The Value of Flow Data for Peering Decisions

Similar documents
Cisco IOS Flexible NetFlow Technology

IPV6 流 量 分 析 探 讨 北 京 大 学 计 算 中 心 周 昌 令

NetFlow-Lite offers network administrators and engineers the following capabilities:

Viete, čo robia Vaši užívatelia na sieti? Roman Tuchyňa, CSA

NetFlow Aggregation. Feature Overview. Aggregation Cache Schemes

An overview of traffic analysis using NetFlow

Flow Analysis. Make A Right Policy for Your Network. GenieNRM

Introduction to Netflow

NetFlow: What is it, why and how to use it? Miloš Zeković, ICmyNet Chief Customer Officer Soneco d.o.o.

APNIC elearning: BGP Basics. Contact: erou03_v1.0

and reporting Slavko Gajin

Catalyst 6500/6000 Switches NetFlow Configuration and Troubleshooting

NetFlow Tracker Overview. Mike McGrath x ccie CTO mike@crannog-software.com

Netflow Overview. PacNOG 6 Nadi, Fiji

NetStream (Integrated) Technology White Paper HUAWEI TECHNOLOGIES CO., LTD. Issue 01. Date

NetFlow/IPFIX Various Thoughts

sflow Why You Should Use It And Like It NANOG 39 February 04-07, 2007

Configuring NetFlow Data Export (NDE)

Network Measurement. Why Measure the Network? Types of Measurement. Traffic Measurement. Packet Monitoring. Monitoring a LAN Link. ScienLfic discovery

ISTANBUL. 1.1 MPLS overview. Alcatel Certified Business Network Specialist Part 2

Configuring SNMP and using the NetFlow MIB to Monitor NetFlow Data

Case Study: Instrumenting a Network for NetFlow Security Visualization Tools

Agenda. sflow intro. sflow architecture. sflow config example. Summary

Exterior Gateway Protocols (BGP)

pmacct: introducing BGP natively into a NetFlow/sFlow collector

Traffic Monitoring using sflow

NfSen Plugin Supporting The Virtual Network Monitoring

NetFlow Analytics for Splunk

ICND2 NetFlow. Question 1. What are the benefit of using Netflow? (Choose three) A. Network, Application & User Monitoring. B.

Scalable Extraction, Aggregation, and Response to Network Intelligence

Netflow Collection with AlienVault Alienvault 2013

How To Set Up Foglight Nms For A Proof Of Concept

Flow Based Traffic Analysis

TCP/IP Basis. OSI Model

Internet Protocol: IP packet headers. vendredi 18 octobre 13

basic BGP in Huawei CLI

CS 457 Lecture 19 Global Internet - BGP. Fall 2011

Network congestion control using NetFlow

Mobile IP Network Layer Lesson 02 TCP/IP Suite and IP Protocol

Network Management & Monitoring

Network layer: Overview. Network layer functions IP Routing and forwarding

UltraFlow -Cisco Netflow tools-

Configuring a Load-Balancing Scheme

Introduction to Cisco IOS Flexible NetFlow

NTT - A global IPv6 deployment case study

NetFlow Configuration Guide, Cisco IOS Release 15M&T

Scrutinizer. Getting Started Guide. A message from Plixer International:

Network Management Functions RMON1, RMON2. Network Management

NetFlow v9 Export Format

Network Monitoring and Management NetFlow Overview

IPv6 network management. 6DEPLOY. IPv6 Deployment and Support

NetFlow Configuration Guide, Cisco IOS Release 12.4

PowerLink Bandwidth Aggregation Redundant WAN Link and VPN Fail-Over Solutions

Overview of Network Traffic Analysis

IPv6 network management. Where and when?

Overview. Why use netflow? What is a flow? Deploying Netflow Performance Impact

NetFlow Configuration Guide, Cisco IOS Release 12.2SR

IPv6 network management

DG Forwarding Algorithm

plixer Scrutinizer Competitor Worksheet Visualization of Network Health Unauthorized application deployments Detect DNS communication tunnels

LAB II: Securing The Data Path and Routing Infrastructure

DDoS Mitigation Strategies

NetFlow Performance Analysis

Configuring a Load-Balancing Scheme

NetFlow use cases. ICmyNet / NetVizura. Miloš Zeković, milos.zekovic@soneco.rs. ICmyNet Chief Customer Officer Soneco d.o.o.

Lab Characterizing Network Applications

Quality of Service (QoS): Managing Bandwidth More Effectively on the Series 2600/2600-PWR and Series 2800 Switches

Enabling NetFlow on Virtual Switches ESX Server 3.5

Traffic & Peering Analysis

Whitepaper. NetFlow vs. sflow: A Technical Review. plixer. International

ICS 351: Today's plan

Border Gateway Protocol (BGP)

Internet Traffic Trends A View from 67 ISPs

Polycom. RealPresence Ready Firewall Traversal Tips

SUBNETTING SCENARIO S

OpenFlow and Software Defined Networking presented by Greg Ferro. OpenFlow Functions and Flow Tables

Advanced BGP Policy. Advanced Topics

Enabling NetFlow and NetFlow Data Export (NDE) on Cisco Catalyst Switches

CSE331: Introduction to Networks and Security. Lecture 8 Fall 2006

Load Balancing. Final Network Exam LSNAT. Sommaire. How works a "traditional" NAT? Un article de Le wiki des TPs RSM.

How to configure an Advanced Expert Probe as NetFlow Collector

Appendix A Remote Network Monitoring

Course Overview: Learn the essential skills needed to set up, configure, support, and troubleshoot your TCP/IP-based network.

Configuring NetFlow. Information About NetFlow. NetFlow Overview. Send document comments to CHAPTER

O /27 [110/129] via , 00:00:05, Serial0/0/1

IPv6 Network Management.

Configuring a Load-Balancing Scheme

Cisco Configuring Commonly Used IP ACLs

Lecture 18: Border Gateway Protocol"

How-To Configure NetFlow v5 & v9 on Cisco Routers

- Multiprotocol Label Switching -

Configuring Flexible NetFlow

BGP Link Bandwidth. Finding Feature Information. Contents

Emerald. Network Collector Version 4.0. Emerald Management Suite IEA Software, Inc.

TE in action. Some problems that TE tries to solve. Concept of Traffic Engineering (TE)

DDoS Threat Report. Chris Beal Chief Security Architect on Twitter

Transcription:

The Value of Flow Data for Peering Decisions Hurricane Electric IPv6 Native Backbone Massive Peering! Martin J. Levy Director, IPv6 Strategy Hurricane Electric 22 nd August 2012

Introduction Goal of this session Quick introduction to flow data collection Show the value of flow data to peering operators Show some examples of flow data Caveats All data graphs are obfuscated; but REAL What I m not covering Picking a good software flow platform Configuring a working flow platform 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 2

Flow measurements what is it? A method and protocol for exporting flows From a router, switch or network device To a collector A flow is (simplistically) traffic information from source to destination vs. just a count of bits Flow protocols sflow (see http://sflow.org/) NetFlow (Cisco v1, v5, v6, v7, v8, v9, v10 ** ) IPFLOW ** (RFC5101 RFC5102 RFC6313 etc) 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 3

Traffic stats vs. Flow stats - an example It s a sample vs. every bit counted It s contains information (not just bits/second) Bandwidth graph IPv6 graph IPv4 graph 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 4

Flow data methodology On router: Collect information for every packet or flow -or- Collect information for every N packets or flows Send collected information to a collector On collector: Save away data for later processing and display Provide a UI for display of data Save away as much as possible (within limits) 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 5

Flow device and collector methodology Every router sends flow data to the collector Flow collector stores data, merges data and presents data 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 6

The flow information packet (Netflow v5) Source IP address The magic BGP routing information for a peering manager or network engineer Destination IP address Next hop router s IP address Input interface s SNMP index Output interface s SNMP index Packets in the flow TCP/UDP source port number or equivalent TCP/UDP destination port number or equivalent IP protocol (for example, 6=TCP, 17=UDP) IP type-of-service AS of the source, either origin or peer AS of the destination, either origin or peer Source address prefix mask bits Destination address prefix mask bits http://www.cisco.com/en/us/docs/ios/11_2/feature/guide/netflow.pdf 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 7

Why is flow data useful for peering? Flows can provide ASN-based information Mapping each flow to a src/dest ASN Counting data based on src and/or dest ASN pairs Some flow configurations also provide AS-PATH Mapping bits per second to ASN Providing insight into the bits flowing Flow data can also contain additional data IPv4/IPv6, protocol, src/dest IP address, src/dest port 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 8

Peering? An example of useful flow data Consider a single Ethernet port at an IX Plot flow-data based upon destination peer ASN Instant view into the peering port (vs. traffic graph) AS#### AS#### AS#### AS#### 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 9

Peering? Comparing more than one IX Consider a peer at more than one IX Plot flow-data for ASN based on peering location Instant view into the geographic spread Location 1 Location 2 Location 3 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 10

Peering? Comparing more than one IX Consider a peer at more than one IX Plot flow-data for ASN based on peering location Instant view into the geographic spread Location 1 Location 2 Location 3 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 11

Customer traffic port Customer traffic can be analyzed with ease Differentiate between transit and peering traffic Traffic via peering connections Traffic via transit connections 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 12

Customer traffic port Customer traffic can be analyzed with ease Differentiate between traffic flowing to peers Traffic to all other peers Traffic via another peer Traffic via one peer 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 13

Investigating Transit connections Analyze existing transit Decide next peer or who to buy more transit from Traffic to destination #1 Traffic to destination #2 Traffic to destination #3 Traffic to other destinations 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 14

No graphical output an instant view Traffic b/w data vs. Flow b/w data Classic traffic graph Near instantaneous breakdown of peering bandwidths Inbound bandwidths Outbound bandwidths 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 15

Flow software Two choices; both acceptable Commercial offerings Arbor Open Source offerings NfSen Your choice each has value 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 16

Summary Flow data provides a view inside your pipes In/Out bandwidth numbers are not enough Using destination ASN or peer ASN is vital Peering ports come alive Transit and customer traffic finally understood No guesswork 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 17

Q&A? Contact: Hurricane Electric 760 Mission Court Fremont, CA 94539, USA http://www.he.net/ sales at he dot net +1 (510) 580 4190 22 August 2012 The Value of Flow Data for Peering Decisions - Hurricane Electric - Martin Levy Page 18

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information