the real-time Internet routing observatory Luca Sani

Similar documents
the real-time Internet routing observatory Alessandro Improta

the real-time Internet routing observatory

the real-time Internet routing observatory

The real-time Internet routing observatory. Luca Sani RIPE Meeting 77 Amsterdam, NL October 15 th, 2018

Interactive Collector Engine. Luca Sani

BGP Scanner. Isolario. Lorenzo Cogotti lorenzo.cogotti <at> alphacogs.com. Luca Sani luca.sani <at> isolario.it. Project

BGP Scanner. Isolario BGP-MRT Data Reader: C library & tool. Lorenzo Cogotti lorenzo.cogotti <at> alphacogs.com Luca Sani luca.sani <at> isolario.

RIPE NCC Routing Information Service (RIS)

Discovering Interdomain Prefix Propagation using Active Probing

BGP Routing Table Report

Active BGP Probing. Lorenzo Colitti. Roma Tre University RIPE NCC

Routing Concepts. IPv4 Routing Forwarding Some definitions Policy options Routing Protocols

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

Border Gateway Protocol - BGP

BGP. Autonomous system (AS) BGP version 4

Routing Basics ISP/IXP Workshops

RIPE Labs Operator Tools, Ideas, Analysis

Border Gateway Protocol (an introduction) Karst Koymans. Monday, March 10, 2014

Measuring BGP. Geoff Huston. CAIA SEMINAR 31 May

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

RIPE NCC Technical Services. Kaveh Ranjbar, Chief Information Officer

BGP and inter-as economic relationships

Routing Basics. Routing Concepts. IPv4. IPv4 address format. A day in a life of a router. What does a router do? IPv4 Routing

BGP. Autonomous system (AS) BGP version 4

BGP. Autonomous system (AS) BGP version 4

Internet Routing Protocols Lecture 03 Inter-domain Routing

Routing Basics ISP/IXP Workshops

Routing Basics. ISP Workshops. Last updated 10 th December 2015

Internet Routing Protocols Lecture 01 & 02

A Longitudinal Study of BGP MOAS Prefixes

Analysis of Country-wide Internet Outages Caused by Censorship

Module 16 An Internet Exchange Point

TTM AS-level Traceroutes

RIPE NCC Routing Information Service (RIS) 2017 Update

BGP Case Studies. ISP Workshops

IPv6 Module 16 An IPv6 Internet Exchange Point

Module 10 An IPv6 Internet Exchange Point

Internet Routing Basics

from BGPlay to ibgplay

Introduction. Keith Barker, CCIE #6783. YouTube - Keith6783.

Update from the RIPE NCC

On characterizing BGP routing table growth

An introduction to BGP security

CS4700/CS5700 Fundamentals of Computer Networks

Back to basics J. Addressing is the key! Application (HTTP, DNS, FTP) Application (HTTP, DNS, FTP) Transport. Transport (TCP/UDP) Internet (IPv4/IPv6)

Routing Basics. ISP Workshops

COMP/ELEC 429 Introduction to Computer Networks

A Technique for Reducing BGP Update Announcements through Path Exploration Damping

RIPE NCC Update. Nathalie Trenaman 19 April 2017 IPv6 Council - Belgium

AS-CRED: Reputation Service for Trustworthy Inter-domain Routing

bgpand - Architecting a modular BGP4 Attack & Anomalies Detection Platform

Routing Basics. SANOG July, 2017 Gurgaon, INDIA

BGP Attributes and Path Selection

Introduction to IP Routing. Geoff Huston

Inter-Autonomous-System Routing: Border Gateway Protocol

Implementation of RPKI and IRR filtering on the AMS-IX platform. Stavros Konstantaras NOC Engineer

BGP Routing Table Report

Homework 2: IP Due: 11:59 PM, Oct 20, 2016

Inter-Autonomous-System Routing: Border Gateway Protocol

Interdomain routing with BGP4 Part 4/5

The practical way to understand relations between autonomous systems

Ivano Guardini Telecom Italia Lab March 2002

The BGP Visibility Scanner

The (in)completeness of the Observed Internet AS-level Structure

CSCD 433/533 Network Programming Fall Lecture 14 Global Address Space Autonomous Systems, BGP Protocol Routing

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

The BGP Visibility Scanner

How the Internet works? The Border Gateway Protocol (BGP)

TNET A Novel Methodology to Address the Internet AS-level Data Incompleteness

This appendix contains supplementary Border Gateway Protocol (BGP) information and covers the following topics:

BGP. Border Gateway Protocol A short introduction. Karst Koymans. Informatics Institute University of Amsterdam. (version 18.3, 2018/12/03 13:53:22)

Module 14 Transit. Objective: To investigate methods for providing transit services. Prerequisites: Modules 12 and 13, and the Transit Presentation

Configuring BGP community 43 Configuring a BGP route reflector 44 Configuring a BGP confederation 44 Configuring BGP GR 45 Enabling Guard route

Interdomain Routing Reading: Sections K&R EE122: Intro to Communication Networks Fall 2007 (WF 4:00-5:30 in Cory 277)

BGP Path Exploration Damping (PED)

BGP Protocol & Configuration. Scalable Infrastructure Workshop AfNOG2008

DE-CIX Academy: BGP - Multihoming

BGP Configuration for a Transit ISP

EULER Project Path-Vector Routing Stability Analysis

PHAS: A Prefix Hijack Alert System

Luca Cittadini, Roma Tre University Stefano Vissicchio, UCLouvain Benoit Donnet, Université de Liege

Impactful Routing Research with the PEERING Testbed

BGP Convergence in Virtual Private Networks

-mis-operation - Matsuzaki maz Yoshinobu 2010 (c) Internet Initiative Japan Inc.

BGP Anomaly Detection. Bahaa Al-Musawi PhD candidate Supervisors: Dr. Philip Branch and Prof. Grenville Armitage.

4-Byte AS Numbers. The view from the Old BGP world. Geoff Huston February 2007 APNIC

The (In)Completeness of the Observed Internet AS-level Structure

Lecture 18: Border Gateway Protocol

RIPE75 - Network monitoring at scale. Louis Poinsignon

BGPmon: Administrator s Reference Manual

Taming BGP. An incremental approach to improving the dynamic properties of BGP. Geoff Huston. CAIA Seminar 18 August

Evaluation of BGP Anomaly Detection and Robustness Algorithms

CS 640: Introduction to Computer Networks. Intra-domain routing. Inter-domain Routing: Hierarchy. Aditya Akella

Inter-Domain Routing: BGP

Lecture 17: Border Gateway Protocol

PART III. Implementing Inter-Network Relationships with BGP

RIPE76 - Rebuilding a network data pipeline. Louis Poinsignon

Border Gateway Protocol (an introduction) Karst Koymans. Tuesday, March 8, 2016

BGP. Autonomous system (AS) BGP version 4. Definition (AS Autonomous System)

In Search of the Elusive Ground Truth: The Internet s AS-level Connectivity Structure

Transcription:

the real-time Internet routing observatory Luca Sani 1 / 24

Our research topic: discovering the Internet structure Everyone knows the role of the Internet in our society, but since its commercialization in 1995, no one knows its complete structure anymore We focused mostly on the AS-level to reveal the routing policies regulating the Internet 2 / 24

Why is it important to reveal the Internet structure? For example...... to plan an optimal inter-domain network configuration to maintain an acceptable level of service in case of malicious or unintentional faults 3 / 24

Classic BGP Route Collector A Route Collector (RC) is a device which collects BGP routing data from co-operating ASes. RCs only collect routing information and not user traffic 4 / 24

Route collector projects BGP route collector projects Data collected is largely incomplete Most provider-to-customer connections are discovered Most public peering connections are missing Participants do not receive anything back in change of their data 5 / 24

Isolario project Isolario - The Book of Islands where we discuss about all islands of the world, with their ancient and modern names, histories, tales and way of living... Benedetto Bordone (Italian cartographer) Do-ut-des Participants need to open a BGP session with Isolario providing the BGP full routing table and its evolution over time In change, Isolario offers real-time and historic analysis applications based on the aggregation of every routing information collected 6 / 24

Isolario system overview Unlike classic route collectors, Isolario uses incoming BGP flows also to create services for the participants 7 / 24

Current feeders AS 2597 (cctld.it) AS 6882 (Regione Toscana) AS 16004 (MIX) AS 20912 (Panservice) AS 24796 (NAMEX) AS 25309 (TOP-IX) AS 39120 (Convergenze) AS 197440 (cctld.it Anycast) AS 197835 (Ninux) AS 2598 (CNR-Isolario project) AS 6762 (TI Sparkle) AS 12637 (Seeweb) AS 12835 (Trentino Network) AS 16076 (IperV) AS 31638 (Lepida) AS 41497 (Qcom) AS 50809 (Digitel Italia) AS 60772 (Sky Italia) 8 / 24

Isolario services for feeders Already available BGP flow viewer Routing table viewer Route flap detector Website reachability My Subnet reachability Route Collector Software Custom software to perform route collecting instead of Quagga New services Daily report Alerting system Historic routing table viewer Historic my subnet reachability 9 / 24

Isolario services for feeders Already available BGP flow viewer Routing table viewer Route flap detector Website reachability My Subnet reachability Route Collector Software Custom software to perform route collecting instead of Quagga New services Daily report Alerting system Historic routing table viewer Historic my subnet reachability 9 / 24

Already available services: Summary Routing table viewer (RTV) Allows to analyse in real-time portion(s) of the routing table that each feeder announced to Isolario Development status: ready 10 / 24

Already available services: Summary My subnet reachability (MSR) Allows to analyse in real-time the reachability of the subnets of each feeder from every other Isolario feeder perspective Development status: ready 11 / 24

New features Already available BGP flow viewer Routing table viewer Route flap detector Website reachability My Subnet reachability Route Collector Software Custom route collecting software New services Daily report Alerting system Historic routing table viewer Historic my subnet reachability 12 / 24

Route Collector Software We are going to replace Quagga with a custom route collecting software Scalability in terms of access to routing information wrt number of connected feeders and number of requests Full support for MRT data (RIB and UPDATEs dump) Feeders Readers Quagga Bird RCE 1 4.64s 1.67s 5.76s 1 5 11.2s 7.96s 6.43s 20 36.1s 31.4s 18.0 40-62.7s 34.9s 1 35.1s 2.69s 6.11s 8 5 78.2s 10.9s 6.58s 20 246s 35.6s 17.9s 40-83.0s 35.6s 1 356s 12.4s 6.23s 64 5 1716s 37.7s 6.85s 20-131s 18.9s 40-254s 36.7s Time to dump one full routing table RAM (MB) 6000 5000 4000 3000 2000 1000 0 Quagga Bird RCE 1 2 4 8 16 32 64 # of feeders 13 / 24

New features Already available BGP flow viewer Routing table viewer Route flap detector Website reachability My Subnet reachability Route Collector Software Custom route collecting software New services Daily report Alerting system Historic routing table viewer Historic my subnet reachability 14 / 24

New services: Daily report Summary about the feeder inter-domain routing status as perceived by the Isolario system Routing statistics #Announce, #Withdrawn Most (un)stable prefixes Reachability statistics Inbound reachability BGP attributes statistics AS path anomalies One-time configuration: no need to be connected to the system 15 / 24

Daily report: Summary of statistics 16 / 24

Daily report (details) Users can decide to include in the report further details 17 / 24

Daily report (details) For example details about the nature of the most unstable prefixes 17 / 24

New services: Alerting system Different types of alarms BGP attributes: BGP UPDATEs matching attributes of interest are announced by the feeder Flap events: a prefix is experiencing a flap event (rate of BGP UPDATEs involving that prefix > threshold) Hijack: BGP UPDATEs hijacking a feeder subnet Prefix reachability: complete/partial (un)reachability of prefixes of interest Session down/up: the session with Isolario goes down Notification report Web page, Email, HTTP(S) POST 18 / 24

Alerting system: Example BGP attributes prefix subnet = 208.65.152.0/22 and as path substr = 4134 19 / 24

New services: Historic services Store the past Historic services exploit different BGP data sources (RouteViews, RIPE NCC RIS, Isolario) to show historic results Challenge: store original MRT data in a way that is quickly accessible Analyse the past Inspect the status of the inter-domain routing across a particular event Analyse how outages/attacks/censorships/de-peering affected the inter-domain routing dynamics of ASes 20 / 24

Historic services Applications Routing table viewer: Allows to analyse portion(s) of the routing table that each feeder announced to Isolario My subnet reachability: Allows to analyse the reachability of the subnets of each feeder from every perspective available in the past 21 / 24

Summary: how to use Isolario? Real-time services Something is happening How is my RIB(s) evolving? How is my reachability affected? Historic services Something happened How was my RIB(s) evolving? How was my reachability affected? Alerting System Something is happening NOW! Check real-time services! Do something! (if needed) Daily report Did something happen yesterday? Check historic services! Do something! (if needed) 22 / 24

Isolario future End of test phase So far Isolario was in a test phase We are about to become fully operational Support granted by CNR up to 2017 New public ASN 2598 To formalize the relationship with Isolario, we are going to propose to each feeder an agreement Distribute active measurement devices to enhance the measurement system and thus the offered services Agreement Feeders receive services in change of BGP data Isolario creates and maintains those services 23 / 24

Thank you for your attention Any question? luca.sani@iit.cnr.it www.isolario.it Feeders and Feedbacks are most welcome! 24 / 24

25 / 24

Some result Feeders 17 ASes, 16 different organizations 12 are not connected to other RC projects 21 IPv4 sessions 14 IPv6 sessions AS-level connectivity computed across March 2015 data 3173 new AS connections 918 geolocated in Italy (+22.18%) 26 / 24

Why is it important to reveal the Internet structure? To understand how packets are routed in the Internet Identify routes involving non-national ISPs Identify the importance of each AS in the ecosystem To create economy-based models of the global Internet growth Study the effectiveness of p2p connections Build more realistic topology generators to simulate the Internet To properly select peers and diversify upstream providers based on their connectivity Increase network robustness Select data centers for server replicas Understand the effects of catastrophic events... 27 / 24

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback