首页> 外文会议>2011 20th International Conference on Computer Communications and Networks >Restoring End-to-End Resilience in the Presence of Middleboxes
【24h】

Restoring End-to-End Resilience in the Presence of Middleboxes

机译:在中间盒的存在下恢复端到端的弹性

获取原文

摘要

The philosophy upon which the Internet was built places the intelligence close to the edge. As the Internet has matured, intermediate devices or middleboxes, such as firewalls or application gateways, have been introduced, thereby weakening the end-to-end nature of the network. As a result, applications must often modify their behavior to accommodate the middleboxes. This is is especially true in the case of transient failure of stateful devices. The failure of a middlebox causes it to lose the state it maintained, causing the failure of the associated TCP connections. Rather than assign the responsibility for recovery to applications, we incorporate a mechanism called an isolation boundary into TCP itself. The isolation boundary maintains a small amount of state across TCP connections, thus enabling reconnection. Furthermore, it does so without breaking backward compatibility with existing TCP. We present an implementation of the isolation boundary in the FreeBSD kernel and demonstrate its backward compatibility with TCP. We quantify the performance impact of the proposed mechanism on the establishment of new and resumed connections for both legacy and extended TCP stacks.
机译:建立互联网的基本原理将智能置于边缘。随着Internet的成熟,已经引入了中间设备或中间盒,例如防火墙或应用程序网关,从而削弱了网络的端到端性质。结果,应用程序必须经常修改其行为以适应中间盒。在有状态设备的瞬态故障的情况下尤其如此。中间盒的故障会导致它丢失其维护的状态,从而导致关联的TCP连接失败。我们没有将恢复责任分配给应用程序,而是将一种称为隔离边界的机制集成到TCP本身中。隔离边界在TCP连接之间保持少量状态,因此可以重新连接。此外,它这样做不会破坏与现有TCP的向后兼容性。我们介绍了FreeBSD内核中隔离边界的实现,并演示了其与TCP的向后兼容性。我们量化建议的机制对旧的和扩展的TCP堆栈的新连接和恢复连接的性能影响。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有
  • 客服微信

  • 服务号