Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab...
Transcript of Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab...
![Page 2: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/2.jpg)
2
Quiz!
1. Why We need AS relation and policy discovery?
BGP Route Prediction, AS Design
2. What have been already done?
Physical link discovery, classterization
3. What have we done?
Active route policy discovery
4. What opportunities does it give?
BGP Route Prediction, AS Design
![Page 3: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/3.jpg)
3
Traffic generators
Internet
Inbound balancing
AS1 AS2
Интернет
![Page 4: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/4.jpg)
4
Traffic consumers
Internet
Outbound balancing
AS1 AS2
Интернет
![Page 5: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/5.jpg)
5
Traffic vector
Asymmetric!
AS1 AS2 AS3 AS5
AS6 AS7
![Page 6: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/6.jpg)
6
Quiz!
1. Why We need AS relation and policy discovery?
BGP Route Prediction, AS Design
2. What have been already done?
Physical link discovery, classterization
3. What have we done?
Active route policy discovery
4. What opportunities does it give?
BGP Route Prediction, AS Design
![Page 7: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/7.jpg)
7
Physical Link Discovery
![Page 8: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/8.jpg)
8
Classterization
![Page 9: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/9.jpg)
9
BGP AS Paths
![Page 10: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/10.jpg)
10
Core of the problem
0 200000 400000
Used at any
given moment
Could be used
by sigle AS
Number of Links
Links between ASes
![Page 11: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/11.jpg)
11
Route Policy in RR
Outdated or incomplete
![Page 12: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/12.jpg)
12
Deadlock
1. Physical link discovery;
2. No registry of current route policies.
No opportunity for traffic flow prediction
![Page 13: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/13.jpg)
13
Quiz!
1. Why We need AS relation and policy discovery?
BGP Route Prediction, AS Design
2. What have been already done?
Physical link discovery, classterization
3. What have we done?
Active route policy discovery
4. What opportunities does it give?
BGP Route Prediction, AS Design
![Page 14: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/14.jpg)
14
AS Design
![Page 15: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/15.jpg)
15
I did it my way…
2
![Page 16: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/16.jpg)
16
Route Policy Recovery
1. AS relations
2. Active verification
3. Priority at every level of BGP decision process
4. Mathematical Equations
5. …….........
![Page 17: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/17.jpg)
17
AS Relations : example
AS3
AS2
AS4
AS5
AS1 AS6 AS7
Relations:
p2p = {AS3, AS4}
c2p = {(AS2, AS23, (AS5,AS4), (AS1, AS2), (AS6, AS5), (AS7,AS5)}
p2p
![Page 18: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/18.jpg)
18
AS Relations : example
AS3
AS2
AS4
AS5
AS1 AS6 AS7
p2p
Relations:
p2p = {AS3, AS4}
c2p = {(AS5, AS4} (AS2,AS3) (AS1, AS2), (AS6, AS5), (AS7,AS5)}
![Page 19: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/19.jpg)
19
AS Relations : example
AS3
AS2
AS4
AS5
AS1 AS6 AS7
p2p
Relations:
p2p = {AS3, AS4}
c2p = {(AS5, AS4, (AS2,AS3), (AS1, AS2), (AS6, AS5), (AS7,AS5)}
![Page 20: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/20.jpg)
20
Active Verification :
example
ASXXX
Traceroute
One remote node – one path
![Page 21: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/21.jpg)
21
Active Verification :
example
ASXXX
Ping –R with source from ASXXX
One remote node – count(neighbors) * path
AS1
AS2
Echo request
Echo reply
![Page 22: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/22.jpg)
22
Quiz!
1. Why We need AS relation and policy discovery?
BGP Route Prediction, AS Design
2. What have been already done?
Physical link discovery, classterization
3. What opportunities does it give?
Active route policy discovery
4. What opportunities does it give?
BGP Route Prediction, AS Design
![Page 23: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/23.jpg)
23
How to make You
interested in my results?
![Page 24: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/24.jpg)
24
Qrator Radar
1. AS Relations
2. BGP Route Prediction
3. AS Design
4. Security Issues
5. Rates
![Page 25: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/25.jpg)
25
AS Relations
Rates: peering, customers, providers
![Page 26: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/26.jpg)
26
BGP Route Prediction
![Page 27: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/27.jpg)
27
Route Withdraw
![Page 28: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/28.jpg)
28
Prepend Policy
![Page 29: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/29.jpg)
29
AS Design
![Page 30: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/30.jpg)
30
Security Issues
1. Default Route Errors
2. BGP Route Loops
3. DDoS Amplifires
4. Bots
> 30 % of ASes are affected!
![Page 31: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/31.jpg)
31
Security Issues
![Page 32: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/32.jpg)
32
Botnet map
![Page 33: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/33.jpg)
33
Quiz!
1. Why We need AS relation and policy discovery?
BGP Route Prediction, AS Design
2. What have been already done?
Physical link discovery, classterization
3. What have we done?
Active route policy discovery
4. What opportunities does it give?
BGP Route Prediction, AS Design
![Page 34: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/34.jpg)
34
Future Work
Drop detection ->
Prediction how to overcome it using prepend policy
![Page 35: Detecting Autonomous Systems Relationships · 2016. 8. 22. · 1 Alexander Azimov Highload Lab Detecting Autonomous Systems Relationships](https://reader036.fdocuments.us/reader036/viewer/2022071500/611e5810ab5d6409d836885b/html5/thumbnails/35.jpg)
35
Qrator Radar radar.qrator.net