Presentation is loading. Please wait.

Presentation is loading. Please wait.

Joe Touch USC/ISI July 10, 2003 1 The X-Bone ICB Meeting July 10, 2003 Joe Touch Director, Postel Center for Experimental Networking Computer Networks.

Published byNatalie Ellis Modified over 10 years ago

Similar presentations

Presentation on theme: "Joe Touch USC/ISI July 10, 2003 1 The X-Bone ICB Meeting July 10, 2003 Joe Touch Director, Postel Center for Experimental Networking Computer Networks."— Presentation transcript:

1 Joe Touch USC/ISI July 10, 2003 1 The X-Bone ICB Meeting July 10, 2003 Joe Touch Director, Postel Center for Experimental Networking Computer Networks Division USC/ISI

2 Joe Touch USC/ISI July 10, 20032 X-Bone IP Overlays Web GUI X-Bone system Multiple views Automated monitoring link xd GUI Overlay Manager Overlay Manager Resource Daemon Resource Daemon Resource Daemon Resource Daemon Resource Daemon Resource Daemon router host ring-ovl IP Base A B D C A B D C star-ovl A B D C Star Overlay Base IPv4 Network Ring Overlay

3 Joe Touch USC/ISI July 10, 20033 What is the X-Bone? Virtual Internet Architecture Consistent with dynamic routing, existing Internet applications and services Distributed VPN Manager SNMP-like client/server Multicast invites Interfaces Overlay Language GUI front-end

4 Joe Touch USC/ISI July 10, 20034 Virtual Internet Arch. VHs & VRs connected by tunnels VHs add/delete headers VRs transit only Completely virtual Revisitation Recursion Network-as-router recursion Control Recursion (compile-time) Rename unbound inner network VR interfaces Network Recursion (run-time) Phantom VHs at unbound inner network VR interfaces

5 Joe Touch USC/ISI July 10, 20035 X-Bone View of VPN E2E Closed set of participants More controlled than PE-based Support ALL Internet apps Network, not a full mesh (supports use of an internal AS structure) IP over IP Current deployment assumes mcastIP NO OTHER ASSUMPTIONS Can use any tunnel to get IP in IP, but uses explicit key distribution (interoperability)

6 Joe Touch USC/ISI July 10, 20036 Software Architecture OM runs the overlay Control or network recursion RD configures nodes SNMP-like transactions Multicast invites RD privacy Security ACLs, resource counts S/MIME invites SSL configuration

7 Joe Touch USC/ISI July 10, 20037 Interfaces Overlay Joe Node apple (OS=BSD) (iface a b c) Node pear (CPU=P4) (iface p) Ring r3 (BW=2M) (mac,gran,gold=apple, one,two,three=pear), (one.p mac.a>) (two.p gran.a>) (three.p gold.a>) (mac.b gran.c) (gran.b gold.c) (gold.b mac.c)

8 Joe Touch USC/ISI July 10, 20038 Capabilities Revisitation Recursion (scalability, multilayer) Dynamic routing Integration with DNS Application deployment

9 Joe Touch USC/ISI July 10, 20039 Revisitation A BCD F X Y Z A F B C D E E

10 Joe Touch USC/ISI July 10, 200310 Recursion Hierarchy w/connected sub-overlays Sub-overlays look like routers Base network Primary overlay Sub-1 Sub- 2

11 Joe Touch USC/ISI July 10, 200311 Application deployment (User Input) App-Instance Specific Params Application Generator Script 1 2 (XBone-Auto) Overlay/Node Specific: Ovl Name, IPs, Topol ring-ovl A B D C OM edit Action File Generator Script 3 4 RD Node Action File 5

12 Joe Touch USC/ISI July 10, 200312 Project Status DynaBone (DARPA) 10/03 {04? } Multilayer overlays for dynamic defense Adding native recursion X-Tend (NSF) 12/05 Augmenting X-Bone for education & research Add features based on need Add documentation, instruction examples Green-box install

13 Joe Touch USC/ISI July 10, 200313 X-Tensions Due Aug 2003 Net list topology Divide-and-conquer control Layered VPNs Revised API & code Dynamic & secure DNS +1 yr Layered restoration Incremental add/delete Ad-hoc mgt Application jails, process policy (MAC) Due within 6 mos. IPv6 Cisco Linux IPsec (?) Dynamic routing Proximity topology Revisitation Specific host list, find-and- select, directory discovery (LDAP) Apple OS-X Symbolic hostnames OM fault tolerance (hot backup, state-full recovery) Monitor link performance

14 Joe Touch USC/ISI July 10, 200314 2 Header FAQ Why two headers? Inet needs net and link ARP Revisitation Why overlap inside X-Bone, not outside? Innerlays never reuse interfaces: by construction

15 Joe Touch USC/ISI July 10, 200315 Outerlay DynaBone architecture Spread-Spectrum Multilayer Internet Overlays Innerlays Base network 3DES encrypt / Linkstate RC5 encrypt / RIP MD5 auth / static X PRMPRM PRMPRM

16 Joe Touch USC/ISI July 10, 200316 Performance issues Nesting: 800+ parallel innerlays 15 layers of recursion Bandwidth as 1/N for recursion

17 Joe Touch USC/ISI July 10, 200317 Demo configuration Outerlay 50 #50 TCP S/F – 3DES Others – MD5 UDP – SHA1 Base network 80 800 Innerlays

18 Joe Touch USC/ISI July 10, 200318 Monitor & Control GUI

19 Joe Touch USC/ISI July 10, 200319 Issue Positions Optimization Pathchar, proximity, node – OK Not for link QoS Upper-bound, increase delay – OK No guarantees IP for simplicity Any IP encapsulation tunnel Esp. if it looks like an interface

20 Joe Touch USC/ISI July 10, 200320 URLs All at www.isi.edu/touch www.isi.edu/xbone www.isi.edu/xtend www.isi.edu/dynabone www.isi.edu/tethernet

Download ppt "Joe Touch USC/ISI July 10, 2003 1 The X-Bone ICB Meeting July 10, 2003 Joe Touch Director, Postel Center for Experimental Networking Computer Networks."

Similar presentations

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.
TinyOS Tutorial, Part I Phil Levis et al. MobiSys 2003.

TinyOS Tutorial, Part I Phil Levis et al. MobiSys 2003.
NetServ Dynamic in-network service deployment Henning Schulzrinne (Columbia University) Srinivasan Seetharaman (Georgia Tech) Volker Hilt (Bell Labs)

NetServ Dynamic in-network service deployment Henning Schulzrinne (Columbia University) Srinivasan Seetharaman (Georgia Tech) Volker Hilt (Bell Labs)
Encrypting Wireless Data with VPN Techniques

Encrypting Wireless Data with VPN Techniques
1/10/20031 End-to-end QoS in the users' point of view ITU-T Workshop Geneva 1-3 October 2003 P-Y Hébert - ETSI.

1/10/20031 End-to-end QoS in the users' point of view ITU-T Workshop Geneva 1-3 October 2003 P-Y Hébert - ETSI.
All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.

All rights reserved © 2000, Alcatel 1 CPE-based VPNs Hans De Neve Alcatel Network Strategy Group.
Milano 25/2/20031 Bandwidth Estimation for TCP Sources and its Application Prepared for QoS IP 2003 R. G. Garroppo, S.Giordano, M. Pagano, G. Procissi,

Milano 25/2/20031 Bandwidth Estimation for TCP Sources and its Application Prepared for QoS IP 2003 R. G. Garroppo, S.Giordano, M. Pagano, G. Procissi,
Floating Cloud Tiered Internet Architecture Current: Rochester Institute of Technology, Rensselaer Polytechnic Institute, University of Nevada, Reno Level.

Floating Cloud Tiered Internet Architecture Current: Rochester Institute of Technology, Rensselaer Polytechnic Institute, University of Nevada, Reno Level.
25 July 20031 Navigating Doors. 25 July 20032 Starting the Program A Doors shortcut icon is on the computer desktop Double-click the icon to start Doors.

25 July Navigating Doors. 25 July Starting the Program A Doors shortcut icon is on the computer desktop Double-click the icon to start Doors.
28 July 20031 Doors Creating Time Zones. 28 July 20032 What is a Time Zone? A designated period of time in which access can be granted to a secure area.

28 July Doors Creating Time Zones. 28 July What is a Time Zone? A designated period of time in which access can be granted to a secure area.
Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.

Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.
INTRODUCTION TO SIMULATION WITH OMNET++ José Daniel García Sánchez ARCOS Group – University Carlos III of Madrid.

INTRODUCTION TO SIMULATION WITH OMNET++ José Daniel García Sánchez ARCOS Group – University Carlos III of Madrid.
Windows® Deployment Services

Windows® Deployment Services
July 30, 20031 Pro Rata Budgeting. July 30, 20032 Pro Rata Budgeting Pro Rata Detail by Funds reports are available on the Internet no later than October.

July 30, Pro Rata Budgeting. July 30, Pro Rata Budgeting Pro Rata Detail by Funds reports are available on the Internet no later than October.
Brook for GPUs Ian Buck, Tim Foley, Daniel Horn, Jeremy Sugerman Pat Hanrahan GCafe December 10th, 2003.

Brook for GPUs Ian Buck, Tim Foley, Daniel Horn, Jeremy Sugerman Pat Hanrahan GCafe December 10th, 2003.
HetnetIP Ethernet BackHaul Configuration Automation Demo.

HetnetIP Ethernet BackHaul Configuration Automation Demo.
The Impact of SDN On MPLS Networks Adrian Farrel Juniper Networks

The Impact of SDN On MPLS Networks Adrian Farrel Juniper Networks
A. BobbioReggio Emilia, June 17-18, 20031 Dependability & Maintainability Theory and Methods 3. Reliability Block Diagrams Andrea Bobbio Dipartimento di.

A. BobbioReggio Emilia, June 17-18, Dependability & Maintainability Theory and Methods 3. Reliability Block Diagrams Andrea Bobbio Dipartimento di.
Sales Guide for DES-3810 Series Aug 2011 D-Link HQ.

Sales Guide for DES-3810 Series Aug 2011 D-Link HQ.
L. Alchaal & al. Page 1 2002 Offering a Multicast Delivery Service in a Programmable Secure IP VPN Environment Lina ALCHAAL Netcelo S.A., Echirolles INRIA.

L. Alchaal & al. Page Offering a Multicast Delivery Service in a Programmable Secure IP VPN Environment Lina ALCHAAL Netcelo S.A., Echirolles INRIA.

Similar presentations

Ads by Google