Presentation is loading. Please wait.

Presentation is loading. Please wait.

RESOLVING IP ALIASES USING DISTRIBUTED SYSTEMS

Published byElvira Kopp Modified over 6 years ago

Similar presentations

Presentation on theme: "RESOLVING IP ALIASES USING DISTRIBUTED SYSTEMS"— Presentation transcript:

1 RESOLVING IP ALIASES USING DISTRIBUTED SYSTEMS

2 Internet Topology Mapping Challenges Related Works Intended Works
PRESENTATION CONTENT Introduction Internet Topology Mapping Challenges Related Works Intended Works Conclusion

3

4 WHY MAPPING THE INTERNET?
INTRODUCTION WHY MAPPING THE INTERNET? Studying the Internet Detecting problems Studying virus spread

5 HOW IS INTERNET MEASURED
Traceroute Time To Live (TTL) IPA IPB IPC IPD Vantage Point Destination TTL=4 TTL=3 TTL=1 TTL=2 A B C D S

6 TRACEROUTES Archipelago (Ark) RIPE MLAB IPlane

7 CHALLENGES

8 CHALLENGES Load Balancing Unresponsive Routers IP Aliases NAT Boxes

9 Per destination Per packet Random Paris traceroute Y D A B C
LOAD BALANCING Per destination Per packet Random Paris traceroute Y: “time exceeded” Dest = D TTL = 2 Y D A B: “time exceeded” Dest = D TTL = 1 B C

10 UNRESPONSIVE ROUTERS

11 Routers have multiple interfaces Each interface has its own IP address
IP ALIASES Routers have multiple interfaces Each interface has its own IP address

12 Multiple routers can use one IP address IPv4 running out
NAT BOXES Multiple routers can use one IP address IPv4 running out Internal Policies

13 RELATED WORKS

14 RELATED WORKS Iffinder & Mercator Ally RadarGun Midar APAR Kapar

15 IFFINDER AND MERCATOR Fingerprint method
Sending UDP packets to unused port number of routers Receive ICMP PORT UNREACHABLE message from routers Messages contain IP address of the source (router) Does the probing address match the address in the message?

16 ALLY Another fingerprint method
Uses IP IDs (16-bit number stored in the IP ID field in IP header) of routers Sends messages to two or more alias candidates Inspects the response messages Problems (false negatives) Sometimes routers don’t send messages back Some routers increment IP ID’s very fast Some routers don't increment IP ID’s Some routers use different IP IDs for different interfaces O(n^2)

17 RADARGUN 30 probes in time limits for each IP, O(n)
Saves timestamps and IP ID values of response and inspects them Ignore if receive response from less than 25% of the 30 probes all IP IDs of particular router is either zero or the same value time series is nonlinear (counter advancing too quickly or generates random values) If two addresses share an IP ID counter, then their time series should have nearby IP ID values when overlapping in time

18 MIDAR Same ignoring conditions with RadarGun
MONOTONIC ID-BASED ALIAS RESOLUTION MIDAR Same ignoring conditions with RadarGun Threshold higher than RadarGun Monotonic Bounds Test MBT checks that two time series A and B meet the monotonicity requirement by individually checking that each sample of B meets the monotonicity requirement with respect to the samples of A, and vice versa

19 APAR Analytical alias resolution
ANALYTICAL AND PROBE-BASED ALIAS RESOLVER APAR Analytical alias resolution Analyzing IP addresses in traces to identify candidate subnets Resolving IP aliases depending on the subnets inferred

20 Nodes in the same subnet should appear one hop away from each other
APAR CONTINUED Rules Accuracy Nodes in the same subnet should appear one hop away from each other Completeness Ignore candidate subnets with less than half of IPs found Processing Order Processing priority is given to subnets with more path traces No loops Common Neighbors Distance (candidate aliases should be at same distance from vantage points)

21 Trace ( h1:h4 ) - a b q m g Trace ( h2:h1 ) - c d o a Trace ( h3:h1 ) - e f k o a

22 KAPAR Optimized version of APAR
Avoided storing the complete set of paths in memory Identifies /24 or bigger subnets in the same traces that cannot exist Gives unique ID to each trace, stores list of all IPs in the traces Works with sets of aliases obtained from other sources (results of fingerprints) Uses stricter subnet formation (does probes for IPs not found in AS) Uses stricter common neighbor condition

23 INTENTION

24 PRELIMINARIES AS (Autonomous Systems)
Within the Internet, an autonomous system (AS) is a collection of connected Internet Protocol (IP) routing prefixes under the control of one or more network operators on behalf of a single administrative entity or domain that presents a common, clearly defined routing policy to the Internet (Border Gateway Protocol) BGP Announcements

25 INTENTION Parse IPs in traces files
Detect which ASes they belong according to BGP announcement Collect and separate all traces that belong to the same ASes Create files for each ASes that store traces belonging to that particular AS (more than 50,000 files) Distribute all AS files among cluster nodes Process each AS file independently Use best IP Alias Resolution technique that fits our case

26 TECHNOLOGIES INTENDED TO BE USED
HIGHLY AVAILABLE, SCALABLE DISTRIBUTED SYSTEMS TECHNOLOGIES INTENDED TO BE USED

27 WHAT WE TALKED ABOUT CONCLUSION

28 MAPPING INTERNET Why mapping is important What challenges are there
What has been done What we intend to do

29

Download ppt "RESOLVING IP ALIASES USING DISTRIBUTED SYSTEMS"

Similar presentations

University of Nevada, Reno Router-level Internet Topology Mapping CS790 Presentation Modified from Dr. Gunes slides by Talha OZ.

University of Nevada, Reno Router-level Internet Topology Mapping CS790 Presentation Modified from Dr. Gunes slides by Talha OZ.
RIP V1 W.lilakiatsakun.

RIP V1 W.lilakiatsakun.
COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.

COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.
CSCI 4550/8556 Computer Networks Comer, Chapter 23: An Error Reporting Mechanism (ICMP)

CSCI 4550/8556 Computer Networks Comer, Chapter 23: An Error Reporting Mechanism (ICMP)
Internet Topology Mapping

Internet Topology Mapping
Internet Control Message Protocol (ICMP)

Internet Control Message Protocol (ICMP)
The Network Layer Chapter 5. The IP Protocol The IPv4 (Internet Protocol) header.

The Network Layer Chapter 5. The IP Protocol The IPv4 (Internet Protocol) header.
1 A survey of Internet Topology Discovery. 2 Outline Motivations Internet topology IP Interface Level Router Level AS Level PoP Level.

1 A survey of Internet Topology Discovery. 2 Outline Motivations Internet topology IP Interface Level Router Level AS Level PoP Level.
EEC-484/584 Computer Networks Lecture 10 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.

EEC-484/584 Computer Networks Lecture 10 Wenbing Zhao (Part of the slides are based on Drs. Kurose & Ross ’ s slides for their Computer.
CSE331: Introduction to Networks and Security Lecture 9 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 9 Fall 2002.
Heuristics for Internet Map Discovery R. Govindan, H. Tangmunarunkit Presented by Zach Schneirov.

Heuristics for Internet Map Discovery R. Govindan, H. Tangmunarunkit Presented by Zach Schneirov.
Measuring ISP topologies with Rocketfuel Ratul Mahajan Neil Spring David Wetherall University of Washington ACM SIGCOMM 2002.

Measuring ISP topologies with Rocketfuel Ratul Mahajan Neil Spring David Wetherall University of Washington ACM SIGCOMM 2002.
ROUTING PROTOCOLS Rizwan Rehman. Static routing  each router manually configured with a list of destinations and the next hop to reach those destinations.

ROUTING PROTOCOLS Rizwan Rehman. Static routing  each router manually configured with a list of destinations and the next hop to reach those destinations.
Lecture Week 3 Introduction to Dynamic Routing Protocol Routing Protocols and Concepts.

Lecture Week 3 Introduction to Dynamic Routing Protocol Routing Protocols and Concepts.
1 ICMP – Using Ping and Trace CCNA Semester 2. 2 172.30.1.20 172.30.1.25.

1 ICMP – Using Ping and Trace CCNA Semester
PALMTREE M. Engin TozalKamil Sarac The University of Texas at Dallas.

PALMTREE M. Engin TozalKamil Sarac The University of Texas at Dallas.
Computer Networks Layering and Routing Dina Katabi

Computer Networks Layering and Routing Dina Katabi
INTERNET TOPOLOGY MAPPING INTERNET MAPPING PROBING OVERHEAD MINIMIZATION  Intra- and inter-monitor redundancy reduction IBRAHIM ETHEM COSKUN University.

INTERNET TOPOLOGY MAPPING INTERNET MAPPING PROBING OVERHEAD MINIMIZATION  Intra- and inter-monitor redundancy reduction IBRAHIM ETHEM COSKUN University.
Internet Control Message Protocol ICMP. ICMP has two major purposes: –To report erroneous conditions –To diagnose network problems ICMP has two major.

Internet Control Message Protocol ICMP. ICMP has two major purposes: –To report erroneous conditions –To diagnose network problems ICMP has two major.
IP (Internet Protocol) –the network level protocol in the Internet. –Philosophy – minimum functionality in IP, smartness at the end system. –What does.

IP (Internet Protocol) –the network level protocol in the Internet. –Philosophy – minimum functionality in IP, smartness at the end system. –What does.

Similar presentations

Ads by Google