DARPA NMS PI Meeting November 14, 2002 Understanding BGP in Action Dan Massey USC/ISI.

Slides:

Advertisements

Similar presentations

ABSTRACT Due to the Internets sheer size, complexity, and various routing policies, it is difficult if not impossible to locate the causes of large volumes.

Advertisements

Secure Routing Panel FIND PI Meeting (June 27, 2007) Morley Mao, Jen Rexford, Xiaowei Yang.

Routing Convergence and the Impact of Scale Dan Massey Colorado State University.

The Impact of Policy and Topology on Internet Routing Convergence NANOG 20 October 23, 2000 Abha Ahuja InterNap *In collaboration with.

Understanding the Impact of Route Reflection in Internal BGP Ph.D. Final Defense presented by Jong Han (Jonathan) Park July 15 th,

Locating Prefix Hijackers using LOCK Tongqing Qiu +, Lusheng Ji *, Dan Pei * Jia Wang *, Jun (Jim) Xu +, Hitesh Ballani ++ + College of Computing, Georgia.

Comparing IPv4 and IPv6 from the perspective of BGP dynamic activity Geoff Huston APNIC February 2012.

Part IV: BGP Routing Instability. March 8, BGP routing updates  Route updates at prefix level  No activity in “steady state”  Routing messages.

Advanced Networks 1. Delayed Internet Routing Convergence 2. The Impact of Internet Policy and Topology on Delayed Routing Convergence.

BGP Multiple Origin AS (MOAS) Conflict Analysis Xiaoliang Zhao, NCSU S. Felix Wu, UC Davis Allison Mankin, Dan Massey, USC/ISI Dan Pei, Lan Wang, Lixia.

DSN 2003 A Study of Packet Delivery Performance during Routing Convergence Dan Pei, Lan Wang, Lixia Zhang, UCLA Dan Massey, USC/ISI S. Felix Wu, UC Davis.

Consensus Routing: The Internet as a Distributed System John P. John, Ethan Katz-Bassett, Arvind Krishnamurthy, and Thomas Anderson Presented.

1 BGP Anomaly Detection in an ISP Jian Wu (U. Michigan) Z. Morley Mao (U. Michigan) Jennifer Rexford (Princeton) Jia Wang (AT&T Labs)

Internet and Overlay Networks Ram Keralapura ECE Dept

Best Practices for ISPs

A Comparative Study of Architectural Impact on BGP Next-hop Diversity 15 th IEEE Global Symposium, March 2012 Jong Han Park 1, Pei-chun Cheng 2, Shane.

BGP update profiles and the implications for secure BGP update validation processing Geoff Huston Swinburne University of Technology PAM April 2007.

BGP Safety with Spurious Updates Martin Suchara in collaboration with: Alex Fabrikant and Jennifer Rexford IEEE INFOCOM April 14, 2011.

Network Infrastructure Security Research at Colorado State University Dan Massey November 19, 2004.

1 Finding a Needle in a Haystack: Pinpointing Significant BGP Routing Changes in an IP Network Jian Wu (University of Michigan) Z. Morley Mao (University.

1 BGP Security -- Zhen Wu. 2 Schedule Tuesday –BGP Background –" Detection of Invalid Routing Announcement in the Internet" –Open Discussions Thursday.

U NIVERSITY OF M ASSACHUSETTS, A MHERST Department of Computer Science Informed Detour Selection Helps Reliability Boulat A. Bash.

Improving BGP Convergence Through Consistency Assertions Dan Pei, Lan Wang, Lixia Zhang UCLA Xiaoliang Zhao, Daniel Massey, Allison Mankin, USC/ISI S.

(c) Anirban Banerjee, Winter 2005, CS-240, 2/1/2005. The Impact of Internet Policy and Topology on Delayed Routing convergence C. Labovitz, A. Ahuja, R.

Internet Routing Instability Labovitz et al. Sigcomm 1997 Largely adopted from Ion Stoica’s slide at UCB.

Slide -1- February, 2006 Interdomain Routing Gordon Wilfong Distinguished Member of Technical Staff Algorithms Research Department Mathematical and Algorithmic.

Delayed Internet Routing Convergence Craig Labovitz, Abha Ahuja, Abhijit Bose, Farham Jahanian Presented By Harpal Singh Bassali.

Dynamics of Hot-Potato Routing in IP Networks Renata Teixeira (UC San Diego) with Aman Shaikh (AT&T), Tim Griffin(Intel),

Impact of Configuration Errors on DNS Robustness Vasileios Pappas, Zhiguo Xu, Songwu Lu, Daniel Massey, Andreas Terzis, Lixia Zhang SIGCOMM 2004 Presented.

Protecting the BGP Routes to Top Level DNS Servers NANOG-25, June 11, 2002 UCLA Lan Wang Dan Pei Lixia Zhang USC/ISI Xiaoliang Zhao Dan Massey Allison.

A a secure peering. RIB table dump by attributes in order to save space. References 1. RouteViews, 2. RIPE,

March 22, 2002 Simple Protocols, Complex Behavior (Simple Components, Complex Systems) Lixia Zhang UCLA Computer Science Department.

Study of Distance Vector Routing Protocols for Mobile Ad Hoc Networks Yi Lu, Weichao Wang, Bharat Bhargava CERIAS and Department of Computer Sciences Purdue.

1 Sonia Fahmy Ness Shroff Students: Roman Chertov Rupak Sanjel Center for Education and Research in Information Assurance and Security (CERIAS) Purdue.

© 2009 Cisco Systems, Inc. All rights reserved. ROUTE v1.0—6-1 Connecting an Enterprise Network to an ISP Network Considering the Advantages of Using BGP.

2003/11/051 The Temporal and Topological Characteristics of BGP Path Changes Di-Fa Chang Ramesh Govindan John Heidemann USC/Information Sciences Institute.

1 Understanding Route Redistribution ICNP 2007 October 17 th, 2007 Franck Le, Geoffrey G. Xie, Hui Zhang.

PKI To The Masses IPCCC 2004 Dan Massey USC/ISI. 1 March PKI Is Necessary l My PKI related actions since arriving at IPCCC n Used an.

1 Network Topology Measurement Yang Chen CS 8803.

Network Sensitivity to Hot-Potato Disruptions Renata Teixeira (UC San Diego) with Aman Shaikh (AT&T), Tim Griffin(Intel),

Interconnectivity Density Compare number of AS’s to average AS path length A uniform density model would predict an increasing AS Path length (“Radius”)

1 Controlling IP Spoofing via Inter-Domain Packet Filters Zhenhai Duan Department of Computer Science Florida State University.

VeriFlow: Verifying Network-Wide Invariants in Real Time

Feldmann Ne X tworking’03 June 23-25,2003, Chania, Crete, Greece The First COST-IST(EU)-NSF(USA) Workshop on EXCHANGES & TRENDS IN N ETWORKING 1 Networking:

TDTS21: Advanced Networking Lecture 7: Internet topology Based on slides from P. Gill and D. Choffnes Revised 2015 by N. Carlsson.

BGP topics to be discussed in the next few weeks: –Excessive route update –Routing instability –BGP policy issues –BGP route slow convergence problem –Interaction.

Routing Convergence Dan Massey Colorado State University.

A Measurement Study on the Impact of Routing Events on End-to-End Internet Path Performance Feng Wang 1, Zhuoqing Morley Mao 2 Jia Wang 3, Lixin Gao 1,

02/01/2006USC/ISI1 Updates on Routing Experiments Cyber DEfense Technology Experimental Research (DETER) Network Evaluation Methods for Internet Security.

Information-Centric Networks04b-1 Week 4 / Paper 2 Understanding BGP Misconfiguration –Rahil Mahajan, David Wetherall, Tom Anderson –ACM SIGCOMM 2002 Main.

Measurement in the Internet Measurement in the Internet Paul Barford University of Wisconsin - Madison Spring, 2001.

Information-Centric Networks Section # 4.2: Routing Issues Instructor: George Xylomenos Department: Informatics.

Border Gateway Protocol. Intra-AS v.s. Inter-AS Intra-AS Inter-AS.

Dissecting Significant Outages from 2014 Valerio Plessi CCIE R&S Customer Success Engineer

1 On the Impact of Route Monitor Selection Ying Zhang* Zheng Zhang # Z. Morley Mao* Y. Charlie Hu # Bruce M. Maggs ^ University of Michigan* Purdue University.

Abha Ahuja InterNap Craig Labovitz Microsoft Research

Jian Wu (University of Michigan)

BGP update profiles and the implications for secure BGP update validation processing Geoff Huston PAM April 2007.

A New Multipath Routing Protocol for Ad Hoc Wireless Networks

Metarouting (SIGCOMM 2005) T. G. Griffin and J. L. Sobrinho

Geoff Huston APNIC 7th caida/wide measurement workshop Nov

Pong: Diagnosing Spatio-Temporal Internet Congestion Properties

BGP Multiple Origin AS (MOAS) Conflict Analysis

An Analysis of BGP Multiple Origin AS (MOAS) Conflicts

COS 561: Advanced Computer Networks

Routing Experiments Chen-Nee Chuah, Sonia Fahmy, Denys Ma,

BGP Instability Jennifer Rexford

Stable and Practical AS Relationship Inference with ProbLink

Geoff Huston APNIC 7th caida/wide measurement workshop Nov

Presentation transcript:

DARPA NMS PI Meeting November 14, 2002 Understanding BGP in Action Dan Massey USC/ISI

Some Open Questions l How well is BGP performing in the Internet? n Where does BGP design or operation excel? n Are there potential breaking points n Are we close to any breaking points? n What lessons do this imply for protocol design? l Combine analysis with measurement and simulation to answer the above questions.

Measurement l Essential contributions of real measurement: n Component interactions are not understood and are only fully captured in the real system n Policies can be complex and have surprising impact. l Limitations on real measurement n Measurement artifacts can bias results n No vantage point (or collection of points) is representative of the “Internet”. n Easy to get lost in interesting data, but objective is results leading to insight and understanding. n Property of protocol vs property of implementation.

Classification of BGP Updates Measurement Artifacts Routing Changes

A Closer Look at the Route Changes Actual path changes Updates with no path change

Some Implications l Measurement artifacts illustrate the potential breaking points of hard connections. n Requires understanding of TCP and BGP.  Related Packet Design announcement last week. l SPATH (same path) updates consume cycles but convey varying degree of useful data. n On some days, set of DoD prefixes < 0.02% of Internet) contributed over 90% of SPATH updates. n Represents a valid policy, but is it useful/desirable? n Lesson: keep changes local if possible

What’s Else is Hiding in These Updates? Internet c.gtld-servers.net rrc00 monitor originates route to /24 l Invalid BGP routes exist in everyone’s table. n One example observed on 4/16/01 took out a gTLD (com/net/org) name server. ISPs announce new path 3 lasted 20 minutes 1 lasted 3 hours

But DNS Routes Are Also Predictable ISP1 Root servers gTLD servers

Theoretical Limitations l Bush, Griffin, and Mao illustrate the challenge n Top node sends one announce/withdraw. n Only 5 nodes in network. n No other events occur. n 52 different update sequences can result n See Bush, et.al in October 2002 NANOG. l Now scale to Internet size and add multiple events! Annouce/withdraw Monitor may see any of 52 different sequences

Simulation l Large scale systems with diverse components have intrinsically complex external behavior. n Potentially large numbers of unexpected events and couplings between diverse elements. l Use simulation to model and test scale changes. n X. Zhao, et. al exploits scale to an advantage n Hard to hide to valid data. n More understanding needed, but challenge of simulation scale n Additional challenge of reflecting component complexity.

Some Recent References l Our recent work: n Observation and Analysis of BGP Behavior under Stress, 2nd ACM SIGCOMM Internet Measurement Workshop, November nd ACM SIGCOMM Internet Measurement Workshop n Protecting the Routes to Top Level DNS Servers, NANOG 25, June 11, 2002.NANOG 25 n Improving BGP Convergence Through Consistency Assertions, Presented at INFOCOM, June 23-27, 2002.INFOCOM n Detection of Invalid Routing Annoucements in the Internet, Presented at DSN, June 23-26, 2002.DSN l October NANOG l SIGCOMM Internet Measurement Workshop

Questions?