BMX6 Mesh Routing Protocol



Similar documents
Testing Network Security Using OPNET

Definition. A Historical Example

SBSCET, Firozpur (Punjab), India

CROSS LAYER BASED MULTIPATH ROUTING FOR LOAD BALANCING

LIST OF FIGURES. Figure No. Caption Page No.

Bit Chat: A Peer-to-Peer Instant Messenger

EXTENDING NETWORK KNOWLEDGE: MAKING OLSR A QUALITY OF SERVICE CONDUCIVE PROTOCOL

MPLS over IP-Tunnels. Mark Townsley Distinguished Engineer. 21 February 2005

Internetworking. Problem: There is more than one network (heterogeneity & scale)

Internet Firewall CSIS Packet Filtering. Internet Firewall. Examples. Spring 2011 CSIS net15 1. Routers can implement packet filtering

Multihoming and Multi-path Routing. CS 7260 Nick Feamster January

Building scalable IPSec infrastructure with MikroTik. IPSec, L2TP/IPSec, OSPF

Configuring a Site-to-Site VPN Tunnel Between Cisco RV320 Gigabit Dual WAN VPN Router and Cisco (1900/2900/3900) Series Integrated Services Router

Disaster-Resilient Backbone and Access Networks

Tor Anonymity Network & Traffic Analysis. Presented by Peter Likarish

Hyacinth An IEEE based Multi-channel Wireless Mesh Network

Keywords- manet, routing protocols, aodv, olsr, grp,data drop parameter.

Figure 1. The Example of ZigBee AODV Algorithm

Mobile Security Wireless Mesh Network Security. Sascha Alexander Jopen

Overview. Lecture 16: IP variations: IPv6, multicast, anycast. I think we have a problem. IPv6. IPv6 Key Features

Enabling Multiple Wireless Networks on RV320 VPN Router, WAP321 Wireless-N Access Point, and Sx300 Series Switches

12/3/08. Security in Wireless LANs and Mobile Networks. Wireless Magnifies Exposure Vulnerability. Mobility Makes it Difficult to Establish Trust

Requirements for Simulation and Modeling Tools. Sally Floyd NSF Workshop August 2005

S ITGuru Exercise (3: Building the MPLS BGP VPN) Spring 2006

CHAPTER 6. VOICE COMMUNICATION OVER HYBRID MANETs

Threats and Security Analysis for Enhanced Secure Neighbor Discovery Protocol (SEND) of IPv6 NDP Security

Network Security. Mobin Javed. October 5, 2011

Performance Evaluation of AODV, OLSR Routing Protocol in VOIP Over Ad Hoc

Behavior Analysis of TCP Traffic in Mobile Ad Hoc Network using Reactive Routing Protocols

ProCurve Networking IPv6 The Next Generation of Networking

Configuring a WatchGuard SOHO to SOHO IPSec Tunnel

Autoconfiguration and maintenance of the IP address in ad-hoc mobile networks

INTERNATIONAL JOURNAL OF PURE AND APPLIED RESEARCH IN ENGINEERING AND TECHNOLOGY

Inter-domain Routing Basics. Border Gateway Protocol. Inter-domain Routing Basics. Inter-domain Routing Basics. Exterior routing protocols created to:

Final for ECE374 05/06/13 Solution!!

Intelligent Agents for Routing on Mobile Ad-Hoc Networks

Report to WIPO SCIT Plenary Trilateral Secure Virtual Private Network Primer. February 3, 1999

IPv6 Advantages. Yanick Pouffary.

CCNA Security 1.1 Instructional Resource

Configuration Example

MPLS over Various IP Tunnels. W. Mark Townsley

Protocol Rollback and Network Security

Lecture Objectives. Lecture 8 Mobile Networks: Security in Wireless LANs and Mobile Networks. Agenda. References

CS 43: Computer Networks IP. Kevin Webb Swarthmore College November 5, 2013

Router and Routing Basics

An evaluation of BMX6 for Community Wireless Networks

Virtual Private Network VPN IPSec Testing: Functionality Interoperability and Performance

CCT vs. CCENT Skill Set Comparison

White Paper. Cisco MPLS based VPNs: Equivalent to the security of Frame Relay and ATM. March 30, 2001

VPN. Date: 4/15/2004 By: Heena Patel

COMPARATIVE ANALYSIS OF ON -DEMAND MOBILE AD-HOC NETWORK

Policy Based Forwarding

F5 Silverline DDoS Protection Onboarding: Technical Note

Telematics. 9th Tutorial - IP Model, IPv6, Routing

Lecture Objectives. Lecture 07 Mobile Networks: TCP in Wireless Networks. Agenda. TCP Flow Control. Flow Control Can Limit Throughput (1)

Building MPLS VPNs with QoS Routing Capability i

Border Gateway Protocol (BGP)

Efficient End-to-End Mobility Support in IPv6

Formal Measure of the Effect of MANET size over the Performance of Various Routing Protocols

APPENDIX 1 USER LEVEL IMPLEMENTATION OF PPATPAN IN LINUX SYSTEM

IPv6 First Hop Security Protecting Your IPv6 Access Network

Deploying IPSec VPN in the Enterprise

DEPLOYMENT GUIDE Version 1.1. Configuring BIG-IP WOM with Oracle Database Data Guard, GoldenGate, Streams, and Recovery Manager

Lecture 8 Performance Measurements and Metrics. Performance Metrics. Outline. Performance Metrics. Performance Metrics Performance Measurements

PART III. OPS-based wide area networks

PRASAD ATHUKURI Sreekavitha engineering info technology,kammam

Receiver-driven routing for community mesh networks

APNIC elearning: BGP Attributes

Steelcape Product Overview and Functional Description

Tomás P. de Miguel DIT-UPM. dit UPM

Rohde & Schwarz R&S SITLine ETH VLAN Encryption Device Functionality & Performance Tests

Using Peer to Peer Dynamic Querying in Grid Information Services

Study of Different Types of Attacks on Multicast in Mobile Ad Hoc Networks

Introduction to Metropolitan Area Networks and Wide Area Networks

Cisco Integrated Services Routers Performance Overview

CCNA R&S: Introduction to Networks. Chapter 5: Ethernet

EE627 Lecture 22. Multihoming Route Control Devices

21.4 Network Address Translation (NAT) NAT concept

Network Infrastructure Under Siege

Mobile Internet Protocol v6 MIPv6

batman-adv scalability

Implementing MPLS VPN in Provider's IP Backbone Luyuan Fang AT&T

SANE: A Protection Architecture For Enterprise Networks

CS 457 Lecture 19 Global Internet - BGP. Fall 2011

Integrated Services Router with the "AIM-VPN/SSL" Module

Experimental Comparison of Routing and Middleware Solutions for Mobile Ad Hoc Networks: Legacy vs Cross-Layer Approach

Configuring Static and Dynamic NAT Simultaneously

Cisco Cisco 3845 X X X X X X X X X X X X X X X X X X

Disaster Recovery White Paper

Adapting Distributed Hash Tables for Mobile Ad Hoc Networks

IT 3202 Internet Working (New)

Transcription:

BMX6 Mesh Routing Protocol Reclaim Your Mesh Self-paced Networking in Multilateral Environments Axel Neumann neumann@cgws.de International Summit for Community Wireless Networks (IS4CWN) 2013, Berlin October 3, 2013 www.bmx6.net www.qmp.cat 2013.wirelesssummit.org

Outline 1 Introduction (What?) Community Mesh Networks 2 BMX6 Approach (How?) Background and Objectives Protocol Principles 3 Advantages and Outcome (Why BMX6?) Advantages 4 Secure Routing in Open Networks (Whats Next?) Problem: Open versus Secure User-Defined Trust Policies (Routing via Trusted Nodes) BMX6 Mesh Routing Protocol 2/18

Community Mesh Networks Structure open, decentralized, neutral heterogeneous cooperative Growing and restructuring Coordinated (consensus) Organically (individually) Scalability challenges Overhead: More nodes, larger IPs (v4 -> v6) HW heterogeneity ([Kb..Gb]) Human diversity: Character (trust) Preference (services, routing: fast vers. reliable) BMX6 Mesh Routing Protocol 3/18

Community Mesh Networks Structure open, decentralized, neutral heterogeneous cooperative Growing and restructuring Coordinated (consensus) Organically (individually) Scalability challenges Overhead: More nodes, larger IPs (v4 -> v6) HW heterogeneity ([Kb..Gb]) Human diversity: Character (trust) Preference (services, routing: fast vers. reliable) BMX6 Mesh Routing Protocol 4/18

Community Mesh Networks Structure open, decentralized, neutral heterogeneous cooperative Growing and restructuring Coordinated (consensus) Organically (individually) Scalability challenges Overhead: More nodes, larger IPs (v4 -> v6) HW heterogeneity ([Kb..Gb]) Human diversity: Character (trust) Preference (services, routing: fast vers. reliable) BMX6 Mesh Routing Protocol 5/18

Background and Objectives B.A.T.M.A.N., started July 2006 BatMan-eXperimental (BMX), gradually diverged to independent project, protocol, code, users,... BMX6, first release during WBMv3, June 2010 Today: Productively used (eg. qmp [1]) BMX6 Design Objectives: IPv6: Exploit capabilities, cope with address size Cope with HW diversity and nodes Scale with increasing diversity of users Failure robustness (misconfiguration, IP collisions, attacks?) Be user centric (power to the people) without disrupting cooperation How: Learn from social networks Scale to millions, despite huge diversity BMX6 Mesh Routing Protocol 6/18

Protocol Principles [2,3,4] Seperate node attributes and IDs Traditionally ID given by IPs (Babel) Attributes (static) DESCRIPTION (node profile) Networks, names, services, metrics,... Flooded once & globally Public knowledge Node discovery before path discovery IDs reference node attributes Context-specific ID types Description hashes (160bit RSA): -> globally unambiguous Internal IDs (16bit): -> locally unambiguous, short! Used for routing updates (4 bytes) BMX6 Mesh Routing Protocol 7/18

Protocol Principles [2,3,4] Seperate node attributes and IDs Traditionally ID given by IPs (Babel) Attributes (static) DESCRIPTION (node profile) Networks, names, services, metrics,... Flooded once & globally Public knowledge Node discovery before path discovery IDs reference node attributes Context-specific ID types Description hashes (160bit RSA): -> globally unambiguous Internal IDs (16bit): -> locally unambiguous, short! Used for routing updates (4 bytes) BMX6 Mesh Routing Protocol 8/18

Advantage I: Overhead Node and neighbor discovery expensive but transient Path discovery/maintenance continuous but cheap [4,5] 4-bytes routing updates (IID + metric value + sequence#) Overhead: approx. 1 byte / node / neighbor / second Master Thesis from Glenn Daneels, Analysis of the BMX6 routing protocol [4]: Overhead (Bps) 700000 600000 500000 400000 300000 200000 Overhead (Bps) per second (100 seconds, topology size 100) BMX6 Grid BMX6 Topology OLSR Grid OLSR Topology 100000 0 0 20 40 60 80 100 Time (s) BMX6 Mesh Routing Protocol 9/18

Advantage I: Overhead Node and neighbor discovery expensive but transient Path discovery/maintenance continuous but cheap [4,5] 4-bytes routing updates (IID + metric value + sequence#) Overhead: approx. 1 byte / node / neighbor / second Master Thesis from Glenn Daneels, Analysis of the BMX6 routing protocol [4]: Overhead (Bps) 450000 400000 350000 300000 250000 200000 150000 100000 50000 Steady state (100 seconds) Steady state BMX6 Grid Steady state OLSR Grid Steady state BMX6 Topology Steady state OLSR Topology 0 0 20 40 60 80 100 Topology size BMX6 Mesh Routing Protocol 10/18

Advantage I: Overhead Node and neighbor discovery expensive but transient Path discovery/maintenance continuous but cheap [4,5] 4-bytes routing updates (IID + metric value + sequence#) Overhead: approx. 1 byte / node / neighbor / second Real-life overhead trace from Wireless Community Weekend 2013, Berlin [6] One node moving around, approx 20-nodes temporary mesh deployment BMX6 Mesh Routing Protocol 11/18

Advantages II: User-controlled routing (choose how) Description contains routing-metric algo: Defaults: 0.5s-link probes, 5s-routing update, ETX-like metric Performance analysis from Wireless Battle Mesh WBMv6, 2013 [7], (work in progress) 25 ping tests between stationary nodes: ECDF 0.0 0.2 0.4 0.6 0.8 1.0 groups=5,6,7,8,9,10,13,15,17,18,19,23,24,25,26,27,28,30,32,34,35,36,37,38,39 ECDF babel succ used expect rcvd batadv babel 18879 19366 25000 26116 bmx6 batadv 18889 18971 25000 25123 bmx6 21216 21383 25000 24900 olsr olsr 21381 21596 25000 25326 proportion [%] <= RTT 10 100 1000 babel 50 67 74 batadv 46 71 74 bmx6 69 82 84 olsr 74 84 85 0.0 0.2 0.4 0.6 0.8 1.0 3 netperf TCP throughput tests between stationary nodes in [Kbits/second]: Protocol test1 test2 test3 avg babel 831 836 827 831 batadv 833 990 403 742 bmx6 2695 2708 1980 2461 olsr 2918 3647 1867 2810 Note correlation between ECDF for 10ms RTT and avg TP 1 5 10 50 500 5000 round tip time (RTT) [ms] BMX6 Mesh Routing Protocol 12/18

Advantage III: Overlay Networking (choose what) Description publishes tunnel endpoints to networks Traffic routed via user-controlled overlay network Using Linux-Kernel tunnel: Fast!!! Flexible tunnel offering and routes redistribution tunin=myself /n=10.6.1.17/28 /b=10m redisttable=homenets /table=123 /b=100m /kernel=1 redistribute=nbcloud /n=10.1.0.0/16 /b=10m /olsr=1 Flexible tunnel selection policies Destination specific GWs (private, cloud) tunout=peter /n=192.168.9.0/24 /hostname=peter tunout=mycloud /n=10.6.0.0/16 /minprefixlen=26 Zebra/Quagga support (export other community clouds) tunout=community /n=10.0.0.0/8 /maxprefixlen=16 /bgp=1 No undesired internet-gw switching tunout=inet /n=0.0.0.0/0 /maxprefixlen=0 /hysteresis=50 Preference driven GW selection (encounter IP hijacking) tunout=inet /n=0.0.0.0/0 /maxprefixlen=0 /name=ffgw /bonus=100 BMX6 Mesh Routing Protocol 13/18

Advantages IV: Self-configuration & Failure Recovery Configuration: Minimal configuration requires only interface Auto-configured primary address (ULA-IPv6 based, similar to EUI64) immediate reachability Unambiguous end-to-end routing (NOT anycast/anywhere) Also description hash re-usable as primary IP (routing) Failure Recovery: Allocation conflicts solved context specific Eg: DAD solved by dropping conflicting routing updates NOT affecting overall network, just conflicting nodes!!! Misbehaving nodes are isolated locally Illegal node descriptions are dropped BMX6 Mesh Routing Protocol 14/18

Problem: Open versus Secure Existing end2end sec (ssl, vpn) rely on functioning routing Routing security by exclusion (shared key) is NO solution! Contradicts openness Public secret soon, hard to control or update Controversy between key-holders remains Clear rules are nice. But global compliance questionable! Think of hitchhikers dilemma: Society consensus: Do not threaten others? Young lady worries sweating older man (despite well dressed) Others afraid of punks offering a lift Security driven by trust, not by law (rules of consensus) Society approach: Don t exclude (criminalize) anybody But allow individuals to discard offers Lets try the same for routing... BMX6 Mesh Routing Protocol 15/18

User-Controlled Routing via Trusted Nodes: Goal Anarchist and Hippie distrust Spy Data to-be routed around Bourgeois appealed by NSA-sponsored high-speed links Data to-be routed straight Helps Anarchist despite distrust BMX6 Mesh Routing Protocol 16/18

User-Controlled Routing via Trusted Nodes: Approach Extend BMX6 description to publish each node s PubKey Trust set (other node s pubkeys) Signature: ensure authenticity) Remember: Descriptions propagated globally New rules: pubkeys+signature to setup symmetric link encryption: Authenticate routing updates from NB s Only process routing updates from X via NB if NB trusted by X! -> Forwarding path (next hops) to X only via trusted nodes BMX6 Mesh Routing Protocol 17/18

References: 1 L. Cerdà-Alabern, A. Neumann, and P. Escrich, Experimental Evaluation of a Wireless Community Mesh Network, acceppted for 16th ACM/IEEE International Conference on Modeling, Analysis and Simulation of Wireless and Mobile Systems (MSWiM 2013), Barcelona/Spain 2 A. Neumann, E. López, and L. Navarro, An evaluation of BMX6 for community wireless networks, 1st International Workshop on Community Networks and Bottom-up-Broadband (IEEE CNBuB 2012), Barcelona/Spain 3 A. Neumann, L. Navarro, P. Escrich, and R. Baig, Receiver-driven routing for community mesh networks, 5th International Workshop on Hot Topics in Mesh Networking (IEEE HotMesh 2013), Madrid/Spain 4 Glenn Daneels, Analysis of the BMX6 routing protocol, Master thesis at University of Antwerp, Department Mathematics-Computer Science, 2012-2013 5 Roger Baig Viñas, Evaluation of Dynamic Routing Protocols on Realistic Wireless Topologies, Master Thesis at Universitat Autònoma de Barcelona, Department de Telecomunicació i D Enginyeria De Sistemes, June 2013 6 Wireless Community Weekend, 2013, Berlin, http://wiki.freifunk.net/wireless_community_weekend_2013 7 Wireless Battle Mesh version 6 (http://battlemesh.org/battlemeshv6), Mailing list Subject: [Battlemesh] Battlemesh v6 conclusions, Online: http://ml.ninux.org/pipermail/battlemesh/2013-july/002488.html Thanks! Questions...? Checkout www.bmx6.net BMX6 Mesh Routing Protocol 18/18

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information