enterprise routing design
play

Enterprise Routing Design Xin Sun (Florida International U.), - PowerPoint PPT Presentation

Jul 03, 2023 •162 likes •469 views

Modeling the Complexity of Enterprise Routing Design Xin Sun (Florida International U.), Sanjay G. Rao (Purdue U.) and Geoffrey G. Xie (Naval Postgraduate School) 1 The costs of complexity We propose that this trend [towards more

  1. Modeling the Complexity of Enterprise Routing Design Xin Sun (Florida International U.), Sanjay G. Rao (Purdue U.) and Geoffrey G. Xie (Naval Postgraduate School) 1

  2. The costs of complexity • “We propose that this trend [towards more complex machines] is not always cost-effective, and may do more harm than good”. – Patterson and Ditzel , “The Case for the RISC”, 1980. • “Complex architectures and designs have been (and continue to be) among the most significant and challenging barriers to building cost-effective large scale IP networks”. – RFC 3439 2

  3. Complex networks are hard to manage interface Ethernet0/1 class-map match-any QC2 service-policy input MarkingPolicy match access-group 102 ! match access-group ACL2 interface ATM1/0.1 point-to-point class-map match-all QC3 rate-limit output access-group 102 15 20 20 \ match dscp 5 7 conform-action set-dscp-transmit 10 \ class-map match-any CX exceed-action set-dscp-transmit 12 ...... rate-limit output access-group 103 2 4 4 \ ! conform-action set-dscp-transmit 5 \ policy-map QP0 exceed-action set-dscp-transmit 7 class QC2 service-policy output QP0 bandwidth 100 ! random-detect dscp-based access-list 102 permit ip any any dscp 10 random-detect dscp 10 40 60 10 Over 80% of IT budget in enterprises access-list 102 permit tcp any any eq www random-detect dscp 12 30 40 10 access-list 103 permit ip any any devoted to maintaining status quo class QC3 ip access-list extended ACL2 bandwidth 50 yet configuration errors account for permit ip any any dscp 12 random-detect dscp-based ! 62% of network down time, and .. random-detect dscp 5 20 30 5 router bgp 1 random-detect dscp 7 15 20 5 enable 65% of cyber-attacks no synchronization policy-map PX neighbor 10.10.10.101 remote-as 1 (Yankee Group, USITS 2003) ...... neighbor 10.10.10.101 update-source Loopback0 ! no auto-summary !

  4. Could we quantify “complexity” ? “ When deciding between two approaches in networking, complexity is usual an important factor. However, the term ‘complexity’ is rarely well defined, and decisions on complexity are mostly made on subjective terms.” – IRTF Network Complexity Research Group Charter, 2011 4

  5. What this paper is about… • A first framework for quantifying complexity of enterprise routing designs • Models that relate design to difficulty managing configurations – Facilitate design comparisons, what-if analysis • Focus on Enterprise Routing Design – Critical, widely prevalent, time-consuming 5

  6. Rest of the talk… • Enterprise Routing Design • Modeling design complexity • Modeling details • Validation – Longitudinal snapshots of Purdue’s configurations 6

  7. Routing Design Objectives ISP Policy Groups: Subnets with similar reachability policies [variant of IMC09] Sales Sales Data-Ctr Support Support Data-Ctr Reachability Sales Y Matrix Support N INT N Other objectives: resiliency, traffic engineering etc. 7

  8. Routing Design Primitives Border Router (EIGRP, BGP) ISP EIGRP Sales Sales Data-Ctr Support Support • Routing Instance [Maltz et al, Sigcomm 2004] • Route Filters 8

  9. Connecting Primitives Route BGP redistribution ISP Sales EIGRP OSPF Sales Data-Ctr Support Support BGP Static route ISP Sales EIGRP OSPF Sales Data-Ctr Support Support 9

  10. Choosing a Routing Design • Many acceptable choices for operators: – Number of instances, mapping routers to instances, connecting primitives etc. • Design complexity can provide guidance – Complexity: important, neglected, subjective – Complement performance metrics (e.g., # of hops) 10

  11. Rest of the talk… • Enterprise Routing Design • Modeling design complexity • Modeling details • Validation 11

  12. Prior efforts at quantifying complexity • Protocol complexity [Chun et al, NSDI 08] – Based on state of distributed protocols – Dependencies leading to given state – E.g. Distance Vector Vs. Link State • Configuration complexity [Benson et al, NSDI 09] – Family of metrics to capture complexity of network configurations – Correlation with difficulty managing networks established through operator interviews 12

  13. Measuring Configuration Complexity • Key metric: # of configuration dependencies (referential Links) interface Ethernet0/1 class-map match-any QC2 service-policy input MarkingPolicy match access-group 102 ! match access-group ACL2 interface ATM1/0.1 point-to-point class-map match-all QC3 rate-limit output access-group 102 15 20 20 \ match dscp 5 7 conform-action set-dscp-transmit 10 \ class-map match-any CX exceed-action set-dscp-transmit 12 ...... rate-limit output access-group 103 2 4 4 \ ! conform-action set-dscp-transmit 5 \ policy-map QP0 exceed-action set-dscp-transmit 7 class QC2 service-policy output QP0 bandwidth 100 ! random-detect dscp-based access-list 102 permit ip any any dscp 10 random-detect dscp 10 40 60 10 access-list 102 permit tcp any any eq www random-detect dscp 12 30 40 10 access-list 103 permit ip any any class QC3 ip access-list extended ACL2 bandwidth 50 permit ip any any dscp 12 random-detect dscp-based ! random-detect dscp 5 20 30 5 router bgp 1 random-detect dscp 7 15 20 5 no synchronization policy-map PX neighbor 10.10.10.101 remote-as 1 ...... neighbor 10.10.10.101 update-source Loopback0 ! no auto-summary !

  14. Challenge: Network Design Complexity • Reason about “higher - level” network designs – Not just “lower - level” configurations • Understand sources of complexity – E.g., misalignment of routing instances and reachability policies • What-if Analysis – E.g., different set of routing instances ? – E.g., replacing static routes with BGP? • Greenfield network design – No access to configuration files

  15. Modeling design complexity Candidate Design (e.g., routing Configuration instances etc.) Complexity complexity models of metrics design Design (e.g., primitives complexity Network wide dependencies) (e.g., BGP, design objectives static route) (e.g., reachability policy) Facilitates green-field design, what-if analysis etc.

  16. Rest of the talk… • Enterprise Routing Design • Modeling design complexity • Modeling details – Intra-Instance complexity – Inter-Instance complexity • Validation 16

  17. Modeling Single Instance Complexity • Key cause of complexity: – Multiple policy groups within an instance Filter routing updates s1 s2 s3 s4 s5 from s4,s5 - Y Y N N s1 S1 S4 s2 Y - Y N N S2 s3 Y Y - Y Y S3 N N Y - Y s4 S5 Filter routing N N Y Y - S5 updates from s1,s2 17

  18. Modeling Single Instance Complexity s1 s2 s3 s4 s5 - Y Y N N s1 S1 S4 s2 Y - Y N N S2 Y Y - Y Y s3 S3 N N Y - Y s4 S5 N N Y Y - S5 Filter configuration # of filters • Complexity depends on: complexity – Number of policy groups – Topology ( # of paths between policy groups, edge-cut sets) – # of subnets that must be filtered between policy group pairs • Estimation details described in paper. 18

  19. Modeling Inter Instance Complexity S1,S2 S1 S3 S4 S2 S5 OSPF 20 EIGRP 10 S4,S5 S3 Sources of Complexity: Propagation of routes across instances while meeting • Reachability requirement • Resiliency requirement Different connecting primitives may lead to different complexity • Route Redistribution • Static Routes • BGP 19

  20. Modeling Static Routes S1,S2 S3 R1 S1 R1 R3 ip route S4 R3 S4 ip route S5 R3 R2 ……. S5 R4 S2 router eigrp 10 EIGRP 10 OSPF 20 S4,S5 redistribute static S3 • Key issue: Failure handling. – Configuration for automatic re-routing on failures • Complexity depends on – # of border routers, # of arcs across instances – # of propagated routes • Basic Propagation, Failure handling 20

  21. Modeling Route Redistribution S1,S2 S1 S3 S4 S5 S2 OSPF 20 EIGRP 10 S4,S5 S3 • Key Issue: Preventing Route Feedback – Route filters, tags • Complexity depends on – # of border routers – # of propagated routes • Basic propagation, feedback prevention – Fraction of routes propagated 21

  22. Which primitive lowers complexity? • Depends on several factors – # of border routers – # of propagated routes – Fraction of routes propagated • Static Route: – Single Border Router, small # of routes • Route Redistribution – Single Border Router, lots of routes, most propagated. • BGP – Multiple Border Routers, most routes propagated 22

  23. Rest of the talk… • Enterprise Routing Design • Modeling design complexity • Modeling details • Validation 23

  24. Evaluation Study Overview • Data-set – Longitudinal configuration snapshots of Purdue • 2009 – 2011 • Major redesign in 2010 – Physical topology data from CDP – ~100 routers, 1000 switches, 700 subnets • Key Questions – Do our models match configuration-based metrics? • Yes, see paper – Feasible to lower complexity of operational designs? 24

  25. Purdue Campus Design (2009) External INT ( INT ) To Reachability matrix Campus DATA RSRCH GRID INT BGP BGP DATA - Partial all × RSRCH all - all all GRID BGP EIGRP ( DATA, GRID Partial - × × ( GRID ) RSRCH ) INT Partial Partial - × redistribution OSPF ( RSRCH ) 25

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Grid Routing Introduction In the VLSI design cycle, routing follows cell placement .

Grid Routing Introduction In the VLSI design cycle, routing follows cell placement .

Grid Routing Introduction In the VLSI design cycle, routing follows cell placement . During routing, precise paths are defined on the layout surface, on which conductors carrying electrical signals are run. Routing takes up almost 30%

569 views • 43 slides
Yoshimura-Kuh Channel Routing Perform YK channel routing with K = 100 TOP =

Yoshimura-Kuh Channel Routing Perform YK channel routing with K = 100 TOP =

Yoshimura-Kuh Channel Routing Perform YK channel routing with K = 100 TOP = [1,1,4,2,3,4,3,6,5,8,5,9] BOT = [2,3,2,0,5,6,4,7,6,9,8,7] Practical Problems in VLSI Physical Design YK Channel Routing (1/16) Constrained Left-Edge Algorithm

184 views • 16 slides
Routing Your Microservices Architecture To Ease DevOps Enterprise Transformation Devops

Routing Your Microservices Architecture To Ease DevOps Enterprise Transformation Devops

Routing Your Microservices Architecture To Ease DevOps Enterprise Transformation Devops Gathering 2020 1 Whoami Manuel Zapf Head of Product Open Source @ Containous Maintainer on Traek @mZapfDE SantoDE 2 Containous

727 views • 40 slides
Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a

Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a

Adit Enterprise. Adit Enterprise. Adit Enterprise. Adit Enterprise. ADIT Enterprise is a wholesale distribution business providing complete range of Electronic Security Systems Kamlesh 093232 51184 Adit Enterprise Adit Enterprise Adit

619 views • 29 slides
Routing Design and Analysis of Distributed Algorithms, Santoro Chapter 4.1-4.2.5, pp. 225-249

Routing Design and Analysis of Distributed Algorithms, Santoro Chapter 4.1-4.2.5, pp. 225-249

Routing Design and Analysis of Distributed Algorithms, Santoro Chapter 4.1-4.2.5, pp. 225-249 Panu Pitkmki 14.3.2007 1 O UTLINE Routing definition Protocols gossip distance vector shortest-path spanning tree sparser

439 views • 18 slides
4.3 Routing protocols We first look at Routing Tables and routing mechanisms. A routing table has

4.3 Routing protocols We first look at Routing Tables and routing mechanisms. A routing table has

4.3 Routing protocols We first look at Routing Tables and routing mechanisms. A routing table has columns for the destination network (or hosts) with the corresponding cost and the next router address to reach a destination. Additional

1.08k views • 84 slides
Landmark Landmark-based routing based routing Landmark Landmark-based routing based routing

Landmark Landmark-based routing based routing Landmark Landmark-based routing based routing

Landmark Landmark-based routing based routing Landmark Landmark-based routing based routing [Kleinberg04] J. Kleinberg, A. Slivkins, T. Wexler. Triangulation and Embedding using Small Sets of Beacons. Proc. 45th IEEE Symposium on Foundations of

450 views • 32 slides
Objectives Design rules Floorplan Routing Physical layout verification

Objectives Design rules Floorplan Routing Physical layout verification

Objectives Design rules Floorplan Routing Physical layout verification Clock network Power network Engineering changing order Package After completing logic/circuit design, the next phase in ASIC design flow

1.03k views • 92 slides
Scalable Routing Outline Routing Algorithms Scalability 1 Overview Forwarding vs Routing

Scalable Routing Outline Routing Algorithms Scalability 1 Overview Forwarding vs Routing

Scalable Routing Outline Routing Algorithms Scalability 1 Overview Forwarding vs Routing forwarding: to select an output port based on destination address and routing table routing: process by which routing table is built

543 views • 13 slides
1 Routing Table Routing Table Destination network Next router

1 Routing Table Routing Table Destination network Next router

Lecture 12. Lecture 12. Introduction to Introduction to IP Routing IP Routing Giuseppe Bianchi Why introduction? Why introduction? Routing: very complex issue need in-depth study entire books on routing our scope: give a

552 views • 19 slides
Enterprise Data Analysis and Design Lecture 2: Enterprise Architectures Johannes Gehrke

Enterprise Data Analysis and Design Lecture 2: Enterprise Architectures Johannes Gehrke

Enterprise Data Analysis and Design Lecture 2: Enterprise Architectures Johannes Gehrke johannes@cs.cornell.edu http://www.cs.cornell.edu/johannes (Some of the slides are courtesy of Gustavo Alonso, Fabio Casati, Harumi Kuno, and Vijay

549 views • 23 slides
Fail-in-Place Network Design Interaction between Topology, Routing Algorithm and Failures Jens

Fail-in-Place Network Design Interaction between Topology, Routing Algorithm and Failures Jens

Fail-in-Place Network Design Interaction between Topology, Routing Algorithm and Failures Jens Domke , Torsten Hoefler , Satoshi Matsuoka Tokyo Institute of Technology ETH Zrich Presentation Overview 1. Topologies, Routing,

628 views • 35 slides
Design for Optimizability A Case Study in Routing Mung Chiang Electrical Engineering Department,

Design for Optimizability A Case Study in Routing Mung Chiang Electrical Engineering Department,

Design for Optimizability A Case Study in Routing Mung Chiang Electrical Engineering Department, Princeton DIMACS Workshop November 12, 2009 Internet Routing and Traffic Engineering Joint work with Dahai Xu and Jennifer Rexford Most large IP

609 views • 24 slides
Outline 11: IP Multicast Multicast routing IP Multicast Design choices Distance

Outline 11: IP Multicast Multicast routing IP Multicast Design choices Distance

Outline 11: IP Multicast Multicast routing IP Multicast Design choices Distance Vector Multicast Routing Protocol (DVMRP) Last Modified: Core Based Trees (CBT) Protocol Independent Multicast (PIM) 4/9/2003 1:15:00 PM

619 views • 12 slides
IPv6 Enterprise Networks Scenarios Enterprise Design Team draft-pouffary-v6ops-ent-v6net-03.txt

IPv6 Enterprise Networks Scenarios Enterprise Design Team draft-pouffary-v6ops-ent-v6net-03.txt

IPv6 Enterprise Networks Scenarios Enterprise Design Team draft-pouffary-v6ops-ent-v6net-03.txt IETF 57 th - v6ops WG July 2003 Vienna, Austria Scope and goals Goal: Define

696 views • 12 slides
CS137: Today Electronic Design Automation Routing Pathfinder graph based Day 22:

CS137: Today Electronic Design Automation Routing Pathfinder graph based Day 22:

CS137: Today Electronic Design Automation Routing Pathfinder graph based Day 22: December 2, 2005 global routing simultaneous global/detail Routing 2 (Pathfinder) 1 2 CALTECH CS137 Fall2005 -- DeHon CALTECH CS137

232 views • 9 slides
Chapter 2: Configuring the Enhanced Interior Gateway Routing Protocol CCNP-RS ROUTE Ali

Chapter 2: Configuring the Enhanced Interior Gateway Routing Protocol CCNP-RS ROUTE Ali

Chapter 2: Configuring the Enhanced Interior Gateway Routing Protocol CCNP-RS ROUTE Ali Aydemir Chapter 2 Objectives Describe the basic operation of EIGRP. Plan and implement EIGRP routing. Configure and verify EIGRP routing.

2.02k views • 177 slides
CS641 Advanced Computer Networks Lecture 04 Bhaskaran Raman Department of CSE, IIT Bombay

CS641 Advanced Computer Networks Lecture 04 Bhaskaran Raman Department of CSE, IIT Bombay

CS641 Advanced Computer Networks Lecture 04 Bhaskaran Raman Department of CSE, IIT Bombay http://www.cse.iitb.ac.in/~br/ http://www.cse.iitb.ac.in/synerg/doku.php?id=public:courses:cs641-autumn10:start Outline for Today Recall: routing

337 views • 11 slides
Peering Planning Cooperation w ithout Revealing Confidential I nform ation Arman Maghbouleh am

Peering Planning Cooperation w ithout Revealing Confidential I nform ation Arman Maghbouleh am

Peering Planning Cooperation w ithout Revealing Confidential I nform ation Arman Maghbouleh am at cariden dot com Apricot 2006 Perth, Australia w w w .cariden.com (c) cariden technologies Failover Matrices Cariden 1 APRI COT 2006 The I

567 views • 21 slides
Advances in Grammar Mining and Testing Andreas Zeller CISPA / Saarland University

Advances in Grammar Mining and Testing Andreas Zeller CISPA / Saarland University

Advances in Grammar Mining and Testing Andreas Zeller CISPA / Saarland University https://github.com/vrthra/pygmalion @AndreasZeller Saarbrcken @AndreasZeller CISPA | Center for IT-Security, Privacy and Accountability Scienti

840 views • 62 slides
CCNP-RS ROUTE v2.0 Ali Aydemir CCNP-RS ROUTE Timetable Day AM Lunch PM 1 EIGRP -- IGP

CCNP-RS ROUTE v2.0 Ali Aydemir CCNP-RS ROUTE Timetable Day AM Lunch PM 1 EIGRP -- IGP

CCNP-RS ROUTE v2.0 Ali Aydemir CCNP-RS ROUTE Timetable Day AM Lunch PM 1 EIGRP -- IGP EIGRP Lab 2 OSPF -- IGP OSPF Lab 3 Redistribution & Path Control -- IGP Redistribution Lab 4 BGP -- BGP Lab 5 IPv6 Routing -- IGP

747 views • 40 slides
r2#debug eigrp packets EIGRP Packets debugging is on (UPDATE, REQUEST, QUERY, REPLY, HELLO,

r2#debug eigrp packets EIGRP Packets debugging is on (UPDATE, REQUEST, QUERY, REPLY, HELLO,

r2#debug eigrp packets EIGRP Packets debugging is on (UPDATE, REQUEST, QUERY, REPLY, HELLO, PROBE, ACK, STUB, SIAQUERY, SIAREPLY) *Apr 28 18:45:18.863 KRSK: EIGRP: Received HELLO on Serial0/0/0 nbr 10.16.0.1 *Apr 28 18:45:18.863 KRSK: AS 200,

531 views • 5 slides
Routing Introduction Direct vs. Indirect Delivery Static vs. Dynamic Routing Distance Vector vs.

Routing Introduction Direct vs. Indirect Delivery Static vs. Dynamic Routing Distance Vector vs.

Routing Introduction Direct vs. Indirect Delivery Static vs. Dynamic Routing Distance Vector vs. Link State (C) Herbert Haas 2005/03/11 IP Datagram Service IP Host IP Router Destination Next Hop A R1 B R4 C R3 R1 R2 R3 .....

529 views • 37 slides
IETF Routing Area Update A Report after IETF 96 (Berlin) Alvaro Retana (aretana@cisco.com)

IETF Routing Area Update A Report after IETF 96 (Berlin) Alvaro Retana (aretana@cisco.com)

IETF Routing Area Update A Report after IETF 96 (Berlin) Alvaro Retana (aretana@cisco.com) Distinguished Engineer, Cisco Services Routing Area Director, IETF No one is in charge, anyone can contribute and everyone can benefit. IETF

564 views • 31 slides

More recommend