Shadow MACs: Scalable Label- switching for Commodity Ethernet Author: Kanak Agarwal, John Carter, Eric Rozner and Colin Dixon Publisher: HotSDN 2014 Presenter:

Slides:

Advertisements

Similar presentations

Internetworking II: MPLS, Security, and Traffic Engineering

Advertisements

OpenFlow overview Joint Techs Baton Rouge. Classic Ethernet Originally a true broadcast medium Each end-system network interface card (NIC) received every.

Author : Martín Casado, Teemu Koponen, Scott Shenker, Amin Tootoonchian Publisher : Presenter : Pei-Hua Huang Date : 2013/10/02 Fabric: A Retrospective.

Scalable Flow-Based Networking with DIFANE 1 Minlan Yu Princeton University Joint work with Mike Freedman, Jennifer Rexford and Jia Wang.

1 Performance Improvement of Two-Dimensional Packet Classification by Filter Rephrasing Department of Computer Science and Information Engineering National.

Class 3: SDN Stack Theophilus Benson. Outline Background – Routing in ISP – Cloud Computing SDN application stack revisited Evolution of SDN – The end.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—1-1 MPLS Concepts Introducing Basic MPLS Concepts.

Cellular Core Network Architecture

Network Redundancy Multiple paths may exist between systems. Redundancy is not a requirement of a packet switching network. Redundancy was part of the.

OpenFlow-Based Server Load Balancing GoneWild Author : Richard Wang, Dana Butnariu, Jennifer Rexford Publisher : Hot-ICE'11 Proceedings of the 11th USENIX.

Packet Classification using Rule Caching Author: Nitesh B. Guinde, Roberto Rojas-Cessa, Sotirios G. Ziavras Publisher: IISA, 2013 Fourth International.

End-to-end resource management in DiffServ Networks –DiffServ focuses on singal domain –Users want end-to-end services –No consensus at this time –Two.

Packet Classification Using Multi-Iteration RFC Author: Chun-Hui Tsai, Hung-Mao Chu, Pi-Chung Wang Publisher: COMPSACW, 2013 IEEE 37th Annual (Computer.

CMPT 471 Networking II Address Resolution IPv4 ARP RARP 1© Janice Regan, 2012.

SI-DFA: Sub-expression Integrated Deterministic Finite Automata for Deep Packet Inspection Authors: Ayesha Khalid, Rajat Sen†, Anupam Chattopadhyay Publisher:

A Hybrid IP Lookup Architecture with Fast Updates Author : Layong Luo, Gaogang Xie, Yingke Xie, Laurent Mathy, Kavé Salamatian Conference: IEEE INFOCOM,

Deterministic Finite Automaton for Scalable Traffic Identification: the Power of Compressing by Range Authors: Rafael Antonello, Stenio Fernandes, Djamel.

Regular Expression Matching for Reconfigurable Packet Inspection Authors: Jo˜ao Bispo, Ioannis Sourdis, Jo˜ao M.P. Cardoso and Stamatis Vassiliadis Publisher:

MPLS Concepts Introducing Basic MPLS Concepts. Outline Overview What Are the Foundations of Traditional IP Routing? Basic MPLS Features Benefits of MPLS.

Network Virtualization in Multi-tenant Datacenters Author: VMware, UC Berkeley and ICSI Publisher: 11th USENIX Symposium on Networked Systems Design and.

Research on TCAM-based OpenFlow Switch Author: Fei Long, Zhigang Sun, Ziwen Zhang, Hui Chen, Longgen Liao Conference: 2012 International Conference on.

Memory-Efficient and Scalable Virtual Routers Using FPGA Department of Computer Science and Information Engineering, National Cheng Kung University, Tainan,

Early Detection of DDoS Attacks against SDN Controllers

OpenFlow MPLS and the Open Source Label Switched Router Department of Computer Science and Information Engineering, National Cheng Kung University, Tainan,

FlowTags: Enforcing Network-Wide Policies in the Presence of Dynamic Middlebox Actions Author: Seyed Kaveh Fayazbakhsh, Vyas Sekar, Minlan Yu and Jeffrey.

Updating Designed for Fast IP Lookup Author : Natasa Maksic, Zoran Chicha and Aleksandra Smiljani´c Conference: IEEE High Performance Switching and Routing.

TFA: A Tunable Finite Automaton for Regular Expression Matching Author: Yang Xu, Junchen Jiang, Rihua Wei, Yang Song and H. Jonathan Chao Publisher: ACM/IEEE.

Binary-tree-based high speed packet classification system on FPGA Author: Jingjiao Li*, Yong Chen*, Cholman HO**, Zhenlin Lu* Publisher: 2013 ICOIN Presenter:

Forwarding Programming in Protocol- Oblivious Instruction Set Author : Jingzhou Yu, Xiaozhong Wang, Jian Song, Yuanming Zheng, Haoyu Song Conference: 2014.

A Fast Regular Expression Matching Engine for NIDS Applying Prediction Scheme Author: Lei Jiang, Qiong Dai, Qiu Tang, Jianlong Tan and Binxing Fang Publisher:

Lossy Compression of Packet Classifiers Author: Ori Rottenstreich, J’anos Tapolcai Publisher: 2015 IEEE International Conference on Communications Presenter:

Packet Classification Using Dynamically Generated Decision Trees

GFlow: Towards GPU-based High- Performance Table Matching in OpenFlow Switches Author : Kun Qiu, Zhe Chen, Yang Chen, Jin Zhao, Xin Wang Publisher : Information.

LOP_RE: Range Encoding for Low Power Packet Classification Author: Xin He, Jorgen Peddersen and Sri Parameswaran Conference : IEEE 34th Conference on Local.

Stochastic Pre-Classification for SDN Data Plane Matching Author : Luke McHale, C. Jasson Casey, Paul V. Gratz, Alex Sprintson Conference: 2014 IEEE 22nd.

Multi-protocol Label Switching

Fabric: A Retrospective on Evolving SDN Presented by: Tarek Elgamal.

Hierarchical Hybrid Search Structure for High Performance Packet Classification Authors : O˜guzhan Erdem, Hoang Le, Viktor K. Prasanna Publisher : INFOCOM,

Atrium Router Project Proposal Subhas Mondal, Manoj Nair, Subhash Singh.

Deep Packet Inspection as a Service Author : Anat Bremler-Barr, Yotam Harchol, David Hay and Yaron Koral Conference: ACM 10th International Conference.

LightFlow : Speeding Up GPU-based Flow Switching and Facilitating Maintenance of Flow Table Author : Nobutaka Matsumoto and Michiaki Hayashi Conference:

Scalable Multi-match Packet Classification Using TCAM and SRAM Author: Yu-Chieh Cheng, Pi-Chung Wang Publisher: IEEE Transactions on Computers (2015) Presenter:

JA-trie: Entropy-Based Packet Classiﬁcation Author: Gianni Antichi, Christian Callegari, Andrew W. Moore, Stefano Giordano, Enrico Anastasi Conference.

Reorganized and Compact DFA for Efficient Regular Expression Matching

2018/4/23 Dynamic Load-balanced Path Optimization in SDN-based Data Center Networks Author: Yuan-Liang Lan , Kuochen Wang and Yi-Huai Hsu Presenter: Yi-Hsien.

Heitor Moraes, Marcos Vieira, Italo Cunha, Dorgival Guedes

Revisiting Ethernet: Plug-and-play made scalable and efficient

2018/6/26 An Energy-efficient TCAM-based Packet Classification with Decision-tree Mapping Author: Zhao Ruan, Xianfeng Li , Wenjun Li Publisher: 2013.

2018/11/19 Source Routing with Protocol-oblivious Forwarding to Enable Efficient e-Health Data Transfer Author: Shengru Li, Daoyun Hu, Wenjian Fang and.

Software Defined Networking

Parallel Processing Priority Trie-based IP Lookup Approach

2018/12/10 Energy Efficient SDN Commodity Switch based Practical Flow Forwarding Method Author: Amer AlGhadhban and Basem Shihada Publisher: 2016 IEEE/IFIP.

2018/12/29 A Novel Approach for Prefix Minimization using Ternary trie (PMTT) for Packet Classification Author: Sanchita Saha Ray, Abhishek Chatterjee,

Implementing an OpenFlow Switch on the NetFPGA platform

Virtual TCAM for Data Center Switches

Scalable Multi-Match Packet Classification Using TCAM and SRAM

2019/5/2 Using Path Label Routing in Wide Area Software-Defined Networks with OpenFlow ICNP = International Conference on Network Protocols Presenter：Hung-Yen.

2019/5/13 A Weighted ECMP Load Balancing Scheme for Data Centers Using P4 Switches Presenter：Hung-Yen Wang Authors：Peng Wang, George Trimponias, Hong Xu,

SDN-Guard: DoS Attacks Mitigation in SDN Networks

Reference Router on NetFPGA 1G

Fast Network Congestion Detection And Avoidance Using P4

OpenSec：Policy-Based Security Using Software-Defined Networking

Design principles for packet parsers

A Hybrid IP Lookup Architecture with Fast Updates

2019/7/26 OpenFlow-Enabled User Traffic Profiling in Campus Software Defined Networks Presenter: Wei-Li,Wang Date: 2016/1/4 Author: Taimur Bakhshi and.

2019/10/9 A Weighted ECMP Load Balancing Scheme for Data Centers Using P4 Switches Presenter：Hung-Yen Wang Authors：Jin-Li Ye, Yu-Huang Chu, Chien Chen.

Authors: Ding-Yuan Lee, Ching-Che Wang, An-Yeu Wu Publisher: 2019 VLSI

MEET-IP Memory and Energy Efficient TCAM-based IP Lookup

Towards TCAM-based Scalable Virtual Routers

Packet Classification Using Binary Content Addressable Memory

Presentation transcript:

Shadow MACs: Scalable Label- switching for Commodity Ethernet Author: Kanak Agarwal, John Carter, Eric Rozner and Colin Dixon Publisher: HotSDN 2014 Presenter: Yi-Tsung Huang Date: 2015/12/02 Department of Computer Science and Information Engineering National Cheng Kung University, Taiwan R.O.C.

Introduction Issues around consistent updates and rule space exhaustion tend to only arise at scale. Encoding fine-grained paths as labels allows all forwarding decisions to be made using fixed-width, exact-match lookups, which map easily into large simple hardware tables without requiring large expensive TCAM tables. National Cheng Kung University CSIE Computer & Internet Architecture Lab 2

Introduction Label switching can be done using MPLS, but MPLS support in commodity switches is limited. We explore an alternative scalable label-switching architecture that can be implemented on existing commodity hard-ware by using virtual MAC addresses, which we call shadow MACs, as forwarding labels. National Cheng Kung University CSIE Computer & Internet Architecture Lab 3

Design-Control Plane The control plane of our label-based forwarding mechanism is implemented via extensions to a SDN controller. We modify the controller to export an install route API to install a shadow-MAC-based label- routed path to a destination. National Cheng Kung University CSIE Computer & Internet Architecture Lab 4

Design-Control Plane Alternatively, invoking applications can pre- install multiple paths to a host and activate them later for a particular flow. SDN applications can activate one of the pre- installed routes for a flow by making an API call to the select route interface and specifying the source and flow identifier along with the route identifier for ingress switch match. National Cheng Kung University CSIE Computer & Internet Architecture Lab 5

Design-Core Forwarding The key idea in our proposal is to treat each packet’s destination MAC address field as an opaque forwarding label. The SDN controller allocates a unique shadow MAC address for each path in the network. It then installs rules that match on the shadow MAC address in the L2 forwarding table of each switch along the path. National Cheng Kung University CSIE Computer & Internet Architecture Lab 6

Design-Edge Forwarding Once the core is configured to forward packets based on shadow MACs, all that remains is to steer traffic in and out of MAC-label-switched paths at the source and destination edges. We have implemented two schemes to accomplish these goals: MAC address rewriting ARP spoofing. National Cheng Kung University CSIE Computer & Internet Architecture Lab 7

Design-Edge Forwarding We install a rule in the ingress switch that matches flow-specific fields and rewrites the destination MAC address to the shadow MAC address for the desired path. At the egress switch, we install a rule that rewrites the destination MAC to the destination host’s real MAC address. National Cheng Kung University CSIE Computer & Internet Architecture Lab 8

Design-Edge Forwarding National Cheng Kung University CSIE Computer & Internet Architecture Lab 9

Design-Edge Forwarding The SDN controller acts as an ARP proxy and handles all ARP request from hosts. When a path is activated between source and destination, the SDN controller sends a gratuitous ARP response to the source identifying the shadow MAC as the MAC address corresponding to the destination. National Cheng Kung University CSIE Computer & Internet Architecture Lab 10

Design-Edge Forwarding National Cheng Kung University CSIE Computer & Internet Architecture Lab 11

Key Benefits-Minimal TCAM Usage It requires little or no scarce TCAM resources to implement fine-grained (e.g., per-flow) forwarding. National Cheng Kung University CSIE Computer & Internet Architecture Lab 12

Key Benefits-Consistent Updates SDN controller can pre-install new rules in the core and egress switches along the new path. When the new path is fully installed, the SDN controller updates the route atomically by installing a new rewrite rule in the ingress switch National Cheng Kung University CSIE Computer & Internet Architecture Lab 13

Key Benefits-End-to-End Multipathing SDN controller can allocate multiple distinct paths (shadow MACs) per destination. OVS can allocate flows in round-robin fashion National Cheng Kung University CSIE Computer & Internet Architecture Lab 14

Key Benefits-Fast Switch-over Our API allows SDN applications to pre-install multiple paths for a given flow, each of which uses a distinct shadow MAC address. After installation, only one is activated, while the remainder lie dormant until needed. To activate a new path, the SDN controller need only replace the rewrite rule in the ingress switch National Cheng Kung University CSIE Computer & Internet Architecture Lab 15

Key Benefits-Fast Switch-over National Cheng Kung University CSIE Computer & Internet Architecture Lab 16

Key Benefits-Fast Switch-over National Cheng Kung University CSIE Computer & Internet Architecture Lab 17

Key Benefits-Fast Switch-over National Cheng Kung University CSIE Computer & Internet Architecture Lab 18

Evaluation National Cheng Kung University CSIE Computer & Internet Architecture Lab 19

Evaluation We compare two mechanisms to change routes. Shadow MAC rerouting Traditional OpenFlow rerouting uses Floodlight’s Static Flow Pusher We consider a packet to be incorrectly routed if it traverses part of more than one route. National Cheng Kung University CSIE Computer & Internet Architecture Lab 20

Evaluation National Cheng Kung University CSIE Computer & Internet Architecture Lab 21

Evaluation National Cheng Kung University CSIE Computer & Internet Architecture Lab 22