Abstract
Many promising networking research ideas in programmable networks never see the light of day. Yet, deploying research prototypes in production networks can help validate research ideas, improve them with faster feedback, uncover new research questions, and also ease the subsequent transition to practice. In this paper, we show how researchers can run and validate their research ideas in their own backyards---on their production campus networks---and we have seen that such a demonstrator can expedite the deployment of a research idea in practice to solve real network operation problems. We present P4Campus, a proof-of-concept that encompasses tools, an infrastructure design, strategies, and best practices---both technical and non-technical---that can help researchers run experiments against their programmable network idea in their own network. We use network tapping devices, packet brokers, and commodity programmable switches to enable running experiments to evaluate research ideas on a production campus network. We present several compelling data-plane applications as use cases that run on our campus and solve production network problems. By sharing our experiences and open-sourcing our P4 apps [28], we hope to encourage similar efforts on other campuses.
- Arista DANZ monitoring fabric. https://www.arista.com/en/products/danz-monitoring-fabric, 2020.Google Scholar
- Barefoot (Intel) Torino Chip. https://www.intel.com/content/www/us/en/products/network-io/programmable-ethernet-switch/tofino-series/tofino.html, 2021.Google Scholar
- Barefoot (Intel) Tofino2 Chip. https://www.intel.com/content/www/us/en/products/network-io/programmable-ethernet-switch/tofino-2-series.html, 2021.Google Scholar
- R. B. Basat, X. Chen, G. Einziger, and O. Rottenstreich. Designing heavy-hitter detection algorithms for programmable switches. IEEE/ACM Transactions on Networking, 28(3), June 2020.Google Scholar
- T. Benson, A. Akella, and D. A. Maltz. Data set for IMC 2010 data center measurement. http://pages.cs.wisc.edu/~tbenson/IMC10_Data.html, 2010.Google Scholar
- A. Bogdanov, L. R. Knudsen, G. Leander, F.-X. Standaert, J. Steinberger, and E. Tischhauser. Key-alternating ciphers in a provable setting: Encryption using a small number of public permutations. In International Conference on the Theory and Applications of Cryptographic Techniques, pages 45--62. Springer, 2012.Google ScholarDigital Library
- P. Bosshart, D. Daly, G. Gibb, M. Izzard, N. McKeown, J. Rexford, C. Schlesinger, D. Talayco, A. Vahdat, G. Varghese, and D. Walker. P4: Programming protocol-independent packet processors. ACM SIGCOMM Computer Communication Review, 44(3):87--95, 2014.Google ScholarDigital Library
- S. Buccapatnam, X. Chen, K. Duell, S. L. Feibish, K. Meier-Hellstern, Y. Koral, S. A. Monetti, A. Raghuram, J. Rexford, J. Stango, et al. Fine-grained P4 measurement toolkit for buffer sizing in carrier grade networks. In Stanford University. Workshop on Buffer Sizing, 2019.Google Scholar
- CAIDA: Anonymization Tools Taxonomy. https://www.caida.org/tools/taxonomy/anonymization.xml.Google Scholar
- CAIDA: Summary of Anonymization Best Practice Techniques. https://www.caida.org/projects/predict/anonymization/.Google Scholar
- CAIDA: Data Collection, Curation and Sharing. https://www.caida.org/data/.Google Scholar
- USA National Science Foundation: Campus cyberinfrastructure. https://www.nsf.gov/funding/pgm_summ.jsp?pims_id=504748, 2021.Google Scholar
- X. Chen, S. L. Feibish, Y. Koral, J. Rexford, O. Rottenstreich, S. A. Monetti, and T.-Y. Wang. Fine-grained queue measurement in the data plane. In ACM SIGCOMM CoNEXT, pages 15--29, 2019.Google ScholarDigital Library
- X. Chen, H. Kim, J. M. Aman, W. Chang, M. Lee, and J. Rexford. Measuring TCP round-trip time in the data plane. In ACM SIGCOMM Workshop on Secure Programmable Network Infrastructure, August 2020.Google ScholarDigital Library
- Cisco Silicon One. https://www.cisco.com/c/en/us/solutions/service-provider/innovation/silicon-one.html, 2020.Google Scholar
- Disk2n: A 10 gigabit network traffic (re)player. https://www.ntop.org/products/traffic-recording-replay/disk2n/, 2020.Google Scholar
- S. Donovan and N. Feamster. Intentional network monitoring: Finding the needle without capturing the haystack. In ACM SIGCOMM HotNets Workshop, 2014.Google ScholarDigital Library
- DPDK, Data Plane Development Kit. https://www.dpdk.org/, 2018.Google Scholar
- P. Emmerich, S. Gallenmüller, D. Raumer, F. Wohlfart, and G. Carle. MoonGen: A scriptable high-speed packet generator. In ACM SIGCOMM Internet Measurement Conference, pages 275--287, 2015.Google ScholarDigital Library
- A. Hanemann, J. W. Boote, E. L. Boyd, J. Durand, L. Kudarimoti, R. Łapacz, D. M. Swany, S. Trocha, and J. Zurawski. PerfSONAR: A service oriented architecture for multi-domain network monitoring. In International Conference on Service-Oriented Computing, pages 241--254. Springer, 2005.Google ScholarDigital Library
- R. Hofstede, P. Čeleda, B. Trammell, I. Drago, R. Sadre, A. Sperotto, and A. Pras. Flow monitoring explained: From packet capture to data analysis with NetFlow and IPFiX. IEEE Communications Surveys & Tutorials, 16(4):2037--2064, 2014.Google ScholarCross Ref
- H. Kim and A. Gupta. ONTAS: Flexible and scalable online network traffic anonymization system. In ACM SIGCOMM Workshop on Network Meets AI & ML, pages 15--21, 2019.Google ScholarDigital Library
- N. McKeown, T. Anderson, H. Balakrishnan, G. Parulkar, L. Peterson, J. Rexford, S. Shenker, and J. Turner. OpenFlow: Enabling innovation in campus networks. ACM SIGCOMM Computer Communication Review, 38(2):69--74, 2008.Google ScholarDigital Library
- N2disk: 10/40 gbit network traffic recorder with indexing capabilities. https://www.ntop.org/products/traffic-recording-replay/n2disk/, 2020.Google Scholar
- Netronome Agilio SmartNIC. https://bit.ly/2UOGfi8, 2016.Google Scholar
- P4 language consortium behavioral model (bmv2). https://github.com/p4lang/behavioral-model, 2020.Google Scholar
- P4-NetFPGA. https://github.com/NetFPGA/P4-NetFPGA-public/wiki, 2020.Google Scholar
- P4Campus: framework, applications, and artifacts. https://p4campus.cs.princeton.edu, 2021.Google Scholar
- P4 Specification [Online]. https://p4.org/specs/, 2019.Google Scholar
- perfSONAR. https://www.perfsonar.net, 2020.Google Scholar
- L. Peterson and V. S. Pai. Experience-driven experimental systems research. Communications of the ACM, 50(11):38--44, 2007.Google ScholarDigital Library
- PFRING: High-speed packet capture, filtering and analysis. https://www.ntop.org/products/packet-capture/pf_ring/.Google Scholar
- L. Rizzo. Netmap: A novel framework for fast packet I/O. In USENIX Security Symposium, pages 101--112, 2012.Google Scholar
- R. Sherwood, G. Gibb, K.-K. Yap, G. Appenzeller, M. Casado, N. McKeown, and G. M. Parulkar. Can the production network be the testbed? In OSDI, volume 10, pages 1--6, 2010.Google ScholarDigital Library
- J. Sonchack, O. Michel, A. J. Aviv, E. Keller, and J. M. Smith. Scaling hardware accelerated network monitoring to concurrent and dynamic queries with *Flow. In USENIX Annual Technical Conference, pages 823--835, 2018.Google Scholar
- TCPDUMP and Libpcap. https://www.tcpdump.org, 2020.Google Scholar
- L. Wang, H. Kim, P. Mittal, and J. Rexford. Programmable in-network obfuscation of DNS traffic. In NDSS: DNS Privacy Workshop, 2021.Google Scholar
- K. Wiles. Pktgen-dpdk. http://github.com/Pktgen/Pktgen-DPDK/, 2020.Google Scholar
- Xilinx Netcope P4. https://www.xilinx.com/products/intellectual-property/1-pcz517.html, 2020.Google Scholar
- M. Zalewski. p0f v3 (version 3.09b). http://lcamtuf.coredump.cx/p0f3/, 2014.Google Scholar
- J. Zhang and A. Moore. Traffic trace artifacts due to monitoring via port mirroring. In Workshop on End-to-End Monitoring Techniques and Services, pages 1--8. IEEE, 2007.Google ScholarCross Ref
- P. Zheng, T. Benson, and C. Hu. P4visor: Lightweight virtualization and composition primitives for building and testing modular programs. In ACM SIGCOMM CoNEXT, pages 98--111, 2018.Google ScholarDigital Library
Index Terms
- Experience-driven research on programmable networks
Recommendations
Slicing networks with P4 hardware and software targets
5G-MeMU '22: Proceedings of the ACM SIGCOMM Workshop on 5G and Beyond Network Measurements, Modeling, and Use CasesRunning applications over a shared network may lead to unwanted impairments or performance impacts. To avoid these effects, the partitioning of network resources is an integral aspect of effective 5G networks. These virtually partitioned networks or ...
A high-performance framework for a network programmable packet processor using P4 and FPGA
AbstractThe emergence of new network technologies and users' ever-increasing demand necessitates the introduction of highly programmable hardware with high flexibility and performance at the network data plane. The switches at the data plane ...
Highlights- High-performance framework for a network programmable packet processor.
- ...
Hardware-Accelerated Cryptography for Software-Defined Networks with P4
Innovative Security Solutions for Information Technology and CommunicationsAbstractThe paper presents a hardware-accelerated cryptographic solution for Field Programmable Gate Array (FPGA) based network cards that provide throughput up to 200 Gpbs. Our solution employs a Software-Defined Network (SDN) concept based on the high-...
Comments