Abstract
With the growth and development of the Internet, understanding the composition and dynamics of network traffic is greatly important for network engineering, planning, design, and attack detection. This paper proposes 10Gbps dynamic flow monitoring and control using IXP2800 network processors with flow dynamic rate-based flow aggregation that ensures scalability of the system. We propose fast and scalable 6-tuple TCAM-based classification, which provides three levels of aggregation and flow control that includes flow metering, marking, queuing and scheduling. Using flow control allows network operators to adjust QoS-level dynamically and restrict malicious activity in the network. The proposed implementation design is based on Radisys ATCA-7010 processing module, containing two IXP2800 network processors and TCAM module for highspeed classifications. Flow information collector can be either implemented on another processing blade, or on external computer. The proposed architecture supports up to 125,000 flows in total.
This research is supported by the MIC, under the ITRC support program supervised by the IITA (IITA-2006-(C1090-0603-0002)).
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Fang, W., Peterson, L.: Inter-AS traffic patterns and their implications. In: Proceedings of IEEE GLOBECOM, Rio, Brazil (December 1999)
Introduction to Cisco IOS NetFlow - A Technical Overview, Cisco Systems (February 2006)
Patcha, A., Park, J.M.: An adaptive sampling algorithm with applications to denial-of-service attack detection. In: Proceedings of 13th ICCCN (October 2004)
Estan, C., Keys, K., Moore, D., Varghese, G.: Building a better NetFlow. In: Proceedings of ACM SIGCOMM, ACM Press, New York (2004)
Hu, Y., Chiu, D.-M., Lui, J.C.: Adaptive flow aggregation - a new solution for robust flow monitoring under security attacks. In: Proceedings of IEEE/IFIP NOMS 2006, Vancouver, Canada (April 2006)
ATCA-7010 Packet Processing Module: Hardware Reference, Radisys Corporation (November 2005)
Intel Internet Exchange Architecture Portability Framework Developer’s Manual, Intel Corporation (November 2004)
Intel IXP2800 Network Processor Hardware Reference Manual, Intel Corporation(August 2004)
Cisco Netflow, http://www.cisco.com/warp/public/732/Tech/netflow/
Sadasivan, G., Brownlee, N., Claise, B., Quittek, J.: Architecture for IP flow information export. IETF, draft-ietf-ipfix-architecture-12 (September 2006)
Thompson, K., Miller, G., Wilder, R.: Wide-area internet traffic patterns and characteristics. IEEE Transactions on Networking, 10–23 (November 1997)
Dressler, F., Munz, G.: Flexible flow aggregation for adaptive network monitoring. In: Proceedings of IEEE LCN Workshop on Network Measurements 2006, Tampa, Florida, USA (November 2006)
Heinanen, J., Finland, T., Guerin, R.: A single rate three color marker. IETF, RFC 2697 (September 1999)
Heinanen, J., Guerin, R.: A two rate three color marker. IETF, RFC 2698 (September 1999)
Intel Internet Exchange Architecture Software Building Blocks Developer’s Manual, Intel Corporation (November 2004)
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2007 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Siradjev, D., Park, J., Choi, T., Lee, J., Choi, B., Kim, YT. (2007). 10Gbps Scalable Flow Generation and Per-flow Control with Hierarchical Flow Aggregation & Decomposition Using IXP2800 Network Processors. In: Ata, S., Hong, C.S. (eds) Managing Next Generation Networks and Services. APNOMS 2007. Lecture Notes in Computer Science, vol 4773. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-75476-3_41
Download citation
DOI: https://doi.org/10.1007/978-3-540-75476-3_41
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-75475-6
Online ISBN: 978-3-540-75476-3
eBook Packages: Computer ScienceComputer Science (R0)