an internet wide analysis of traffic policing
play

An Internet-Wide Analysis of Traffic Policing Tobias Flach, Pavlos - PowerPoint PPT Presentation

Sep 30, 2023 •185 likes •588 views

An Internet-Wide Analysis of Traffic Policing Tobias Flach, Pavlos Papageorge, Andreas Terzis, Luis Pedrosa, Yuchung Cheng, Tayeb Karim, Ethan Katz-Bassett, Ramesh Govindan policing-paper@google.com 1 Internet Service Provider Content

  1. An Internet-Wide Analysis of Traffic Policing Tobias Flach, Pavlos Papageorge, Andreas Terzis, Luis Pedrosa, Yuchung Cheng, Tayeb Karim, Ethan Katz-Bassett, Ramesh Govindan policing-paper@google.com 1

  2. Internet Service Provider Content Providers Users (ISP) 2

  3. Want to accommodate multitude of services/policies → Traffic Engineering Exponential growth of video traffic Account for ~ Want to maximize quality Often need high bitrate 50% of traffic in of experience (QoE) for with low tolerance for North America their users latency and packet loss 3

  4. Traffic Engineering: Policing vs. Shaping Goal: Enforce a rate limit (maximum throughput) Solutions: a. Drop packets once the limit is reached Focus of this talk → Traffic Policing b. Queue packets (and send them out at the maximum rate) → Traffic Shaping 4

  5. Contribution Analyze the prevalence and impact of traffic policing on a global scale, as well as explore ways to mitigate the impact of policers. 5

  6. Outline 1. How Policing Works 2. Detecting the Effects of Policing in Packet Captures 3. A Global-Scale Analysis of Policing in the Internet 4. Mitigating the Impact of Policers 6

  7. How Policing Works Packet leaves if enough tokens are available Policer ? Tokens refreshed at predefined policing rate 7

  8. How Policing Works Packet leaves if enough tokens are available Policer ? Tokens refreshed at predefined policing rate 8

  9. Policing in Action Throughput allowed by policer 9

  10. Policing in Action Throughput allowed by policer Plus: initial bursts from saved tokens 10

  11. Policing in Action Throughput allowed by policer Plus: initial bursts from saved tokens 11

  12. Policing in Action Throughput Overshooting allowed by by 1 MB policer Plus: initial bursts from saved tokens 12

  13. Policing in Action Multiple retransmission rounds Throughput Overshooting allowed by by 1 MB policer Plus: initial bursts from saved tokens 13

  14. Policing in Action Multiple retransmission rounds Throughput Overshooting allowed by by 1 MB policer Plus: initial bursts from saved tokens 14

  15. Transmission rate matches policing Policing in Action Multiple rate retransmission rounds Throughput Overshooting allowed by by 1 MB policer Plus: initial bursts from saved tokens 15

  16. Policing can have negative side effects for all parties Content providers ● Excess load on servers forced to retransmit dropped packets ○ (global average: 20% retransmissions vs. 2% when not policed) ISPs ● Transport traffic across the Internet only for it to be dropped by the policer ○ Incurs avoidable transit costs ○ Users ● Can interact badly with TCP-based applications ○ We measured degraded video quality of experience (QoE) → user dissatisfaction ○ 16

  17. Analyze the prevalence and impact of policing on a global scale Develop a Tie connection Collect packet traces mechanism to detect performance back to for sampled client policing in packet already collected connections at most captures application metrics Google frontends 17

  18. Analysis Pipeline HTTP Response Application metrics Collect packet traces Forward samples to Cross-reference with Detect policing analysis backend application metrics 18

  19. Detection Algorithm Policing Progress rate Packets dropped by policer Packets are always dropped when crossing the “policing rate” line Packets pass through policer Time 19

  20. Detection Algorithm Policing 1 Find the rate policing rate Progress Use measured throughput ● between an early and late loss as estimate Match performance 2 to expected policing behavior Everything above the ● policing rate gets dropped (Almost) nothing below the ● policing rate gets dropped Time 20

  21. Avoiding Falsely Labeling Loss as Policing Progress Progress Time Time But: Traffic above policing rate But: Traffic below policing rate should be dropped should go through 21

  22. Congestion Looks Similar to Policing! Packets are usually Progress Latency dropped when a router’s buffer is already full Buffer fills → queuing delay increases Use inflated latency as signal that loss is not caused by a policer Time 22

  23. Validation 1: Lab Setting Goal: Approximate the accuracy of our heuristic ● Generated test traces covering common reasons for dropped packets ● Policing (used a router with support for policing) ○ Congestion ○ Random loss ○ Shaping ○ High accuracy for almost all configurations (see paper for details) ● Policing: 93% ○ All other reasons for loss: > 99% ○ 23

  24. Validation 2: Live Traffic Observed only few policing rates in ● ISP deep dives ISPs enforce a limited set of data plans ○ Confirmed that per ISP policing rates ● cluster around a few values across the whole dataset And: Observed no consistency ● across flows without policing 24

  25. Outline 1. How Policing Works 2. Detecting the Effects of Policing in Packet Captures 3. A Global-Scale Analysis of Policing in the Internet 4. Mitigating the Impact of Policers 25

  26. Internet-Wide Analysis of Policing Sampled flows collected from most of Google’s CDN servers ● 7-day sampling period (in September 2015) ○ 277 billion TCP packets ○ 270 TB of data ○ 800 million HTTP queries ○ Clients in over 28,400 ASes ○ To tie TCP performance to application performance, we analyzed ● flows at HTTP request/response (“segment”) granularity 26

  27. #1: Prevalence of Policing Region Policed Policed Loss Loss segments (among (policed) (non-policed) (overall) lossy) Africa 1.3% 6.2% 27.5% 4.1% Asia 1.3% 6.6% 24.9% 2.9% Australia 0.4% 2.0% 21.0% 1.8% Europe 0.7% 5.0% 20.4% 1.3% N. America 0.2% 2.6% 22.5% 1.0% S. America 0.7% 4.1% 22.8% 2.3% 27

  28. Lossy: 15 losses or more #1: Prevalence of Policing per segment Region Policed Policed Loss Loss segments Up to 7% of lossy segments (among (policed) (non-policed) (overall) are policed lossy) Africa 1.3% 6.2% 27.5% 4.1% Asia 1.3% 6.6% 24.9% 2.9% Australia 0.4% 2.0% 21.0% 1.8% Europe 0.7% 5.0% 20.4% 1.3% N. America 0.2% 2.6% 22.5% 1.0% S. America 0.7% 4.1% 22.8% 2.3% 28

  29. Lossy: 15 losses or more #2: Policer-induced Losses per segment Region Policed Policed Loss Loss segments Up to 7% of lossy segments (among (policed) (non-policed) (overall) are policed lossy) Africa 1.3% 6.2% 27.5% 4.1% Average loss rate increases from 2% to over 20% when policed Asia 1.3% 6.6% 24.9% 2.9% Australia 0.4% 2.0% 21.0% 1.8% Europe 0.7% 5.0% 20.4% 1.3% N. America 0.2% 2.6% 22.5% 1.0% S. America 0.7% 4.1% 22.8% 2.3% 29

  30. Sudden Bandwidth Change Induces Heavy Loss Progress Time 30

  31. Sudden Bandwidth Change Induces Heavy Loss Progress Burst throughput Policing rate TCP does not adjust to large changes Sudden change in bandwidth quickly enough Time 31

  32. 90th percentile: Policing rate is 10x lower #3: Burst Throughput vs. Policing Rate than burst throughput Up to 7% of lossy segments are policed Average loss rate increases from 2% to over 20% when policed Policing rate often over 50% lower than burst throughput 32

  33. Quality of Experience Metrics Rebuffer Time: Time that a video is paused after playback started due to insufficient stream data buffered Watch Time: Fraction of the video watched by the user Rebuffer to Watch Time Ratio: Goal is zero (no rebuffering delays after playback started). 33

  34. #4: Impact on Quality of Experience Up to 7% of lossy segments are policed Average loss rate increases from 2% to over 20% when policed Policing rate often over 50% lower than burst throughput In the tail, policed segments can have up to 200% higher rebuffering times (For playbacks with the same throughput) 34

  35. Mitigating Policer Impact For content providers For policing ISPs No access to policers and Access to policers and their configurations their configurations But can control transmission Can deploy alternative traffic patterns to minimize risk of hitting management techniques an empty token bucket 35

  36. Mitigating Policer Impact For content providers For policing ISPs Rate limiting Policer optimization Pacing Shaping Reducing losses during recovery in Linux 36

  37. Mitigating Policer Impact For content providers For policing ISPs Reducing losses during recovery in Linux 37

  38. Reducing Losses During Recovery in Linux Send only one packet per ACK Slow start during Solution: recovery Packet conservation until Sender transmits ACKs indicate no further at twice the losses policing rate Reduces median loss ● Policer Policer Policer rates by 10 to 20% Upstreamed to Linux ● Packets kernel 4.2 leave at policing rate Round trips 38 (one per column)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Traffic Policing in the Internet Yuchung Cheng, Neal Cardwell IETF 97 maprg. Nov 2016 1

Traffic Policing in the Internet Yuchung Cheng, Neal Cardwell IETF 97 maprg. Nov 2016 1

Traffic Policing in the Internet Yuchung Cheng, Neal Cardwell IETF 97 maprg. Nov 2016 1 Policing on YouTube videos 2 Token bucket traffic policer Tokens filled at 1Mbps up to the bucket size (== burst) Packets arriving at 3Mbps Packet

560 views • 30 slides
Traffic Shaping, Traffic Policing Peter Puschner, Institut fr Technische Informatik Traffic

Traffic Shaping, Traffic Policing Peter Puschner, Institut fr Technische Informatik Traffic

Traffic Shaping, Traffic Policing Peter Puschner, Institut fr Technische Informatik Traffic Shaping, Traffic Policing Enforce compliance of traffic to a given traffic profile (e.g., rate limiting) By delaying or dropping certain

389 views • 11 slides
Burlington Police Department Racial Disparities in Traffic Policing Stephanie Seguino University

Burlington Police Department Racial Disparities in Traffic Policing Stephanie Seguino University

Burlington Police Department Racial Disparities in Traffic Policing Stephanie Seguino University of Vermont and Nancy Brooks Cornell University Focus of analysis The analysis concentrates on traffic stops and outcomes that are the result

404 views • 17 slides
Traffic Measurement Activities of the WIDE project Kenjiro Cho IIJ Research Lab traffic

Traffic Measurement Activities of the WIDE project Kenjiro Cho IIJ Research Lab traffic

Traffic Measurement Activities of the WIDE project Kenjiro Cho IIJ Research Lab traffic measurement and analysis in WIDE measurement activities across research groups broad perspectives - tracking long-term trends - analysis (with wide

415 views • 12 slides
Vedolizumab: policing leukocyte traffic Dr Brian Feagan, London, Canada Vedolizumab : Policing

Vedolizumab: policing leukocyte traffic Dr Brian Feagan, London, Canada Vedolizumab : Policing

Oxford Inflammatory Bowel Disease MasterClass Vedolizumab: policing leukocyte traffic Dr Brian Feagan, London, Canada Vedolizumab : Policing Lymphocyte Traficking Brian G. Feagan Professor of Medicine, Epidemiology and Biostatistics University

674 views • 52 slides
Internet Traffic: Analysis, Modeling with real-world aspects Pierre B ORGNAT CNRS ENS Lyon,

Internet Traffic: Analysis, Modeling with real-world aspects Pierre B ORGNAT CNRS ENS Lyon,

Traffic Measurement Analysis & Robust Methods Modeling Anomaly Detection Traffic Classification Conclusion + Internet Traffic: Analysis, Modeling with real-world aspects Pierre B ORGNAT CNRS ENS Lyon, Laboratoire de Physique (UMR

716 views • 60 slides
Internet traffic measurements Renata Teixeira (Inria) Why measure traffic? Performance

Internet traffic measurements Renata Teixeira (Inria) Why measure traffic? Performance

Internet traffic measurements Renata Teixeira (Inria) Why measure traffic? Performance analysis Anomaly and intrusion detec=on Network engineering Traffic at different granulari=es IP-level packets Capture per-packet

539 views • 40 slides
using Traffic Analysis Attacks Salini S K What is Traffic Analysis What is Traffic Analysis

using Traffic Analysis Attacks Salini S K What is Traffic Analysis What is Traffic Analysis

Website Fingerprinting using Traffic Analysis Attacks Salini S K What is Traffic Analysis What is Traffic Analysis Wiki says What is Traffic Analysis Wiki says Process of intercepting and examining messages in order to deduce

1.15k views • 41 slides
Internet Traffic Analysis: Mohammed Alasmar Co Cosen ener ers, , 2019 2019

Internet Traffic Analysis: Mohammed Alasmar Co Cosen ener ers, , 2019 2019

19 Internet Traffic Analysis: Mohammed Alasmar Co Cosen ener ers, , 2019 2019 https://ieeexplore.ieee.org/document/8737483 Motivations Reliable traffic modelling is important for network planning, deployment and management;

447 views • 29 slides
Town of Midland Policing Services Analysis Town of Midland Policing Service Analysis About

Town of Midland Policing Services Analysis Town of Midland Policing Service Analysis About

Town of Midland Policing Services Analysis Town of Midland Policing Service Analysis About Asymmetric and Pomax Asymmetric Consulting and Rudy Gheysen provides a very personal service based on 37 years law enforcement experience in

457 views • 20 slides
Towards the Unification of Policing Innovations Under Community Policing Community Policing

Towards the Unification of Policing Innovations Under Community Policing Community Policing

Towards the Unification of Policing Innovations Under Community Policing Community Policing in the 1980s, becomes more prevalent starting in the mid-1990s; More than $13 billion investment to more than 13,000 agencies COPS focus on

377 views • 18 slides
4. The Internet and the World Wide Web 4.1 History of the Internet 4.2 The World Wide Web and

4. The Internet and the World Wide Web 4.1 History of the Internet 4.2 The World Wide Web and

4. The Internet and the World Wide Web 4.1 History of the Internet 4.2 The World Wide Web and the Browser 4.3 What Browsers Can Do for Us 4.4 What is a Website? 4.5 Website Design 4.6 Other Creatures on the Web 4.7 Key Web Software

1.02k views • 97 slides
Effective and Real-time In-App Activity Analysis in Encrypted Internet Traffic Streams Junming

Effective and Real-time In-App Activity Analysis in Encrypted Internet Traffic Streams Junming

Effective and Real-time In-App Activity Analysis in Encrypted Internet Traffic Streams Junming Liu Yanjie Fu, Jingci Ming, Yong Ren Leilei Sun, Hui Xiong Rutgers University, USA Futurewei Technology. Inc,. USA Background 2/27 Explosive

297 views • 26 slides
TLS in the wild An Internet-wide analysis of TLS-based protocols for electronic communication

TLS in the wild An Internet-wide analysis of TLS-based protocols for electronic communication

TLS in the wild An Internet-wide analysis of TLS-based protocols for electronic communication Ralph Holz School of Information Technologies Faculty of Engineering & Information Technologies Team This is joint work with Johanna

678 views • 28 slides
Internet Traffic Monitoring Tools and Analysis Presenta5on for

Internet Traffic Monitoring Tools and Analysis Presenta5on for

Internet Traffic Monitoring Tools and Analysis Presenta5on for Terena Javier Aracil Javier.aracil@uam.es Nov 15, 2013 Goals of this mee5ng We have been

228 views • 6 slides
WIDE updates Kenjiro Cho IIJ/WIDE Project August 1, 2012 Understanding Internet Dynamics from a

WIDE updates Kenjiro Cho IIJ/WIDE Project August 1, 2012 Understanding Internet Dynamics from a

WIDE updates Kenjiro Cho IIJ/WIDE Project August 1, 2012 Understanding Internet Dynamics from a Global View the Internet is an evolving open system no central point, no typical network or user complexity everywhere: topology, usage

608 views • 13 slides
Worksheet 9 Worksheet 9 Linux as a router, packet filtering, traffic Linux as a router, packet

Worksheet 9 Worksheet 9 Linux as a router, packet filtering, traffic Linux as a router, packet

Worksheet 9 Worksheet 9 Linux as a router, packet filtering, traffic Linux as a router, packet filtering, traffic shaping shaping Linux as a router Linux as a router Capable of acting as a router, firewall, traffic Capable of acting as a

366 views • 21 slides
Future Scientific Possibilities in Neutron Scattering at the European Spallation Source for

Future Scientific Possibilities in Neutron Scattering at the European Spallation Source for

Future Scientific Possibilities in Neutron Scattering at the European Spallation Source for Users from Academia and Industry Arno Hiess Scientific Activities Division European Spallation Source ERIC, Lund, Sweden

607 views • 19 slides
CS 356: Computer Network Architectures Lecture 24: IP Multicast and QoS [PD] Chapter 4.2, 6.5

CS 356: Computer Network Architectures Lecture 24: IP Multicast and QoS [PD] Chapter 4.2, 6.5

CS 356: Computer Network Architectures Lecture 24: IP Multicast and QoS [PD] Chapter 4.2, 6.5 Xiaowei Yang xwy@cs.duke.edu Overview Two historic important topics in networking Multicast QoS Limited Deployment IP Multicast

832 views • 70 slides
Linux Traffic Control Cong Wang Software Engineer Twitter, Inc. Layer 2 Overview Qdisc:

Linux Traffic Control Cong Wang Software Engineer Twitter, Inc. Layer 2 Overview Qdisc:

Linux Traffic Control Cong Wang Software Engineer Twitter, Inc. Layer 2 Overview Qdisc: how to queue the packets Class: tied with qdiscs to form a hierarchy Filter: how to classify or filter the packets Action: how to deal

459 views • 31 slides
Using TCP/IP Traffic shaping to achieve iSCSI service predictability Paper presentation Jarle

Using TCP/IP Traffic shaping to achieve iSCSI service predictability Paper presentation Jarle

Using TCP/IP Traffic shaping to achieve iSCSI service predictability Paper presentation Jarle Bjrgeengen University of Oslo / USIT November 11, 2010 Outline About resource sharing in storage devices Lab setup / job setup Experiment

538 views • 29 slides
End-to-end Methods for Traffic Shaping Detection, Performance Problem Diagnosis, Home Wireless

End-to-end Methods for Traffic Shaping Detection, Performance Problem Diagnosis, Home Wireless

End-to-end Methods for Traffic Shaping Detection, Performance Problem Diagnosis, Home Wireless Troubleshooting Partha Kanuparthy Joint work with Constantine Dovrolis AIMS 2011, CAIDA Friday, February 11, 2011 1 Three Tools ShaperProbe :

561 views • 38 slides
Communication Systems RTP-QoS University of Freiburg Computer Science Computer Networks and

Communication Systems RTP-QoS University of Freiburg Computer Science Computer Networks and

Communication Systems RTP-QoS University of Freiburg Computer Science Computer Networks and Telematics Prof. Christian Schindelhauer Organization I. Data and voice communication in IP networks II. Security issues in networking

883 views • 41 slides
Voice Coding with Opus Koen Vos, Karsten Vandborg Srensen, Sren Skak Jensen, Jean-Marc Valin

Voice Coding with Opus Koen Vos, Karsten Vandborg Srensen, Sren Skak Jensen, Jean-Marc Valin

Voice Coding with Opus Koen Vos, Karsten Vandborg Srensen, Sren Skak Jensen, Jean-Marc Valin Two Opus presentations This talk: Voice Mode (Koen) Features Technology Listening test results Next talk: Audio Mode

501 views • 20 slides

More recommend