reclaiming the brain useful openflow functions in the
play

Reclaiming the Brain: Useful OpenFlow Functions in the Data Plane - PowerPoint PPT Presentation

Jun 18, 2023 •48 likes •408 views

Reclaiming the Brain: Useful OpenFlow Functions in the Data Plane Liron Schiff (Tel Aviv Uni, Israel) Michael Borokhovich (UT Austin, United States) Stefan Schmid (TU Berlin & T-Labs, Germany) 1 My Talk in One Slide Separation of the

  1. Reclaiming the Brain: Useful OpenFlow Functions in the Data Plane Liron Schiff (Tel Aviv Uni, Israel) Michael Borokhovich (UT Austin, United States) Stefan Schmid (TU Berlin & T-Labs, Germany) 1

  2. My Talk in One Slide Separation of the planes enables: simplified network management and operation faster innovation ctrl plane N S data plane 2

  3. My Talk in One Slide Separation of the planes enables: simplified network management and operation faster innovation ctrl plane However: N controller may miss certain data plane events indirection => latency S data plane 2

  4. My Talk in One Slide Separation of the planes enables: simplified network management and operation faster innovation ctrl plane However: N controller may miss certain data plane events indirection => latency S What functionality should be kept in data plane? — A big question! data plane 2

  5. My Talk in One Slide Separation of the planes enables: simplified network management and operation faster innovation ctrl plane However: N controller may miss certain data plane events indirection => latency S What functionality should be kept in data plane? — A big question! In this talk: example of functions data plane that can be kept in the data plane. 2

  6. SDN and OpenFlow Controller OpenFlow Actions Match OpenFlow - - - - - - Set VLAN = 11 IP.src=10.0.*.* - - Forward port 3 … … Drop TCP.port = 23 IP.dst=192.*.*.* Send Controller and VLAN=13 … … 3

  7. OpenFlow in a Nutshell Switch pipeline Table 2 Table 1 Table n Packet Packet - - - - - - Out In - - - - - - - - - - - - … … … … … … Basic Actions Set a field Append a label Forward to a port/controller/flood Goto Table x 4

  8. OpenFlow in a Nutshell Switch pipeline Table 2 Table 1 Table n Packet Packet - - - - - - Out In - - - - - - - - - - - - … … … … … … Basic Actions Set a field Append a label Forward to a port/controller/flood Goto Table x Failover Group Action1 Port-1 Advanced/optional Actions Table 1 Link state based Action2 Port-2 Gr1 - Round-robin selection - - … … Gr2 - Action-k Port-k … … 4

  9. OpenFlow in a Nutshell Switch pipeline Table 2 Table 1 Table n Packet Packet - - - - - - Out In - - - - - - - - - - - - … … … … … … Basic Actions Set a field Append a label Forward to a port/controller/flood Goto Table x Failover Group Round Robin Group Action1 Port-1 Advanced/optional Actions Table 1 Link state based Action1 Action2 Port-2 Gr1 - Round-robin selection - - … … Action2 Gr2 - Action-k Port-k … … … Action-k 4

  10. Fast Failover - Adding Brains to the South Proactive reaction to link failures Failover Group Port 1 Fwd ctrl plane N Port 3 Fwd … … Action-k Port-k S 1 3 data plane 5

  11. Fast Failover - Adding Brains to the South Proactive reaction to link failures Failover Group Port 1 Fwd ctrl plane N Port 3 Fwd … … Action-k Port-k S 1 3 data plane 5

  12. Fast Failover - Adding Brains to the South Proactive reaction to link failures Failover Group Port 1 Fwd ctrl plane N Port 3 Fwd … … Action-k Port-k S Non-trivial to use 1 May quickly introduce loops May introduce high load 3 Much better with Tags data plane Tag 5

  13. Fast Failover - Adding Brains to the South Proactive reaction to link failures Failover Group Port 1 Fwd ctrl plane N Port 3 Fwd … … Action-k Port-k S Non-trivial to use 1 May quickly introduce loops May introduce high load 3 Much better with Tags data plane Tag 5

  14. Fast Failover - Adding Brains to the South Proactive reaction to link failures Failover Group Port 1 Fwd ctrl plane N Port 3 Fwd … … Action-k Port-k S Non-trivial to use 1 May quickly introduce loops May introduce high load 3 Much better with Tags data plane Tag 5

  15. Functions in the South Reduce interactions with the control plane Make data plane more robust Monitoring functions: Topology snapshot Blackhole detection N Critical node detection S Communication functions: Anycast 6

  16. How it is possible? SmartSouth template. SmartSouth — in-band graph DFS traversal State of each node stored in the packet: parent current neighbor the node traverses Implemented using a simple match-action paradigm Uses Fast Failover technique. … payload par, cur par, cur par, cur 7

  17. How it is possible? SmartSouth template. Pseudocode —> Match&Action tables Algorithm 1 Algorithm SmartSouth – Template Input: current node: v i , input port: in , packet global params: pkt.start , packet tag array: { pkt.v j } j ∈ [ n ] Output: output port: out 1: if pkt.start = 0 then 2: pkt.start ← 1 3: out ← 1 4: else 5: if pkt.v i .cur = 0 then 6: pkt.v i .par ← in ; out ← 1; First visit () 7: else if in = pkt.v i .cur then 8: out ← pkt.v i .cur + 1; V isit from cur () 9: else 10: out ← in ; V isit not from cur () 11: goto 26 12: if out = ∆ i + 1 then 13: out ← pkt.v i .par 14: goto 22 15: while out failed or out = pkt.v i .par do 16: out ← out + 1 17: if out = ∆ i + 1 then 18: out ← pkt.v i .par 19: goto 22 20: Send next neighbor () 21: goto 23 22: Send parent () … 23: pkt.v i .cur ← out payload par, cur par, cur par, cur 24: if out = 0 then 25: Finish () 26: return out 8

  18. How it is possible? SmartSouth template. Pseudocode —> Match&Action tables Flow Table B Match if pkt.v i .cur = 0 then Instructions in pkt.v i .cur pkt.v i .par ∆ i � 1 ∆ i � 1 Table C ∆ i pkt.v i .par ← in ; out ← 1; Fi ⇤ 0 ⇤ pkt.v i .par in , Table 1 else if in = pkt.v i .cur then 1 1 ⇤ Table 2 2 2 ⇤ Table 3 out ← pkt.v i .cur + 1; V isit 3 3 ⇤ Table 4 else . . . . . . . . . . . . … payload par, cur par, cur par, cur 9

  19. How it is possible? SmartSouth template. Pseudocode —> Match&Action tables Flow Table B Match if pkt.v i .cur = 0 then Instructions in pkt.v i .cur pkt.v i .par ∆ i � 1 ∆ i � 1 Table C ∆ i pkt.v i .par ← in ; out ← 1; Fi ⇤ 0 ⇤ pkt.v i .par in , Table 1 else if in = pkt.v i .cur then 1 1 ⇤ Table 2 2 2 ⇤ Table 3 out ← pkt.v i .cur + 1; V isit 3 3 ⇤ Table 4 else . . . . . . . . . . . . Flow Table 2 Flow Table 1 15: while out failed Match Match Instructions Instructions … sb sb 16: out ← out + 1 0 Gr 1, Table 2 0 Gr 2, Table 3 1 Drop 1 Drop Group Actions h i Gr 0.1 Gr 1 h sb 1 , Fwd Route (1) i h sb 1 , pkt.v i .cur 1 , pkt.start 1 , Fwd 1 i Gr 2 h sb 1 , pkt.v i .cur 2 , pkt.start 1 , Fwd 2 i . . . . . . port 1 … payload par, cur par, cur par, cur port 2 9

  20. Functions in the South: Topology Snapshot Fault tolerant No connectivity assumption Requires a single connection to controller Unlike built-in “Topology service” in OpenFlow N t o h s p a n S s a e m e v i g 10

  21. Functions in the South: Topology Snapshot Fault tolerant No connectivity assumption Requires a single connection to controller Unlike built-in “Topology service” in OpenFlow N t o h s p a n During the DFS traversal, topology S s information is written to the packet a e header m e v i g … snapshot data par, next par, next par, next 10

  22. Functions in the South: Blackhole Detection Detects connectivity loss regardless of the cause physical failure configuration errors unsupervised carrier network errors N ? e l o h k c a S l b a e r e h t s I 11

  23. Functions in the South: Blackhole Detection Detects connectivity loss regardless of the cause physical failure configuration errors unsupervised carrier network errors Two possible implementations: N ? e l o h k c a S l b a e r e h t s I 11

  24. Functions in the South: Blackhole Detection Detects connectivity loss regardless of the cause physical failure configuration errors unsupervised carrier network errors Two possible implementations: N ? e DFS traversal with TTL l o (log n) DFS traversals (binary search) h k c a S l b a DFS failed e r e h t s DFS failed I Blackhole found … TTL par, next par, next par, next 11

  25. Functions in the South: Blackhole Detection Smart “In-band” Counters General counters - access only by controller Our counters: access during packet processing N counter value can be written to packet or ? metadata e l o implemented using Round-Robin action group h k c a S l b Round Robin Group a e Action1 r e Table 2 Table 1 h t Action2 1 - - - s I 2 - - - … … … - - K Action-k . … … 12

  26. Functions in the South: Blackhole Detection Blackhole detection with SmartCounters Install SmartCounter for each port Only two DFS traversals required: First - back&forth on each link N ? 3 e 3 l o h k c a S l b a e 1 0 r e h t s I 13

  27. Functions in the South: Blackhole Detection Blackhole detection with SmartCounters Install SmartCounter for each port Only two DFS traversals required: First - back&forth on each link N ? 3 e 3 l o h k c a S l b a e 1 0 r e h t s I 3 3 3 Second - find port with counter value 1 3 3 3 1 13

Recommend

OpenFlow and Software Defjned Networks Outline o The history of OpenFlow o What is OpenFlow? o

OpenFlow and Software Defjned Networks Outline o The history of OpenFlow o What is OpenFlow? o

OpenFlow and Software Defjned Networks Outline o The history of OpenFlow o What is OpenFlow? o Slicing OpenFlow networks o Software Defjned Networks o Industry interest Original Question How can researchers on college campuses test out new

718 views • 35 slides
Reclaiming Your Inner David in a World of Goliaths 2 Reclaiming Your Inner David: Dream Big;

Reclaiming Your Inner David in a World of Goliaths 2 Reclaiming Your Inner David: Dream Big;

Reclaiming Your Inner David: Finding Purpose and Promise in a World of Goliaths Rawle Andrews Jr., Esq. Regional Vice President June 20, 2017 1 Reclaiming Your Inner David in a World of Goliaths 2 Reclaiming Your Inner David: Dream

461 views • 21 slides
Reclaiming Social Work Steve Goodman Director @morninglane.org Reclaiming Social Work

Reclaiming Social Work Steve Goodman Director @morninglane.org Reclaiming Social Work

Reclaiming Social Work Steve Goodman Director @morninglane.org Reclaiming Social Work Values Systemic social work approaches Attracting and retaining high quality staff Unit approach Organisational support

159 views • 12 slides
TouSIX First OpenFlow European IXP Marc Bruyre, CNRS 2 TouSIX First OpenFlow European IXP

TouSIX First OpenFlow European IXP Marc Bruyre, CNRS 2 TouSIX First OpenFlow European IXP

TouSIX First OpenFlow European IXP Marc Bruyre, CNRS 2 TouSIX First OpenFlow European IXP What is an IXP ? Today IXP switching fabric Operator-oriented OpenFlow IXP fabric The Toulouse IXP : TouIX Migrating TouIX in TouSIX TouSIX-Manager

850 views • 41 slides
Reclaiming the Hudson River Objective: Further flood plain testing needs to be done in order to

Reclaiming the Hudson River Objective: Further flood plain testing needs to be done in order to

Reclaiming the Hudson River Objective: Further flood plain testing needs to be done in order to ensure sustainable community and economic development, heritage/cultural tourism and the safety and well being of our residents. Reclaiming the

518 views • 12 slides
Applying F(I)MEA Technique for SDN/OpenFlow Security Analysis Green Kim greenkim@konkuk.ac.kr

Applying F(I)MEA Technique for SDN/OpenFlow Security Analysis Green Kim greenkim@konkuk.ac.kr

Applying F(I)MEA Technique for SDN/OpenFlow Security Analysis Green Kim greenkim@konkuk.ac.kr Contents 1. Introduction 1.1 Motivation 1.2 Related Works Analysis 1.2.1 OpenFlow: A Security Analysis 1.2.2 OpenFlow Vulnerability Assessment

345 views • 30 slides
Modeling brain cognitive functions by oscillatory neural networks Institute of Mathematical

Modeling brain cognitive functions by oscillatory neural networks Institute of Mathematical

Yakov Kazanovich Modeling brain cognitive functions by oscillatory neural networks Institute of Mathematical Problems of Biology RAS A branch of Keldysh Institute of Applied Mathematics RAS Theoretical Physics and Mathematics of the Brain

483 views • 35 slides
Networking and OpenFlow Jeffrey Dalla Tezza and Nate Schloss Agenda What is SDN SDN Today

Networking and OpenFlow Jeffrey Dalla Tezza and Nate Schloss Agenda What is SDN SDN Today

Software Defined Networking and OpenFlow Jeffrey Dalla Tezza and Nate Schloss Agenda What is SDN SDN Today What is OpenFlow Why OpenFlow Whats next for SDN Our OpenFlow Demonstration Software Defined Networking

274 views • 26 slides
BRAIN VENTRICULAR SYSTEM CSF THE BRAIN BRAIN The brain (encephalon) lies within the cranium. It

BRAIN VENTRICULAR SYSTEM CSF THE BRAIN BRAIN The brain (encephalon) lies within the cranium. It

BRAIN VENTRICULAR SYSTEM CSF THE BRAIN BRAIN The brain (encephalon) lies within the cranium. It receives information from, and controls the activities of, the trunk and limbs, mainly through rich connections with the spinal cord. The brain

522 views • 27 slides
RECLAIMING SECONDARY TICKETING AudienceNet / Music Ally research: 77% of the UK

RECLAIMING SECONDARY TICKETING AudienceNet / Music Ally research: 77% of the UK

RECLAIMING SECONDARY TICKETING AudienceNet / Music Ally research: 77% of the UK public say you should be able to resell a ticket. 58% say resale should be for the price of purchase. 1. RECLAIMING SECONDARY TICKETING The

511 views • 21 slides
Optimizing Rules Placement in OpenFlow networks: Trading routing for better efficiency NGUYEN

Optimizing Rules Placement in OpenFlow networks: Trading routing for better efficiency NGUYEN

Optimizing Rules Placement in OpenFlow networks: Trading routing for better efficiency NGUYEN Xuan-Nam , Damien Saucez, Chadi Barakat, Thierry Turletti DIANA INRIA Sophia Antipolis, France Motivation Today With SDN/OpenFlow Manual

394 views • 6 slides
OpenFlow Workshop APAN FIT Workshop Hong Kong APAN FIT Workshop Hong Kong Chris Small

OpenFlow Workshop APAN FIT Workshop Hong Kong APAN FIT Workshop Hong Kong Chris Small

OpenFlow Workshop APAN FIT Workshop Hong Kong APAN FIT Workshop Hong Kong Chris Small Indiana University Feb 22 2011 Sections Sections OpenFlow concepts, hardware and software l h d d f OpenFlow use cases Network Operators

910 views • 73 slides
UNINETT OpenFlow testbed UNINETT OpenFlow testbed Terena Network Architecture Workshop,

UNINETT OpenFlow testbed UNINETT OpenFlow testbed Terena Network Architecture Workshop,

UNINETT OpenFlow testbed UNINETT OpenFlow testbed Terena Network Architecture Workshop, 13-14/11-2013 Terena Network Architecture Workshop, 13-14/11-2013 Olav Kvittem, Martin Osmundsvg, Otto Wittner, Gurvinder Singh UNINETT Aryan

366 views • 7 slides
The Beacon OpenFlow Controller www.beaconcontroller.net David Erickson Stanford Motivation

The Beacon OpenFlow Controller www.beaconcontroller.net David Erickson Stanford Motivation

The Beacon OpenFlow Controller www.beaconcontroller.net David Erickson Stanford Motivation Back to circa 2008-2009 The OpenFlow controller world == NOX Single threaded event based C++ with SWIG glue to Python Python apps C++

513 views • 18 slides
OpenFlow Campus Trials GEC7 Stanford University Continued progress Increasing provider

OpenFlow Campus Trials GEC7 Stanford University Continued progress Increasing provider

OpenFlow Campus Trials GEC7 Stanford University Continued progress Increasing provider OpenFlow 1.0 interest and engagement Spec released in Dec 2009 Google, Amazon, Yahoo, Reference implementations Microsoft, and

656 views • 26 slides
HyperFlow A Distributed Control Plane for OpenFlow Amin Tootoonchian Yashar Ganjali System and

HyperFlow A Distributed Control Plane for OpenFlow Amin Tootoonchian Yashar Ganjali System and

HyperFlow A Distributed Control Plane for OpenFlow Amin Tootoonchian Yashar Ganjali System and Networking Group Department of Computer Science University of Toronto Brief Overview of OpenFlow Root cause of network mgmt. & control

659 views • 14 slides
Frenetic: A High-Level Language for OpenFlow Networks Nate Foster, Rob Harrison , Matthew L.

Frenetic: A High-Level Language for OpenFlow Networks Nate Foster, Rob Harrison , Matthew L.

Frenetic: A High-Level Language for OpenFlow Networks Nate Foster, Rob Harrison , Matthew L. Meola, Michael J. Freedman, Jennifer Rexford, David Walker PRESTO 2010, Philadelphia, PA 11.28.2010 Background OpenFlow/NOX allowed us to take back

858 views • 21 slides
brain Authors Leona Plum, Markus Schubert, Jens C. Bruning Functions of insulin in the CNS

brain Authors Leona Plum, Markus Schubert, Jens C. Bruning Functions of insulin in the CNS

The role of insulin receptor signaling in the brain Authors Leona Plum, Markus Schubert, Jens C. Bruning Functions of insulin in the CNS Regulates Food intake Sympathetic activity Peripheral insulin action

542 views • 16 slides
OFELIA Pan European OpenFlow Testbed OFELIA Pan European OpenFlow Testbed Hagen Woesner

OFELIA Pan European OpenFlow Testbed OFELIA Pan European OpenFlow Testbed Hagen Woesner

OFELIA Pan European OpenFlow Testbed OFELIA Pan European OpenFlow Testbed Hagen Woesner EICT GmbH Coordinator, OFELIA project APAN meeting 32st New Delhi APAN meeting 32st New Delhi (Future Internet Testbed Workshop) Agenda Future Internet

416 views • 18 slides
Deeply Programmable Network (DPN) and Advanced Network Virtualization Aki Nakao The University

Deeply Programmable Network (DPN) and Advanced Network Virtualization Aki Nakao The University

Deeply Programmable Network (DPN) and Advanced Network Virtualization Aki Nakao The University of Tokyo 2012/11/27 1 OpenFlow SDN OpenFlow Controller Fixed Data Plane Fixed Control Plane (OpenFlow API) Flow Pattern Match

626 views • 23 slides
Revising for Languages exams Getting the best from the brain! The brain needs a

Revising for Languages exams Getting the best from the brain! The brain needs a

Bonjour! Guten Abend! Revising for Languages exams Getting the best from the brain! The brain needs a huge amount of energy to work well, so good nutrition and hydration is vital The brain has to recover each night, so a

548 views • 15 slides
Brain Injury Brain Injury: Definition: Brain injury refers to damage or destruction of A

Brain Injury Brain Injury: Definition: Brain injury refers to damage or destruction of A

1/29/2010 Driver Rehabilitation Following Brain Injury Brain Injury: Definition: Brain injury refers to damage or destruction of A Collaborative Effort brain tissue due to trauma or a wide range of medical conditions, e.g. anoxia,

440 views • 5 slides
Infectious Brain Disease Lab What is the coolest thing your brain does for you? What kinds of

Infectious Brain Disease Lab What is the coolest thing your brain does for you? What kinds of

Infectious Brain Disease Lab What is the coolest thing your brain does for you? What kinds of things make you sick? Which pathogens can get into the brain? prions Helminths (worms) brain infection How are diseases spread from 1 person to

422 views • 15 slides
OpenFlow DDoS Mitigation C. Dillon, M. Berkelaar February 9, 2014 University of Amsterdam

OpenFlow DDoS Mitigation C. Dillon, M. Berkelaar February 9, 2014 University of Amsterdam

OpenFlow DDoS Mitigation C. Dillon, M. Berkelaar February 9, 2014 University of Amsterdam Quanza Engineering C. Dillon, M. Berkelaar OpenFlow DDoS Mitigation Introduction Distributed Denial of Service attacks Types of attacks Application

358 views • 18 slides

More recommend