isolario the real time internet routing observatory
play

Isolario: the real-time Internet routing observatory Alessandro - PowerPoint PPT Presentation

Jan 05, 2024 •155 likes •571 views

Isolario: the real-time Internet routing observatory Alessandro Improta Luca Sani alessandro.improta@iit.cnr.it luca.sani@iit.cnr.it 1/40 What we aim to do Research field Internet inter-domain measurement and analysis Why? - 1969 -

  1. Isolario: the real-time Internet routing observatory Alessandro Improta Luca Sani alessandro.improta@iit.cnr.it luca.sani@iit.cnr.it 1/40

  2. What we aim to do Research field Internet inter-domain measurement and analysis Why? - 1969 - ARPANET - 1985 - NSFNET - 1995 - Commercial Internet Since then, its real structure became hidden, as well as its potential structural weaknesses 2/40

  3. Why is it important to reveal the Internet structure? To understand how packets are routed in the Internet Identify routes involving non-national ISPs Identify the importance of each AS in the ecosystem Understand the effects of catastrophic events (or malicious attacks) To create economy-based models of the global Internet growth Study the effectiveness of p2p connections Build more realistic topology generators to simulate the Internet To properly select peers and diversify upstream providers based on their connectivity Increase network robustness Select data centers for server replicas ... 3/40

  4. Why is it important to reveal the Internet structure? ... plan an optimal inter-domain network configuration to maintain an acceptable level of service in case of malicious or unintentional faults 4/40

  5. The AS-level abstraction Example of ASes Interconnected ASes AS 137 GARR AS 2598 Isolario AS 15169 Google AS 16667 MGM Resorts Intl AS 21115 Nestl´ e Italia AS 38474 AU Government (Antarctic Division) Why the AS-level? The AS-level Internet ecosystem is a gold mine of problems whose solutions can provide a deep understanding of critical issues (e.g., resilience, behavior under real-world threats, future evolution) [1] [1] M. Roughan et al., 10 Lessons from 10 Years of Measuring and Modeling the Internet’s Autonomous Systems , JSAC 2012 5/40

  6. Classic BGP route collector concept A Route Collector (RC) is a device which collects BGP routing data from co-operating ASes RCs only collect routing information and not user traffic 6/40

  7. BGP route collector projects University of Oregon Route Views Project Route Views was originally conceived as a tool for Internet operators to obtain real-time information about the global routing system from the perspectives of several different backbones and locations around the Internet. It collects BGP packets since 1997, in MRT format since 1997 http://www.routeviews.org RIPE NCC Routing Information Service (RIS) The RIPE NCC collects and stores Internet routing data from several locations around the globe, using RIS. It collects BGP packets in MRT format since 1999 https://www.ripe.net/analyse/internet-measurements/routing-information-service-ris Packet Clearing House (PCH) PCH is the international organization responsible for providing operational support and security to critical Internet infrastructure, including Internet exchange points and the core of the domain name system. It operates route collectors at more than 100 IXPs around the world and its data is made available in MRT format since 2011 https://www.pch.net/resources/Raw Routing Data 7/40

  8. BGP Route Collector Status (Oct 2016) Total N. of RC 19 17 123 159 N. of v4 feeders 281 358 1887 2526 N. of v6 feeders 197 228 1148 1573 8/40

  9. Feeder Contribution (v4) 1 0.8 0.6 P(X>x) 0.4 RouteViews 0.2 RIS PCH 0 10 0 10 1 10 2 10 3 10 4 10 5 10 6 10 7 10 8 10 9 10 10 x = Number of IP addresses Only 343 IPv4 feeders announce to the RCs their full routing table 9/40

  10. Feeder Contribution (v6) 1 0.8 0.6 P(X>x) 0.4 RouteViews 0.2 RIS PCH 0 10 0 10 5 10 10 10 15 10 20 10 25 10 30 10 35 x = Number of IP addresses Only 267 IPv6 feeders announce to the RCs their full routing table 10/40

  11. Full feeder geographical distribution Data collected represent mostly the Internet as viewed from Europe and North America than the real Internet 11/40

  12. Feeder characterization About 80% of full feeders have a degree higher than 100 12/40

  13. Conclusions on data analysis Conclusions Several p2p-connectivity is hidden from RC sight Several Internet regions are basically uncovered The typical profile of an ideal feeder is a multi-homed stub AS Questions Why there is a scarcity of participation to classical route collector projects? How to attract new participants? Is it just a case poor “marketing”? 13/40

  14. Isolario project Objective: push more ASes to join The more the ASes, the more the completeness of public BGP data Isolario - The Book of Islands ”where we discuss about all islands of the world, with their ancient and modern names, histories, tales and way of living...” Benedetto Bordone (Italian cartographer) Approach: Do-ut-des Participants open a BGP session with Isolario providing the BGP full routing table and its evolution over time In change, Isolario offers real-time and historic analysis applications based on the aggregation of every routing information collected 14/40

  15. Data we plan to provide to research community MRT data (same format as RIPE RIS, Route Views, · · · ) 1 RIB feeder snapshots every 2 hours 2 UPDATE collections every 5 minutes https://isolario.it/Isolario_MRT_data/ Periodic analyses (daily, weekly, monthly, · · · ) 1 AS-level Topologies (Global and Geographic) 2 AS characteristics 3 Feeder contribution 4 Total coverage of RCs 15/40

  16. Enhanced BGP Route Collector Incoming flows are duplicated as soon as they arrive and feed both the Interactive Collecting Engine (ICE) and service modules As usual, RCs only collect routing information and not user traffic 16/40

  17. Isolario system overview Incoming BGP flows are used as real-time streams for services dedicated to participants Results are provided to users via WebSockets 17/40

  18. Isolario free services for feeders Every feeder has free access to a set of services tailored to monitor and analyse BGP data coming into Isolario system Historic services Real-time services Routing table viewer BGP flow viewer Subnet reachability Routing table viewer Diagnostic services Website reachability Alerting system Subnet reachability Daily report 18/40

  19. Real-time services Real-time services allow to monitor BGP data flowing into Isolario system 19/40

  20. Routing table viewer Allows to analyse in real-time the routes that a feeder is currently announcing to Isolario to reach a portion of the IP space 20/40

  21. BGP flow view Allows to monitor the flow of BGP UPDATE packets arriving to Isolario Reports in real-time flapping events occuring on any subnet advertised into the flow 21/40

  22. Subnet reachability Allows to analyse in real-time the routes that every Isolario feeder is announcing to Isolario to reach a portion of the IP space The more the feeders, the more SR is useful! 22/40

  23. Isolario real-time visualisation with BGPlay BGPlay is an open-source tool for the visualisation of BGP routing Thanks to the close collaboration with Massimo Candela (RIPE NCC) we integrated in Isolario the BGPlay real-time version ( http://bgplay.massimocandela.com ) BGPlay is currently integrated in SR 23/40

  24. BGPlay real-time http://bgplay.massimocandela.com 24/40

  25. Diagnostic services Diagnostic services exploit incoming BGP flows and/or historic data to report anomalies of the inter-domain routing status 25/40

  26. Alerting system Alerting system BGP attributes: BGP UPDATEs matching attributes of interest Flap events: a prefix UPDATE rate is larger than a threshold Hijack attempts: BGP UPDATEs hijacking a feeder subnet Prefix reachability: (un)reachability of prefixes of interest 26/40

  27. Daily report Summary about the feeder inter-domain routing status as perceived by the Isolario system For example... Routing statistics #Announce, #Withdrawn Most (un)stable prefixes Reachability statistics Inbound reachability BGP attributes statistics AS path anomalies 27/40

  28. Daily report: Summary of statistics 28/40

  29. Historic services Historic services exploit every BGP data available (Route Views, RIPE NCC RIS, Isolario) to show how routes evolved in the past 29/40

  30. Historic services Applications Routing table viewer: Allows to analyse portion(s) of the routing table that each feeder announced to Isolario Subnet reachability: Allows to analyse the reachability of the IP space portions from every feeder available in the past 30/40

  31. Summary: how to use Isolario? Real-time services Historic services Something is happening Something happened How is my RIB(s) evolving? How was my RIB(s) evolving? How is my reachability affected? How was my reachability affected? Alerting System Something is happening NOW! Check real-time services! Do something! (if needed) Daily report Did something happen yesterday? Check historic services! Do something! (if needed) 31/40

  32. Summary: how to use Isolario? Real-time services Historic services Something is happening Something happened How is my RIB(s) evolving? How was my RIB(s) evolving? How is my reachability affected? How was my reachability affected? Alerting System Please, try Isolario real-time services! Something is happening NOW! Check real-time services! https://www.isolario.it Username: guest Do something! (if needed) Password: guest Daily report Did something happen yesterday? Check historic services! Do something! (if needed) 32/40

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our research focus: the Internet AS-level ecosystem Why is it important? To identify Internet topological properties and drawbacks To build realistic

452 views • 23 slides
the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Our research interest: the Internet AS-level ecosystem Why is it important? To identify Internet topological properties and drawbacks To build

371 views • 22 slides
the real-time Internet routing observatory Pietro G. Giardina Enrico Gregori Alessandro

the real-time Internet routing observatory Pietro G. Giardina Enrico Gregori Alessandro

the real-time Internet routing observatory Pietro G. Giardina Enrico Gregori Alessandro Improta Luciano Lenzini Alessandro Pischedda Lorenzo Rossi Luca Sani Internet Everyone knows the role of the Internet in our society, but

402 views • 22 slides
the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it

the real-time Internet routing observatory Alessandro Improta alessandro.improta@iit.cnr.it Unveiling the Internet structure with BGP data BGP route collectors BGP data collected up to date has been unvaluable to reveal the Internet

230 views • 22 slides
the real-time Internet routing observatory Luca Sani 1 / 24 Our research topic: discovering the

the real-time Internet routing observatory Luca Sani 1 / 24 Our research topic: discovering the

the real-time Internet routing observatory Luca Sani 1 / 24 Our research topic: discovering the Internet structure Everyone knows the role of the Internet in our society, but since its commercialization in 1995, no one knows its complete

424 views • 29 slides
the real-time Internet routing observatory Luca Sani luca.sani@iit.cnr.it RIPE NCC SEE 6, Budva,

the real-time Internet routing observatory Luca Sani luca.sani@iit.cnr.it RIPE NCC SEE 6, Budva,

the real-time Internet routing observatory Luca Sani luca.sani@iit.cnr.it RIPE NCC SEE 6, Budva, 12-13 June 2017 Our research interest: the Internet AS-level ecosystem Why is it important? To identify Internet topological properties and

695 views • 20 slides
Internet routing is based on routing protocols that collect the input data No off-line route

Internet routing is based on routing protocols that collect the input data No off-line route

Introduction to Routing in Internet Internet basics IPv4 and ICMP Internet Addressing ARP - Address Resolution Protocol Routing Information (Distance Vector ) Protocol Principles 3-1 S-38.121 S-02 Rka, NB Internet routing is based on

214 views • 18 slides
Submarine Cabled Real-time Seafloor Observatory and Subsea Engineering ROV for Observatory

Submarine Cabled Real-time Seafloor Observatory and Subsea Engineering ROV for Observatory

conference & convention enabling the next generation of networks & services Submarine Cabled Real-time Seafloor Observatory and Subsea Engineering ROV for Observatory Construction Katsuyoshi KAWAGUCHI Japan Agency for Marine-Earth

611 views • 26 slides
Introduction To Graphs and Networks Fall 2013 Carola Wenk Real-World Routing On the Internet,

Introduction To Graphs and Networks Fall 2013 Carola Wenk Real-World Routing On the Internet,

Introduction To Graphs and Networks Fall 2013 Carola Wenk Real-World Routing On the Internet, links are essentially weighted by factors such as transit time, or cost. The goal is to find the shortest path from one node to another.

812 views • 35 slides
Introduction to routing in the Internet Ethernet, switching vs. routing Internet architecture

Introduction to routing in the Internet Ethernet, switching vs. routing Internet architecture

Introduction to routing in the Internet Ethernet, switching vs. routing Internet architecture Addressing, routing principles Protocols: IPv4, ICMP, ARP (Chapters 23 in Huitema) Internet-1 S-38.2121 / Fall-07 / RKa, NB Ethernet Most

635 views • 26 slides
CS 557 Routing Measurements End to End Routing Behavior in the Internet Vern Paxson, 1996

CS 557 Routing Measurements End to End Routing Behavior in the Internet Vern Paxson, 1996

CS 557 Routing Measurements End to End Routing Behavior in the Internet Vern Paxson, 1996 Internet Routing Instability Labovitz, Malan, Jahanian, 1997 Spring 2013 End to End Routing Behavior Objective: Understand the actual behavior of

595 views • 22 slides
Internet Protocol: Routing Algorithms Internet Protocol: Routing Algorithms Srinidhi Varadarajan

Internet Protocol: Routing Algorithms Internet Protocol: Routing Algorithms Srinidhi Varadarajan

Internet Protocol: Routing Algorithms Internet Protocol: Routing Algorithms Srinidhi Varadarajan Routing Routing Rout ing prot ocol 5 Goal: det ermine good pat h (sequence of rout ers) t hru 3 B C net work f rom source t o dest .

636 views • 40 slides
What The Observatory Tool is and how it can be useful for YOU The Global Internet

What The Observatory Tool is and how it can be useful for YOU The Global Internet

TECHNICAL DEVELOPMENT OF THE ONLINE PLATFORM FOR THE GLOBAL INTERNET POLICY OBSERVATORY SMART 2014/0026 What The Observatory Tool is and how it can be useful for YOU The

547 views • 20 slides
Routing Jeff Chase Duke University IP Routing From Click IP Routing From Click Internet Map

Routing Jeff Chase Duke University IP Routing From Click IP Routing From Click Internet Map

Routing Jeff Chase Duke University IP Routing From Click IP Routing From Click Internet Map The Internet From CAIDA IP Address Allocation Originally (classful addrs), 4 address classes A: 0 | 7 bit network | 24 bit

573 views • 21 slides
1993 Internet & TCP/IP Not yet dreamed of Starting a Genomic Internet Simple, real-time,

1993 Internet & TCP/IP Not yet dreamed of Starting a Genomic Internet Simple, real-time,

1993 Internet & TCP/IP Not yet dreamed of Starting a Genomic Internet Simple, real-time, global network for sharing somatic cancer data and associated clinical information Users Researchers, Clinicians, Pharma, Data Analysts, Citizen

705 views • 25 slides
Securing Internet Routing Securing Internet Routing $ Local ISP Sharon Goldberg g Princeton

Securing Internet Routing Securing Internet Routing $ Local ISP Sharon Goldberg g Princeton

Jobtalk Securing Internet Routing Securing Internet Routing $ Local ISP Sharon Goldberg g Princeton University Based on work with: Based on work with: Boaz Barak, Shai Halevi, Aaron Jaggard, Vijay Ramachandran, Jennifer Rexford, Eran

1.12k views • 42 slides
Effjcient Monitoring and Root Cause Analysis in Complex Systems Witek Bedyk Agenda

Effjcient Monitoring and Root Cause Analysis in Complex Systems Witek Bedyk Agenda

Effjcient Monitoring and Root Cause Analysis in Complex Systems Witek Bedyk Agenda Benefjts of robust monitoring Measurements vs. Alarms Importance of Alarms Correlation Effective Alerting Self-healing Why is

725 views • 34 slides
IPAWS Alert Origination Service Provider Webinar Series Mark Lucero, Chief Engineer IPAWS

IPAWS Alert Origination Service Provider Webinar Series Mark Lucero, Chief Engineer IPAWS

IPAWS Alert Origination Service Provider Webinar Series Mark Lucero, Chief Engineer IPAWS Division mark.lucero@dhs.gov 202-646-1386 July 24, 2013 Agenda Concept and Purpose Technical Requirements Demonstrated The Scenario Flow and

298 views • 18 slides
Alerting with Time Series Fabian Reinartz, CoreOS github.com/fabxc @fabxc Time Series Stream

Alerting with Time Series Fabian Reinartz, CoreOS github.com/fabxc @fabxc Time Series Stream

Alerting with Time Series Fabian Reinartz, CoreOS github.com/fabxc @fabxc Time Series Stream of <timestamp, value> pairs associated with an identifier

714 views • 55 slides
Where does CoreOS fit in? Automating Monitoring infrastructure Prometheus + Kubernetes

Where does CoreOS fit in? Automating Monitoring infrastructure Prometheus + Kubernetes

Alertmanager and high availability Frederic Branczyk Software Engineer at CoreOS Prometheus/Alertmanager/Kubernetes @brancz Where does CoreOS fit in? Automating Monitoring infrastructure Prometheus + Kubernetes What will I be talking

488 views • 29 slides
Publish/Subscribe Hans-Arno Jacobsen Bell University Laboratory Chair in Software Engineering

Publish/Subscribe Hans-Arno Jacobsen Bell University Laboratory Chair in Software Engineering

MIDDLEWARE SYSTEMS RESEARCH GROUP Publish/Subscribe Hans-Arno Jacobsen Bell University Laboratory Chair in Software Engineering Middleware Systems Research Group University of Toronto 1 Amazon to Chapters to you ... . MIDDLEWARE SYSTEMS

860 views • 46 slides
IMAGE VPP Market Place State Bi-Annual Web Call August 19, 2020 Connecting for Solutions

IMAGE VPP Market Place State Bi-Annual Web Call August 19, 2020 Connecting for Solutions

IMAGE VPP Market Place State Bi-Annual Web Call August 19, 2020 Connecting for Solutions Todays Agenda Data Products Validation Program Update FY2021 Contracting Data Use Agreement Update Volume Trend Data Licenses

978 views • 19 slides
EVV Showcase April 30, 2019 The content contained herein (Confidential Information) is the

EVV Showcase April 30, 2019 The content contained herein (Confidential Information) is the

EVV Showcase April 30, 2019 The content contained herein (Confidential Information) is the confidential property of HHAeXchange and may not be copied or distributed without the express written consent of HHAeXchange. Distribution of this

509 views • 19 slides
in Finland (GNSS-Finland) Presenter: Dr. Zahidul Bhuiyan Department of Navigation and Positioning

in Finland (GNSS-Finland) Presenter: Dr. Zahidul Bhuiyan Department of Navigation and Positioning

GNSS Signal Quality Monitoring in Finland (GNSS-Finland) Presenter: Dr. Zahidul Bhuiyan Department of Navigation and Positioning Finnish Geospatial Research Institute National Land Survey of Finland GNSS-Finland Project In a Nutshell

593 views • 17 slides

More recommend