improve network performance
play

Improve Network Performance Yotam Harchol Research (This work was - PowerPoint PPT Presentation

Nov 01, 2022 •777 likes •1.14k views

Reusing Network Services Logic to Improve Network Performance Yotam Harchol Research (This work was done while at the Hebrew University) Joint work with Anat Bremler-Barr and David Hay Appeared in ACM SIGCOMM 2016 THE HEBREW This research

  1. Reusing Network Services Logic to Improve Network Performance Yotam Harchol Research (This work was done while at the Hebrew University) Joint work with Anat Bremler-Barr and David Hay Appeared in ACM SIGCOMM 2016 THE HEBREW This research was supported by the European Research Council ERC Grant agreement no 259085, the Israeli Centers of Research UNIVERSITY OF JERUSALEM Excellence (I-CORE) program (Center No. 4/11), and the Neptune Consortium.

  2. Network Functions (Middleboxes) • Monolithic closed black-boxes ✘ High cost ✘ Limited provisioning and scalability Firewall Load Balancer Intrusion Prevention Network Function Virtualization (NFV): ✔ Reduce cost (by moving to software) System ✔ Improve provisioning and scalability At the cost of: ✘ Reduced performance (by virtualizing software NFs) (mainly latency ) 2

  3. Network Functions (Middleboxes) ✘ High cost ✘ Limited provisioning and scalability ✘ Limited and separate management • Different vendors • No standards • Separate control plane 3

  4. Network Functions (Middleboxes) • Actually, many of these black-boxes are very modular Network Function ✘ High cost ✘ Limited provisioning and scalability ✘ Limited and separate management ✘ Limited functionality and limited innovation (High entry barriers) ✘ Similar complex processing steps, no re-use 4

  5. www.openboxproject.org OpenBox github.com/OpenBoxProject • OpenBox: A new software-defined framework for network functions • Decouples network function control from their data plane • Unifies data plane of multiple network functions Benefits:  Easier, unified control OpenBox Controller  Better performance (improved latency) OBI  Scalability  Flexible deployment  Inter-tenant isolation OBI  Innovation OBI

  6. Software Defined Networking • High cost of middleboxes switches • Limited provisioning and scalability of middleboxes switches • Limited management of middleboxes switches • Limited functionality and limited innovation • Complex processing steps distributed algorithms OpenBox OpenFlow Controller Controller OBI 40%-60% of the appliances in large-scale networks are middleboxes! OBI [Sherry & Ratnasamy , ‘ 12] OBI 6

  7. The OpenBox Framework Network Functions: OpenBox Applications Northbound API Logically-Centralized OpenBox Controller Control Plane OpenBox Protocol Data Plane OpenBox Service Instances Additionally:  Isolation between NFs / multiple tenants  Support for hardware accelerators  Dynamically extend the protocol 7

  8. Observation: Most network functions do very similar processing steps But there is no re- use… The design the OpenBox framework is based on this observation 8

  9. Network Function Decomposition Firewall: Drop Read Header Output Packets Classifier Alert Load Balancer: Read Header Output Packets Classifier Rewrite Header Intrusion Prevention System: DPI DPI Drop Read Header DPI Alert Output Packets Classifier 9

  10. Northbound API Intrusion Prevention System Firewall Load Balancer DPI DPI Drop Drop Read Header Read Header Read Header Output DPI Alert Output Output Packets Classifier Packets Classifier Packets Classifier Rewrite Alert Header OpenBox Applications Specify processing graph NB API Events, and block configuration Load information OpenBox Controller Control Plane OpenBox Protocol Data Plane 10 OpenBox Service Instances

  11. Logically-Centralized Controller Multiple tenants run multiple applications for multiple policies in the same network OpenBox Isolation between Applications applications and tenants NB API enforced by NB API SDN OpenBox Network-wide view Controller Controller Automatic scaling, provisioning, placement, and steering Control Plane SDN OpenBox Protocol Protocol Data Plane 11 OpenBox Service Instances SDN Switches

  12. Naïve Graph Merge Firewall: Drop Read Header Output Packets Classifier Alert Concatenated Processing Graph: Drop DPI Alert DPI Drop (Firewall) 10 μs Read Header Header Alert DPI Output Packets Classifier Classifier (IPS) Intrusion Prevention System: 10μs 30 μs 2 μs 2 μs 30 μs 5 0μs DPI Performance ≈ Diameter of Graph (# of classifiers) DPI Drop Total: 134 μs Read Header DPI Alert Output Packets Classifier 12

  13. Graph Merge Algorithm ? Input Graphs: Firewall: Drop Read Header Output Packets Classifier Alert Intrusion Prevention System: DPI DPI Drop Read Header DPI Alert Output Packets Classifier 13

  14. Graph Merge Algorithm Step 1: Normalize graphs to trees Firewall: Drop Read Header Output Packets Classifier Alert Output Output Drop Intrusion Prevention System: Alert Output DPI Drop Output DPI Alert Output Read Header DPI Packets Classifier Output Drop Output 14 Alert Output

  15. Graph Merge Algorithm Output Drop Alert Output (IPS) DPI Step 2: Concatenate graphs Drop Output DPI Alert Output (IPS) Header Drop DPI Classifier Drop Output Output Alert Output (IPS) Read Header Output Packets Classifier Drop Alert Alert Output (Firewall) (IPS) DPI Drop Output DPI Alert Output (IPS) Header DPI Classifier Output Drop Output Alert 15 Output (IPS)

  16. Graph Merge Algorithm Output Drop Alert Output (IPS) DPI Step 3: Merge classifiers Drop Output DPI Alert Output (IPS) Header Drop DPI Classifier Drop Output Output Alert Output (IPS) Read Header Output Packets Classifier Drop Alert Alert Output (Firewall) (IPS) DPI Drop Output DPI Alert Output (IPS) Header DPI Classifier Output Drop Output Alert 16 Output (IPS)

  17. Graph Merge Algorithm Output Drop Alert Output (IPS) DPI Step 3: Merge classifiers Drop Output DPI Alert Output (IPS) Drop DPI Drop Output Output Alert Output (IPS) Read Header Output Packets Classifier Drop Alert Alert Output (Firewall) (IPS) DPI Drop Output DPI Alert Output (IPS) Header Can we change block order? DPI Classifier Output Drop Output Alert 17 Output (IPS)

  18. Graph Merge Algorithm Output Drop Alert Output (IPS) DPI Step 3: Merge classifiers Drop Output DPI Alert Output (IPS) Drop DPI Drop Output Output Alert Output (IPS) Read Header Output Packets Classifier Drop Alert Output Alert (IPS) DPI (Firewall) Drop Output Alert DPI (Firewall) Alert Output (IPS) Alert DPI (Firewall) Output Drop Alert Output Alert 18 (Firewall) Output (IPS)

  19. Graph Merge Algorithm Output Drop Alert Output (IPS) DPI Step 4: Remove redundant block copies Drop Output (and rewire connectors accordingly) DPI Alert Output (IPS) Drop DPI Drop Output DPI Alert Output (IPS) Read Header Output Packets Classifier Drop Alert Output Alert (IPS) DPI (Firewall) Drop Output Alert DPI (Firewall) Alert Output (IPS) Alert DPI (Firewall) Output Drop Alert Output Alert 19 (Firewall) Output (IPS)

  20. Graph Merge Algorithm Merged Processing Graph: Alert DPI (Firewall) Alert DPI (Firewall) Read Header Alert Alert DPI Output Packets Classifier (Firewall) (IPS) 30 μs 2 μs 2 μs 50 μs 10 μs Alert (Firewall) 10 μs Drop Shorter Diameter (less classifiers) Total: 104 μs (22% improvement) 20

  21. When NOT to Merge? ? When cross product is too large: • Two d-dimensional classifiers: A – n rules, B – m rules • Classification is logarithmic with # of rules, exponential with dimension • Serial classification time: (log 𝑜) 𝑒−1 + (log 𝑛) 𝑒−1 • Cross product: 𝑜 ∙ 𝑛 rules (worst case) • Single classifier worst case time: 𝑒−2 𝑒 − 1 log(𝑜 ∙ 𝑛) 𝑒−1 = (log 𝑜) 𝑒−1 +(log 𝑛) 𝑒−1 + (log 𝑜) 𝑗 + (log 𝑛) 𝑒−𝑗−1 𝑗 𝑗=1 > (log 𝑜) 𝑒−1 + (log 𝑛) 𝑒−1 When most packets won’t go through both classifiers: ? Output Classifier A Classifier Drop B 21

  22. OpenBox Data Plane Processing Read Store HTML Packets Normalizer Packet Alert Restore JavaScript Output Normalizer Packet Log Header Caching Classifier XML Drop Reporting Normalizer DPI Terminals Normalization Classification Front Drop FIFO Queue Queue Leaky Gzip RED Queue Bucket Decompress Queue Management Gzip Begin Compress Transaction VLAN Push De/compression Rewrite Commit Rollback Header Transaction Transaction VLAN Pop Transactions Header Modification 22

  23. OpenBox Data Plane Processing Read Store HTML Packets Packet Normalizer Alert Restore JavaScript Output Packet Normalizer Log Header Classifier Caching XML Drop Reporting Normalizer DPI Terminals Normalization Classification Front Drop FIFO Queue Queue OpenBox Service Instance Leaky Gzip RED Queue Bucket Virtual or Physical Decompress Queue Management Gzip Begin Compress Transaction • Provides data plane services to realize the logic of network functions VLAN Push De/compression Rewrite Commit Rollback • Header Controlled by the logically-centralized OpenBox controller Transaction Transaction VLAN Pop Transactions Header Modification 23

  24. Distributed Data Plane Alert DPI Rewrite Header Classifier Header Metadata OpenBox Service Instance OpenBox Service Instance Hardware Software (TCAM) E.g., an OpenFlow switch with encapsulation features (e.g., NSH, Geneve, FlowTags)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Champions in Microinsurance: How to improve performance? Colombo - November 17, 11 a.m.

Champions in Microinsurance: How to improve performance? Colombo - November 17, 11 a.m.

Champions in Microinsurance: How to improve performance? Colombo - November 17, 11 a.m. www.microinsurancenetwork.org MICROINSURANCE NETWORK The global platform for insurance in emerging markets 300 EXPERTS > 90 INSTITUTIONS > 40

649 views • 20 slides
Using sensory feedback to improve locomotion performance of the salamander robot in different

Using sensory feedback to improve locomotion performance of the salamander robot in different

Using sensory feedback to improve locomotion performance of the salamander robot in different environments Joo Loureno Silvrio Assistant : Jrmie Knsel Structure of the presentation: Overview I. CPG network and oscillator model

1.4k views • 35 slides
Tuning the Performance of Convolutional Neural Network for Image Classification on GPU Agenda

Tuning the Performance of Convolutional Neural Network for Image Classification on GPU Agenda

Tuning the Performance of Convolutional Neural Network for Image Classification on GPU Agenda Adoptions of Image classification or image recognition at Alibaba Easy ways to improve performance of Caffe Further performance

182 views • 15 slides
Evaluation of Amplification attacks in large-scale networks to improve detection performance

Evaluation of Amplification attacks in large-scale networks to improve detection performance

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Evaluation of Amplification attacks in large-scale networks to improve detection performance Michael Kpferl Interdisciplinary Project Final

517 views • 49 slides
NetStore Leveraging Network Optimizations to Improve Distributed Transaction Processing

NetStore Leveraging Network Optimizations to Improve Distributed Transaction Processing

NetStore Leveraging Network Optimizations to Improve Distributed Transaction Processing Performance Xu Cui , Michael Mior, Bernard Wong, Khuzaima Daudjee, Sajjad Rizvi ACTIVE Workshop @ Middleware 2017 Las Vegas, NV, USA December 12, 2017

623 views • 38 slides
Win-Win-Win How Fujifilm uses RxMS to improve machine performance, lower costs, and improve

Win-Win-Win How Fujifilm uses RxMS to improve machine performance, lower costs, and improve

Win-Win-Win How Fujifilm uses RxMS to improve machine performance, lower costs, and improve customer satisfaction Neil Johnson VP Fujifilm Technical Solutions & Support Value Added Vendor Partnership Fujifilm Graphic Systems Market

753 views • 44 slides
Practical Nutrition To Improve Performance Jasmine Campbell Performance Nutritionist Train

Practical Nutrition To Improve Performance Jasmine Campbell Performance Nutritionist Train

Practical Nutrition To Improve Performance Jasmine Campbell Performance Nutritionist Train Hard Swim Easy? Foundation Performance Immunology Menstrual Gastrointestinal Function What Bone Cardiovascular happens if Health RED-S

202 views • 17 slides
Learning in the Workplace: Using Performance Diagnostics to Improve Staff Performance Presented

Learning in the Workplace: Using Performance Diagnostics to Improve Staff Performance Presented

Learning in the Workplace: Using Performance Diagnostics to Improve Staff Performance Presented by: Elizabeth L. Sellinger PhD, BCBA-D Katie Cyr, BCBA, Tam Shook, BCBA, Victoria Gomez March 1, 2018 INSTITUTE OF PROFESSIONAL PRACTICE, INC

1.24k views • 105 slides
Using CTA to improve operator control room performance NERC Human Performance Seminar March

Using CTA to improve operator control room performance NERC Human Performance Seminar March

Using CTA to improve operator control room performance NERC Human Performance Seminar March 26,27,28, 2013 Rusty Rae, Alstom ATI; Dick Clark, USC; Bror Saxberg, Kaplan Todays program Introductions Filling the gap The case

567 views • 27 slides
Scikit-learn 1 / 13 Machine Learning Learning: using experience to improve performance.

Scikit-learn 1 / 13 Machine Learning Learning: using experience to improve performance.

Scikit-learn 1 / 13 Machine Learning Learning: using experience to improve performance. Machine learning: a class of algorithms that uses data (experience) to improve performance on a task Kinds of Tasks Classification: identify the

565 views • 13 slides
Generator Availability: Incentives to Improve Performance Presentation to MAC 20 March 2013

Generator Availability: Incentives to Improve Performance Presentation to MAC 20 March 2013

Generator Availability: Incentives to Improve Performance Presentation to MAC 20 March 2013 Anne Hill Western Australian Generation Performance WA generation fleet performance has deteriorated since the start of the market with its average WA

586 views • 30 slides
Browser Enhancements to Help Improve Page Load Performance Using Delta Delivery W3C Performance

Browser Enhancements to Help Improve Page Load Performance Using Delta Delivery W3C Performance

Browser Enhancements to Help Improve Page Load Performance Using Delta Delivery W3C Performance Working Group November 8th, 2012 Robert Hundt (rhundt@google.com) Mark Heffernan (meheff@google.com) Ian Flanigan (flan@google.com) Google

326 views • 32 slides
Muscle Imbalances and the Performance Client Assessments and Exercise Progressions to Improve

Muscle Imbalances and the Performance Client Assessments and Exercise Progressions to Improve

Muscle Imbalances and the Performance Client Assessments and Exercise Progressions to Improve Performance and Prevent Injury Nick Rosencutter, CSCS, NSCA-CPT, LMT www.rosencutterultrafitness.com About Me Strength Coach and Manual Therapist

494 views • 26 slides
SJSU PV Performance Assessment Guideline Project Purpose: Improve

SJSU PV Performance Assessment Guideline Project Purpose: Improve

SJSU PV Performance Assessment Guideline Project Purpose: Improve performance of existing PV systems. Recommend performance assessment metrics and calculation methods appropriate for the purpose

670 views • 27 slides
Improving Performance We want to improve the performance of our computation Unit 17

Improving Performance We want to improve the performance of our computation Unit 17

17.1 17.2 Improving Performance We want to improve the performance of our computation Unit 17 Question: What are we referring to when we say "performance"? __________________ Improving Performance __________________

337 views • 5 slides
Using query transformation to improve Gnutella search performance Surendar Chandra

Using query transformation to improve Gnutella search performance Surendar Chandra

Using query transformation to improve Gnutella search performance Surendar Chandra (surendar@acm.org) William Acosta (william.acosta@utoledo.edu) attempt at matching shared filenames and queries to improve search performance Role of Gnutella

496 views • 14 slides
Speedtrap: Internet-Scale IPv6 Alias Resolution Matthew Luckie (CAIDA / UC San Diego) Robert

Speedtrap: Internet-Scale IPv6 Alias Resolution Matthew Luckie (CAIDA / UC San Diego) Robert

Speedtrap: Internet-Scale IPv6 Alias Resolution Matthew Luckie (CAIDA / UC San Diego) Robert Beverly (NPS) Billy Brinkmeyer (NPS) kc claffy (CAIDA / UC San Diego) Overview Alias resolution (IPv4 and IPv6) Speedtrap: IPv6

557 views • 22 slides
Embark: Securely Outsourcing Middleboxes to the Cloud Chang Lan, Justine Sherry, Raluca Ada

Embark: Securely Outsourcing Middleboxes to the Cloud Chang Lan, Justine Sherry, Raluca Ada

Embark: Securely Outsourcing Middleboxes to the Cloud Chang Lan, Justine Sherry, Raluca Ada Popa, Sylvia Ratnasamy, Zhi Liu UC Berkeley Tsinghua University 1 Background Middleboxes are prevalent and problematic Number of Middleboxes

1.31k views • 44 slides
Multifamily FS S Webinar S eries Webinar #2 Promising Practices for Running an FS S Program

Multifamily FS S Webinar S eries Webinar #2 Promising Practices for Running an FS S Program

Multifamily FS S Webinar S eries Webinar #2 Promising Practices for Running an FS S Program Danielle Garcia, HUD Ann Lentell, Compass Working Capital Jeffrey Lubell, Abt Associates Sherry Riva, Compass Working Capital October 19, 2016

789 views • 30 slides
Fostering Community Engagement: The Boise Experience Supported by the Office of Refugee

Fostering Community Engagement: The Boise Experience Supported by the Office of Refugee

Fostering Community Engagement: The Boise Experience Supported by the Office of Refugee Resettlement (ORR/ACF/DHHS) May 16, 2013 Lear ning Objectives Understand some tangible benefits of broad-based community collaboration Learn

420 views • 39 slides
Program Evaluation Sherry Williams & Cathy Rimm Quality Assurance & Research Department

Program Evaluation Sherry Williams & Cathy Rimm Quality Assurance & Research Department

Program Evaluation Sherry Williams & Cathy Rimm Quality Assurance & Research Department Motorcycle Safety Foundation 1 At some point in every program, someone asks: Hows It Going? Does Training Work? 2 Overview What is

680 views • 26 slides
College and Community Collaborations: An Integrated 1st Year Experience Drew Pearl, Nathan

College and Community Collaborations: An Integrated 1st Year Experience Drew Pearl, Nathan

College and Community Collaborations: An Integrated 1st Year Experience Drew Pearl, Nathan Price, Lisa Terrene, and Miguel Vila University of North Georgia Sherry Morris Fannin County Family Connection Warm-Up Your charge: Build a

437 views • 40 slides
Making the Most of a GTM Agenda Day 1 Day 2 Muting & unmuting Project Overview

Making the Most of a GTM Agenda Day 1 Day 2 Muting & unmuting Project Overview

1/5/2016 Next t Ste teps NH H Pre/Post t Training As Assessment Sustainability Training Series 2016 Similar to the need for teachers to gain data on student understanding, we need to determine what impact our training has on your

504 views • 8 slides
in Health Care Delivery Sherry Glied May 13, 2015 Integration vs. Competition Balancing

in Health Care Delivery Sherry Glied May 13, 2015 Integration vs. Competition Balancing

Policies to Address the Impact of Consolidation in Health Care Delivery Sherry Glied May 13, 2015 Integration vs. Competition Balancing Offsetting Considerations Pro-consolidation Private Medicare Integrated delivery benefits ?

136 views • 9 slides

More recommend