Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Flexible Model for Resource Management in Virtual Private Networks Sanket Naik CS590F Fall 2000.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "A Flexible Model for Resource Management in Virtual Private Networks Sanket Naik CS590F Fall 2000."— Presentation transcript:

1 A Flexible Model for Resource Management in Virtual Private Networks Sanket Naik CS590F Fall 2000

2 What Is a Virtual Private Network? Virtual private networks (VPN) provide an encrypted connection between a user's distributed sites over a public network (e.g., the Internet). By contrast, a private network uses dedicated circuits and possibly encryption. Tom Dunigan, Network Research Group, Oak Ridge National Lab (ORNL)

3 Requirements for IP-based VPNs Opaque packet transport Data security Quality of service guarantees Tunneling mechanism A framework for IP based VPNs - RFC 2764 (informational)

4 Resource Management in VPN? Isolation from other flows Guaranteed bandwidth, loss and delay characteristics Over an existing public network Yet, same performance assurances as a private network!

5 Hose Model Customer's interface into the network Performance guarantee based on the "aggregate" traffic To and from a given endpoint to the set of all other endpoints

6 Hose Model

7 Advantages for customer Ease of specification - one rate per endpoint vis-a-vis one rate per pair of endpoints Flexibility - traffic to multiple endpoints multiplexed on one hose Multiplexing gain - Total of hose rates < Aggregate rate in a Private network Characterization - Statistical variability over multiple pairs smoothed into hose Billing - Resize hose capacities dynamically

8 Implementation Scenarios

9 Provisioned VPNs Worst-case traffic split - provider-pipes between each pair of end-points Resource sharing - aggregate overlapping pipes for an end-point Explicit routing - shortest paths VPN specific state - aggregate overlapping pipes for the VPN

10 Dynamically Resized VPNs Disadvantage of provisioned VPNs Reserved capacity may not be used Resized provider pipes Resized trees Resized trees with explicit routing Resource aggregation across a VPN

11 Requirements for Dynamically Resized VPNs Prediction of required capacity based on traffic measurement - technique suggested Signaling protocols to dynamically reserve resources - future work

12 Prediction of Traffic Rate T meas - measurement window T ren - next window for which rate is renegotiated T samp - regularly spaced samples R i - average rate over inter-sample intervals Local maximum predictor R ren = max{R i } Local Gaussian predictor R ren = m +  v m = mean of R i v = variance of R i  = Multiplier

13 Simulation Experiments 2 sets of traces – voice and data PSTN traffic == IP telephony traffic? Benefits for customer Traffic matrix does change Statically provisioned access hose-gain Hose resizing gain Predictor tracks actual traffic quite closely Dynamically resized access hose gain

14 Benefits for Provider Statically provisioned tree gain Dynamic resizing gains Provider-pipes Trees VPNs

15 Conclusions Pros Most efforts in IP-based VPNs focussed on security rather than performance guarantees Simulation results look positive Cons Model is incomplete - signaling primitives required How was dynamic resizing done for simulation?

16 Questions?

Download ppt "A Flexible Model for Resource Management in Virtual Private Networks Sanket Naik CS590F Fall 2000."

Similar presentations

Virtual Links: VLANs and Tunneling

Virtual Links: VLANs and Tunneling
Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
Virtual Private Networks COSC541 Project Jie Qin & Sihua Xu October 11, 2014.

Virtual Private Networks COSC541 Project Jie Qin & Sihua Xu October 11, 2014.
© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Introducing VPNs.

© 2006 Cisco Systems, Inc. All rights reserved. MPLS v2.2—4-1 MPLS VPN Technology Introducing VPNs.
Agenda Virtual Private Networks (VPNs) Motivation and Basics Deployment Topologies IPSEC (IP Security) Authentication Header (AH) Encapsulating Security.

Agenda Virtual Private Networks (VPNs) Motivation and Basics Deployment Topologies IPSEC (IP Security) Authentication Header (AH) Encapsulating Security.
A Flexible Model for Resource Management in Virtual Private Networks Presenter: Huang, Rigao Kang, Yuefang.

A Flexible Model for Resource Management in Virtual Private Networks Presenter: Huang, Rigao Kang, Yuefang.
Module 5: Configuring Access for Remote Clients and Networks.

Module 5: Configuring Access for Remote Clients and Networks.
Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Provider Opportunities for Enterprise MPLS APRICOT 2006, Perth Matt.

Copyright © 2004 Juniper Networks, Inc. Proprietary and Confidentialwww.juniper.net 1 Provider Opportunities for Enterprise MPLS APRICOT 2006, Perth Matt.
Differentiated Services. Service Differentiation in the Internet Different applications have varying bandwidth, delay, and reliability requirements How.

Differentiated Services. Service Differentiation in the Internet Different applications have varying bandwidth, delay, and reliability requirements How.
1 Fall 2005 Network Characteristics: Ownership, Service Paradigm, Performance Qutaibah Malluhi CSE Department Qatar University.

1 Fall 2005 Network Characteristics: Ownership, Service Paradigm, Performance Qutaibah Malluhi CSE Department Qatar University.
FINAL EXAM TUE 5/16 MRST 132 10:30 - 12.30 - open book/open notes - 25% of final grade - off campus students will receive exam by postal mail.

FINAL EXAM TUE 5/16 MRST : open book/open notes - 25% of final grade - off campus students will receive exam by postal mail.
The call path remains constant and bandwidth is dedicated throughout the duration of the call. - Unused bandwidth is not recovered. - Traffic.

The call path remains constant and bandwidth is dedicated throughout the duration of the call. - Unused bandwidth is not recovered. - Traffic.
UCB Implementing QoS Jean Walrand EECS. UCB Outline What? Bandwidth, Delay Where? End-to-End, Edge-to-Edge, Edge-to-End, Overlay Mechanisms Access Control.

UCB Implementing QoS Jean Walrand EECS. UCB Outline What? Bandwidth, Delay Where? End-to-End, Edge-to-Edge, Edge-to-End, Overlay Mechanisms Access Control.
EE 4272Spring, 2003 Protocols & Architecture A Protocol Architecture is the layered structure of hardware & software that supports the exchange of data.

EE 4272Spring, 2003 Protocols & Architecture A Protocol Architecture is the layered structure of hardware & software that supports the exchange of data.
Virtual Private Networks Shamod Lacoul CS265 What is a Virtual Private Network (VPN)? A Virtual Private Network is an extension of a private network.

Virtual Private Networks Shamod Lacoul CS265 What is a Virtual Private Network (VPN)? A Virtual Private Network is an extension of a private network.
A Policy-Based Optical VPN Management Architecture.

A Policy-Based Optical VPN Management Architecture.
1 Networking Basics: A Review Carey Williamson iCORE Professor Department of Computer Science University of Calgary.

1 Networking Basics: A Review Carey Williamson iCORE Professor Department of Computer Science University of Calgary.
© 2007 AT&T Knowledge Ventures. All rights reserved. AT&T and the AT&T logo are trademarks of AT&T Knowledge Ventures. Subsidiaries and affiliates of AT&T.

© 2007 AT&T Knowledge Ventures. All rights reserved. AT&T and the AT&T logo are trademarks of AT&T Knowledge Ventures. Subsidiaries and affiliates of AT&T.
Selecting a WAN Technology Lecture 4: WAN Devices &Technology.

Selecting a WAN Technology Lecture 4: WAN Devices &Technology.
Polycom Conference Firewall Solutions. 2 The use of Video Conferencing Is Rapidly Growing More and More people are adopting IP conferencing Audio and.

Polycom Conference Firewall Solutions. 2 The use of Video Conferencing Is Rapidly Growing More and More people are adopting IP conferencing Audio and.

Similar presentations

Ads by Google