Introduc?on to pmacct
|
|
- Roy Chandler
- 5 years ago
- Views:
Transcription
1 Introduc?on to pmacct Paolo Lucente pmacct GRNOG Workshop #1, Athens May 2017
2 whoami Paolo Lucente GitHub: paololucente LinkedIn: plucente Digging data out of networks worldwide for fun and profit for more than 10 years
3 pmacct is open-source, free, GPL ed sooware libpcap Streaming Telemetry MySQL PgSQL SQLite sflow NetFlow IPFIX MongoDB BerkeleyDB tee sflow BGP BMP maps IGP GeoIP memory tables flat-files RabbitMQ Kafka NetFlow IPFIX hpp://
4 pmacct: a few simple use-cases NetFlow IPFIX flat-files sflow tee BMP Kafka libpcap IPFIX
5 pmacct: a slightly more complex use-case tee NetFlow IPFIX nfacctd aggregation method #1 aggregation method #2 flat-files MySQL Kafka BGP
6 The use-case for message brokers
7 pmacct-to-elas?csearch Credits to: Pier Carlo Chiodi, hpps://github.com/pierky/pmacct-to-elas?csearch
8 Use cases by industry
9 Key pmacct non-technical facts 10+ years old project Can t spell the name aoer the second drink Free, open-source, independent Under ac?ve development Innova?on being introduced Well deployed around, also large SPs Aims to be the traffic accoun?ng tool closer to the SP community needs
10 Some technical facts (1/2) Pluggable architecture: Can easily add support for new data sources and backends Correla?on of data sources: Na?vely supported data sources (ie. BGP, BMP, IGP, Streaming Telemetry) External data sources via tags and labels Pervasive data-reduc?on techniques, ie.: Data aggrega?on Filtering Sampling
11 Some technical facts (2/2) Build mul?ple views out of the very same collected network traffic dataset, ie.: Unaggregated to flat-files for security and forensics; or to message brokers (RabbitMQ, Kaga) for Big Data Aggregated as [ <ingress router>, <ingress interface>, <BGP next-hop>, <peer des?na?on ASN> ] and sent to a SQL DB to build an internal traffic matrix for capacity planning purposes Enable analy?cs against the collected data sources (ie. BGP, BMP, Streaming Telemetry): Stream real-?me Dump at regular?me intervals (possible state compression)
12 Further informa?on about pmacct hpps://github.com/pmacct/pmacct Official GitHub repository, where star and watch us J hpp:// More about coupling telemetry and BGP hpp://ripe61.ripe.net/presenta?ons/156-ripe61-bcpplanning-and-te.pdf More about traffic matrices, capacity planning & TE hpps://github.com/pmacct/pmacct/wiki/ Wiki: docs, implementa?on notes, ecosystem, etc.
13 It just seemed Greece was the right place where to share octopus stories.. GRNOG Workshop #1, Athens May 2017
14 Introduc?on to pmacct Thanks! Ques?ons? Paolo Lucente hpp:// hpps://github.com/pmacct/pmacct GRNOG Workshop #1, Athens May 2017
15 Latests on BGP monitoring Paolo Lucente NTT Communica?ons pmacct GRNOG Workshop #1, Athens May 2017
16 BGP Protocol to adver?se Reachability Informa?on: The Network Layer part of the story, while s?ll dominant, is old : BGP is used as transport for a variety of different info Good at policy control: Although quality factors, ie. latency, jiper and packet loss, increasingly popular for content delivery in place of the tradi?onal BGP selec?on algorithm Good at informa?on hiding: But, then again, this is the recipe for scaling to the current Internet size and beyond
17 Early apempts at gaining visibility Circa 2013 Goal: see all paths in a BGP mul?-path scenario, avoiding screen scraping Credits to: E. Jasinska (Nezlix), P. Lucente NANOG61
18 BMP BGP Monitoring Protocol RFC 7854: first drao in 2008, sparse work un?l 2012; stall between 2012 and 2015; real trac?on kicks in: 10 draos between 2015 and 2016; RFC award in Jun 2016 Uncomplicated protocol design Great effort but.... industry evolved all these years increased hunger for data A DevOps guy during lunch break
19 Tradi?onal BGP monitoring Peers BGP is the world s best informa?on hiding protocol <tm>. It only gives me the router s best path P 0 P 1 P 2 P 3 P 4 Peering Router Best P 3 Path Vantage Point (VP) And VP does not even know why P 3 was chosen Credits to: R. Bush BMP BoF, RIPE74
20 BGP monitoring with BMP (1/2) Peers With BMP, I learn all the paths the peering router heard P 0 P 1 P 2 P 3 P 4 Peering Router All P 0-4 Paths Vantage Point Credits to: R. Bush BMP BoF, RIPE74
21 BGP monitoring with BMP (2/2)
22 BMP: problem statement The BGP protocol is one of the very few protocols running on the Internet that has a standardized, clean and separate monitoring plane, BMP (think, for example, to DNS..) S?ll BMP, in its current shape, does cover only pre- and post- policies Adj-RIB-In; an operator would probably need: Actual BGP peering(s) for loc-rib Worse-case, screen scraping for Adj-RIB-Out
23 Problem statement visualized We can see this BGP Peer-A Adj-Rib-In (Pre) BGP Peer-B Adj-Rib-In (Pre) Filters/Policy Filters/Policy And this Adj-Rib-In (Post) Adj-Rib-In (Post) Credits to: T. Evens (Cisco), S. Bayraktar (Cisco), P. Lucente GROW WG, IETF 98
24 Proposal: extend BMP to loc-rib and Adj-RIB-Out (1/3) BGP Peer-A Adj-Rib-In (Pre) BGP Peer-B Adj-Rib-In (Pre) Sta?c ISIS Filters/Policy Filters/Policy Adj-Rib-In (Post) Adj-Rib-In (Post) Accepted Accepted And this We also want to see this Loc-Rib Adj-Rib-Out (Pre) Filters/Policy And this Adj-Rib-Out (Post) Credits to: T. Evens (Cisco), S. Bayraktar (Cisco), P. Lucente GROW WG, IETF 98
25 Proposal: extend BMP to loc-rib and Adj-RIB-Out (2/3)
26 Proposal: extend BMP to loc-rib and Adj-RIB-Out (3/3)
27 drao-evens-grow-bmp-{local-rib,adj-rib-out} use-cases Loc-RIB: Monitor routes selected and user by the router: o ECMP o Correla?on with NetFlow/IPFIX o Next-hop preserva?on Monitor locally originated and BGP routes without requiring peering Policy verifica?on Adj-RIB-Out: Monitor routes adver?sed to peers Policy verifica?on Credits to: T. Evens (Cisco), S. Bayraktar (Cisco), P. Lucente GROW WG, IETF 98
28 Latests on BGP monitoring Thanks! Ques?ons? Paolo Lucente NTT Communica?ons pmacct GRNOG Workshop #1, Athens May 2017
pmacct and Streaming Telemetry
pmacct and Streaming Telemetry Paolo Lucente pmacct ITNOG 2, Bologna Nov 2016 whoami Paolo Lucente Github: paololucente Twitter: @Paolo_Lucente Digging data out of networks worldwide for fun and profit
More informationAgenda. About pmacct Spo0fy use- case Ne6lix use- case
Agenda About pmacct Spo0fy use- case Ne6lix use- case JANOG36 mee0ng, Kitakyushu Jul 2015 About pmacct JANOG36 mee0ng, Kitakyushu Jul 2015 pmacct is open- source, free, GPL ed solware libpcap MySQL PgSQL
More informationNetwork traffic telemetry (NetFlow, IPFIX, sflow)
Network traffic telemetry (NetFlow, IPFIX, sflow) Paolo Lucente pmacct SEE 3 mee>ng, Sofia Apr 2014 Presenta>on history 1.0: SEE 1 mee>ng, Dubrovnik, Sep 2011 1.1: MENOG 13 mee>ng, Kuwait City, Sep 2013
More informationCollec8ng telemetry data with pmacct
Collec8ng telemetry data with pmacct Paolo Lucente pmacct ALNOG 2, Tirana Nov 2018 Presenta8on history 1.1: MENOG 13 mee8ng, Kuwait City, Sep 2013 1.2: 1.3: 1.4: SEE 3 mee8ng, Sofia, Apr 2014 AfPIF 2017
More informationCollec:ng telemetry data with pmacct
Collec:ng telemetry data with pmacct Paolo Lucente pmacct AfPIF 2017, Abidjan Aug 2017 Presenta:on history 1.1: MENOG 13 mee:ng, Kuwait City, Sep 2013 1.2: 1.3: SEE 3 mee:ng, Sofia, Apr 2014 AfPIF 2017
More informationBGP Policy violations in the data-plane
BGP Policy violations in the data-plane Pierre Francois, Institute IMDEA Networks Paolo Lucente, PMACCT pierre.francois@imdea.org paolo@pmacct.net Agenda Two well-known facts about routing... leading to
More informationBGP Peering Engineering Automation challenges and enablers Cloud & Virtualization Group
BGP Peering Engineering Automation challenges and enablers Cloud & Virtualization Group Camilo Cardona (camcardo@cisco.com), Paolo Lucente (plucente@cisco.com) November 2015 v5.1 Introduction Inter-domain
More informationNew World BGP. Geoff Huston January2010 APNIC
New World BGP Geoff Huston January2010 APNIC 16- bit AS Number Map 16- bit AS Number Map Unadvertised AS Numbers RIR Pool AS Numbers Advertised AS Numbers IANA Pool 16- bit AS Number Map Unadvertised AS
More informationBIER. Bit Indexed Explicit Replica0on. MBONED, IETF 92 Greg Shepherd
BIER Bit Indexed Explicit Replica0on MBONED, IETF 92 Greg Shepherd The BIER Epiphany Only encode the end- receivers in the packet header. Not the intermediate nodes. Assign end- receivers a Bit Posi0on
More informationRIPE76 - Rebuilding a network data pipeline. Louis Poinsignon
RIPE76 - Rebuilding a network data pipeline Louis Poinsignon Who am I Louis Poinsignon Network Engineer @ Cloudflare. Building tools for data analysis and traffic engineering. What is Cloudflare? Content
More informationNext hop in rou-ng Summary of Future Internet WP1 work. Hannu Flinck
Next hop in rou-ng Summary of Future Internet WP1 work Hannu Flinck Original focus on Rou-ng Scalability Mo$va$on: Internet Architecture Board stated (in RFC 4984): rou-ng scalability is the most important
More informationRIPE75 - Network monitoring at scale. Louis Poinsignon
RIPE75 - Network monitoring at scale Louis Poinsignon Why monitoring and what to monitor? Why do we monitor? Billing Reducing costs Traffic engineering Where should we peer? Where should we set-up a new
More informationData-Driven Network Opera1ons. France-IX 2016 Avi Freedman
Data-Driven Network Opera1ons France-IX 2016 Avi Freedman Summary Why Data-Driven Network Opera1ons? The food: data types and sources Requirements and tool types Data Fusion Business-driven use cases:
More informationNetwork Traffic Visibility and Anomaly October 27th, 2016 Dan Ellis
Network Traffic Visibility and Anomaly Detection @Scale: October 27th, 2016 Dan Ellis Introduction Network traffic visibility? Introduction Network traffic visibility? What data is available on your network
More informationRIPE NCC Routing Information Service (RIS)
RIPE NCC Routing Information Service (RIS) Overview Colin Petrie 14/12/2016 RON++ What is RIS? What is RIS? Worldwide network of BGP collectors Deployed at Internet Exchange Points - Including at AMS-IX
More informationOPTIMAL ROUTING VS. ROUTE REFLECTOR VNF - RECONCILE THE FIRE WITH WATER
OPTIMAL ROUTING VS. ROUTE REFLECTOR VNF - RECONCILE THE FIRE WITH WATER Rafal Jan Szarecki #JNCIE136 Solu9on Architect, Juniper Networks. AGENDA Route Reflector VNF - goals Route Reflector challenges and
More informationMonitoring IPv6 Content Accessibility and Reachability. Contact: R. Guerin University of Pennsylvania
Monitoring IPv6 Content Accessibility and Reachability Contact: R. Guerin (guerin@ee.upenn.edu) University of Pennsylvania Outline Goals and scope So=ware overview Func@onality, performance, and requirements
More informationBGP Routing and BGP Policy. BGP Routing. Agenda. BGP Routing Information Base. L47 - BGP Routing. L47 - BGP Routing
BGP Routing and BGP Policy BGP Routing The BGP Routing Principles and Route Decisions based on AS-Path in a simple topology of AS s routing policy is reduced to a minimal function demonstrated in example
More information4-Byte AS Numbers. The view from the Old BGP world. Geoff Huston February 2007 APNIC
4-Byte AS Numbers The view from the Old BGP world Geoff Huston February 2007 APNIC AS Number Consumption AS Number Consumption IANA Pool You are here Projections Total AS Count Advertised AS Count Unadvertised
More informationProgrammatic Interface to Routing
Programmatic Interface to Routing NANOG 61 Draft version, slides will be updated before presentation Applications and Networks Routing system players: the Application and the Network. Different interdependent
More informationModeling the Routing of an ISP with C-BGP
Modeling the Routing of an ISP with C-BGP Bruno Quoitin bruno.quoitin@uclouvain.be IP Networking Lab (INL) Computer Science & Engineering Department Université catholique de Louvain, Belgium 2009 B. Quoitin
More informationReducing FIB Size with Virtual Aggregation (VA)
Reducing FIB Size with Virtual Aggregation (VA) Paul Francis, MPI-SWS Xiaohu Xu, Huawei, Hitesh Ballani, Cornell Dan Jen, UCLA Robert Raszuk, Cisco Lixia Zhang, UCLA ISPs often want to extend the life
More informationFrom NetFlow to IPFIX the evolution of IP flow information export
From NetFlow to IPFIX the evolution of IP flow information export Brian Trammell - CERT/NetSA - Pittsburgh, PA, US Elisa Boschi - Hitachi Europe - Zurich, CH NANOG 41 - Albuquerque, NM, US - October 15,
More informationA Segment Routing (SR) Tutorial. R. Bonica NANOG70 June 6, 2017
A Segment Routing (SR) Tutorial R. Bonica NANOG70 June 6, 2017 AKA: SPRING IETF Standardization Source Packet Routing In Networking (SPRING) WG ISIS, OSPF, IDR and MPLS WGs What is SR? A tunneling technology
More informationAccurate yet long winded 1tle: Exposing network, VM edge and power topology via LLDP and BGP- LinkState - - and possible implica1ons
Accurate yet long winded 1tle: Exposing network, VM edge and power topology via and BGP- LinkState - - and possible implica1ons Brian Field / Comcast 5/23/13 BField / Comcast (NANOG June 2013) 1 Applying
More informationEULER Project Path-Vector Routing Stability Analysis
EULER Project Path-Vector Routing Stability Analysis Florin Coras, Albert Lopez, Albert Cabellos UPC Dimitri Papadimitriou Alcatel-Lucent Introduction BGP Inter-domain routing protocol used in the Internet
More informationPNDA.io: when BGP meets Big-Data
PNDA.io: when BGP meets Big-Data Let s go back in time 26 th April 2017 The Internet is very much alive Millions of BGP events occurring every day 15 Routers Monitored 410 active peers (both IPv4 and IPv6)
More informationA configuration-only approach to shrinking FIBs. Prof Paul Francis (Cornell)
A configuration-only approach to shrinking FIBs Prof Paul Francis (Cornell) 1 Virtual Aggregation An approach to shrinking FIBs (and RIBs) In routers, not in route reflectors Works with legacy routers
More informationIntroduc)on to Computer Networks
Introduc)on to Computer Networks COSC 4377 Lecture 15 Spring 2012 March 19, 2012 Announcements HW7 due this week HW8 due 3/28 Exam 2 on 4/23 HW7 RIP (Rou)ng Informa)on Protocol) Components Forwarding Rou)ng
More informationKey Nego(a(on Protocol & Trust Router
Key Nego(a(on Protocol & Trust Router dra6- howle:- radsec- knp ABFAB, IETF 80 31 March, Prague. Introduc(on The ABFAB architecture does not require any par(cular AAA strategy for connec(ng RPs to IdPs.
More informationBGP IN THE DATA CENTER
BGP IN THE DATA CENTER A PACKET DESIGN E-BOOK Contents Page 3 : BGP the Savior Page 4 : Traditional Data Center Architecture Traffic Flows Scalability Spanning Tree Protocol (STP) Page 6 : CLOS Architecture
More informationBGP Traffic Engineering
BGP Traffic Engineering Andy Davidson andy@2connec,ntl.com 2Connect UK, LONAP, IXLeeds BCIX Tech Roundtable, 19 th Nov 2012, Berlin Why do Traffic Engineering? Manage your capacity demands Ensure service
More informationMultihoming Complex Cases & Caveats
Multihoming Complex Cases & Caveats ISP Workshops Last updated 6 October 2011 Complex Cases & Caveats p Complex Cases n Multiple Transits n Multi-exit backbone n Disconnected Backbone n IDC Multihoming
More informationBGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)
BGP Border Gateway Protocol (an introduction) Karst Koymans Informatics Institute University of Amsterdam (version 16.4, 2017/03/13 13:32:49) Tuesday, March 14, 2017 General ideas behind BGP Background
More informationElastic Multicast. Brian Adamson NRL Claudiu Danilov Boeing Joe Macker NRL. dra;- adamson- elas=cmcast November 2013 IETF 88 - Vancouver
Elastic Multicast Brian Adamson NRL Claudiu Danilov Boeing Joe Macker NRL dra;- adamson- elas=cmcast- 00 7 November 2013 IETF 88 - Vancouver Outline Background and Main Concept Protocol Descrip6on Some
More informationSome Initial Measurements of Prefix Length Philtres
Some Initial Measurements of Prefix Length Philtres Jennifer Rexford Steve Bellovin Randy Bush NANOG / Scottsdale 2001.05.21 What
More informationinternet technologies and standards
Institute of Telecommunications Warsaw University of Technology internet technologies and standards Piotr Gajowniczek BGP (Border Gateway Protocol) structure of the Internet Tier 1 ISP Tier 1 ISP Google
More informationShim6: Network Operator Concerns. Jason Schiller Senior Internet Network Engineer IP Core Infrastructure Engineering UUNET / MCI
Shim6: Network Operator Concerns Jason Schiller Senior Internet Network Engineer IP Core Infrastructure Engineering UUNET / MCI Not Currently Supporting IPv6? Many parties are going forward with IPv6 Japan
More informationBorder Gateway Protocol (an introduction) Karst Koymans. Tuesday, March 8, 2016
.. BGP Border Gateway Protocol (an introduction) Karst Koymans Informatics Institute University of Amsterdam (version 15.6, 2016/03/15 22:30:35) Tuesday, March 8, 2016 Karst Koymans (UvA) BGP Tuesday,
More informationTopic. How rou=ng protocols work with IP. The Host/Router dis=nc=on. I don t! I route. CSE 461 University of Washington 1
Topic How rou=ng protocols work with IP The Host/Router dis=nc=on I route I don t! CSE 461 University of Washington 1 Recap In the Internet: Hosts on same network have IP addresses in the same IP prefix
More informationBGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)
BGP Border Gateway Protocol A short introduction Karst Koymans Informatics Institute University of Amsterdam (version 18.3, 2018/12/03 13:53:22) Tuesday, December 4, 2018 General ideas behind BGP Background
More information@ COUCHBASE CONNECT. Using Couchbase. By: Carleton Miyamoto, Michael Kehoe Version: 1.1w LinkedIn Corpora3on
@ COUCHBASE CONNECT Using Couchbase By: Carleton Miyamoto, Michael Kehoe Version: 1.1w Overview The LinkedIn Story Enter Couchbase Development and Opera3ons Clusters and Numbers Opera3onal Tooling Carleton
More informationThis chapter provides information to configure Cflowd.
Cflowd In This Chapter This chapter provides information to configure Cflowd. Topics in this chapter include: Cflowd Overview on page 564 Operation on page 565 Cflowd Filter Matching on page 569 Cflowd
More informationIntroduction to Netflow
Introduction to Netflow Campus Network Design & Operations Workshop These materials are licensed under the Creative Commons Attribution-NonCommercial 4.0 International license (http://creativecommons.org/licenses/by-nc/4.0/)
More informationBGP. Border Gateway Protocol A short introduction. Karst Koymans. Informatics Institute University of Amsterdam. (version 18.3, 2018/12/03 13:53:22)
BGP Border Gateway Protocol A short introduction Karst Koymans Informatics Institute University of Amsterdam (version 18.3, 2018/12/03 13:53:22) Tuesday, December 4, 2018 Karst Koymans (UvA) BGP Tuesday,
More informationTransformation through Innovation
INSSPG-2921 Transformation through Innovation Sumeet Arora Senior Vice President/GM, SP Network Systems Service Providers Biggest Challenges Web scale breaks our current cost and design models. l don t
More informationSDN Controllers in the WAN: protocols and applications
SDN Controllers in the WAN: protocols and applications Julian Lucek jlucek@juniper.net @julianlucek Agenda SDN Controller for WAN concept Enabling protocols BGP Link State (BGP-LS) Path Computation Element
More informationIntroduction to Segment Routing
Segment Routing (SR) is a flexible, scalable way of doing source routing. Overview of Segment Routing, page 1 How Segment Routing Works, page 2 Examples for Segment Routing, page 3 Benefits of Segment
More informationIBM Aurora Flow-Based Network Profiling System
IBM Aurora Flow-Based Network Profiling System Technical Aspects http://www.zurich.ibm.com/aurora/ Email: Jeroen Massar SwiNOG #15 4 December 2007 www.zurich.ibm.com/aurora
More informationBGP. Border Gateway Protocol (an introduction) Karst Koymans. Informatics Institute University of Amsterdam. (version 17.3, 2017/12/04 13:20:08)
BGP Border Gateway Protocol (an introduction) Karst Koymans Informatics Institute University of Amsterdam (version 17.3, 2017/12/04 13:20:08) Tuesday, December 5, 2017 Karst Koymans (UvA) BGP Tuesday,
More informationRFC2547 Convergence Characterization and Optimization
RFC2547 Convergence Characterization and Optimization Clarence Filsfils cf@cisco.com Session Number 1 RFC2547 Convergence - Requirement 90%: Typical requirement:
More informationDetecting routing anomalies using RIPE Atlas
Detecting routing anomalies using RIPE Atlas Todor Yakimov Graduate School of Informatics University of Amsterdam Wednesday, February 5, 2014 Todor Yakimov (UvA) Detecting routing anomalies using RIPE
More informationntop Users Group Meeting
ntop Users Group Meeting ntop Visibility, Security Awareness 1 meeting About ntop Private company devoted to development of Open Source network traffic monitoring applications. ntop (circa 1998) is the
More informationCOSC 310: So*ware Engineering. Dr. Bowen Hui University of Bri>sh Columbia Okanagan
COSC 310: So*ware Engineering Dr. Bowen Hui University of Bri>sh Columbia Okanagan 1 Admin A2 is up Don t forget to keep doing peer evalua>ons Deadline can be extended but shortens A3 >meframe Labs This
More informationRIPE Labs Operator Tools, Ideas, Analysis
RIPE Labs Operator Tools, Ideas, Analysis AMS-IX Meeting, Amsterdam, 16 Nov. 2011 Mirjam Kühne, RIPE NCC A Bit of History RIPE NCC started as the coordination centre for the RIPE community - RIPE Database,
More informationIPv6 Switching: Provider Edge Router over MPLS
Multiprotocol Label Switching (MPLS) is deployed by many service providers in their IPv4 networks. Service providers want to introduce IPv6 services to their customers, but changes to their existing IPv4
More informationThe routing challenges in IPv6 DoS mitigation. David Freedman Claranet IPv6 Security Workshop July 2017
The routing challenges in IPv6 DoS mitigation David Freedman Claranet IPv6 Security Workshop July 2017 This talk is about Using routing to steer or block traffic. This talk is not about What you do with
More informationTechniques and Protocols for Improving Network Availability
Techniques and Protocols for Improving Network Availability Don Troshynski dtroshynski@avici.com February 26th, 2004 Outline of Talk The Problem Common Convergence Solutions An Advanced Solution: RAPID
More informationSegment Routing With IS-IS v4 Node SID
This chapter describes how Segment Routing (SR) works with IS-IS. Restrictions for, page 1 Information About Segment Routing IS-IS v4 Node SID, page 1 How to Configure Segment Routing IS-IS v4 Node SID,
More informationIntroduc)on to Apache Ka1a. Jun Rao Co- founder of Confluent
Introduc)on to Apache Ka1a Jun Rao Co- founder of Confluent Agenda Why people use Ka1a Technical overview of Ka1a What s coming What s Apache Ka1a Distributed, high throughput pub/sub system Ka1a Usage
More informationOPENFLOW & SOFTWARE DEFINED NETWORKING. Greg Ferro EtherealMind.com and PacketPushers.net
OPENFLOW & SOFTWARE DEFINED NETWORKING Greg Ferro EtherealMind.com and PacketPushers.net 1 HUH? OPENFLOW. What is OpenFlow? From the bottom up. With big words. How OpenFlow does stuff. Then WHY we want
More informationImproving performance through BGP Graceful Shutdown draft-ietf-grow-bgp-gshut
Improving performance through BGP Graceful Shutdown draft-ietf-grow-bgp-gshut Job Snijders job@ntt.net NLNOG day 2017 1 What is BGP Graceful Shutdown? A simple procedure to reduce the negative impact of
More informationIntroduc)on to SDN and NFV. Tomás Lynch Solu/on Architect III Ericsson
Introduc)on to SDN and NFV Tomás Lynch Solu/on Architect III Ericsson SoBware- Defined Networking THE PATH TO SDN Introduc)on to SDN & NFV Ericsson AB 2015 2015-09- 25 Page 2 IP Router Evolu)on In the
More informationIPv6 Security Safe, Secure, and Supported.
IPv6 Security Safe, Secure, and Supported. Andy Davidson Hurricane Electric and LONAP adavidson@he.net Twitter: @andyd MENOG 9 Muscat, Oman, Tuesday 4 th October 2011 Don t Panic! IPv6 is not inherently
More informationUpdate from the RIPE NCC
Update from the RIPE NCC INEX Meeting, Dublin, 14 December 2011 Mirjam Kühne, RIPE NCC Outline RIPE Labs - Background, Purpose, Content, Participation IPv6 Activities and Statistics RIPE Atlas RIPEstat
More informationAttack Fingerprint Sharing: The Need for Automation of Inter-Domain Information Sharing
Attack Fingerprint Sharing: The Need for Automation of Inter-Domain Information Sharing RIPE 50 Stockholm, Sweden Danny McPherson danny@arbor.net May 3, 2005 Agenda What s a bot and what s it used for?
More informationFlowIntegrator. Integrating Flow Technologies with Mainstream Event Management Systems. Sasha Velednitsky
FlowIntegrator Integrating Flow Technologies with Mainstream Event Management Systems Sasha Velednitsky svelednitsky@netflowlogic.com NetFlow Logic Corporation January 2012 Problem Network infrastructure
More informationNetwork Management and Monitoring
Network Management and Monitoring Introduction to Netflow These materials are licensed under the Creative Commons Attribution-Noncommercial 3.0 Unported license (http://creativecommons.org/licenses/by-nc/3.0/)
More informationIPv6 Switching: Provider Edge Router over MPLS
Multiprotocol Label Switching (MPLS) is deployed by many service providers in their IPv4 networks. Service providers want to introduce IPv6 services to their customers, but changes to their existing IPv4
More informationExamination. IP routning på Internet och andra sammansatta nät, DD2491 IP routing in the Internet and other complex networks, DD2491
Examination IP routning på Internet och andra sammansatta nät, DD2491 IP routing in the Internet and other complex networks, DD2491 Date: October 21st 2008 10:00 13:00 a) No help material is allowed You
More informationVendor: Alcatel-Lucent. Exam Code: 4A Exam Name: Alcatel-Lucent Border Gateway Protocol. Version: Demo
Vendor: Alcatel-Lucent Exam Code: 4A0-102 Exam Name: Alcatel-Lucent Border Gateway Protocol Version: Demo QUESTION 1 Upon the successful establishment of a TCP session between peers, what type of BGP message
More informationSource Address Validation: from the Current Network Architecture to SDN-based Architecture
Source Address Validation: from the Current Network Architecture to SDN-based Architecture Jun Bi Tsinghua University/CERNET GFI 2013 Nov. 20, 2013 1 Content Source Address Validation Architecture (SAVA)
More informationAdvanced Multihoming. BGP Traffic Engineering
Advanced Multihoming BGP Traffic Engineering 1 Service Provider Multihoming Previous examples dealt with loadsharing inbound traffic Of primary concern at Internet edge What about outbound traffic? Transit
More informationNetwork Automation using modern tech. Egor Krivosheev 2degrees
Network Automation using modern tech Egor Krivosheev 2degrees Key parts of network automation today Streaming Telemetry APIs SNMP and screen scraping are still around NETCONF RFC6241 XML encoding Most
More informationBack to basics J. Addressing is the key! Application (HTTP, DNS, FTP) Application (HTTP, DNS, FTP) Transport. Transport (TCP/UDP) Internet (IPv4/IPv6)
Routing Basics Back to basics J Application Presentation Application (HTTP, DNS, FTP) Data Application (HTTP, DNS, FTP) Session Transport Transport (TCP/UDP) E2E connectivity (app-to-app) Port numbers
More informationEVPN Virtual Private Wire Service (VPWS) Single Homed
EVPN Virtual Private Wire Service (VPWS) Single Homed Effective Release Cisco IOS XE 3.18, this feature is now supported on Cisco ASR 920 Series Aggregation Services Router, EVPN-VPWS single homed is a
More informationTechnologies for the future of Network Insight and Automation
Technologies for the future of Network Insight and Automation Richard Wade (ricwade@cisco.com) Technical Leader, Asia-Pacific Infrastructure Programmability This Session s Context Service Creation Service
More informationStateless Multicast with Bit Indexed Explicit Replication
Stateless Multicast with Bit Indexed Explicit Replication IJsbrand Wijnands, Distinguished Engineer Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find
More informationSDN Workshop. Contact: WSDN01_v0.1
SDN Workshop Contact: training@apnic.net WSDN01_v0.1 Issue Date: [Date] Revision: [xx] BGP-LS SDN Workshop WSDN01_v0.1 Issue Date: [Date] Revision: [xx] Overview In a nutshell Motivations Introduction
More informationRIPE NCC Routing Information Service (RIS) 2017 Update
RIPE NCC Routing Information Service (RIS) 2017 Update Oleg Muravskiy ENOG 17 October 2017 What is RIS? What is RIS? Routing Information Service Worldwide network of BGP collectors Deployed at Internet
More informationUnderstanding Opera.onal Rou.ng (part II) Geoffrey Xie Naval Postgraduate School
Understanding Opera.onal Rou.ng (part II) Geoffrey Xie Naval Postgraduate School July 6, 2011 Route Aggrega.on Child Route Unallocated Child Prefix: e.g., 10.1.33.0/24 19.1.1.2 Aggregate Route 10.1.1.0/24
More informationBGP-TE APPLICATION LEVEL TOPOLOGY INTELLIGENCE
BGP-TE APPLICATION LEVEL TOPOLOGY INTELLIGENCE Hannes Gredler 1 Copyright 2012 Juniper Networks, Inc. www.juniper.net MOTIVATION Look across the fence Fence being IGP area/level or AS boundary Gain visibility
More informationConfigure Segment Routing for BGP
Border Gateway Protocol (BGP) is an Exterior Gateway Protocol (EGP) that allows you to create loop-free inter-domain routing between autonomous systems. An autonomous system is a set of routers under a
More informationLARGE SCALE IP ROUTING LECTURE BY SEBASTIAN GRAF
LARGE SCALE IP ROUTING LECTURE BY SEBASTIAN GRAF MODULE 05 MULTIPROTOCOL LABEL SWITCHING (MPLS) AND LABEL DISTRIBUTION PROTOCOL (LDP) 1 by Xantaro IP Routing In IP networks, each router makes an independent
More informationARP Address Resolu,on Protocol
ARP Address Resolu,on Protocol Security João Paulo Barraca jpbarraca@ua.pt 1 Networking Basics Communica,on in packet networks rely on several layers, with different iden,fiers: Applica,ons use TCP/UDP
More informationCSCI-1680 Network Layer: Inter-domain Routing Rodrigo Fonseca
CSCI-1680 Network Layer: Inter-domain Routing Rodrigo Fonseca Based partly on lecture notes by Rob Sherwood, David Mazières, Phil Levis, John Janno? Today Last time: Intra-Domain Routing (IGP) RIP distance
More informationBGPMON.IO: THE MANY NEW FACES OF BGPMON
BGPMON.IO: THE MANY NEW FACES OF BGPMON Colorado State University Spiros Thanasoulas and Christos Papadopoulos NANOG 69, Feb 6-8 2017, Washington DC Work supported by NSF #CNS1305404, DHS #D15PC00205,
More informationMul7cast protocols. IP Mul7cast and IGMP SRM (Scalable Reliable Mul7cast) PGM (Pragma7c General Mul7cast)
IP ANYCAST and MULTICAST; OVERLAYS and UNDERLAYS 1 IP Anycast Outline today Mul7cast protocols IP Mul7cast and IGMP SRM (Scalable Reliable Mul7cast) PGM (Pragma7c General Mul7cast) Overlay networks Tunnels
More informationAsynchronous SIP Routing
Asynchronous SIP Routing SIP Express Router (SER) and Kamailio (OpenSER) SIP-Router.org Daniel-Constantin Mierla Co-Founder Kamailio asipto.com www.kamailio.org 2 History 2002 Jun 2005 Jul 2008 Aug 2008
More informationMigrating from OSPF to IS-IS
Migrating from OSPF to IS-IS Philip Smith philip@nsrc.org SAFNOG 2 7 th -8 th April 2015 Mbabane Last updated 27 March 2014 1 Presentation slides p Available at: n http://bgp4all.com/ftp/seminars/safnog2-
More informationAbstrac(ons for Model Checking SDN Controllers. Divjyot Sethi, Srinivas Narayana, Prof. Sharad Malik Princeton University
Abstrac(ons for Model Checking SDN s Divjyot Sethi, Srinivas Narayana, Prof. Sharad Malik Princeton University Tradi(onal Networking Swt 1 Swt 2 Talk OSPF, RIP, BGP, etc. Swt 3 Challenges: - Difficult
More informationMeasurement: Techniques, Strategies, and Pitfalls. David Andersen CMU
Measurement: Techniques, Strategies, and Pitfalls David Andersen CMU 15-744 Many (most) slides in this lecture from Nick Feamster's measurement lecture Internet Measurement Process of collecting data that
More information32-bit ASNs. Greg Hankins Chris Malayter APRICOT 2009 APRICOT /02/25
32-bit ASNs Greg Hankins ghankins@force10networks.com Chris Malayter cmalayter@switchanddata.com APRICOT 2009 APRICOT 2009 2009/02/25 ASN Terminology Soup What??? 2-octet, 2-byte, 16-bit, ASN16, and OLD
More informationHigh Performance BGP Security: Algorithms and Architectures
High Performance BGP Security: Algorithms and Architectures Mehmet Adalier, Ko0kalapudi Sriram, Oliver Borchert, Kyehwan Lee, Doug Montgomery Email: madalier@antarateknik.com; ksriram@nist.gov Acknowledgements:
More informationService Provider Multihoming
Service Provider Multihoming ISP Workshops These materials are licensed under the Creative Commons Attribution-NonCommercial 4.0 International license (http://creativecommons.org/licenses/by-nc/4.0/) Last
More informationRequirements for Subscription to YANG Datastores draft-ietf-i2rs-pub-sub-requirements-01
Requirements for Subscription to YANG s draft-ietf-i2rs-pub-sub-requirements-01 NETCONF WG - IETF 92 Eric Voit, Alex Clemm, Alberto Gonzalez Prieto evoit@cisco.com, alex@cisco.com, albertgo@cisco.com March
More informationFlattening the Network
Flattening the Network Intro to BoF Session in Denver, June Neil Farquharson Birds of a Feather in Denver Please sign up for our BoF Session At NewNOG52, June 2 Taming January 2011 Data traffic predictions
More informationNaMeX Route Server HOWTO
NaMeX Route Server HOWTO June 24, 2010 1 Service overview Route servers (RS) are a value-added service that can be offered by IXPs. Actually, the availability of a RS within an IXP is becoming more and
More informationBGP Attributes and Path Selection
BGP Attributes and Path Selection ISP Training Workshops 1 BGP Attributes The tools available for the job 2 What Is an Attribute?... Next Hop AS Path MED...... Part of a BGP Update Describes the characteristics
More information