Power of Slicing in Internet Flow Measurement. Ramana Rao Kompella Cristian Estan
|
|
- Kerrie Jacobs
- 5 years ago
- Views:
Transcription
1 Power of Slicing in Internet Flow Measurement Ramana Rao Kompella Cristian Estan 1
2 IP Network Management Network Operator What is happening in my network? How much traffic flows towards a given destination? What are the popular applications in my network? How much should I charge my customer? Flow Measurement helps answer these questions! 2
3 Flow Measurement Flow is defined by the various packet header fields E.g. five-tuple consisting of SIP, DIP, SP, DP and protocol Measuring characteristics of a flow such as number of packets, bytes, TCP flags etc. Aggregates computed from individual flow records collected from various routers Popular applications - aggregation on port number Customer traffic - aggregation on IP address/prefix NetFlow widely used and supported in routers Flow records created on first packet seen Flow records expired on flags, inactive timeout, active timeout 3
4 Contributions New flow measurement algorithms and estimators Flow slicing Multifactor smart sampling A better flow measurement solution Better adaptability Lower resource consumption 4
5 Flow Measurement at Routers Bottleneck 1: CPU Processing Bottleneck 2: Memory Utilization Bottleneck 3: Reporting Bandwidth Packet Arrival Update flow record Create flow if first packet Report expired flows to monitoring station Packet sampling: CPU, Memory, Bandwidth Sample and hold: Memory, Bandwidth Smart sampling (size dependent): Bandwidth 5
6 Effect of sampling algorithms Sampling algorithm Byte counts Packet counts Flow counts (TCP) Flow counts (non-tcp) No sampling exact exact exact exact Packet sampling [cisco] [duffield02] impossible [chaudhuri98] Sample & hold [estan02]??? Flow slicing Smart sampling [duffield01] very in [duffield03] Multifactor smart sampling very very very 6
7 Flow measurement solutions Packet arrival NetFlow Sampled NetFlow Adaptive NetFlow Flow Slices Reduce CPU Reduce Memory N/A Static Sampling Probability Adaptive Sampling Probability Static sampling probability Adaptive flow slicing probability Reduce Bandwidth Smart sampling Smart sampling Smart sampling Multifactor smart sampling Flow record sent to monitoring 7
8 Flow Slices: Control CPU Packet Arrival Packet sampling stage controls CPU usage Choose q as maximum probability required to operate within CPU constraints Packet Sampling with probability q lookup Entry not found Flow memory 8
9 Flow Slices: Control Memory Probability p controls the rate at which records are created Every record expired after a slice duration of t Slice duration controls staleness of data Configurable inactivity timeout Can adapt slicing probability based on traffic mix any time. Packet Arrival Packet Sampling with probability q Flow slicing with probability p lookup Entry not found Create flow Time out after slice duration or after inactivity timeout Flow memory 9
10 Unbiased estimators Produces unbiased estimators for packet, byte and SYN counters Proofs in the paper When a new flow is created after it passes the flow slicing stage: Set the packet counter to 1/p Set the byte counter to b/p (b is size of the first packet) Set the SYN counter to 1/p, if packet has a SYN flag, 0 otherwise 10
11 Solutions Packet arrival NetFlow Sampled NetFlow Adaptive NetFlow Flow Slices Reduce CPU Reduce Memory N/A Static Sampling Probability Adaptive Sampling Probability Static sampling probability Adaptive flow slicing probability Reduce Bandwidth Smart sampling Smart sampling Smart sampling Multifactor smart sampling Flow record sent to monitoring 11
12 Smart sampling [duffield01] Flow records collected need to be transmitted to a centralized location for further analysis Smart sampling reduces bandwidth requirements while preserving accuracy Each record transmitted with a probability min(1,b/z) b is the size of the flow in bytes z is a threshold Large flow records are always transmitted Small flow records are transmitted with probability proportional to their size Can compute byte counts for aggregates from sampled records 12
13 Multi-factor smart sampling A generalization of smart sampling that improves accuracy of byte, packets and SYN count estimates Choose to transmit a record (s, b, a) based on a probability r = min (1, s/z s + b/z b + a/z a ) s size of flow in number of packets b size of flow in number of bytes a SYN count Choosing appropriate z s, z b and z a can balance the requirements of all the estimators Receiver counts the record as (s/r, b/r, a/r), so that estimates are unbiased 13
14 Flow Slices: Putting it all together Packet arrival Packet sampling with probability q Reduces Bottleneck 1: CPU Flow Slicing with probability p Reduces Bottleneck 2: Memory Multifactor Smart Sampling Reduces Bottleneck 3: Bandwidth Flow record sent to monitoring 14
15 Evaluation: Accuracy Two-sided errors indicate unbiasedness Real traces from CAIDA (transit link) Flow slicing probability = 0.8% (1 in 125) Slice duration = 60 seconds Trace length = 1 hour 15
16 Accuracy vs Memory tradeoff Mean Relative Error (Flows > 5000) Decreases rapidly as flows are stored for longer time Mean Relative Error Memory Usage Almost linear Increase in memory Flow Slicing Probability Memory Usage 16
17 Smart vs Multifactor sampling Compare outputs of smart and multifactor smart sampling w.r.t to true value Thresholds used: Z s =1000 packets, Z b =500,000 bytes, Z a =50 flows, for smart sampling Z=50,000 bytes Picked threshold so reduction in records in both cases from 1,700,000 to 190,000 Pkts Bytes SYNs Web 0.3% 0.4% 0.1% 0.7% 1.6% 0.8% Kazaa 0.6% 0.4% 0.1% 0.2% 12.4% 2.4% telnet 0.9% 0.6% 1.0% 0.8% 39.2% 4.9% 17
18 Comparison with ANF ANF sampling probability fixed at 1 in 1024 For Flow Slices, packet sampling q = 1/16 and flow slicing p = 1/64 combined produces 1/1024 Results: Flow Slices perform better than ANF for individual flows Similar errors when aggregated by port (for various applications) 18
19 Comparison with ANF Port Number / range ANF Slices (60s) Slices (180s) Slices (300s) Web (80) 0.5% 0.4% 0.5% 0.3% Kazaa (1214) 1.2% 1.0% 0.8% 1.0% > 50, % 5.4% 3.7% 3.1% % 15.3% 12.2% 10.8% 19
20 Memory Comparison Slice / bin ANF Flow Memory Slices Inactive Volume of Records ANF Slices Inactive 60s 1,195 1, ,764 63,658 68, s 3,141 3, ,229 57,028 61, s 4,158 4, ,730 53,953 57,635 Volume of records roughly similar Flow Slices with inactive timeouts outperforms ANF 20
21 Memory Comparison Slice / bin ANF Flow Memory Slices Inactive Volume of Records ANF Slices Inactive 60s 5,641 5,378 3,065 27,509 25,896 26, s 14,049 14,046 3,944 23,994 22,896 23, s 21,716 21,667 4,218 21,716 21,667 22,841 Volume of records roughly similar Flow Slices with inactive timeouts outperforms ANF 21
22 Conclusions Three critical router constraints CPU, memory and bandwidth Flow Slices provides three different tuning knobs to control all these resources In comparison with current approaches, Consumes less memory for better or comparable accuracy Can preserve accuracy for different measures of traffic with reduced bandwidth usage 22
23 QUESTIONS? 23
The Power of Slicing in Internet Flow Measurement
The Power of Slicing in Internet Flow Measurement Ramana Rao Kompella University of California, San Diego ramana@cs.ucsd.edu Cristian Estan University of Wisconsin-Madison estan@cs.wisc.edu Abstract Network
More informationThe Power of Slicing in Internet Flow Measurement
The Power of Slicing in Internet Flow Measurement Ramana Rao Kompella University of California, San Diego ramana@cs.ucsd.edu Cristian Estan University of Wisconsin-Madison estan@cs.wisc.edu Abstract Flow
More informationConfiguring NetFlow Statistics Collection
38 CHAPTER This chapter describes how to configure NetFlow statistics on the Catalyst 4500 series switches. It also provides guidelines, procedures, and configuration examples. This feature is only available
More informationA Framework for Efficient Class-based Sampling
A Framework for Efficient Class-based Sampling Mohit Saxena and Ramana Rao Kompella Department of Computer Science Purdue University West Lafayette, IN, 47907 Email: {msaxena,kompella}@cs.purdue.edu Abstract
More informationConcept: Traffic Flow. Prof. Anja Feldmann, Ph.D. Dr. Steve Uhlig
Concept: Traffic Flow Prof. Anja Feldmann, Ph.D. Dr. Steve Uhlig 1 Passive measurement capabilities: Packet monitors Available data: All protocol information All content Possible analysis: Application
More informationPerforming Path Traces
About Path Trace, page 1 Performing a Path Trace, page 13 Collecting QoS and Interface Statistics in a Path Trace, page 15 About Path Trace With Path Trace, the controller reviews and collects network
More informationConfiguring NetFlow. Understanding NetFlow CHAPTER
50 CHAPTER This chapter describes how to configure NetFlow statistics collection on the Cisco 7600 series routers. Note For complete syntax and usage information for the commands used in this chapter,
More informationConfiguring Fast Switching
Configuring Fast Switching This chapter describes how to configure fast switching on Cisco IOS devices. It provides configuration guidelines for switching paths and tuning guidelines. For a complete description
More informationThe Network Layer and Routers
The Network Layer and Routers Daniel Zappala CS 460 Computer Networking Brigham Young University 2/18 Network Layer deliver packets from sending host to receiving host must be on every host, router in
More informationDevoFlow: Scaling Flow Management for High Performance Networks
DevoFlow: Scaling Flow Management for High Performance Networks SDN Seminar David Sidler 08.04.2016 1 Smart, handles everything Controller Control plane Data plane Dump, forward based on rules Existing
More informationRD-TCP: Reorder Detecting TCP
RD-TCP: Reorder Detecting TCP Arjuna Sathiaseelan and Tomasz Radzik Department of Computer Science, King s College London, Strand, London WC2R 2LS {arjuna,radzik}@dcs.kcl.ac.uk Abstract. Numerous studies
More informationFlexible NetFlow - Top N Talkers Support
This document contains information about and instructions for using the Flexible NetFlow - Top N Talkers Support feature. The feature helps you analyze the large amount of data that Flexible NetFlow captures
More informationProperties and Prediction of Flow Statistics from Sampled Packet Streams
Properties and Prediction of Flow Statistics from Sampled Packet Streams Nick Duffield Carsten Lund Mikkel Thorup AT&T Labs Research 0 Park Avenue, Florham Park, NJ 0, USA E-mail: duffield,lund,mthorup
More informationMAD 12 Monitoring the Dynamics of Network Traffic by Recursive Multi-dimensional Aggregation. Midori Kato, Kenjiro Cho, Michio Honda, Hideyuki Tokuda
MAD 12 Monitoring the Dynamics of Network Traffic by Recursive Multi-dimensional Aggregation Midori Kato, Kenjiro Cho, Michio Honda, Hideyuki Tokuda 1 Background Traffic monitoring is important to detect
More informationKNOM Tutorial Internet Traffic Matrix Measurement and Analysis. Sue Bok Moon Dept. of Computer Science
KNOM Tutorial 2003 Internet Traffic Matrix Measurement and Analysis Sue Bok Moon Dept. of Computer Science Overview Definition of Traffic Matrix 4Traffic demand, delay, loss Applications of Traffic Matrix
More informationThis chapter provides information to configure Cflowd.
Cflowd In This Chapter This chapter provides information to configure Cflowd. Topics in this chapter include: Cflowd Overview on page 564 Operation on page 565 Cflowd Filter Matching on page 569 Cflowd
More informationUsing NetFlow Sampling to Select the Network Traffic to Track
Using NetFlow Sampling to Select the Network Traffic to Track This module contains information about and instructions for selecting the network traffic to track through the use of NetFlow sampling. The
More informationMaster Course Computer Networks IN2097
Chair for Network Architectures and Services Prof. Carle Department for Computer Science TU München Master Course Computer Networks IN2097 Chapter 7 - Network Measurements Introduction Architecture & Mechanisms
More informationConfiguring NetFlow and NetFlow Data Export
This module contains information about and instructions for configuring NetFlow to capture and export network traffic data. NetFlow capture and export are performed independently on each internetworking
More informationMaster Course Computer Networks IN2097
Chair for Network Architectures and Services Prof. Carle Department for Computer Science TU München Master Course Computer Networks IN2097 Prof. Dr.-Ing. Georg Carle Christian Grothoff, Ph.D. Dr. Nils
More informationConfiguring Application Visibility and Control for Cisco Flexible Netflow
Configuring Application Visibility and Control for Cisco Flexible Netflow First published: July 22, 2011 This guide contains information about the Cisco Application Visibility and Control feature. It also
More informationChapter 8 roadmap. Network Security
Chapter 8 roadmap 8.1 What is network security? 8.2 Principles of cryptography 8.3 Message integrity 8.4 Securing e-mail 8.5 Securing TCP connections: SSL 8.6 Network layer security: IPsec 8.7 Securing
More informationA Framework for Efficient Class-based Sampling
Purdue University Purdue e-pubs Department of Computer Science Technical Reports Department of Computer Science 2008 A Framework for Efficient Class-based Sampling Mohit Saxena Ramana Rao Kompella Purdue
More informationFinding the Needle in the Haystack
Finding the Needle in the Haystack Jonzy Data Security Analysis, Sr. Finding the Needle in the Haystack With all the information available via NetFlows, finding the "Needle in the Haystack" (the bad actor
More informationAutoFocus: A Tool for Automatic Traffic Analysis. Cristian Estan, University of California, San Diego
AutoFocus: A Tool for Automatic Traffic Analysis Cristian Estan, University of California, San Diego Who is using my link? October 2003 AutoFocus - NANOG 29 2 Informal problem definition Gigabytes of measurement
More informationMonitoring and Analysis
CHAPTER 3 Cisco Prime Network Analysis Module 5.1 has two types of dashboards: One type is the summary views found under the Monitor menu, and the other type is the over time views found under the Analyze
More informationConsider these restrictions when configuring NetFlow in Cisco IOS XR software: Do not use the management interface to export the NetFlow packets.
A NetFlow flow is a unidirectional sequence of packets that arrive on a single interface, and have the same values for key fields. NetFlow is useful for the following: Accounting/Billing NetFlow data provides
More informationFirepower Threat Defense Cluster for the Firepower 4100/9300
Firepower Threat Defense Cluster for the Firepower 4100/9300 Clustering lets you group multiple Firepower Threat Defense units together as a single logical device. Clustering is only supported for the
More informationNew Directions in Traffic Measurement and Accounting. Need for traffic measurement. Relation to stream databases. Internet backbone monitoring
New Directions in Traffic Measurement and Accounting C. Estan and G. Varghese Presented by Aaditeshwar Seth 1 Need for traffic measurement Internet backbone monitoring Short term Detect DoS attacks Long
More informationECE 697J Advanced Topics in Computer Networks
ECE 697J Advanced Topics in Computer Networks Network Measurement 12/02/03 Tilman Wolf 1 Overview Lab 3 requires performance measurement Throughput Collecting of packet headers Network Measurement Active
More informationCS268: Beyond TCP Congestion Control
TCP Problems CS68: Beyond TCP Congestion Control Ion Stoica February 9, 004 When TCP congestion control was originally designed in 1988: - Key applications: FTP, E-mail - Maximum link bandwidth: 10Mb/s
More informationChapter 6 Congestion Avoidance. Networking CS 3470, Section 1
Chapter 6 Congestion Avoidance Networking CS 3470, Section 1 Congestion Avoidance TCP s strategy control congestion once it happens repeatedly increase load in an effort to find the point at which congestion
More informationImpact of Sampling on Anomaly Detection
Impact of Sampling on Anomaly Detection DIMACS/DyDan Workshop on Internet Tomography Chen-Nee Chuah Robust & Ubiquitous Networking (RUBINET) Lab http://www.ece.ucdavis.edu/rubinet Electrical & Computer
More informationLightweight enhanced monitoring for high-speed networks
Lightweight enhanced monitoring for high-speed networks Rosa Vilardi, Dr. Luigi Alfredo Grieco, Prof. Gennaro Boggia Electrical and Information Engineering Department (DEI) Politecnico di Bari Italy Dr.
More informationNetwork Configuration Example
Network Configuration Example Configuring Active Flow Monitoring Version 9 Modified: 2017-01-18 Juniper Networks, Inc. 1133 Innovation Way Sunnyvale, California 94089 USA 408-745-2000 www.juniper.net All
More informationConfiguring NetFlow. Information About NetFlow. Send document comments to CHAPTER
CHAPTER 11 Use this chapter to configure NetFlow to characterize IP traffic based on its source, traffic destination, timing, and application information, giving visibility into traffic transiting the
More informationYAF A Case Study in Flow Meter Design
YAF A Case Study in Flow Meter Design presented at FloCon 2008 - Savannah, Georgia Brian Trammell Technical Lead, Engineering CERT Network Situational Awareness YAF Open-source, IPFIX-compliant bidirectional
More informationUncovering Artifacts of Flow Measurement Tools
Uncovering Artifacts of Flow Measurement Tools Ítalo Cunha 1,2, Fernando Silveira 1,2, Ricardo Oliveira 3, Renata Teixeira 2, and Christophe Diot 1 1 Thomson 2 UPMC Paris Universitas 3 UCLA Abstract. This
More informationCHAPTER 44 This chapter describes how to configure NetFlow Statistics on the Catalyst 4500 series switches. It also provides guidelines, procedures, and configuration examples. To use the NetFlow feature,
More informationInterconnecting Networks with TCP/IP. 2000, Cisco Systems, Inc. 8-1
Interconnecting Networks with TCP/IP 2000, Cisco Systems, Inc. 8-1 Objectives Upon completion of this chapter you will be able to perform the following tasks: Identify the IP protocol stack, its protocol
More informationset active-probe (PfR)
set active-probe (PfR) set active-probe (PfR) To configure a Performance Routing (PfR) active probe with a forced target assignment within a PfR map, use the set active-probe command in PfR map configuration
More informationInvestigating the Use of Synchronized Clocks in TCP Congestion Control
Investigating the Use of Synchronized Clocks in TCP Congestion Control Michele Weigle (UNC-CH) November 16-17, 2001 Univ. of Maryland Symposium The Problem TCP Reno congestion control reacts only to packet
More informationInterconnecting Networks with TCP/IP
Chapter 8 Interconnecting s with TCP/IP 1999, Cisco Systems, Inc. 8-1 Introduction to TCP/IP Internet TCP/IP Early protocol suite Universal 1999, Cisco Systems, Inc. www.cisco.com ICND 8-2 TCP/IP Protocol
More informationSome Observations of Internet Stream Lifetimes
Some Observations of Internet Stream Lifetimes Nevil Brownlee CAIDA, UC San Diego, and The University of Auckland, New Zealand nevil@auckland.ac.nz Abstract. We present measurements of stream lifetimes
More informationApplication of SDN: Load Balancing & Traffic Engineering
Application of SDN: Load Balancing & Traffic Engineering Outline 1 OpenFlow-Based Server Load Balancing Gone Wild Introduction OpenFlow Solution Partitioning the Client Traffic Transitioning With Connection
More informationUsing Flexible NetFlow Top N Talkers to Analyze Network Traffic
Using Flexible NetFlow Top N Talkers to Analyze Network Traffic Last Updated: September 4, 2012 This document contains information about and instructions for using the Flexible NetFlow--Top N Talkers Support
More informationConfiguring AVC to Monitor MACE Metrics
This feature is designed to analyze and measure network traffic for WAAS Express. Application Visibility and Control (AVC) provides visibility for various applications and the network to central network
More informationUsing NetFlow Sampling to Select the Network Traffic to Track
Using NetFlow Sampling to Select the Network Traffic to Track Last Updated: September 17, 2012 This module contains information about and instructions for selecting the network traffic to track through
More informationConfiguring NetFlow. Information About NetFlow. What is a Flow. This chapter contains the following sections:
This chapter contains the following sections: Information About NetFlow, page 1 Guidelines and Limitations for NetFlow, page 9 Default Settings for NetFlow, page 10 Enabling the NetFlow Feature, page 11
More informationNetFlow Configuration Guide
Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 THE SPECIFICATIONS AND INFORMATION
More informationDetecting Specific Threats
The following topics explain how to use preprocessors in a network analysis policy to detect specific threats: Introduction to Specific Threat Detection, page 1 Back Orifice Detection, page 1 Portscan
More informationReformulating the monitor placement problem: Optimal Network-wide Sampling
Reformulating the monitor placement problem: Optimal Network-wide Sampling Gion-Reto Cantieni (EPFL) Gianluca Iannaconne (Intel) Chadi Barakat (INRIA Sophia Antipolis) Patrick Thiran (EPFL) Christophe
More informationRef: A. Leon Garcia and I. Widjaja, Communication Networks, 2 nd Ed. McGraw Hill, 2006 Latest update of this lecture was on
IP Version 4 (IPv4) Header (Continued) Identification (16 bits): One of the parameters of any network is the maximum transmission unit (MTU) parameter. This parameter specifies the maximum size of the
More informationNetFlow-based bandwidth estimation in IP networks
NetFlow-based bandwidth estimation in IP networks Rodrigo Alarcón-Reyes Department of Electrical and Computer Engineering McGill University March 3, 22 Outline. Introduction to NetFlow 2. Definition of
More informationII. Principles of Computer Communications Network and Transport Layer
II. Principles of Computer Communications Network and Transport Layer A. Internet Protocol (IP) IPv4 Header An IP datagram consists of a header part and a text part. The header has a 20-byte fixed part
More informationBAMA Simulator. (Bandwidth Measurement Algorithms)
BAMA Simulator (Bandwidth Measurement Algorithms) By A.K.Aggarwal Jun Wei University of Windsor School of Computer Science Technical Report # 04-003 University of Windsor Windsor, Ontario Canada 2003 Abstract
More informationMonitoring Data CHAPTER
CHAPTER 4 The Monitor tab provides options for viewing various types of monitored data. There are options for: Overview of Data Collection and Data Sources, page 4-2 Viewing the Monitor Overview Charts,
More informationNetwork Element Configuration
The following describes how to configure Flexible NetFlow and NTP servers on your ISR. Configuring a Network Element, page 1 NTP Configuration, page 1 NetFlow Configuration, page 2 Configuring a Network
More informationChapter 4. Routers with Tiny Buffers: Experiments. 4.1 Testbed experiments Setup
Chapter 4 Routers with Tiny Buffers: Experiments This chapter describes two sets of experiments with tiny buffers in networks: one in a testbed and the other in a real network over the Internet2 1 backbone.
More informationEnterprise QoS. Tim Chung Network Architect Google Corporate Network Operations March 3rd, 2010
Enterprise QoS Tim Chung Network Architect Google Corporate Network Operations March 3rd, 2010 Agenda Challenges Solutions Operations Best Practices Note: This talk pertains to Google enterprise network
More informationFirewalls. Firewall. means of protecting a local system or network of systems from network-based security threats creates a perimeter of defense
FIREWALLS 3 Firewalls Firewall means of protecting a local system or network of systems from network-based security threats creates a perimeter of defense administered network public Internet firewall
More informationForwarding and Routers : Computer Networking. Original IP Route Lookup. Outline
Forwarding and Routers 15-744: Computer Networking L-9 Router Algorithms IP lookup Longest prefix matching Classification Flow monitoring Readings [EVF3] Bitmap Algorithms for Active Flows on High Speed
More informationCisco IOS Flexible NetFlow Command Reference
Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 THE SPECIFICATIONS AND INFORMATION
More informationConfiguring NetFlow. About NetFlow. This chapter describes how to configure the NetFlow feature on Cisco NX-OS devices.
This chapter describes how to configure the NetFlow feature on Cisco NX-OS devices. About NetFlow, page 1 Licensing Requirements for NetFlow, page 4 Prerequisites for NetFlow, page 4 Guidelines and Limitations
More informationHubs, Bridges, and Switches (oh my) Hubs
Hubs, Bridges, and Switches (oh my) Used for extending LANs in terms of geographical coverage, number of nodes, administration capabilities, etc. Differ in regards to: collision domain isolation layer
More informationJunos Security. Chapter 4: Security Policies Juniper Networks, Inc. All rights reserved. Worldwide Education Services
Junos Security Chapter 4: Security Policies 2012 Juniper Networks, Inc. All rights reserved. www.juniper.net Worldwide Education Services Chapter Objectives After successfully completing this chapter,
More informationUser Datagram Protocol
Topics Transport Layer TCP s three-way handshake TCP s connection termination sequence TCP s TIME_WAIT state TCP and UDP buffering by the socket layer 2 Introduction UDP is a simple, unreliable datagram
More informationChapter 6 Congestion Control and Resource Allocation
Chapter 6 Congestion Control and Resource Allocation Congestion-Avoidance Mechanisms Congestion avoidance is to predict when congestion is about to happen and then to reduce sending rate of source host
More informationConfiguring Stickiness
CHAPTER 6 Date: 5/7/09 This section provides information about sticky behavior and procedures for configuring stickiness with the ANM. Sections include: Stickiness Overview, page 6-1 Configuring Sticky
More informationZone-Based Firewall Logging Export Using NetFlow
Zone-Based Firewall Logging Export Using NetFlow Zone-based firewalls support the logging of messages to an external collector using NetFlow Version 9 export format. NetFlow Version 9 export format uses
More informationCS644 Advanced Networks
What we know so far CS644 Advanced Networks Lecture 6 Beyond TCP Congestion Control Andreas Terzis TCP Congestion control based on AIMD window adjustment [Jac88] Saved Internet from congestion collapse
More informationPfRv3 Zero SLA Support
The Performance Routing v3 (PfRv3) Zero SLA Support feature enables users to reduce probing frequency on various ISP links, such as 3G, 4G, and LTE When the Zero SLA (0-SLA) feature is configured on an
More informationFeature Rich Flow Monitoring with P4
Feature Rich Flow Monitoring with P4 John Sonchack University of Pennsylvania 1 Outline Introduction: Flow Records Design and Implementation: P4 Accelerated Flow Record Generation Benchmarks and Optimizations
More informationNetFlow Monitoring. NetFlow Monitoring
, page 1 NetFlow Limitations, page 2 Creating a Flow Record Definition, page 3 Viewing Flow Record Definitions, page 4 Defining the Exporter Profile, page 4 Creating a Flow Collector, page 5 Creating a
More informationModels. Motivation Timing Diagrams Metrics Evaluation Techniques. TOC Models
Models Motivation Timing Diagrams Metrics Evaluation Techniques TOC Models Motivation Understanding Network Behavior Improving Protocols Verifying Correctness of Implementation Detecting Faults Choosing
More informationSlicing a Network. Software-Defined Network (SDN) FlowVisor. Advanced! Computer Networks. Centralized Network Control (NC)
Slicing a Network Advanced! Computer Networks Sherwood, R., et al., Can the Production Network Be the Testbed? Proc. of the 9 th USENIX Symposium on OSDI, 2010 Reference: [C+07] Cascado et al., Ethane:
More informationPredicting Resource Usage and Estimation Accuracy in an IP Flow Measurement Collection Infrastructure
1 Predicting Resource Usage and Estimation Accuracy in an IP Flow Measurement Collection Infrastructure Nick Duffield Carsten Lund AT&T Labs Research 180 Park Avenue, Florham Park, NJ 07932, USA E-mail:
More informationConfiguring ACLs. ACL overview. ACL categories. ACL numbering and naming
Contents Configuring ACLs 1 ACL overview 1 ACL categories 1 ACL numbering and naming 1 Match order 2 ACL rule numbering 3 Implementing time-based ACL rules 3 IPv4 fragments filtering with ACLs 3 Flow templates
More informationH
H12-711 Number: H12-711 Passing Score: 600 Time Limit: 120 min File Version: 1.0 Exam A QUESTION 1 The network administrator wants to improve the performance of network transmission, what steps can the
More informationMonitoring network bandwidth on routers and interfaces; Monitoring custom traffic on IP subnets and IP subnets groups; Monitoring end user traffic;
NetVizura NetFlow Analyzer enables you to collect, store and analyze network traffic data by utilizing Cisco NetFlow, IPFIX, NSEL, sflow and compatible netflow-like protocols. It allows you to visualize
More informationConfiguring NetFlow BGP Next Hop Support for Accounting and Analysis
Configuring NetFlow BGP Next Hop Support for Accounting and Analysis This document provides information about and instructions for configuring NetFlow Border Gateway Protocol (BGP) next hop support. This
More informationConfiguring Logging for Access Lists
CHAPTER 17 This chapter describes how to configure access list logging for extended access lists and Webytpe access lists, and it describes how to manage deny flows. This section includes the following
More informationAppendix B. Standards-Track TCP Evaluation
215 Appendix B Standards-Track TCP Evaluation In this appendix, I present the results of a study of standards-track TCP error recovery and queue management mechanisms. I consider standards-track TCP error
More informationCRC. Implementation. Error control. Software schemes. Packet errors. Types of packet errors
CRC Implementation Error control An Engineering Approach to Computer Networking Detects all single bit errors almost all 2-bit errors any odd number of errors all bursts up to M, where generator length
More informationI Commands. iping, page 2 iping6, page 4 itraceroute, page 5 itraceroute6 vrf, page 6. itraceroute vrf encap vxlan, page 12
iping, page 2 iping6, page 4 itraceroute, page 5 itraceroute6 vrf, page 6 itraceroute6 vrf encap vlan, page 7 itraceroute6 vrf encap vxlan dst-mac, page 8 itraceroute vrf, page 9 itraceroute vrf encap
More informationOutline. Assumptions. Key Features. A Content-Based Networking Protocol For Sensor Networks (Technical Report 2004)
A Content-Based Networking Protocol For Sensor Networks (Technical Report 004) Presented by: Kyu-Wook Cho /0/05 Outline Assumptions Direct access only to neighbor nodes Resource-constrained nodes Many
More informationLecture 24: Scheduling and QoS
Lecture 24: Scheduling and QoS CSE 123: Computer Networks Alex C. Snoeren HW 4 due Wednesday Lecture 24 Overview Scheduling (Weighted) Fair Queuing Quality of Service basics Integrated Services Differentiated
More informationChapter 6. What happens at the Transport Layer? Services provided Transport protocols UDP TCP Flow control Congestion control
Chapter 6 What happens at the Transport Layer? Services provided Transport protocols UDP TCP Flow control Congestion control OSI Model Hybrid Model Software outside the operating system Software inside
More information15-744: Computer Networking. Overview. Queuing Disciplines. TCP & Routers. L-6 TCP & Routers
TCP & Routers 15-744: Computer Networking RED XCP Assigned reading [FJ93] Random Early Detection Gateways for Congestion Avoidance [KHR02] Congestion Control for High Bandwidth-Delay Product Networks L-6
More informationNew Directions in Traffic Measurement and Accounting
New Directions in Traffic Measurement and Accounting Cristian Estan Computer Science and Engineering Department University of California, San Diego 9500 Gilman Drive La Jolla, CA 92093-0114 cestan@cs.ucsd.edu
More informationTCP Congestion Control. Housekeeping. Additive Increase/Multiplicative Decrease. AIMD (cont) Pick up folders for exam study Exam next Friday, Nov.
Fall 01 CptS/EE 555 3 Fall 01 CptS/EE 555 4 TCP Congestion Control Idea assumes best-effort network (FIFO or FQ routers)each source determines network capacity for itself uses implicit feedback ACKs pace
More informationBitmap Algorithms for Counting Active Flows on High Speed Links
Bitmap Algorithms for Counting Active Flows on High Speed Links Cristian Estan George Varghese Michael Fisk Abstract This paper presents a family of bitmap algorithms that address the problem of counting
More informationVideo Quality Monitoring
CHAPTER 1 irst Published: July 30, 2013, Information About The (VQM) module monitors the quality of the video calls delivered over a network. The VQM solution offered in the Cisco Integrated Services Routers
More informationIEEE/ACM TRANSACTIONS ON NETWORKING, VOL. 14, NO. 5, OCTOBER
IEEE/ACM TRANSACTIONS ON NETWORKING, VOL. 14, NO. 5, OCTOBER 2006 925 Bitmap Algorithms for Counting Active Flows on High-Speed Links Cristian Estan, George Varghese, Member, IEEE, and Michael Fisk Abstract
More informationFlow Control. Flow control problem. Other considerations. Where?
Flow control problem Flow Control An Engineering Approach to Computer Networking Consider file transfer Sender sends a stream of packets representing fragments of a file Sender should try to match rate
More informationAdvanced Network Design
Advanced Network Design Organization Whoami, Book, Wikipedia www.cs.uchicago.edu/~nugent/cspp54015 Grading Homework/project: 60% Midterm: 15% Final: 20% Class participation: 5% Interdisciplinary Course
More informationIPv6 Commands: ipv6 h to ipv6 mi
IPv6 Commands: ipv6 h to ipv6 mi ipv6 hello-interval eigrp, page 3 ipv6 hold-time eigrp, page 5 ipv6 hop-limit, page 7 ipv6 host, page 8 ipv6 icmp error-interval, page 10 ipv6 inspect, page 12 ipv6 inspect
More informationFlow-based Accounting: Applications and Standardisation
Flow-based Accounting: Applications and Standardisation SCAMPI Workshop May 3, 2004 Simon Leinen, SWITCH Flow-based Accounting - Basic Idea Classify packets into flows (equivalence classes)
More informationRaw Data Formatting: The RDR Formatter and NetFlow Exporting
CHAPTER 8 Raw Data Formatting: The RDR Formatter and NetFlow Exporting Cisco Service Control is able to deliver gathered reporting data to an external application for collecting, aggregation, storage and
More informationb. Suppose the two packets are to be forwarded to two different output ports. Is it
Problem-1:[15] Suppose two packets arrive to two different input ports of a router at exactly the same time. Also suppose there are no other packets anywhere in the router. a. Suppose the two packets are
More information