reverse traceroute
play

Reverse Traceroute Ethan Katz-Bassett, Harsha V. Madhyastha, Vijay - PowerPoint PPT Presentation

Feb 04, 2023 •488 likes •944 views

Reverse Traceroute Ethan Katz-Bassett, Harsha V. Madhyastha, Vijay K. Adhikari, Colin Scott, Justine Sherry, Peter van Wesep, Arvind Krishnamurthy, Thomas Anderson NSDI, April 2010 This work partially supported by Cisco, Google, NSF

  1. Reverse Traceroute Ethan Katz-Bassett, Harsha V. Madhyastha, Vijay K. Adhikari, Colin Scott, Justine Sherry, Peter van Wesep, Arvind Krishnamurthy, Thomas Anderson NSDI, April 2010 This work partially supported by Cisco, Google, NSF

  9. Researchers Need Reverse Paths, Too The inability to measure reverse paths was the biggest limitation of my previous systems: ! Geolocation constraints too loose [IMC ‘06] ! Hubble can’t locate reverse path outages [NSDI ‘08] ! iPlane predictions inaccurate [NSDI ‘09] Other systems use sophisticated measurements but are forced to assume symmetric paths: ! Netdiff compares ISP performance [NSDI ‘08] ! iSpy detects prefix hijacking [SIGCOMM ‘08] ! Eriksson et al. infer topology [SIGCOMM ʻ 08]

  10. Everyone Needs Reverse Paths “The number one go-to tool is traceroute. Asymmetric paths are the number one plague. The reverse path itself is completely invisible.” NANOG Network operators troubleshooting tutorial, 2009. Goal: Reverse traceroute , without control of destination and deployable today without new support

  11. ! Want path from D back to S , don’t control D ! Traceroute gives S to D , but likely asymmetric ! Can’t use traceroute’s TTL limiting on reverse path KEY IDEA ! Technique does not require control of destination

  12. ! Want path from D back to S , don’t control D ! Set of vantage points KEY IDEA ! Multiple VPs combine for view unattainable from any one

  13. ! Traceroute from all vantage points to S ! Gives atlas of paths to S ; if we hit one, we know rest of path " Destination-based routing KEY IDEA ! Traceroute atlas gives baseline we bootstrap from

  14. ! Destination-based routing " Path from R1 depends only on S " Does not depend on source " Does not depend on path from D to R1 KEY IDEA ! Destination-based routing lets us stitch path hop-by-hop

  15. ! Destination-based routing " Path from R3 depends only on S " Does not depend on source " Does not depend on path from D to R3 KEY IDEA ! Destination-based routing lets us stitch path hop-by-hop

  16. ! Destination-based routing " Path from R4 depends only on S " Does not depend on source " Does not depend on path from D to R4 KEY IDEA ! Destination-based routing lets us stitch path hop-by-hop

  17. ! Once we intersect a path in our atlas, we know rest of route KEY IDEAS ! Destination-based routing lets us stitch path hop-by-hop ! Traceroute atlas gives baseline we bootstrap from

  18. ! Segments combine to give complete path But how do we get segments? KEY IDEAS ! Destination-based routing lets us stitch path hop-by-hop ! Traceroute atlas gives baseline we bootstrap from

  19. How do we get segments? ! Unlike TTL, IP Options are reflected in reply ! Record Route (RR) Option " Record first 9 routers " If D within 8, reverse hops fill rest of slots KEY IDEA ! IP Options work over forward and reverse path

  20. How do we get segments? ! Unlike TTL, IP Options are reflected in reply ! Record Route (RR) Option " Record first 9 routers " If D within 8, reverse hops fill rest of slots " … but average path is 15 hops, 30 round-trip KEY IDEA ! IP Options work over forward and reverse path

  21. ! From vantage point within 8 hops of D , ping D spoofing as S with To: S To: D Fr: D Record Route Option To: S Fr: S Ping! Fr: D ! D ’s response records Ping? RR: h 1 ,…,h 7 ,D Ping! RR: h 1 ,…,h 7 hop(s) on return path RR: h 1 ,…,h 7 ,D, R1 To: D Fr: S Ping? RR:__ KEY IDEA ! Spoofing lets us use vantage point in best position

  22. ! Iterate, performing spoofed Record Routes to each router we discover on return path To: S Fr: R1 Ping! RR: h 1 ,…,h 6 ,R1, R2,R3 To: R1 Fr: S Ping? RR:__ KEY IDEAS ! Spoofing lets us use vantage point in best position ! Destination-based routing lets us stitch path hop-by-hop

  23. What if no vantage point is within 8 hops for Record Route? ! Consult atlas of known paths to find adjacencies KEY IDEAS ! Spoofing lets us use vantage point in best position ! Destination-based routing lets us stitch path hop-by-hop

  24. What if no vantage point is within 8 hops for Record Route? ! Consult atlas of known paths to find adjacencies KEY IDEA ! Known paths provide set of possible next hops to guess

  25. How do we verify which possible next hop is actually on path? ! IP Timestamp (TS) Option 2 1 To: S To: R3 " Specify ! 4 IPs, Fr: R3 Fr: S each timestamps if Ping! Ping? traversed in order TS: R3! R4? TS: R3? R4? 3 To: S Fr: R3 Ping! TS: R3! R4! KEY IDEAS ! Known paths provide set of possible next hops to guess ! IP Options work over forward and reverse path

  26. KEY IDEA ! Destination-based routing lets us stitch path hop-by-hop

  27. ! Once we intersect a path in our atlas, we know rest of route KEY IDEAS ! Destination-based routing lets us stitch path hop-by-hop ! Traceroute atlas gives baseline we bootstrap from

  28. ! Techniques combine to give complete path KEY IDEAS ! Destination-based routing lets us stitch path hop-by-hop ! Traceroute atlas gives baseline we bootstrap from

  29. Key Ideas ! Works without control of destination ! Multiple vantage points ! Stitch path hop-by-hop ! Traceroute atlas provides: " Baseline paths " Adjacencies ! IP Options work over forward and reverse path ! Spoofing lets us use vantage point in best position See paper for techniques to address: ! Accuracy : Some routers process options incorrectly ! Coverage : Some ISPs filter probe packets ! Scalability : Need to select vantage points carefully

  30. Deployment Coverage tied to set of spoofing vantage points (VPs) ! Current: " VPs: PlanetLab / Measurement Lab ! ~90 sites did not filter spoofing " Sources: Closed system of PlanetLab sources, demo at http://revtr.cs.washington.edu ! Future plans: " VPs: Recruit participants to improve coverage " Sources: Open system to outside sources

  31. Evaluation See paper for: ! Coverage : How often are our techniques able to measure reverse hops? ! Overhead : How much time and how many packets does a reverse traceroute require? Next: ! Accuracy : Does it yield the same path as if you could issue a traceroute from destination? " 2200 PlanetLab to PlanetLab paths " Allows comparison to direct traceroute on “reverse” path

  32. Does it give the same path as traceroute? Median: 87% with our system Median: 38% if assume symmetric ! We identify most hops seen by traceroute ! Hard to know if 2 IPs actually are the same router

  33. Does it give the same path as traceroute? Median: 87% with our system Median: 38% if assume symmetric ! We identify most hops seen by traceroute ! Hard to know if 2 IPs actually are the same router " If we consider PoPs instead, median=100% accurate

  34. Example of debugging inflated path ! 150ms round-trip time Orlando to Seattle, 2-3x expected " E.g., Content provider detects poor client performance ! (Current practice) Issue traceroute, check if indirect ! Indirectness: FL # DC # FL But does not explain huge latency jump from 9 to 10

  35. Example of debugging inflated path ! (Current practice) Issue traceroute, check if indirect " Does not fully explain inflated latency ! (Our tool) Use reverse traceroute to check reverse path ! Indirectness: WA # LA # WA Bad reverse path causes inflated round-trip delay

  44. Case Study: Sprint Link Latencies ! Reverse traceroute sees 79 of 89 inter-PoP links, whereas traceroute only sees 61 ! Median (0.4ms), mean (0.6ms), worst case (2.2ms) error all 10 x better than with traditional approach

  45. Conclusion ! Traceroute is very useful, but can’t give reverse path ! Our reverse traceroute system addresses limitation, providing complementary information " Multiple vantage points build the path incrementally " Gives most hops as if you issued traceroute from destination, without requiring you to control it ! Useful in a range of contexts ! Demo at http://revtr.cs.washington.edu ! Plan to open system to outside sources in future

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Reverse Traceroute Relaunch David Choffnes, Northeastern (joint work with USC) What is

Reverse Traceroute Relaunch David Choffnes, Northeastern (joint work with USC) What is

Reverse Traceroute Relaunch David Choffnes, Northeastern (joint work with USC) What is Reverse Traceroute? 2 Source Destination What is Reverse Traceroute? 2 Level3 Level3 Source Destination What is Reverse Traceroute? 2 Level3

847 views • 16 slides
Reverse Traceroute Ethan Katz-Bassett, Harsha V. Madhyastha, Vijay K. Adhikari, Colin Scott,

Reverse Traceroute Ethan Katz-Bassett, Harsha V. Madhyastha, Vijay K. Adhikari, Colin Scott,

Reverse Traceroute Ethan Katz-Bassett, Harsha V. Madhyastha, Vijay K. Adhikari, Colin Scott, Justine Sherry, Peter van Wesep, Arvind Krishnamurthy, Thomas Anderson AIMS, February 2010 This work partially supported by Cisco, Google, NSF 1

401 views • 19 slides
A Better Schema For Paris Traceroute AIMS 2018 Confidential Customized for Lorem Ipsum LLC

A Better Schema For Paris Traceroute AIMS 2018 Confidential Customized for Lorem Ipsum LLC

A Better Schema For Paris Traceroute AIMS 2018 Confidential Customized for Lorem Ipsum LLC Version 1.0 Overview 1. Who is M-Lab? What is Paris Traceroute? M-Lab's traceroute data Proposed schemas for PT Current Proposal 1

1.08k views • 10 slides
Mtrace Version 2: Traceroute Facility for IP Mul7cast dra9ie;mbonedmtracev201

Mtrace Version 2: Traceroute Facility for IP Mul7cast dra9ie;mbonedmtracev201

72 nd IETF, July 2008, Dublin Mtrace Version 2: Traceroute Facility for IP Mul7cast dra9ie;mbonedmtracev201 Hitoshi Asaeda Tatsuya Jinmei Bill Fenner Steve Casner Changes Mtrace ver.2 (mtrace2) works on UDP

280 views • 10 slides
Remanufacturing of Products Remanufacturing of Products and Reverse Logistics and Reverse

Remanufacturing of Products Remanufacturing of Products and Reverse Logistics and Reverse

Remanufacturing of Products Remanufacturing of Products and Reverse Logistics and Reverse Logistics Xochitl Aquiahuatl March 2007 Outline Outline Closed-loop Supply Chain Reverse Logistics Recovery Options Product

388 views • 22 slides
Intro to HTTP & Playing with Traceroute Chapter 2 CSC 249 January 30, 2018 1 Course

Intro to HTTP & Playing with Traceroute Chapter 2 CSC 249 January 30, 2018 1 Course

Intro to HTTP & Playing with Traceroute Chapter 2 CSC 249 January 30, 2018 1 Course Overview q Fundamental Question: v How is data transferred through the Internet? q Principles to develop v Reliable data transfer, to the correct

449 views • 22 slides
Optimization techniques for large-scale traceroute measurements Benjamin Hof Lehrstuhl f ur

Optimization techniques for large-scale traceroute measurements Benjamin Hof Lehrstuhl f ur

Abschlussvortrag Masters Thesis Optimization techniques for large-scale traceroute measurements Benjamin Hof Lehrstuhl f ur Netzarchitekturen und Netzdienste Institut f ur Informatik Technische Universit at M unchen

855 views • 23 slides
Layer 3 VPNs and Traceroute Alex Marder, Matthew Luckie, Bradley Huffaker, kc claffy, Jonathan M.

Layer 3 VPNs and Traceroute Alex Marder, Matthew Luckie, Bradley Huffaker, kc claffy, Jonathan M.

Layer 3 VPNs and Traceroute Alex Marder, Matthew Luckie, Bradley Huffaker, kc claffy, Jonathan M. Smith Expected Response Types: Ingress Expected Response Types: Egress Responses Face the Traceroute Source Ingress Response Egress Response

218 views • 18 slides
1.112.1 ping dig Fundamentals of TCP/IP traceroute Weight 4 whois Linux Professional

1.112.1 ping dig Fundamentals of TCP/IP traceroute Weight 4 whois Linux Professional

2 ftp telnet host 1.112.1 ping dig Fundamentals of TCP/IP traceroute Weight 4 whois Linux Professional Institute Certification 102 (2.2) Networking Fundamentals [14] 1.112.1 Fundamentals of TCP/IP [4] Geoffrey Robertson ge@ffrey.com

430 views • 3 slides
Pinpointing Delay and Forwarding Anomalies Using Large-Scale Traceroute Measurements Romain

Pinpointing Delay and Forwarding Anomalies Using Large-Scale Traceroute Measurements Romain

Pinpointing Delay and Forwarding Anomalies Using Large-Scale Traceroute Measurements Romain Fontugne 1 , Emile Aben 2 , Cristel Pelsser 3 , Randy Bush 1 November 1, 2017 1 IIJ Research Lab, 2 RIPE NCC, 3 University of Strasbourg / CNRS 1 / 25

499 views • 35 slides
Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a product, understand how it works Usually limited to certain aspects, not full systems Need to know a little bit about a lot of topics to gain

636 views • 11 slides
Reverse Logistics Woodfield Distribution, LLC v081617 Reverse Logistics About Us Description

Reverse Logistics Woodfield Distribution, LLC v081617 Reverse Logistics About Us Description

Presentation of Capabilities Reverse Logistics Woodfield Distribution, LLC v081617 Reverse Logistics About Us Description of Services Reverse Distribution Channels DSCSA/Sustainability About Us WDSrx Woodfield Distribution, LLC Is A

454 views • 13 slides
A Study on Traceroute Potentiality in Revealing the Internet AS-level Topology V. Luconi A.

A Study on Traceroute Potentiality in Revealing the Internet AS-level Topology V. Luconi A.

A Study on Traceroute Potentiality in Revealing the Internet AS-level Topology V. Luconi A. Faggiani, E. Gregori, A. Improta, L. Lenzini , L. Sani IFIP Networking 2014 Conference - Trondheim - June 3rd, 2014 Outline The Internet AS-level

784 views • 46 slides
Deploying MDA Traceroute on RIPE Atlas Probes Kevin Vermeulen 1 , Stephen Strowes 2 , Timur

Deploying MDA Traceroute on RIPE Atlas Probes Kevin Vermeulen 1 , Stephen Strowes 2 , Timur

Deploying MDA Traceroute on RIPE Atlas Probes Kevin Vermeulen 1 , Stephen Strowes 2 , Timur Friedman 1 1 Sorbonne University, 2 RIPE NCC Summary Multipath Detection Algorithm (MDA) and its limits Towards a better MDA: Survey on load

444 views • 18 slides
Sibyl A Practical Internet Route Oracle talo Cunha P. Marchetta, M. Calder, Y-C. Chiu B.

Sibyl A Practical Internet Route Oracle talo Cunha P. Marchetta, M. Calder, Y-C. Chiu B.

Sibyl A Practical Internet Route Oracle talo Cunha P. Marchetta, M. Calder, Y-C. Chiu B. Schlinker, B. Machado, A. Pescap V. Giotsas, H. Madhyastha, E. Katz-Bassett Traceroute is Widely Used The number one go - to tool is traceroute.

478 views • 19 slides
Scamper update Matthew Luckie University of Waikato mjl@wand.net.nz Recent work on scamper

Scamper update Matthew Luckie University of Waikato mjl@wand.net.nz Recent work on scamper

Scamper update Matthew Luckie University of Waikato mjl@wand.net.nz Recent work on scamper Enhanced control socket Numerous enhancements to regular traceroute Load-balancer traceroute IP Alias resolution techniques

422 views • 28 slides
The Peculiar Optimization and Regularization Challenges in Multi-Task Learning and Meta-Learning

The Peculiar Optimization and Regularization Challenges in Multi-Task Learning and Meta-Learning

The Peculiar Optimization and Regularization Challenges in Multi-Task Learning and Meta-Learning Chelsea Finn Stanford training data test datapoint Braque Cezanne By Braque or Cezanne? How did you accomplish this? Through previous

851 views • 43 slides
Simplicity The Way of the Unusual Architect Dan North Dan North & Associates @tastapod In

Simplicity The Way of the Unusual Architect Dan North Dan North & Associates @tastapod In

Simplicity The Way of the Unusual Architect Dan North Dan North & Associates @tastapod In the beginning... The software was without form and void. The Architects said Let there be light, and they separated the light from the

575 views • 18 slides
Thucydides and the Synchronous Pandemic By Gregory T. Papanikos Some Stylized (H (His

Thucydides and the Synchronous Pandemic By Gregory T. Papanikos Some Stylized (H (His

Thucydides and the Synchronous Pandemic By Gregory T. Papanikos Some Stylized (H (His istorical) Facts about the Ancient Pla lague Source: Thucydides The Peloponnesian War Time of the Plague: 430-429 BCE and 427 BCE Symptoms: Well

474 views • 12 slides
THE FINAL PLAGUE EXODUS 12:1-11 BIG IDEA: The focal point of the dramatic final plague is a

THE FINAL PLAGUE EXODUS 12:1-11 BIG IDEA: The focal point of the dramatic final plague is a

THE FINAL PLAGUE EXODUS 12:1-11 BIG IDEA: The focal point of the dramatic final plague is a Lamb. 1. The preparation of the Lamb EXODUS 12:1-4 The LORD said to Moses and Aaron in Egypt, This month is to be for you the first month, the

425 views • 24 slides
The Birth of Drama The Birth of Drama The three great Classical tragedians: Aeschylus

The Birth of Drama The Birth of Drama The three great Classical tragedians: Aeschylus

Clst 181SK Ancient Greece and the Origins of Western Culture The Birth of Drama The Birth of Drama The three great Classical tragedians: Aeschylus 525-456 BC Oresteia (includes Agamemnon), Prometheus Bound Sophocles 496-406 BC Oedipus

589 views • 17 slides
A Study of Linux File System Evolution Lanyue Lu Andrea C. Arpaci-Dusseau Remzi H.

A Study of Linux File System Evolution Lanyue Lu Andrea C. Arpaci-Dusseau Remzi H.

A Study of Linux File System Evolution Lanyue Lu Andrea C. Arpaci-Dusseau Remzi H. Arpaci-Dusseau Shan Lu University of Wisconsin - Madison Local File Systems Are Important Local File Systems Are Important Windows Mac Linux Local File

1.77k views • 159 slides
Market Imperfections and Concepts (Welch, Chapter 11) Ivo Welch (No) Maintained Assumptions 1.

Market Imperfections and Concepts (Welch, Chapter 11) Ivo Welch (No) Maintained Assumptions 1.

Market Imperfections and Concepts (Welch, Chapter 11) Ivo Welch (No) Maintained Assumptions 1. Differences in opinion. 2. Taxes. 3. Transaction costs. 4. Large sellers/buyers 5. Risk and Risk-Aversion 6. and so on. (chapter completes

485 views • 30 slides
Public Keys Arjen K. Lenstra (EPFL, Switzerland) James P. Hughes (Self, Palo Alto, USA) Maxime

Public Keys Arjen K. Lenstra (EPFL, Switzerland) James P. Hughes (Self, Palo Alto, USA) Maxime

Public Keys Arjen K. Lenstra (EPFL, Switzerland) James P. Hughes (Self, Palo Alto, USA) Maxime Augier (EPFL, Switzerland) Joppe W. Bos (EPFL, Switzerland) Thorsten Kleinjung (EPFL, Switzerland) Christophe Wachter (EPFL, Switzerland)

464 views • 20 slides

More recommend