Presentation is loading. Please wait.

Presentation is loading. Please wait.

Neighbor-Specific BGP (NS-BGP): More Flexible Routing Policies While Improving Global Stability Yi Wang, Jennifer Rexford Princeton University Michael.

Published byLynne Ross Modified over 9 years ago

Similar presentations

Presentation on theme: "Neighbor-Specific BGP (NS-BGP): More Flexible Routing Policies While Improving Global Stability Yi Wang, Jennifer Rexford Princeton University Michael."— Presentation transcript:

1 Neighbor-Specific BGP (NS-BGP): More Flexible Routing Policies While Improving Global Stability Yi Wang, Jennifer Rexford Princeton University Michael Schapira Yale University & UC Berkeley

2 A Case For Customized Route Selection Large ISPs usually have multiple paths to reach the same destination Different paths have different properties Different neighbors may prefer different routes 2 Bank VoIP provider School Most secure Shortest latency Lowest cost

3 Such Flexibility Is Infeasible Today BGP: The routing protocol (“glue”) of the Internet – An ISP configures BGP to realize its routing policies BGP uses a restrictive, “one-route-fits-all” model – Every router selects one best route (per destination) for all neighbors 3

4 BGP’s Node-based Route Selection In conventional BGP, a node (ISP or router) has one ranking function (that reflects its routing policy) 4

5 A New Model: Neighbor-Specific BGP (NS-BGP) Change the way routes are selected – Under NS-BGP, a node (ISP or router) can select different routes for different neighbors Inherit everything else from conventional BGP – Message format, message dissemination, … 5

6 The Neighbor-based Route Selection Model In NS-BGP, a node has one ranking function per neighbor / per edge link 6 is node i’s ranking function for link (j, i), or equivalently, for neighbor node j.

7 Would the Additional Flexibility Cause Routing Oscillation? 7 Conventional BGP can easily oscillate – Even without neighbor-specific route selection (3 d) is available (2 d) is available (3 d) is not available (1 d) is available (2 d) is not available (1 d) is not available

8 Why Is The Internet Generally Stable? It’s mostly because of $$ Policy configurations based on ISPs’ bilateral business relationships – Customer-Provider Customers pay provider for access to the Internet – Peer-Peer Peers exchange traffic free of charge Most well-known result reflecting this practice: “Gao-Rexford” stability conditions 8

9 The “Gao-Rexford” Stability Conditions Preference condition – Prefer customer routes over peer or provider routes 9 Node 3 prefers “3 d” over “3 1 2 d”

10 The “Gao-Rexford” Stability Conditions 10 Export condition – Export only customer routes to peers or providers Valid paths: “1 2 d” and “6 4 3 d” Invalid path: “5 8 d” and “6 5 d”

11 The “Gao-Rexford” Stability Conditions 11 Topology condition – No cycle of customer-provider relationships

12 How Bad Is It If NS-BGP Violates “Gao-Rexford” NS-BGP may not always converge – Even in very simple cases “Gao-Rexford” limits NS-BGP’s benefits ISPs may want to violate the preference condition – E.g., a bank may want to pay more to use a secure provider route Some important questions need to be answered – Would such violation lead to routing oscillation? 12

13 Stability Conditions for NS-BGP Surprising results: NS-BGP improves stability! – The more flexible NS-BGP requires significantly less restrictive conditions to guarantee routing stability The “preference condition” is no longer needed – An ISP can choose any “exportable” route for each neighbor That is, an ISP can choose – Any route for a customer – Any customer-learned route for a peer or provider 13

14 Why Stability is Easier to Obtain in NS-BGP? 14 The same system will be stable in NS-BGP – Key: the availability of (3 d) to 1 is independent of the presence or absence of (3 2 d) (3 d) is available (2 d) is available (1 d) is available

15 How the Proof Works Leverage “Iterated Dominance” – An underlying structure of a routing instance – Provides constructive proof and convergence guarantee 15 5 1d 2d 21d 31d 32d 321d 531d 532d 5321d 4321d 432d 431d 12d 4 3 2 d 1 customerprovider

16 Other Merits of NS-BGP Stable under topology changes – E.g., link/node failures and new peering links Stable in partial deployment – Individually ISPs can safely deploy NS-BGP incrementally More robust with “backup” routing – Certain routing anomalies (e.g., “BGP Wedgies”) are less likely to happen than in conventional BGP 16

17 NS-BGP Is Practical! Some proposals don’t get deployed, due to the lack of – Economic incentives (e.g., IP multicast) – No advantages in partial deployment (e.g., S-BGP) – Not incrementally deployable (e.g., a brand new interdomain routing protocol) NS-BGP addresses all these issues! – Natural economic motivation – Immediate benefit for an individual ISP that deploys it (while maintaining global stability) – Only software updates to routers needed, no coordination with neighbors needed 17

18 Incrementally Deployable Neighbor-specific forwarding – Existing IP-in-IP or MPLS tunneling techniques 18 ?

19 Incrementally Deployable Route dissemination within an AS – To ensure an edge router has enough “route visibility” Distributed approach – BGP ADD-PATH – No need to disseminate all paths 19

20 Different Route Selection Models “Subscription” model – Provider offers a set of ranking functions, customer picks “Total-control” model – Customer decides its own ranking function “Hybrid” model – Customer controls some parameters of its ranking function, provider controls the rest 20

21 Conclusions NS-BGP: a new route-selection model Immediate benefits to individual ISPs that deploy it New understanding of the trade-offs between local policy flexibility and global routing stability Future work: dynamics of NS-BGP (e.g., convergence speed) 21

22 Backup Slides 22

23 Neighbor-Specific Forwarding Tunnels from ingress links to egress links – IP-in-IP or Multiprotocol Label Switching (MPLS) 23 ?

24 Route Dissemination Within An AS To ensure an edge router has enough “route visibility” Distributed approaches – A “quick ‘n dirty” fix: multiple iBGP sessions between routers – A better approach: BGP Add-PATH – No need to disseminate all paths 24

25 Route Dissemination Within An AS Centralized approach – RCP / Morpheus – A small number of logically-centralized servers – With complete visibility – Select BGP routes for routers 25

26 Flexible Route Assignment Support for multiple paths already available – “Virtual routing and forwarding (VRF)” (Cisco) – “Virtual router” (Juniper) 26 D: (red path): R6 D: (blue path): R7 R3’s forwarding table (FIB) entries

27 How Is A Ranking Function Configured? We model policy configuration as a decision problem … of how to reconcile multiple (potentially conflicting) objectives in choosing the best route What’s the simplest method with such property? 27

28 Use Weighted Sum Instead of Strict Ranking Every route has a final score: The route with highest is selected as best: 28

29 Multiple Decision Processes for NS-BGP Multiple decision processes running in parallel Each realizes a different policy with a different set of weights of policy objectives 29

30 How To Translate A Policy Into Weights? Picking a best alternative according to a set of criteria is a well-studied topic in decision theory Analytic Hierarchy Process (AHP) uses a weighted sum method (like we used) 30

31 Use Preference Matrix To Calculate Weights Humans are best at doing pair-wise comparisons Administrators use a number between 1 to 9 to specify preference in pair-wise comparisons – 1 means equally preferred, 9 means extreme preference AHP calculates the weights, even if the pair-wise comparisons are inconsistent 31 LatencyStabilitySecurityWeight Latency1390.69 Stability1/3130.23 Security1/91/310.08

32 The AHP Hierarchy of An Example Policy 32

33 33 Every BGP route has a set of attributes – Some are controlled by neighbor ASes – Some are controlled locally – Some are controlled by no one Fixed step-by-step route-selection algorithm Policies are realized through adjusting locally controlled attributes – E.g., local-preference: customer 100, peer 90, provider 80 Three major limitations Local-preference AS Path Length Origin Type MED eBGP/iBGP IGP Metric Router ID … Why Are Policy Trade-offs Hard in BGP?

34 Limitation 1: Overloading of BGP attributes Policy objectives are forced to “share” BGP attributes Difficult to add new policy objectives 34 Business RelationshipsTraffic EngineeringLocal-preference Why Are Policy Trade-offs Hard in BGP?

35 Limitation 2: Difficulty in incorporating “side information” Many policy objectives require “side information” – External information: measurement data, business relationships database, registry of prefix ownership, … – Internal state: history of (prefix, origin) pairs, statistics of route instability, … Side information is very hard to incorporate today 35

36 Inside Morpheus Server: Policy Objectives As Independent Modules Each module tags routes in separate spaces (solves limitation 1) Easy to add side information (solves limitation 2) Different modules can be implemented independently (e.g., by third-parties) – evolvability 36

37 Why Are Policy Trade-offs Hard in BGP? Limitation 3: Strictly rank one attribute over another (not possible to make trade-offs between policy objectives) E.g., a policy with trade-off between business relationships and stability Infeasible today 37 “If all paths are somewhat unstable, pick the most stable path (of any length); Otherwise, pick the shortest path through a customer”.

38 Prototype Implementation Implemented as an extension to XORP – Four new classifier modules (as a pipeline) – New decision processes that run in parallel 38

39 39 Evaluation Classifiers work very efficiently Morpheus is faster than the standard BGP decision process (w/ multiple alternative routes for a prefix) Throughput – our unoptimized prototype can support a large number of decision processes ClassifiersBiz relationshipsStabilityLatencySecurity Avg. time (us)52033103 Decision processesMorpheusXORP-BGP Avg. time (us)54279 # of decision process1102040 Throughput (update/sec)890841780740

40 How a neighbor gets the routes in NS-BGP Having the ISP pick the best one and only export that route +: Simple, backwards compatible -: Reveals its policy Having the ISP export all available routes, and pick the best one itself +: Doesn’t reveal any internal policy -: Has to have the capability of exporting multiple routes and tunneling to the egress points 40

41 Why wasn’t BGP designed to be neighbor-specific? Different networks have little need to use different paths to reach the same destination There was far less path diversity to explore There was no data plane mechanisms (e.g., tunneling) that support forwarding to multiple next hops for the same destination without causing loops Selecting and (perhaps more importantly) disseminating multiple routes per destination would require more computational power from the routers than what's available at the time then BGP was first designed 41

Download ppt "Neighbor-Specific BGP (NS-BGP): More Flexible Routing Policies While Improving Global Stability Yi Wang, Jennifer Rexford Princeton University Michael."

Similar presentations

Border Gateway Protocol Ankit Agarwal Dashang Trivedi Kirti Tiwari.

Border Gateway Protocol Ankit Agarwal Dashang Trivedi Kirti Tiwari.
CS540/TE630 Computer Network Architecture Spring 2009 Tu/Th 10:30am-Noon Sue Moon.

CS540/TE630 Computer Network Architecture Spring 2009 Tu/Th 10:30am-Noon Sue Moon.
Part IV BGP Modeling. 2 BGP Is Not Guaranteed to Converge!  BGP is not guaranteed to converge to a stable routing. Policy inconsistencies can lead to.

Part IV BGP Modeling. 2 BGP Is Not Guaranteed to Converge!  BGP is not guaranteed to converge to a stable routing. Policy inconsistencies can lead to.
Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.

Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.
1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.

1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.
Part II: Inter-domain Routing Policies. March 8, 20042 What is routing policy? ISP1 ISP4ISP3 Cust1Cust2 ISP2 traffic Connectivity DOES NOT imply reachability!

Part II: Inter-domain Routing Policies. March 8, What is routing policy? ISP1 ISP4ISP3 Cust1Cust2 ISP2 traffic Connectivity DOES NOT imply reachability!
Putting BGP on the Right Path: A Case for Next-Hop Routing Michael Schapira (Yale University and UC Berkeley) Joint work with Yaping Zhu and Jennifer Rexford.

Putting BGP on the Right Path: A Case for Next-Hop Routing Michael Schapira (Yale University and UC Berkeley) Joint work with Yaping Zhu and Jennifer Rexford.
Can Economic Incentives Make the ‘Net Work? Jennifer Rexford Princeton University

Can Economic Incentives Make the ‘Net Work? Jennifer Rexford Princeton University
Game Theoretic and Economic Perspectives on Interdomain Routing Michael Schapira Yale University and UC Berkeley.

Game Theoretic and Economic Perspectives on Interdomain Routing Michael Schapira Yale University and UC Berkeley.
TIE Breaking: Tunable Interdomain Egress Selection Renata Teixeira Laboratoire d’Informatique de Paris 6 Université Pierre et Marie Curie with Tim Griffin.

TIE Breaking: Tunable Interdomain Egress Selection Renata Teixeira Laboratoire d’Informatique de Paris 6 Université Pierre et Marie Curie with Tim Griffin.
Tutorial 5 Safe Routing With BGP Based on: Internet.

Tutorial 5 Safe Routing With BGP Based on: Internet.
New Routing Architectures Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.

New Routing Architectures Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.
Stable Internet Routing Without Global Coordination Jennifer Rexford Princeton University Joint work with Lixin Gao (UMass-Amherst)

Stable Internet Routing Without Global Coordination Jennifer Rexford Princeton University Joint work with Lixin Gao (UMass-Amherst)
Slide -1- February, 2006 Interdomain Routing Gordon Wilfong Distinguished Member of Technical Staff Algorithms Research Department Mathematical and Algorithmic.

Slide -1- February, 2006 Interdomain Routing Gordon Wilfong Distinguished Member of Technical Staff Algorithms Research Department Mathematical and Algorithmic.
Interdomain Routing Establish routes between autonomous systems (ASes). Currently done with the Border Gateway Protocol (BGP). AT&T Qwest Comcast Verizon.

Interdomain Routing Establish routes between autonomous systems (ASes). Currently done with the Border Gateway Protocol (BGP). AT&T Qwest Comcast Verizon.
Inherently Safe Backup Routing with BGP Lixin Gao (U. Mass Amherst) Timothy Griffin (AT&T Research) Jennifer Rexford (AT&T Research)

Inherently Safe Backup Routing with BGP Lixin Gao (U. Mass Amherst) Timothy Griffin (AT&T Research) Jennifer Rexford (AT&T Research)
1 Design and implementation of a Routing Control Platform Matthew Caesar, Donald Caldwell, Nick Feamster, Jennifer Rexford, Aman Shaikh, Jacobus van der.

1 Design and implementation of a Routing Control Platform Matthew Caesar, Donald Caldwell, Nick Feamster, Jennifer Rexford, Aman Shaikh, Jacobus van der.
A Routing Control Platform for Managing IP Networks Jennifer Rexford Princeton University

A Routing Control Platform for Managing IP Networks Jennifer Rexford Princeton University
Economic Incentives in Internet Routing Jennifer Rexford Princeton University

Economic Incentives in Internet Routing Jennifer Rexford Princeton University
Stable Internet Routing Without Global Coordination Jennifer Rexford AT&T Labs--Research

Stable Internet Routing Without Global Coordination Jennifer Rexford AT&T Labs--Research

Similar presentations

Ads by Google