Presentation is loading. Please wait.

Presentation is loading. Please wait.

Data Plane Verification. Background: What are network policies Alice can talk to Bob Skype traffic must go through a VoIP transcoder All traffic must.

Published bySilas Marshall Modified over 8 years ago

Similar presentations

Presentation on theme: "Data Plane Verification. Background: What are network policies Alice can talk to Bob Skype traffic must go through a VoIP transcoder All traffic must."— Presentation transcript:

1 Data Plane Verification

2 Background: What are network policies Alice can talk to Bob Skype traffic must go through a VoIP transcoder All traffic must go to the destination – No blackholes No one should be able to send traffic to Eve

3 When Networks go Bad … Bad configs Bugs in Router code Bugs in router hardware

4 Detecting Addressing Problems Verify config. Don’t catch bugs in code Verify config by examining the hardware, The bug has already happened!!

5 SDN Changes things … Network O.S. Simple interface for representing rules For switches Configuration of switches happen from A central location

6 SDN Changes things … Network O.S. Can verify rules before inserted Into switches

7 SDN Changes things … Network O.S. Can verify rules before inserted Into switches Still no way to verify hardware bugs!!!

8 Problem Statement: Need Verification to be quick! Need verification to support a large range of network invariants!

9 Key Insight Most config changes only impact a subset of network – You only need to re-evaluate invariant for this subset A policies are applies to groups not individual addresses – So there are large swaths of addresses with same actions being applied.

10 Veriflow’s Key Challenge Efficient Data structure for capturing: – Equivalence classes (EC) Detecting overlapping rules. Detected affected EC after a change. – Forwarding graphs How to capture a graph

11 Veriflow Network O.S. veriflow

12 Veriflow (in a distributed setting) Network O.S. veriflow Network O.S.

13 Trie-Algorithm Recall forwarding rules look like this: Match these parts of the packet Perform action packets Src-IP: 10.10.0.0 Dst-IP: 10.20.0.0 Forward packet Src-IP: * Dst-IP: 10.20.0.0 Drop packet

14 Trie-Algorithm Src-IP: 10.10.0.0 Dst-IP: 10.20.0.0 00001010.00001010.00000000.00000000 Forward packet 10.10.0.0 Src-IP: * Dst-IP: 10.20.0.0 Drop packet ********************************* * *

15 Trie-Algorithm Src-IP: 10.10.0.0 Dst-IP: 10.20.0.0 Forward packet Src-IP: 10.13.0.0 Dst-IP: 10.20.0.0 Src-IP: 10.14.0.0 Dst-IP: 10.20.0.0 Src-IP: 10.15.0.0 Dst-IP: 10.20.0.0 Forward packet 10.10.0.0 10.13.0.0 10.15.0.0 10.14.0.0 00001010.00001010.00000000.00000000 00001010.00001101.00000000.00000000 00001010.00001110.00000000.00000000 00001010.00001111.00000000.00000000 1 1 0 0 1 0 1 d

16 Trie Algorithms Src-IP: 10.10.0.0 Dst-IP: 10.20.0.0 00001010.00001010.00000000.00000000 Forward packet 10.10.0.0 00001010.00010100.00000000.00000000 10.20.0.0 Dimension 2 Dimension 1

17 Trie Algorithms

18 Trie-Optimizations OpenFlow 1.0 – 14 different string of bits to match on – 4 of them allow wild cards…. – 10 of them don’t (so you can do exact matches) Either you match or you don’t match – Build a 4-dimensional trie For the 10 do linear look-ups

19 Verification Input: graph for a change equivalence Class. Output: Add rules, don’t add rules

20 Verification Input: graph for a change equivalence Class. Output: Add rules, don’t add rules Can do: – Loop detection – Verify that two nodes have same actions – Detect black holes

21 Veriflow Network O.S. veriflow

22 Limitations/DrawBacks If the entire network changes – VeriFlow has to check the whole network and will be slow Limited to reachability style policies – Can’t verify QoS – Can’t verify encapsulation – Can’t verify middlebox policies

23 Why…… Is QoS (Buffering hard)

24 Why…… Are MB, Encapsulation hard

25 Why…… Are MB, Encapsulation hard Both are hard because they transform the header space of a packet. E.g. – NAT: changes the IP address and port – So the equivalence class changes – No way to capture these transformations.

26 Why…… Are MB, Encapsulation hard Src-IP: 10.10.0.0 Change to 10.20.0.0 Forward packet Change to 10.20.0.0 Forward packet Src-IP: * Drop packet Src-IP: 10.10.0.0 Forward packet Src-IP: 10.20.0.0 Drop packet Equivalence Class: 10.10.0.0

27 Why…… Are MB, Encapsulation hard Src-IP: 10.10.0.0 Change to 10.20.0.0 Forward packet Change to 10.20.0.0 Forward packet Src-IP: * Drop packet Src-IP: 10.10.0.0 Forward packet Src-IP: 10.20.0.0 Drop packet

28 Header Space Framework Key observation: A packet is a point in a space of possible headers and a box is a transformer on that space

29 Header Space Framework Step 1: Model a Packet Header A Packet Header is a point in space,called the Header Space HeaderData L 0100111…1

30 Header Space Framework Step 2: Model a switch A switch is a transformer in the header space Packet Forwarding Port 1 Port 2 Port 3 0xx1…x1 Send to port 3 and Rewrite with 1xx011..x1 Match Action 1xx1…0x Send to port 2 and Rewrite with 1x01xx..x1 Transfer Function:

31 Header Space Framework Example: Transfer Function of an IPv4 Router 1 3 2 172.24.74.0, 255.255.255.0 Port 1 T(h,p) = (h,1)if dest_ip(h) = 172.24.74.X 172.24.128.0, 255.255.255.0 Port 2 (h,2)if dest_ip(h) = 172.24.128.X 171.67.0.0, 255.255.0.0 Port 3 (h,3)if dest_ip(h) = 172.67.X.X

32 Header Space Framework Example: Transfer Function of an IPv4 Router 1 3 2 172.24.74.0, 255.255.255.0 Port 1 T(h,p) = 172.24.128.0, 255.255.255.0 Port 2 171.67.0.0, 255.255.0.0 Port 3 (1)if dest_ip(h) = 172.24.74.X (2)if dest_ip(h) = 172.24.128.X (3)if dest_ip(h) = 172.67.X.X

33 Header Space Framework Transfer Function Properties: Composable: S1 S3 S2

34 Header Space Framework Transfer Function Properties: Invertible: Doman (input) Range (output)

35 Header Space Framework Step 3: Develop an Algebra to work on these spaces A subspace correspond to a Wildcard We use this to define set operations on Wildcards: Intersection Complementation Difference

36 Use Cases “Can host A talk to host B?” A B Switch 1 Switch 3 Switch 4 Switch 2

37 Discussion

Download ppt "Data Plane Verification. Background: What are network policies Alice can talk to Bob Skype traffic must go through a VoIP transcoder All traffic must."

Similar presentations

Access Control List (ACL)

Access Control List (ACL)
SDN Applications Jennifer Rexford Princeton University.

SDN Applications Jennifer Rexford Princeton University.
1 IP-Lookup and Packet Classification Advanced Algorithms & Data Structures Lecture Theme 08 – Part I Prof. Dr. Th. Ottmann Summer Semester 2006.

1 IP-Lookup and Packet Classification Advanced Algorithms & Data Structures Lecture Theme 08 – Part I Prof. Dr. Th. Ottmann Summer Semester 2006.
Nanxi Kang Princeton University

Nanxi Kang Princeton University
Slick: A control plane for middleboxes Bilal Anwer, Theophilus Benson, Dave Levin, Nick Feamster, Jennifer Rexford Supported by DARPA through the U.S.

Slick: A control plane for middleboxes Bilal Anwer, Theophilus Benson, Dave Levin, Nick Feamster, Jennifer Rexford Supported by DARPA through the U.S.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—4-1 Implementing Inter-VLAN Routing Deploying Multilayer Switching with Cisco Express Forwarding.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—4-1 Implementing Inter-VLAN Routing Deploying Multilayer Switching with Cisco Express Forwarding.
Header Space Analysis: Static Checking For Networks Peyman Kazemian, Nick McKeown (Stanford University) and George Varghese (UCSD and Yahoo Labs). Presented.

Header Space Analysis: Static Checking For Networks Peyman Kazemian, Nick McKeown (Stanford University) and George Varghese (UCSD and Yahoo Labs). Presented.
VeriCon: Towards Verifying Controller Programs in SDNs (PLDI 2014) Thomas Ball, Nikolaj Bjorner, Aaron Gember, Shachar Itzhaky, Aleksandr Karbyshev, Mooly.

VeriCon: Towards Verifying Controller Programs in SDNs (PLDI 2014) Thomas Ball, Nikolaj Bjorner, Aaron Gember, Shachar Itzhaky, Aleksandr Karbyshev, Mooly.
H EADER S PACE A NALYSIS : S TATIC C HECKING F OR N ETWORKS Peyman Kazemian (Stanford University) George Varghese (UCSD, Yahoo Labs) Nick McKeown (Stanford.

H EADER S PACE A NALYSIS : S TATIC C HECKING F OR N ETWORKS Peyman Kazemian (Stanford University) George Varghese (UCSD, Yahoo Labs) Nick McKeown (Stanford.
Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung(1203584897) SriramGopinath(1203800749)

Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung( ) SriramGopinath( )
Software-Defined Networking

Software-Defined Networking
Class 3: SDN Stack Theophilus Benson. Outline Background – Routing in ISP – Cloud Computing SDN application stack revisited Evolution of SDN – The end.

Class 3: SDN Stack Theophilus Benson. Outline Background – Routing in ISP – Cloud Computing SDN application stack revisited Evolution of SDN – The end.
Year 2 - Chapter 6/Cisco 3 - Module 6 ACLs. Objectives  Define and describe the purpose and operation of ACLs  Explain the processes involved in testing.

Year 2 - Chapter 6/Cisco 3 - Module 6 ACLs. Objectives  Define and describe the purpose and operation of ACLs  Explain the processes involved in testing.
1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.

1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.
Unified IPv6 Transition Framework With Flow-based Forwarding draft-cui-softwire-unified-v6-framework-00 Presenter: Cong Liu 1.

Unified IPv6 Transition Framework With Flow-based Forwarding draft-cui-softwire-unified-v6-framework-00 Presenter: Cong Liu 1.
Network Layer Moving datagrams. How do it know? Tom-Tom.

Network Layer Moving datagrams. How do it know? Tom-Tom.
Formal checkings in networks James Hongyi Zeng with Peyman Kazemian, George Varghese, Nick McKeown.

Formal checkings in networks James Hongyi Zeng with Peyman Kazemian, George Varghese, Nick McKeown.
Enabling Innovation Inside the Network Jennifer Rexford Princeton University

Enabling Innovation Inside the Network Jennifer Rexford Princeton University
Software-Defined Networks Jennifer Rexford Princeton University.

Software-Defined Networks Jennifer Rexford Princeton University.
1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.

1 IP Forwarding Relates to Lab 3. Covers the principles of end-to-end datagram delivery in IP networks.

Similar presentations

Ads by Google