US20140328169A1 - Network simulation and analysis using operational forwarding data - Google Patents

Network simulation and analysis using operational forwarding data Download PDF

Info

Publication number
US20140328169A1
US20140328169A1 US14/333,883 US201414333883A US2014328169A1 US 20140328169 A1 US20140328169 A1 US 20140328169A1 US 201414333883 A US201414333883 A US 201414333883A US 2014328169 A1 US2014328169 A1 US 2014328169A1
Authority
US
United States
Prior art keywords
network
forwarding data
virtual network
virtual
computer
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US14/333,883
Inventor
Pradeep Singh
Vinod Jeyachandran
Yu Lin
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Riverbed Technology LLC
Original Assignee
Riverbed Technology LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Riverbed Technology LLC filed Critical Riverbed Technology LLC
Priority to US14/333,883 priority Critical patent/US20140328169A1/en
Publication of US20140328169A1 publication Critical patent/US20140328169A1/en
Assigned to MORGAN STANLEY SENIOR FUNDING, INC., AS COLLATERAL AGENT reassignment MORGAN STANLEY SENIOR FUNDING, INC., AS COLLATERAL AGENT SECURITY INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: RIVERBED TECHNOLOGY, INC.
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/14Network analysis or design
    • H04L41/145Network analysis or design involving simulating, designing, planning or modelling of a network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements
    • H04L41/5003Managing SLA; Interaction between SLA and QoS
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements
    • H04L41/5003Managing SLA; Interaction between SLA and QoS
    • H04L41/5019Ensuring fulfilment of SLA
    • H04L41/5022Ensuring fulfilment of SLA by giving priorities, e.g. assigning classes of service
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/12Avoiding congestion; Recovering from congestion
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/24Traffic characterised by specific attributes, e.g. priority or QoS
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W16/00Network planning, e.g. coverage or traffic planning tools; Network deployment, e.g. resource partitioning or cells structures
    • H04W16/22Traffic simulation tools or models
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W24/00Supervisory, monitoring or testing arrangements
    • H04W24/06Testing, supervising or monitoring using simulated traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W40/00Communication routing or communication path finding
    • H04W40/02Communication route or path selection, e.g. power-based or shortest path routing

Definitions

  • This present invention relates generally to network management, and in particular to a system and method of extracting operational forwarding data from a physical network for simulation and analysis in a virtual network.
  • Networks such as telecommunication networks, data transfer networks (including the Internet), and the like, are ubiquitous and increasingly relied upon in conducting a wide variety of activities. Businesses that maintain and operate these networks need to accurately analyze network operation, and need tools to plan for network growth.
  • the ability to abstract the network into a virtual network environment such as a database, simulate traffic flows through the network, and analyze many aspects of the network's operation, allows network administrators to optimize existing networks, plan for future growth, increase reliability by simulating network failures, analyze network security, and ensure conformance with organizational policies and other rules regarding network operation.
  • a virtual network is a data structure comprising virtual features (nodes and links) that represent corresponding features in a physical network.
  • the physical network features may exist in an actual network, or, in the case of “what if” simulations such as planning for network growth, the virtual network may include virtual features that do not have an existing counterpart in an actual network. In either case, traffic flows may be simulated through the virtual network, and the simulated behavior monitored and analyzed.
  • the routing and forwarding information generated through the simulation should closely match that maintained at corresponding nodes in the physical network.
  • the simulation may not have enough data to create accurate forwarding tables.
  • equipment vendors often create protocol behaviors that are not described in the standards for a particular protocol, in response to requests from their customers, or to differentiate their products in the marketplace. These deviations from the standard protocol may not be reflected in the simulation, which models the standards. Accordingly, the forwarding tables generated through the simulation may differ significantly from those that are created in the actual, physical network.
  • a hybrid approach to populating forwarding tables in a virtual network obtains forwarding data both by simulating routing protocol behavior in the virtual network to build forwarding tables, and by importing operational forwarding data from corresponding physical nodes in a physical network.
  • the use of operational forwarding data improves the fidelity of the simulation by closely conforming forwarding behavior in the simulation to that which occurs in the physical network.
  • One embodiment relates to a method of network analysis.
  • a virtual network environment is provided, at least part of which represents physical network features.
  • Operational forwarding data is obtained from one or more physical network nodes, and the operational forwarding data is applied to corresponding virtual network nodes.
  • forwarding data is computed by simulating routing protocol behavior in the virtual network environment.
  • Another embodiment relates to a computer readable medium including one or more computer programs operative to cause a computer to perform network analysis.
  • the computer programs are operative to cause the computer to perform the steps of providing a virtual network environment, at least part of which represents physical network features; obtaining operational forwarding data from one or more physical network nodes, and applying the operational forwarding data to corresponding virtual network nodes; and for one or more virtual network nodes, computing forwarding data by simulating routing protocol behavior in the virtual network environment.
  • FIG. 1 is a flow diagram of a method of network analysis.
  • FIG. 2 is a functional block diagram of a computer executing software operative to perform network simulation using operational forwarding data.
  • Network routing is the process of selecting paths in a network along which to send traffic, such as data packets in an IP network. For small networks, routing may be performed manually, by constructing routing tables prior to applying traffic to the network. Larger networks utilize dynamic routing, wherein routing tables are constructed automatically according to a routing protocol.
  • Known routing algorithms include Distance Vector, Link-state, and Path Vector.
  • OSPF Open Shortest Path First
  • Dijkstra's algorithm uses Dijkstra's algorithm to calculate the shortest path tree inside each network area.
  • Dynamic routing protocols dynamically construct routing tables during a network learning process.
  • the routing tables maintained at network router nodes, include routes through the network to network destinations, which may be stored, for example, as network addresses (e.g., IP addresses).
  • the routing tables may also include metrics associated with the routes, which may include bandwidth, delay, hop count, path cost, load, Maximum Transmission Unit (MTU), reliability, cost, and the like.
  • the routing table includes the entire network topology (link-state) or partial topology, such as the shortest paths to known destinations via all of its neighbors (distance vector).
  • Forwarding is the relaying of datagrams (such as IP packets) from one network segment to another by nodes in the network.
  • Network nodes such as routers, bridges, gateways, firewalls, switches, and the like, forward packets by inspecting the packet header for a destination address, and looking up the destination address in a forwarding table.
  • a forwarding table is a subset of a routing table, and includes the mapping of a next-hop address and an output interface to each destination network address (such as an IP address). The forwarding table thus tells each node which output interface to forward any packet towards.
  • Forwarding tables are built at each node during a learning process that is independent of the forwarding process, by applying the routing protocol.
  • Forwarding tables are conventionally constructed in virtual networks by simulating the network learning process, and building forwarding tables at each network node prior to simulating traffic flow through the network. As discussed above, due to non-standard routing behavior, imperfect network topology or other information, or other factors, forwarding tables constructed by network simulation may not match the operational forwarding data maintained at actual, physical network nodes. As used herein, the term “operational forwarding data” refers to actual, real-world forwarding data constructed and maintained at physical nodes in an actual, physical network.
  • operational forwarding data are extracted from a physical network and applied to corresponding virtual nodes in a virtual network for network simulation and analysis.
  • the operational forwarding data may be obtained in several ways.
  • shell commands extract the forwarding table from each node in a physical network.
  • a user issues commands to a physical network node to export the forwarding table. This might yield a forwarding table including only the best path data.
  • a user issues a “data dump” command to obtain all forwarding information from a physical node, including secondary, tertiary, etc., path data. In this case, the user may extract a forwarding table from the resulting data via subsequent analysis.
  • the operational forwarding data may be filtered to reduce the forwarding table size and obtain only data that is necessary for particular simulation purposes.
  • a service provider network node may include over 200,000 entries in a forwarding table. If a simulation will involve only a known set of address prefixes, the operational forwarding data may be filtered to remove the irrelevant entries.
  • Operational forwarding data may not always be available.
  • a particular physical network node may not report operational data, a user may lack administrator privilege or permission to obtain the data, or the like.
  • operational forwarding data is obtained and applied to all virtual network nodes corresponding to the physical network nodes from which sufficient operational forwarding data is available.
  • forwarding tables may be built conventionally, by simulating routing behavior in the virtual network.
  • partial operational forwarding data at a particular virtual network node may be supplemented by further building the forwarding table during simulation.
  • forwarding tables are obtained for all virtual network nodes, whether by obtaining and applying operational forwarding data or by simulating a routing protocol in the virtual network, a variety of simulations and analyses may be performed on the virtual network with the significant benefit of high simulation fidelity, with virtual network nodes more precisely simulating the behavior of physical network nodes due to the use of operational forwarding data.
  • a simulation may apply and analyze network traffic based on the model protocol behavior for a variety of types of traffic. For example, traffic having different burst characteristics or Quality of Service (QoS) constraints may be simulated to ascertain the network load, response, and the like. By using operational forwarding data, a more accurate traffic and capacity analysis is obtained.
  • QoS Quality of Service
  • Another type of analysis is security analysis, wherein various security policies may be applied to simulated network traffic, and the behavior of the security policies tested and validated. For example, the simulation and analysis may verify that certain traffic is blocked, and other traffic passes through the network. By using operational forwarding data, network managers may ensure that non-standard routing protocol behavior in network nodes does not thwart security policies.
  • a particularly powerful tool for understanding network traffic behavior is graphic visualization.
  • a graphical representation of the network may be output to a display screen, printer, plotter, or the like.
  • the screen display may be zoomed and panned, as known in the art.
  • the graphical display may be annotated with a variety of information. For example, visual depictions of traffic flows may illuminate how any given device in the network learns to reach a particular network address.
  • a variety of network analyses may be performed on any of these types of high-fidelity simulations using operational forwarding data, and reports may be generated based on the analyses. These reports provide network managers with valuable information on network operation. For example, reporting on forwarding tables themselves is critical to ensuring proper network behavior, e.g., that the proper default routes appear in the forwarding tables. Since a network node will drop a packet for which it has not entry in the forwarding table, maintaining default routes in each forwarding table is important to prevent excessive data loss and re-transmission.
  • the simulations may be analyzed for conformance to organizational policies.
  • Network managers at various organizations may set policies and rules to ensure appropriate routing guidelines. For example, they may (or may not) allow multiple next hops to a destination, to cause (or avoid) asymmetric routing. Asymmetric routing can cause packets to arrive out-of-order at the destination, resulting in unpredictable latencies, which in turn can impact the performance of certain applications.
  • the simulations may be analyzed for conformance to such policies, and reports generated to alert network managers to policy violations.
  • the use of operational forwarding data ensures that non-standard routing protocol behavior does not thwart organizational policies.
  • FIG. 1 depicts a method 10 of network analysis, according to one or more embodiments of the present invention.
  • the method begins by providing a virtual network environment, at least part of which represents physical network features (i.e., nodes and links) (block 12 ).
  • the virtual network may include network features that do not exist in a physical network, such as when simulating projected growth or other “what if” simulations to assess the impact of adding features to a network.
  • operational forwarding data is obtained from the physical network nodes and applied to the corresponding virtual network nodes (block 14 ).
  • forwarding data are computed by simulating the learning process of a routing protocol behavior in the virtual network environment (block 16 ).
  • This hybrid approach provisions nodes in the virtual network environment with forwarding tables, preparing them for network traffic simulations.
  • traffic types may be defined (e.g., bursty), QoS constraints defined and applied, and security and/or organizational policies may be applied (block 18 ).
  • Traffic flows are then simulated in the virtual network environment (block 20 ).
  • the results of the simulation are analyzed (block 22 ), and annotated graphical network representations and/or analysis reports are generated and output to the user (block 24 ).
  • If more simulations are to be performed (block 26 ), they are defined (block 18 ) and the process repeats. If no more simulations are to be performed in the virtual network environment provisioned with operational forwarding data (block 26 ), the method ends (block 28 ).
  • FIG. 2 depicts a functional block diagram of a computer 30 operative to execute one or more computer programs 38 implementing the method 10 .
  • the computer 30 includes a processor 32 , which may comprise a general-purpose microprocessor, a digital signal processor, or custom hardware such as an FPGA or ASIC.
  • the processor 32 is operatively connected in data flow relationship with memory 36 .
  • the memory 36 includes, at least during its execution, software 38 operative to perform some or all of the method 10 of FIG. 1 .
  • a non-volatile copy of the software 38 may reside on a fixed disk drive 40 .
  • the software 38 may be initially loaded into the computer 30 from a computer-readable medium 46 , such as a CD-ROM or DVD, via a removable media drive 42 .
  • the computer 30 preferably includes a user interface 48 , comprising a keyboard, pointing device, and the like, and a graphic display 50 operative to display a graphical representation of a virtual network environment, annotated with information derived from a high-fidelity simulation using operational forwarding data.
  • the graphic representation and/or reports of network simulation analyses may be output to a printer 52 , plotter (not shown), or other hard copy peripheral as known in the art.
  • An input/output (I/O) interface 54 connects via a wired or wireless data channel 56 to a physical network 58 . Operational forwarding data is obtained from nodes in the physical network 58 , and applied by the software 38 to nodes in the virtual network environment prior to network traffic simulation.
  • One embodiment of the software 38 implementing the method 10 of network analysis using operational forwarding data is the OPNET SP Guru Release 12.0, available from OPNET Technologies, Inc. Although depicted as software 38 executing on a general-purpose computer 30 , implementations of the method 10 are not limited to this embodiment. In general, the method may be performed by any means known in the art, including any combination of software, dedicated hardware, firmware, or the like.

Abstract

A hybrid approach to populating forwarding tables in a virtual network obtains forwarding data both by simulating routing protocol behavior in the virtual network to build forwarding tables, and by importing operational forwarding data from corresponding physical nodes in a physical network. The use of operational forwarding data improves the fidelity of the simulation by closely conforming forwarding behavior in the simulation to that which occurs in the physical network.

Description

    PRIORITY CLAIM
  • This application is a continuation filing of, and claims priority to, U.S. patent application Ser. No. 11/838,417, filed on Aug. 14, 2007, which claims priority to U.S. Provisional Application Ser. No. 60/822,400, filed Aug. 15, 2006. Both applications are incorporated herein by reference in their entirety.
    • FIELD OF THE INVENTION
  • This present invention relates generally to network management, and in particular to a system and method of extracting operational forwarding data from a physical network for simulation and analysis in a virtual network.
    • BACKGROUND
  • Networks, such as telecommunication networks, data transfer networks (including the Internet), and the like, are ubiquitous and increasingly relied upon in conducting a wide variety of activities. Businesses that maintain and operate these networks need to accurately analyze network operation, and need tools to plan for network growth. The ability to abstract the network into a virtual network environment such as a database, simulate traffic flows through the network, and analyze many aspects of the network's operation, allows network administrators to optimize existing networks, plan for future growth, increase reliability by simulating network failures, analyze network security, and ensure conformance with organizational policies and other rules regarding network operation.
  • Conventional network simulation includes creating a virtual network and simulating traffic flows through the virtual network according to predetermined routing protocols, to populate the virtual network nodes with routing and forwarding information such as forwarding tables. A virtual network is a data structure comprising virtual features (nodes and links) that represent corresponding features in a physical network. The physical network features may exist in an actual network, or, in the case of “what if” simulations such as planning for network growth, the virtual network may include virtual features that do not have an existing counterpart in an actual network. In either case, traffic flows may be simulated through the virtual network, and the simulated behavior monitored and analyzed.
  • To achieve high fidelity simulations, wherein simulated traffic behavior closely matches traffic behavior on an actual, physical network, the routing and forwarding information generated through the simulation should closely match that maintained at corresponding nodes in the physical network. However, if the virtual network is incomplete with respect to topology or configuration, the simulation may not have enough data to create accurate forwarding tables. Additionally, equipment vendors often create protocol behaviors that are not described in the standards for a particular protocol, in response to requests from their customers, or to differentiate their products in the marketplace. These deviations from the standard protocol may not be reflected in the simulation, which models the standards. Accordingly, the forwarding tables generated through the simulation may differ significantly from those that are created in the actual, physical network.
    • SUMMARY
  • According to one or more embodiments disclosed and claimed herein, a hybrid approach to populating forwarding tables in a virtual network obtains forwarding data both by simulating routing protocol behavior in the virtual network to build forwarding tables, and by importing operational forwarding data from corresponding physical nodes in a physical network. The use of operational forwarding data improves the fidelity of the simulation by closely conforming forwarding behavior in the simulation to that which occurs in the physical network.
  • One embodiment relates to a method of network analysis. A virtual network environment is provided, at least part of which represents physical network features.
  • Operational forwarding data is obtained from one or more physical network nodes, and the operational forwarding data is applied to corresponding virtual network nodes. For one or more virtual network nodes, forwarding data is computed by simulating routing protocol behavior in the virtual network environment.
  • Another embodiment relates to a computer readable medium including one or more computer programs operative to cause a computer to perform network analysis. The computer programs are operative to cause the computer to perform the steps of providing a virtual network environment, at least part of which represents physical network features; obtaining operational forwarding data from one or more physical network nodes, and applying the operational forwarding data to corresponding virtual network nodes; and for one or more virtual network nodes, computing forwarding data by simulating routing protocol behavior in the virtual network environment.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • FIG. 1 is a flow diagram of a method of network analysis.
  • FIG. 2 is a functional block diagram of a computer executing software operative to perform network simulation using operational forwarding data.
    •  DETAILED DESCRIPTION
  • Network routing is the process of selecting paths in a network along which to send traffic, such as data packets in an IP network. For small networks, routing may be performed manually, by constructing routing tables prior to applying traffic to the network. Larger networks utilize dynamic routing, wherein routing tables are constructed automatically according to a routing protocol. Known routing algorithms include Distance Vector, Link-state, and Path Vector. Several well-defined routing protocols are known, such as the Link-state protocol Open Shortest Path First (OSPF), which uses Dijkstra's algorithm to calculate the shortest path tree inside each network area.
  • Dynamic routing protocols dynamically construct routing tables during a network learning process. The routing tables, maintained at network router nodes, include routes through the network to network destinations, which may be stored, for example, as network addresses (e.g., IP addresses). The routing tables may also include metrics associated with the routes, which may include bandwidth, delay, hop count, path cost, load, Maximum Transmission Unit (MTU), reliability, cost, and the like. Depending on the routing protocol, the routing table includes the entire network topology (link-state) or partial topology, such as the shortest paths to known destinations via all of its neighbors (distance vector).
  • Forwarding is the relaying of datagrams (such as IP packets) from one network segment to another by nodes in the network. Network nodes such as routers, bridges, gateways, firewalls, switches, and the like, forward packets by inspecting the packet header for a destination address, and looking up the destination address in a forwarding table. A forwarding table is a subset of a routing table, and includes the mapping of a next-hop address and an output interface to each destination network address (such as an IP address). The forwarding table thus tells each node which output interface to forward any packet towards. Forwarding tables are built at each node during a learning process that is independent of the forwarding process, by applying the routing protocol.
  • Forwarding tables are conventionally constructed in virtual networks by simulating the network learning process, and building forwarding tables at each network node prior to simulating traffic flow through the network. As discussed above, due to non-standard routing behavior, imperfect network topology or other information, or other factors, forwarding tables constructed by network simulation may not match the operational forwarding data maintained at actual, physical network nodes. As used herein, the term “operational forwarding data” refers to actual, real-world forwarding data constructed and maintained at physical nodes in an actual, physical network.
  • According to one or more embodiments of the present invention, operational forwarding data are extracted from a physical network and applied to corresponding virtual nodes in a virtual network for network simulation and analysis. The operational forwarding data may be obtained in several ways. In one embodiment, shell commands extract the forwarding table from each node in a physical network. In another embodiment, a user issues commands to a physical network node to export the forwarding table. This might yield a forwarding table including only the best path data. In yet another embodiment, a user issues a “data dump” command to obtain all forwarding information from a physical node, including secondary, tertiary, etc., path data. In this case, the user may extract a forwarding table from the resulting data via subsequent analysis.
  • Regardless of how the operational forwarding data is obtained, in one embodiment the operational forwarding data may be filtered to reduce the forwarding table size and obtain only data that is necessary for particular simulation purposes. For example, a service provider network node may include over 200,000 entries in a forwarding table. If a simulation will involve only a known set of address prefixes, the operational forwarding data may be filtered to remove the irrelevant entries.
  • Operational forwarding data may not always be available. For example, a particular physical network node may not report operational data, a user may lack administrator privilege or permission to obtain the data, or the like. In this case, according to one embodiment, operational forwarding data is obtained and applied to all virtual network nodes corresponding to the physical network nodes from which sufficient operational forwarding data is available. For other virtual network nodes, including those for which a corresponding physical network node does not exist, forwarding tables may be built conventionally, by simulating routing behavior in the virtual network. In one embodiment, partial operational forwarding data at a particular virtual network node may be supplemented by further building the forwarding table during simulation.
  • Once forwarding tables are obtained for all virtual network nodes, whether by obtaining and applying operational forwarding data or by simulating a routing protocol in the virtual network, a variety of simulations and analyses may be performed on the virtual network with the significant benefit of high simulation fidelity, with virtual network nodes more precisely simulating the behavior of physical network nodes due to the use of operational forwarding data.
  • One type of analysis is traffic and capacity analysis. There is constant growth in the network capacity requirements of most physical networks due to a combination of increased number of users of existing applications and the addition of new applications. A simulation may apply and analyze network traffic based on the model protocol behavior for a variety of types of traffic. For example, traffic having different burst characteristics or Quality of Service (QoS) constraints may be simulated to ascertain the network load, response, and the like. By using operational forwarding data, a more accurate traffic and capacity analysis is obtained.
  • Another type of analysis is security analysis, wherein various security policies may be applied to simulated network traffic, and the behavior of the security policies tested and validated. For example, the simulation and analysis may verify that certain traffic is blocked, and other traffic passes through the network. By using operational forwarding data, network managers may ensure that non-standard routing protocol behavior in network nodes does not thwart security policies.
  • A particularly powerful tool for understanding network traffic behavior is graphic visualization. According to one embodiment, a graphical representation of the network may be output to a display screen, printer, plotter, or the like. The screen display may be zoomed and panned, as known in the art. Based on network traffic simulations utilizing operational forwarding data, the graphical display may be annotated with a variety of information. For example, visual depictions of traffic flows may illuminate how any given device in the network learns to reach a particular network address.
  • A variety of network analyses may be performed on any of these types of high-fidelity simulations using operational forwarding data, and reports may be generated based on the analyses. These reports provide network managers with valuable information on network operation. For example, reporting on forwarding tables themselves is critical to ensuring proper network behavior, e.g., that the proper default routes appear in the forwarding tables. Since a network node will drop a packet for which it has not entry in the forwarding table, maintaining default routes in each forwarding table is important to prevent excessive data loss and re-transmission.
  • As another example, the simulations may be analyzed for conformance to organizational policies. Network managers at various organizations may set policies and rules to ensure appropriate routing guidelines. For example, they may (or may not) allow multiple next hops to a destination, to cause (or avoid) asymmetric routing. Asymmetric routing can cause packets to arrive out-of-order at the destination, resulting in unpredictable latencies, which in turn can impact the performance of certain applications. The simulations may be analyzed for conformance to such policies, and reports generated to alert network managers to policy violations. Here again, the use of operational forwarding data ensures that non-standard routing protocol behavior does not thwart organizational policies.
  • FIG. 1 depicts a method 10 of network analysis, according to one or more embodiments of the present invention. The method begins by providing a virtual network environment, at least part of which represents physical network features (i.e., nodes and links) (block 12). The virtual network may include network features that do not exist in a physical network, such as when simulating projected growth or other “what if” simulations to assess the impact of adding features to a network. For virtual network nodes that do correspond to physical network nodes, operational forwarding data is obtained from the physical network nodes and applied to the corresponding virtual network nodes (block 14). For one or more other virtual network nodes (which may or may not correspond to physical network nodes), forwarding data are computed by simulating the learning process of a routing protocol behavior in the virtual network environment (block 16). This hybrid approach provisions nodes in the virtual network environment with forwarding tables, preparing them for network traffic simulations.
  • Depending on the simulations to be performed, traffic types may be defined (e.g., bursty), QoS constraints defined and applied, and security and/or organizational policies may be applied (block 18). Traffic flows are then simulated in the virtual network environment (block 20). The results of the simulation are analyzed (block 22), and annotated graphical network representations and/or analysis reports are generated and output to the user (block 24). If more simulations are to be performed (block 26), they are defined (block 18) and the process repeats. If no more simulations are to be performed in the virtual network environment provisioned with operational forwarding data (block 26), the method ends (block 28).
  • FIG. 2 depicts a functional block diagram of a computer 30 operative to execute one or more computer programs 38 implementing the method 10. The computer 30 includes a processor 32, which may comprise a general-purpose microprocessor, a digital signal processor, or custom hardware such as an FPGA or ASIC. The processor 32 is operatively connected in data flow relationship with memory 36. The memory 36 includes, at least during its execution, software 38 operative to perform some or all of the method 10 of FIG. 1. A non-volatile copy of the software 38 may reside on a fixed disk drive 40. The software 38 may be initially loaded into the computer 30 from a computer-readable medium 46, such as a CD-ROM or DVD, via a removable media drive 42.
  • The computer 30 preferably includes a user interface 48, comprising a keyboard, pointing device, and the like, and a graphic display 50 operative to display a graphical representation of a virtual network environment, annotated with information derived from a high-fidelity simulation using operational forwarding data. The graphic representation and/or reports of network simulation analyses may be output to a printer 52, plotter (not shown), or other hard copy peripheral as known in the art. An input/output (I/O) interface 54 connects via a wired or wireless data channel 56 to a physical network 58. Operational forwarding data is obtained from nodes in the physical network 58, and applied by the software 38 to nodes in the virtual network environment prior to network traffic simulation.
  • One embodiment of the software 38 implementing the method 10 of network analysis using operational forwarding data is the OPNET SP Guru Release 12.0, available from OPNET Technologies, Inc. Although depicted as software 38 executing on a general-purpose computer 30, implementations of the method 10 are not limited to this embodiment. In general, the method may be performed by any means known in the art, including any combination of software, dedicated hardware, firmware, or the like.
  • The present invention may, of course, be carried out in other ways than those specifically set forth herein without departing from essential characteristics of the invention. The present embodiments are to be considered in all respects as illustrative and not restrictive, and all changes coming within the meaning and equivalency range of the appended claims are intended to be embraced therein.

Claims (23)

What is claimed is:
1. A method of network analysis, comprising:
providing a virtual network environment comprising virtual network nodes and simulated links between the virtual nodes, at least some of the virtual network nodes representing physical network nodes in a physical network;
obtaining operational forwarding data from one or more of the physical network nodes, the operational forwarding data mapping datagram destination addresses to next-hop network addresses and thus specifying how datagrams are routed through the physical network;
applying the operational forwarding data to corresponding virtual network nodes; and
for one or more virtual network nodes, computing forwarding data by simulating routing protocol behavior in the virtual network environment.
2. The method of claim 1 further comprising simulating traffic flow in the virtual network environment.
3. The method of claim 2 further comprising performing traffic and capacity analysis based on the simulated traffic flow.
4. The method of claim 3 further comprising simulating traffic flow having different Quality of Service (QoS) constraints in the virtual network environment and performing traffic and capacity analyses for the different QoS constraints.
5. The method of claim 3 further comprising simulating traffic flow having different burst characteristics in the virtual network environment and performing traffic and capacity analyses for the different burst characteristics.
6. The method of claim 2 further comprising performing security analysis based on the simulated traffic flow.
7. The method of claim 6 wherein the security analysis checks for traffic that pass through the network and traffic that is blocked by security policies.
8. The method of claim 2 further comprising generating a graphical representation of the virtual network.
9. The method of claim 2 further comprising accepting a selection of a virtual node, and graphically indicating how traffic from any device in the network reaches the selected node.
10. The method of claim 2 further comprising reporting the forwarding data.
11. The method of claim 10 wherein reporting the forwarding data comprises reporting whether proper default routes appear in the forwarding tables of devices for which forwarding data is computed.
12. The method of claim 2 further comprising applying one or more organizational policies to the virtual network and reporting conformance to the policies in the simulated traffic flow.
13. The method of claim 12 wherein a policy avoids multiple next hops to a destination to avoid asymmetric routing.
14. The method of claim 1 wherein obtaining operational forwarding data from one or more physical network nodes comprises extracting a forwarding table from each physical network node by a shell command.
15. The method of claim 1 wherein obtaining operational forwarding data from one or more physical network nodes comprises issuing a command to a physical network node to export the forwarding table.
16. The method of claim 1 wherein obtaining operational forwarding data from one or more physical network nodes comprises issuing a command to a physical network node to export all forwarding data and analyzing the forwarding data to obtain a forwarding table.
17. The method of claim 1 further comprising filtering the operational forwarding data to remove data irrelevant to a simulation.
18. A non-transitory computer readable medium including one or more computer programs operative to cause a computer to perform network analysis, the computer programs operative to cause the computer to perform the steps of:
providing a virtual network environment comprising virtual network nodes and simulated links between the virtual nodes, at least some of the virtual network nodes representing physical network nodes in a physical network;
obtaining operational forwarding data from one or more of the physical network nodes, the operational forwarding data mapping datagram destination addresses to next-hop network addresses and thus specifying how datagrams are routed through the physical network;
applying the operational forwarding data to corresponding virtual network nodes; and
for one or more virtual network nodes, computing forwarding data by simulating routing protocol behavior in the virtual network environment.
19. The computer readable medium of claim 18 wherein the computer programs are further operative to cause the computer to perform the step of simulating traffic flow in the virtual network environment.
20. The computer readable medium of claim 19 wherein the computer programs are further operative to cause the computer to perform traffic and capacity analysis based on the simulated traffic flow.
21. The computer readable medium of claim 19 wherein the computer programs are further operative to cause the computer to perform security analysis based on the simulated traffic flow.
22. The computer readable medium of claim 19 wherein the computer programs are further operative to cause the computer to generate a graphical representation of the virtual network.
23. The computer readable medium of claim 19 wherein the computer programs are further operative to cause the computer to apply one or more organizational policies to the virtual network and report conformance to the policies in the simulated traffic flow.
US14/333,883 2006-08-15 2014-07-17 Network simulation and analysis using operational forwarding data Abandoned US20140328169A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US14/333,883 US20140328169A1 (en) 2006-08-15 2014-07-17 Network simulation and analysis using operational forwarding data

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US82240006P 2006-08-15 2006-08-15
US11/838,417 US8824282B2 (en) 2006-08-15 2007-08-14 Network simulation and analysis using operational forwarding data
US14/333,883 US20140328169A1 (en) 2006-08-15 2014-07-17 Network simulation and analysis using operational forwarding data

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US11/838,417 Continuation US8824282B2 (en) 2006-08-15 2007-08-14 Network simulation and analysis using operational forwarding data

Publications (1)

Publication Number Publication Date
US20140328169A1 true US20140328169A1 (en) 2014-11-06

Family

ID=39083090

Family Applications (2)

Application Number Title Priority Date Filing Date
US11/838,417 Active 2030-06-25 US8824282B2 (en) 2006-08-15 2007-08-14 Network simulation and analysis using operational forwarding data
US14/333,883 Abandoned US20140328169A1 (en) 2006-08-15 2014-07-17 Network simulation and analysis using operational forwarding data

Family Applications Before (1)

Application Number Title Priority Date Filing Date
US11/838,417 Active 2030-06-25 US8824282B2 (en) 2006-08-15 2007-08-14 Network simulation and analysis using operational forwarding data

Country Status (2)

Country Link
US (2) US8824282B2 (en)
WO (1) WO2008022179A2 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108377220A (en) * 2018-02-27 2018-08-07 重庆邮电大学 A kind of transparent virtual optical-fiber network collaboration mapping method of node importance perception

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9279415B1 (en) 2005-07-07 2016-03-08 Sunlink Corporation Solar array integration system and methods therefor
US7895345B2 (en) * 2007-04-13 2011-02-22 Microsoft Corporation Distributed routing table architecture and design
US9455924B2 (en) 2008-01-02 2016-09-27 Media Network Services As Device and system for selective forwarding
US9503354B2 (en) * 2008-01-17 2016-11-22 Aerohive Networks, Inc. Virtualization of networking services
US8347355B2 (en) 2008-01-17 2013-01-01 Aerohive Networks, Inc. Networking as a service: delivering network services using remote appliances controlled via a hosted, multi-tenant management system
US20090319247A1 (en) * 2008-06-18 2009-12-24 Eads Na Defense Security And Systems Solutions Inc Systems and Methods for A Simulated Network Environment and Operation Thereof
US8413391B2 (en) 2008-10-13 2013-04-09 Sunlink Corporation Solar array mounting system with universal clamp
US8296459B1 (en) 2010-06-30 2012-10-23 Amazon Technologies, Inc. Custom routing decisions
US9038329B2 (en) 2011-10-11 2015-05-26 Sunlink Corporation Structure following roof mounted photovoltaic system
US9811622B2 (en) * 2011-10-19 2017-11-07 Verizon Patent And Licensing Inc. Optimized network node selection
US8873753B2 (en) * 2012-08-27 2014-10-28 Verizon Patent And Licensing Inc. Analysis of network operation
US9697172B1 (en) * 2012-12-28 2017-07-04 Juniper Networks, Inc. Virtual network optimizing a physical network
JP6601219B2 (en) * 2013-12-26 2019-11-06 ソニー株式会社 Information processing apparatus, information processing method, and program
JP6406349B2 (en) * 2014-03-27 2018-10-17 日本電気株式会社 Communication terminal
CN105517035B (en) * 2015-12-04 2019-07-19 上海斐讯数据通信技术有限公司 Method and system for testing wireless routing management application
JP6747579B2 (en) * 2017-03-31 2020-08-26 日本電気株式会社 Network construction device, network construction method, and program
US10944641B1 (en) 2019-11-01 2021-03-09 Cisco Technology, Inc. Systems and methods for application traffic simulation using captured flows
CN114172972B (en) * 2021-11-11 2023-08-15 中国工程物理研究院计算机应用研究所 Unknown protocol behavior reverse inference method based on optimized random converter model
CN116232997B (en) * 2023-02-10 2024-04-09 中国联合网络通信集团有限公司 Data forwarding method, device and storage medium

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020145982A1 (en) * 2000-11-03 2002-10-10 Talpade Rajesh Rasik Method and system for quality of service provisioning for IP virtual private networks
US20040071084A1 (en) * 2002-10-09 2004-04-15 Nortel Networks Limited Non-intrusive monitoring of quality levels for voice communications over a packet-based network
US20040122645A1 (en) * 2002-12-19 2004-06-24 Shevenell Michael P. Method and apparatus for the simulation of computer networks
US20060190231A1 (en) * 2005-02-18 2006-08-24 Opnet Technologies, Inc. Tracking, analyzing, and visualizing application delay
US20070064620A1 (en) * 2005-09-16 2007-03-22 Alcatel Method for network analysis and network analyser module
US20070171834A1 (en) * 2006-01-24 2007-07-26 Cisco Technology, Inc. Method and system for testing provisioned services in a network
US20070199052A1 (en) * 2006-02-21 2007-08-23 Cisco Technology, Inc. Method and system for network management using wire tapping
US7720065B2 (en) * 2008-02-29 2010-05-18 Lockheed Martin Corporation Method and apparatus for biasing of network node packet prioritization based on packet content
US20110142057A1 (en) * 2005-08-30 2011-06-16 Bae Systems Information And Electronic Systems Integration Inc. Interfacing Real and Virtual Networks in Hardware-in-the-Loop (HITL) Simulations

Family Cites Families (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0788690A1 (en) * 1994-10-25 1997-08-13 Cabletron Systems, Inc. Method and apparatus for automatically populating a network simulator tool
US5579307A (en) * 1995-03-23 1996-11-26 Motorola, Inc. Packet routing system and method with quasi-real-time control
US6883034B1 (en) * 1995-06-23 2005-04-19 Cisco Technology, Inc. Method of resolving conflicts in access control lists in router by comparing elements in the lists based on subsumption relations
US5907696A (en) * 1996-07-03 1999-05-25 Cabletron Systems, Inc. Network device simulator
US20010011215A1 (en) * 1998-08-31 2001-08-02 Scott A. Beeker Network device simulation system and method
US6442141B1 (en) * 1998-08-31 2002-08-27 3Com Corporation Network delay and loss simulator
US7013251B1 (en) * 1999-12-15 2006-03-14 Microsoft Corporation Server recording and client playback of computer network characteristics
US7003562B2 (en) * 2001-03-27 2006-02-21 Redseal Systems, Inc. Method and apparatus for network wide policy-based analysis of configurations of devices
US7254524B1 (en) * 2001-07-12 2007-08-07 Cisco Technology, Inc. Method and system for a simulation authoring environment implemented in creating a simulation application
US7200545B2 (en) * 2001-12-28 2007-04-03 Testout Corporation System and method for simulating computer network devices for competency training and testing simulations
US6898720B2 (en) * 2002-12-24 2005-05-24 Sunrise Telecom Incorporated Scalable extensible network test architecture

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020145982A1 (en) * 2000-11-03 2002-10-10 Talpade Rajesh Rasik Method and system for quality of service provisioning for IP virtual private networks
US20040071084A1 (en) * 2002-10-09 2004-04-15 Nortel Networks Limited Non-intrusive monitoring of quality levels for voice communications over a packet-based network
US20040122645A1 (en) * 2002-12-19 2004-06-24 Shevenell Michael P. Method and apparatus for the simulation of computer networks
US20060190231A1 (en) * 2005-02-18 2006-08-24 Opnet Technologies, Inc. Tracking, analyzing, and visualizing application delay
US20110142057A1 (en) * 2005-08-30 2011-06-16 Bae Systems Information And Electronic Systems Integration Inc. Interfacing Real and Virtual Networks in Hardware-in-the-Loop (HITL) Simulations
US20070064620A1 (en) * 2005-09-16 2007-03-22 Alcatel Method for network analysis and network analyser module
US20070171834A1 (en) * 2006-01-24 2007-07-26 Cisco Technology, Inc. Method and system for testing provisioned services in a network
US20070199052A1 (en) * 2006-02-21 2007-08-23 Cisco Technology, Inc. Method and system for network management using wire tapping
US7720065B2 (en) * 2008-02-29 2010-05-18 Lockheed Martin Corporation Method and apparatus for biasing of network node packet prioritization based on packet content

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108377220A (en) * 2018-02-27 2018-08-07 重庆邮电大学 A kind of transparent virtual optical-fiber network collaboration mapping method of node importance perception

Also Published As

Publication number Publication date
US20080043627A1 (en) 2008-02-21
US8824282B2 (en) 2014-09-02
WO2008022179A3 (en) 2008-06-12
WO2008022179A2 (en) 2008-02-21

Similar Documents

Publication Publication Date Title
US8824282B2 (en) Network simulation and analysis using operational forwarding data
US10868730B2 (en) Methods, systems, and computer readable media for testing network elements of an in-band network telemetry capable network
US8325720B2 (en) System and method for simulating IP network routing
JP6419967B2 (en) System and method for network management
EP3222006B1 (en) Passive performance measurement for inline service chaining
EP3222005B1 (en) Passive performance measurement for inline service chaining
EP2050237B1 (en) Mapping off-network traffic to an administered network
US8417478B2 (en) Network test conflict checking
US7843840B2 (en) Traffic independent survivability analysis
US8775352B2 (en) Methods and apparatus to model end-to-end class of service policies in networks
US20110080829A1 (en) Method, apparatus and system for monitoring network conditions via a stacked topology of network captured traffic distribution devices
US9331910B2 (en) Methods and systems for automatic generation of routing configuration files
US20150281085A1 (en) Method and system of large flow control in communication networks
US20050050176A1 (en) Non-intrusive method for routing policy discovery
US10938661B1 (en) Service heatmap-based telemetry feedback loop
WO2021076417A1 (en) Service-based node-centric ecmp health
CN109672562A (en) Data processing method, device, electronic equipment and storage medium
US9210046B2 (en) Zone-based network traffic analysis
US20230344755A1 (en) Determining flow paths of packets through nodes of a network
US11438237B1 (en) Systems and methods for determining physical links between network devices
Kriska et al. Dynamic routing of IP traffic based on QoS parameters
Bandhakavi et al. Analyzing end-to-end network reachability
US11570193B2 (en) Malware propagation risk assessment in software defined networks
Caria et al. On the IP Traffic Matrix Problem in Hybrid SDN/OSPF Networks
WO2010005082A1 (en) Vlan communication range specifying system, vlan communication range specifying method, computer-readable recording medium on which vlan communication range specifying program has been stored

Legal Events

Date Code Title Description
AS Assignment

Owner name: MORGAN STANLEY SENIOR FUNDING, INC., AS COLLATERAL AGENT, NEW YORK

Free format text: SECURITY INTEREST;ASSIGNOR:RIVERBED TECHNOLOGY, INC.;REEL/FRAME:035561/0363

Effective date: 20150424

Owner name: MORGAN STANLEY SENIOR FUNDING, INC., AS COLLATERAL

Free format text: SECURITY INTEREST;ASSIGNOR:RIVERBED TECHNOLOGY, INC.;REEL/FRAME:035561/0363

Effective date: 20150424

STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION