Active Network Node in Silicon-Based L3 Gigabit Routing Switch Active Network Node in Silicon-Based L3 Gigabit Routing Switch 1 UC Berkeley Engineering

  • View
    219

  • Download
    0

Embed Size (px)

Text of Active Network Node in Silicon-Based L3 Gigabit Routing Switch Active Network Node in Silicon-Based...

  • 1 UC Berkeley Engineering 2 Technology Center, Enterprise Solutions, Nortel Networks3 Department of Computer Science, University of Maryland Tal Lavian 1 ,2tlavian@cs.Berkeley.edu

    Rob Jaeger 2,3rfj@cs.umd.edu Active Networks Workshop 1999

  • OutlineBridge between research and marketplace Implementation of Commercial Grade Active Networks node on Silicon-Based Gigabit L3 Routing SwitchDemo1 - ANTS on AccelarDemo2 - Dynamic Filtering & ConfigurationDemo3- Packets Capture Future: Active Networks Routing Protocols

  • Bridge between research and marketplaceBridges the gulf between theory and practiceActive Networks - industry participationPublish the Accelar JVM and development environmentPublish Linux simulator, tools, and docsScaling up Active Networks Routing Protocol to commercial networksHeterogeneous Topology - AN/Non AN

  • Accomplishments

    JVM on a silicon-based L3 Routing SwitchORE - Oplet Run-time Environment Java-enabled Device ArchitectureActive Networks apps that dynamically control and modify Silicon-Based ForwardingPacket InterceptionImplementation of Network Forwarding API

  • Accelar - Industrial Strength Active Networks ImplementationUp to 96 Gigabit ports (or 384 10/100Mbs + combinations)50Gbps L3 Switching capacityScaling up to 256GbpsNatural Migration - 10GbsWAN OC-192Wire speed - low latencyHigh availabilityLAN/MAN/WAN 5km multi mode, 50km single mode

  • Centralized, CPU-based Router

    Forwarding-Processors based RouterControl + ForwardingFunctions combinedControl separatedFrom forwardingCPURouting SWCPUControl PlaneForwarding ProcessorForwarding ProcessorForwarding ProcessorSlowWire Speed

  • Active Networks - Node Architecture Device HWOperating SystemJVMOpletC/C++APIJavaAPIDeviceCodeOplet Runtime EnvDeviceDrivers JNIJFWD APIORE ServiceAN Packet Interception

  • ORE - Oplet Run-time Environment

  • ORE - Oplet Run-time Environment Why ORE?

  • ORE ProtectionORE uses JVM mechanisms to:protect itself from the Opletsprotect Oplets, one from another Mechanisms include features of the Javatype safety, access control, ByteCode verification built-in sandbox security manager supportsigned codestrong cryptography infrastructure

  • ORE ProtectionJava facilities are buttressed by ORE control over the allocation of as many of the system resources as possibleExtra JVM support is necessary to protection against misbehavior by OpletsAccounting of memory and CPU consumptionPromising possibility for memory accounting:the ability to partition the object heap to enforce limits on the memory usage by an Oplet

  • ANTS on Gigabit RouterDemo - 1

  • ANTS Demo ConfigurationRoutingSwitch loads boot image from TFTP serverRoutingSwitch dynamically loads Oplets from the Class ServerLaptop 1 originates the pingRouter gets Ping code from Laptop 1.Router evaluates ping Ping forwarded to Laptop2Laptop 2 requests codeLaptop 2 perform ping reply ORE Services1. Class Server 2. TFTP ServerLaptop 1 Laptop 2 Java-enabled Routing Switch

  • Demo 1

  • ANTS DemoAN_PingApplicationANTS EEAN_PingApplicationPingCapsuleANTS EEServiceDLBootstrap CapsuleDLRequest CapsuleDLResponse CapsuleJVMOREJVMWIN-95Routing Switch

  • ANTS DemoJava application running on the routerORE facilitate downloading servicesInteroperable with ANTS DistributionMinimum changes to make it conform to ORE service specification

  • Dynamic Filtering & Configuring Demo - 2

  • Dynamic Configuration of Forwarding Rules CPUForwardingProcessorForwardingProcessorForwardingProcessorForwardingProcessorSWHWAN Apps

  • Real-time forwarding Stats and Monitors CPUSWHWAN Apps

  • Dynamic - On the Fly ConfigurationForwardingProcessorForwardingProcessorPacketAN AppsPacketPacketFilterDemo 2

  • Dynamic - On the Fly ConfigurationFrom downloadable Java application, we can dynamically modify the behavior of the Forwarding Processors (ASICs)

  • Active Networks Packets InterceptionDemo 3 -

  • Active Networks Packet CaptureCPUForwardingProcessorForwardingProcessorForwardingProcessorForwardingProcessorAN AppsJFWD to Divert or CopyWire SpeedPacketDemo 3

  • Packet DivertActive Network topology is unknown ANEP packets NOT addressed to this node are delivered to the control plane for processingANEP daemon receives packets and delivers them to the appropriate EE based on TypeID ASICFilterANEPExecution EnvironmentExecution EnvironmentANEP packetAN Routing ProtocolApplication

  • Active Networks Packet CaptureBe able to get the packets from the forwarding plane to the control planeProcess Active Networks packets in the control planeEnabler for Active Network routing protocols

  • Scaling up Active Networks Routing Protocol to commercial networks

  • Scaling up Active Networks Routing Protocol to commercial networks Overcome the need to predefine the next hopNo need to know AN topology a head of timeDivert/CarbonCopy specific packets to control plane (e.g. packets on ANEP port )Wire speed of all other packetsEnd to end forwardingFuture: Active Networks Routing Protocols

  • Mixed Topology of AN system- AN Node- Non AN NodeNO need to know the AN topology ahead of time

  • Virtual Topology of AN system- AN Node- Non AN NodeNO need to know the AN topology ahead of time

  • SummaryBridge between research and marketplace Implementation of commercial grade Active Networks node on Silicon-Based Gigabit L3 Routing SwitchORE - Oplet Run-time Environment Demo 1 - ANTS on AccelarDemo 2 - Dynamic Filtering & Configuration Demo 3 - Packets Capture to control planeFuture : Enables Active Networks Routing Protocols

    **To introduce the new Open Networking Architecture that is based on Java-enabled Network Devices

    To enable easy 3rd party integration and leverage Nortel Networks competitive advantage

    *To introduce the new Open Networking Architecture that is based on Java-enabled Network Devices

    To enable easy 3rd party integration and leverage Nortel Networks competitive advantage

    ***************************To introduce the new Open Networking Architecture that is based on Java-enabled Network Devices

    To enable easy 3rd party integration and leverage Nortel Networks competitive advantage