OWAMP One-Way Active Measurement Protocol (Sample Implementation)

Slides:



Advertisements
Similar presentations
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
Advertisements

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
Guide to Network Defense and Countermeasures Second Edition
BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.
OWAMP March 10 th 2011, OSG All Hands Meeting, Network Performance Jason Zurawski – Internet2.
Module 5: Configuring Access for Remote Clients and Networks.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.
Metrics integration in architecture: proposals overview Document Number: IEEE R0 Date Submitted: Source: Antonio.
APACHE SERVER By Innovationframes.com »
Port Scanning.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
1Federal Network Systems, LLC CIS Network Security Instructor Professor Mort Anvair Notice: Use and Disclosure of Data. Limited Data Rights. This proposal.
Packet Filtering. 2 Objectives Describe packets and packet filtering Explain the approaches to packet filtering Recommend specific filtering rules.
User-Perceived Performance Measurement on the Internet Bill Tice Thomas Hildebrandt CS 6255 November 6, 2003.
BWCTL March 10 th 2011, OSG All Hands Meeting, Network Performance Jason Zurawski – Internet2.
Remote Access Chapter 4. Learning Objectives Understand implications of IEEE 802.1x and how it is used Understand VPN technology and its uses for securing.
Abierman-nanog-30may03 1 XML Router Configs BOF Operator Involvement Andy Bierman
Packet Filtering Chapter 4. Learning Objectives Understand packets and packet filtering Understand approaches to packet filtering Set specific filtering.
© Jörg Liebeherr (modified by M. Veeraraghavan) 1 ICMP: A helper protocol to IP The Internet Control Message Protocol (ICMP) is the protocol used for error.
OWAMP August 10 th 2010, OSG Site Admin Workshop - Network Performance Jason Zurawski, Internet2.
05-Apr-2006 OWAMP and BWCTL: Installation and Configuration Jeff Boote Network Performance Workshop.
10-Jun-2005 OWAMP and BWCTL: Installation and Configuration Jeff Boote Network Performance Workshop.
Security, NATs and Firewalls Ingate Systems. Basics of SIP Security.
22-Sept-2005 Google Summer of Code Projects: Lightweight Precision Timestamps Jeff Boote.
Kerberos By Robert Smithers. History of Kerberos Kerberos was created at MIT, and was named after the 3 headed guard dog of Hades in Greek mythology Cerberus.
10-Jun-2005 OWAMP (One-Way Active Measurement Protocol) Jeff Boote Network Performance Workshop.
Internet Security and Firewall Design Chapter 32.
Protocols COM211 Communications and Networks CDA College Olga Pelekanou
1 Week #5 Routing and NAT Network Overview Configuring Routing Configuring Network Address Translation Troubleshooting Routing and Remote Access.
1 Requirements for Internet Routers (Gateways) and Hosts Relates to Lab 3. (Supplement) Covers the compliance requirements of Internet routers and hosts.
ITGS Network Architecture. ITGS Network architecture –The way computers are logically organized on a network, and the role each takes. Client/server network.
Interactive Connectivity Establishment : ICE
Real-Time Streaming Protocol draft-ietf-mmusic-rfc2326bis-01.txt Magnus Westerlund.
LSNDI RMRA 1 Design and troubleshooting M Clements.
E2E piPEfitters Eric L. Boyd. 2 Agenda NLANR / DAST Advisor Jim Ferguson John Estabrook OWAMP Jeff Boote SONAR Prototype Deployment Eric Boyd.
Lect 8 Tahani al jehain. Types of attack Remote code execution: occurs when an attacker exploits a software and runs a program that the user does not.
14-Nov-07 OWAMP (One-Way Latencies) BWCTL (Bandwidth Test Control) Jeff Boote Network Performance Tools BOF-SC07.
10-Jun-05 BWCTL (Bandwidth Test Control) Jeff Boote Network Performance Workshop.
KMIP Compliance Redefining Server and Client requirements to claim compliance Presented by: Bob Lockhart.
IP packet filtering Breno de Medeiros. Florida State University Fall 2005 Packet filtering Packet filtering is a network security mechanism that works.
Securing Access to Data Using IPsec Josh Jones Cosc352.
BWCTL August 10 th 2010, OSG Site Admin Workshop - Network Performance Jason Zurawski, Internet2.
HIP-Based NAT Traversal in P2P-Environments
IPsec Problems and Solutions
Motivation, Terminology, Layered systems (and other random stuff)
Application layer tcp/ip
Internet2 E2EPI End-2-End Performance Initiative
Module 8: Networking Services
BWCTL (Bandwidth Test Control)
IT443 – Network Security Administration Instructor: Bo Sheng
Securing the Network Perimeter with ISA 2004
OWAMP (One-Way Active Measurement Protocol)
PPP – Point to Point Protocol
Understand the OSI Model Part 2
Implementing TMG Server Publishing
Introduction to Networking
Lecture 6: TCP/IP Networking By: Adal Alashban
Module 18 (More Network Discovery)
(bandwidth control) Jeff Boote Internet2
BWCTL (Bandwidth Test Control)
Chapter 8: Monitoring the Network
Process-to-Process Delivery:
Firewalls Types of Firewalls Inspection Methods Firewall Architecture
A tool for locating QoS failures on an Internet path
Simple Two-way Active Measurement Protocol (STAMP): base protocol and data model draft-mirsky-ippm-stamp draft-mirsky-ippm-stamp-yang Greg Mirsky
Firewall Installation
Information Retrieval and Web Design
Data Communications and Networks
WireGuard zswu.
Active RTP liveness discovery
Presentation transcript:

OWAMP One-Way Active Measurement Protocol (Sample Implementation) Jeff Boote Internet2 18 November 2018

What is it? A control protocol A test protocol A sample implementation of both 11/18/2018

Why the OWAMP protocol? There have been many implementations to do OWD over the years (Surveyor, Ripe…) The real problem is interoperability. The solution is standards. 11/18/2018

OWAMP Protocol Now possible due to growing availability of good time sources Wide deployment of “open” servers could allow measurement of one-way delay to become as commonplace as measurement of RTT using ICMP tools such as ping. Current Draft: http://www.ietf.org/internet-drafts/draft-ietf-ippm-owdp-07.txt Sample implementation available 11/18/2018

OWAMP Control protocol Supports authentication and authorization (encryption possible) Used to request tests Used to start/stop tests Used to retrieve results 11/18/2018

OWAMP Test protocol Endpoint controlled port numbers Extremely configurable send schedule Configurable packet sizes Packets can be “clear”, “authenticated”, or “Encrypted” Provisions for dealing with partial session results 11/18/2018

Sample Implementation Applications owampd daemon owping client Built upon protocol abstraction library Supports one-off applications Allows authentication/policy hooks to easily be incorporated 11/18/2018

Functionality (owping client) owping client application communicates with the “other” endpoint of the test Communication can be “open”, “authenticated”, or “encrypted” Requests include a full parameterization of the test OWD tests can be in either direction Supports the setup of many tests concurrently Supports the buffering of results on the server for later retrieval 11/18/2018

Functionality (owampd) Accepts requests for OWD tests including start time and parameters for test Responds with accepted/denied Tests are formally started with a StartSessions message from the client. (start times in the past are adjusted to “current time”) Runs tests Sessions “toward” the server are saved for retrieval Can add a timeout so that “start session” message must be received within a given timeout to thwart DOS 11/18/2018

Resource Allocation Model Spheres of control Is the basic parameterization of the requested test allowed? Does the owampd have enough resources to allow test? Does this host have enough resources? Does this <higher level…> have enough resources? 11/18/2018

Resource Allocation (owampd) Each connection is “classified” (authentication) Each classification is associated with a set of hierarchical limits owampd.limits (no time dependant dimension to resource allocation in owampd) 11/18/2018

Architecture 11/18/2018

Specific difficulties Time: Operational issues predominate Determining an accurate timestamp “error” is in many ways more difficult than getting a “very good” timestamp Working as an “open” server requires UTC time source (For predefined test peers, other options available) Firewalls: Port filter trade-off Administrators like pre-defined port numbers Vendor manufactures would probably like to “prioritize” test traffic 11/18/2018

Future Steps Administrator specified port ranges for “test” traffic Support “partial results” protocol extensions Open source development 11/18/2018

Availability http://e2epi.internet2.edu/owamp/ Currently available Mail lists: owamp-users@internet2.edu owamp-announce@internet2.edu https://mail.internet2.edu/wws/lists/engineering 11/18/2018

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.