tes ng stateful and dynamic data planes with flowtest
play

Tes$ng Stateful and Dynamic Data Planes with FlowTest - PowerPoint PPT Presentation

Oct 08, 2023 •151 likes •228 views

Tes$ng Stateful and Dynamic Data Planes with FlowTest Seyed K. Fayaz, Vyas Sekar Mo$va$ng Scenario 1) Keep count of TCP connec$ons per host.

  1. Tes$ng ¡Stateful ¡and ¡Dynamic ¡ ¡ Data ¡Planes ¡with ¡FlowTest ¡ ¡ Seyed ¡K. ¡Fayaz, ¡Vyas ¡Sekar ¡

  2. Mo$va$ng ¡Scenario ¡ 1) ¡Keep ¡count ¡of ¡TCP ¡connec$ons ¡per ¡host. ¡ Policy ¡ 2) ¡Deep ¡packet ¡inspec$on ¡if ¡a ¡host ¡has ¡made ¡ ¡ ¡ ¡ ¡ ¡ ¡too ¡many ¡TCP ¡connec$on ¡aKempts. ¡ Light ¡ Heavy ¡ IPS ¡ IPS ¡ H 1 ¡ Internet ¡ S 1 ¡ S 2 ¡ H 2 ¡ How ¡to ¡make ¡sure ¡this ¡policy ¡is ¡correctly ¡implemented ¡ ¡ in ¡the ¡actual ¡network? ¡ 2 ¡

  3. Exis$ng ¡solu$ons ¡don’t ¡suffice ¡ • Assume ¡ simple, ¡stateless ¡ elements ¡ – E.g., ¡switches ¡and ¡simple ¡ACL ¡devices ¡ • Work ¡with ¡ sta+c ¡and ¡context-­‑free ¡ policies ¡ – E.g., ¡reachability ¡ – E.g., ¡access ¡control ¡ • Focus ¡on ¡ single ¡packet ¡ effects ¡ 3 ¡

  4. Our ¡Approach: ¡FlowTest ¡ • FlowTest’s ¡approach: ¡ tes+ng ¡the ¡data ¡plane ¡ ¡ • We ¡need: ¡ – A ¡ model ¡of ¡the ¡en+re ¡data ¡plane ¡ • Including ¡middleboxes ¡ – To ¡generate ¡ test ¡scenarios ¡ that ¡exercise ¡ • Data ¡plane ¡states ¡ • Policy ¡contexts ¡ – To ¡ monitor ¡ and ¡ validate ¡ test ¡results ¡ 4 ¡

  5. Early ¡Promise ¡ Light ¡ Heavy ¡ IPS ¡ IPS ¡ H 1 ¡ Internet ¡ H 2 ¡ S 1 ¡ S 2 ¡ Heavy ¡IPS ¡ Light ¡IPS ¡ seen ¡non-­‑bot ¡traffic ¡ OK ¡ seen ¡bot ¡traffic ¡ conn ¡fail ¡ conn ¡fail ¡ conn ¡fail ¡ count=0 ¡ count=1 ¡ count=2 ¡ count≥3 ¡ refresh ¡ refresh ¡ refresh ¡ Alarm ¡ Genera$ng ¡test ¡traffic ¡can ¡be ¡formulated ¡using ¡ AI ¡planning . ¡ ¡ We ¡validated ¡our ¡solu$on ¡using ¡an ¡SDN ¡prototype. ¡ ¡ 5 ¡

  6. Conclusions ¡ • Real ¡world ¡networks ¡are ¡complex ¡ – Stateful ¡elements ¡ – Dynamic ¡and ¡contextual ¡policies ¡ ¡ • We ¡argue ¡for ¡tes$ng ¡data ¡planes ¡that ¡incorporates ¡ data ¡plane ¡models ¡ • Ini$al ¡promise ¡of ¡FlowTest ¡via ¡FSMs ¡and ¡planning ¡ • Many ¡open ¡challenges ¡ ¡ 6 ¡

Recommend

Noria Dynamic, partially-stateful data-flow for high-performance Web applications Jon

Noria Dynamic, partially-stateful data-flow for high-performance Web applications Jon

Noria Dynamic, partially-stateful data-flow for high-performance Web applications Jon Gjengset Malte Schwarzkopf Jonathan Behrens Lara Timb Arajo Martin Ek Eddie Kohler M. Frans Kaashoek Robert Morris 2 Frontend 2

1.6k views • 108 slides
Intersecting two planes in R 3 . Suppose we have two planes with normal vectors n 1 , n 2

Intersecting two planes in R 3 . Suppose we have two planes with normal vectors n 1 , n 2

Intersecting two planes in R 3 . Suppose we have two planes with normal vectors n 1 , n 2 respectively, and we find a point P which lies in both planes. This tells us right away that the intersection of the planes is not empty, and so it must be a

409 views • 5 slides
Name Space Analysis (NSA): Verification of Named Data Network Data Planes Mohammad Jahanian and

Name Space Analysis (NSA): Verification of Named Data Network Data Planes Mohammad Jahanian and

Name Space Analysis (NSA): Verification of Named Data Network Data Planes Mohammad Jahanian and K. K. Ramakrishnan University of California, Riverside ACM ICN 2019 Network Verification is important Network data planes are complex and hard to

630 views • 49 slides
Stacking planes precisely Problem: when many planes are stacked on top of each other, errors in

Stacking planes precisely Problem: when many planes are stacked on top of each other, errors in

Stacking planes precisely Problem: when many planes are stacked on top of each other, errors in the thickness of the individual planes will add up Note: we encountered this problem when we wanted to build a precise field cage for a TPC-like

512 views • 4 slides
The Case for a Flexible Low-Level Backend for Software Data Planes Sean Choi 1 , Xiang Long 2 ,

The Case for a Flexible Low-Level Backend for Software Data Planes Sean Choi 1 , Xiang Long 2 ,

The Case for a Flexible Low-Level Backend for Software Data Planes Sean Choi 1 , Xiang Long 2 , Muhammad Shahbaz 3 , Skip Booth 4 , Andy Keep 4 , John Marshall 4 , Changhoon Kim 5 1 3 4 2 5 Why software data planes? VM hypervisors VM

633 views • 27 slides
FREIGHT MOBILITY PLAN PLANES, TRAINS, & SEMIS: KEEPING A DYNAMIC ECONOMY ON THE MOVE

FREIGHT MOBILITY PLAN PLANES, TRAINS, & SEMIS: KEEPING A DYNAMIC ECONOMY ON THE MOVE

GREATER CHARLOTTE REGIONAL FREIGHT MOBILITY PLAN PLANES, TRAINS, & SEMIS: KEEPING A DYNAMIC ECONOMY ON THE MOVE NOVEMBER 13, 2015 1 Plan Purpose The efficient, reliable, and The Greater Charlotte Region safe movement of goods and

308 views • 28 slides
Mesos Go Stateful An Abstraction for frameworks running stateful workload Dhilip & Amit -

Mesos Go Stateful An Abstraction for frameworks running stateful workload Dhilip & Amit -

Mesos Go Stateful An Abstraction for frameworks running stateful workload Dhilip & Amit - PaaS Team, Huawei Contents Why Abstraction Available solution in Kubernetes Available solution in Mesos Mesos Go Stateful Design

492 views • 25 slides
States on a (Data) Plane Jennifer Rexford Traditional data planes are stateless 1 Software

States on a (Data) Plane Jennifer Rexford Traditional data planes are stateless 1 Software

States on a (Data) Plane Jennifer Rexford Traditional data planes are stateless 1 Software Defined Networks (SDN) Program your network from a logically central point! 2 OpenFlow Rule Tables action match Prio 1 dstip = 10.0.0.1 outport

665 views • 35 slides
Stateful Dataflow Multigraphs: A Data-Centric Model for Performance Portability on Heterogeneous

Stateful Dataflow Multigraphs: A Data-Centric Model for Performance Portability on Heterogeneous

spcl.inf.ethz.ch @spcl_eth Tal Ben-Nun , Johannes de Fine Licht, Alexandros-Nikolaos Ziogas, Timo Schneider, Torsten Hoefler Stateful Dataflow Multigraphs: A Data-Centric Model for Performance Portability on Heterogeneous Architectures This

738 views • 42 slides
Stateful Dataflow Multigraphs: A Data-Centric Model for Performance Portability on Heterogeneous

Stateful Dataflow Multigraphs: A Data-Centric Model for Performance Portability on Heterogeneous

spcl.inf.ethz.ch @spcl_eth Tal Ben-Nun , Johannes de Fine Licht, Alexandros-Nikolaos Ziogas, Timo Schneider, Torsten Hoefler Stateful Dataflow Multigraphs: A Data-Centric Model for Performance Portability on Heterogeneous Architectures This

584 views • 43 slides
F AASM : Lightweight Isolation for Efficient Stateful Serverless Computing Simon Shillaker and

F AASM : Lightweight Isolation for Efficient Stateful Serverless Computing Simon Shillaker and

F AASM : Lightweight Isolation for Efficient Stateful Serverless Computing Simon Shillaker and Peter Pietzuch Large-scale Data and Systems Group, Imperial College London Serverless Big Data Vision Serverless functions Application Big data

431 views • 30 slides
Provenance in Dynamic Linked Data Marcin Wylot Linking Everything: Dynamic Graphs

Provenance in Dynamic Linked Data Marcin Wylot Linking Everything: Dynamic Graphs

Provenance in Dynamic Linked Data Marcin Wylot Linking Everything: Dynamic Graphs Integrated and summarized uncertain graph data Dynamic physical and logical network of things Necessity to established transparency 2 Data

850 views • 17 slides
Stateful access control using LSM CS547 Thomas Uphill Stateful access cont rol using LSM 11

Stateful access control using LSM CS547 Thomas Uphill Stateful access cont rol using LSM 11

Stateful access control using LSM CS547 Thomas Uphill Stateful access cont rol using LSM 11 December 2007 1 Why? Maintaining state allows for decisions to be made based on runtime conditions. State based policy can be more concise

576 views • 18 slides
Network Attacks I Yongdae Kim KAIST Two Planes Data Plane: Actual data delivery Control

Network Attacks I Yongdae Kim KAIST Two Planes Data Plane: Actual data delivery Control

Network Attacks I Yongdae Kim KAIST Two Planes Data Plane: Actual data delivery Control Plane To support data delivery (efficiently, reliably, and etc.) Routing information exchange In some sense, every protocol except data

751 views • 51 slides
Drones & Planes Eyes in the Sky Planes Not the first form of flight Pioneered by

Drones & Planes Eyes in the Sky Planes Not the first form of flight Pioneered by

Drones & Planes Eyes in the Sky Planes Not the first form of flight Pioneered by Wright brothers in early 20 th century First heavier than air powered flight in 1903, December 17 th Wilbur Wright died of Typhoid Orville

273 views • 5 slides
Scalable Verification of Stateful Networks Aurojit Panda, Ori Lahav, Katerina Argyraki, Mooly

Scalable Verification of Stateful Networks Aurojit Panda, Ori Lahav, Katerina Argyraki, Mooly

Scalable Verification of Stateful Networks Aurojit Panda, Ori Lahav, Katerina Argyraki, Mooly Sagiv, Scott Shenker UC Berkeley, TAU, ICSI Roadmap Why consider stateful networks? The current state of stateful network verification?

1.31k views • 80 slides
Physiology 1 Physiology 2 Physiology 3 Planes 28/08/17 4 Planes 28/08/17 5 Flexion Vs.

Physiology 1 Physiology 2 Physiology 3 Planes 28/08/17 4 Planes 28/08/17 5 Flexion Vs.

Physiology 1 Physiology 2 Physiology 3 Planes 28/08/17 4 Planes 28/08/17 5 Flexion Vs. Extension Adduction Vs. Abduction 28/08/17 6 Foot landing 28/08/17 7 Knee Conditions Knee conditions that lead to surgery 28/08/17 8

583 views • 31 slides
Construction of Some New Projective Planes G. Eric Moorhouse, University of Wyoming

Construction of Some New Projective Planes G. Eric Moorhouse, University of Wyoming

Construction of Some New Projective Planes G. Eric Moorhouse, University of Wyoming http://math.uwyo.edu/~moorhous/pub/planes/ n 2 3 4 5 7 8 9 11 number of planes 1 1 1 1 1 1 4 1 of order n known n 13 16 17 19 23 25 27

406 views • 27 slides
Sub-millisecond Stateful Stream Querying over Fast-evolving Linked Data Yunhao Zhang, Rong Chen,

Sub-millisecond Stateful Stream Querying over Fast-evolving Linked Data Yunhao Zhang, Rong Chen,

Sub-millisecond Stateful Stream Querying over Fast-evolving Linked Data Yunhao Zhang, Rong Chen, Haibo Chen Institute of Parallel and Distributed Systems (IPADS) Shanghai Jiao Tong University Stream Query is Important Multiple data sources are

683 views • 34 slides
Economic Symposium Mobility 4.0: Planes, Trains & Port Districts Planes, Trains &

Economic Symposium Mobility 4.0: Planes, Trains & Port Districts Planes, Trains &

Economic Symposium Mobility 4.0: Planes, Trains & Port Districts Planes, Trains & Automobiles Mobility is a top issue for everyone (business, community, personal) Great group of panelists Providing updates and insights on

449 views • 8 slides
Noria: Partially Stateful Data-flow for Read Heavy Web Applications Jon Gjengset Malte

Noria: Partially Stateful Data-flow for Read Heavy Web Applications Jon Gjengset Malte

Noria: Partially Stateful Data-flow for Read Heavy Web Applications Jon Gjengset Malte Schwarzkopf Jonathan Behrens Lara Timbo Ara Martin Ek Eddie Kohler M. Frans Kaashoek Robert Morris Challenges of Read Heavy Web Apps - Repeat reads

486 views • 12 slides
Internet Control Plane Security Yongdae Kim KAIST Two Planes Data Plane: Actual data

Internet Control Plane Security Yongdae Kim KAIST Two Planes Data Plane: Actual data

Internet Control Plane Security Yongdae Kim KAIST Two Planes Data Plane: Actual data delivery Control Plane To support data delivery (efficiently, reliably, and etc.) Routing information exchange In some sense, every protocol

396 views • 39 slides
Construction USA Course Demonstration Wooden Planes: WAP 9.6.2018 Project Plank

Construction USA Course Demonstration Wooden Planes: WAP 9.6.2018 Project Plank

Why? Construction USA Course Demonstration Wooden Planes: WAP 9.6.2018 Project Plank 2012 WWAP Exhibition 2012 Construction of the planes very challenging Wooden Planes - advantages over metal ones Wooden Planes:

515 views • 36 slides
Crystallography basics 1 ? 2 Family of planes (hkl) - Family of plane: parallel planes and

Crystallography basics 1 ? 2 Family of planes (hkl) - Family of plane: parallel planes and

Crystallography basics 1 ? 2 Family of planes (hkl) - Family of plane: parallel planes and equally spaced. The indices correspond to the plane closer to the origin which intersects the cell at a/h, b/k and c/l. Miller indices describe the

856 views • 69 slides

More recommend