Presentation is loading. Please wait.

Presentation is loading. Please wait.

Some Lessons from History

Published by주실 부 Modified over 5 years ago

Similar presentations

Presentation on theme: "Some Lessons from History"— Presentation transcript:

1 Some Lessons from History
Ross Callon (retired) (& John Scudder, Juniper) IETF 102, Montreal July 2018

2 Lessons from History There have been major Internet issues
“Interesting” events in 1980’s, 90’s, 200x’s We didn’t always know what we were doing Some knowledge is in the mind of old folks I thought it would be wise to write some of these down Examples to follow I have tried to be fully vendor-neutral (eg, have not considered issues with proprietary protocols)

3 Arpanet Collapse (early 1980's)
A switch crashed and restarted Forwarded old packets in output queue Result: Old Route Update was propagated… While another update was in progress Old update was exactly 1/2 way around circular sequence space (a>b; b>c; c>a) Update A replaced Update B Update B replaced Update C Update C replaced Update A…

4 Arpanet Collapse (early 1980's)
Problem: Three updates chased each other around the Arpanet for hours Solution: All but two packet switches had to be manually shut down (today, with hundreds of routers per network, this could be quite unpleasant)

5 OSPF Flooding Issue (early 1990’s)
Stable Network, Well-connected core with single-homed stubs S.P. thought: I really care about reliability. Let's multi-home stubs…

6 OSPF Flooding Issue… Redundancy added: Result: Collapse What happened?

7 OSPF Flooding Issue… Core router had LSA to send out
Transmitted to all adjacent routers Stub routers all forwarded the LSA to their neighbors… LSAs

8 OSPF Issue… Result: Other core router was overwhelmed with LSAs forwarded by stub routers Lesson: Buffering and discarding duplicate LSAs is a difficult part of OSPF/IS-IS No one predicted this LSAs

9 Flooding Issue with IP over ATM
Similar issue occur with full mesh of circuits over an ATM core Mesh groups added to deal with this

10 Lost Hellos (~1992) Network stable for long periods of time
Multiple random changes in short order cause processor to fall behind Processor drops Hellos, adjacencies dropped More routing updates transmitted Widespread CPU congestion, more Hellos dropped Entire network disconnects Problem stabilizes, network recovers ~20 minutes later, many LSAs are refreshed, problem repeats

11 Lost Hellos… Solution This was known in early 90's But…
Optimize protocol processing Prioritize Hello processing Randomize timers (Apply to all routing protocols) This was known in early 90's But…

12 ATM Switches, mid 1990's ATM Network partitions, re-connects
New updates flooded between partitions CPUs congest, drop Hellos Adjacencies dropped, Network Disconnects ('Prioritize Hellos' wasn't well enough known)

13 IP Nets: DDoS Attacks Attacker Victim Attacker Attacker Attacker compromises many hosts, uses them to launch a coordinated attack Result: Link Congestion

14 Slammer, January 2003 Slammer worm Result
Very rapid propagation (doubles in ~8sec) Widespread congestion in IP networks worldwide Result Routers drop Hellos, Adjacencies dropped Network disconnects (not clear if result of link or CPU congestion) Issue getting management plane to respond

15 Solution: Prioritize Hellos + …
Give priority, guaranteed resources for real time protocol functions Prioritized queues Inside router, and on egress

16 Invalid Update Issue IS-IS (and OSPF) defined in mid 1980's
Smaller CPUs, which also forwarded packets  Original spec minimizes CPU strain In forwarding IS-IS updates: Check outer wrapper, forward, then check internals IS-IS & OSPF were widely deployed, interworked well IS-IS was solid for several years

17 Invalid Update Issue,… Bad interface trashes update
One in ~65,000 have checksum which passes Check outer wrapper (OK) Forward (OK) Check internals: Field out of range, Crash Result: Entire area crashes Many rtrs, multiple vendors

18 Distance Vector (RIP) Count to Infinity
“A two hops” “A one hop” “A three hops” “A two hops” A “A three hops” Distance vector count to infinity is fairly well known

19 Distance Vector (RIP) Count to Infinity
“A two hops” “A five hops” “A three hops” “A six hops” A “A four hops” Many fixes have been proposed, some deployed There was an interesting “augmenting” to this problem in the early NSFnet…

20 Delay Based Routing There have been multiple “interesting” experiments with routing based on real time (queuing) delay Early NSFnet “Fuzzball” routers had delay based “Hello” protocol in the core, mapped to RIP around the edges Delays vary dynamically, feeding unstable metrics into RIP This was not pretty An Arpanet variant used a linear combination of hop count and real time delay, carefully overdamped When delays grew (congestion), it became under-damped

21 Non-deterministic routing
”BGP wedgies” are a well-documented example. One set of policy configurations can result in multiple different stable forwarding topologies (“multistable”), depending on timing. Because policies are local, but forwarding is global. Much more detail in RFC 4264.

22 BGP “wedgies” simple example
C uses BGP community to tell X “use this link as a last resort only” When primary fails, all is well. But when primary is restored, forwarding topology has a new stable state. (And not what C intended.) Provider Y Provider Z primary Provider X backup Customer C

23 BGP MED Oscillation Actually, BGP isn’t even always multistable.
The BGP MED path attribute can cause persistent oscillations (see RFC 3345). How did this happen? BGP route selection assumes total order. MED gives only a partial order (MED is only comparable if source AS is the same). Protocol was designed to be correct with a flat IBGP MED wasn’t considered when designing route reflection, which does data hiding. Even if it had been, not clear there would have been a solution.

24 Optional Transitive BGP Attributes
Some BGP data is opaque to routers handling it, and can transit across them. Optional Transitive Path Attributes, most famously. When the data is handled by a router that does understand it, the router says “oh my goodness my peer has sent me a bad update it must be insane” and resets the session. But the peer didn’t misbehave. Some router far across the Internet did. This means one naughty router can cause a very large number of sessions to reset. Best intentions by protocol designers, but a terrible outcome. Fixed by RFC 7606 (keep the session up but delete the malformed routes, don’t assume the peer has gone insane).

25 BGP – a few lessons Simple protocols have complex behaviors when assembled into large systems. Extensible protocols lead to small extensions that have surprising consequences when they interact. If you serve several masters (protocol correctness, business reality) something has to give. Data that is sometimes opaque leads to results that are sometimes surprising. The worse-is-better design philosophy is powerful.

26 Other examples… Operator errors
Distribution of full BGP routes into IGP (IS-IS, OSPF, …) Scaling Signaling System 7 (SS7) failure Rumors of other issues And note, I have not mentioned multicast… Eg, “multicast grenades” are in principle possible

27 What To Do With This Information?
I had been intending to write an Internet Draft (to RFC) This isn’t going to happen (I am retired, and like it that way) Adding more detail and additional examples would be useful “Those who cannot remember the past are condemned to repeat it” Old saying (possibly originally by George Santayana) Today, repeating these failures is not acceptable We all depend upon a stable and reliable Internet Hopefully, this presentation can be helpful

Download ppt "Some Lessons from History"

Similar presentations

COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.

COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.
Cisco S3 C5 Routing Protocols. Network Design Characteristics Reliable – provides mechanisms for error detection and correction Connectivity – incorporate.

Cisco S3 C5 Routing Protocols. Network Design Characteristics Reliable – provides mechanisms for error detection and correction Connectivity – incorporate.
CS4550: Computer Networks II network layer basics 3 routing & congestion control.

CS4550: Computer Networks II network layer basics 3 routing & congestion control.
Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.

Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.
Dynamic Routing Scalable Infrastructure Workshop, AfNOG2008.

Dynamic Routing Scalable Infrastructure Workshop, AfNOG2008.
Courtesy: Nick McKeown, Stanford

Courtesy: Nick McKeown, Stanford
Best Practices for ISPs

Best Practices for ISPs
CMPE 150- Introduction to Computer Networks 1 CMPE 150 Fall 2005 Lecture 22 Introduction to Computer Networks.

CMPE 150- Introduction to Computer Networks 1 CMPE 150 Fall 2005 Lecture 22 Introduction to Computer Networks.
More on BGP Check out the links on politics: ICANN and net neutrality To read for next time Path selection big example Scaling of BGP.

More on BGP Check out the links on politics: ICANN and net neutrality To read for next time Path selection big example Scaling of BGP.
RFC 2453 RIP 2 (Routing Information Protocol) Daher Kaiss.

RFC 2453 RIP 2 (Routing Information Protocol) Daher Kaiss.
Routing and Routing Protocols

Routing and Routing Protocols
COS 420 Day 17. Agenda Finished Grading Individualized Projects Very large disparity in student grading No two students had same ranking for other students.

COS 420 Day 17. Agenda Finished Grading Individualized Projects Very large disparity in student grading No two students had same ranking for other students.
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network Considering the Advantages of Using BGP.

© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network Considering the Advantages of Using BGP.
Routing Algorithms (Ch5 of Computer Network by A. Tanenbaum)

Routing Algorithms (Ch5 of Computer Network by A. Tanenbaum)
Chapter 22 Network Layer: Delivery, Forwarding, and Routing

Chapter 22 Network Layer: Delivery, Forwarding, and Routing
1 Pertemuan 20 Teknik Routing Matakuliah: H0174/Jaringan Komputer Tahun: 2006 Versi: 1/0.

1 Pertemuan 20 Teknik Routing Matakuliah: H0174/Jaringan Komputer Tahun: 2006 Versi: 1/0.
Unicast Routing Protocols  A routing protocol is a combination of rules and procedures that lets routers in the internet inform each other of changes.

Unicast Routing Protocols  A routing protocol is a combination of rules and procedures that lets routers in the internet inform each other of changes.
Routing and Routing Protocols Routing Protocols Overview.

Routing and Routing Protocols Routing Protocols Overview.
1 Introducing Routing 1. Dynamic routing - information is learned from other routers, and routing protocols adjust routes automatically. 2. Static routing.

1 Introducing Routing 1. Dynamic routing - information is learned from other routers, and routing protocols adjust routes automatically. 2. Static routing.
M.Menelaou CCNA2 ROUTING. M.Menelaou ROUTING Routing is the process that a router uses to forward packets toward the destination network. A router makes.

M.Menelaou CCNA2 ROUTING. M.Menelaou ROUTING Routing is the process that a router uses to forward packets toward the destination network. A router makes.

Similar presentations

Ads by Google