Serval: An End- Host Stack for Service- Centric Networking

Transcription

1 serval- arch.org Serval: An End- Host Stack for Service- Centric Networking Erik Nordström David Shue, Prem Gopalan, Rob Kiefer, Mat Arye, Steven Ko, Jen Rexford, Mike Freedman Princeton University

2 The Internet of the 1970s Killer Apps: telnet, Sp IMP 2 SRI IMP 4 Utah IMP 3 UCSB IMP 1 UCLA Network designed for accessing hosts

3 The Internet of the 2000s Datacenter Datacenter Users agnosyc of actual service locayon and host

4 What does Service Access Involve? 1. Locate a nearby service datacenter Map service name to locayon 2. Connect to service Establish data flow to instance Load balance between pool of replicas 3. Maintain connecyvity to service Migrate between interfaces and networks

5 Today s (Overloaded) AbstracYons Service is IP + port Exposes locayon Specifies app. protocol One service per IP Flow is five tuple Binds flow to interface and locayon Cannot migrate between interfaces or networks TCP/IP connect (IP + port) demux (IP + port) ApplicaYon Transport Network

6 Service Access Today Enterprise Network Transit Provider Datacenter 4G Cellular Provider Datacenter

7 Finding a Service LocaYon Enterprise Network Transit Provider DNS 4G Cellular Provider Load- Balanced Web Service DNS binds service to locayon at client (early binding) Caching and ignoring TTL exacerbates the problem Slow failover when instance or load balancer fail

8 ConnecYng to Service Enterprise Network Transit Provider 4G Cellular Provider Load- Balanced Web Service Datacenter LB maps single IP to mulyple servers Must do this for every packet on path - > fate sharing Increases complexity and cost

9 Maintaining ConnecYvity to Service Enterprise Network Transit Provider VM MigraYon 4G Cellular Provider Datacenter Migrate VMs to balance load in the cloud Requires flat addressing or tunneling within datacenter

10 Maintaining ConnecYvity to Service 4G MulY- Homing Enterprise Network Cellular Provider Transit Provider Physical Mobility Datacenter Datacenter Flows break when switching networks or interfaces

11 ContribuYons Naming abstracyons Services, flows Clean role separayon in the network stack SoSware architecture for services (Serval) Service- level control/data plane split Service- level events

12 Naming AbstracYons

13 Today s (Overloaded) AbstracYons TCP/IP connect (IP + port) demux (IP + port) forward (IP) ApplicaYon Transport Network

14 Serval AbstracYons Serval cleans the slate (But not completely) Serval Network layer unmodified! Service Access Layer (SAL) Connects to services Maintains connecyvity forward (IP) ApplicaYon Transport Service Access Network

15 Serval AbstracYons Service = ServiceID Group of processes with idenycal funcyonality Flow = FlowID Invariant demux key Host- local, ephemeral LocaYon = IP address LocaYon, interface Can change dynamically Serval connect (serviceid) demux ( serviceid ) flowid forward (IP) ApplicaYon Transport Service Access Network

16 A Clean Role SeparaYon in the Stack What you access (serviceid), over which flows (flowids), and at which service instance (IP address) ApplicaYon Transport Service Access Network TCP/IP connect (IP + port) demux (IP + port) forward (IP) Serval connect (serviceid) demux ( serviceid flowid ) forward (IP)

17 Service Names (ServiceIDs) Provider prefix Provider- specific Self- ceryfying ServiceIDs allocated in blocks Prefix ensures global uniqueness Prefix- based aggregayon and LPM A ServiceID late binds to service instance ServiceID in first packet of connecyon Service- level rouyng and forwarding

18 A Service- Aware Network Stack connect(sock, serviceid) bind(sock, serviceid) listen(sock) Network stack must resolve service to instance for client Network stack must adver/se service for server

19 SoSware Architecture

20 Serval End- host Architecture ApplicaYon Service Controller Service Control API FlowID Socket ServiceID Ac;on Sock/Addr Flow Table Service Table Dest Address Next Hop IP Forwarding Table

21 Data Plane: The Service Table ServiceID Ac;on Rule State Prefix A FORWARD Send to addr A1 Prefix B FORWARD Send to [A2, A3, A4] Prefix C DEMUX Send to listening sock s Prefix D Prefix E DELAY DROP Queue and noyfy service controller default FORWARD Send to A5

22 Data Plane: The Service Table ServiceID Ac;on Rule State Prefix A FORWARD Send to addr A1 Prefix B FORWARD Send to [A2, A3, A4] Prefix C DEMUX Send to listening sock s Prefix D Prefix E DELAY DROP Queue and noyfy service controller default FORWARD Send to A5

23 Data Plane: The Service Table ServiceID Ac;on Rule State Prefix A FORWARD Send to addr A1 Prefix B FORWARD Send to [A2, A3, A4] Prefix C DEMUX Send to listening sock s Prefix D Prefix E DELAY DROP Queue and noyfy service controller default FORWARD Send to A5

24 Data Plane: The Service Table ServiceID Ac;on Rule State Prefix A FORWARD Send to addr A1 Prefix B FORWARD Send to [A2, A3, A4] Prefix C DEMUX Send to listening sock s Prefix D Prefix E DELAY DROP Queue and noyfy service controller default FORWARD Send to A5

25 Data Plane: The Service Table ServiceID Ac;on Rule State Prefix A FORWARD Send to addr A1 Prefix B FORWARD Send to [A2, A3, A4] Prefix C DEMUX Send to listening sock s Prefix D Prefix E DELAY DROP Queue and noyfy service controller default FORWARD Send to A5

26 Service Access with Serval Service Router X a Internet c d X Datacenter e

27 Adding a Service Instance ApplicaYon S bind(x) listen() Service Controller Register Service X FlowID Socket ServiceID Ac;on Sock/Addr X DMX s Add DEMUX rule

28 Removing a Service Instance ApplicaYon S close() Service Controller Unregister Service X FlowID Socket ServiceID Ac;on Sock/Addr X DMX s Remove DEMUX rule

29 Control Plane: The Service Controller Service address a Service Controller Service Controller DNS

30 Control Plane: The Service Controller Service Controller Service address d FlowID Socket ServiceID Ac;on Sock/Addr X FWD d Add FORWARD rule

31 Service Access with Serval X bind(x) a X/24 c Internet X d,e X/24@c Service Router c d X bind(x) Datacenter e

32 ConnecYng to Service X ApplicaYon Service Controller S socket() FlowID Socket 2 s Allocates local flowid ServiceID Ac;on Sock/Addr X FWD c a

33 ConnecYng to Service X ApplicaYon S connect(x) FlowID Socket 2 s ServiceID Ac;on Sock/Addr X FWD c a a c 2 - X SYN To c

34 Load Balancing in Service Router FlowID Socket ServiceID Ac;on Sock/Addr X FWD d,e From a c a c 2 - X SYN f To e a e 2 - X SYN

35 Service Instance Providing Service X ApplicaYon S FlowID Socket ServiceID Ac;on Sock/Addr X DMX s From a e a e 2 - X SYN

36 Service Instance Providing Service X ApplicaYon S c S accept() FlowID Socket 3 s c ServiceID Ac;on Sock/Addr X DMX s To a e e a 3 2 SYN- ACK

37 Service Access with Serval a c X SYN X d,e a e X Service Router SYN X a e a Internet SYN- ACK c d X e a data Datacenter e

38 Ad hoc Service Discovery Accessing service X connect(x) b a SYN- ACK X b a * X SYN a c a SYN- ACK ServiceID Ac;on Rule State default FORWARD broadcast X c

39 What does Service Access Involve? 1. LocaYng a nearby service datacenter Map service name to locayon 2. ConnecYng to service Establish data flow to instance Load balance between pool of replicas 3. Maintaining connecyvity to service Migrate between interfaces and networks

40 MigraYon of Flows f C1 a1 a3 f S1 s C a2 a4 s S Host C Host S Migrate flow a1 - > a2 RSYN RSYN- ACK ACK

41 MulYpath with MulYple Subflows f C1 a1 a3 f S1 s C f C2 Host C a2 a4 f S2 Host S s S Add flow a2 <- > a4 SYN SYN- ACK ACK

42 Prototype End- host network stack (28,000 LOC) Linux kernel module BSD sockets with AF_SERVAL protocol family AF_INET sockets can be accessed simultaneously Legacy middleboxes / NATs handled via encap. Translator for incremental deployment Unmodified apps and end- hosts Serval apps with unmodified services

43 Incremental Deployment App TCP/IP Translator Serval

44 Incremental Deployment Translator App TCP/IP Serval Translator TCP/IP

45 Use of MigraYon on Clients WiFi Cellular Saves > 900 MB cellular data per month Single Serval TCP connecyon that never breaks

46 Uses of MigraYon on Servers Throughput (Mbps) Load balancing across NICs Both flows use eth Time (s) Flow 1 moved to eth1 Flow 1 Flow 2

47 Uses of MigraYon on Servers Throughput (Mbps) MigraYng VMs across subnets Flow 1 VM changes subnet, acquiring new address Time (s) VM migrates flow to new address

48 CompeYYve Performance TCP Throughput Mean (Mbit/s) TCP/IP Serval Translator Service Table Throughput Mbit/s Kpkt/s IP forwarding Serval

49 ApplicaYons are Easy to Port Applica;on Codebase Changes Iperf 5, TFTP 3, wget 87, Elinks browser 115, Firefox browser 4,615, Mongoose webserver 8, Memcached server 8, Memcached client 12,

50 SDN to the Edges! SDN about network- wide visibility and control Today s SDN (OpenFlow) primarily focuses on layer- 2 / layer- 3 abstracyons Serval extends SDN model to the network edge New programming abstracyons for services, flows, hosts, and interfaces Service- level control/data plane split Joint service and network control

51 Summary of ContribuYons New naming abstracyons Clean role separayon in the stack Makes it easier to build and manage services SoSware architecture for services Flexible service resoluyon and discovery Maintains robust connecyvity Joint service and network management

52 serval- Papers, demos, source code (GPL) online

53 Related Work Locator/idenYfier separayon HIP, i3, HAIR, DOA, LISP, LNA Data- oriented networking DONA, CCNx Support for mobility and migrayon TCP Migrate, Mobile IP, ROAM MulYpath and muly- homing MPTCP, SCTP, Shim6