KEMBAR78
Network Algorithmics | PPTX
인욱 황, profile picture
Uploaded by인욱 황
PPTX, PDF159 views

Network Algorithmics

Network Algorithmics focuses on designing fast implementations of network processing tasks using an interdisciplinary systems approach and algorithmic thinking. This includes optimizing common tasks like packet scheduling, traffic measurement, and address lookups in routers. It discusses techniques like deficit round robin for bandwidth guarantees, random early detection for congestion control, and data structures like tries and ternary content-addressable memory for high-speed prefix and exact matching. The document also introduces the concept of "network algorithmics" for using algorithms and data structures to solve problems in computer networking.

Download to read offline
Network Algorithmics 황인욱 Atto Research 2018. 6. 15.
순서 • Building faster routers – Scheduling packets • BW guarantee & DRR • Random early detection • Token bucket – Traffic measurement – Lookups • Prefix Match • Exact-Match: inventing bridge • “Network Algorithmics” 소개 2
Router Bottlenecks • Exact match-lookup • Prefix match-lookup • Switching • QoS 3
Scheduling Packet • Output queue에서 packet처리 – FIFO with tail-drop의 문제점 • 할일 – BW guarantee, rate-limiting, TCP congestion control – 네트워크를 A와 B가 사용. A는 우선적으로 80%의 대역폭 보장 하려면? – 동영상 트래픽은 1Mbps를 넘지 못하게 하자. 4
BW guarantee • FIFO queue • Multi queue with Round robin A B A B B B 200 200 200 200 200 200 200 600 400 A B 5 A B
BW guarantee • Multi queue with Priority • 문제 – Priority 관리 – 가장 높은 priority 찾기 (heap – log n) • 이렇게까지 하지말고, long term에서 맞춰주자 200 200 200 200 200 200 600 A B 200 400A B 6 timestamp
Deficit RR (DRR) • O(1) – Active List: 보낼 패킷이 있는 queue의 목록 – Quantum은 최소 packet size보다 크게: queue 방문하면 반드시 packet 보냄 200 200 200 200 200 200 600 200 200 600 400 0 0 0 Round robin pointer Deficit counter A B C A B C 7 300 100 100 400 0 0
DRR extention • Class based queuing (CBQ) – Hierarchical DRR • Node 당 scheduler 하나 • Modified DRR (cisco/juniper) – voIP는 top priority Tenant A Tenant B Web 그외 Web 그외 70% 30% 40% 60% 50% 50% 8
TCP congestion control • IPv4에는 congestion 예방을 위한 DECbit가 없다? – Proposal on table for a ECN bit for IPv6 9
Random Early Detection (RED) • TCP restart를 최소화하자. – Output queue가 어느 크기 이상이면 packet drop. – 일종의 신호. • 대부분의 라우터에서 구현. – de facto standard • Weighted RED (WRED) – Cisco – IP TOS bit에 따라서 threshold 다르게 • Adaptive RED(ARED), robust RED(RRED) 10
Token bucket • 언제 필요한가 – 어떤 flow에 대해 100Kbps로 대역폭 제한 – 하지만 4KB 정도는 burstiness 허용 OpenFlow 1.3 11
Token bucket 12 • Bucket에 B 이상은 담기지 않는다. • 실제로는 counter와 timer로 구현
Shaping .vs. policing https://www.cisco.com/c/en/us/support/docs/quality-of-service-qos/qos-policing/19645-policevsshape.html 13
Traffic Measurement • Traffic 측정은 중요 – Internet Backbones에서 Accounting/Billing – Traffic engineering – Capacity planning – Network diagnostics and forensics: Intrusion detection, denial- of-service attacks – Products: NetFlow (Cisco), cflowd (Juniper), NetStream (Huawei) • 그리고 “떠오르는 분야” 14
Counting : 0 : 0 : 0 : 0 : 0 : 1: 2 : 1: 2: 3: 4: 5: 6: 7: 8: 9: 10: 11: 12: 13: 14: 15: 16: 17: 18: 19: 20: 21: 22: 23: 24 : 1: 2: 3 : 1 : 1: 2: 3 • Counting: 대표적인 measurement – Interface에 대한 counting: 쉽다 – Filter-based, per-prefix: 어렵다 15
Hybrid DRAM-SRAM architecture • DRAM(large) .vs. SRAM(fast) – DRAMs have access times of 50 - 60 ns – SRAMs have access times of 4.5 -7 ns, but around 50 - 60 Mb (Micro n Tech.) 16 “Expensive infeasible”
Approximate counting • 더 단순하게 만들고, 메모리를 줄이기 위해 정확성을 희생시키자. • Randomized counting – 확률적으로 counter 증가 • Large flows (elephants) 만 측정하고 small flows (mice)는 무시해도 될 것 같다. – 그런데 elephant 인지는 어떻게 알지? – Elephant인지 알기 위해서 모든 flow에 대해서 counting하면 똑같음 -> hashing – False positive 줄이기 위해 multi-hash 17
Overall Architecture Elephant Traps Few, deep counters Mouse Traps Many, shallow counters Status bit Indicates overflow flows 18
Sampling • Basic Netflow – DRAM에 부담, collection overhead – 보통 1/16, 1/1000 • Sampled charging • Trajectory sampling – 라우터들의 hash를 동일하게 19 Trajectory sampling
Longest Prefix Matching 20 10.0.0.0/8 00001010 XXXXXXXX XXXXXXXX XXXXXXXX R1 128.0.0.0/9 10000000 0XXXXXXX XXXXXXXX XXXXXXXX R2 10.0.1.0/24 00001010 00000000 00000001 XXXXXXXX R3 0.0.0.0/0 XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX R4 10.0.1.5 와 match되는 가장 긴 prefix는?
Longest Prefix Matching • Non-algorithmic – Caching • Map: 32-bit address에서 next hop로 • “Cache hit ratios in backbone: poor” – TCAM Issues (Ternary Content-Addressable Memories) • Density Scaling • Power Scaling • Time Scaling • Extra Chips • Algorithmic – TRIE: 문자열에 특화된 tree 자료구조 – Binary search • Semiconductor manufacturers – “양쪽에 베팅” - algorithmic, CAM-based 21
TCAM • Ternary Content Addressable Memory – 0, 1, X에 대해서 match된다 (ternary) – data를 넣으면 주소가 나온다. • Great for partial match – Longest prefix – Access lists 00 1 2 3 4 5 6 7 1 0 1 1 1 1 0 1 1 X X 1 0 1 X X X 1 1 0 1 X X 0 0 1 0 X X X 0 0 X 0 0 X 0 0 X 1 0 X X X X X X 22 SRAM TCAM Power 6x Area 7x Latency 4x 00 1 2 3 4 5 6 7 1 0 1 1 1 1 0 1 1 X X 1 0 1 X X X 1 1 0 1 X X 0 0 1 0 X X X 0 0 X 0 0 X 0 0 X 1 0 X X X X X X 1 0 1 1 0 0 1
One-bit TRIE 23 DRAM access: 60ns 32 * 60ns = 1.92 us
Multi-bit TRIE 여러가지 최적화: stride, compression 등 “10Gbps는 이걸로 충분” 24
Binary search • Multi-bit trie보다 느림 • 두가지 필요성 – 특허 • “이것 때문에 하고 있는 vendor들이 있다” – IPv6 • 8bit stride multibit TRIE: 16 acceses • Binary search on prefix lengths: 7 accesses 25
Binary search • Binary search on ranges • Binary search on prefix lengths 26 Length-1 Length-2 Length-3 … 101 100 111 110
Exact match lookup: history of bridge • 1980년대 후반 – Ethernet의 한계 – Ethernet을 확장 필요. • Filter repeater with learning (Mark Kempf, DEC) – “훌륭한 아이디어” 27
Wire Speed를 위해 한 것들 • 10Mbps – 2 lookups per port in 51.2 usec • Architecture – 4-port cheap DRAM with cycle time of 100 nsec for packet bufers and lookup memory. Bus parallelism, memory bandwidth, page mode. • Data Copying – Ethernet chips used DMA, packets copied from one port to other by flipping pointers. • Control Overhead – Interrupt overhead minimized by processor polling, staying in a loop after a packet interrupt. • Lookups – Used caveats. Wrote software to verify lookup bottleneck 28
Scaling lookups • 1990년대 – DEC의 결정: 100Mbps ethernet ring 연결 위한 FD야 bridge – 패킷 최소크기: 64b -> 40b – Lookup DB: 8K -> 64K • Two approaches – Perfect Hashing (pre-computation) – HW parallelism 29
Network Algorithmics 30 Network algorithmics is the use of an interdisciplinary systems approach, seasoned with algorithmic thinking, to design fast implementations of network processing tasks at servers, routers, and other networking devices
Topics • Endnode bottlenecks – Data copy: DMA, programmed IO – Context switching • service model (process/thread/event-driven), select() – Timer: timing wheel – Demultiplexing – Protocol processing • UDP checksum, buffer 관리, Reassembly • Router bottlenecks – exact match: bridge – prefix match: router의 longest first match – switching – packet classification • service differentiation (router) – QoS: rate-limiting, RED • 그외 – Network Measurement: counter, trajectory sampling – Network Security: exact/approximate string matching 31
15 implementation principles 32
Polya, “How to solve it” 33
ROUTE COMPUTATION USING DIJKSTRA’S ALGORITHM (4.3) 0 8 9 8 10 1 3 12 7 11 8 ∞ ∞ ∞ ∞ ∞ ∞ ∞ 2 4 5 6 0 11 9 88 9 8 10 1 3 12 7 11 8 ∞ ∞ ∞ ∞ 2 4 5 6 0 11 9 18 8 8 10 1 3 12 7 8 ∞ ∞ ∞ 2 4 5 6 0 11 9 10 8 8 12 7 8 12 ∞ ∞ 2 4 5 0 19 11 9 19 10 8 8 12 7 8 12 4 5 6 0 11 9 10 8 8 1 3 12 7 8 ∞ ∞ ∞ 2 4 5 6 34
ROUTE COMPUTATION USING DIJKSTRA’S ALGORITHM (4.3) 35 2 5 10 12 15 16 Heap n log n -> n + diam*maxlinkcost
Updating TCAM (3.1) 00 1 2 3 4 5 6 7 1 0 1 1 1 1 0 1 1 X X 1 0 1 X X X 1 1 0 1 X X 0 0 1 0 X X X 0 0 X 0 0 X 0 0 X 1 0 X X X X X X 1 0 1 1 0 0 1 36
principles 나름의 요약 • 자료구조, 하드웨어를 잘 사용하자 – TCAM, TRIE, Hash 등 • Common case를 최적화하라 – Cache • 제한조건을 완화시켜서 더 쉬운 알고리즘 적용. – 예: Real number 대신에 integer • 그것도 안되면, 정확도를 희생하거나 확률적인 방법도 고려하라 – 아주 정확하지 않아도 되는 값 (ranking) – Ethernet, RED 37
Summary • Building faster routers – Scheduling packets • BW guarantee & DRR • Random early detection • Token bucket – Traffic measurement – Lookups • Prefix Match • Exact-Match: inventing bridge • “Network Algorithmics” 소개 38

More Related Content

PPTX
Neutron qos overview
bySławomir Kapłoński
 
PDF
What is new in neutron QoS?
bySławomir Kapłoński
 
PPTX
DBodle QoS Exam Study Notes
byDuane Bodle
 
PDF
USENIX NSDI 2016 (Session: Resource Sharing)
byRyousei Takano
 
PDF
クラウド時代の半導体メモリー技術
byRyousei Takano
 
PDF
BGP zombie routes
byRedge Technologies
 
PDF
ゼロから作るパケット転送用OS (Internet Week 2014)
byHirochika Asai
 
PPTX
Stress your DUT
byRedge Technologies
 
Neutron qos overview
bySławomir Kapłoński
 
What is new in neutron QoS?
bySławomir Kapłoński
 
DBodle QoS Exam Study Notes
byDuane Bodle
 
USENIX NSDI 2016 (Session: Resource Sharing)
byRyousei Takano
 
クラウド時代の半導体メモリー技術
byRyousei Takano
 
BGP zombie routes
byRedge Technologies
 
ゼロから作るパケット転送用OS (Internet Week 2014)
byHirochika Asai
 
Stress your DUT
byRedge Technologies
 

What's hot

ODP
A Baker's dozen of TCP
byStephen Hemminger
 
PPTX
Spy hard, challenges of 100G deep packet inspection on x86 platform
byRedge Technologies
 
PPTX
Debug dpdk process bottleneck & painpoints
byVipin Varghese
 
PDF
Fast & Energy-Efficient Breadth-First Search on a Single NUMA System
byYuichiro Yasui
 
PDF
Training Slides: Intermediate 201: Single and Multi-Site Tungsten Clustering ...
byContinuent
 
PDF
Performance Lessons learned in vRouter - Stephen Hemminger
byharryvanhaaren
 
PPTX
Opensample: A Low-latency, Sampling-based Measurement Platform for Software D...
byJunho Suh
 
PDF
100 M pps on PC.
byRedge Technologies
 
PDF
PFQ@ 10th Italian Networking Workshop (Bormio)
byNicola Bonelli
 
ODP
Dpdk performance
byStephen Hemminger
 
PPTX
nested-kvm
bysethuraman ramanathan
 
PDF
On heap cache vs off-heap cache
byrgrebski
 
PDF
How to Speak Intel DPDK KNI for Web Services.
byNaoto MATSUMOTO
 
PPTX
Netmap presentation
byAmir Razmjou
 
PDF
On the feasibility of 40 Gbps network data capture and retention with general...
byJorge E. López de Vergara Méndez
 
PDF
Enabling a Secure Multi-Tenant Environment for HPC
byinside-BigData.com
 
PDF
Performance challenges in software networking
byStephen Hemminger
 
ODP
Bridging and its use in KVM
bySaravana Kumar
 
PPTX
Demystifying Networking Webinar Series- Routing on the Host
byCumulus Networks
 
PDF
Simplemux traffic optimization
byJose Saldana
 
A Baker's dozen of TCP
byStephen Hemminger
 
Spy hard, challenges of 100G deep packet inspection on x86 platform
byRedge Technologies
 
Debug dpdk process bottleneck & painpoints
byVipin Varghese
 
Fast & Energy-Efficient Breadth-First Search on a Single NUMA System
byYuichiro Yasui
 
Training Slides: Intermediate 201: Single and Multi-Site Tungsten Clustering ...
byContinuent
 
Performance Lessons learned in vRouter - Stephen Hemminger
byharryvanhaaren
 
Opensample: A Low-latency, Sampling-based Measurement Platform for Software D...
byJunho Suh
 
100 M pps on PC.
byRedge Technologies
 
PFQ@ 10th Italian Networking Workshop (Bormio)
byNicola Bonelli
 
Dpdk performance
byStephen Hemminger
 
nested-kvm
bysethuraman ramanathan
 
On heap cache vs off-heap cache
byrgrebski
 
How to Speak Intel DPDK KNI for Web Services.
byNaoto MATSUMOTO
 
Netmap presentation
byAmir Razmjou
 
On the feasibility of 40 Gbps network data capture and retention with general...
byJorge E. López de Vergara Méndez
 
Enabling a Secure Multi-Tenant Environment for HPC
byinside-BigData.com
 
Performance challenges in software networking
byStephen Hemminger
 
Bridging and its use in KVM
bySaravana Kumar
 
Demystifying Networking Webinar Series- Routing on the Host
byCumulus Networks
 
Simplemux traffic optimization
byJose Saldana
 

Similar to Network Algorithmics

PPTX
240705-랩소개-전산학부-석사신입생.pptx
byKAIST
 
PDF
4th SDN Interest Group Seminar-Session 2-3(130313)
byNAIM Networks, Inc.
 
PDF
Make container without_docker_7
bySam Kim
 
PPTX
[오픈소스컨설팅] Linux Network Troubleshooting
byOpen Source Consulting
 
PDF
도커 없이 컨테이너 만들기 4편 네트워크네임스페이스 (2)
bySam Kim
 
PDF
보안위협 관리통제
byMunkyeonggu
 
PDF
[233] level 2 network programming using packet ngin rtos
byNAVER D2
 
PPTX
Cache in API Gateway
byGilWon Oh
 
PDF
OVNC 2015-Open Ethernet과 SDN을 통한 Mellanox의 차세대 네트워크 혁신 방안
byNAIM Networks, Inc.
 
PDF
네트워크 가상화 보안현황 및 보안연관성
byNAIM Networks, Inc.
 
PDF
[OpenStack Days 2016] Track4 - OpenNSL으로 브로드콜 기반 네트,워크 스위치 제어하기
byOpenStack Korea Community
 
PDF
Open stackdaykorea2016 wedge
byJunho Suh
 
PPT
[OpenStack 하반기 스터디] HA using DVR
byOpenStack Korea Community
 
PDF
Make container without_docker_6-overlay-network_1
bySam Kim
 
PDF
1st SDN Interest Group Seminar - Session4 (121017)
byNAIM Networks, Inc.
 
PDF
오픈소스 네트워킹
byJames Ahn
 
PDF
7th SDN Expert Group Seminar - Session2
byNAIM Networks, Inc.
 
PDF
debugging openstack neutron /w openvswitch
by어형 이
 
PDF
Async event based web server
byGi Woong Lee
 
PPT
Vpls
byJeongWoo Seo
 
240705-랩소개-전산학부-석사신입생.pptx
byKAIST
 
4th SDN Interest Group Seminar-Session 2-3(130313)
byNAIM Networks, Inc.
 
Make container without_docker_7
bySam Kim
 
[오픈소스컨설팅] Linux Network Troubleshooting
byOpen Source Consulting
 
도커 없이 컨테이너 만들기 4편 네트워크네임스페이스 (2)
bySam Kim
 
보안위협 관리통제
byMunkyeonggu
 
[233] level 2 network programming using packet ngin rtos
byNAVER D2
 
Cache in API Gateway
byGilWon Oh
 
OVNC 2015-Open Ethernet과 SDN을 통한 Mellanox의 차세대 네트워크 혁신 방안
byNAIM Networks, Inc.
 
네트워크 가상화 보안현황 및 보안연관성
byNAIM Networks, Inc.
 
[OpenStack Days 2016] Track4 - OpenNSL으로 브로드콜 기반 네트,워크 스위치 제어하기
byOpenStack Korea Community
 
Open stackdaykorea2016 wedge
byJunho Suh
 
[OpenStack 하반기 스터디] HA using DVR
byOpenStack Korea Community
 
Make container without_docker_6-overlay-network_1
bySam Kim
 
1st SDN Interest Group Seminar - Session4 (121017)
byNAIM Networks, Inc.
 
오픈소스 네트워킹
byJames Ahn
 
7th SDN Expert Group Seminar - Session2
byNAIM Networks, Inc.
 
debugging openstack neutron /w openvswitch
by어형 이
 
Async event based web server
byGi Woong Lee
 
Vpls
byJeongWoo Seo
 

Recently uploaded

PDF
Best Tableau Alternatives for Data Analytics and Reporting.pdf
byVarsha Nayak
 
PDF
How QuickHR Helps SMEs Control Expense Claims
byParker adam
 
PDF
The Hidden Cost of Complicated PMO Tools - Using Gartner’s Guidance and OnePl...
byOnePlan Solutions
 
PDF
Shift Left for Inclusion: Scalable Accessibility Testing with Cypress - Cypre...
byLudovico Besana
 
PPTX
Safe Confined Space Entry Monitoring_ Singapore Experts.pptx
byprasadexiga0
 
PPTX
Cyber-Security-Essentials (21AK1A0217).pptx
byGaganGagan44
 
PPTX
Integrated Billing, Accounting & Inventory Solution for MSMEs
byMoving Cloud
 
PDF
Ensuring Regulatory Excellence with Insurance Compliance Software
byInsurance Tech Services
 
PDF
Scraping Amazon Prime Watchlist Data for Viewing Patterns.pdf
byyashpatric
 
PDF
Practical Performance Tuning for Serverless Java on AWS- InfoQ Dev Summit
byVadym Kazulkin
 
PDF
Security Architecture Views the FDA Expects — And How to Get Them Right
byICS
 
PDF
SAP & CTRM Testing Like Never Before
byZoe Gilbert
 
PPT
Lexical and Syntax Analysis top down parsers
bymjmansoori54
 
PPTX
Java Modern Puzzlers, a guide to new programming features
bySimon Ritter
 
PPTX
Financial Literacy for Software Developers
byBalanathanVirupasan
 
PPTX
AI-Powered Intelligent Agents for Fraud Detection
byleolucus1995
 
PPT
Evolution of the Major Programming Languages
bymjmansoori54
 
PDF
Autowiring all the things! - DrupalCon Vienna 2025 - Luca Lusso, SparkFabrik
bysparkfabrik
 
PDF
Metrics, logs, traces, and mayhem_ introducing an observability adventure gam...
byImma Valls Bernaus
 
PPT
SAP ERP Training For Senior Managers.ppt
byBalanathanVirupasan
 
Best Tableau Alternatives for Data Analytics and Reporting.pdf
byVarsha Nayak
 
How QuickHR Helps SMEs Control Expense Claims
byParker adam
 
The Hidden Cost of Complicated PMO Tools - Using Gartner’s Guidance and OnePl...
byOnePlan Solutions
 
Shift Left for Inclusion: Scalable Accessibility Testing with Cypress - Cypre...
byLudovico Besana
 
Safe Confined Space Entry Monitoring_ Singapore Experts.pptx
byprasadexiga0
 
Cyber-Security-Essentials (21AK1A0217).pptx
byGaganGagan44
 
Integrated Billing, Accounting & Inventory Solution for MSMEs
byMoving Cloud
 
Ensuring Regulatory Excellence with Insurance Compliance Software
byInsurance Tech Services
 
Scraping Amazon Prime Watchlist Data for Viewing Patterns.pdf
byyashpatric
 
Practical Performance Tuning for Serverless Java on AWS- InfoQ Dev Summit
byVadym Kazulkin
 
Security Architecture Views the FDA Expects — And How to Get Them Right
byICS
 
SAP & CTRM Testing Like Never Before
byZoe Gilbert
 
Lexical and Syntax Analysis top down parsers
bymjmansoori54
 
Java Modern Puzzlers, a guide to new programming features
bySimon Ritter
 
Financial Literacy for Software Developers
byBalanathanVirupasan
 
AI-Powered Intelligent Agents for Fraud Detection
byleolucus1995
 
Evolution of the Major Programming Languages
bymjmansoori54
 
Autowiring all the things! - DrupalCon Vienna 2025 - Luca Lusso, SparkFabrik
bysparkfabrik
 
Metrics, logs, traces, and mayhem_ introducing an observability adventure gam...
byImma Valls Bernaus
 
SAP ERP Training For Senior Managers.ppt
byBalanathanVirupasan
 

Network Algorithmics

  • 1.
  • 2.
    순서 • Building fasterrouters – Scheduling packets • BW guarantee & DRR • Random early detection • Token bucket – Traffic measurement – Lookups • Prefix Match • Exact-Match: inventing bridge • “Network Algorithmics” 소개 2
  • 3.
    Router Bottlenecks • Exactmatch-lookup • Prefix match-lookup • Switching • QoS 3
  • 4.
    Scheduling Packet • Outputqueue에서 packet처리 – FIFO with tail-drop의 문제점 • 할일 – BW guarantee, rate-limiting, TCP congestion control – 네트워크를 A와 B가 사용. A는 우선적으로 80%의 대역폭 보장 하려면? – 동영상 트래픽은 1Mbps를 넘지 못하게 하자. 4
  • 5.
    BW guarantee • FIFOqueue • Multi queue with Round robin A B A B B B 200 200 200 200 200 200 200 600 400 A B 5 A B
  • 6.
    BW guarantee • Multiqueue with Priority • 문제 – Priority 관리 – 가장 높은 priority 찾기 (heap – log n) • 이렇게까지 하지말고, long term에서 맞춰주자 200 200 200 200 200 200 600 A B 200 400A B 6 timestamp
  • 7.
    Deficit RR (DRR) •O(1) – Active List: 보낼 패킷이 있는 queue의 목록 – Quantum은 최소 packet size보다 크게: queue 방문하면 반드시 packet 보냄 200 200 200 200 200 200 600 200 200 600 400 0 0 0 Round robin pointer Deficit counter A B C A B C 7 300 100 100 400 0 0
  • 8.
    DRR extention • Classbased queuing (CBQ) – Hierarchical DRR • Node 당 scheduler 하나 • Modified DRR (cisco/juniper) – voIP는 top priority Tenant A Tenant B Web 그외 Web 그외 70% 30% 40% 60% 50% 50% 8
  • 9.
    TCP congestion control •IPv4에는 congestion 예방을 위한 DECbit가 없다? – Proposal on table for a ECN bit for IPv6 9
  • 10.
    Random Early Detection(RED) • TCP restart를 최소화하자. – Output queue가 어느 크기 이상이면 packet drop. – 일종의 신호. • 대부분의 라우터에서 구현. – de facto standard • Weighted RED (WRED) – Cisco – IP TOS bit에 따라서 threshold 다르게 • Adaptive RED(ARED), robust RED(RRED) 10
  • 11.
    Token bucket • 언제필요한가 – 어떤 flow에 대해 100Kbps로 대역폭 제한 – 하지만 4KB 정도는 burstiness 허용 OpenFlow 1.3 11
  • 12.
    Token bucket 12 • Bucket에B 이상은 담기지 않는다. • 실제로는 counter와 timer로 구현
  • 13.
  • 14.
    Traffic Measurement • Traffic측정은 중요 – Internet Backbones에서 Accounting/Billing – Traffic engineering – Capacity planning – Network diagnostics and forensics: Intrusion detection, denial- of-service attacks – Products: NetFlow (Cisco), cflowd (Juniper), NetStream (Huawei) • 그리고 “떠오르는 분야” 14
  • 15.
    Counting : 0 : 0 :0 : 0 : 0 : 1: 2 : 1: 2: 3: 4: 5: 6: 7: 8: 9: 10: 11: 12: 13: 14: 15: 16: 17: 18: 19: 20: 21: 22: 23: 24 : 1: 2: 3 : 1 : 1: 2: 3 • Counting: 대표적인 measurement – Interface에 대한 counting: 쉽다 – Filter-based, per-prefix: 어렵다 15
  • 16.
    Hybrid DRAM-SRAM architecture •DRAM(large) .vs. SRAM(fast) – DRAMs have access times of 50 - 60 ns – SRAMs have access times of 4.5 -7 ns, but around 50 - 60 Mb (Micro n Tech.) 16 “Expensive infeasible”
  • 17.
    Approximate counting • 더단순하게 만들고, 메모리를 줄이기 위해 정확성을 희생시키자. • Randomized counting – 확률적으로 counter 증가 • Large flows (elephants) 만 측정하고 small flows (mice)는 무시해도 될 것 같다. – 그런데 elephant 인지는 어떻게 알지? – Elephant인지 알기 위해서 모든 flow에 대해서 counting하면 똑같음 -> hashing – False positive 줄이기 위해 multi-hash 17
  • 18.
    Overall Architecture Elephant Traps Few,deep counters Mouse Traps Many, shallow counters Status bit Indicates overflow flows 18
  • 19.
    Sampling • Basic Netflow –DRAM에 부담, collection overhead – 보통 1/16, 1/1000 • Sampled charging • Trajectory sampling – 라우터들의 hash를 동일하게 19 Trajectory sampling
  • 20.
    Longest Prefix Matching 20 10.0.0.0/800001010 XXXXXXXX XXXXXXXX XXXXXXXX R1 128.0.0.0/9 10000000 0XXXXXXX XXXXXXXX XXXXXXXX R2 10.0.1.0/24 00001010 00000000 00000001 XXXXXXXX R3 0.0.0.0/0 XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX R4 10.0.1.5 와 match되는 가장 긴 prefix는?
  • 21.
    Longest Prefix Matching •Non-algorithmic – Caching • Map: 32-bit address에서 next hop로 • “Cache hit ratios in backbone: poor” – TCAM Issues (Ternary Content-Addressable Memories) • Density Scaling • Power Scaling • Time Scaling • Extra Chips • Algorithmic – TRIE: 문자열에 특화된 tree 자료구조 – Binary search • Semiconductor manufacturers – “양쪽에 베팅” - algorithmic, CAM-based 21
  • 22.
    TCAM • Ternary ContentAddressable Memory – 0, 1, X에 대해서 match된다 (ternary) – data를 넣으면 주소가 나온다. • Great for partial match – Longest prefix – Access lists 00 1 2 3 4 5 6 7 1 0 1 1 1 1 0 1 1 X X 1 0 1 X X X 1 1 0 1 X X 0 0 1 0 X X X 0 0 X 0 0 X 0 0 X 1 0 X X X X X X 22 SRAM TCAM Power 6x Area 7x Latency 4x 00 1 2 3 4 5 6 7 1 0 1 1 1 1 0 1 1 X X 1 0 1 X X X 1 1 0 1 X X 0 0 1 0 X X X 0 0 X 0 0 X 0 0 X 1 0 X X X X X X 1 0 1 1 0 0 1
  • 23.
    One-bit TRIE 23 DRAM access:60ns 32 * 60ns = 1.92 us
  • 24.
    Multi-bit TRIE 여러가지 최적화:stride, compression 등 “10Gbps는 이걸로 충분” 24
  • 25.
    Binary search • Multi-bittrie보다 느림 • 두가지 필요성 – 특허 • “이것 때문에 하고 있는 vendor들이 있다” – IPv6 • 8bit stride multibit TRIE: 16 acceses • Binary search on prefix lengths: 7 accesses 25
  • 26.
    Binary search • Binarysearch on ranges • Binary search on prefix lengths 26 Length-1 Length-2 Length-3 … 101 100 111 110
  • 27.
    Exact match lookup:history of bridge • 1980년대 후반 – Ethernet의 한계 – Ethernet을 확장 필요. • Filter repeater with learning (Mark Kempf, DEC) – “훌륭한 아이디어” 27
  • 28.
    Wire Speed를 위해한 것들 • 10Mbps – 2 lookups per port in 51.2 usec • Architecture – 4-port cheap DRAM with cycle time of 100 nsec for packet bufers and lookup memory. Bus parallelism, memory bandwidth, page mode. • Data Copying – Ethernet chips used DMA, packets copied from one port to other by flipping pointers. • Control Overhead – Interrupt overhead minimized by processor polling, staying in a loop after a packet interrupt. • Lookups – Used caveats. Wrote software to verify lookup bottleneck 28
  • 29.
    Scaling lookups • 1990년대 –DEC의 결정: 100Mbps ethernet ring 연결 위한 FD야 bridge – 패킷 최소크기: 64b -> 40b – Lookup DB: 8K -> 64K • Two approaches – Perfect Hashing (pre-computation) – HW parallelism 29
  • 30.
    Network Algorithmics 30 Network algorithmicsis the use of an interdisciplinary systems approach, seasoned with algorithmic thinking, to design fast implementations of network processing tasks at servers, routers, and other networking devices
  • 31.
    Topics • Endnode bottlenecks –Data copy: DMA, programmed IO – Context switching • service model (process/thread/event-driven), select() – Timer: timing wheel – Demultiplexing – Protocol processing • UDP checksum, buffer 관리, Reassembly • Router bottlenecks – exact match: bridge – prefix match: router의 longest first match – switching – packet classification • service differentiation (router) – QoS: rate-limiting, RED • 그외 – Network Measurement: counter, trajectory sampling – Network Security: exact/approximate string matching 31
  • 32.
  • 33.
    Polya, “How tosolve it” 33
  • 34.
    ROUTE COMPUTATION USINGDIJKSTRA’S ALGORITHM (4.3) 0 8 9 8 10 1 3 12 7 11 8 ∞ ∞ ∞ ∞ ∞ ∞ ∞ 2 4 5 6 0 11 9 88 9 8 10 1 3 12 7 11 8 ∞ ∞ ∞ ∞ 2 4 5 6 0 11 9 18 8 8 10 1 3 12 7 8 ∞ ∞ ∞ 2 4 5 6 0 11 9 10 8 8 12 7 8 12 ∞ ∞ 2 4 5 0 19 11 9 19 10 8 8 12 7 8 12 4 5 6 0 11 9 10 8 8 1 3 12 7 8 ∞ ∞ ∞ 2 4 5 6 34
  • 35.
    ROUTE COMPUTATION USINGDIJKSTRA’S ALGORITHM (4.3) 35 2 5 10 12 15 16 Heap n log n -> n + diam*maxlinkcost
  • 36.
    Updating TCAM (3.1) 00 1 2 3 4 5 6 7 10 1 1 1 1 0 1 1 X X 1 0 1 X X X 1 1 0 1 X X 0 0 1 0 X X X 0 0 X 0 0 X 0 0 X 1 0 X X X X X X 1 0 1 1 0 0 1 36
  • 37.
    principles 나름의 요약 •자료구조, 하드웨어를 잘 사용하자 – TCAM, TRIE, Hash 등 • Common case를 최적화하라 – Cache • 제한조건을 완화시켜서 더 쉬운 알고리즘 적용. – 예: Real number 대신에 integer • 그것도 안되면, 정확도를 희생하거나 확률적인 방법도 고려하라 – 아주 정확하지 않아도 되는 값 (ranking) – Ethernet, RED 37
  • 38.
    Summary • Building fasterrouters – Scheduling packets • BW guarantee & DRR • Random early detection • Token bucket – Traffic measurement – Lookups • Prefix Match • Exact-Match: inventing bridge • “Network Algorithmics” 소개 38