Presentation is loading. Please wait.

Presentation is loading. Please wait.

A RPKI RTR Client C Lib (RTRlib) - Implementation Update & First, Preliminary Performance Results Fabian Holler, Thomas C. Schmidt, and Matthias Wählisch.

Published byJessica Stanley Modified over 8 years ago

Similar presentations

Presentation on theme: "A RPKI RTR Client C Lib (RTRlib) - Implementation Update & First, Preliminary Performance Results Fabian Holler, Thomas C. Schmidt, and Matthias Wählisch."— Presentation transcript:

1 A RPKI RTR Client C Lib (RTRlib) - Implementation Update & First, Preliminary Performance Results Fabian Holler, Thomas C. Schmidt, and Matthias Wählisch holler_f@informatik.haw-hamburg.de {t.schmidt, waehlisch}@ieee.org 1

2 Background of RTRlib General objective: Implement RPKI-RTR client protocol in C Timeline so far: First idea announced @ IETF80 Implementation details @ IETF81 Beta version released 1st September 2011 – No failover between RTR-Servers supported 2

3 Architectural Design Layered architecture to support flexibility 3

4 Next release: Version 0.2 Includes many bug fixes – Thanks also to the interop tests with rcynic and RPKI-Validator Supports RTR-Server failover – Implementation of RTR Connection Manager Minor changes in the API – Consistent naming of functions – Convenience functions added – … Extended debug messages 4

5 Preliminary Evaluation Two perspectives of evaluation: 1.Current state of RPKI for ‘real’ BGP streams 2.Performance of the RTRlib implementation We will show (preliminary) results for both. 5

6 Setup Benchmark runs on commodity hardware – AMD Athlon 64 X2 CPU 4200+ and 2 GB RAM 6

7 Results One day measurement (November 4): 1336 prefixes received from RTR cache – Based on four different trust anchors 2264 unique prefixes verified as valid Invalid BGP Updates – 20% have a correct origin but incorrect MaxLength – 80% have an incorrect origin AS There exists a ROA Origin that is 1 hop away from the announced origin AS in 90% of the cases. – Similar order of magnitude for 5 day measurement 7

8 CPU Load – Nov. 4 8 1336 prefixes received from RTR Cache

9 CPU Load – Nov. 9-Nov. 14 9

10 Scaling Behavior of RTRlib: CPU Load 10 Added artificial prefixes to PFX Validate Table: 2,093,971 – Same performance as for 1336 prefixes

11 CPU Load & Prefix Update Rate 11

12 Memory Consumption 12 Side note: Including 1.000.000 entries from a file takes ~4 seconds

13 Conclusion & Outlook Manageable resource consumptions required Most of the invalid prefixes due to invalid origin AS – More interesting: For most of them, ROA origin only one hop away from announced origin -> Any ideas?? Release date for version 0.2: End of this week – For test purposes, we will provide an open RTR-Server instance Project website: http://rpki.realmv6.org/ – If interest, we can add continuously updated BGP validation statistics 13

Download ppt "A RPKI RTR Client C Lib (RTRlib) - Implementation Update & First, Preliminary Performance Results Fabian Holler, Thomas C. Schmidt, and Matthias Wählisch."

Similar presentations

BGP Prefix Origin Validation

BGP Prefix Origin Validation
1 Building a Fast, Virtualized Data Plane with Programmable Hardware Bilal Anwer Nick Feamster.

1 Building a Fast, Virtualized Data Plane with Programmable Hardware Bilal Anwer Nick Feamster.
Building Portals to access Grid Middleware National Technical University of Athens Konstantinos Dolkas, On behalf of Andreas Menychtas.

Building Portals to access Grid Middleware National Technical University of Athens Konstantinos Dolkas, On behalf of Andreas Menychtas.
BGP-SRx BGP - Secure Routing Extension BRITE BGP Security / RPKI Interoperability Test & Evaluation Doug Montgomery 1IETF 802/12/2014.

BGP-SRx BGP - Secure Routing Extension BRITE BGP Security / RPKI Interoperability Test & Evaluation Doug Montgomery 1IETF 802/12/2014.
Implementation and Verification of a Cache Coherence protocol using Spin Steven Farago.

Implementation and Verification of a Cache Coherence protocol using Spin Steven Farago.
IP Forwarding Relates to Lab 3.

IP Forwarding Relates to Lab 3.
Introduction to Dynamic Routing Protocols

Introduction to Dynamic Routing Protocols
Design and Implementation of the OLSR Protocol in an Ad Hoc Framework Juan Gutiérrez Plaza Supervisor: Raimo Kantola Instructor: José Costa Requena Networking.

Design and Implementation of the OLSR Protocol in an Ad Hoc Framework Juan Gutiérrez Plaza Supervisor: Raimo Kantola Instructor: José Costa Requena Networking.
Serverless Network File Systems. Network File Systems Allow sharing among independent file systems in a transparent manner Mounting a remote directory.

Serverless Network File Systems. Network File Systems Allow sharing among independent file systems in a transparent manner Mounting a remote directory.
Study of Hurricane and Tornado Operating Systems By Shubhanan Bakre.

Study of Hurricane and Tornado Operating Systems By Shubhanan Bakre.
Efficient IP-Address Lookup with a Shared Forwarding Table for Multiple Virtual Routers Author: Jing Fu, Jennifer Rexford Publisher: ACM CoNEXT 2008 Presenter:

Efficient IP-Address Lookup with a Shared Forwarding Table for Multiple Virtual Routers Author: Jing Fu, Jennifer Rexford Publisher: ACM CoNEXT 2008 Presenter:
RIS Resource Allocations A special report on an endangered species …

RIS Resource Allocations A special report on an endangered species …
ANDROID PROGRAMMING MODULE 1 – GETTING STARTED

ANDROID PROGRAMMING MODULE 1 – GETTING STARTED
Sun NFS Distributed File System Presentation by Jeff Graham and David Larsen.

Sun NFS Distributed File System Presentation by Jeff Graham and David Larsen.
Highly Available ACID Memory Vijayshankar Raman. Introduction §Why ACID memory? l non-database apps: want updates to critical data to be atomic and persistent.

Highly Available ACID Memory Vijayshankar Raman. Introduction §Why ACID memory? l non-database apps: want updates to critical data to be atomic and persistent.
Performance Tradeoffs for Static Allocation of Zero-Copy Buffers Pål Halvorsen, Espen Jorde, Karl-André Skevik, Vera Goebel, and Thomas Plagemann Institute.

Performance Tradeoffs for Static Allocation of Zero-Copy Buffers Pål Halvorsen, Espen Jorde, Karl-André Skevik, Vera Goebel, and Thomas Plagemann Institute.
1 A Common API for Transparent Hybrid Multicast (draft-waehlisch-sam-common-api-04) Matthias Wählisch, Thomas C. Schmidt Stig Venaas {waehlisch,

1 A Common API for Transparent Hybrid Multicast (draft-waehlisch-sam-common-api-04) Matthias Wählisch, Thomas C. Schmidt Stig Venaas {waehlisch,
HIMALAYA Test Review 16/12/2013 STI Deliverables: D4.1, D4.2 and D4.5.

HIMALAYA Test Review 16/12/2013 STI Deliverables: D4.1, D4.2 and D4.5.
Real-Time BGP Data Access 1 Mikhail Strizhov Colorado State University.

Real-Time BGP Data Access 1 Mikhail Strizhov Colorado State University.
1 4.2 MARIE This is the MARIE architecture shown graphically.

1 4.2 MARIE This is the MARIE architecture shown graphically.

Similar presentations

Ads by Google