Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hybrid network traffic engineering system (HNTES)

Published byJohannes Elstelä Modified over 5 years ago

Similar presentations

Presentation on theme: "Hybrid network traffic engineering system (HNTES)"— Presentation transcript:

1 Hybrid network traffic engineering system (HNTES)
Zhenzhen Yan, Chris Tracy, Malathi Veeraraghavan University of Virginia and ESnet April 23, 2012 Project web site: Thanks to the US DOE ASCR program office and NSF for UVA grants DE-SC002350, DE-SC , OCI and ESnet grant DE-AC02-05CH11231

2 Problem statement A hybrid network supports both IP-routed and circuit services on: Separate networks as in ESnet4, or An integrated network as in ESnet5 A hybrid network traffic engineering system (HNTES) is designed to move science data flows off the IP-routed network to circuits Problem statement: Design HNTES The “What” question

3 Two reasons for using circuits
Offer scientists rate-guaranteed connectivity Isolate science flows from general-purpose flows Reason Circuit scope Rate-guaranteed service Science flow isolation End-to-end (inter-domain) Per provider (intra-domain) The “Why” question

4 Rest of the slides: Focus on the “How” question Usage within domains for science flow isolation
Customer networks Peer/transit provider networks HNTES: Hybrid Network Traffic Engineering System Customer networks B Customer networks IDC HNTES A C Provider network E D IP router/ MPLS LSR Peer/transit provider networks Customer networks Customer networks IP-routed paths MPLS LSPs Policy based routes added in ingress routers to move science flows to MPLS LSPs

5 HNTES Design questions
What type of flows should be redirected off the IP-routed network? What are key components of a hybrid network traffic engineering system? Prove/disprove underlying hypothesis of design through ESnet NetFlow data analysis

6 First considered these options
Dimensions size (bytes): elephant and mice rate: cheetah and snail duration: tortoise and dragonfly burstiness: porcupine and stingray Kun-chan Lan and John Heidemann, A measurement study of correlations of Internet flow characteristics. ACM Comput. Netw. 50, 1 (January 2006),

7 working answer alpha flows should be redirected what are alpha flows?
flows with high sending rates in any part of the lifetime number of bytes in any T-sec interval  H bytes if H = 1 GB and T = 60 sec throughput exceeds 133 Mbps alpha flows are responsible for burstiness caused by transfers of large files over high bottleneck-link rate paths who generates this type of flows? scientists who move large sized datasets invest in high-end computers, high-speed disks, parallel file systems, and high access link speeds S. Sarvotham, R. Riedi, and R. Baraniuk, “Connection-level analysis and modeling of nework traffic,” in ACM SIGCOMM Internet Measurement Workshop 2001, November 2001, pp. 99–104.

8 Design questions What type of flows should be redirected off the IP-routed network? What are key components of a hybrid network traffic engineering system? Prove/disprove underlying hypothesis of design through ESnet NetFlow data analysis

9 Components of HNTES HNTES FAM IDCIM RCIM FAM: Flow Analysis Module
Customer networks Peer/transit provider networks FAM Customer networks IDCIM RCIM B IDC HNTES A C Provider network E D Peer/transit provider networks Customer networks Customer networks FAM: Flow Analysis Module IDCIM: IDC Interface Module RCIM: Router Control Interface Module

10 Three tasks executed by HNTES
alpha flow identification Circuit Provisioning Policy Based Route (PBR) configuration at ingress/egress routers Offline flow analysis Online flow analysis End-host assisted Rate-unlimited MPLS LSPs initiated offline Rate-unlimited MPLS LSPs initiated online Rate-specified MPLS LSPs initiated online Set offline Set online 1. FAM: Flow Analysis Module 2. IDCIM: IDC Interface Module online: upon flow arrival offline: periodic process (e.g., every hour or every day) 3. RCIM: Router Control Interface Module

11 alpha flow identification
Possible online methods Method 1: Today’s routers support packet classification into flows and have the ability to measure rates (for rate policing) But there is no mechanism for them to inform a management system when high-rate flows arrive Method 2: NetFlow: routers group packets into flows and send reports to a collector (files created at collector every 5 mins) Raw netflow packets from the router can be collected by a host (or via a flow-fanout from current collector) New flow information can be obtained every 60 sec (active timeout interval) Identify high rate flows

12 online alpha flow identification methods contd.
Port mirror packets to external server and run algorithms to detect high-rate flows. Cons: does not scale with link rate May need many external servers Deployment seems impractical: need a cluster of servers per ESnet router

13 Proposed solutions Solution 1
Strictly offline Analyze NetFlow data on a daily basis and identify source/destination hosts (/32) or subnets (/24) that are capable of sourcing/sinking data at high rates  prefix flows Solution 2: Hybrid (NetFlow and Mirroring) Combine offline scheme for /32 and /24 prefix flow ID, with Online scheme NetFlow with 10 sec reporting, OR 0-length packet mirroring to external server for online detection of raw IP flows (5-tuple) whose IDs match offline configured prefix flow IDs

14 HNTES three tasks (revisit)
alpha flow identification Circuit Provisioning Policy Based Route (PBR) configuration at ingress/egress routers Offline flow analysis Online flow analysis End-host assisted Rate-unlimited MPLS LSPs initiated offline Rate-unlimited MPLS LSPs initiated online Rate-specified MPLS LSPs initiated online Set offline Set online 1. 2. online: upon flow arrival offline: periodic process (e.g., every hour or every day) 3.

15 Circuit Provisioning Circuits
rate-specified per-alpha flow specific circuits are desirable if goal is rate guarantee but if circuits are only intra-domain with the purpose of isolating science flows, it is sufficient to configure routers to redirect multiple alpha flows to same rate-unlimited LSP set up such LSPs a priori between all ingress-egress router pairs of provider’s network that have seen alpha flows based on offline analysis

16 Three tasks executed by HNTES
alpha flow identification Circuit Provisioning Policy Based Route (PBR) configuration at ingress/egress routers Offline flow analysis Online flow analysis End-host assisted Rate-unlimited MPLS LSPs initiated offline Rate-unlimited MPLS LSPs initiated online Rate-specified MPLS LSPs initiated online Set offline Set online 1. 2. online: upon flow arrival offline: periodic process (e.g., every hour or every day) 3.

17 PBR configuration Online: Offline:
Commit operation in JunOS can take on the order of minutes based on the size of the configuration file Sub-second configuration times for OpenFlow switches? Offline: Cannot configure routes for 5 tuple raw IP flows as ports are ephemeral Configuring PBRs for /32 or /24 prefix flows implies some beta flows will also be redirected to the science LSPs

18 HNTES design solutions
All offline solution (discussed next) Hybrid online-offline solution hybrid alpha flow identification offline circuit provisioning online PBR configuration for 5-tuple raw IP flows Pros/cons of hybrid scheme: Pro: beta flows will not be redirected to VCs (avoid alpha flow effects) Con: some alpha flows will end before redirection

19 Review of current (all offline) HNTES design
Flow analysis module analyzes NetFlow reports on a daily basis (offline) Prefix flow identifiers determined for subnets (/24) or hosts (/32) that can source-sink alpha flows Pairwise rate-unlimited LSPs provisioned between ingress-egress routers for which prefix flows were identified PBRs set at routers (both directions) for prefix flow redirection Entries aged out of PBR table to keep it from growing too large

20 Design questions What type of flows should be redirected off the IP-routed network? What are key components of a hybrid network traffic engineering system? Prove/disprove underlying hypothesis of design through ESnet NetFlow data analysis

21 Hypothesis Key assumption in offline solution:
Computing systems that run the high-speed file transfer applications will likely have static public IP addresses, which means that prefix flow identifier based offline mechanisms will be effective in redirecting alpha flows. Flows with previously unseen prefix flow identifiers will appear but such occurrences will be relatively rare

22 NetFlow data analysis NetFlow data over 7 months (May-Nov 2011) collected at ESnet site PE router Three steps UVA wrote R analysis and anonymization programs ESnet executed on NetFlow data Joint analysis of results

23 alpha flow identification algorithm
alpha flows: high rate flows NetFlow reports: subset where bytes sent in 1 minute > H bytes (1 GB) Raw IP flows: 5 tuple based aggregation of NetFlow reports on a daily basis Prefix flows: /32 and /24 src/dst IP aggregation on a daily basis Age out PBR entries if for “A” aggregation intervals, no raw IP flows corresponding to a prefix flow appear

24 Analyses Analyses: Characterize alpha flows
22041 raw IP flows 125 (/24) prefix flows 1548 (/32) prefix flows Study effectiveness of offline solution

25 Characteristics of alpha flows
Both alpha-bytes and alpha-time peaked on day 89 2.65 TB 9.3 hours Number of raw IP flows in a day: One prefix flow had 1240 constituent alpha raw IP flows

26 Number of new prefix flows daily
For most days only 0 or 1 new prefix flow. When new collaborations start or new data transfer nodes are brought online, new prefix flows will occur

27 Percent of alpha bytes that would have been redirected
All 7 months: /24 Aging parameter /24 /32 7 82% 67% 14 87% 73% 30 91% never 92% 86% Aging parameter /32 When new collaborations start or new data transfer nodes are brought online, new prefix flows will occur, and so matched rates will drop

28 Effect of aging parameter on PBR table size
For operational reasons, and forwarding latency, this table should be kept small With aging parameter =30, curve is almost flat Aging parameter

29 Full mesh of LSPs required or just a few?
Number of super-prefix flows (ingress-egress router based aggregation of prefix flows) per month: Month May Jun July Aug Sep Oct Nov total 13 15 16 18 repeated new 2 1 ZZ Represents number of LSPs needed from ESnet site PE router to indicated numbers of egress routers

30 Conclusions From current analysis: Hypothesis is true
Offline design appears feasible IP addresses of sources that generate alpha flows relatively stable Most alpha bytes would have been redirected in the analyzed data set /24 seems better option than /32 30 days aging parameter seems best: tradeoff of PBR size and effectiveness

31 Ongoing work NetFlow analyses ANI testbed experiments
other routers’ NetFlow data quantify redirected beta flow bytes which will experience competition with alpha flows utilization of MPLS LSPs multiple simultaneous alpha flows on same LSPs match with known data doors ANI testbed experiments Out of order packets when PBR added OpenFlow Rate-unlimited LSPs Other HNTES designs Hybrid design End-application assisted design (Lambdastation, Terapaths)

Download ppt "Hybrid network traffic engineering system (HNTES)"

Similar presentations

Traffic Dynamics at a Commercial Backbone POP Nina Taft Sprint ATL Co-authors: Supratik Bhattacharyya, Jorjeta Jetcheva, Christophe Diot.

Traffic Dynamics at a Commercial Backbone POP Nina Taft Sprint ATL Co-authors: Supratik Bhattacharyya, Jorjeta Jetcheva, Christophe Diot.
Internetworking II: MPLS, Security, and Traffic Engineering

Internetworking II: MPLS, Security, and Traffic Engineering
Introduction to IPv6 Presented by: Minal Mishra. Agenda IP Network Addressing IP Network Addressing Classful IP addressing Classful IP addressing Techniques.

Introduction to IPv6 Presented by: Minal Mishra. Agenda IP Network Addressing IP Network Addressing Classful IP addressing Classful IP addressing Techniques.
1 Chin Guok ESnet Network Engineer David Robertson DSD Computer Software Engineer Lawrence Berkeley National Laboratory.

1 Chin Guok ESnet Network Engineer David Robertson DSD Computer Software Engineer Lawrence Berkeley National Laboratory.
Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung(1203584897) SriramGopinath(1203800749)

Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung( ) SriramGopinath( )
Oct 26, 2004CS573: Network Protocols and Standards1 IP: Routing and Subnetting Network Protocols and Standards Autumn 2004-2005.

Oct 26, 2004CS573: Network Protocols and Standards1 IP: Routing and Subnetting Network Protocols and Standards Autumn
Oct 21, 2004CS573: Network Protocols and Standards1 IP: Addressing, ARP, Routing Network Protocols and Standards Autumn 2004-2005.

Oct 21, 2004CS573: Network Protocols and Standards1 IP: Addressing, ARP, Routing Network Protocols and Standards Autumn
Shivkumar KalyanaramanRensselaer Q1-1 ECSE-6600: Internet Protocols Quiz 1 Time: 60 min (strictly enforced) Points: 50 YOUR NAME: Be brief, but DO NOT.

Shivkumar KalyanaramanRensselaer Q1-1 ECSE-6600: Internet Protocols Quiz 1 Time: 60 min (strictly enforced) Points: 50 YOUR NAME: Be brief, but DO NOT.
A General approach to MPLS Path Protection using Segments Ashish Gupta Ashish Gupta.

A General approach to MPLS Path Protection using Segments Ashish Gupta Ashish Gupta.
MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,

MPLS L3 and L2 VPNs Virtual Private Network –Connect sites of a customer over a public infrastructure Requires: –Isolation of traffic Terminology –PE,
Routing of Outgoing Packets with MP-TCP draft-handley-mptcp-routing-00 Mark Handley Costin Raiciu Marcelo Bagnulo.

Routing of Outgoing Packets with MP-TCP draft-handley-mptcp-routing-00 Mark Handley Costin Raiciu Marcelo Bagnulo.
A Virtual Circuit Multicast Transport Protocol (VCMTP) for Scientific Data Distribution Jie Li and Malathi Veeraraghavan University of Virginia Steve Emmerson.

A Virtual Circuit Multicast Transport Protocol (VCMTP) for Scientific Data Distribution Jie Li and Malathi Veeraraghavan University of Virginia Steve Emmerson.
Net Optics Confidential and Proprietary Net Optics appTap Intelligent Access and Monitoring Architecture Solutions.

Net Optics Confidential and Proprietary Net Optics appTap Intelligent Access and Monitoring Architecture Solutions.
1 Multi-Protocol Label Switching (MPLS). 2 MPLS Overview A forwarding scheme designed to speed up IP packet forwarding (RFC 3031) Idea: use a fixed length.

1 Multi-Protocol Label Switching (MPLS). 2 MPLS Overview A forwarding scheme designed to speed up IP packet forwarding (RFC 3031) Idea: use a fixed length.
Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung(1203584897) Sriram Gopinath(1203800749)

Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung( ) Sriram Gopinath( )
NetFlow: Digging Flows Out of the Traffic Evandro de Souza ESnet ESnet Site Coordinating Committee Meeting Columbus/OH – July/2004.

NetFlow: Digging Flows Out of the Traffic Evandro de Souza ESnet ESnet Site Coordinating Committee Meeting Columbus/OH – July/2004.
1 Hybrid network traffic engineering system (HNTES) Zhenzhen Yan, Chris Tracy, Malathi Veeraraghavan University of Virginia and ESnet April 23, 2012

1 Hybrid network traffic engineering system (HNTES) Zhenzhen Yan, Chris Tracy, Malathi Veeraraghavan University of Virginia and ESnet April 23, 2012
Review: –Ethernet What is the MAC protocol in Ethernet? –CSMA/CD –Binary exponential backoff Is there any relationship between the minimum frame size and.

Review: –Ethernet What is the MAC protocol in Ethernet? –CSMA/CD –Binary exponential backoff Is there any relationship between the minimum frame size and.
TeraPaths TeraPaths: Establishing End-to-End QoS Paths through L2 and L3 WAN Connections Presented by Presented by Dimitrios Katramatos, BNL Dimitrios.

TeraPaths TeraPaths: Establishing End-to-End QoS Paths through L2 and L3 WAN Connections Presented by Presented by Dimitrios Katramatos, BNL Dimitrios.
1 An update on HNTES Thanks to the US DOE ASCR for grants DE-SC0002350 and DE- SC0007341 (UVA), and for DE-AC02- 05CH11231 (ESnet) Thanks to Brian Tierney,

1 An update on HNTES Thanks to the US DOE ASCR for grants DE-SC and DE- SC (UVA), and for DE-AC02- 05CH11231 (ESnet) Thanks to Brian Tierney,

Similar presentations

Ads by Google