Rules with wildcard need expansion ● Scalability with number of fields ● Incremental updates are complex ○ Precomputation required ○ Build the classifier from scrach

Recommend

Hashing Round-down Prefixes for Rapid Packet Classification Fong Pong and Nian-Feng Tzeng*

Hashing Round-down Prefixes for Rapid Packet Classification Fong Pong and Nian-Feng Tzeng*

Hashing Round-down Prefixes for Rapid Packet Classification Fong Pong and Nian-Feng Tzeng* *Center for Advanced Computer Studies University of Louisiana, Lafayette, USA 1 Outline Packet Classification Review of Existing Decision Tree

803 views • 31 slides
Algorithms for Advanced Packet Classification with Ternary CAMs Karthik Lakshminarayanan UC

Algorithms for Advanced Packet Classification with Ternary CAMs Karthik Lakshminarayanan UC

Algorithms for Advanced Packet Classification with Ternary CAMs Karthik Lakshminarayanan UC Berkeley Joint work with Anand Rangarajan and Srinivasan Venkatachary (Cypress Semiconductor) Packet Processing Environment Rule: acl-id src-addr

603 views • 36 slides
Multi-dimensional Packet Classification Yadi Ma, Suman Banerjee University of Wisconsin-Madison

Multi-dimensional Packet Classification Yadi Ma, Suman Banerjee University of Wisconsin-Madison

A Smart Pre-Classifier to Reduce Power Consumption of TCAMs for Multi-dimensional Packet Classification Yadi Ma, Suman Banerjee University of Wisconsin-Madison Packet classification S1 L1 D S2 R Internet L2 Subnet A Subnet B

921 views • 65 slides
P leaving only 32 ns to classify a packet. This daunting task ACKET classification enables network

P leaving only 32 ns to classify a packet. This daunting task ACKET classification enables network

IEEE TRANSACTIONS ON COMPUTERS, VOL. 60, NO. 5, MAY 2011 723 Toward Advocacy-Free Evaluation of Packet Classification Algorithms Haoyu Song, Member , IEEE , and Jonathan S. Turner, Fellow , IEEE Abstract Understanding the real performance

318 views • 11 slides
Classification & Filtering Traffic Management October 2016 Chelsio T5/T6 Packet

Classification & Filtering Traffic Management October 2016 Chelsio T5/T6 Packet

Classification & Filtering Traffic Management October 2016 Chelsio T5/T6 Packet Classification and Filtering Features 1. Supported Match Fields with Optional Masks Up to 500K exact-match and 2K wildcard rules, 20M/sec lookup rate, 200K

92 views • 6 slides
via Improved Space zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Packet Classification

via Improved Space zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Packet Classification

via Improved Space zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Packet Classification Email: zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA { zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Decomposition Techniques Filippo Geraci,

480 views • 9 slides
SAX-PAC (Scalable And eXpressive PAcket Classification) Kirill Kogan Purdue University and

SAX-PAC (Scalable And eXpressive PAcket Classification) Kirill Kogan Purdue University and

SAX-PAC (Scalable And eXpressive PAcket Classification) Kirill Kogan Purdue University and IMDEA Networks Sergey Nikolenko Steklov Institute of Mathematics at St. Petersburg and National Research University Higher School of Economics Ori

335 views • 16 slides
Exploiting Order Independence for Scalable and Expressive Packet Classification Author: Kirill

Exploiting Order Independence for Scalable and Expressive Packet Classification Author: Kirill

Exploiting Order Independence for Scalable and Expressive Packet Classification Author: Kirill Kogan, Sergey I. Nikolenko, Ori Rottenstreich, William Culhane, and Patrick Eugster Presenter: Qing Lyu 2017/04/12 IEEE/ACM TRANSACTIONS ON

787 views • 64 slides
Efficient Packet Classification for Intrusion Detection Using FPGA Haoyu Song, John W. Lockwood

Efficient Packet Classification for Intrusion Detection Using FPGA Haoyu Song, John W. Lockwood

Efficient Packet Classification for Intrusion Detection Using FPGA Haoyu Song, John W. Lockwood Applied Research Lab : Reconfigurable Network Group Department of Computer Science and Engineering

214 views • 9 slides
Introduction to Packet Tracer What is Packet Tracer? Packet Tracer is a protocol simulator

Introduction to Packet Tracer What is Packet Tracer? Packet Tracer is a protocol simulator

Introduction to Packet Tracer What is Packet Tracer? Packet Tracer is a protocol simulator developed by Dennis Frezzo and his team at Cisco Systems. Packet Tracer (PT) is a powerful and dynamic tool that displays the various protocols used in

419 views • 17 slides
Space and Speed Tradeoffs in TCAM Hierarchical Packet Classification Alex Kesselman , Kirill

Space and Speed Tradeoffs in TCAM Hierarchical Packet Classification Alex Kesselman , Kirill

Space and Speed Tradeoffs in TCAM Hierarchical Packet Classification Alex Kesselman , Kirill Kogan , Sergey Nemzer and Michael Segal Google, Inc. Email: alx@google.com Cisco Systems, Netanya, Israel and Communication

70 views • 6 slides
A Ternary Unification Framework for Optimizing TCAM-Based Packet Classification Systems Author:

A Ternary Unification Framework for Optimizing TCAM-Based Packet Classification Systems Author:

A Ternary Unification Framework for Optimizing TCAM-Based Packet Classification Systems Author: Eric Norige, Alex X. Liu, and Eric Torng Publisher: ANCS 2013 Presenter: Chang Chen

227 views • 22 slides
OC-3072 Packet Classification Using BDDs and Pipelined SRAMs Amit Prakash Adnan Aziz Department

OC-3072 Packet Classification Using BDDs and Pipelined SRAMs Amit Prakash Adnan Aziz Department

OC-3072 Packet Classification Using BDDs and Pipelined SRAMs Amit Prakash Adnan Aziz Department of Electrical and Computer Engineering The University of Texas at Austin adnan@ece.utexas.edu prakash Abstract We focus on one of the

80 views • 6 slides
Packet Classification Peng He (Institute of Computing Technology, China) Gaogang Xie(Institute of

Packet Classification Peng He (Institute of Computing Technology, China) Gaogang Xie(Institute of

Meta-algorithms for Software based Packet Classification Peng He (Institute of Computing Technology, China) Gaogang Xie(Institute of Computing Technology, China) Kav Salamatian (University of Savoie, France) Laurent Mathy (University of

443 views • 31 slides
Range Tree-Linked List Hierarchical Search Structure for Packet Classification on FPGAs O

Range Tree-Linked List Hierarchical Search Structure for Packet Classification on FPGAs O

Range Tree-Linked List Hierarchical Search Structure for Packet Classification on FPGAs O guzhan Erdem Aydin Carus Electrical and Electronics Engineering Computer Engineering Trakya University Trakya University Edirne, TURKEY 22030

375 views • 6 slides
Packet Radio Lee Maddox, N4HOK What is Packet Radio? Packet radio is the connection of a computer

Packet Radio Lee Maddox, N4HOK What is Packet Radio? Packet radio is the connection of a computer

03/11/2017 Packet Radio Lee Maddox, N4HOK What is Packet Radio? Packet radio is the connection of a computer to a radio for the transmission of digital data via amateur radio. It is another mode of operation that has a multitude of uses, such as

571 views • 17 slides
How to (passively) measure? Packet Monitoring 1 What to expect? Overview / What is packet

How to (passively) measure? Packet Monitoring 1 What to expect? Overview / What is packet

How to (passively) measure? Packet Monitoring 1 What to expect? Overview / What is packet monitor? How to acquire the data Handling performance bottlenecks Case Study: Packet Capture Performance Analyzing the transport and

487 views • 37 slides
Lab 1: Packet Sniffing and Wireshark Fengwei Zhang SUSTech CS 315 Computer Security 1 Packet

Lab 1: Packet Sniffing and Wireshark Fengwei Zhang SUSTech CS 315 Computer Security 1 Packet

Lab 1: Packet Sniffing and Wireshark Fengwei Zhang SUSTech CS 315 Computer Security 1 Packet Sniffer Packet sniffer is a basic tool for observing network packet exchanges in a computer Capturing (sniffs) packets being

485 views • 13 slides
Mun, Ju Hyoung Samsung Electronics juhyoung.mun@samsung.com Samsung Electronics Packet

Mun, Ju Hyoung Samsung Electronics juhyoung.mun@samsung.com Samsung Electronics Packet

Mun, Ju Hyoung Samsung Electronics juhyoung.mun@samsung.com Samsung Electronics Packet Classification is one of the major challenges for next generation routers Involves complicated multi-dimensional search Should be performed in

395 views • 24 slides
Packet Information IMPORTANT LABEL ON RIGHT HAND SIDE OF PACKET Shoe, Gym 11111 (Student ID #)

Packet Information IMPORTANT LABEL ON RIGHT HAND SIDE OF PACKET Shoe, Gym 11111 (Student ID #)

Curriculum & Activities Night Class of 2020 Packet Information IMPORTANT LABEL ON RIGHT HAND SIDE OF PACKET Shoe, Gym 11111 (Student ID #) Feeder School Name NEON GREEN sticker on front of packet = MISSING EXPLORE Appointment date

99 views • 6 slides
Packet Validation in the Network Environments Yingdi Yu UCLA 1 Packet Authentication How

Packet Validation in the Network Environments Yingdi Yu UCLA 1 Packet Authentication How

Packet Validation in the Network Environments Yingdi Yu UCLA 1 Packet Authentication How to authenticate a data packet containing the electricity usage of a room at certain time? Data is signed, but how to verify the signature?

224 views • 19 slides
Modelling of Packet Loss in an Asynchronous Packet Switch using PEPA Wim Vanderbauwhede

Modelling of Packet Loss in an Asynchronous Packet Switch using PEPA Wim Vanderbauwhede

Modelling of Packet Loss in an Asynchronous Packet Switch using PEPA Wim Vanderbauwhede Department of Computing Science University of Glasgow September 6, 2005- WV 1 Overview Asynchronous Packet Switch Building the PEPA Model

658 views • 26 slides
Building Balanced Search Tree based on Layered Decision Tree for Packet Classification Yeim-Kuan

Building Balanced Search Tree based on Layered Decision Tree for Packet Classification Yeim-Kuan

Building Balanced Search Tree based on Layered Decision Tree for Packet Classification Yeim-Kuan Chang Chao-Yen Chien Department of Computer Science and Information Department of Computer Science and Information Engineering Engineering

491 views • 11 slides
Lab 1: Packet Sniffing and Wireshark Fengwei Zhang Wayne State University Course: Cyber

Lab 1: Packet Sniffing and Wireshark Fengwei Zhang Wayne State University Course: Cyber

Lab 1: Packet Sniffing and Wireshark Fengwei Zhang Wayne State University Course: Cyber Security Practice 1 Packet Sniffer Packet sniffer is a basic tool for observing network packet exchanges in a computer Capturing (sniffs)

593 views • 14 slides

More recommend