Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Problems and Solutions in Enterprise Network Control: Motivations for a 4D Architecture David A. Maltz Microsoft Research Joint work with Albert Greenberg,

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Problems and Solutions in Enterprise Network Control: Motivations for a 4D Architecture David A. Maltz Microsoft Research Joint work with Albert Greenberg,"— Presentation transcript:

1 1 Problems and Solutions in Enterprise Network Control: Motivations for a 4D Architecture David A. Maltz Microsoft Research Joint work with Albert Greenberg, Gisli Hjalmtysson Andy Myers, Jennifer Rexford, Geoffrey Xie, Hong Yan, Jibin Zhan, Hui Zhang

2 2 Isolation, VLANs, and the Spaghetti that Results Network designers want to deal in groups –Collect users/host into group –Measure, restrict/permit, QoS, a group’s traffic Routing designs to do this are horribly complicated –VLANs –Clever IP address assignment –Packet filters everywhere Let the designers configure policy in terms of groups Shouldn’t have to worry about L2/L3 etc.

3 3 Device Configuration is a Nightmare interface Ethernet0 ip address 6.2.5.14 255.255.255.128 interface Serial1/0.5 point-to-point ip address 6.2.2.85 255.255.255.252 ip access-group 143 in frame-relay interface-dlci 28 router ospf 64 redistribute connected subnets redistribute bgp 64780 metric 1 subnets network 66.251.75.128 0.0.0.127 area 0 router bgp 64780 redistribute ospf 64 match route-map 8aTzlvBrbaW neighbor 66.253.160.68 remote-as 12762 neighbor 66.253.160.68 distribute-list 4 in access-list 143 deny 1.1.0.0/16 access-list 143 permit any route-map 8aTzlvBrbaW deny 10 match ip address 4 route-map 8aTzlvBrbaW permit 20 match ip address 7 ip route 10.2.2.1/16 10.2.1.7

4 4 Device Configuration is a Nightmare Thousands of lines of configuration Make a configuration mistake, router becomes unreachable over the network Want zero device-specific configuration

5 5 Network Designers Want “Simple” Things (But Achieving Them is Incredibly Hard) Data Center Infrastructure Servers

6 6 Network Designers Want “Simple” Things (But Achieving Them is Incredibly Hard) Support customized responses Enable designers to express desired behaviors

7 7 Embrace Heterogeneity or Die! No two router versions have the same capabilities –That’s why they have different version #s Device vendors add features to differentiate their products –No one wants to be made a commodity Management/control systems that treat devices as generic are doomed to be stillborn Must make use of new features that vendors innovate Common format for configuration state - okay One-size-fits all logic computing that state – not okay

8 8 Good Abstractions Reduce Complexity All decision making logic lifted out of control plane Routers no longer run routing protocols Dissemination plane provides robust communication to/from data plane switches Management Plane Control Plane Data Plane Decision Plane Dissemination Data Plane Configs FIBs, ACLs

9 9 A Clean-Slate Approach: The 4D Architecture Routing Table Access Control Table NAT Table Tunnel Table Decision Plane Generating table entries Data Plane Modeled as a set of tables Install table entries Discovery Plane Dissemination Plane

10 10 Using the 4D Architecture Install a security key on each device Connect them together Connect Decision Elements Example network with 49 switches and 5 DEs

11 11 Does it work? Yes. 4D designed so performance can be predicted Recovers from single link failure in < 120 ms –< 1 s response considered “excellent” –Faster forwarding reconvergence possible Survives failure of master Decision Element –New DE takes control within 170 ms –No disruption unless second fault occurs Gracefully handles complete network partitions –Less than 170 ms of outage –At no point did two DEs attempt to master the same switch

12 12 4D Enables Customized Decision Logic Example also illustrates the 4D controlling both L2 and L3 (Ethernet and IP)

13 13 Tying the Hosts and Users Back Into the Network 4D gets us back to every Ethernet jack on the wall is the same –Now how to differentiate them based on what user/hosts connects? Extend 4D into the hosts (a little bit) 4D creates paths between newly connected hosts and authentication server (DHCP/DC/BRAS) Hosts bootstrap, users login Discovery Plane finds the new host Routes pushed to switches DNS/printer/IPSEC policies/etc pushed to host

14 14 4D as the Framework for Network Control (?) Decision Plane must be modular/extensible –Isolation: each group specifies the decision logic used to control traffic among the group –Device heterogeneity: vendor ships decision logic that leverages their cool new feature along with the router Grand Vision: 4D must arbitrate access to resources Different decision logics may output conflicting state The operating system for the network Step 1: 4D is the easiest framework in which to implement cool routing/control ideas What Click did for routers, 4D should do for the network

15 15 Backup Slides

16 16

17 17

18 18 Simple Questions Should switches/routers be in the same address space as end hosts? –End hosts hack into routers? Communication channel for control and management –Operational when data channel fails?

19 19 Routers Serve Different Functions

Download ppt "1 Problems and Solutions in Enterprise Network Control: Motivations for a 4D Architecture David A. Maltz Microsoft Research Joint work with Albert Greenberg,"

Similar presentations

David A. Maltz Carnegie Mellon University/Microsoft Research

David A. Maltz Carnegie Mellon University/Microsoft Research
MPLS VPN.

MPLS VPN.
Route Optimisation RD-CSY3021.

Route Optimisation RD-CSY3021.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 4: Routing Concepts Routing Protocols.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 4: Routing Concepts Routing Protocols.
Logically Centralized Control Class 2. Types of Networks ISP Networks – Entity only owns the switches – Throughput: 100GB-10TB – Heterogeneous devices:

Logically Centralized Control Class 2. Types of Networks ISP Networks – Entity only owns the switches – Throughput: 100GB-10TB – Heterogeneous devices:
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
11 TROUBLESHOOTING Chapter 12. Chapter 12: TROUBLESHOOTING2 OVERVIEW  Determine whether a network communications problem is related to TCP/IP.  Understand.

11 TROUBLESHOOTING Chapter 12. Chapter 12: TROUBLESHOOTING2 OVERVIEW  Determine whether a network communications problem is related to TCP/IP.  Understand.
Understanding and Mitigating the Complexity in Network Configuration and Management Aditya Akella UW-Madison Joint work with Theo Benson (UW-Madison) and.

Understanding and Mitigating the Complexity in Network Configuration and Management Aditya Akella UW-Madison Joint work with Theo Benson (UW-Madison) and.
SDN and Openflow.

SDN and Openflow.
Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung(1203584897) SriramGopinath(1203800749)

Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung( ) SriramGopinath( )
Policy Based Routing using ACL & Route Map By Group 7 Nischal (304360958) Pranali (304378534)

Policy Based Routing using ACL & Route Map By Group 7 Nischal ( ) Pranali ( )
WXES2106 Network Technology Semester 1 2004/2005 Chapter 10 Access Control Lists CCNA2: Module 11.

WXES2106 Network Technology Semester /2005 Chapter 10 Access Control Lists CCNA2: Module 11.
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
August, 2006 Usenix Security 2006 SANE: Addressing the Protection Problem in Enterprise Networks Martin Casado Tal Garfinkel Michael Freedman Aditya Akaella.

August, 2006 Usenix Security 2006 SANE: Addressing the Protection Problem in Enterprise Networks Martin Casado Tal Garfinkel Michael Freedman Aditya Akaella.
A Routing Control Platform for Managing IP Networks Jennifer Rexford Princeton University

A Routing Control Platform for Managing IP Networks Jennifer Rexford Princeton University
Tesseract A 4D Network Control Plane

Tesseract A 4D Network Control Plane
© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—4-1 Implement an IPv4-Based Redistribution Solution Assessing Network Routing Performance and.

© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—4-1 Implement an IPv4-Based Redistribution Solution Assessing Network Routing Performance and.
1 Network-wide Decision Making: Toward a Wafer-thin Control Plane Jennifer Rexford, Albert Greenberg, Gisli Hjalmtysson ATT Labs Research David A. Maltz,

1 Network-wide Decision Making: Toward a Wafer-thin Control Plane Jennifer Rexford, Albert Greenberg, Gisli Hjalmtysson ATT Labs Research David A. Maltz,

Similar presentations

Ads by Google