Untrusting the network. Aijay Adams Jose Leitao Production Network Engineers
|
|
- Jason Hall
- 5 years ago
- Views:
Transcription
1 Untrusting the network Aijay Adams Jose Leitao Production Network Engineers
2 157 billion mobile monthly active users as of June billion daily active users on average 171 billion monthly active users 103 billion mobile daily active users on average
3 157 billion mobile monthly active users as of June billion daily active users on average 171 billion monthly active users 103 billion mobile daily active users on average Approximately 845% of our daily active users are outside the US and Canada
4 Data Center Network Spine Switches Cluster Switches Rack Switches Wide ECMP, many paths!
5 Backbone Network MPLS Backbone Data center Data center Auto Bandwidth ECMP over MPLS Tunnels
6 Racks Cluster 1 DC 1 Racks Backbone Region A Cluster 2 DC 2 Cluster 1 Racks POP B Cluster 1 Racks
7 Monitoring the Network????
8 Monitoring the Network Counters and Logs
9 Monitoring the Network Coworkers
10 Monitoring the Network! Coworkers
11 Investigate #network_engineer
12 NetNORAD The network fault detector githubcom/facebook/udppinger 2016 Facebook Dublin Credits: Photo by Jose Leitao
13 Ping all the things! Run pingers on some machines Run responders on all machines Collect and analyse data
14 Evolution Run /bin/ping from a python agent Raw Sockets, Fast TCP Probes Raw Sockets, Fast ICMP Probes UDP Probes and Responder UDP Probes and Responder + Fast ICMP Probes
15 Ping Pong Pingers - Send UDP and ICMP probes to target list - Timestamp & Log results - High ping-rate (up to 1Mpps) - Set DSCP marking Responders - Receive/Reply to probe - Timestamp - Low load: thousands of pps - Reflect DSCP value back
16 Why UDP? - No TCP RST packets - Efficient ECMP coverage - Extensible Probe Structure Signature Send Time Receive Time Response Time Traffic Class
17 NetNORAD Ping and Process Data githubcom/facebook/udppinger 2016 Facebook Dublin Credits: Photo by Jose Leitao
18 Challenges Tens of thousands of targets Hundreds of pingers Lots of data to process We really do not care about each host The unit of interest is cluster health
19 Pinging inside clusters - Detect issues with rack switches - Dedicated pingers per cluster - Probe ALL machines in cluster - Store time-series per host/rack - Lags real-time by 2 minutes
20 Pinging the clusters Cluster Pinger B Data center Data center Region Region Cluster Data center Pinger C Target Cluster Cluster Pinger A Pinger A, Same DC Pinger B, Same Region Pinger C, Outside of region
21 Alarming on Loss - Build packet loss time-series Alarm - Track percentiles Clear Alarm - Time to detect loss? 20 Seconds
22 Finding the problem Cluster Pinger B Data center Data center Region Region Cluster Data center Pinger C Target Cluster Cluster Pinger A
23 Finding the problem Cluster Pinger B Data center Data center Region Region Cluster Data center! Pinger C Target Cluster Cluster Pinger A
24 Finding the problem Each layer of the network contains many devices and many more links
25 fbtracert Isolating Network Faults githubcom/facebook/fbtracert 2016 Facebook Dublin Credits: Photo by Jose Leitao
26 fbtracert Source Destination
27 fbtracert Src Port Source Destination
28 fbtracert Src Port Source Src Port Destination
29 fbtracert Src Port Src Port Src Port Source Src Port Destination
30 fbtracert Src Port Source Src Port Destination
31 fbtracert Src Port Source Destination
32 DC Network Fault Isolation Isolating Network Faults 2016 Facebook Dublin Credits: Photo by Jose Leitao
33 Big Fat Fabrics Over 1,000 L3 Links between devices in different DCs in the SAME Region We know there is loss between hosts, but where?
34 DC Network Fault Isolation DC1 DC2 sw01 sw02 sw03 sw04 sw01 sw02 sw03 sw idc01 idc02 idc03 idc04 idc05 idc06 idc rsw26 rsw45 host1 Host idc08
35 Bad Fabric Card DC1 DC2 sw01 sw02 sw03 sw04 sw01 sw02 sw03 sw idc01 idc02 idc03 idc04 idc05 idc rsw26 rsw45 host1 Host idc08 idc07
36 Bad Link DC1 DC2 sw01 sw02 sw03 sw04 sw01 sw02 sw03 sw idc01 idc02 idc03 idc04 idc05 idc06 idc rsw26 rsw45 host1 Host idc08
37 ECMP Packet Hashing
38 DC Network Fault Isolation Port Range 50,000-54,000 idc01 Request Rate Approx 20,000 min 1 idc02 1 sw01 2 idc03 2 sw01 host1 rsw26 sw02 3 idc04 3 sw02 rsw45 Host sw03 4 idc05 4 sw03 FBTraceRT + Lots of Thrift Requests sw04 5 idc06 5 sw04 FBTraceRT + Lots of Thrift Requests 6 idc07 6 DC1 idc08 DC2
39 Map The Loss for Each Request DC1 DC2 sw01 sw02 sw03 sw04 sw01 sw02 sw03 sw idc01 idc02 idc03 idc04 idc05 idc06 idc rsw26 rsw45 host1 Host idc08
40 Map The Loss for Each Request DC1 DC2 sw01 sw02 sw03 sw04 sw01 sw02 sw03 sw idc01 idc02 idc03 idc04 idc05 idc06 idc rsw26 rsw45 host1 Host idc08
41 Overlay the Loss on Network Map DC1 DC2 Host sw01 sw02 sw03 sw04 sw01 sw02 sw03 sw idc01 idc02 idc03 idc04 idc05 idc06 idc rsw26 rsw45 host1 idc08
42 Analyze the Loss Error Count
43 Network Symmetry DC1 DC2 sw01 sw02 sw03 sw04 sw01 sw02 sw03 sw idc01 idc02 idc03 idc04 idc05 idc06 idc rsw26 rsw45 host1 Host idc
44 Clearer Signal
45 Fabric Grey Failure Detection
46 Conclusions Fault isolation is actively evolving Traceroute + probing approach is quite generic Limited by current hardware
47 bffvbivnvtfvkvbejifdhvggdcbuebbf 2016 Facebook Dublin Credits: Photo by Jose Leitao
Connecting the World:
Connecting the World: A look inside Facebook s Networking Infrastructure Arun Moorthy arunm@fb.com https://fb.me/arun.moorthy about:me B. Tech CSE - Indian Institute of Technology, 1997 MSCS, University
More informationLesson 9 OpenFlow. Objectives :
1 Lesson 9 Objectives : is new technology developed in 2004 which introduce Flow for D-plane. The Flow can be defined any combinations of Source/Destination MAC, VLAN Tag, IP address or port number etc.
More informationSMART Questionnaire. Fields marked with * are mandatory. Introduction
SMART Questionnaire Fields marked with are mandatory. Introduction Dear Sir or Madam, We have been tasked by the European Commission's DG CONNECT to gain a detailed understanding of the different measurement
More informationset active-probe (PfR)
set active-probe (PfR) set active-probe (PfR) To configure a Performance Routing (PfR) active probe with a forced target assignment within a PfR map, use the set active-probe command in PfR map configuration
More informationFGS-2616X L2+ Managed GbE Fiber Switches
FGS-2616X L2+ Managed GbE Fiber Switches FGS-2616XD FGS-2616XA FGS-2616X Overview FGS-2616X series L2+ Managed Switch are next-generation Fiber Switch offering full suite of L2 features and additional
More informationI Commands. iping, page 2 iping6, page 4 itraceroute, page 5 itraceroute6 vrf, page 6. itraceroute vrf encap vxlan, page 12
iping, page 2 iping6, page 4 itraceroute, page 5 itraceroute6 vrf, page 6 itraceroute6 vrf encap vlan, page 7 itraceroute6 vrf encap vxlan dst-mac, page 8 itraceroute vrf, page 9 itraceroute vrf encap
More information24-Port: 20 x (100/1000M) SFP + 4 x Combo (10/100/1000T or 100/1000M SFP)
BGS-20DSFP4C Managed Fiber Switch 24-Port: 20 x (100/1000M) SFP + 4 x Combo (10/100/1000T or 100/1000M SFP) Key Features L2+ features provide better manageability, security, QOS, and performance IEEE 802.3az
More informationConfiguring the Catena Solution
This chapter describes how to configure Catena on a Cisco NX-OS device. This chapter includes the following sections: About the Catena Solution, page 1 Licensing Requirements for Catena, page 2 Guidelines
More informationData Plane Monitoring in Segment Routing Networks Faisal Iqbal Cisco Systems Clayton Hassen Bell Canada
Data Plane Monitoring in Segment Routing Networks Faisal Iqbal Cisco Systems (faiqbal@cisco.com) Clayton Hassen Bell Canada (clayton.hassen@bell.ca) Reference Topology & Conventions SR control plane is
More informationConfiguring attack detection and prevention 1
Contents Configuring attack detection and prevention 1 Overview 1 Attacks that the device can prevent 1 Single-packet attacks 1 Scanning attacks 2 Flood attacks 3 TCP fragment attack 4 Login DoS attack
More informationNetwork Defenses 21 JANUARY KAMI VANIEA 1
Network Defenses KAMI VANIEA 21 JANUARY KAMI VANIEA 1 First, the news The Great Cannon of China https://citizenlab.org/2015/04/chinas-great-cannon/ KAMI VANIEA 2 Today Open System Interconnect (OSI) model
More informationCHAPTER 3 GRID MONITORING AND RESOURCE SELECTION
31 CHAPTER 3 GRID MONITORING AND RESOURCE SELECTION This chapter introduces the Grid monitoring with resource metrics and network metrics. This chapter also discusses various network monitoring tools and
More informationNetwork Defenses 21 JANUARY KAMI VANIEA 1
Network Defenses KAMI VANIEA 21 JANUARY KAMI VANIEA 1 Similar statements are found in most content hosting website privacy policies. What is it about how the internet works that makes this statement necessary
More informationCajun P220FE Switch Software Release Notes
CHAPTER 1 Cajun P220FE Switch Software Release Notes Software Version 1.2 (November 12, 1998) Document # 610-0064-041 P220FE Overview The Cajun P220FE switch is a stand-alone switch that consists of the
More informationIPv4 ACLs, identified by ACL numbers, fall into four categories, as shown in Table 1. Table 1 IPv4 ACL categories
Table of Contents ACL Configuration 1 ACL Overview 1 IPv4 ACL Classification 1 IPv4 ACL Rule Order 1 Rule Numbering Step with IPv4 ACLs 3 Effective Time Period of an IPv4 ACL 3 IP Fragments Filtering with
More informationOrganization of Product Documentation... xi
Contents Organization of Product Documentation... xi Chapter 1 Getting Started... 1-1 Introduction...1-1 Software Versions Covered...1-1 Audience...1-1 Conventions...1-1 Terminology...1-2 Support and Warranty
More informationThe Internet Measurement Toolbox. Justine Sherry, University of University of Puget Sound April 12, 2010
The Internet Measurement Toolbox Justine Sherry, University of Washington @ University of Puget Sound April 12, 2010 Research does not occur in an ivory tower of monastic isolation This work is the effort
More informationFundamental Questions to Answer About Computer Networking, Jan 2009 Prof. Ying-Dar Lin,
Fundamental Questions to Answer About Computer Networking, Jan 2009 Prof. Ying-Dar Lin, ydlin@cs.nctu.edu.tw Chapter 1: Introduction 1. How does Internet scale to billions of hosts? (Describe what structure
More informationinternet technologies and standards
Institute of Telecommunications Warsaw University of Technology 2017 internet technologies and standards Piotr Gajowniczek Andrzej Bąk Michał Jarociński Network Layer The majority of slides presented in
More informationNetwork Defenses KAMI VANIEA 1
Network Defenses KAMI VANIEA 26 SEPTEMBER 2017 KAMI VANIEA 1 First the news http://arstech nica.com/secu rity/2015/04/ meet-greatcannon-theman-in-themiddleweapon-chinaused-ongithub/ 2 First the news http://arstechni
More informationConfiguring attack detection and prevention 1
Contents Configuring attack detection and prevention 1 Overview 1 Attacks that the device can prevent 1 Single-packet attacks 1 Scanning attacks 2 Flood attacks 3 TCP fragment attack 4 Login DoS attack
More informationGigabit Ethernet XMVR LAN Services Modules
Gigabit Ethernet XMVR LAN Services Modules Ixia's Gigabit Ethernet XMVR LAN Services Modules (LSMs) offer Layer 2-3 network testing functionality in a single test system. Each test port supports wire-speed
More informationIntroduction. Network Architecture Requirements of Data Centers in the Cloud Computing Era
Massimiliano Sbaraglia Network Engineer Introduction In the cloud computing era, distributed architecture is used to handle operations of mass data, such as the storage, mining, querying, and searching
More informationECE 697J Advanced Topics in Computer Networks
ECE 697J Advanced Topics in Computer Networks Network Measurement 12/02/03 Tilman Wolf 1 Overview Lab 3 requires performance measurement Throughput Collecting of packet headers Network Measurement Active
More informationCS459 Internet Measurements
CS459 Internet Measurements Introduction to Traceroute and iplane Spring 2015 Traceroute Tool used to trace the path from source to destination host. TCP/IP not designed for traceroute, so it is sometimes
More informationOER Commands. November Cisco IOS Optimized Edge Routing Command Reference OER-3
OER-3 active-probe active-probe To configure an Optimized Edge Routing (OER) active probe for a target prefix, use the active-probe command in OER master controller configuration mode. To disable the active
More informationAutomating Cloud Networking with RedHat OpenStack
Automating Cloud Networking with RedHat OpenStack Madhu Kashyap Sr. Product Mgr, OpenStack & SDN 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. INTERNAL USE ONLY The New IP The Foundation for the Digital Business
More informationCloud Thinking in the Enterprise
Cloud Thinking in the Enterprise Sean Flack sean@aristanetwoks.com CCIE# 24438 Traditional Datacenter Design OSPF/BGP Public Internet Edge LB FW Core L3 1 2 OSPF Distribution Layer L2/L3 1 2 LB LB n-1
More informationHow to Configure a Remote Management Tunnel for Barracuda NG Firewalls
How to Configure a Remote Management Tunnel for Barracuda NG Firewalls If the managed NG Firewall can not directly reach the NG Control Center it must connect via a remote management tunnel. The remote
More informationCSCD58 WINTER 2018 WEEK 6 - NETWORK LAYER PART 1. Brian Harrington. February 13, University of Toronto Scarborough
CSCD58 WINTER 2018 WEEK 6 - NETWORK LAYER PART 1 Brian Harrington University of Toronto Scarborough February 13, 2018 ADMIN Assignments Midterm after reading week (Feb 27) In class Covering everything
More information2. INTRUDER DETECTION SYSTEMS
1. INTRODUCTION It is apparent that information technology is the backbone of many organizations, small or big. Since they depend on information technology to drive their business forward, issues regarding
More informationExtreme Networks How to Build Scalable and Resilient Fabric Networks
Extreme Networks How to Build Scalable and Resilient Fabric Networks Mikael Holmberg Distinguished Systems Engineer Fabrics MLAG IETF TRILL Cisco FabricPath Extreme (Brocade) VCS Juniper QFabric IEEE Fabric
More informationGigabit Managed Ethernet Switch
LGB1110A LGB1126A-R2 Product Data Sheet Gigabit Managed Ethernet Switch Features Overview LGB1110A The Gigabit Managed Ethernet Switches offer L2 features plus advanced L3 features such as Static Route
More informationCisco SGE Port Gigabit Switch Cisco Small Business Managed Switches
Cisco SGE2010 48-Port Gigabit Switch Cisco Small Business Managed Switches Performance and Reliability to Support Small Business Networks Highlights 48 high-speed ports optimized for the network core or
More informationGÉANT L3VPN Service Description. Multi-point, VPN services for NRENs
GÉANT L3VPN Service Description Multi-point, VPN services for NRENs Issue Date: 1 November 2017 GÉANT L3VPN Overview The GÉANT L3VPN service offers the National Research and Education Networks (NRENs)
More informationvrealize Operations Management Pack for NSX for vsphere 3.5.0
vrealize Operations Management Pack for NSX for vsphere 3.5.0 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new edition.
More informationLecture 19: Network Layer Routing in the Internet
Lecture 19: Network Layer Routing in the Internet COMP 332, Spring 2018 Victoria Manfredi Acknowledgements: materials adapted from Computer Networking: A Top Down Approach 7 th edition: 1996-2016, J.F
More informationAvailable Bandwidth Estimation. Probing Packet Train in Pathneck. Transmission of RPT. Choke Point Detection. Packet train probing
Measuring the Path Network Measurement: Measuring the Path Available Bandwidth/Bottleneck BFind,Pathchar,Cartouche Pathneck Link Capacity: Pathchar CapProbe Loss/Delay/Re-ording Tulip Joy Zhang Pathneck
More informationHP 5820X & 5800 Switch Series Network Management and Monitoring. Configuration Guide. Abstract
HP 5820X & 5800 Switch Series Network Management and Monitoring Configuration Guide Abstract This document describes the software features for the HP 5820X & 5800 Series products and guides you through
More information521262S Computer Networks 2 (fall 2007) Laboratory exercise #4: Multimedia, QoS and testing
521262S Computer Networks 2 (fall 2007) Laboratory exercise #4: Multimedia, QoS and testing Name Student ID Signature In this exercise we will take a little look at the multimedia and Quality of Service
More informationPSGS-2610F L2+ Managed GbE PoE Switch
PSGS-2610F L2+ Managed GbE PoE Switch Overview PSGS-2610F L2+ Managed PoE+ Switch is a next-generation Ethernet Switch offering full suite of L2 features, better PoE functionality and usability, including
More informationAruba SD-WAN. John Schaap 25 October #ArubaAirheads
Aruba SD-WAN John Schaap john.schaap@hpe.com 25 October 2018 Aruba Distributed Architectures SD-WAN MicroBranch (IAP-VPN) On the road (VIA) Enterprise DC 2 SD-WAN solution Overview 3 Overview Architecture
More informationTyphoon: An SDN Enhanced Real-Time Big Data Streaming Framework
Typhoon: An SDN Enhanced Real-Time Big Data Streaming Framework Junguk Cho, Hyunseok Chang, Sarit Mukherjee, T.V. Lakshman, and Jacobus Van der Merwe 1 Big Data Era Big data analysis is increasingly common
More informationCN-100 Network Analyzer Product Overview
CN-100 Network Analyzer Product Overview CN-100 network analyzers offer an extremely powerful yet cost effective solution for today s complex networking requirements. Test Ethernet or ATM networks with
More informationConfiguring Health Monitoring
CHAPTER1 This chapter describes how to configure health monitoring on the ACE to track the state of a server by sending out probes. Also referred to as out-of-band health monitoring, the ACE verifies the
More informationK2289: Using advanced tcpdump filters
K2289: Using advanced tcpdump filters Non-Diagnostic Original Publication Date: May 17, 2007 Update Date: Sep 21, 2017 Topic Introduction Filtering for packets using specific TCP flags headers Filtering
More informationCarl Harris Chief Technology Officer Virginia Tech IT
Carl Harris Chief Technology Officer Virginia Tech IT Timeline 1997 6Bone experimentation between VT Department of Electrical Engineering and IT division 1998 VT has Early Field Trial IPv6 firmware running
More informationIntegrating WX WAN Optimization with Netscreen Firewall/VPN
Application Note Integrating WX WAN Optimization with Netscreen Firewall/VPN Joint Solution for Firewall/VPN and WX Platforms Alan Sardella Portfolio Marketing Choh Mun Kok and Jaymin Patel Lab Configuration
More informationvolley: automated data placement for geo-distributed cloud services
volley: automated data placement for geo-distributed cloud services sharad agarwal, john dunagan, navendu jain, stefan saroiu, alec wolman, harbinder bhogan very rapid pace of datacenter rollout April
More informationLecture 3. The Network Layer (cont d) Network Layer 1-1
Lecture 3 The Network Layer (cont d) Network Layer 1-1 Agenda The Network Layer (cont d) What is inside a router? Internet Protocol (IP) IPv4 fragmentation and addressing IP Address Classes and Subnets
More information3.2 COMMUNICATION AND INTERNET TECHNOLOGIES
3.2 COMMUNICATION AND INTERNET TECHNOLOGIES 3.2.1 PROTOCOLS PROTOCOL Protocol a set of rules governing the way that devices communicate with each other. With networks and the Internet, we need to allow
More informationUser-level Internet Path Diagnosis
User-level Internet Path Diagnosis Ratul Mahajan Neil Spring David Wetherall Thomas Anderson University of Washington Diagnosing performance of Internet paths is hard X X Multiple administrative domains
More informationPERFORMANCE MEASUREMENT OF WORLD WIDE WEB SERVERS
PERFORMANCE MEASUREMENT OF WORLD WIDE WEB SERVERS Cristina Hava & Liam Murphy 1 Abstract The World Wide Web (WWW, or Web) is one of the most important Internet services, and has been largely responsible
More informationCisco SGE Port Gigabit Switch Cisco Small Business Managed Switches
Cisco SGE2000 24-Port Gigabit Switch Cisco Small Business Managed Switches High-Performance, Reliable, Stacking Switch for Small Businesses Highlights 24 high-speed ports optimized for the network core
More informationThis article explains how to configure NSRP-Lite for a NS50 firewall to a single WAN.
This article explains how to configure NSRP-Lite for a NS50 firewall to a single WAN. Requirements: When configuring NSRP-Lite for the NS-50, confirm the following necessary requirements: The NS-25 or
More informationWSG18SFP Switch. User Manual
WSG18SFP Switch User Manual Version: 01/01/2011 Introduction! 4 Product Overview! 4 Web Management Features! 4 Specifications! 5 Mechanical! 5 Performance! 5 Package Contents! 6 Hardware Description! 6
More informationCorrelating Network Congestion with Video QoE Degradation - a Last-Mile Perspective
Correlating Congestion with Video QoE Degradation - a Last-Mile Perspective Francesco Bronzino, Paul Schmitt, Renata Teixeira, Nick Feamster, Srikanth Sundaresan AIMS 13 March 2018 Last-Mile Measurement:
More informationmeasurement goals why traffic measurement of Internet is so hard? measurement needs combined skills diverse traffic massive volume of traffic
measurement goals Traffic Measurement and Analysis () SOI ASIA Lecture 22//26 Kenjiro Cho Sony Computer Science Labs, Inc. kjc@csl.sony.co.jp for operations trouble shooting diagnosis and tuning of performance,
More informationGigabit Ethernet XMVR LAN Services Modules
Gigabit Ethernet XMVR LAN Services Modules Ixia's Gigabit Ethernet XMVR LAN Services Modules (LSMs) offer Layer 2-3 network testing functionality in a single test system. Each test port supports wire-speed
More informationTime Sensitive Information!
Time Sensitive Information! These Configuration Changes Must Be Applied Ten Days Prior to Crexendo Cut-Over Sophos Router Configuration For Crexendo Cloud Telephony Deployment Document Version 1.2 March
More informationGS-2610G L2+ Managed GbE Switch
GS-2610G L2+ Managed GbE Switch Overview GS-2610G L2+ Managed Switch is a next-generation Ethernet Switch offering full suite of L2 features, including advanced L3 features such as Static Route that delivers
More informationAutomatic Test Packet Generation
Automatic Test Packet Generation Hongyi Zeng, Peyman Kazemian, Nick McKeown University, Stanford, CA, USA George Varghese UCSD, La Jolla Microsoft Research, Mountain View, CA, USA https://github.com/eastzone/atpg/wiki
More informationRouting Domains in Data Centre Networks. Morteza Kheirkhah. Informatics Department University of Sussex. Multi-Service Networks July 2011
Routing Domains in Data Centre Networks Morteza Kheirkhah Informatics Department University of Sussex Multi-Service Networks July 2011 What is a Data Centre? Large-scale Data Centres (DC) consist of tens
More informationLecture 8 Advanced Networking Virtual LAN. Antonio Cianfrani DIET Department Networking Group netlab.uniroma1.it
Lecture 8 Advanced Networking Virtual LAN Antonio Cianfrani DIET Department Networking Group netlab.uniroma1.it Advanced Networking Scenario: Data Center Network Single Multiple, interconnected via Internet
More informationArista EOS Central Drop Counters
Arista EOS Central Drop Counters eos.arista.com /eos-4-15-3f/drop-counters/ With this feature, user can fetch various internal hardware info from each switch and isolate the switch or fabric card or SerDes
More informationNetwork Performance Analysis System. White Paper
Network Performance Analysis System White Paper Copyright Copyright 2018 Colasoft. All rights reserved. Information in this document is subject to change without notice. No part of this document may be
More informationDistributed Network Function Virtualization
Distributed Network Function Virtualization Fred Oliveira, Fellow at Verizon Sarath Kumar, Software Engineer at Big Switch Networks Rimma Iontel, Senior Architect at Red Hat Outline What is Distributed
More informationFlow Sampling for ASR1K
LIVEACTION, INC. Flow Sampling for ASR1K CONFIGURATION LiveAction, Inc. 3500 Copyright WEST BAYSHORE 2016 LiveAction, ROAD Inc. All rights reserved. LiveAction, LiveNX, LiveUX, the LiveAction Logo and
More informationCisco. Maintaining Cisco Service Provider VPNs and MPLS Networks (MSPVM)
Cisco 642-780 Maintaining Cisco Service Provider VPNs and MPLS Networks (MSPVM) Download Full Version : http://killexams.com/pass4sure/exam-detail/642-780 QUESTION: 56 Which command should be used to verify
More informationStager. A Web Based Application for Presenting Network Statistics. Arne Øslebø
Stager A Web Based Application for Presenting Network Statistics Arne Øslebø Keywords: Network monitoring, web application, NetFlow, network statistics Abstract Stager is a web based
More informationArista 7020R Series: Q&A
7020R Series: Q&A Document Arista 7020R Series: Q&A Product Overview What is the 7020R Series? The Arista 7020R Series, including the 7020SR, 7020TR and 7020TRA, offers a purpose built high performance
More informationTechniques and Protocols for Improving Network Availability
Techniques and Protocols for Improving Network Availability Don Troshynski dtroshynski@avici.com February 26th, 2004 Outline of Talk The Problem Common Convergence Solutions An Advanced Solution: RAPID
More informationUser Manual ES-5808PHG. Gigabit 8-Port 802.3at PoE Web Smart Switch
User Manual ES-5808PHG Gigabit 8-Port 802.3at PoE Web Smart Switch Content Content I Introduction..3 Product Overview.3 Web Management Feature.3 Specification..4 Mechanical...4 Performance...5 Package
More informationMaster Course Computer Networks IN2097
Chair for Network Architectures and Services Prof. Carle Department for Computer Science TU München Master Course Computer Networks IN2097 Chapter 7 - Network Measurements Introduction Architecture & Mechanisms
More informationInternet Path Stability: Exploring the Impact of MPLS. Zakaria Al-Qudah, PhD. Yarmouk University April 2, 2015
Internet Path Stability: Exploring the Impact of MPLS Zakaria Al-Qudah, PhD. Yarmouk University April 2, 2015 1 Outline Introduction Related Work Contribution Methodology Results Conclusions 2 About Myself
More informationInternet Multicast Routing
Internet Multicast Routing. group addressing class D IP addresses 1110 Multicast Group ID. link layer multicast 28 bits. two protocol functions group management IGMP route establishment DVMRP, MOSPF, CBT,
More informationUDP Encapsulation in Linux netdev0.1 Conference February 16, Tom Herbert
UDP Encapsulation in Linux netdev0.1 Conference February 16, 2015 Tom Herbert Topics UDP encapsulation Common offloads Foo over UDP (FOU) Generic UDP Encapsulation (GUE) Basic idea
More informationChapter 4: outline. 4.5 routing algorithms link state distance vector hierarchical routing. 4.6 routing in the Internet RIP OSPF BGP
Chapter 4: outline 4.1 introduction 4.2 virtual circuit and datagram networks 4.3 what s inside a router 4.4 IP: Internet Protocol datagram format IPv4 addressing ICMP 4.5 routing algorithms link state
More informationExpeditus: Congestion-Aware Load Balancing in Clos Data Center Networks
Expeditus: Congestion-Aware Load Balancing in Clos Data Center Networks Peng Wang, Hong Xu, Zhixiong Niu, Dongsu Han, Yongqiang Xiong ACM SoCC 2016, Oct 5-7, Santa Clara Motivation Datacenter networks
More informationCisco SFE Port 10/100 Ethernet Switch Cisco Small Business Managed Switches
Cisco SFE2000 24-Port 10/100 Ethernet Switch Cisco Small Business Managed Switches Secure, Flexible Switches for Small Business Network Foundations Highlights Designed for small businesses that require
More informationHP 5120 SI Switch Series
HP 5120 SI Switch Series Network Management and Monitoring Configuration Guide Part number: 5998-1813 Software version: Release 1505 Document version: 6W102-20121111 Legal and notice information Copyright
More informationImproved Detection of Low-Profile Probes and Denial-of-Service Attacks*
Improved Detection of Low-Profile Probes and Denial-of-Service Attacks* William W. Streilein Rob K. Cunningham, Seth E. Webster Workshop on Statistical and Machine Learning Techniques in Computer Intrusion
More informationArista 7170 series: Q&A
Arista 7170 series: Q&A Product Overview What are the 7170 series? The Arista 7170 Series are purpose built multifunctional programmable 100GbE systems built for the highest performance environments and
More informationHow to Configure a Remote Management Tunnel for an F-Series Firewall
How to Configure a Remote Management Tunnel for an F-Series Firewall If the managed NextGen Firewall F-Series cannot directly reach the NextGen Control Center, it must connect via a remote management tunnel.
More informationBIG-IP DNS: Monitors Reference. Version 12.1
BIG-IP DNS: Monitors Reference Version 12.1 Table of Contents Table of Contents Monitors Concepts...5 Purpose of monitors...5 Benefits of monitors...5 Methods of monitoring...5 Comparison of monitoring
More informationHistory Page. Barracuda NextGen Firewall F
The Firewall > History page is very useful for troubleshooting. It provides information for all traffic that has passed through the Barracuda NG Firewall. It also provides messages that state why traffic
More informationnetwork security s642 computer security adam everspaugh
network security s642 adam everspaugh ace@cs.wisc.edu computer security today Announcement: HW3 to be released WiFi IP, TCP DoS, DDoS, prevention 802.11 (wifi) STA = station AP = access point BSS = basic
More informationScamper. Matthew Luckie
Scamper http://www.wand.net.nz/scamper/ Matthew Luckie mjl@wand.net.nz Introduction It is coming up towards the end of a year s contract between the University of Waikato and WIDE that funded the development
More informationVirtual Private Cloud. User Guide
Alibaba Cloud provides a default VPC and VSwitch for you in the situation that you do not have any existing VPC and VSwitch to use when creating a cloud product instance. A default VPC and VSwitch will
More informationDr. Atiq Ahmed. Network. Management. Introduction. Management. OSI Key Areas of Network Management 1/27. Dr. Atiq Ahmed. Network Management
Course Outline Course Structure Credit Hours: 3 (3, 0) Prerequisites: Computer Communication and s Evolution in Architectures Evolution of Protocols Evolution in Functions in Department of Computer Science
More informationNetwork Monitoring, Visualization. Topics
Monitoring, Visualization Gigabit Kits Workshop (January 10, 2001) Ken Wong, Eileen Kraemer*, Jon Turner Washington University and University of Georgia* NSF ANI-9714698 http://www.arl.wustl.edu/arl/projects/nmvc
More informationNET311 Computer Network Management Tools, Systems and Engineering
NET311 Computer Network Management Tools, Systems and Engineering Dr. Mostafa H. Dahshan Department of Computer Engineering College of Computer and Information Sciences King Saud University mdahshan@ksu.edu.sa
More informationesight V300R001C10 SLA Technical White Paper Issue 01 Date HUAWEI TECHNOLOGIES CO., LTD.
V300R001C10 Issue 01 Date 2013-12-10 HUAWEI TECHNOLOGIES CO., LTD. 2013. All rights reserved. No part of this document may be reproduced or transmitted in any form or by any means without prior written
More informationConfiguring Cisco IOS IP SLAs Operations
CHAPTER 39 This chapter describes how to use Cisco IOS IP Service Level Agreements (SLAs) on the switch. Cisco IP SLAs is a part of Cisco IOS software that allows Cisco customers to analyze IP service
More informationPacketExpert PDF Report Details
PacketExpert PDF Report Details July 2013 GL Communications Inc. 818 West Diamond Avenue - Third Floor Gaithersburg, MD 20878 Phone: 301-670-4784 Fax: 301-670-9187 Web page: http://www.gl.com/ E-mail:
More informationChapter 8 roadmap. Network Security
Chapter 8 roadmap 8.1 What is network security? 8.2 Principles of cryptography 8.3 Message integrity 8.4 Securing e-mail 8.5 Securing TCP connections: SSL 8.6 Network layer security: IPsec 8.7 Securing
More information502 / 504 GATEWAY_TIMEOUT errors when browsing to certain sites
502 / 504 GATEWAY_TIMEOUT errors when browsing to certain sites Document ID: 118079 Contributed by Vladimir Sousa and Siddharth Rajpathak, Cisco TAC Engineers. Jul 25, 2014 Contents Question: Question:
More informationConfiguring NAT Policies
Configuring NAT Policies Rules > NAT Policies About NAT in SonicOS About NAT Load Balancing About NAT64 Viewing NAT Policy Entries Adding or Editing NAT or NAT64 Policies Deleting NAT Policies Creating
More informationDeepview: Virtual Disk Failure Diagnosis and Pattern Detection for Azure
Deepview: Virtual Disk Failure Diagnosis and Pattern Detection for Azure Qiao Zhang 1, Guo Yu 2, Chuanxiong Guo 3, Yingnong Dang 4, Nick Swanson 4, Xinsheng Yang 4, Randolph Yao 4, Murali Chintalapati
More informationWHITE PAPER. The Shortfalls of Traceroute in Modern Multi-Path Networks
WHITE PAPER The Shortfalls of Traceroute in Modern Multi-Path Networks THE SHORTFALLS OF TRACEROUTE IN MODERN MULTI-PATH NETWORKS INTRODUCTION Traceroute is a fantastically popular network troubleshooting
More information