Presentation is loading. Please wait.

Presentation is loading. Please wait.

30 September 2003Ramachandran: OGST 1 Path-Vector Policy Systems Vijay Ramachandran Official Graduate Student Talk September 30, 2003 Advisor: Joan Feigenbaum.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "30 September 2003Ramachandran: OGST 1 Path-Vector Policy Systems Vijay Ramachandran Official Graduate Student Talk September 30, 2003 Advisor: Joan Feigenbaum."— Presentation transcript:

1 30 September 2003Ramachandran: OGST 1 Path-Vector Policy Systems Vijay Ramachandran Official Graduate Student Talk September 30, 2003 Advisor: Joan Feigenbaum

2 30 September 2003Ramachandran: OGST 2 Overview Routing with BGP is determined using semantically rich routing policies. Expressiveness can lead to unpredictable global routing anomalies. Design principles for policies and policy languages can ameliorate this problem. This work gives a framework for the design of path-vector protocols and policy languages.

3 30 September 2003Ramachandran: OGST 3 Outline Motivation Dimensions of the Design Space Path-Vector Policy Systems Trade-offs in the Design Space An Application Open Problems

4 30 September 2003Ramachandran: OGST 4 Dynamics of Path-Vector Routing

5 30 September 2003Ramachandran: OGST 5 Apply Policy = filter routes & tweak attributes BGP Route Processing Best Route Selection Apply Import Policies Best Route Table Apply Export Policies Install forwarding entries for best routes Receive BGP updates Storage of routes Transmit BGP updates Based on attribute values IP Forwarding Table Apply Policy = filter routes & tweak attributes Open-ended programming: constrained only by vendor configuration language

6 30 September 2003Ramachandran: OGST 6 Consequences Use of “hacks” to encode information, e.g., AS-path padding Complex policies using community values

7 30 September 2003Ramachandran: OGST 7 Examples of Anomalies “Route pinning:” backup routes carry traffic even when primary link is active Protocol divergence K. Varadhan, R. Govindan, and D. Estrin. “Persistent Route Oscillations in Inter-Domain Routing.” Computer Networks 32, 2000. Troubles from “cold-potato” routing D. McPherson, V. Gill, D. Walton, and A. Retana. “BGP Persistent Route Oscillation Condition.” Manuscript, 2002. Cisco Field Note. “Endless BGP Convergence Problem in Cisco IOS Software Releases.” October 2001.

8 30 September 2003Ramachandran: OGST 8 The Problem Local configuration can coax the protocol to execute complex routing decisions. Increased incidence of routing anomalies comes with richer policy expressiveness. Lack of design principles for policy languages

9 30 September 2003Ramachandran: OGST 9 Outline Motivation Dimensions of the Design Space Path-Vector Policy Systems Trade-offs in the Design Space An Application Open Problems

10 30 September 2003Ramachandran: OGST 10 Expressiveness Desire: Maximal expressiveness without sacrificing other design goals Measure: How many routing configurations can be expressed? Use SPP as a semantic domain.* 23 1 54 2 3 1 2 3 4 1 2 1 2 5 1 2 3 4 5 1 5 1 5 2 1 3 2 5 1 3 4 5 1 3 4 1 3 1 4 5 1 4 3 2 5 1 4 3 1 4 1 * Griffin, Shepherd, and Wilfong. “The Stable Paths Problem and Interdomain Routing.” IEEE/ACM TON 10(2), 2002.

11 30 September 2003Ramachandran: OGST 11 Robustness Definition: Unique solvability for any configuration, even after link and node failures Primary constraint on expressiveness 23 1 54 2 3 1 2 3 4 1 2 1 2 5 1 2 3 4 5 1 5 1 5 2 1 3 2 5 1 3 4 5 1 3 4 1 3 1 4 5 1 4 3 2 5 1 4 3 1 4 1 Deleting edge {1, 5} results in a configuration with no predictable solution.

12 30 September 2003Ramachandran: OGST 12 Other Design-Space Dimensions Transparency: Can policy writers understand the effects of their policies? Policy Opaqueness: Can routing-policy details remain private? Autonomy: What degree of independence do policy writers have in configuration? Global Constraint: What global conditions must be checked?

13 30 September 2003Ramachandran: OGST 13 A Slice of the Design Space: Robust and Transparent Systems

14 30 September 2003Ramachandran: OGST 14 Outline Motivation Dimensions of the Design Space Path-Vector Policy Systems Trade-offs in the Design Space An Application Open Problems

15 30 September 2003Ramachandran: OGST 15 Path-Vector Policy Systems Formal model of path-vector routing: ( PV, PL, K ) Policy Language: How can policies be described? PL acts as a local constraint on the expressiveness of policies. Policy Language: How can policies be described? PL acts as a local constraint on the expressiveness of policies. Path-Vector System: The underlying message-exchange system for route information. What is exchanged and how? Path-Vector System: The underlying message-exchange system for route information. What is exchanged and how? Global Constraint: What assumptions about the network must be true to achieve robustness? Global Constraint: What assumptions about the network must be true to achieve robustness? Question: What role do these components play in achieving our design goals? Question: What role do these components play in achieving our design goals?

16 30 September 2003Ramachandran: OGST 16 Path-Vector-System Components (1) Path Descriptors: The data structure for routes—the attributes in a route record used to advertise routes and calculate best routes Example 1 (Lowest-Cost Paths): Example 2 (Simplified BGP): DestinationPath CostAS Path (Vector) DestinationLocal PreferenceAS Path (Vector)Next HopColor

17 30 September 2003Ramachandran: OGST 17 Path-Vector-System Components (2) Ranking Function (  ): A description of how attribute values influence “best-route” choice Example 1 (Lowest-Cost Paths): Example 2 (Simplified BGP): DestinationAS Path (Vector) DestinationColor Path Cost  N  (d, c, P) = c Lower cost = More preferred Local PreferenceAS Path (Vector)Next Hop Prefer larger local pref, then shorter path length, then smaller next-hop value

18 30 September 2003Ramachandran: OGST 18 Path-Vector-System Components (3) Local Constraints: A description of legal import and export policies Example 1 (Lowest-Cost Paths): Routers can only increment path-cost value by a non-negative integer. Example 2 (Simplified BGP): Routers can only set local-preference (to any integer) and color values. DestinationAS Path (Vector) DestinationColor Path Cost  N Local PreferenceAS Path (Vector)Next Hop

19 30 September 2003Ramachandran: OGST 19 Path-Vector-System Components (4) Policy-Application Functions: How routers should apply policies Example 1 (Lowest-Cost Paths): Apply path-cost increment as specified; add to AS path on export; check for loops on import. Example 2 (Simplified BGP): Set color as specified. Set AS path and hop and hide pref on export; check for loops and set pref on import. Destination Color Path Cost  N Local PreferenceAS Path (Vector)Next Hop AS Path (Vector)

20 30 September 2003Ramachandran: OGST 20 Policy Languages High-level language to write routing policies Probably involves compilation to low-level transformations on path descriptors Generated policies should satisfy path-vector system’s local constraints if r.color = “Red” then r.local-pref := 50 else if first(r.as-path) = AS5 then r.local-pref := 25 r.color := “Blue” else r.local-pref := 100 Example (Simplified BGP):

21 30 September 2003Ramachandran: OGST 21 Definition of Transparency Policy application along an arc F (a, b) (X) = t in (a, b, f in (a, b), t out (b, a, f out (b, a), X) can be written F (a, b) (X) = F in (a, b, T(F out (b, a, X)))

22 30 September 2003Ramachandran: OGST 22 Autonomy (Informal) General Autonomy: How many ways can a node partition neighbors into preference classes? Autonomy of Neighbor Ranking: Can a node always prefer routes through one set of neighbors over routes through another set of neighbors?

23 30 September 2003Ramachandran: OGST 23 Outline Motivation Dimensions of the Design Space Path-Vector Policy Systems Trade-offs in the Design Space An Application Open Problems

24 30 September 2003Ramachandran: OGST 24 Example 1 Properties Shortest Paths Expressiveness … low Robust … yes Transparent … yes Aut. Nbr. Ranking … no Opaque … no Destination Path Cost  N AS Path (Vector)

25 30 September 2003Ramachandran: OGST 25 Example 2 Properties Simplified BGP Expressiveness … high Robust … no Transparent … yes Aut. Nbr. Ranking … yes Opaque … yes DestinationColorLocal PreferenceAS Path (Vector)Next Hop

26 30 September 2003Ramachandran: OGST 26 A Natural Robust Class Conjecture {1}. No path-vector policy system can exactly capture all robust configurations. Theorem {5 & 6}. A path-vector policy system in which a path’s absolute rank monotonically increases as it is exchanged among routers is robust. Example: Lowest-cost paths (This is the broadest-known sufficient condition for robustness.)

27 30 September 2003Ramachandran: OGST 27 1.Filter out routes whose absolute rank does not increase on import/export. XTransparency Increasing: What is Lost? (1) s u v d Q P Q.pref = 50 P.pref = 75 uP.pref = 50 vQ.pref = 25 s u v d Q P Q.pref = 50 P.pref = 25 uP.pref = 50 vQ.pref = 25 u decreases local preference value for P

28 30 September 2003Ramachandran: OGST 28 Increasing: What is Lost? (2) 2.Have routers share all rank-determining attributes and constrain legal policies to those that increase absolute rank. XAutonomy and Policy Opaqueness s u v d Q P Q.pref = 50 P.pref = 75 uP.pref = 50 vQ.pref = 25 s u v d Q P Q.pref = 50 P.pref = 25 uP.pref = 20 vQ.pref = 15 u decreases local preference value for P, so s must adjust

29 30 September 2003Ramachandran: OGST 29 Increasing: What is Lost? (3) 3.Impose some global mechanism to check that paths are partially ordered with respect to the ranking function. i.e., for any configuration, check that all realizable path descriptors have increased absolute rank on import / export XIn general, tractability of Global Constraint

30 30 September 2003Ramachandran: OGST 30 Summary of Trade-offs Theorem {7}. A path-vector policy system (without global constraint) expressive enough to capture all increasing configurations either does not support autonomy of neighbor ranking or is not transparent, or both. Theorem {8}. A transparent, robust path-vector policy system that supports autonomy of neighbor ranking and is at least as expressive as shortest paths must have a non-trivial global constraint.

31 30 September 2003Ramachandran: OGST 31 Outline Motivation Dimensions of the Design Space Path-Vector Policy Systems Trade-offs in the Design Space An Application Open Problems

32 30 September 2003Ramachandran: OGST 32 Class-Based Systems (1) Assign each neighbor to a class Classes have preference and scope rules – Prefer routes through neighbors of certain classes – Conditions for sharing routes with neighbors Example (HBGP): Classes are “peer,” “provider,” and “customer.” Classes are preferred in the standard order.

33 30 September 2003Ramachandran: OGST 33 Class-Based Systems (2) Relative Preference: If class i is to be preferred over class j, then node v should prefer routes from node w over those from node x. Relative Preference: If class i is to be preferred over class j, then node v should prefer routes from node w over those from node x. Scope: If class i routes cannot be exported to a class- k neighbor, then node u will only learn about the path uvxQ. Scope: If class i routes cannot be exported to a class- k neighbor, then node u will only learn about the path uvxQ.

34 30 September 2003Ramachandran: OGST 34 Class-Based Systems (3) Use a BGP-like path-vector system with level and local-preference attributes. Use policy languages that allow classification of neighbors, assignment of local preference, and adjustment of level. What global constraint is needed? Theorem {9}. Constraint = class consistency + check that certain cycles do not exist Example (HBGP): no customer-provider cycles

35 30 September 2003Ramachandran: OGST 35 Outline Motivation Dimensions of the Design Space Path-Vector Policy Systems Trade-offs in the Design Space An Application Open Problems

36 30 September 2003Ramachandran: OGST 36 Open Problems Conjecture {1}, or necessary condition for robustness Further study of class-based systems; in particular, tighten robustness check Enforcement mechanisms for global constraints Expressiveness of systems under poynomial-time- checkable global constraints Policy language development Non-deterministic systems and their dynamics Security issues and study of the “forwarding plane”

Download ppt "30 September 2003Ramachandran: OGST 1 Path-Vector Policy Systems Vijay Ramachandran Official Graduate Student Talk September 30, 2003 Advisor: Joan Feigenbaum."

Similar presentations

1 Incentive-Compatible Inter-Domain Routing Joan Feigenbaum Yale University Colloquium at Cornell University; October.

1 Incentive-Compatible Inter-Domain Routing Joan Feigenbaum Yale University Colloquium at Cornell University; October.
Network Layer: Internet-Wide Routing & BGP Dina Katabi & Sam Madden.

Network Layer: Internet-Wide Routing & BGP Dina Katabi & Sam Madden.
CS540/TE630 Computer Network Architecture Spring 2009 Tu/Th 10:30am-Noon Sue Moon.

CS540/TE630 Computer Network Architecture Spring 2009 Tu/Th 10:30am-Noon Sue Moon.
© J. Liebeherr, All rights reserved 1 Border Gateway Protocol This lecture is largely based on a BGP tutorial by T. Griffin from AT&T Research.

© J. Liebeherr, All rights reserved 1 Border Gateway Protocol This lecture is largely based on a BGP tutorial by T. Griffin from AT&T Research.
Does BGP Solve the Shortest Paths Problem? Timothy G. Griffin Joint work with Bruce Shepherd and Gordon Wilfong Bell Laboratories, Lucent Technologies.

Does BGP Solve the Shortest Paths Problem? Timothy G. Griffin Joint work with Bruce Shepherd and Gordon Wilfong Bell Laboratories, Lucent Technologies.
Part IV BGP Modeling. 2 BGP Is Not Guaranteed to Converge!  BGP is not guaranteed to converge to a stable routing. Policy inconsistencies can lead to.

Part IV BGP Modeling. 2 BGP Is Not Guaranteed to Converge!  BGP is not guaranteed to converge to a stable routing. Policy inconsistencies can lead to.
Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.

Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.
1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.

1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.
Foundations of Inter-Domain Routing Ph.D. Dissertation Defense Vijay Ramachandran Dissertation Director: Joan Feigenbaum Committee Members: Jim Aspnes,

Foundations of Inter-Domain Routing Ph.D. Dissertation Defense Vijay Ramachandran Dissertation Director: Joan Feigenbaum Committee Members: Jim Aspnes,
SCHOOL OF INFORMATION UNIVERSITY OF MICHIGAN si.umich.edu Searching for Stability in Interdomain Routing Rahul Sami (University of Michigan) Michael Schapira.

SCHOOL OF INFORMATION UNIVERSITY OF MICHIGAN si.umich.edu Searching for Stability in Interdomain Routing Rahul Sami (University of Michigan) Michael Schapira.
Towards a Logic for Wide-Area Internet Routing Nick Feamster and Hari Balakrishnan M.I.T. Computer Science and Artificial Intelligence Laboratory Kunal.

Towards a Logic for Wide-Area Internet Routing Nick Feamster and Hari Balakrishnan M.I.T. Computer Science and Artificial Intelligence Laboratory Kunal.
Part II: Inter-domain Routing Policies. March 8, 20042 What is routing policy? ISP1 ISP4ISP3 Cust1Cust2 ISP2 traffic Connectivity DOES NOT imply reachability!

Part II: Inter-domain Routing Policies. March 8, What is routing policy? ISP1 ISP4ISP3 Cust1Cust2 ISP2 traffic Connectivity DOES NOT imply reachability!
STABLE PATH PROBLEM Presented by: Sangeetha A. J. Based on The Stable Path Problem and Interdomain Routing Timothy G. Griffin, Bruce Shepherd, Gordon Wilfong.

STABLE PATH PROBLEM Presented by: Sangeetha A. J. Based on The Stable Path Problem and Interdomain Routing Timothy G. Griffin, Bruce Shepherd, Gordon Wilfong.
BGP Safety with Spurious Updates Martin Suchara in collaboration with: Alex Fabrikant and Jennifer Rexford IEEE INFOCOM April 14, 2011.

BGP Safety with Spurious Updates Martin Suchara in collaboration with: Alex Fabrikant and Jennifer Rexford IEEE INFOCOM April 14, 2011.
Design Principles of Policy Languages for Path Vector Protocols Timothy G. Griffin (AT&T Research), Aaron D. Jaggard (Penn), and Vijay Ramachandran (Yale)

Design Principles of Policy Languages for Path Vector Protocols Timothy G. Griffin (AT&T Research), Aaron D. Jaggard (Penn), and Vijay Ramachandran (Yale)
An open problem in Internet Routing --- Policy Language Design for BGP Nov 3, 2003 Timothy G. Griffin Intel Research, Cambridge UK

An open problem in Internet Routing --- Policy Language Design for BGP Nov 3, 2003 Timothy G. Griffin Intel Research, Cambridge UK
1 Tutorial 5 Safe “Peering Backup” Routing With BGP Based on:

1 Tutorial 5 Safe “Peering Backup” Routing With BGP Based on:
1 Policy Disputes in Path-Vector Protocols A Safe Path-Vector Protocol Zacharopoulos Dimitris

1 Policy Disputes in Path-Vector Protocols A Safe Path-Vector Protocol Zacharopoulos Dimitris
Tutorial 5 Safe Routing With BGP Based on: Internet.

Tutorial 5 Safe Routing With BGP Based on: Internet.
Interdomain Routing and The Border Gateway Protocol (BGP) Courtesy of Timothy G. Griffin Intel Research, Cambridge UK

Interdomain Routing and The Border Gateway Protocol (BGP) Courtesy of Timothy G. Griffin Intel Research, Cambridge UK

Similar presentations

Ads by Google