reclaiming the brain useful openflow functions in the
play

Reclaiming the Brain: Useful OpenFlow Functions in the Data Plane - PowerPoint PPT Presentation

Jun 18, 2023 •48 likes •408 views

Reclaiming the Brain: Useful OpenFlow Functions in the Data Plane Liron Schiff (Tel Aviv Uni, Israel) Michael Borokhovich (UT Austin, United States) Stefan Schmid (TU Berlin & T-Labs, Germany) 1 My Talk in One Slide Separation of the

  1. Reclaiming the Brain: Useful OpenFlow Functions in the Data Plane Liron Schiff (Tel Aviv Uni, Israel) Michael Borokhovich (UT Austin, United States) Stefan Schmid (TU Berlin & T-Labs, Germany) 1

  2. My Talk in One Slide Separation of the planes enables: simplified network management and operation faster innovation ctrl plane N S data plane 2

  3. My Talk in One Slide Separation of the planes enables: simplified network management and operation faster innovation ctrl plane However: N controller may miss certain data plane events indirection => latency S data plane 2

  4. My Talk in One Slide Separation of the planes enables: simplified network management and operation faster innovation ctrl plane However: N controller may miss certain data plane events indirection => latency S What functionality should be kept in data plane? — A big question! data plane 2

  5. My Talk in One Slide Separation of the planes enables: simplified network management and operation faster innovation ctrl plane However: N controller may miss certain data plane events indirection => latency S What functionality should be kept in data plane? — A big question! In this talk: example of functions data plane that can be kept in the data plane. 2

  6. SDN and OpenFlow Controller OpenFlow Actions Match OpenFlow - - - - - - Set VLAN = 11 IP.src=10.0.*.* - - Forward port 3 … … Drop TCP.port = 23 IP.dst=192.*.*.* Send Controller and VLAN=13 … … 3

  7. OpenFlow in a Nutshell Switch pipeline Table 2 Table 1 Table n Packet Packet - - - - - - Out In - - - - - - - - - - - - … … … … … … Basic Actions Set a field Append a label Forward to a port/controller/flood Goto Table x 4

  8. OpenFlow in a Nutshell Switch pipeline Table 2 Table 1 Table n Packet Packet - - - - - - Out In - - - - - - - - - - - - … … … … … … Basic Actions Set a field Append a label Forward to a port/controller/flood Goto Table x Failover Group Action1 Port-1 Advanced/optional Actions Table 1 Link state based Action2 Port-2 Gr1 - Round-robin selection - - … … Gr2 - Action-k Port-k … … 4

  9. OpenFlow in a Nutshell Switch pipeline Table 2 Table 1 Table n Packet Packet - - - - - - Out In - - - - - - - - - - - - … … … … … … Basic Actions Set a field Append a label Forward to a port/controller/flood Goto Table x Failover Group Round Robin Group Action1 Port-1 Advanced/optional Actions Table 1 Link state based Action1 Action2 Port-2 Gr1 - Round-robin selection - - … … Action2 Gr2 - Action-k Port-k … … … Action-k 4

  10. Fast Failover - Adding Brains to the South Proactive reaction to link failures Failover Group Port 1 Fwd ctrl plane N Port 3 Fwd … … Action-k Port-k S 1 3 data plane 5

  11. Fast Failover - Adding Brains to the South Proactive reaction to link failures Failover Group Port 1 Fwd ctrl plane N Port 3 Fwd … … Action-k Port-k S 1 3 data plane 5

  12. Fast Failover - Adding Brains to the South Proactive reaction to link failures Failover Group Port 1 Fwd ctrl plane N Port 3 Fwd … … Action-k Port-k S Non-trivial to use 1 May quickly introduce loops May introduce high load 3 Much better with Tags data plane Tag 5

  13. Fast Failover - Adding Brains to the South Proactive reaction to link failures Failover Group Port 1 Fwd ctrl plane N Port 3 Fwd … … Action-k Port-k S Non-trivial to use 1 May quickly introduce loops May introduce high load 3 Much better with Tags data plane Tag 5

  14. Fast Failover - Adding Brains to the South Proactive reaction to link failures Failover Group Port 1 Fwd ctrl plane N Port 3 Fwd … … Action-k Port-k S Non-trivial to use 1 May quickly introduce loops May introduce high load 3 Much better with Tags data plane Tag 5

  15. Functions in the South Reduce interactions with the control plane Make data plane more robust Monitoring functions: Topology snapshot Blackhole detection N Critical node detection S Communication functions: Anycast 6

  16. How it is possible? SmartSouth template. SmartSouth — in-band graph DFS traversal State of each node stored in the packet: parent current neighbor the node traverses Implemented using a simple match-action paradigm Uses Fast Failover technique. … payload par, cur par, cur par, cur 7

  17. How it is possible? SmartSouth template. Pseudocode —> Match&Action tables Algorithm 1 Algorithm SmartSouth – Template Input: current node: v i , input port: in , packet global params: pkt.start , packet tag array: { pkt.v j } j ∈ [ n ] Output: output port: out 1: if pkt.start = 0 then 2: pkt.start ← 1 3: out ← 1 4: else 5: if pkt.v i .cur = 0 then 6: pkt.v i .par ← in ; out ← 1; First visit () 7: else if in = pkt.v i .cur then 8: out ← pkt.v i .cur + 1; V isit from cur () 9: else 10: out ← in ; V isit not from cur () 11: goto 26 12: if out = ∆ i + 1 then 13: out ← pkt.v i .par 14: goto 22 15: while out failed or out = pkt.v i .par do 16: out ← out + 1 17: if out = ∆ i + 1 then 18: out ← pkt.v i .par 19: goto 22 20: Send next neighbor () 21: goto 23 22: Send parent () … 23: pkt.v i .cur ← out payload par, cur par, cur par, cur 24: if out = 0 then 25: Finish () 26: return out 8

  18. How it is possible? SmartSouth template. Pseudocode —> Match&Action tables Flow Table B Match if pkt.v i .cur = 0 then Instructions in pkt.v i .cur pkt.v i .par ∆ i � 1 ∆ i � 1 Table C ∆ i pkt.v i .par ← in ; out ← 1; Fi ⇤ 0 ⇤ pkt.v i .par in , Table 1 else if in = pkt.v i .cur then 1 1 ⇤ Table 2 2 2 ⇤ Table 3 out ← pkt.v i .cur + 1; V isit 3 3 ⇤ Table 4 else . . . . . . . . . . . . … payload par, cur par, cur par, cur 9

  19. How it is possible? SmartSouth template. Pseudocode —> Match&Action tables Flow Table B Match if pkt.v i .cur = 0 then Instructions in pkt.v i .cur pkt.v i .par ∆ i � 1 ∆ i � 1 Table C ∆ i pkt.v i .par ← in ; out ← 1; Fi ⇤ 0 ⇤ pkt.v i .par in , Table 1 else if in = pkt.v i .cur then 1 1 ⇤ Table 2 2 2 ⇤ Table 3 out ← pkt.v i .cur + 1; V isit 3 3 ⇤ Table 4 else . . . . . . . . . . . . Flow Table 2 Flow Table 1 15: while out failed Match Match Instructions Instructions … sb sb 16: out ← out + 1 0 Gr 1, Table 2 0 Gr 2, Table 3 1 Drop 1 Drop Group Actions h i Gr 0.1 Gr 1 h sb 1 , Fwd Route (1) i h sb 1 , pkt.v i .cur 1 , pkt.start 1 , Fwd 1 i Gr 2 h sb 1 , pkt.v i .cur 2 , pkt.start 1 , Fwd 2 i . . . . . . port 1 … payload par, cur par, cur par, cur port 2 9

  20. Functions in the South: Topology Snapshot Fault tolerant No connectivity assumption Requires a single connection to controller Unlike built-in “Topology service” in OpenFlow N t o h s p a n S s a e m e v i g 10

  21. Functions in the South: Topology Snapshot Fault tolerant No connectivity assumption Requires a single connection to controller Unlike built-in “Topology service” in OpenFlow N t o h s p a n During the DFS traversal, topology S s information is written to the packet a e header m e v i g … snapshot data par, next par, next par, next 10

  22. Functions in the South: Blackhole Detection Detects connectivity loss regardless of the cause physical failure configuration errors unsupervised carrier network errors N ? e l o h k c a S l b a e r e h t s I 11

  23. Functions in the South: Blackhole Detection Detects connectivity loss regardless of the cause physical failure configuration errors unsupervised carrier network errors Two possible implementations: N ? e l o h k c a S l b a e r e h t s I 11

  24. Functions in the South: Blackhole Detection Detects connectivity loss regardless of the cause physical failure configuration errors unsupervised carrier network errors Two possible implementations: N ? e DFS traversal with TTL l o (log n) DFS traversals (binary search) h k c a S l b a DFS failed e r e h t s DFS failed I Blackhole found … TTL par, next par, next par, next 11

  25. Functions in the South: Blackhole Detection Smart “In-band” Counters General counters - access only by controller Our counters: access during packet processing N counter value can be written to packet or ? metadata e l o implemented using Round-Robin action group h k c a S l b Round Robin Group a e Action1 r e Table 2 Table 1 h t Action2 1 - - - s I 2 - - - … … … - - K Action-k . … … 12

  26. Functions in the South: Blackhole Detection Blackhole detection with SmartCounters Install SmartCounter for each port Only two DFS traversals required: First - back&forth on each link N ? 3 e 3 l o h k c a S l b a e 1 0 r e h t s I 13

  27. Functions in the South: Blackhole Detection Blackhole detection with SmartCounters Install SmartCounter for each port Only two DFS traversals required: First - back&forth on each link N ? 3 e 3 l o h k c a S l b a e 1 0 r e h t s I 3 3 3 Second - find port with counter value 1 3 3 3 1 13

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

OpenFlow and Software Defjned Networks Outline o The history of OpenFlow o What is OpenFlow? o

OpenFlow and Software Defjned Networks Outline o The history of OpenFlow o What is OpenFlow? o

OpenFlow and Software Defjned Networks Outline o The history of OpenFlow o What is OpenFlow? o Slicing OpenFlow networks o Software Defjned Networks o Industry interest Original Question How can researchers on college campuses test out new

718 views • 35 slides
Reclaiming Your Inner David in a World of Goliaths 2 Reclaiming Your Inner David: Dream Big;

Reclaiming Your Inner David in a World of Goliaths 2 Reclaiming Your Inner David: Dream Big;

Reclaiming Your Inner David: Finding Purpose and Promise in a World of Goliaths Rawle Andrews Jr., Esq. Regional Vice President June 20, 2017 1 Reclaiming Your Inner David in a World of Goliaths 2 Reclaiming Your Inner David: Dream

461 views • 21 slides
Reclaiming Social Work Steve Goodman Director @morninglane.org Reclaiming Social Work

Reclaiming Social Work Steve Goodman Director @morninglane.org Reclaiming Social Work

Reclaiming Social Work Steve Goodman Director @morninglane.org Reclaiming Social Work Values Systemic social work approaches Attracting and retaining high quality staff Unit approach Organisational support

159 views • 12 slides
TouSIX First OpenFlow European IXP Marc Bruyre, CNRS 2 TouSIX First OpenFlow European IXP

TouSIX First OpenFlow European IXP Marc Bruyre, CNRS 2 TouSIX First OpenFlow European IXP

TouSIX First OpenFlow European IXP Marc Bruyre, CNRS 2 TouSIX First OpenFlow European IXP What is an IXP ? Today IXP switching fabric Operator-oriented OpenFlow IXP fabric The Toulouse IXP : TouIX Migrating TouIX in TouSIX TouSIX-Manager

850 views • 41 slides
Reclaiming the Hudson River Objective: Further flood plain testing needs to be done in order to

Reclaiming the Hudson River Objective: Further flood plain testing needs to be done in order to

Reclaiming the Hudson River Objective: Further flood plain testing needs to be done in order to ensure sustainable community and economic development, heritage/cultural tourism and the safety and well being of our residents. Reclaiming the

518 views • 12 slides
Applying F(I)MEA Technique for SDN/OpenFlow Security Analysis Green Kim greenkim@konkuk.ac.kr

Applying F(I)MEA Technique for SDN/OpenFlow Security Analysis Green Kim greenkim@konkuk.ac.kr

Applying F(I)MEA Technique for SDN/OpenFlow Security Analysis Green Kim greenkim@konkuk.ac.kr Contents 1. Introduction 1.1 Motivation 1.2 Related Works Analysis 1.2.1 OpenFlow: A Security Analysis 1.2.2 OpenFlow Vulnerability Assessment

345 views • 30 slides
Modeling brain cognitive functions by oscillatory neural networks Institute of Mathematical

Modeling brain cognitive functions by oscillatory neural networks Institute of Mathematical

Yakov Kazanovich Modeling brain cognitive functions by oscillatory neural networks Institute of Mathematical Problems of Biology RAS A branch of Keldysh Institute of Applied Mathematics RAS Theoretical Physics and Mathematics of the Brain

483 views • 35 slides
Networking and OpenFlow Jeffrey Dalla Tezza and Nate Schloss Agenda What is SDN SDN Today

Networking and OpenFlow Jeffrey Dalla Tezza and Nate Schloss Agenda What is SDN SDN Today

Software Defined Networking and OpenFlow Jeffrey Dalla Tezza and Nate Schloss Agenda What is SDN SDN Today What is OpenFlow Why OpenFlow Whats next for SDN Our OpenFlow Demonstration Software Defined Networking

274 views • 26 slides
BRAIN VENTRICULAR SYSTEM CSF THE BRAIN BRAIN The brain (encephalon) lies within the cranium. It

BRAIN VENTRICULAR SYSTEM CSF THE BRAIN BRAIN The brain (encephalon) lies within the cranium. It

BRAIN VENTRICULAR SYSTEM CSF THE BRAIN BRAIN The brain (encephalon) lies within the cranium. It receives information from, and controls the activities of, the trunk and limbs, mainly through rich connections with the spinal cord. The brain

522 views • 27 slides
RECLAIMING SECONDARY TICKETING AudienceNet / Music Ally research: 77% of the UK

RECLAIMING SECONDARY TICKETING AudienceNet / Music Ally research: 77% of the UK

RECLAIMING SECONDARY TICKETING AudienceNet / Music Ally research: 77% of the UK public say you should be able to resell a ticket. 58% say resale should be for the price of purchase. 1. RECLAIMING SECONDARY TICKETING The

511 views • 21 slides
Optimizing Rules Placement in OpenFlow networks: Trading routing for better efficiency NGUYEN

Optimizing Rules Placement in OpenFlow networks: Trading routing for better efficiency NGUYEN

Optimizing Rules Placement in OpenFlow networks: Trading routing for better efficiency NGUYEN Xuan-Nam , Damien Saucez, Chadi Barakat, Thierry Turletti DIANA INRIA Sophia Antipolis, France Motivation Today With SDN/OpenFlow Manual

394 views • 6 slides
OpenFlow Workshop APAN FIT Workshop Hong Kong APAN FIT Workshop Hong Kong Chris Small

OpenFlow Workshop APAN FIT Workshop Hong Kong APAN FIT Workshop Hong Kong Chris Small

OpenFlow Workshop APAN FIT Workshop Hong Kong APAN FIT Workshop Hong Kong Chris Small Indiana University Feb 22 2011 Sections Sections OpenFlow concepts, hardware and software l h d d f OpenFlow use cases Network Operators

910 views • 73 slides
UNINETT OpenFlow testbed UNINETT OpenFlow testbed Terena Network Architecture Workshop,

UNINETT OpenFlow testbed UNINETT OpenFlow testbed Terena Network Architecture Workshop,

UNINETT OpenFlow testbed UNINETT OpenFlow testbed Terena Network Architecture Workshop, 13-14/11-2013 Terena Network Architecture Workshop, 13-14/11-2013 Olav Kvittem, Martin Osmundsvg, Otto Wittner, Gurvinder Singh UNINETT Aryan

366 views • 7 slides
The Beacon OpenFlow Controller www.beaconcontroller.net David Erickson Stanford Motivation

The Beacon OpenFlow Controller www.beaconcontroller.net David Erickson Stanford Motivation

The Beacon OpenFlow Controller www.beaconcontroller.net David Erickson Stanford Motivation Back to circa 2008-2009 The OpenFlow controller world == NOX Single threaded event based C++ with SWIG glue to Python Python apps C++

513 views • 18 slides
OpenFlow Campus Trials GEC7 Stanford University Continued progress Increasing provider

OpenFlow Campus Trials GEC7 Stanford University Continued progress Increasing provider

OpenFlow Campus Trials GEC7 Stanford University Continued progress Increasing provider OpenFlow 1.0 interest and engagement Spec released in Dec 2009 Google, Amazon, Yahoo, Reference implementations Microsoft, and

656 views • 26 slides
HyperFlow A Distributed Control Plane for OpenFlow Amin Tootoonchian Yashar Ganjali System and

HyperFlow A Distributed Control Plane for OpenFlow Amin Tootoonchian Yashar Ganjali System and

HyperFlow A Distributed Control Plane for OpenFlow Amin Tootoonchian Yashar Ganjali System and Networking Group Department of Computer Science University of Toronto Brief Overview of OpenFlow Root cause of network mgmt. & control

659 views • 14 slides
CIS 6930 - Cellular and Mobile Network Security: GSM Overload Professor Patrick Traynor 11/1/18

CIS 6930 - Cellular and Mobile Network Security: GSM Overload Professor Patrick Traynor 11/1/18

CIS 6930 - Cellular and Mobile Network Security: GSM Overload Professor Patrick Traynor 11/1/18 Florida Institute for Cybersecurity (FICS) Research Reminders You need to start working on your project! Some of you have not yet built

1.22k views • 32 slides
RCUArray: An RCU-like Parallel-Safe Distributed Resizable Array By Louis Jenkins The Problem

RCUArray: An RCU-like Parallel-Safe Distributed Resizable Array By Louis Jenkins The Problem

RCUArray: An RCU-like Parallel-Safe Distributed Resizable Array By Louis Jenkins The Problem Parallel-Safe Resizing Not inherently thread-safe to access memory while it is being resized Memory has to be moved from the smaller

995 views • 35 slides
Size-Based Queuing An Approach to Improve Bandwidth Utilization in TSN Networks Florian Heilmann

Size-Based Queuing An Approach to Improve Bandwidth Utilization in TSN Networks Florian Heilmann

Size-Based Queuing An Approach to Improve Bandwidth Utilization in TSN Networks Florian Heilmann and Gerhard Fohler RTN18 - Barcelona, Spain In this talk Highest-priority (HP) messages may experience jitter due to blocking by

1.23k views • 39 slides
Peer-to-Peer Networks 11 Past Christian Ortolf Technical Faculty Computer-Networks and

Peer-to-Peer Networks 11 Past Christian Ortolf Technical Faculty Computer-Networks and

Peer-to-Peer Networks 11 Past Christian Ortolf Technical Faculty Computer-Networks and Telematics University of Freiburg PAST PAST: A large-scale, persistent peer-to-peer storage utility - by Peter Druschel (Rice University, Houston

372 views • 26 slides
Social, Policy and Governance Modeling: Current Status Report Christopher Koliba, Ph.D. Science

Social, Policy and Governance Modeling: Current Status Report Christopher Koliba, Ph.D. Science

Social, Policy and Governance Modeling: Current Status Report Christopher Koliba, Ph.D. Science Leader, Research on Adaptation to Climate Change (RACC) Professor of Public Administration, Policy & Governance University of Vermont In the

887 views • 75 slides
Near-Threshold Computing: Reclaiming Moores Law Dr. Ronald G. Dreslinski Research Fellow

Near-Threshold Computing: Reclaiming Moores Law Dr. Ronald G. Dreslinski Research Fellow

1 Near-Threshold Computing: Reclaiming Moores Law Dr. Ronald G. Dreslinski Research Fellow University of Michigan Ann Arbor 1 University of Michigan EnA-HPC -- September 7, 2011 1 1 Motivation 1000000 Transistors

741 views • 34 slides
Maximizing the Benefits of Intrusion Prevention Systems: Effective Deployments Strategies Charles

Maximizing the Benefits of Intrusion Prevention Systems: Effective Deployments Strategies Charles

Maximizing the Benefits of Intrusion Prevention Systems: Effective Deployments Strategies Charles Iheagwara, Farrukh Awan, Yusuf Acar, Calvin Miller Office of the Chief Technology, District of Columbia Government Washington DC 18 th Annual FIRST

967 views • 27 slides
IPv6 Solutions Ralf Korschner Systems Engineer EMEA ralfk@a10networks.com Mike Awford, Sales

IPv6 Solutions Ralf Korschner Systems Engineer EMEA ralfk@a10networks.com Mike Awford, Sales

Customer Driven Innovation IPv6 Solutions Ralf Korschner Systems Engineer EMEA ralfk@a10networks.com Mike Awford, Sales Manager Service Providers UK mawford@a10networks.com Do not distribute/edit/copy without the written consent of A10 Networks

434 views • 27 slides

More recommend