the impact of router outages on the as level internet
play

The Impact of Router Outages on the AS-Level Internet Matthew - PowerPoint PPT Presentation

Jan 11, 2023 •556 likes •1.13k views

The Impact of Router Outages on the AS-Level Internet Matthew Luckie* - University of Waikato Robert Beverly - Naval Postgraduate School *work started while at CAIDA, UC San Diego SIGCOMM 2017, August 24th 2017 1 w w w . cai da. or

  1. The Impact of Router Outages on the AS-Level Internet Matthew Luckie* - University of Waikato 
 Robert Beverly - Naval Postgraduate School *work started while at CAIDA, UC San Diego SIGCOMM 2017, August 24th 2017 1 w w w . cai da. or

  2. Internet Resilience Where are the Single Points of Failure? CE CE CE PE PE PE Example #A Example #B CE: Customer Edge 
 PE: Provider Edge 2

  3. Internet Resilience Where are the Single Points of Failure? CE If the CE router fails, 
 the network is disconnected, 
 so the CE router is a 
 PE Single Point of Failure (SPoF) PE Example #A CE: Customer Edge 
 PE: Provider Edge 3

  4. Internet Resilience Where are the Single Points of Failure? CE CE If the CE router fails, 
 PE the network has an 
 alternate path available, 
 so the CE router is NOT a 
 Single Point of Failure (SPoF) Example #B CE: Customer Edge 
 PE: Provider Edge 4

  5. Internet Resilience Where are the Single Points of Failure? CE CE If the PE router fails, 
 PE the customer network is 
 disconnected, so the PE router is 
 a Single Point of Failure (SPoF) Example #B CE: Customer Edge 
 PE: Provider Edge 5

  6. Challenges in topology analysis • Prior approaches analyzed static AS-level and router-level topology graphs, - e.g.: Nature 2000 • Important AS-level and router-level topology might be invisible to measurement , such as backup paths, - e.g: INFOCOM 2002 • A router that appears to be central to a network’s connectivity might not be - e.g.: AMS 2009 6

  7. What we did Large-scale ( Internet-wide ) longitudinal ( 2.5 years ) measurement study to characterize prevalence of Single Points of Failure ( SPoF ): 1.Efficiently inferred IPv6 router outage time windows 2. Associated routers with IPv6 BGP prefixes 3. Correlated router outages with BGP control plane 4. Correlated router outages with data plane 5. Validated inferences of SPoF with network operators 7

  8. What we did Identified IPv6 router interfaces from traceroute 83K to 2.4M interfaces from CAIDA’s 
 Archipelago traceroute measurements 8

  9. What we did probed router interfaces to infer outage windows We used a single vantage point located at CAIDA, 
 UC San Diego for the duration of this study 9

  10. What we did Central counter: 9290 10

  11. What we did Central counter: 9290 Central counter: 9291 T 1 : 9290 9290 10

  12. What we did Central counter: 9292 Central counter: 9290 Central counter: 9291 T 1 : 9290 T 1 : 9290 T 2 : 9291 9291 10

  13. What we did Central counter: 9292 Central counter: 9290 Central counter: 9291 Central counter: 9293 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 2 : 9291 T 2 : 9291 T 3 : 9292 9292 10

  14. What we did Central counter: 9292 Central counter: 9294 Central counter: 9293 Central counter: 9290 Central counter: 9291 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 3 : 9292 T 3 : 9292 9293 T 4 : 9293 10

  15. What we did Central counter: 9292 Central counter: 9294 Central counter: 9295 Central counter: 9293 Central counter: 9291 Central counter: 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 3 : 9292 T 3 : 9292 T 3 : 9292 9294 T 4 : 9293 T 4 : 9293 T 5 : 9294 10

  16. What we did Central counter: 9292 Central counter: 9295 Central counter: 9294 Central counter: 1 Central counter: 9293 Central counter: 9290 Central counter: 9291 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 Reboot! T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 3 : 9292 T 3 : 9292 T 3 : 9292 T 4 : 9293 T 4 : 9293 T 5 : 9294 10

  17. What we did Central counter: 9294 Central counter: 1 Central counter: 9295 Central counter: 2 Central counter: 9292 Central counter: 9290 Central counter: 9293 Central counter: 9291 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 3 : 9292 T 3 : 9292 T 3 : 9292 T 3 : 9292 1 T 4 : 9293 T 4 : 9293 T 4 : 9293 T 5 : 9294 T 5 : 9294 T 6 : 1 10

  18. What we did Central counter: 9294 Central counter: 1 Central counter: 9295 Central counter: 2 Central counter: 3 Central counter: 9292 Central counter: 9293 Central counter: 9290 Central counter: 9291 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 3 : 9292 T 3 : 9292 T 3 : 9292 T 3 : 9292 T 3 : 9292 2 T 4 : 9293 T 4 : 9293 T 4 : 9293 T 4 : 9293 T 5 : 9294 T 5 : 9294 T 5 : 9294 T 6 : 1 T 6 : 1 T 7 : 2 10

  19. What we did Central counter: 9292 Central counter: 3 Central counter: 2 Central counter: 9294 Central counter: 1 Central counter: 9295 Central counter: 9290 Central counter: 9291 Central counter: 4 Central counter: 9293 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 1 : 9290 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 2 : 9291 T 3 : 9292 T 3 : 9292 T 3 : 9292 T 3 : 9292 T 3 : 9292 T 3 : 9292 3 T 4 : 9293 T 4 : 9293 T 4 : 9293 T 4 : 9293 T 4 : 9293 T 5 : 9294 T 5 : 9294 T 5 : 9294 T 5 : 9294 T 6 : 1 T 6 : 1 T 6 : 1 T 7 : 2 T 7 : 2 T 8 : 3 10

  20. What we did probed router interfaces to infer outage windows using IPID T 1 : 9290 T 2 : 9291 T 3 : 9292 T 4 : 9293 Outage 
 T 5 : 9294 Window T 6 : 1 T 7 : 2 T 8 : 3 Infer a reboot when time series of values returned from a router is discontinuous, indicating router was restarted 11

  21. Why IPv6 fragment IDs? • IPv4 Fragment IDs: - 16 bits, bursty velocity : every packet requires unique ID - At 100Mbps and 1500 byte packets, Nyquist rate dictates 
 4 second probing interval • IPv6 Fragment IDs: - 32 bits, low velocity : IPv6 routers rarely send fragments - We average 15 minute probing interval 12

  22. What we did correlated routers with prefixes 
 using traceroute paths 13

  23. What we did 2001:db8:2::/48 Ark VP correlated routers with prefixes 
 using traceroute paths 50-60 Ark VPs traceroute every 
 routed IPv6 
 2001:db8:1::/48 prefix every day Ark VP 14

  24. What we did 2001:db8:2::/48 Ark VP correlated routers with prefixes 
 using traceroute paths 50-60 Ark VPs traceroute every 
 routed IPv6 
 2001:db8:1::/48 prefix every day Ark VP 14

  25. What we did 2001:db8:2::/48 Ark VP computed distance of 
 router from AS announcing 
 network 0 (CE) 2 1 
 (PE) CE: Customer Edge 
 2001:db8:1::/48 PE: Provider Edge 15

  26. What we did 2001:db8:2::/48 correlated router outage windows 
 with BGP control plane 0 (CE) 2001:db8:1::/48 16

  27. What we did 2001:db8:2::/48 correlated router outage windows 
 with BGP control plane T 1 : 9290 T 2 : 9291 T 3 : 9292 T 4 : 9293 Outage 
 T 5 : 9294 Window T 6 : 1 T 7 : 2 T 8 : 3 2001:db8:1::/48 17

  28. What we did 2001:db8:2::/48 correlated router outage windows 
 with BGP control plane RouteViews T 1 : 9290 2001:db8:2::/48 T 2 : 9291 T 5.2 : Peer-1 W T 3 : 9292 T 5.2 : Peer-2 W T 4 : 9293 T 5.3 : Peer-3 W Outage 
 T 5 : 9294 T 5.3 : Peer-4 W Window T 6 : 1 T 5.8 : Peer-3 A T 7 : 2 T 5.8 : Peer-2 A T 8 : 3 T 5.8 : Peer-1 A 2001:db8:1::/48 T 5.8 : Peer-4 A 18

  29. What we did classified impact on BGP according to observed activity 
 overlapping with inferred outage • Complete Withdrawal : all peers simultaneously withdrew route for at least 70 seconds - Single Point of Failure ( SPoF ) • Partial Withdrawal : at least one peer withdrew route for at least 70 seconds, but not all did • Churn : BGP activity for the prefix • No Impact : No observed BGP activity for the prefix 19

  30. What we did Data Collection Summary • Probed IPv6 routers at ~15 minute intervals from 
 18 Jan 2015 to 30 May 2017 (approx. 2.5 years) • 149,560 routers allowed reboots to be detected • We inferred 59,175 (40%) rebooted at least once,750K reboots in total 1 0.8 0.6 CDF 0.4 0.2 0 1 10 100 Number of Outages 20

  31. What we found • 2,385 (4%) of routers that rebooted (59K) we inferred to be SPoF for at least one IPv6 prefix in BGP • Of SPoF routers, we inferred 59% to be customer edge router; 8% provider edge; 29% within destination AS • No covering prefix for 70% of withdrawn prefixes - During one-week sample, covering prefix presence during withdrawal did not imply data plane reachability • IPv6 Router reboots correlated with IPv4 BGP control plane activity 21

  32. Limitations • Applicability to IPv4 depends on router being dual-stack • Requires IPID assigned from a counter - Cisco, Huawei, Vyatta, Microtik, HP assign from counter - 27.1% responsive for 14 days assigned from counter • Router outage might end before all peers withdraw route - Path exploration + Minimum Route Advertisement Interval (MRAI) + Route Flap Dampening (RFD) • Complex events: multiple router outages but one detected - We observed some complex events and filtered them out 22

  33. Validation Reboots SPoF ✔ ✔ Network ? ? ✘ ✘ US University 7 0 8 7 0 8 US R&E backbone #1 2 0 3 3 2 0 US R&E backbone #2 3 0 1 0 0 4 NZ R&E backbone 11 0 22 4 2 27 Total: 23 0 34 14 4 39 ✔ = Validated Inference 
 ✘ = Incorrect Inference ? = Not Validated 23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

ITC-21 IGen: Generation of Router-level Internet Topologies Using Network Design Heuristics B.

ITC-21 IGen: Generation of Router-level Internet Topologies Using Network Design Heuristics B.

ITC-21 IGen: Generation of Router-level Internet Topologies Using Network Design Heuristics B. Quoitin , V. Van den Schrieck, P. Franois and O. Bonaventure (bruno.quoitin@uclouvain.be) 1 (C) 2009, B. Quoitin, UCLouvain, Belgium 1 ITC-21,

448 views • 16 slides
Router Virtualization for Improving IP-level Resilience Jnos Tapolcai, Gbor Rtvri

Router Virtualization for Improving IP-level Resilience Jnos Tapolcai, Gbor Rtvri

Router Virtualization for Improving IP-level Resilience Jnos Tapolcai, Gbor Rtvri MTA-BME Future Internet Research Group High Speed Networks Laboratory Department of Telecommunications and Media Informatics Budapest University of

419 views • 21 slides
Understanding Router-level Topology: Principles, Models, and Validation David Alderson

Understanding Router-level Topology: Principles, Models, and Validation David Alderson

Understanding Router-level Topology: Principles, Models, and Validation David Alderson California Institute of Technology ISMA Workshop on Internet Topology May 10, 2006 Acknowledgments Primary Coauthors John Doyle (Caltech) Walter

796 views • 66 slides
Motivation Measuring the Internet is hard Significant previous work on Router and

Motivation Measuring the Internet is hard Significant previous work on Router and

Internet Inter-Domain Traffic Craig Labovitz, Scott Iekel-Johnson, Danny McPherson Arbor Networks Jon Oberheide, Farnam Jahanian University of Michigan Motivation Measuring the Internet is hard Significant previous work on Router and

503 views • 19 slides
Detecting outages with telemetry Alessio Placitelli - @dexterp37 June 16th - Internet

Detecting outages with telemetry Alessio Placitelli - @dexterp37 June 16th - Internet

Detecting outages with telemetry Alessio Placitelli - @dexterp37 June 16th - Internet Measurement Village 2020 Italy, March 11th - 2020 Tales from a mid-pandemic network outage Public 2 ...failure on a foreign network... Source :

591 views • 29 slides
Analysis of Country-wide Internet Outages Caused by Censorship Alberto Dainotti - alberto@unina.it

Analysis of Country-wide Internet Outages Caused by Censorship Alberto Dainotti - alberto@unina.it

CAIDA Workshop on BGP and Traceroute data August 22nd, 2011- San Diego (CA), USA Analysis of Country-wide Internet Outages Caused by Censorship Alberto Dainotti - alberto@unina.it University of Napoli Federico II These slides are based on

339 views • 18 slides
Communication security over the Internet The big picture Me Internet Resource Internet

Communication security over the Internet The big picture Me Internet Resource Internet

Communication security over the Internet The big picture Me Internet Resource Internet Server Client Attack vectors MAN DNS LAN Client Internet Back Bone Router Networking WWW overview MITM (Man In The Middle) 3 2 4 5 LAN

244 views • 23 slides
CNC Router What is it good for? About the CNC Full name is CNC Router but is shortened to CNC

CNC Router What is it good for? About the CNC Full name is CNC Router but is shortened to CNC

CNC Router What is it good for? About the CNC Full name is CNC Router but is shortened to CNC CNC stands for Computer Numeric Controlled (Router) Very Expensive Can only be used with proper training Trumans favorite

534 views • 7 slides
Online Security Michael Hutchinson My First line of Defense Making Things Secure Router

Online Security Michael Hutchinson My First line of Defense Making Things Secure Router

Online Security Michael Hutchinson My First line of Defense Making Things Secure Router Security Anti-Malware Programs Browser Security Internet Searching Router Security Router is First Line of Defense Router typically

472 views • 23 slides
H3C SR8800 Series 10G Core Router Technology Analysis Date 2008-3-23 Secret level Public

H3C SR8800 Series 10G Core Router Technology Analysis Date 2008-3-23 Secret level Public

H3C SR8800 Series 10G Core Router Technology Analysis Date 2008-3-23 Secret level Public Hangzhou H3C Technologies Co., Ltd. Catalog Core Router Development Tendency H3C SR8800 Overview H3C SR8800 Technical Characteristics

1.12k views • 90 slides
The Shape of the Internet Slides assembled by Jeff Chase Duke University (thanks to Vishal

The Shape of the Internet Slides assembled by Jeff Chase Duke University (thanks to Vishal

The Shape of the Internet Slides assembled by Jeff Chase Duke University (thanks to Vishal Misra and C. Faloutsos) The Shape of the Network Characterizing shape: AS-level topology: who connects to whom Router-level topology:

471 views • 33 slides
Agenda Topology Discovery Background Limitations using mrinfo-rec A new probing tool:

Agenda Topology Discovery Background Limitations using mrinfo-rec A new probing tool:

MERLIN Measure the Router Level of the INternet Pascal Mrindol, Benoit Donnet, Jean-Jacques Pansiot, Matthew Luckie, Young Hyun Kaiserslautern - June 2011 Next Generation Internet 2011 Agenda Topology Discovery Background Limitations

414 views • 9 slides
CS 457 Networking and the Internet Fall 2016 Router Construction Workstation-Based

CS 457 Networking and the Internet Fall 2016 Router Construction Workstation-Based

10/5/16 CS 457 Networking and the Internet Fall 2016 Router Construction Workstation-Based Aggregate bandwidth 1/2 of the I/O bus bandwidth capacity shared among all hosts connected to switch example: 800Mbps bus can support

390 views • 15 slides
Wireless Router at Home 192.168.1.2 192.168.1.1 Modem 192.168.1.3 120.6.46.15 telephone line

Wireless Router at Home 192.168.1.2 192.168.1.1 Modem 192.168.1.3 120.6.46.15 telephone line

Wireless Router at Home 192.168.1.2 192.168.1.1 Modem 192.168.1.3 120.6.46.15 telephone line to ISP 192.168.1.5 192.168.1.4 Internet connection with public IP internal LAN with private IPs Wireless All-in-one Router at Home 192.168.1.2

326 views • 18 slides
Experiencing a new Internet Architecture Adrian Perrig, Network Security Group The Internet is on

Experiencing a new Internet Architecture Adrian Perrig, Network Security Group The Internet is on

Experiencing a new Internet Architecture Adrian Perrig, Network Security Group The Internet is on Fire! Lack of sovereignty Frequent outages https://downdetector.com Constant DDoS attacks https://www.digitalattackmap.com

730 views • 48 slides
Priority Queues Implementations An internet router receives data packets, and forwards them in

Priority Queues Implementations An internet router receives data packets, and forwards them in

CS206 CS206 Priority Queues Implementations An internet router receives data packets, and forwards them in The abstract data type Priority Queue provides three main the direction of their destination. When the line is busy, methods: packets

223 views • 5 slides
WINDOW TWO EFInA Innovation Grant Round 6: Digital Financial Services for Women Landscape of

WINDOW TWO EFInA Innovation Grant Round 6: Digital Financial Services for Women Landscape of

WINDOW TWO EFInA Innovation Grant Round 6: Digital Financial Services for Women Landscape of Womens Financial Inclusion in Nigeria Content A. Analysis of Adult Women vs. Men B. Overview of the Adult Female Population C. Analysis of

1.1k views • 43 slides
Cannabis Regulation Commission Thursday, October 24, 2019 OVERVIEW Citys Commercial

Cannabis Regulation Commission Thursday, October 24, 2019 OVERVIEW Citys Commercial

Cannabis Regulation Commission Thursday, October 24, 2019 OVERVIEW Citys Commercial Cannabis Licensing and Regulatory Program Phase 3 Retail Round 1 Social Equity Program Proposed Legislative Policy Licensing & Regulatory

869 views • 49 slides
Telson Mining Corporation A new Multi- Mine Producer in Mexico TSX.V: TSN OTCBB: SOHFF

Telson Mining Corporation A new Multi- Mine Producer in Mexico TSX.V: TSN OTCBB: SOHFF

Telson Mining Corporation A new Multi- Mine Producer in Mexico TSX.V: TSN OTCBB: SOHFF FSE: TSGN Forward Looking Statements Cautionary Note Regarding Production Decisions and ForwardLooking Statements: Statements contained in this

515 views • 34 slides
Decision on Authorization for Filing FERC Order No. 890 Transmission Planning Process Gary

Decision on Authorization for Filing FERC Order No. 890 Transmission Planning Process Gary

Decision on Authorization for Filing FERC Order No. 890 Transmission Planning Process Gary DeShazo, Director of Regional Transmission - North Board of Governors Meeting General Session December 12-13, 2007 Order No. 890 Transmission Planning

327 views • 6 slides
Division of School Finance and Operations Panel Discussion CAS BO April 5, 2018 Agenda

Division of School Finance and Operations Panel Discussion CAS BO April 5, 2018 Agenda

Division of School Finance and Operations Panel Discussion CAS BO April 5, 2018 Agenda 11:15 12:30 The Colorado Department of Education will be giving updates in several different disciplines. This session will be a panel

692 views • 66 slides
MMLGs Phase 3 Cannabis Workshop Disclaimer The materials available at this presentation are

MMLGs Phase 3 Cannabis Workshop Disclaimer The materials available at this presentation are

MMLGs Phase 3 Cannabis Workshop Disclaimer The materials available at this presentation are for informational purposes only and not for the purpose of providing legal advice. You should contact your attorney to obtain advice with respect to

251 views • 22 slides
November 2, 2017 I. About Bonotel Exclusive Travel & Receptive Operators Our Unmatched

November 2, 2017 I. About Bonotel Exclusive Travel & Receptive Operators Our Unmatched

Oregon Tour & Travel Alliance Receptive Tour Operator Workshop November 2, 2017 I. About Bonotel Exclusive Travel & Receptive Operators Our Unmatched Offering Of Luxury Hotels in Addition to Our Global Network of Top Customers Allows Us

557 views • 20 slides
HMS Next Steps Post-Referendum Community Data May 23, 2016 Survey Notes Phone survey

HMS Next Steps Post-Referendum Community Data May 23, 2016 Survey Notes Phone survey

HMS Next Steps Post-Referendum Community Data May 23, 2016 Survey Notes Phone survey window: April 28 - May 13, 2016 Online survey window: May 2 - May 18, 2016 Notes regarding online data reliability Notes regard

248 views • 24 slides

More recommend