in the ip of the beholder strategies for active ipv6
play

In the IP of the Beholder: Strategies for Active IPv6 Topology - PowerPoint PPT Presentation

Jun 24, 2023 •268 likes •746 views

In the IP of the Beholder: Strategies for Active IPv6 Topology Discovery Robert Beverly * , Ram Durairajan , David Plonka , Justin Rohrer * Naval Postgraduate School University of Oregon Akamai Technologies October 31, 2018

  1. In the IP of the Beholder: Strategies for Active IPv6 Topology Discovery Robert Beverly * , Ram Durairajan † , David Plonka ‡ , Justin Rohrer * ∗ Naval Postgraduate School † University of Oregon ‡ Akamai Technologies October 31, 2018 ACM Internet Measurement Conference 2018 (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 1 / 27

  2. Background Outline Background 1 What to Probe 2 How to Probe 3 Results 4 (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 2 / 27

  3. Background What We Did Performed large-scale topological survey of the Internet using IPv6 Evaluated ability of IPv6 hitlists to produce targets Utilized a new traceroute technique Analyzed results (1.4M discovered router addresses): IPv6 subnetting Privacy implications How to map the router-level IPv6 Internet? (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 3 / 27

  4. Background What We Did Performed large-scale topological survey of the Internet using IPv6 Evaluated ability of IPv6 hitlists to produce targets Utilized a new traceroute technique Analyzed results (1.4M discovered router addresses): IPv6 subnetting Privacy implications How to map the router-level IPv6 Internet? (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 3 / 27

  5. Background What We Did Performed large-scale topological survey of the Internet using IPv6 Evaluated ability of IPv6 hitlists to produce targets Utilized a new traceroute technique Analyzed results (1.4M discovered router addresses): IPv6 subnetting Privacy implications How to map the router-level IPv6 Internet? (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 3 / 27

  6. Background What’s New But wait, decades of experience with active topology mapping! IPv6-Specific Challenges: Massive address space that is sparsely populated 1 ! What to probe? Mandated ICMPv6 rate limiting 2 ! How to send probes? This work seeks to make progress against both challenges, and increase coverage/fidelity of IPv6 Internet router topologies. (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 4 / 27

  7. Background What’s New But wait, decades of experience with active topology mapping! IPv6-Specific Challenges: Massive address space that is sparsely populated 1 ! What to probe? Mandated ICMPv6 rate limiting 2 ! How to send probes? This work seeks to make progress against both challenges, and increase coverage/fidelity of IPv6 Internet router topologies. (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 4 / 27

  8. Background What’s New But wait, decades of experience with active topology mapping! IPv6-Specific Challenges: Massive address space that is sparsely populated 1 ! What to probe? Mandated ICMPv6 rate limiting 2 ! How to send probes? This work seeks to make progress against both challenges, and increase coverage/fidelity of IPv6 Internet router topologies. (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 4 / 27

  9. What to Probe Outline Background 1 What to Probe 2 How to Probe 3 Results 4 (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 5 / 27

  10. What to Probe Background State-of-the-art: CAIDA (Ark) and RIPE (Atlas) continually collect IPv6 topologies via active probing Technique and tools of these production systems mirror IPv4 For each IPv6 prefix in global BGP table, sequentially traceroute to: ::1 in prefix random address in prefix (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 6 / 27

  11. What to Probe Target Generation Question: Current production IPv6 active topology mapping systems probe an address in each globally advertised prefix. While this strategy provides breadth, does it miss subnetting and other topological structure? Hitlists: We compare this approach to using existing collections of known IPv6 hosts, or hitlists as targets (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 7 / 27

  12. What to Probe Target Generation Question: Current production IPv6 active topology mapping systems probe an address in each globally advertised prefix. While this strategy provides breadth, does it miss subnetting and other topological structure? Hitlists: We compare this approach to using existing collections of known IPv6 hosts, or hitlists as targets (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 7 / 27

  13. What to Probe Target Generation Using Hitlists Name Method Date Addrs CAIDA BGP-derived 2018/05/09 105.2k DNSDB Passive DNS 2018/02/15 – 04/28 5.4M Lots of recent Fiebig Reverse DNS 2018/03/27 11.7M work on FDNS Fwd. DNS 2018/04/27 24.8M developing / CDN Clients k IP anonymization 2018/02/18 – 03/03 N/A gathering IPv6 6gen Generative 2018/03/13 4.9M hitlists TUM* Collection varies 5.6M Random Random Routed 2018/05/23 26.5M Combined Join Sets varies 50.8M (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 8 / 27

  14. What to Probe Target Generation Using Hitlists Name Method Date Addrs CAIDA BGP-derived 2018/05/09 105.2k Many IPv6 Hitlists DNSDB Passive DNS 2018/02/15 – 04/28 5.4M “CAIDA” (BGP) is Fiebig Reverse DNS 2018/03/27 11.7M baseline for today’s FDNS Fwd. DNS 2018/04/27 24.8M systems CDN Clients k IP anonymization 2018/02/18 – 03/03 N/A “Random” is baseline 6gen Generative 2018/03/13 4.9M for unguided probing TUM* Collection varies 5.6M Wide variety of Random Random Routed 2018/05/23 26.5M methods Combined Join Sets varies 50.8M (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 8 / 27

  15. What to Probe Target Generation Using Hitlists Name Method Date Addrs Many IPv6 Hitlists CAIDA BGP-derived 2018/05/09 105.2k Composition varies DNSDB Passive DNS 2018/02/15 – 04/28 5.4M widely Fiebig Reverse DNS 2018/03/27 11.7M Primarily focused on FDNS Fwd. DNS 2018/04/27 24.8M end hosts CDN Clients k IP anonymization 2018/02/18 – 03/03 N/A 6gen Generative 2018/03/13 4.9M ! Targets in some TUM* Collection hitlists concentrated in varies 5.6M Random Random Routed small number of 2018/05/23 26.5M prefixes / ASes Combined Join Sets varies 50.8M (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 8 / 27

  16. What to Probe Target Generation Using Hitlists Name Method Date Addrs Many IPv6 Hitlists CAIDA BGP-derived 2018/05/09 105.2k Composition varies DNSDB Passive DNS 2018/02/15 – 04/28 5.4M widely Fiebig Reverse DNS 2018/03/27 11.7M Primarily focused on FDNS Fwd. DNS 2018/04/27 24.8M end hosts CDN Clients k IP anonymization 2018/02/18 – 03/03 N/A 6gen Generative ! Targets in some 2018/03/13 4.9M TUM* Collection hitlists concentrated in varies 5.6M Random Random Routed small number of 2018/05/23 26.5M prefixes / ASes Combined Join Sets varies 50.8M How can hitlists inform active IPv6 topology mapping? We develop a generalized method for generating targets from “seeds” (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 8 / 27

  17. What to Probe Target Generation Target Generation seed addresses 2607:5300::1029 2607:5300::109f 2607:5300::102a 2a07:18e8:4005:80b:e3ae::200e 2a07:18e8:4005:80b:87e8::400a Begin with seeds: hitlist addresses 1 (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 9 / 27

  18. What to Probe Target Generation Target Generation prefix transformation seed intermediate addresses prefixes 2607:5300::1029 2607:5300::/64 2607:5300::109f 2607:5300::102a z 64 2a07:18e8:4005:80b:e3ae::200e 2a07:18e8:4005:80b::/64 − − → 2a07:18e8:4005:80b:87e8::400a Begin with seeds: hitlist addresses 1 z n aggregation: Group addresses into prefixes of length n 2 (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 9 / 27

  19. What to Probe Target Generation Q: What aggregation granularity? Evaluate parameter impact: z n Packets Other ICMPv6 Router Packets (cost) Addrs Router addresses /40 1.4M 17.5k 27.0k discovered (benefit) /48 3.6M 105.8k 45.5k Collateral impact as /56 6.1M 194.8k 60.5k /64 11.8M 486.8k 85.5k non-TTL exceeded responses (cost) (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 10 / 27

  20. What to Probe Target Generation Q: What aggregation granularity? z n Packets Other ICMPv6 Router Evaluate parameter impact: Addrs /64 has highest cost, /40 1.4M 17.5k 27.0k but most benefit /48 3.6M 105.8k 45.5k /48 strikes a balance /56 6.1M 194.8k 60.5k We perform full probing /64 11.8M 486.8k 85.5k with both z64 and z48 (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 10 / 27

  21. What to Probe Target Generation Target Generation prefix transformation seed intermediate addresses prefixes 2607:5300::1029 2607:5300::/64 2607:5300::109f 2607:5300::102a z 64 2a07:18e8:4005:80b:e3ae::200e 2a07:18e8:4005:80b::/64 − − → 2a07:18e8:4005:80b:87e8::400a Begin with seeds: hitlist addresses 1 z n aggregation: Group addresses into prefixes of length n 2 (NPS/UOregon/Akamai) Active IPv6 Topology Discovery IMC 2018 11 / 27

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Successful Strategies for IPV6 Rollouts Submitted to - Yasir Baig - Prof. Dr.Eduard Heindl

Successful Strategies for IPV6 Rollouts Submitted to - Yasir Baig - Prof. Dr.Eduard Heindl

1 Successful Strategies for IPV6 Rollouts Submitted to - Yasir Baig - Prof. Dr.Eduard Heindl Agenda 2 Time Frame : 20 - 25 minutes. History Why a new IPV6 How IPV6 meets the new requirements on the Internet Security

179 views • 16 slides
Server Siblings: Identifying Shared IPv4/IPv6 Infrastructure via Active Fingerprinting Robert

Server Siblings: Identifying Shared IPv4/IPv6 Infrastructure via Active Fingerprinting Robert

Server Siblings: Identifying Shared IPv4/IPv6 Infrastructure via Active Fingerprinting Robert Beverly , Arthur Berger Naval Postgraduate School MIT/Akamai March 20, 2015 PAM 2015 - 16th Passive and Active Measurement Conference

583 views • 33 slides
IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer

IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer

Outline IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer Science and IPv6 Autoconfiguration Institute of Communications Engineering National Tsing Hua University jcchen@cs.nthu.edu.tw

783 views • 11 slides
Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6

Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6

Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6 Global allocations by RIR APNIC 337 21% RIPENCC 737 45% ARIN 438 LACNIC AFRINIC 27% 87 37 5% 2% Unit: IPv6 pref i x 3 IPv6

603 views • 24 slides
IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6 Ready Logo Goal 2001-Present: Conformance and Interoperability test program intended to increase user confidence and promote IPv6 deployment.

403 views • 11 slides
Value is in the eye of the beholder: how can HTA help achieve better prices? ISPOR, November 2018

Value is in the eye of the beholder: how can HTA help achieve better prices? ISPOR, November 2018

Value is in the eye of the beholder: how can HTA help achieve better prices? ISPOR, November 2018 Kalipso Chalkidou, MD, PhD Professor of Global Health Practice, Imperial College London Director, international Decision Support Initiative

423 views • 24 slides
READY: Completeness is in the Eye of the Beholder B. Chandramouli, J. Gehrke, J. Goldstein, M.

READY: Completeness is in the Eye of the Beholder B. Chandramouli, J. Gehrke, J. Goldstein, M.

READY: Completeness is in the Eye of the Beholder B. Chandramouli, J. Gehrke, J. Goldstein, M. Hofmann, D. Kossmann , J. Levandoski, R. Marroquin, W. Xin ETH Zurich, Facebook, Microsoft Observations Observation 1: We produce data in silos

546 views • 40 slides
IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already

IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already

IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already Here Monash IPv6 Progress Addressing End Systems Monitoring Network Address Usage Traffic Monitoring Problems IPv6 is Coming

779 views • 41 slides
Life with IPv6 Journe Cohabitation IPv4-IPv6 16 Fvrier 2005 Keiichi SHIMA

Life with IPv6 Journe Cohabitation IPv4-IPv6 16 Fvrier 2005 Keiichi SHIMA

Life with IPv6 Journe Cohabitation IPv4-IPv6 16 Fvrier 2005 Keiichi SHIMA <keiichi@iijlab.net> IIJ Research Laboratory / WIDE project Contents IPv6 service in Japan How I live Example of IPv6 configuration Some news of IPv6

653 views • 16 slides
Introduction to IPv6 (Chapter 4 in Huitema) IPv6,Mobility-1 S-38.121 / S-03 / N Beijar IPv6

Introduction to IPv6 (Chapter 4 in Huitema) IPv6,Mobility-1 S-38.121 / S-03 / N Beijar IPv6

Introduction to IPv6 (Chapter 4 in Huitema) IPv6,Mobility-1 S-38.121 / S-03 / N Beijar IPv6 addresses 128 bits long Written as eight 16-bit integers separated with colons E.g. 1080:0000:0000:0000:0000:0008:200C:417A =

617 views • 20 slides
IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6

IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6

IPv6 Deployment WG in IPv6 Promotion Council and its Deployment Guideline 2005.2.23 IPv6 Deployment WG Chair Takashi Arano (Intec NetCore, Inc.) IPv6 Deployment Guideline solves barriers for deployment I cant see IPv6s

319 views • 7 slides
STUDENT ENGAGEMENT AND ACTIVE LEARNING STRATEGIES Goal By the end of this session, you will

STUDENT ENGAGEMENT AND ACTIVE LEARNING STRATEGIES Goal By the end of this session, you will

STUDENT ENGAGEMENT AND ACTIVE LEARNING STRATEGIES Goal By the end of this session, you will have: Developed some ideas for active engagement in your classroom Planned the use of two collaboration tools in your classroom Active Learning

510 views • 15 slides
Recovery is in the eye of the beholder How visual fixation can predict TBI patients outcome

Recovery is in the eye of the beholder How visual fixation can predict TBI patients outcome

Recovery is in the eye of the beholder How visual fixation can predict TBI patients outcome Caroline Arbour, RN, PhD 12th annual conference, Brain Injury Canada September 30th, 2015 Annual incidence of TBI in Quebec About 400

454 views • 20 slides
The Eye of the Beholder QCon San Francisco 2011 Alex Papadimoulis @apapadimoulis Software

The Eye of the Beholder QCon San Francisco 2011 Alex Papadimoulis @apapadimoulis Software

Beauty is in The Eye of the Beholder QCon San Francisco 2011 Alex Papadimoulis @apapadimoulis Software Disaster Stories Interviews Gone Bad Bad Code Funny Error Messages And sometimes serious content! The day job

1.05k views • 67 slides
Languages are in the Eye of the Beholder Clemens Szyperski Development Manager in Data Platform

Languages are in the Eye of the Beholder Clemens Szyperski Development Manager in Data Platform

Languages are in the Eye of the Beholder Clemens Szyperski Development Manager in Data Platform Group Wirth 80 Symposium, ETH Zrich, February 2014 Driving your own car, anyone? Having a chauffeur was more than a luxury. It was a

667 views • 29 slides
Introduction to IPv6 (Chapter 4 in Huitema) S-38.121 / Fall-04 / N Beijar IPv6,Mobility-1 IPv6

Introduction to IPv6 (Chapter 4 in Huitema) S-38.121 / Fall-04 / N Beijar IPv6,Mobility-1 IPv6

Introduction to IPv6 (Chapter 4 in Huitema) S-38.121 / Fall-04 / N Beijar IPv6,Mobility-1 IPv6 addresses 128 bits long Written as eight 16-bit integers separated with colons E.g. 1080:0000:0000:0000:0000:0008:200C:417A =

556 views • 20 slides
Michael Auld PhUSE Brighton 2011 Syntax and Report

Michael Auld PhUSE Brighton 2011 Syntax and Report

Michael Auld PhUSE Brighton 2011 Syntax and Report output ODS Output tables Compare of Compare Using OUT= to derive flags PhUSE

706 views • 31 slides
Introducing the COLON Graham Stott Tip: Introducing the COLON Graham Stott Independent SAS

Introducing the COLON Graham Stott Tip: Introducing the COLON Graham Stott Independent SAS

Introducing the COLON Graham Stott Tip: Introducing the COLON Graham Stott Independent SAS Consultant 0432786140 | Graham@gstott.com Tip: Introducing the COLON SAS uses the colon : in many places Key ones are: When reading input files

324 views • 6 slides
The parametric g-formula in SAS JESSICA G. YOUNG CIMPOD 2017

The parametric g-formula in SAS JESSICA G. YOUNG CIMPOD 2017

The parametric g-formula in SAS JESSICA G. YOUNG CIMPOD 2017 CASE STUDY 1 Structure of the workshop Part I: Motivation Why we might use the parametric

880 views • 67 slides
PeeringDB Workshop Learning the Ropes arnold@peeringdb.com PeeringDB Agenda Please always

PeeringDB Workshop Learning the Ropes arnold@peeringdb.com PeeringDB Agenda Please always

PeeringDB Workshop Learning the Ropes arnold@peeringdb.com PeeringDB Agenda Please always use the tutorial DB at https://tutorial.peeringdb.com Registering Yourself Your organization Adding information About your

786 views • 36 slides
Consolidating and expanding on opportunities in the Perth Basin RIU Good Oil Conference Darren

Consolidating and expanding on opportunities in the Perth Basin RIU Good Oil Conference Darren

Consolidating and expanding on opportunities in the Perth Basin RIU Good Oil Conference Darren Bromley Executive Director/CFO/Company Secretary 13 September 2017 DISCLAIMER AND FORWARD LOOKING STATEMENTS This Presentation is provided on

340 views • 20 slides
The Pan-European IPv6 IX Backbone Towards deployment of IPv6 in Telcos / ISPs Jordi Palet

The Pan-European IPv6 IX Backbone Towards deployment of IPv6 in Telcos / ISPs Jordi Palet

The Pan-European IPv6 IX Backbone Towards deployment of IPv6 in Telcos / ISPs Jordi Palet (jordi.palet@consulintel.es) CEO/CTO - Consulintel Moscow, Nov. 2004 - 1 Euro6IX: The Concept How to pronounce it: forget IX and read 6 (SIX)

533 views • 40 slides
Terrain Trafficability in Modeling and Simulation Dr. Paul A. Birkel The MITRE Corporation 7515

Terrain Trafficability in Modeling and Simulation Dr. Paul A. Birkel The MITRE Corporation 7515

TECHNICAL PAPER SEDRIS - 2003 - 1 Terrain Trafficability in Modeling and Simulation Dr. Paul A. Birkel The MITRE Corporation 7515 Colshire Drive (M/S H505) McLean, VA, 22102-7508 pbirkel@mitre.org Keywords: CCTT, Mobility, M&S, ModSAF,

843 views • 40 slides
Peddle the Pedal to the Metal Howard Chu CTO, Symas Corp. hyc@symas.com Chief Architect,

Peddle the Pedal to the Metal Howard Chu CTO, Symas Corp. hyc@symas.com Chief Architect,

Peddle the Pedal to the Metal Howard Chu CTO, Symas Corp. hyc@symas.com Chief Architect, OpenLDAP hyc@openldap.org 2019-03-05 Overview Context, philosophy, impact Profiling tools Obvious problems and effective solutions More

770 views • 47 slides

More recommend