Presentation is loading. Please wait.

Presentation is loading. Please wait.

SDX: A Software-Defined Internet eXchange Jennifer Rexford Princeton University

Published byJocelyn Tyler Modified over 8 years ago

Similar presentations

Presentation on theme: "SDX: A Software-Defined Internet eXchange Jennifer Rexford Princeton University"— Presentation transcript:

1 SDX: A Software-Defined Internet eXchange Jennifer Rexford Princeton University http://sdx.cs.princeton.edu

2 Software Defined Networking Changing how we design and manage networks –Data centers, backbones, enterprises, … But, so far, mostly inside these networks –Network virtualization, traffic engineering, … In this talk: –Fundamentally change interdomain traffic delivery –Starting with SDN at boundaries between domains 2

3 Wide-Area Traffic Delivery 3 1 2 3 4 5 6 7 ~50,000 Autonomous Systems (ASes)

4 Border Gateway Protocol (BGP) 4 Interdomain routing on IP address blocks 1 2 3 4 5 6 7 12.34.56.0/24 Web server

5 BGP is Not Flexible Enough Routing only on destination IP address blocks (No customization of routes by application or sender) Can only influence immediate neighbors (No ability to affect path selection remotely) Indirect control over packet forwarding (Indirect mechanisms to influence path selection) Enables only basic packet forwarding (Difficult to introduce new in-network services) 5

6 Valuable Wide-Area Services Application-specific peering –Route video traffic one way, and non-video another Blocking denial-of-service traffic –Dropping unwanted traffic further upstream Server load balancing –Directing client requests to different data centers Steering through network functions –Transcoders, scrubbers, caches, crypto, … Inbound traffic engineering –Splitting incoming traffic over multiple peering links 6

7 Enter Software-Defined Networking Match packets on multiple header fields (not just destination IP address) Control entire networks with a single program (not just immediate neighbors) Direct control over packet handling (not indirect control via routing protocol arcana) Perform many different actions on packets (beyond basic packet forwarding) 7

8 Deploy SDN at Internet Exchanges Leverage: SDN deployment even at single IXP can benefit tens to hundreds of providers –Without providers deploying new equipment! Innovation hotbed: Incentives to innovate, as IXPs on front line of peering disputes Growing in numbers: –350-400 IXPs –~100 new IXPs established in past few years 8

9 SDX: Software-Defined eXchange (SIGCOMM’14 paper) 9 Arpit Gupta, Nick Feamster, Laurent Vanbever, Muhammad Shahbaz, Sean Donovan, Brandon Schlinker, Scott Shenker, Russ Clark, Ethan Katz-Bassett Princeton University, Georgia Tech, UC Berkeley, USC http://sdx.cs.princeton.edu

10 Conventional IXPs 10 AS A Router AS C Router AS B Router BGP Session Switching Fabric IXP Route Server

11 SDX = SDN + IXP 11 AS A Router AS C Router AS B Router BGP Session SDN Switch SDX Controller SDX

12 Prevent DDoS Attacks 12 AS 2 AS 1 AS 3 SDX 1SDX 2

13 Prevent DDoS Attacks 13 AS 2 AS 1 AS 3 SDX 1SDX 2 Attacker Victim AS1 under attack originating from AS3

14 Use Case: Prevent DDoS Attacks 14 AS 2 AS 1 AS 3 SDX 1SDX 2 Attacker Victim AS1 can remotely block attack traffic at SDX(es)

15 SDX-based DDoS protection vs. Traditional Defenses/Blackholing Remote influence Physical connectivity to SDX not required More specific Drop rules based on multiple header fields, source address, destination address, port number … Coordinated Drop rules can be coordinated across multiple IXPs 15

16 Inbound Traffic Engineering 16 AS A Router AS C Routers AS B Router SDX Controller SDX C1C2 10.0.0.0/8

17 17 AS A Router AS C Routers AS B Router C1C2 Incoming Data Inbound Traffic Engineering 10.0.0.0/8 Incoming TrafficOut Port Using BGPUsing SDX dstport = 80C1

18 18 AS A Router AS C Routers AS B Router C1C2 Incoming Data Inbound Traffic Engineering 10.0.0.0/8 Incoming TrafficOut Port Using BGPUsing SDX dstport = 80C1? Fine grained policies not possible with BGP

19 19 Incoming TrafficOut Port Using BGPUsing SDX dstport = 80C1?match(dstport =80)  fwd(C1) AS A Router AS C Routers AS B Router C1C2 Incoming Data Inbound Traffic Engineering 10.0.0.0/8 Enables fine-grained traffic engineering policies

20 Building SDX is Challenging Programming abstractions How networks define SDX policies and how are they combined together? Interoperation with BGP How to provide flexibility w/o breaking global routing? Scalability How to handle policies for hundreds of peers, half million address blocks, and matches on multiple header fields? 20

21 Building SDX is Challenging Programming abstractions How networks define SDX policies and how are they combined together? Interoperation with BGP How to provide flexibility w/o breaking global routing? Scalability How to handle policies for hundreds of peers, half million prefixes and matches on multiple header fields? 21

22 Directly Program the SDX Switch 22 B1 A1 C1C2 match(dstport=80)  fwd(C1) match(dstport=80)  fwd(C) Switching Fabric AS A & C directly program the SDX Switch

23 Virtual Switch Abstraction Each AS writes policies for its own virtual switch 23 AS A C1C2 B1 A1 AS C AS B match(dstport=80)  fwd(C) match(dstport=80)  fwd(C1) Virtual Switch Switching Fabric

24 Synthesize: match(inport=A1 & dstport=80)  fwd(C1) Combining Participant’s Policies 24 AS A C1C2 B1 A1 AS C AS B match(dstport=80)  fwd(C1) Virtual Switch Switching Fabric p match(dstport=80)  fwd(C)

25 Building SDX is Challenging Programming abstractions How networks define SDX policies and how are they combined together? Interoperation with BGP How to provide flexibility w/o breaking global routing? Scalability How to handle policies for hundreds of peers, half million address blocks, and matches on multiple header fields? 25

26 SDX Platform Running code with full BGP integration –Github available from http://sdx.cs.princeton.edu SDX testbeds: –Transit Portal for “in the wild” experiments –Mininet for controller experiments Exploring deployment opportunities –Princeton, DOD/IC, GENI, SOX, Internet2, ESnet –Regional IXPs in US, Europe, and Africa 26

27 Conclusion The Internet is changing –New challenges for content delivery –Increasing importance of IXPs SDN can let providers innovate –New capabilities and abstractions Next steps –Operational deployments –Additional SDX applications –Distributed exchange points 27

Download ppt "SDX: A Software-Defined Internet eXchange Jennifer Rexford Princeton University"

Similar presentations

Multihoming and Multi-path Routing

Multihoming and Multi-path Routing
Multihoming and Multi-path Routing

Multihoming and Multi-path Routing
SDN Applications Jennifer Rexford Princeton University.

SDN Applications Jennifer Rexford Princeton University.
Jennifer Rexford Princeton University MW 11:00am-12:20pm Network Virtualization COS 597E: Software Defined Networking.

Jennifer Rexford Princeton University MW 11:00am-12:20pm Network Virtualization COS 597E: Software Defined Networking.
SDX: A Software-Defined Internet Exchange

SDX: A Software-Defined Internet Exchange
Jennifer Rexford Princeton University

Jennifer Rexford Princeton University
Network Layer: Internet-Wide Routing & BGP Dina Katabi & Sam Madden.

Network Layer: Internet-Wide Routing & BGP Dina Katabi & Sam Madden.
© J. Liebeherr, All rights reserved 1 Border Gateway Protocol This lecture is largely based on a BGP tutorial by T. Griffin from AT&T Research.

© J. Liebeherr, All rights reserved 1 Border Gateway Protocol This lecture is largely based on a BGP tutorial by T. Griffin from AT&T Research.
Title or Title Event/Date Presenter, PresenterTitle, Internet2 Network Virtualization & the Internet2 Innovation Platform To keep our community at the.

Title or Title Event/Date Presenter, PresenterTitle, Internet2 Network Virtualization & the Internet2 Innovation Platform To keep our community at the.
Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.

Fundamentals of Computer Networks ECE 478/578 Lecture #18: Policy-Based Routing Instructor: Loukas Lazos Dept of Electrical and Computer Engineering University.
1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.

1 Interdomain Routing Protocols. 2 Autonomous Systems An autonomous system (AS) is a region of the Internet that is administered by a single entity and.
OBGP: A mechanism for optical peering and lightpath trading George M. Porter Sahara Retreat UC Berkeley January 2002.

OBGP: A mechanism for optical peering and lightpath trading George M. Porter Sahara Retreat UC Berkeley January 2002.
1 In VINI Veritas: Realistic and Controlled Network Experimentation Jennifer Rexford with Andy Bavier, Nick Feamster, Mark Huang, and Larry Peterson

1 In VINI Veritas: Realistic and Controlled Network Experimentation Jennifer Rexford with Andy Bavier, Nick Feamster, Mark Huang, and Larry Peterson
S ufficient C onditions to G uarantee P ath V isibility Akeel ur Rehman Faridee 2005-03-0021.

S ufficient C onditions to G uarantee P ath V isibility Akeel ur Rehman Faridee
CS 164: Global Internet Slide Set -- 11. In this set... More about subnets Classless Inter Domain Routing (CIDR) Border Gateway Protocol (BGP) Areas with.

CS 164: Global Internet Slide Set In this set... More about subnets Classless Inter Domain Routing (CIDR) Border Gateway Protocol (BGP) Areas with.
Mini Introduction to BGP Michalis Faloutsos. What Is BGP?  Border Gateway Protocol BGP-4  The de-facto interdomain routing protocol  BGP enables policy.

Mini Introduction to BGP Michalis Faloutsos. What Is BGP?  Border Gateway Protocol BGP-4  The de-facto interdomain routing protocol  BGP enables policy.
Stable Internet Routing Without Global Coordination Jennifer Rexford Princeton University Joint work with Lixin Gao (UMass-Amherst)

Stable Internet Routing Without Global Coordination Jennifer Rexford Princeton University Joint work with Lixin Gao (UMass-Amherst)
Anycast Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.

Anycast Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.
1 Different Strokes for Different Folks (Or, How I Learned to Stop Worrying and Love Virtualization) Jennifer Rexford, Princeton University Joint work.

1 Different Strokes for Different Folks (Or, How I Learned to Stop Worrying and Love Virtualization) Jennifer Rexford, Princeton University Joint work.
A Routing Control Platform for Managing IP Networks Jennifer Rexford Princeton University

A Routing Control Platform for Managing IP Networks Jennifer Rexford Princeton University

Similar presentations

Ads by Google