Presentation is loading. Please wait.

Presentation is loading. Please wait.

PERISCOPE: Standardizing and Orchestrating Looking Glass Querying

Published byShanna Jones Modified over 6 years ago

Similar presentations

Presentation on theme: "PERISCOPE: Standardizing and Orchestrating Looking Glass Querying"— Presentation transcript:

1 PERISCOPE: Standardizing and Orchestrating Looking Glass Querying
Vasileios Giotsas 1

2 Purpose of this talk Inform the operational community about Periscope.
Solicit feedback: Details that we may have missed Ways to make Periscope more useful Technical insights, usage statistics, historical data … Encourage engagement and contributions 2 2

3 High-level goals and principles of Periscope
Periscope unifies the discovery and querying of Looking Glasses under a uniform API Respect resource limitations and preserve conservative query rates Provide transparency and accountability in Looking Glass querying. Be responsive and compliant to operators’ requests. 3 3

4 Advantages of LG measurements
LGs are among the few public measurement tools that provide direct interfaces to routers: Access to non-transitive BGP attributes (e.g. LocPref). Co-located BGP and traceroute/ping monitors. Vantage Points at colocation facilities, IXPs, datacenters. Vantage Points in ASes not covered by other platforms Motamedi, R., Rejaie, R., & Willinger, W. (2015). A Survey of Techniques for Internet Topology Discovery. Communications Surveys & Tutorials, IEEE, 17(2), A. Khan, T. Kwon, H.-c. Kim, & Y. Choi, “AS-level Topology Collection Through Looking Glass Servers,” in IMC ’13 4 4

5 Problems with LGs Lack of standardization and consistency:
Disparate interfaces and output formats Hard to discover and track: No centralized index of LGs, their locations and their capabilities High attrition rates: Hard to maintain an up-to-date list of LGs M. Stubbig, “Looking Glass API.” May 2016. 5 5

6 Problems with LGs Lack of standardization and consistency:
Disparate interfaces and output formats Hard to discover and track: No centralized index of LGs, their locations and their capabilities High attrition rates: Hard to maintain an up-to-date list of LGs Periscope implements a common querying scheme, indexing and data persistence features M. Stubbig, “Looking Glass API.” May 2016. 6 6

7 Periscope Workflow 7 7

8 Periscope Architecture
For each Periscope User the controller allocates a different cloud-hosted VM instance to execute the user queries. Each VM instance takes an IP address from the cloud operator’s address space. The controller implements throttling of query rates. 8 8

9 Periscope enforces per-user and per-LG query rate limits
Two limits control the rate of issued LG queries: User-specific: Each user can issue only 1 query per 5 minutes to the same LG. LG-specific: Each LG will execute up to 3 queries per minute from all the users. A query is allocated if neither limit is exceeded. Exponential back off when LGs respond with errors 9 9

10 Transparency and accountability
Periscope sets three custom HTTP headers in every request: "X-Request-Origin: periscope"  "X-Request-For:<user-ip>" "X-Request-Client:<gcloud OR aws OR ark>" Periscope IPs configured with reverse DNS records. Periscope assigns an LG client with a static IP address to each Periscope user to allow persistence identification. 10 10

11 Coverage of Periscope LGs
572 ASNs with 2,951 VPs. 77 countries, 492 cities. > 75% of VPs provide both traceroute and BGP. > 60% of LGs support IPv6. 11

12 The topology observed by LGs is largely complementary to other platforms
Queried 2,000 randomly selected IPs from each LG and from each VP available in RIPE Atlas and CAIDA’s Ark 12 12

13 Benefits Easier to discover and query new VPs for reverse paths
Easier policing of Looking Glass usage through an access-control layer Improved utilization and load distribution Avoid redundant measurements by archiving and making public historical measurement data. 13 13

14 Request for contributions
Please contribute feedback regarding: Per user query limits Global query limits Opt-in or opt-out requests Utilization statistics and archived queries. Funding, infrastructure support (VM instances, cloud computing credit). 14 14

15 Conclusion Periscope goals: Access request: periscope-info@caida.org
Unify LGs under a uniform API. Enforce per-user and global query limits. Provide Transparency and accountability Access request: Documentation: 15

16 BACKUP SLIDES

17 Support for multiple concurrent users requires multiple LG clients
Native LG querying Single-client Periscope Multi-client Periscope LG client LG client LG client Periscope Periscope LG So, normally looking glasses identify users based on their IP address or based on unique HTTP sessions and apply the rate limits per user. In Periscope we need to provide a similar setup for concurrent users. If we put multiple users behind the same looking glass client then we limit multiple users to the querying quota of a single user. To provide the same querying quotas as native access to LGs we need to use a different looking glass client per user which will have a different public IP address. So the question becomes how to provide a different LG client for each user. LGs use the users’ IP address to impose per-user querying quotas Putting multiple Periscope users behind the same IP causes all the users to share the quotas of a single user Using different client per user allows Periscope to provide the same querying quotas as native querying 17 17

18 LG Ingestion Workflow PeeringDB LG URLs Web Crawler HTML forms
Manual inspection needed Traceroute.org No LG templates Automatic configuration extraction Successful mapping Yes LG attributers            Health              checker 18 18

19 LG Ingestion Workflow Filters-out dead URLs & extracts HTML forms
PeeringDB HTML forms LG URLs Web Crawler Manual inspection needed Filters-out dead URLs & extracts HTML forms Traceroute.org No LG templates Automatic configuration extraction Successful mapping Yes LG attributers            Health                checker 19 19

20 LG Ingestion Workflow PeeringDB HTML forms LG URLs Web Crawler Manual inspection needed Traceroute.org No LG templates Automatic configuration extraction Successful mapping Yes Automatically extracted LG specifications used to interpret API calls to LG queries LG attributers            Health              checker 20 20

21 Load Distribution among LGs
AS3356 (High query load) AS680 (Low query load) 21

22 Load Distribution among Platforms
AS680 (RIPE Atlas probe) AS680 (Looking Glass) 22

23 Case study: ARTEMIS G. Chaviaras et al. ARTEMIS: Real-Time Detection and Automatic Mitigation for BGP Prefix Hijacking. ACM SIGCOMM 2016 23

Download ppt "PERISCOPE: Standardizing and Orchestrating Looking Glass Querying"

Similar presentations

Inktomi Confidential and Proprietary The Inktomi Climate Lab: An Integrated Environment for Analyzing and Simulating Customer Network Traffic Stephane.

Inktomi Confidential and Proprietary The Inktomi Climate Lab: An Integrated Environment for Analyzing and Simulating Customer Network Traffic Stephane.
Chapter 2. Slide 1 CULTURAL SUBJECT GATEWAYS CULTURAL SUBJECT GATEWAYS Subject Gateways  Started as links of lists  Continued as Web directories  Culminated.

Chapter 2. Slide 1 CULTURAL SUBJECT GATEWAYS CULTURAL SUBJECT GATEWAYS Subject Gateways  Started as links of lists  Continued as Web directories  Culminated.
Hydra Partners Meeting March 2012 Bill Branan DuraCloud Technical Lead.

Hydra Partners Meeting March 2012 Bill Branan DuraCloud Technical Lead.
Network Management Overview IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.

Network Management Overview IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.
1 A survey of Internet Topology Discovery. 2 Outline Motivations Internet topology IP Interface Level Router Level AS Level PoP Level.

1 A survey of Internet Topology Discovery. 2 Outline Motivations Internet topology IP Interface Level Router Level AS Level PoP Level.
Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica System architectures Updated: November 2014.

Asper School of Business University of Manitoba Systems Analysis & Design Instructor: Bob Travica System architectures Updated: November 2014.
Measuring ISP topologies with Rocketfuel Ratul Mahajan Neil Spring David Wetherall University of Washington ACM SIGCOMM 2002.

Measuring ISP topologies with Rocketfuel Ratul Mahajan Neil Spring David Wetherall University of Washington ACM SIGCOMM 2002.
1 Network Topology Measurement Yang Chen CS 8803.

1 Network Topology Measurement Yang Chen CS 8803.
H-1 Network Management Network management is the process of controlling a complex data network to maximize its efficiency and productivity The overall.

H-1 Network Management Network management is the process of controlling a complex data network to maximize its efficiency and productivity The overall.
1 Content Distribution Networks. 2 Replication Issues Request distribution: how to transparently distribute requests for content among replication servers.

1 Content Distribution Networks. 2 Replication Issues Request distribution: how to transparently distribute requests for content among replication servers.
Additional SugarCRM details for complete, functional, and portable deployment.

Additional SugarCRM details for complete, functional, and portable deployment.
Chapter 1: Introduction to Web Applications. This chapter gives an overview of the Internet, and where the World Wide Web fits in. It then outlines the.

Chapter 1: Introduction to Web Applications. This chapter gives an overview of the Internet, and where the World Wide Web fits in. It then outlines the.
1 APNIC Open Address Policy Meeting Special Interest Group Session March 2nd, Korea, Seoul.

1 APNIC Open Address Policy Meeting Special Interest Group Session March 2nd, Korea, Seoul.
Basic Concepts Of CITRIX XENAPP.

Basic Concepts Of CITRIX XENAPP.
Master Thesis Defense Jan Fiedler 04/17/98

Master Thesis Defense Jan Fiedler 04/17/98
 An Internet Protocol address (IP address) is a numerical label assigned to each device (e.g., computer, printer) participating in a computer network.

 An Internet Protocol address (IP address) is a numerical label assigned to each device (e.g., computer, printer) participating in a computer network.
Advanced Networking Lab. Given two IP addresses, the estimation algorithm for the path and latency between them is as follows: Step 1: Map IP addresses.

Advanced Networking Lab. Given two IP addresses, the estimation algorithm for the path and latency between them is as follows: Step 1: Map IP addresses.
The Inter-network is a big network of networks.. The five-layer networking model for the internet.

The Inter-network is a big network of networks.. The five-layer networking model for the internet.
Tony McGregor RIPE NCC Visiting Researcher The University of Waikato DAR Active measurement in the large.

Tony McGregor RIPE NCC Visiting Researcher The University of Waikato DAR Active measurement in the large.
1 Schema Registries Steven Hughes, Lou Reich, Dan Crichton NASA 21 October 2015.

1 Schema Registries Steven Hughes, Lou Reich, Dan Crichton NASA 21 October 2015.

Similar presentations

Ads by Google