Presentation is loading. Please wait.

Presentation is loading. Please wait.

ECE 526 – Network Processing Systems Design Network Processing Functions Chapter 6&9: D. E. Comer.

Published byCorey Russell Modified over 8 years ago

Similar presentations

Presentation on theme: "ECE 526 – Network Processing Systems Design Network Processing Functions Chapter 6&9: D. E. Comer."— Presentation transcript:

1 ECE 526 – Network Processing Systems Design Network Processing Functions Chapter 6&9: D. E. Comer

2 Ning WengECE 5262 Packet Processing Functions Basic network system functionality ─ Address lookup ─ Packet forwarding ─ Fragmentation and re-assembly ─ Security ─ Error detection and correction ─ Queuing ─ Scheduling ─ Protocol de-multiplexing ─ Packet classification ─ Traffic measurement (Lab 2)

3 Ning WengECE 5263 Outline Error detection and correction Queueing Scheduling Packet classification ─ Inefficiency of packet de-multiplexing ─ Classification implementation schemes Summary

4 Ning WengECE 5264 Error Detection and Correction Bit errors can occur in packet Layer 2 ─ Cyclic Redundancy Check (CRC) Layer 3 ─ Header checksum Significant computation overhead ─ Layer 2 CRC done in hardware ─ Layer 3 checksum computed over packet header only Error correction not performed by network system ─ Even more overhead ─ Error correction handled by upper layers

5 Ning WengECE 5265 Queueing Referred to policies, data structure and algorithms related to storing and selecting packets Packet processing- store and forward ─ Incoming packet placed in incoming queue ─ Outgoing packet placed in output queue When queue full, packets are discarded Recall: queuing is one source of packet delay Basic questions about queuing ─ What is the right size of each queue? ─ How many queue needed? ─ Where to place queues physically? ─ How to implement priority policy?

6 Ning WengECE 5266 Queueing Priority Multiple queues used to enforce priority Incoming packet ─ Assigned priority as function of packet content, size or security ─ Placed in appropriate priority queue Queueing discipline ─ Examining priority queues ─ Chooses which packet to send ─ Drop/discard policy: tail drop

7 Ning WengECE 5267 Queueing Disciplines Priority Queueing ─ Assign unique priority number to each queue ─ Choose packet from highest priority queue which is nonempty ─ Known as strict priority queueing -> starvation Weighted Round Robin (WRR) ─ Assign unique priority number to each queue ─ Process all queues round-robin ─ Compute N, max number of packets to select from a queue proportional to priority ─ Take up to N packet for processing before moving to next queue ─ Does this work well? Weighed Fair Queueing (WFQ) ─ Use packet size rather than number of packets ─ Allocates priority to data amount of from a queue rather than number of packets

8 Ning WengECE 5268 Scheduling Co-ordination of activities in network systems Two types ─ Link (queue) scheduling ─ Resource scheduling Resource allocation ─ Processing on multiple packets ─ Processing on multiple protocols ─ Multiple processors Scheduling attempts to achieve fairness

9 Ning WengECE 5269 message segment datagram frame source application transport network link physical HtHt HnHn HlHl M HtHt HnHn M HtHt M M destination application transport network link physical HtHt HnHn HlHl M HtHt HnHn M HtHt M M network link physical link physical HtHt HnHn HlHl M HtHt HnHn M HtHt HnHn HlHl M HtHt HnHn M HtHt HnHn HlHl M HtHt HnHn HlHl M router switch Encapsulation

10 Ning WengECE 52610 Protocol Demultiplexing Used with layered protocols Protocols at each layer of stack are differentiated with type information at lower layer ─ Example: layer 3 – IP, ARP based on Ethernet type Layered processing ─ On output side (sender), type field in each header specifies encapsulation. ─ On input side (receiver), software in each layer chooses module at next higher layer. ─ Layered processing is inefficient since we have to go through all stacks sequentially Can we do better?

11 Ning WengECE 52611 Packet Classification Alternative to demultiplexing for higher speed Idea ─ All layer header information available (no dependency) ─ Can we process layer headers at different sequence (reorder!) ─ Can we consider all layer header at the same time (parallel!) Classification ─ Mapping packet into categories ─ Based on header information from mixed layer Rule based ─ Example: five-tuple flow classification Web traffic

12 Ning WengECE 52612 Classification: Software Version Compare values in header fields Conceptually a logic and of all fields comparisons Example: web traffic ─ three classification rules required If ((frame type == 0x800) && (IP type ==6) && (TCP port ==80) packet matched classification else packet does not match classification Can we do better?

13 Ning WengECE 52613 Classification: Software Optimization

14 Ning WengECE 52614 Classification: Hardware Version Specific hardware Extract required fields parallel

15 Ning WengECE 52615 Classification: Hybrid Version Hardware and software combination ─ Hardware for standard cases ─ Software for exceptions

16 Ning WengECE 52616 Summary Finish overview of the major packet processing functions Error detection and correction are expensive Queuing and queuing disciplines Scheduling and fairness Difference between demultiplexing and classification ─ Sequential tour layers vs. parallel scan

17 Ning WengECE 52617 Network Measurements Why do we need measurements? ─ Debugging ─ Performance tuning ─ Discovery of network structure ─ Understanding of network behavior (reverse-engineering) ─ Discovery of security holes and attacks ─ Etc. How can we measure networks? ─ Inject packets and see what happens (active measurement) ─ Observe traffic (passive measurement) What are pros and cons of measurement?

18 Ning WengECE 52618 Active Measurement Metrics that can be measured ─ Connectivity ─ Round-trip time ─ Loss rate ─ Reordering ─ Available bandwidth ─ Bandwidth capacity Some metrics are available per-hop, others only end-to- end Some tools need software on both sides of measurement

19 Ning WengECE 52619 Passive Passive Measurement Tcpdump is an example of passive network measurement Passive measurement consists of several phases ─ Data collection ─ Data storage ─ Extraction and calculation of metrics Passive measurement metrics ─ Traffic volume (link utilization) ─ Traffic mix (e.g., by protocol type, by destination) ─ TCP flow behavior (packet retransmissions) Passive measurement challenges? ─ Data rates to process ─ Only partial view of network ─ Staleness of data

20 Ning WengECE 52620 Lab2: Network Traffic Monitoring & Performance Measurement Goals ─ Learn basic network tools ─ Understand packet structure by watching real packets ─ Get real performance number Tools ─ Ping: a program verifying the existence of IP address Used for packet generator and delay measurement ─ Traceroute: a program tracing the route from sender to destination Used for delay measurement and route bottleneck identifier ─ Ethereal: network protocol analyzer ─ Iperf: a tool to measure the maximum throughput between client and server

21 Ning WengECE 52621 Connectivity Simples case of active measurement Typically done with ICMP Echo Request ─ Recipient will reply with ICMP Echo Response Implemented in ping tool: ─ Sends ICMP echo requests to specified IP address ─ Prints responses ─ Reports TTL, round-trip time, loss rate (both ways) Useful parameters ─ -c or -n count ─ On Unix: -n numeric output (no IP address translation) ─ -f flood ping ☺ Very common and useful tool

22 Ning WengECE 52622 Ping Sending ICMP “echo request” packets to the target host and listening for ICMP “echo response” repliesICMPecho requestpacketsecho response Using interval timing and response rate, ping estimates the round-trip time and packet lossround-trip timepacket loss

23 Ning WengECE 52623 Ping Limitations What are the limitations of ping? ─ ICMP disabled ─ NAT boxes / firewalls ─ No information on route (other than TTL) ─ No information on performance (other than RTT) Other interesting observations ─ TTL in packets can reveal OS type (useful for hackers)

24 Ning WengECE 52624 Route How can route of packet be measured? Traceroute approach: ─ Send packets with limited TTL towards destination ─ Packets will “expire” and cause ICMP error message ─ Source of error message is intermediate hop ─ Repeat with increasing TTL Output: ─ Each router with RTT

25 Ning WengECE 52625 Traceroute To determine the route taken by packets across an IP network.packetsIP working by increasing the "time-to-live" value of each successive batch of packets senttime-to-live Host discards the packet and sends an ICMP time exceeded packet when TTL = 0ICMPtime exceeded Using these returning packets to produce a list of hosts that the packets have traversed en route to the destination IP does not guarantee that all the packets take the same route.

26 Ning WengECE 52626

27 Ning WengECE 52627 Traceroute Limitation Not all routers respond Processing, control and queue leads to wrong TTL results

28 Ning WengECE 52628 tcpdump Passive network measurement tool: tcpdump Tcpdump collects packets from interface and displays headers ─ Only one interface can be observed at any point of time ─ All traffic on interface can bee seen (promiscuous mode) ─ Filter allows pre-filtering of output ─ Payload can be preserved (if necessary) ─ Timestamp of packet arrival and transmission Very useful to check network setup Useful options ─ -n no address translation ─ -r and -w to read and write files ─ -s determines length of preserved data ─ -vv very verbose output Results can be displayed nicely with ethereal

29 Ning WengECE 52629 Ethereal

30 Ning WengECE 52630 Bandwidth How to measure bandwidth? ─ TCP vs. UDP ─ Inject packets at high rates ─ Reporting of result? ─ Requires software on both sides Issues to consider ─ Measurement reports currently available bandwidth ─ Reports only bottleneck bandwidth ─ TCP behavior needs to be considered ─ Timing of UDP packet is critical Tool: iperf (and many others) ─ Client acts as sender ─ Server sinks traffic and reports statistics

31 Ning WengECE 52631 iperf Iperf report Iperf options ─ -s run as server ─ -c run as client ─ -u uses UDP instead of TCP ─ Man other options for packet size and rate (UDP) ─ -b binds output interface (very useful)

32 Ning WengECE 52632 Iperf > iperf -c 10.0.13.68 results should look like this: ------------------------------------------------------------ Client connecting to 10.0.13.68, TCP port 5001 TCP window size: 8.00 KByte (default) ------------------------------------------------------------ [1924] local (your IP) port 1500 connected with 10.0.13.68 port 5001 [ ID] Interval Transfer Bandwidth [1924] 0.0-10.0 sec 111 MBytes 92.9 Mbits/sec You're interested in the red numbers

33 Ning WengECE 52633 iperf Limitations What are the limitations of iperf? ─ Same as for any other bandwidth measurement tool ─ Control overhead ─ Many options -> possible misconfiguration Need tool to observe network traffic to verify correct measurement setup

34 Ning WengECE 52634 Hyperion Project Distributed passive measurement platform ─ Multiple measurement node in network ─ Coordinated traffic collection and storage Performance challenge ─ Extraction, storage, and retrieval requires high performance Network processors can be used for extraction and pre- processing

35 Ning WengECE 52635 Hyperion Node Architecture

36 Ning WengECE 52636 Privacy Issues Passive measurements observe all traffic in network ─ Users have rights to privacy ─ Measurement data can reveal lots of personal information Examples of personal information ─ Web pages visited ─ Usernames and passwords (if not encrypted) ─ Emails, IM, etc. ─ Even encrypted traffic reveals information One possible solution: anonymization of traces ─ “Scramble” IP addresses ─ Prefix-preserving hashing is preferable over random hashing ─ Computationally expensive

Download ppt "ECE 526 – Network Processing Systems Design Network Processing Functions Chapter 6&9: D. E. Comer."

Similar presentations

21.1 Chapter 21 Network Layer: Address Mapping, Error Reporting, and Multicasting Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction.

21.1 Chapter 21 Network Layer: Address Mapping, Error Reporting, and Multicasting Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction.
Internet Control Protocols Savera Tanwir. Internet Control Protocols ICMP ARP RARP DHCP.

Internet Control Protocols Savera Tanwir. Internet Control Protocols ICMP ARP RARP DHCP.
Introduction1-1 message segment datagram frame source application transport network link physical HtHt HnHn HlHl M HtHt HnHn M HtHt M M destination application.

Introduction1-1 message segment datagram frame source application transport network link physical HtHt HnHn HlHl M HtHt HnHn M HtHt M M destination application.
1 Chapter 3 TCP and IP. Chapter 3 TCP and IP 2 Introduction Transmission Control Protocol (TCP) Transmission Control Protocol (TCP) User Datagram Protocol.

1 Chapter 3 TCP and IP. Chapter 3 TCP and IP 2 Introduction Transmission Control Protocol (TCP) Transmission Control Protocol (TCP) User Datagram Protocol.
EECB 473 Data Network Architecture and Electronics Lecture 3 Packet Processing Functions.

EECB 473 Data Network Architecture and Electronics Lecture 3 Packet Processing Functions.
1 TDC365-03 TDC 365 Network Interconnections Technologies Lecture #4 Notes Spring, 2009.

1 TDC TDC 365 Network Interconnections Technologies Lecture #4 Notes Spring, 2009.
The Network Layer Chapter 5. The IP Protocol The IPv4 (Internet Protocol) header.

The Network Layer Chapter 5. The IP Protocol The IPv4 (Internet Protocol) header.
Chapter 5 The Network Layer.

Chapter 5 The Network Layer.
4-1 Network layer r transport segment from sending to receiving host r on sending side encapsulates segments into datagrams r on rcving side, delivers.

4-1 Network layer r transport segment from sending to receiving host r on sending side encapsulates segments into datagrams r on rcving side, delivers.
Chapter 6 Packet Processing Functions

Chapter 6 Packet Processing Functions
Internet Networking Spring 2003

Internet Networking Spring 2003
Internet Bandwidth Measurement Techniques Muhammad Ali Dec 17 th 2005.

Internet Bandwidth Measurement Techniques Muhammad Ali Dec 17 th 2005.
ECE 526 – Network Processing Systems Design Packet Processing II: algorithms and data structures Chapter 5: D. E. Comer.

ECE 526 – Network Processing Systems Design Packet Processing II: algorithms and data structures Chapter 5: D. E. Comer.
Chapter 9 Classification And Forwarding. Outline.

Chapter 9 Classification And Forwarding. Outline.
Network Layer4-1 Network layer r transport segment from sending to receiving host r on sending side encapsulates segments into datagrams r on rcving side,

Network Layer4-1 Network layer r transport segment from sending to receiving host r on sending side encapsulates segments into datagrams r on rcving side,
IP-UDP-RTP Computer Networking (In Chap 3, 4, 7) 건국대학교 인터넷미디어공학부 임 창 훈.

IP-UDP-RTP Computer Networking (In Chap 3, 4, 7) 건국대학교 인터넷미디어공학부 임 창 훈.
Chapter 4 Queuing, Datagrams, and Addressing

Chapter 4 Queuing, Datagrams, and Addressing
What Can IP Do? Deliver datagrams to hosts – The IP address in a datagram header identify a host IP treats a computer as an endpoint of communication Best.

What Can IP Do? Deliver datagrams to hosts – The IP address in a datagram header identify a host IP treats a computer as an endpoint of communication Best.
Process-to-Process Delivery:

Process-to-Process Delivery:
21.1 Chapter 21 Network Layer: Address Mapping, Error Reporting, and Multicasting Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction.

21.1 Chapter 21 Network Layer: Address Mapping, Error Reporting, and Multicasting Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction.

Similar presentations

Ads by Google