Garden Associations and School Communities of Cagayan de Oro City . ...... Janice Caseria Assistant Agronomist, PUVeP, Xavier University, Cagayan de Oro ...... Alfonso Guzman II (ed): Four Readings on Philippine Values, Manila: Ateneo de.
the attack when no response is enacted against the impact ..... mobile phones. ..... Threat analysis and defense strategies for SMB, mid-size and enterprise.
... Computer Science. University of Manchester, Oxford Road, Manchester, UK, M13 9PL ... ture, every single operation of data processing is accom- panied by at ...
15 Mar 2013 ... RMA Solder Paste: Lead Free Solder Paste: AIM-WS483-{standard}. AIM-212.
AIM-WS353-SAC305 {STD}. AIM-WS353. AIM-NC254 {no clean}.
May 6, 2014 - Acknowledgements. YKT was funded by a Qualcomm Scholarship from Qualcomm Inc. The research was supported by the National Institute for ...
Examination/Evaluation/Prognosis/PT Diagnosis. ⢠Medical and surgical management of orthopedic, neurological, critical
Nov 27, 2014 - A graphical user interface is also included for ma- ...... installed on a local drive and recognized by R. The package of rattle faces similar ...
SAMPLE RESUME. 10 Browns Rd. ... Responsible for full patient care with
preceptor supervision ... campaigns targeted to children and families. • Further ...
It was created for the Debian project in order to help improve the support
available ... in the Debian GNU/Linux distribution or on the World Wide Web at
the GNU ...
Loading⦠Page 1. Whoops! There was a problem loading more pages. APT-EmployeeResume.pdf. APT-EmployeeResume.pdf. Open.
Feb 3, 2012 - particular focus is aimed at those in the first wave of CYP-IAPT, who are using the ... They see the use of feedback and outcomes tools as an important aspect of ... between therapist/practitioners and the children and families they wor
Download Best Books Customer Service: A Practical Approach (6th Edition) , PDF Download Customer Service: A ... trends i
... practical applications book download Hassan Noura Springerlink Download Fault ... Online PDF Customer Service: A Pra
Online PDF Customer Service: A Practical Approach (6th Edition), Read PDF .... needed to improve and sustain customer sa
Practical Approach (6th Edition) Online, Pdf Books Customer Service: A Practical Approach (6th Edition), Read Customer S
... s intuitive efficient and useful 15 GB of storage less spam and mobile access 1 I ... Online PDF Customer Service: A
PDF Download Customer Service Full Online, epub free Customer Service by Elaine K. Harris, ebook free Customer Service,
Customer Service A Practical Approach 6th Edition PDF Free Download Reviews Read Online ISBN 013274239X By Elaine K Harr
... Approach (6th Edition) Full Online, Free Download Customer Service: A Practical Approach (6th Edition) Best Book, Do
... mini cx BibMe Free Bibliography amp Citation Maker MLA APA Chicago Harvard Computer ... documents in PDF Microsoft W
attack times, is able to process the victims traffic separately without disturbing other ... Before we can propose any solution to thwart DDoS attacks, it is first useful ...
Growing Your B2B Service and Solution Business PDF Download ... services provided by professional academic writers Growi
Download Best Book Customer Service: A Practical Approach (6th Edition), PDF Download Customer Service: A Practical Appr
... Harris Ebook,Books Online Customer Service: A Practical Approach (6th Edition) By Elaine K. Harris ePub free, PDF Do
Delivery space packets are UDP tunneled through ... responds with a Cache Add Message containing a MapRec .... Time Before Retry (TBR) for each MapRec.
APT: A Practical Transit-Mapping Service
Dan Jen, Michael Meisel, Dan Massey, Lan Wang, Beichuan Zhang, and Lixia Zhang
Motivation
The current BGP routing system doesn’t scale −
2
Router hardware may not be able to keep up
The conflict between ISPs and their customers −
ISPs want aggregatable addresses
−
Their customers want
Multihoming
Better traffic engineering
Provider-independent (PI) addresses
A General Solution
3
Divide the Internet into two address spaces −
Delivery space
−
Transit space
Delivery space packets are UDP tunneled through transit space Transit addresses (Taddrs) appear in the global routing table, delivery addresses (Daddrs) do not LISP also falls into this category −
LISP EIDs APT Daddrs
−
LISP RLOCs APT Taddrs
Tunneling Example 1.1.1.4
X
X
Packet
1.1.1.4
a.b.c.d
X
X X
X Delivery Space Transit Space
4
Packet Arrives at ISP
X
X
X
X
1.1.1.4
X
X Delivery Space Transit Space
5
Packet Encapsulated in Transit Space Header X
X
X
X
a.b.c.d 1.1.1.4
X
X Delivery Space Transit Space
6
Packet Delivered across Transit Space X
X
X
X X
X
a.b.c.d 1.1.1.4
Delivery Space Transit Space 7
Packet Decapsulated
X
X
X
X X
X
1.1.1.4
Delivery Space Transit Space 8
Packet Delivered
X
X
X
1.1.1.4
X X
X Delivery Space Transit Space
9
Connecting the Two Address Spaces
10
The source transit address (Taddr) is the encapsulating router
But what is the destination Taddr?
We have to ask APT -- the mapping service.
New Device Types Required for APT
11
Default mappers −
An additional device in each transit network (TNs)
−
Q: Would it be practical to build them on a router platform?
Tunnel routers (“TRs”) −
Replace provider-edge (PE) routers
−
Q: Can currently deployed PE routers become TRs with only a software update?
Default Mappers
Store all Daddr-prefix-to-Taddr mappings (MapSets) −
Each Daddr prefix maps to a non-empty set of Taddrs
−
As many Taddrs per MapSet as providers per delivery network (DN)
−
Each Taddr has a priority for multihoming support
At least one default mapper per transit network (TN) −
12
Any default mapper can be reached using the same anycast address for reliability
Tunnel Routers (TRs)
Encapsulate outgoing packets (ITR mode)
Decapsulate incoming packets (ETR mode)
13
Cache only Daddr-to-single-Taddr mappings (MapRecs) Cache only MapRecs that are currently in use −
Delete after the MapRec’s time to live (TTL) expires
−
No MapRec? Tunnel the packet to a default mapper.
−
Default mapper re-tunnels the packet to an ETR for you and responds with a Cache Add Message containing a MapRec
Terminology Review −
Transit Network (TN)
−
Transit Address (Taddr)
−
14
An address in the address space used by DNs
MapSet
−
A network that is a source or destination of IP packets
Delivery Address (Daddr)
−
An address in the address space used by TNs
Delivery Network (DN)
−
An AS that provides packet transport services, but not endpoints
Maps a Daddr prefix to a non-empty SET of ETR Taddrs, used by default mappers
MapRec
Maps a Daddr prefix to a single ETR Taddr, used by TRs
APT Example DN1
Daddr prefix
Taddr
TTL
1.1.1.0/24
a.b.c.d
300
DN2
2.2.0.0/24
a.b.c.e
600
X
X 3.3.3.7
X
X X
TN1
M 15
X
TN2 Delivery Space Transit Space
MapRec Not in Cache DN1
Daddr prefix
Taddr
TTL
1.1.1.0/24
a.b.c.d
300
DN2
2.2.0.0/24
a.b.c.e
600
X
X X 3.3.3.7
X
TN1
M 16
X
MapRec Cache Miss!
X
TN2 Delivery Space Transit Space
Use the Default Mapper DN1
DN2
X
X
X
X X
TN1
3.3.3.7 17
M
X
TN2 Delivery Space Transit Space
Daddr Prefix is Multihomed DN1
Daddr prefix
Taddr
Priority
X
...
...
...
3.3.3.0/24
a.b.c.f p.q.r.s
10 20
...
...
...
DN2
X
X
X X
TN1
3.3.3.7 18
M
X
TN2 Delivery Space Transit Space
Default Mapper Selects a MapRec DN1
Daddr prefix
Taddr
Priority
X
...
...
...
3.3.3.0/24
a.b.c.f p.q.r.s
10 20
...
...
...
DN2
X
X
X X
TN1
a.b.c.f 19
3.3.3.7
M
X
TN2 Delivery Space Transit Space
Default Mapper Responds with MapRec and Delivers Packet DN1
DN2
X
X
X
X
Cache Add Message
X
TN1
M 20
X
a.b.c.f
3.3.3.7
TN2 Delivery Space Transit Space
MapRec Added to Cache DN1
Daddr prefix
Taddr
TTL
1.1.1.0/24
a.b.c.d
300
DN2
2.2.0.0/24
a.b.c.e
600
3.3.3.0/24
a.b.d.f
600
X
X X
X X
TN1
M 21
X
a.b.c.f
3.3.3.7
TN2 Delivery Space Transit Space
Packet Decapsulated and Delivered DN1
Daddr prefix
Taddr
TTL
1.1.1.0/24
a.b.c.d
300
DN2
2.2.0.0/24
a.b.c.e
600
3.3.3.0/24
a.b.d.f
600
X
X X
X X
TN1
M 22
3.3.3.7
X
TN2 Delivery Space Transit Space
Next Packet DN1
Daddr prefix
Taddr
TTL
1.1.1.0/24
a.b.c.d
300
DN2
2.2.0.0/24
a.b.c.e
600
3.3.3.0/24
a.b.d.f
600
X
X 3.3.3.7
X
X X
TN1
M 23
X
TN2 Delivery Space Transit Space
MapRec Already in Cache DN1
Daddr prefix
Taddr
TTL
1.1.1.0/24
a.b.c.d
300
DN2
2.2.0.0/24
a.b.c.e
600
3.3.3.0/24
a.b.d.f
600
X
X X
X
3.3.3.7
X
TN1
M 24
X
TN2 Delivery Space Transit Space
Packet Encapsulated DN1
Daddr prefix
Taddr
TTL
1.1.1.0/24
a.b.c.d
300
DN2
2.2.0.0/24
a.b.c.e
600
3.3.3.0/24
a.b.d.f
600
X
X X a.b.c.f
X
3.3.3.7
X
TN1
M 25
X
TN2 Delivery Space Transit Space
Packet Delivered DN1
DN2
X
X
X
X X
TN1
M 26
X
a.b.c.f
3.3.3.7
TN2 Delivery Space Transit Space
Header Layout 0
31
Transit Space IP Header
Source Port
Dest Port = 4340
UDP Length
UDP Checksum
Version
Type
(Future use)
Source Default Mapper Taddr
Delivery Space IP Header or Control Message 27
UDP Header APT Header
Major Issues for Any Mapping Service
28
Disseminating mapping information
Securing mapping dissemination
Handling ETR failures
Incremental deployment −
We aren’t going to talk about this today
−
Ask us if you want to hear our ideas
Disseminating MapSets Between TNs
29
Default mappers need to learn other TNs’ mapping information Mapping information is exchanged via DM-BGP −
A separate instance of BGP running on a different TCP port
−
Only default mappers peer
−
Mapping information is carried in a new attribute
−
DM-BGP is only used to disseminate mapping information, not to store it
−
DM-BGP is not used for routing
Security for Mapping Announcements
Authentication of mapping information is critical −
30
Network-wide traffic hijacking
DDoS attacks
Default mappers have public/private key pairs −
False MapSets could cause major problems
Default mappers in the same TN use the same key pair
Mapping announcements must be cryptographically signed by the originator −
The signature must be verified at each DM-BGP hop, but not changed
−
Prevents spoofing, corruption, and modification of mapping information
Default Mapper Requirements for Mapping Announcement Security
31
Store a public key table −
One entry per transit network (TN)
−
We didn’t mention our public-key distribution method
We are working on a separate paper describing this method
Ask us if you want to know the details
Lookup the key and verify all incoming announcements Sign all originated announcements
Mapping Announcement Attribute 0
31 AttrFlags
Type = 9
Daddr Type
Length
Sequence Number
Signature Type
Signature Length (in bytes, >= 16)
Signature
MapSets (variable) 32
DM-BGP Path Attribute Header
Handling ETR Failures
Failures break down into three situations 1. The Taddr prefix containing the ETR address is unreachable 2. The ETR itself is unreachable 3. The link between the ETR and its DN is down
33
In all three situations, APT can avoid dropping any packets Situations 2 and 3 require control messages, which can be secured Ask if you want to know the details
Feedback?
34
Q: Would it be practical to build default mappers on a router platform? Q: Can currently deployed PE routers become TRs with only a software update? To review...
Default Mapper Review
Encapsulate and decapsulate IP-in-UDP packets
Store and retrieve all MapSets in a table −
Send Cache Add and Cache Drop Messages to TRs
Run DM-BGP
Store a public key table, one entry per TN
Create/verify mapping announcement signatures
35
Lookup Daddr prefixes in the table and pick an ETR
Q: Would it be practical to build default mappers on a router platform?
TR Review
Encapsulate outgoing packets (ITR mode)
Decapsulate incoming packets (ETR mode)
36
Cache only Daddr-to-single-Taddr mappings (MapRecs) Cache only MapRecs that are currently in use −
Delete after the MapRec’s time to live (TTL) expires
−
No MapRec? Tunnel the packet to your default mapper.
−
Default mapper re-tunnels the packet to an ETR for you and responds with a Cache Add Message containing a MapRec
Q: Can currently deployed PE routers become TRs with only a software update?
Thank You!
37
Questions?
Comments?
Handling Failures •
Three situations require failover to alternate ETRs 1. A Taddr prefix is unroutable via BGP 2. The ETR itself becomes unreachable 3. The link between an ETR and delivery space fails
38
Additions to default mappers −
List of TRs using the default mapper
−
Time Before Retry (TBR) for each MapRec
Example DN1
DN2
X
TN3
X X
ITR1
X
ETR2
X
X
ETR1
2.2.1.7 TN1
TN2 M1
M2
Delivery Space Transit Space
Situation 1 Example DN1
DN2
X
TN3
X X
ITR1
X
ETR2
X
AS Unroutable!
X
ETR1
2.2.1.7 TN1
TN2 M1
M2
Delivery Space Transit Space
Situation 1: Taddr Prefix Unroutable
41
ITRs use their default mapper as their default route Regardless of whether ETR1’s Taddr is in ITR1’s cache −
ITR1 forwards these packets to its default mapper (M1)
−
M1 uses DN2’s MapSet to find ETR2’s Taddr
−
M1 sends the packet to ETR2
−
M1 sends a MapRec containing ETR2’s Taddr and a short TTL to ITR1
Situation 2 Example DN1
DN2
X
TN3
X X
ITR1
X
ETR2
X
X
ETR1
Router Down!
2.2.1.7 TN1
TN2 M1
M2
Delivery Space Transit Space
Situation 2: Single ETR Failure
43
ETR1’s default mapper (M2) −
Uses TN2’s IGP to intercept packets destined for ETR1
−
Finds ETR1’s Taddr in its TR list
−
Sets the time before retry (TBR) for ETR1 in DN1’s MapSet
−
Sends the packet to an alternate ETR (ETR2)
−
Sends an ETR Unreachable Message to ITR1’s default mapper (M1)
ITR1’s default mapper (M1) −
Sets the same TBR
−
Sends a Cache Drop Message to its TRs
Situation 3 Example DN1
DN2
X
TN3
X X
ITR1
X
ETR2
X
X
Link Down!
ETR1
2.2.1.7 TN1
TN2 M1
M2
Delivery Space Transit Space
Situation 3: TR-to-DN Link Failure
ETR1 −
Detects that the link has failed
−
Forwards the packet to M2 with type set to TR-to-DN Link Failure
ETR1’s default mapper (M2) −
45
Almost the same procedure as in Situation 2
Sets the TBR for ETR1 in DN1’s MapSet
Sets the time before retry (TBR) for ETR1 in DN1’s MapSet
Sends the packet to an alternate ETR (ETR2)
Sends a DN Unreachable Message to ITR1’s default mapper (M1)
![[PDF] Download Customer Service: A Practical Approach - Google Sites](https://m.moam.info/img/260x300/pdf-download-customer-service-a-practical-approach_64775d81097c4744708ba13a.jpg)
![[PDF] Download Customer Service: A Practical ... - Google Sites](https://m.moam.info/img/260x300/pdf-download-customer-service-a-practical-google-s_64775d9e097c474d228bf5fe.jpg)
![[PDF] Download Customer Service: A Practical ... - Google Sites](https://m.moam.info/img/260x300/pdf-download-customer-service-a-practical-google-s_64770f39097c474c228b8ee6.jpg)
![[PDF] Download Customer Service: A Practical Approach - Google Sites](https://m.moam.info/img/260x300/pdf-download-customer-service-a-practical-approach_647743f1097c4796708b82c3.jpg)
![[Download PDF] Customer Service: A Practical Approach - Google Sites](https://m.moam.info/img/260x300/download-pdf-customer-service-a-practical-approach_64781333097c4786708c6b39.jpg)
![[PDF] Download Customer Service: A Practical Approach - Google Sites](https://m.moam.info/img/260x300/pdf-download-customer-service-a-practical-approach_6477bc8c097c474c228c5bc3.jpg)
![[PDF] Download Customer Service: A Practical ... - Google Sites](https://m.moam.info/img/260x300/pdf-download-customer-service-a-practical-google-s_6478027a097c4786708c5864.jpg)
