Packet Classification using Rule Caching Author: Nitesh B. Guinde, Roberto Rojas-Cessa, Sotirios G. Ziavras Publisher: IISA, 2013 Fourth International.

Slides:



Advertisements
Similar presentations
Deep Packet Inspection with DFA-trees and Parametrized Language Overapproximation Author: Daniel Luchaup, Lorenzo De Carli, Somesh Jha, Eric Bach Publisher:
Advertisements

Scalable Packet Classification Using Hybrid and Dynamic Cuttings Authors : Wenjun Li,Xianfeng Li Publisher : Engineering Lab on Intelligent Perception.
Optimizing Regular Expression Matching with SR-NFA on Multi-Core Systems Authors : Yang, Y.E., Prasanna, V.K. Yang, Y.E. Prasanna, V.K. Publisher : Parallel.
Parallel IP Lookup using Multiple SRAM-based Pipelines Authors: Weirong Jiang and Viktor K. Prasanna Presenter: Yi-Sheng, Lin ( 林意勝 ) Date:
Performance Evaluation of IPv6 Packet Classification with Caching Author: Kai-Yuan Ho, Yaw-Chung Chen Publisher: ChinaCom 2008 Presenter: Chen-Yu Chaug.
An Efficient and Scalable Pattern Matching Scheme for Network Security Applications Department of Computer Science and Information Engineering National.
1 Route Table Partitioning and Load Balancing for Parallel Searching with TCAMs Department of Computer Science and Information Engineering National Cheng.
OpenFlow-Based Server Load Balancing GoneWild Author : Richard Wang, Dana Butnariu, Jennifer Rexford Publisher : Hot-ICE'11 Proceedings of the 11th USENIX.
High-Performance Packet Classification on GPU Author: Shijie Zhou, Shreyas G. Singapura and Viktor K. Prasanna Publisher: HPEC 2014 Presenter: Gang Chi.
HybridCuts: A Scheme Combining Decomposition and Cutting for Packet Classification Authors : Wenjun Li, Xianfeng Li Publisher : 2013 IEEE 21st Annual Symposium.
Fast forwarding table lookup exploiting GPU memory architecture Author : Youngjun Lee,Minseon Jeong,Sanghwan Lee,Eun-Jin Im Publisher : Information and.
Packet Classification Using Multi-Iteration RFC Author: Chun-Hui Tsai, Hung-Mao Chu, Pi-Chung Wang Publisher: COMPSACW, 2013 IEEE 37th Annual (Computer.
Leveraging Traffic Repetitions for High- Speed Deep Packet Inspection Author: Anat Bremler-Barr, Shimrit Tzur David, Yotam Harchol, David Hay Publisher:
A Regular Expression Matching Algorithm Using Transition Merging Department of Computer Science and Information Engineering National Cheng Kung University,
High-Speed Packet Classification Using Binary Search on Length Authors: Hyesook Lim and Ju Hyoung Mun Presenter: Yi-Sheng, Lin ( 林意勝 ) Date: Jan. 14, 2008.
A Hybrid IP Lookup Architecture with Fast Updates Author : Layong Luo, Gaogang Xie, Yingke Xie, Laurent Mathy, Kavé Salamatian Conference: IEEE INFOCOM,
Author : Guangdeng Liao, Heeyeol Yu, Laxmi Bhuyan Publisher : Publisher : DAC'10 Presenter : Jo-Ning Yu Date : 2010/10/06.
EQC16: An Optimized Packet Classification Algorithm For Large Rule-Sets Author: Uday Trivedi, Mohan Lal Jangir Publisher: 2014 International Conference.
Pattern-Based DFA for Memory- Efficient and Scalable Multiple Regular Expression Matching Author: Junchen Jiang, Yang Xu, Tian Pan, Yi Tang, Bin Liu Publisher:IEEE.
Scalable Many-field Packet Classification on Multi-core Processors Authors : Yun R. Qu, Shijie Zhou, Viktor K. Prasanna Publisher : International Symposium.
StriD 2 FA: Scalable Regular Expression Matching for Deep Packet Inspection Author: Xiaofei Wang, Junchen Jiang, Yi Tang, Bin Liu, and Xiaojun Wang Publisher:
Deterministic Finite Automaton for Scalable Traffic Identification: the Power of Compressing by Range Authors: Rafael Antonello, Stenio Fernandes, Djamel.
DBS A Bit-level Heuristic Packet Classification Algorithm for High Speed Network Author : Baohua Yang, Xiang Wang, Yibo Xue, Jun Li Publisher : th.
Memory-Efficient Regular Expression Search Using State Merging Author: Michela Becchi, Srihari Cadambi Publisher: INFOCOM th IEEE International.
2017/4/26 Rethinking Packet Classification for Global Network View of Software-Defined Networking Author: Takeru Inoue, Toru Mano, Kimihiro Mizutani, Shin-ichi.
Memory-Efficient and Scalable Virtual Routers Using FPGA Department of Computer Science and Information Engineering, National Cheng Kung University, Tainan,
Early Detection of DDoS Attacks against SDN Controllers
Updating Designed for Fast IP Lookup Author : Natasa Maksic, Zoran Chicha and Aleksandra Smiljani´c Conference: IEEE High Performance Switching and Routing.
Binary-tree-based high speed packet classification system on FPGA Author: Jingjiao Li*, Yong Chen*, Cholman HO**, Zhenlin Lu* Publisher: 2013 ICOIN Presenter:
Boundary Cutting for Packet Classification Author: Hyesook Lim, Nara Lee, Geumdan Jin, Jungwon Lee, Youngju Choi, Changhoon Yim Publisher: Networking,
Lightweight Traffic-Aware Packet Classification for Continuous Operation Author: Shariful Hasan Shaikot, Min Sik Kim Presenter: Yen-Chun Tseng Date: 2014/11/26.
Range Enhanced Packet Classification Design on FPGA Author: Yeim-Kuan Chang, Chun-sheng Hsueh Publisher: IEEE Transactions on Emerging Topics in Computing.
PC-TRIO: A Power Efficient TACM Architecture for Packet Classifiers Author: Tania Banerjee, Sartaj Sahni, Gunasekaran Seetharaman Publisher: IEEE Computer.
Lossy Compression of Packet Classifiers Author: Ori Rottenstreich, J’anos Tapolcai Publisher: 2015 IEEE International Conference on Communications Presenter:
Packet Classification Using Dynamically Generated Decision Trees
GFlow: Towards GPU-based High- Performance Table Matching in OpenFlow Switches Author : Kun Qiu, Zhe Chen, Yang Chen, Jin Zhao, Xin Wang Publisher : Information.
IP Routing table compaction and sampling schemes to enhance TCAM cache performance Author: Ruirui Guo a, Jose G. Delgado-Frias Publisher: Journal of Systems.
1 IP Routing table compaction and sampling schemes to enhance TCAM cache performance Author: Ruirui Guo, Jose G. Delgado-Frias Publisher: Journal of Systems.
LOP_RE: Range Encoding for Low Power Packet Classification Author: Xin He, Jorgen Peddersen and Sri Parameswaran Conference : IEEE 34th Conference on Local.
Stochastic Pre-Classification for SDN Data Plane Matching Author : Luke McHale, C. Jasson Casey, Paul V. Gratz, Alex Sprintson Conference: 2014 IEEE 22nd.
SRD-DFA Achieving Sub-Rule Distinguishing with Extended DFA Structure Author: Gao Xia, Xiaofei Wang, Bin Liu Publisher: IEEE DASC (International Conference.
Practical Multituple Packet Classification Using Dynamic Discrete Bit Selection Author: Baohua Yang, Fong J., Weirong Jiang, Yibo Xue, Jun Li Publisher:
Hierarchical Hybrid Search Structure for High Performance Packet Classification Authors : O˜guzhan Erdem, Hoang Le, Viktor K. Prasanna Publisher : INFOCOM,
LightFlow : Speeding Up GPU-based Flow Switching and Facilitating Maintenance of Flow Table Author : Nobutaka Matsumoto and Michiaki Hayashi Conference:
Scalable Multi-match Packet Classification Using TCAM and SRAM Author: Yu-Chieh Cheng, Pi-Chung Wang Publisher: IEEE Transactions on Computers (2015) Presenter:
JA-trie: Entropy-Based Packet Classification Author: Gianni Antichi, Christian Callegari, Andrew W. Moore, Stefano Giordano, Enrico Anastasi Conference.
A Multi-dimensional Packet Classification Algorithm Based on Hierarchical All-match B+ Tree Author: Gang Wang, Yaping Lin*, Jinguo Li, Xin Yao Publisher:
2018/6/26 An Energy-efficient TCAM-based Packet Classification with Decision-tree Mapping Author: Zhao Ruan, Xianfeng Li , Wenjun Li Publisher: 2013.
Statistical Optimal Hash-based Longest Prefix Match
2018/11/19 Source Routing with Protocol-oblivious Forwarding to Enable Efficient e-Health Data Transfer Author: Shengru Li, Daoyun Hu, Wenjian Fang and.
Parallel Processing Priority Trie-based IP Lookup Approach
2018/12/29 A Novel Approach for Prefix Minimization using Ternary trie (PMTT) for Packet Classification Author: Sanchita Saha Ray, Abhishek Chatterjee,
Binary Prefix Search Author: Yeim-Kuan Chang
Memory-Efficient Regular Expression Search Using State Merging
Virtual TCAM for Data Center Switches
A Small and Fast IP Forwarding Table Using Hashing
Scalable Multi-Match Packet Classification Using TCAM and SRAM
A New String Matching Algorithm Based on Logical Indexing
2019/5/2 Using Path Label Routing in Wide Area Software-Defined Networks with OpenFlow ICNP = International Conference on Network Protocols Presenter:Hung-Yen.
Compact DFA Structure for Multiple Regular Expressions Matching
Power-efficient range-match-based packet classification on FPGA
Large-scale Packet Classification on FPGA
Authors: A. Rasmussen, A. Kragelund, M. Berger, H. Wessing, S. Ruepp
A Hybrid IP Lookup Architecture with Fast Updates
2019/7/26 OpenFlow-Enabled User Traffic Profiling in Campus Software Defined Networks Presenter: Wei-Li,Wang Date: 2016/1/4 Author: Taimur Bakhshi and.
A SRAM-based Architecture for Trie-based IP Lookup Using FPGA
Authors: Ding-Yuan Lee, Ching-Che Wang, An-Yeu Wu Publisher: 2019 VLSI
MEET-IP Memory and Energy Efficient TCAM-based IP Lookup
Towards TCAM-based Scalable Virtual Routers
2019/11/12 Efficient Measurement on Programmable Switches Using Probabilistic Recirculation Presenter:Hung-Yen Wang Authors:Ran Ben Basat, Xiaoqi Chen,
Presentation transcript:

Packet Classification using Rule Caching Author: Nitesh B. Guinde, Roberto Rojas-Cessa, Sotirios G. Ziavras Publisher: IISA, 2013 Fourth International Conference Presenter: Chih-Hsun Wang Date: 2014/12/10 Department of Computer Science and Information Engineering National Cheng Kung University, Taiwan R.O.C.

Introduction Different packet classification schemes have been developed but they require a number of memory accesses as classification is complex and memory is slow. We propose a scheme based on memory cache to support packet classification. We present various packet classification caching schemes for performing classification and provide the cache hit ratio results for various traffic models generated with Class bench. National Cheng Kung University CSIE Computer & Internet Architecture Lab 2

Method (1/9) Use the concept of caching of rules using the least- recently used (LRU) policy to replace information in the cache. Create two tries, one for the source IP and the other one for the destination IP Priority Bit (1) there does not exist any rule which could be matched if r is matched. (2) there exists no rule of higher precedence which could be matched if rule r is matched. National Cheng Kung University CSIE Computer & Internet Architecture Lab 3

Method (2/9) National Cheng Kung University CSIE Computer & Internet Architecture Lab 4

Method (3/9) National Cheng Kung University CSIE Computer & Internet Architecture Lab 5 R1,R2,R3,R4,R5,R6 R1,R2,R6 R4,R6 R5,R6 R3,R5,R6 R5,R6 R6

Method (4/9) National Cheng Kung University CSIE Computer & Internet Architecture Lab 6 R1,R2,R3,R4,R5,R6 R1,R2,R6 R4,R6 R5,R6 R3,R5,R6

Method (5/9) We can decrease the number of steps in trie traversing by directly checking the rules that could be matched and those that have a priority higher than the rules in the cache. To achieve this, we need to store two address pointers, the source IP trie address pointer and the destination IP trie address pointer. National Cheng Kung University CSIE Computer & Internet Architecture Lab 7

Method (6/9) Data Structure Source IP, Destination IP Source port range, Destination port range Protocol Flags Priority bit Source IP trie address, Destination IP trie address National Cheng Kung University CSIE Computer & Internet Architecture Lab 8

Method (7/9) National Cheng Kung University CSIE Computer & Internet Architecture Lab 9 Incoming Packet Source IPDestination IPSource Port Des. Port 1100*111*617 Cache R1 R2 Search R2 will match in cache but it’s priority bit is 0 Rule #SIPDIPSPDPPBAP R11100*111*0:516:201S11,D6 R21100*111*0: :200S11,D6

Method (8/9) National Cheng Kung University CSIE Computer & Internet Architecture Lab 10 Search Rule #SIPDIPSPDPPBAP R11100*111*0:516:201S11,D6 R21100*111*0: :200S11,D6

Method (9/9) National Cheng Kung University CSIE Computer & Internet Architecture Lab 11 Search Rule #SIPDIPSPDPPBAP R11100*111*0:516:201S11,D6 R21100*111*0: :200S11,D6 Incoming Packet Source IPDestination IPSource Port Des. Port 1100*111*617 match R2

Problem (1/3) National Cheng Kung University CSIE Computer & Internet Architecture Lab 12

Problem (2/3) National Cheng Kung University CSIE Computer & Internet Architecture Lab 13 Incoming Packet Source IPDestination IPSource PortDes. Port Best match R11

Problem (3/3) National Cheng Kung University CSIE Computer & Internet Architecture Lab 14 Incoming Packet Source IPDestination IPSource PortDes. Port Not Best match R16

Solution (1/3) Create additional 256-bit vector and information about the dependent rules. Change the position of the bit pointed to by the value in the byte to 1. Keep the bit vector that contains the smallest number of 1’s along with the marker signifying the byte number of the bit vector National Cheng Kung University CSIE Computer & Internet Architecture Lab 15

Solution (2/3) National Cheng Kung University CSIE Computer & Internet Architecture Lab 16 R16 for example Dependent rules: R11, R12, R13

Solution (3/3) National Cheng Kung University CSIE Computer & Internet Architecture Lab 17 R16 for example Pick

Implemented Method (1/17) Method I Use a simple LRU scheme. Use a priority bit without the 256-bit vector. Method II Use a simple LRU scheme. Use a priority bit and the 256-bit vector. National Cheng Kung University CSIE Computer & Internet Architecture Lab 18

Implemented Method (2/17) Method III Use the frequency-based replacement method. Cache is divided into three sections: NEW, MID and OLD sections. Every rule in the cache has a reference count associated with it. National Cheng Kung University CSIE Computer & Internet Architecture Lab 19

Implemented Method (3/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 20 NEW R1,1 MIDOLD R1 match

Implemented Method (4/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 21 NEW R2,1 R1,1 MIDOLD R2 match

Implemented Method (5/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 22 NEW R3,1 R2,1 R1,1 MIDOLD R3 match

Implemented Method (6/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 23 NEW R4,1 R3,1 R2,1 MID R1,1 OLD R4 match

Implemented Method (7/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 24 NEW R1,2 R4,1 R3,1 MID R2,1 OLD R1 match If the rule hit is in the MID section, then its count is incremented and the rule is moved to the head of the NEW section.

Implemented Method (8/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 25 NEW R4,1 R1,2 R3,1 MID R2,1 OLD R4 match The reference count of the rule is not incremented in the NEW and OLD sections.

Implemented Method (9/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 26 NEW R4,1 R1,2 R3,1 MID R2,1 R5,1 R6,1 OLD R7,1 R8,2 R9,1 R10 match If the cache is full, then we remove from the OLD section the rule that has the least count.

Implemented Method (10/17) Method IV Separate count for the rule in the main memory and cache. Do not cache the rule until the count for the rule crosses a threshold. Maintain a sampling window of T time slots (i.e., incoming packet counts). At every t=n*T, for n=1, 2, 3, …, we transfer into the cache the rules that have counts bigger than the chosen threshold. National Cheng Kung University CSIE Computer & Internet Architecture Lab 27

Implemented Method (11/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 28 Main Memory R1,3 R2,0 R3,0 R4,0 R5,0 R6,0 Incoming Packet match R1, R1, R1 Cache Threshold = 2, t = n*T, n = 1

Implemented Method (13/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 29 At every t=n*T, for n= 1, 2, 3, …, we transfer into the cache the rules that have counts bigger than the chosen threshold. F Main Memory R1,1 R2,0 R3,0 R4,0 R5,0 R6,0 Cache R1,1 Threshold = 2, t = n*T, n = 1

Implemented Method (14/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 30 Main Memory R1,1 R2,1 R3,1 R4,1 R5,1 R6,1 Cache R1,1 R3,1 R4,2 Threshold = 2, t = n*T, n = 1 Incoming Packet match R5, R6, R5

Implemented Method (15/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 31 Main Memory R1,1 R2,1 R3,1 R4,1 R5,3 R6,2 Cache R1,1 R3,1 R4,2 Incoming Packet match R5, R6, R5 Threshold = 2, t = n*T, n = 1

Implemented Method (16/17) National Cheng Kung University CSIE Computer & Internet Architecture Lab 32 Main Memory R1,1 R2,1 R3,1 R4,1 R5,1 R6,2 Cache R5,1 R1,1 R4,1 Threshold = 2, t = n*T, n = 1 R3 has be replaced

Method V This method is very similar to the method III. Remove the MID section in the cache. Increment counts in the OLD section. The OLD section is very wide containing 768 locations. National Cheng Kung University CSIE Computer & Internet Architecture Lab 33 Implemented Method (17/17)

National Cheng Kung University CSIE Computer & Internet Architecture Lab 34 Experimental Results (1/4)

National Cheng Kung University CSIE Computer & Internet Architecture Lab 35 Experimental Results (2/4)

National Cheng Kung University CSIE Computer & Internet Architecture Lab 36 Experimental Results (3/4)

National Cheng Kung University CSIE Computer & Internet Architecture Lab 37 Experimental Results (4/4)

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.