P4 serves as a programming language for configuring flexible and programmable network data planes, facilitating the development of custom protocols and programmable switches, and driving innovation in software-defined...
详细信息
P4 serves as a programming language for configuring flexible and programmable network data planes, facilitating the development of custom protocols and programmable switches, and driving innovation in software-defined networking and network function virtualization. While the Linux container based network emulator, Mininet, coupled with the BMv2 software P4 switch, is widely used for rapid prototyping of P4-based applications, BMv2's diminished performance raises fidelity concerns under high traffic and large network scenarios. In this paper, we introduce a lightweight virtual time system integrated into Mininet with BMv2 to enhance fidelity and scalability. By applying a time dilation factor (TDF) to interactions between containers and the physical machine, we optimize the emulated P4 network's perceived speed from the application processes' perspective. System evaluation demonstrates accurate emulation of significantly larger networks under high loads with minimal system overhead. We showcase our system's utility through two network applications: an emulation of a TCP SYN flood attack and an ECMP load balancer. Evaluating against a production-grade software switch, Open vSwitch, and a physical testbed, we highlight the virtual time system's improvement in temporal fidelity despite the observed performance degradation in BMv2 software switches.
P4's data-plane programmability allows for highly customizable and programmable packet processing, enabling rapid innovation in network applications, such as virtualization, security, load balancing, and traffic e...
详细信息
ISBN:
(纸本)9798400700309
P4's data-plane programmability allows for highly customizable and programmable packet processing, enabling rapid innovation in network applications, such as virtualization, security, load balancing, and traffic engineering. Researchers extensively use Mininet, a popular network emulator, integrated with BMv2, for fast and flexible prototyping of these P4-based applications, but due to its lower performance in terms of throughput and latency compared to a production-grade software switch like Open vSwitch, it is crucial to have an accurate and scalable emulation testbed. In this paper, we develop a lightweight virtual time system and integrate it into Mininet with BMv2 to enhance fidelity and scalability. By scaling the time of interactions between containers and the underlying physical machine by a time dilation factor (TDF), we can trade time with system resources, making the emulated P4 network appear to be faster from the viewpoint of the switch/host processes in the container. Our experimental results show that the testbed can accurately emulate much larger networks with high loads, scaled by a factor of TDF with extremely low system overhead.
Software Defined Networking (SDN), the new paradigm in network architecture is changing how we design, manage, and operate an entire network, making networks more agile, flexible, and scalable. Such admirable features...
详细信息
ISBN:
(纸本)9789811302121;9789811302114
Software Defined Networking (SDN), the new paradigm in network architecture is changing how we design, manage, and operate an entire network, making networks more agile, flexible, and scalable. Such admirable features arise from the design factor that, in SDN, the control plane is decoupled from the data plane and instead resides on a centralized controller that has complete knowledge of the network. As SDN continues to flourish, security in this realm remains a critical issue. An effective intrusion detection system (IDS), which can monitor real-time traffic, detect and also identify the class of attack would greatly help in combating this problem. This work aims to heighten the security of SDN environments by building an IDS using the principles of machine learning and genetic algorithms. The proposed IDS is divided into two stages, the former to detect the attacks and the latter to categorize them. These stages reside in the switches and the controller of the network respectively. This approach reduces the dependency and the load on the controller, as well as providing a high attack detection rate.
As the next generation network is supposed to support diverse service requirements, managing Quality of Service (QoS) is a crucial part of it. QoS guarantees have long been deemed too complicated until the emergence o...
详细信息
ISBN:
(纸本)9784885523205
As the next generation network is supposed to support diverse service requirements, managing Quality of Service (QoS) is a crucial part of it. QoS guarantees have long been deemed too complicated until the emergence of software-defined networking (SDN) and widely adopted standard OpenFlow. Recently, programming protocol-independent packet processors (P4) has gained much attention because of its features like programmable data plane and independentprotocol and platform. It is anticipated that the high flexibility of P4 can enhance the QoS control for production networks. In this paper, we show a design of bandwidth management for QoS with SDN and P4-programmable switch. The design classifies packets into different categories based on their QoS demands and usages, which are then disaggregated by a two-level priority queue. Experiments with P4 switch shows that the proposed design not only effectively limits the maximum allowed rate but also guarantees the minimum bandwidth of each traffic flow. As such, the design can maximize bandwidth utilization and serves a building block for network slicing.
Existing congestion control mechanisms cannot feedback network capacity accurately to traffic sources. In this paper, we propose Adjusting Advertised Window (AAW), an accurate congestion control mechanism, based on pr...
详细信息
ISBN:
(纸本)9781728105543
Existing congestion control mechanisms cannot feedback network capacity accurately to traffic sources. In this paper, we propose Adjusting Advertised Window (AAW), an accurate congestion control mechanism, based on programmable networks. After theoretical analysis of the performance of AAW, we explain the design principles. We implement AAW in P4 at intermediate nodes by modifying the advertisedWindow field at TCP headers to feedback available network capacity to traffic sources. Experiments show that AAW gets 5% and 10% increase in throughput compared to HSTCP and Reno respectively. AAW can also solve ECN-non-ECN unfairness and compared with vCC, it gains 16% increase in throughput.
暂无评论