1 / 35

Alexander Azimov <aa@highloadlab> Highload Lab

Detecting Autonomous Systems Relationships. Alexander Azimov <aa@highloadlab.com> Highload Lab. Quiz!. Why We need AS relation and policy discovery? BGP Route Prediction, AS Design What have been already done? Physical link discovery, classterization What have we done?

frayne
Download Presentation

Alexander Azimov <aa@highloadlab> Highload Lab

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Detecting Autonomous Systems Relationships Alexander Azimov <aa@highloadlab.com> HighloadLab

  2. Quiz! • Why We need AS relation and policy discovery? • BGP Route Prediction, AS Design • What have been already done? • Physical link discovery, classterization • What have we done? • Active route policy discovery • What opportunities does it give? • BGP Route Prediction, AS Design

  3. Traffic generators Internet Интернет AS2 AS1 Inbound balancing

  4. Traffic consumers Internet Интернет AS2 AS1 Outbound balancing

  5. Traffic vector Asymmetric! AS1 AS2 AS3 AS5 AS7 AS6

  6. Quiz! • Why We need AS relation and policy discovery? • BGP Route Prediction, AS Design • What have been already done? • Physical link discovery, classterization • What have we done? • Active route policy discovery • What opportunities does it give? • BGP Route Prediction, AS Design

  7. Physical Link Discovery

  8. Classterization

  9. BGP AS Paths

  10. Core of the problem

  11. Route Policy in RR • Outdated or incomplete

  12. Deadlock • Physical link discovery; • No registry of current route policies. • No opportunity for traffic flow prediction

  13. Quiz! • Why We need AS relation and policy discovery? • BGP Route Prediction, AS Design • What have been already done? • Physical link discovery, classterization • What have we done? • Active route policy discovery • What opportunities does it give? • BGP Route Prediction, AS Design

  14. AS Design

  15. I did it my way… 2

  16. Route Policy Recovery • AS relations • Active verification • Priority at every level of BGP decision process • Mathematical Equations • …….........

  17. AS Relations : example AS4 AS3 p2p AS2 AS5 AS6 AS1 AS7 Relations: p2p = {AS3, AS4} c2p = {(AS2, AS23, (AS5,AS4), (AS1, AS2), (AS6, AS5), (AS7,AS5)}

  18. AS Relations : example AS4 AS3 p2p AS2 AS5 AS6 AS1 AS7 Relations: p2p = {AS3, AS4} c2p = {(AS5, AS4} (AS2,AS3) (AS1, AS2), (AS6, AS5), (AS7,AS5)}

  19. AS Relations : example AS4 AS3 p2p AS2 AS5 AS6 AS1 AS7 Relations: p2p = {AS3, AS4} c2p = {(AS5, AS4, (AS2,AS3), (AS1, AS2), (AS6, AS5), (AS7,AS5)}

  20. Active Verification : example ASXXX Traceroute One remote node – one path

  21. Active Verification : example Echo request Echo reply AS1 ASXXX AS2 Ping –R with source from ASXXX One remote node – count(neighbors) * path

  22. Quiz! • Why We need AS relation and policy discovery? • BGP Route Prediction, AS Design • What have been already done? • Physical link discovery, classterization • What opportunities does it give? • Active route policy discovery • What opportunities does it give? • BGP Route Prediction, AS Design

  23. How to make You interested in my results?

  24. Qrator Radar • AS Relations • BGP Route Prediction • AS Design • Security Issues • Rates

  25. AS Relations Rates: peering, customers, providers

  26. BGP Route Prediction

  27. Route Withdraw

  28. Prepend Policy

  29. AS Design

  30. Security Issues • Default Route Errors • BGP Route Loops • DDoSAmplifires • Bots • > 30 % of ASes are affected!

  31. Security Issues

  32. Botnet map

  33. Quiz! • Why We need AS relation and policy discovery? • BGP Route Prediction, AS Design • What have been already done? • Physical link discovery, classterization • What have we done? • Active route policy discovery • What opportunities does it give? • BGP Route Prediction, AS Design

  34. Future Work • Drop detection -> • Prediction how to overcome it using prepend policy

  35. Qrator Radar radar.qrator.net

More Related