SEEDING CLOUD-BASED SERVICES: DISTRIBUTED RATE LIMITING (DRL) Kevin Webb, Barath Raghavan, Kashi Vishwanath, Sriram Ramabhadran, Kenneth Yocum, and Alex.

Slides:

Advertisements

Similar presentations

Network II.5 simulator ..

Advertisements

VINI Overview. PL-VINI: Prototype on PlanetLab PlanetLab: testbed for planetary-scale services Simultaneous experiments in separate VMs –Each has root.

Seungmi Choi PlanetLab - Overview, History, and Future Directions - Using PlanetLab for Network Research: Myths, Realities, and Best Practices.

PlanetLab: An Overlay Testbed for Broad-Coverage Services Bavier, Bowman, Chun, Culler, Peterson, Roscoe, Wawrzoniak Presented by Jason Waddle.

SDN Controller Challenges

Alex Cheung and Hans-Arno Jacobsen August, 14 th 2009 MIDDLEWARE SYSTEMS RESEARCH GROUP.

COS 461 Fall 1997 Routing COS 461 Fall 1997 Typical Structure.

Barath Raghavan, Kashi Vishwanath, Sriram Ramabhadran, Kenneth Yocum, Alex C. Snoeren Defense: Rejaie Johnson, Xian Yi Teng.

Cloud Control with Distributed Rate Limiting Raghaven et all Presented by: Brian Card CS Fall Kinicki 1.

Managing Cloud Resources: Distributed Rate Limiting Alex C. Snoeren Kevin Webb, Bhanu Chandra Vattikonda, Barath Raghavan, Kashi Vishwanath, Sriram Ramabhadran,

Cloud Control with Distributed Rate Limiting Barath Raghavan, Kashi Vishwanath, Sriram Ramabhadran, Kenneth Yocum, and Alex C. Snoeren University of California,

Impala: A Middleware System for Managing Autonomic, Parallel Sensor Systems Ting Liu and Margaret Martonosi Princeton University.

PlanetLab Operating System support* *a work in progress.

1 PlanetLab: A globally distributed testbed for New and Disruptive Services CS441 Mar 15th, 2005 Seungjun Lee

PlanetLab: Present and Future Steve Muir 3rd August, 2005 (slides taken from Larry Peterson)

Xen , Linux Vserver , Planet Lab

Cache Coherent Distributed Shared Memory. Motivations Small processor count –SMP machines –Single shared memory with multiple processors interconnected.

Suphakit Awiphan, Takeshi Muto, Yu Wang, Zhou Su, Jiro Katto

Extensible Networking Platform IWAN 2005 Extensible Network Configuration and Communication Framework Todd Sproull and John Lockwood

1 In VINI Veritas: Realistic and Controlled Network Experimentation Jennifer Rexford with Andy Bavier, Nick Feamster, Mark Huang, and Larry Peterson

Internet Networking Spring 2006 Tutorial 12 Web Caching Protocols ICP, CARP.

Extensible Scalable Monitoring for Clusters of Computers Eric Anderson U.C. Berkeley Summer 1997 NOW Retreat.

1 DISTRIBUTED SYSTEMS Principles and Paradigms Second Edition ANDREW S. TANENBAUM MAARTEN VAN STEEN Chapter 3 Processes Skip

An Overlay Data Plane for PlanetLab Andy Bavier, Mark Huang, and Larry Peterson Princeton University.

Improving Robustness in Distributed Systems Jeremy Russell Software Engineering Honours Project.

1 PLuSH – Mesh Tree Fast and Robust Wide-Area Remote Execution Mikhail Afanasyev ‧ Jose Garcia ‧ Brian Lum.

Cloud Control with Distributed Rate Limiting Barath Raghavan, Kashi Vishwanath Sriram Ramabhadran, Kenneth Yocum & Alex C.Snoeren Offence: Alex Kiaie &

Network Monitoring for Internet Traffic Engineering Jennifer Rexford AT&T Labs – Research Florham Park, NJ 07932

Peter A. Steenkiste, CMCL, CMU 1 The Darwin Router Control Interface Peter Steenkiste, Jun Gao, Prashant Chandra, Eduardo Takahashi Computer Science Department.

Multicast Security CS239 Advanced Network Security April 16 th, 2003 Yuken Goto.

Internet Relay Chat Chandrea Dungy Derek Garrett #29.

Presenter: Chi-Hung Lu 1. Problems Distributed applications are hard to validate Distribution of application state across many distinct execution environments.

Computer Networks Layering and Routing Dina Katabi

FIREWALL TECHNOLOGIES Tahani al jehani. Firewall benefits  A firewall functions as a choke point – all traffic in and out must pass through this single.

Network Topologies.

Penetration Testing Security Analysis and Advanced Tools: Snort.

Tanenbaum & Van Steen, Distributed Systems: Principles and Paradigms, 2e, (c) 2007 Prentice-Hall, Inc. All rights reserved DISTRIBUTED.

Institute of Computer and Communication Network Engineering OFC/NFOEC, 6-10 March 2011, Los Angeles, CA Lessons Learned From Implementing a Path Computation.

1 Enabling Large Scale Network Simulation with 100 Million Nodes using Grid Infrastructure Hiroyuki Ohsaki Graduate School of Information Sci. & Tech.

Implementation and Performance Analysis of a Delay Based Packet Scheduling Algorithm for an Embedded Open Source Router Master’s Thesis Presentation June.

Adaptive software in cloud computing Marin Litoiu York University Canada.

Eric Keller, Evan Green Princeton University PRESTO /22/08 Virtualizing the Data Plane Through Source Code Merging.

Module 7: Fundamentals of Administering Windows Server 2008.

Module 12: Routing Fundamentals. Routing Overview Configuring Routing and Remote Access as a Router Quality of Service.

1 Next Few Classes Networking basics Protection & Security.

1.4 Open source implement. Open source implement Open vs. Closed Software Architecture in Linux Systems Linux Kernel Clients and Daemon Servers Interface.

Intel IT Overlay Jeff Sedayao PlanetLab Workshop at HPLABS May 11, 2006.

Tony McGregor RIPE NCC Visiting Researcher The University of Waikato DAR Active measurement in the large.

Computing Infrastructure for Large Ecommerce Systems -- based on material written by Jacob Lindeman.

Running large scale experimentation on Content-Centric Networking via the Grid’5000 platform Massimo GALLO (Bell Labs, Alcatel - Lucent) Joint work with:

Load-Balancing Routing in Multichannel Hybrid Wireless Networks With Single Network Interface So, J.; Vaidya, N. H.; Vehicular Technology, IEEE Transactions.

Performance Validation of Mobile IP Wireless Networks Presented by Syed Shahzad Ali Advisor Dr. Ravi Pendse.

Module 10: Windows Firewall and Caching Fundamentals.

Globus and PlanetLab Resource Management Solutions Compared M. Ripeanu, M. Bowman, J. Chase, I. Foster, M. Milenkovic Presented by Dionysis Logothetis.

Module 9 Planning and Implementing Monitoring and Maintenance.

Computer Simulation of Networks ECE/CSC 777: Telecommunications Network Design Fall, 2013, Rudra Dutta.

1.4 Open source implement. Open source implement Open vs. Closed Software Architecture in Linux Systems Linux Kernel Clients and Daemon Servers Interface.

SPI NIGHTLIES Alex Hodgkins. SPI nightlies  Build and test various software projects each night  Provide a nightlies summary page that displays all.

LACSI 2002, slide 1 Performance Prediction for Simple CPU and Network Sharing Shreenivasa Venkataramaiah Jaspal Subhlok University of Houston LACSI Symposium.

G. Russo, D. Del Prete, S. Pardi Kick Off Meeting - Isola d'Elba, 2011 May 29th–June 01th A proposal for distributed computing monitoring for SuperB G.

01/27/10 What is PlanetLab? A planet-wide testbed for the R & D of network applications and distributed computing Over 1068 nodes at 493 sites, primarily.

The DPIaaS Controller Prototype

Architecture and Algorithms for an IEEE 802

An IP-based multimedia traffic generator

NOX: Towards an Operating System for Networks

Computer Simulation of Networks

DDoS Attack Detection under SDN Context

ExaO: Software Defined Data Distribution for Exascale Sciences

Computer Science Division

Virtual LAN (VLAN).

Presentation transcript:

SEEDING CLOUD-BASED SERVICES: DISTRIBUTED RATE LIMITING (DRL) Kevin Webb, Barath Raghavan, Kashi Vishwanath, Sriram Ramabhadran, Kenneth Yocum, and Alex C. Snoeren

Seeding the Cloud Technologies to deliver on the promise cloud computing Previously: Process data in the cloud (Mortar)  Produced/stored across providers  Find Ken Yocum or Dennis Logothetis for more info Today: Control resource usage: “cloud control” with DRL  Use resources at multiple sites (e.g., CDN)  Complicates resource accounting and control  Provide cost control

DRL Overview  Example: Cost control in a Content Distribution Network  Abstraction: Enforce global rate limit across multiple sites  Simple example: 10 flows, each limited as if there was a single, central limiter SrcDst Limiter SrcDst Limiter SrcDst Limiter DRL 10 flows 2 flows 8 flows 20 KB/s 100 KB/s 80 KB/s

Goals & Challenges  Up to now  Develop architecture and protocols for distributed rate limiting (SIGCOMM 07)  Particular approach (FPS) is practical in the wide area  Current goals:  Move DRL out of the lab and impact real services  Validate SIGCOMM results in real-world conditions  Provide Internet testbed with ability to manage bandwidth in a distributed fashion Improve usability of PlanetLab  Challenges  Run-time overheads: CPU, memory, communication  Environment: link/node failures, software quirks

PlanetLab  World-wide test bed  Networking and systems research  Resources donated by Universities, Labs, etc.  Experiments divided into VMs called “slices” (Vservers) PostgreSQL PLC APIWeb server Linux 2.6 Internet Controller Vservers Slice 1 Linux 2.6 Slice 2 Slice N Vservers Slice 1 Linux 2.6 Slice 2 Slice N Nodes

PlanetLab Use Cases  PlanetLab needs DRL!  Donated bandwidth  Ease of administration  Machine room  Limit local-area nodes to a single rate  Per slice  Limit experiments in the wide area  Per organization  Limit all slices belonging to an organization

PlanetLab Use Cases  Machine room  Limit local-area nodes with a single rate 1 MBps DRL 5 MBps

DRL Design  Each limiter - main event loop  Estimate: Observe and record outgoing demand  Allocate: Determine rate share of each node  Enforce: Drops packets  Two allocation approaches  GRD: Global random drop (packet granularity)  FPS: Flow proportional share Flow count as proxy for demand Input Traffic Output traffic Estimate Allocate Enforce Regular Interval Other Limiters FPS

Implementation Architecture  Abstractions  Limiter Communication Manages identities  Identity Parameters (limit, interval, etc.) Machines and Subsets  Built upon standard Linux tools…  Userspace packet logging (Ulogd)  Hierarchical Token Bucket  Mesh & gossip update protocols  Integrated with PlanetLab software Input Data Output Data Estimate FPS Enforce Regular Interval Ulogd HTB

Estimation using ulogd  Userspace logging daemon  Already used by PlanetLab for efficient abuse tracking  Packets tagged with slice ID by IPTables  Receives outgoing packet headers via netlink socket  DRL implemented as ulogd plug-in  Gives us efficient flow accounting for estimation  Executes the Estimate, Allocate, Enforce loop  Communicates with other limiters

Enforcement with Hierarchical Token Bucket  Linux Advanced Routing & Traffic Control  Hierarchy of rate limits  Enforces DRL’s rate limit  Packets attributed to leaves (slices)  Packets move up, borrowing from parents B C D Y Z A XRoot Packet (1500b) 1000b 100b 600b Packet (1500) 0b 200b

Enforcement with Hierarchical Token Bucket  Uses same tree structure as PlanetLab  Efficient control of sub-trees  Updated every loop  Root limits whole node  Replenish each level B C D Y Z A XRoot

Citadel Site  The Citadel (2 nodes)  Wanted 1 Mbps traffic limit  Added (horrible) traffic shaper  Poor responsiveness (2 – 15 seconds)  Running right now!  Cycles on and off every four minutes Observe DRL’s impact without ground truth Shaper DRL

Citadel Results – Outgoing Traffic  Data logged from running nodes  Takeaways:  Without DRL, way over limit  One node sending more than other Time Outgoing Traffic 1Mbit/s On Off

Citadel Results – Flow Counts Time # of Flows  FPS uses flow count as proxy for demand

Citadel Results – Limits and Weights Time Rate Limit FPS Weight

Lessons Learned  Flow counting is not always the best proxy for demand  FPS state transitions were irregular  Added checks and dampening/hysteresis in problem cases  Can estimate after enforce  Ulogd only shows packets after HTB  FPS is forgiving to software limitations  HTB is difficult  HYSTERESIS variable  TCP Segmentation offloading

Ongoing work  Other use cases  Larger-scale tests  Complete PlanetLab administrative interface  Standalone version  Continue DRL rollout on PlanetLab  UCSD’s PlanetLab nodes soon

Questions?  Code is available from PlanetLab svn 

Citadel Results