Presentation is loading. Please wait.

Presentation is loading. Please wait.

RuleTris: Minimizing Rule Update Latency for TCAM-based SDN Switches Xitao Wen*, Bo Yang #, Yan Chen*, Li Erran Li $, Kai Bu #, Peng Zheng &, Yang Yang*,

Published byRoy Kelly Modified over 7 years ago

Similar presentations

Presentation on theme: "RuleTris: Minimizing Rule Update Latency for TCAM-based SDN Switches Xitao Wen*, Bo Yang #, Yan Chen*, Li Erran Li $, Kai Bu #, Peng Zheng &, Yang Yang*,"— Presentation transcript:

1 RuleTris: Minimizing Rule Update Latency for TCAM-based SDN Switches Xitao Wen*, Bo Yang #, Yan Chen*, Li Erran Li $, Kai Bu #, Peng Zheng &, Yang Yang*, Chengchen Hu & *Northwestern University, # Zhejiang University, $ Fudan University, & Xi’an Jiaotong University 1

2 Motivation  Flow table update bottleneck  Limitation of TCAM (Ternary Content-Addressable Memory)  10s to 100s of rule operations per second  Existing controllers generate inflated flow table updates  Unnecessary priority updates  Massive TCAM internal moves  Ultimate Goal: minimizing TCAM update operations to speed up updating  Only update the “diff” 2

3 Motivating Example  Update schedule with priority clue  1 rule adds + 4 rule moves 3

4 Motivating Example (cont.)  Update schedule with dependency graph  1 rule adds + 2 rule moves  Such redundant moves contribute over 95% in average! 4

5 Key Insight  Dependency Graph (DAG) provides two optimality guarantees 1.Minimum size flow table 2.Minimum number of TCAM moves for table update 5

6 Challenges  Speed, speed, speed!  How to efficiently generate DAG?  O(n 2 ) algorithm to obtain DAG from scratch  Usually takes minutes for a thousand rules  How to efficiently optimize updates with DAG?  Slow processor, limited memory on switches 6

7 RuleTris Architecture  Front-end in controller  An incremental SDN policy compiler that preserves DAG  Back-end in switch firmware  Redundancy Eliminator, Update Scheduler…  F/B Interface  Flow table + DAG 7

8 Front-end  How to efficiently generate DAG?  Our approach  Track DAG along with flow table compilation  Linear additional time complexity!  Will provide background on composition compiler first 8

9 A Bit More Background 9 MatchAction MatchActionMatchAction +>>) ( Compilers use the composition configuration to guide the recursive composition compilation.

10 Background: Flow Table Composition  Combine multiple flow tables into one functional equivalent flow table  Two operators: parallel, sequential 10 Parallel of Monitor and Route Sequential of LB and Route

11 Background: Composition Compiler without DAG  Compile multiple flow tables into a single flow table 11 9. srcip=1.0.0.0/24  count 0. *  drop Monitor 7. dstip=2.0.0.0/30  fwd(1) 0. *  drop Router PriorityMatch Action

12 Background: Composition Compiler without DAG  Compile multiple flow tables into a single flow table 12 9. srcip=1.0.0.0/24  count 0. *  drop Monitor 7. dstip=2.0.0.0/30  fwd(1) 0. *  drop Router 16. srcip=1.0.0.0/24, dstip=2.0.0.0/30  count, fwd(1)

13 Background: Composition Compiler without DAG  Compile multiple flow tables into a single flow table 13 9. srcip=1.0.0.0/24  count 0. *  drop Monitor 7. dstip=2.0.0.0/30  fwd(1) 0. *  drop Router 16. srcip=1.0.0.0/24, dstip=2.0.0.0/30  count, fwd(1) 9. srcip=1.0.0.0/24  count 7. dstip=2.0.0.0/30  fwd(1) 0. *  drop

14 RuleTris Composition Compiler A generic composition compiler which features  DAG preservation during composition  Parallel  Sequential  Efficient incremental compilation (see the paper) 14

15  Infer dependency relations via graph cross product  Then eliminate those with empty match 15 DAG Preservation for Parallel Composition

16  Special treatment for redundant rules 16 DAG Preservation for Parallel Composition (cont’d)

17 DAG Preservation for Sequential Composition 17

18 Optimality Guarantee We proved that RuleTris front-end generates optimal DAG that is both complete and minimum (see the paper for the proof). 18

19 Back-end  Update Scheduler  Given delta flow table and delta DAG  Calculate the update schedule with minimum number of TCAM moves  Redundancy Eliminator  CacheFlow Manager 19

20 Update Scheduler  Rule Insertion Step 1: Find TCAM location range for the inserted rule Step 2: Find nearest upper slot and lower slot Step 3: Search for shortest moving chain upwards and downwards Step 4: Use the shorter path for actual update  Shortest Moving Chain Searching  Dynamic programming 20

21 Implementation  RuleTris front-end  Stand-alone composition compiler  5K lines of Java code  Interface with open-source Ryu controller  RuleTris back-end  Implemented in firmware of an FPGA-based hardware switch, ONetSwitch  3K lines of C code  Front-end/back-end communication  Extension to OpenFlow protocol for carrying DAG and DAG updates 21

22 Evaluation Results  Compare with two priority based approaches  Baseline  CoVisor [NSDI 2015]: incremental update  Experiment 1: Parallel composition 22 Rule update overhead of L3-L4 monitoring + L3 router.

23 Evaluation Results II  Experiment 2: Sequential composition 23 Rule update overhead of L3-L4 NAT > L3 router. RuleTris achieves a median of <12ms and 90- percentile of <15ms for the per-rule update latency Outperform even CoVisor deployed on the same hardware switch by ∼ 20x.

24 Conclusions  RuleTris is a novel SDN policy update optimization framework  It minimizes rule update latency for TCAM-based SDN switches See our SDN related work at http://list.cs.northwestern.edu/sdn Thanks! 24

Download ppt "RuleTris: Minimizing Rule Update Latency for TCAM-based SDN Switches Xitao Wen*, Bo Yang #, Yan Chen*, Li Erran Li $, Kai Bu #, Peng Zheng &, Yang Yang*,"

Similar presentations

A R EVISIT TO THE P RIMAL -D UAL B ASED C LOCK S KEW S CHEDULING A LGORITHM Min Ni and Seda Ogrenci Memik EECS Department, Northwestern University.

A R EVISIT TO THE P RIMAL -D UAL B ASED C LOCK S KEW S CHEDULING A LGORITHM Min Ni and Seda Ogrenci Memik EECS Department, Northwestern University.
IP Router Architectures. Outline Basic IP Router Functionalities IP Router Architectures.

IP Router Architectures. Outline Basic IP Router Functionalities IP Router Architectures.
Incremental Update for a Compositional SDN Hypervisor Xin Jin Jennifer Rexford, David Walker.

Incremental Update for a Compositional SDN Hypervisor Xin Jin Jennifer Rexford, David Walker.
Fast Updating Algorithms for TCAMs Devavrat Shah Pankaj Gupta IEEE MICRO, Jan.-Feb. 2001.

Fast Updating Algorithms for TCAMs Devavrat Shah Pankaj Gupta IEEE MICRO, Jan.-Feb
Multi-dimensional Packet Classification on FPGA: 100Gbps and Beyond

Multi-dimensional Packet Classification on FPGA: 100Gbps and Beyond
VCRIB: Virtual Cloud Rule Information Base Masoud Moshref, Minlan Yu, Abhishek Sharma, Ramesh Govindan HotCloud 2012.

VCRIB: Virtual Cloud Rule Information Base Masoud Moshref, Minlan Yu, Abhishek Sharma, Ramesh Govindan HotCloud 2012.
Nanxi Kang Princeton University

Nanxi Kang Princeton University
Bio Michel Hanna M.S. in E.E., Cairo University, Egypt B.S. in E.E., Cairo University at Fayoum, Egypt Currently is a Ph.D. Student in Computer Engineering.

Bio Michel Hanna M.S. in E.E., Cairo University, Egypt B.S. in E.E., Cairo University at Fayoum, Egypt Currently is a Ph.D. Student in Computer Engineering.
Optimal Instruction Scheduling for Multi-Issue Processors using Constraint Programming Abid M. Malik and Peter van Beek David R. Cheriton School of Computer.

Optimal Instruction Scheduling for Multi-Issue Processors using Constraint Programming Abid M. Malik and Peter van Beek David R. Cheriton School of Computer.
Incremental Consistent Updates Naga Praveen Katta Jennifer Rexford, David Walker Princeton University.

Incremental Consistent Updates Naga Praveen Katta Jennifer Rexford, David Walker Princeton University.
A Ternary Unification Framework for Optimizing TCAM-Based Packet Classification Systems Author: Eric Norige, Alex X. Liu, and Eric Torng Publisher: ANCS.

A Ternary Unification Framework for Optimizing TCAM-Based Packet Classification Systems Author: Eric Norige, Alex X. Liu, and Eric Torng Publisher: ANCS.
Error Tolerant Address Configuration for Data Center Networks with Malfunctioning Devices Xingyu Ma, Chengchen Hu, Kai Chen, Che Zhang, Hongtao Zhang,

Error Tolerant Address Configuration for Data Center Networks with Malfunctioning Devices Xingyu Ma, Chengchen Hu, Kai Chen, Che Zhang, Hongtao Zhang,
Programming Abstractions for Software-Defined Networks Jennifer Rexford Princeton University.

Programming Abstractions for Software-Defined Networks Jennifer Rexford Princeton University.
Fast Paths in Concurrent Programs Wen Xu, Princeton University Sanjeev Kumar, Intel Labs. Kai Li, Princeton University.

Fast Paths in Concurrent Programs Wen Xu, Princeton University Sanjeev Kumar, Intel Labs. Kai Li, Princeton University.
Scalable Flow-Based Networking with DIFANE 1 Minlan Yu Princeton University Joint work with Mike Freedman, Jennifer Rexford and Jia Wang.

Scalable Flow-Based Networking with DIFANE 1 Minlan Yu Princeton University Joint work with Mike Freedman, Jennifer Rexford and Jia Wang.
1 DRES:Dynamic Range Encoding Scheme for TCAM Coprocessors Authors: Hao Che, Zhijun Wang, Kai Zheng and Bin Liu Publisher: IEEE Transactions on Computers,

1 DRES:Dynamic Range Encoding Scheme for TCAM Coprocessors Authors: Hao Che, Zhijun Wang, Kai Zheng and Bin Liu Publisher: IEEE Transactions on Computers,
An Efficient IP Lookup Architecture with Fast Update Using Single-Match TCAMs Author: Jinsoo Kim, Junghwan Kim Publisher: WWIC 2008 Presenter: Chen-Yu.

An Efficient IP Lookup Architecture with Fast Update Using Single-Match TCAMs Author: Jinsoo Kim, Junghwan Kim Publisher: WWIC 2008 Presenter: Chen-Yu.
EaseCAM: An Energy And Storage Efficient TCAM-based IP-Lookup Architecture Rabi Mahapatra Texas A&M University;

EaseCAM: An Energy And Storage Efficient TCAM-based IP-Lookup Architecture Rabi Mahapatra Texas A&M University;
Software-Defined Networking

Software-Defined Networking
Data Plane Verification. Background: What are network policies Alice can talk to Bob Skype traffic must go through a VoIP transcoder All traffic must.

Data Plane Verification. Background: What are network policies Alice can talk to Bob Skype traffic must go through a VoIP transcoder All traffic must.

Similar presentations

Ads by Google