Implantação e análise do protocolo IPv6 com foco na mobilidade

Dissertação (mestrado)—Universidade de Brasília, Instituto de Ciências Exatas, Departamento de Ciência Da Computação, 2015.A Internet tem crescido exponencialmente desde a sua implantação comercial em meados de 1980. A pilha de protocolo TCP / IP foi projetada para permitir a comunicação entre os hosts através de redes. Na sua versão 4, o protocolo IP foi capaz de suportar o crescimento da Internet até ao presente momento, mas o seu endereçamento de 32 bits está esgotado, e não há mais endereços disponíveis para uma redistribuição. Além deste fato, há o conceito de utilização de dispositivos com suporte a mobilidade, uma realidade que requer soluções robustas e acessíveis. Esse assunto é o cerne do desenvolvimento deste trabalho. O problema abordado nesta pesquisa é como implementar o protocolo IPv6 em uma rede corporativa, seguindo as normas, sem interferir com a sua capacidade operacional e fazer uso deste recurso de mobilidade, dando condições para alcançar uma otimização na transmissão de dados entre as Organizações Militares (OM ), distribuídas por todo o país, realizando uma análise a respeito tanto a migração do IPv4 para o IPv6 nas infra-estruturas de rede do Exército Brasileiro, com foco em mobilidade no âmbito deste novo protocolo. Este trabalho pretende alertar os envolvidos nos setores brasileiros de tecnologia do Exército sobre o atraso atual em relação ao resto do mundo na adoção deste protocolo, estreitar o ponto sob conceitos de mobilidade para comunicação, seus laços dando uma atenção especial que com este aplicação, todo o pessoal poderia ser capaz de se conectar em diferentes organizações militares, usando suas credenciais de sua organização, permitindo que um único registro pode ser usado em diferentes pontos sem perda ou restrição de qualquer acesso aos serviços. Através do estudo e análise das normas e requisitos de transição do IPv4 para o IPv6, bem como o uso de IPv6 móvel, este estudo se concentra na identificação configurações físicas e lógicas que podem apoiar ou impedir a sua correta aplicação por meio de um ambiente simulado em uma organização específica exército brasileiro descrito como uma prova de conceito. Este ambiente teve uma análise topológica e verificação das métricas de QoS das aplicações instaladas sobre o meio ambiente e com isso foi possível avaliar a sua viabilidade e impacto sobre os ambientes envolvidos.The Internet has grown exponentially since its commercial deployment in the middle of 1980's. The stack of TCP / IP protocol was designed to enable communication between hosts over networks. In its version 4, the IP protocol was able to support the growth of the Internet until the present time, but its 32-bit addressability is exhausted, and there is no more addresses available to be redistributed. In addition to this fact there is the concept of using devices with mobility support, a reality that requires robust and affordable solutions. That subject is the core of the development of this work. The problem addressed in this research is how to deploy IPv6 protocol in a corporate network by following the standards, without interfering with its operational capacity and make use of this mobility feature, giving conditions to achieve an optimization in data transmission between the Military Organizations (OM), distributed all over the country, performing an analysis regarding both the migration from IPv4 to IPv6 in the Brazilian Army network infrastructures, focusing on under this new protocol mobility. This work intend to alert those involved in Brazilian Army technology sectors about the current delay in relation to the rest of the world in the adoption of this protocol, narrow the point under concepts of mobility to communication, their ties giving an special attention that with this implementation, all personnel could be able to connect in different military organizations, using their credentials from their organization, allowing a single register can be used in different points without loss or restriction of any access to services. Through the study and analysis of standards and requirements of transition from IPv4 to IPv6, as well as the use of mobile IPv6, this study is focused on identifying physical and logical configurations that may support or prevent the its correct implementation by using an simulated environment in an specific Brazilian Army organization described as a Proof of Concept. This environment had a topological analysis and verification of QoS metrics of applications installed on the environment and with this was possible to assess their feasibility and impact on the involved environments

Monitorização da qualidade de serviço da rede portuguesa de investigação e ensino (RCTS)

Dissertaçao de mestrado integrado em Engenharia de ComunicaçõesNo âmbito do trabalho desta dissertação, intitulada “Monitorização da Qualidade de Serviço da Rede Portuguesa de Investigação e Ensino (RCTS)”, é proposta a especificação de uma nova sonda para a Rede Ciência Tecnologia e Sociedade, baseada em soluções open source. Esta sonda faz parte de uma rede de sondas, cujo objetivo é a medição da qualidade de serviço da Rede Ciência Tecnologia e Sociedade. Um sistema de gestão centralizado auxilia na manutenção da rede de sondas. Inicialmente é feita uma análise dos métodos e das ferramentas envolvidas na medição de parâmetros de qualidade de serviço. De seguida, avalia-se a possibilidade de canibalizar o hardware atualmente em uso para instalar uma nova solução de medição de parâmetros de qualidade de serviço. Após a apresentação de vários métodos de sincronização temporal, é tornado claro o propósito destes no contexto do trabalho desenvolvido nesta dissertação. Finalmente, é apresentada a arquitetura da solução final, assente no Performance focused Service Oriented Network monitoring ARchitecture e num sistema de gestão centralizado das sondas, baseado no Spacewalk. São também apresentados resultados de testes conduzidos para aferir a legitimidade do Performance focused Service Oriented Network monitoring ARchitecture, como ferramenta válida para a medição dos parâmetros de qualidade de serviço da Rede Ciência Tecnologia e Sociedade, bem como um plano de migração para a nova solução.Within the scope of this thesis, titled “Quality of Service monitoring of the Portuguese National Research and Education Network (RCTS)”, the specification of a new probe for the “Rede Ciência Tecnologia e Sociedade” network, based on open source solutions, is proposed. This probe is part of a network of probes, whose purpose is to measure the quality of service of the “Rede Ciência Tecnologia e Sociedade” network. A centralized management system assists in maintaining the network of probes. Initially, the methods and tools involved in the measurement of quality of service parameters are analyzed. Next, the possibility of salvaging the hardware currently in use to install a new solution for measuring the quality of service parameters is evaluated. After presenting several methods for time synchronization, the purpose of these in the context of the work undertaken in this thesis is explicited. Finally, the architecture of the final solution, based on Performance focused Service Oriented Network monitoring ARchitecture and on a centralized management system, based on Spacewalk, is presented. Results of tests conducted to assess the legitimacy of Performance focused Service Oriented Network monitoring ARchitecture as a valid tool for measuring the quality of service parameters of the “Rede Ciência Tecnologia e Sociedade” network, as well as a migration plan for the new solution, are also presented

An outright open source approach for simple and pragmatic internet eXchange

L'Internet, le réseaux des réseaux, est indispensable à notre vie moderne et mondialisée et en tant que ressource publique il repose sur l'inter opérabilité et la confiance. Les logiciels libres et open source jouent un rôle majeur pour son développement. Les points d'échange Internet (IXP) où tous les opérateurs de type et de taille différents peuvent s'échanger du trafic sont essentiels en tant que lieux d'échange neutres et indépendants. Le service fondamental offert par un IXP est une fabrique de commutation de niveau 2 partagée. Aujourd'hui les IXP sont obligés d'utiliser des technologies propriétaires pour leur fabrique de commutations. Bien qu'une fabrique de commutations de niveau 2 se doit d'être une fonctionnalité de base, les solutions actuelles ne répondent pas correctement aux exigences des IXPs. Cette situation est principalement dûe au fait que les plans de contrôle et de données sont intriqués sans possibilités de programmer finement le plan de commutation. Avant toute mise en œuvre, il est primordial de tester chaque équipement afin de vérifier qu'il répond aux attentes mais les solutions de tests permettant de valider les équipements réseaux sont toutes non open source, commerciales et ne répondent pas aux besoins techniques d'indépendance et de neutralité. Le "Software Defined Networking" (SDN), nouveau paradigme découplant les plans de contrôle et de données utilise le protocole OpenFlow qui permet de programmer le plan de commutation Ethernet haute performance. Contrairement à tous les projets de recherches qui centralisent la totalité du plan de contrôle au dessus d'OpenFlow, altérant la stabilité des échanges, nous proposons d'utiliser OpenFlow pour gérer le plan de contrôle spécifique à la fabrique de commutation. L'objectif principal de cette thèse est de proposer "Umbrella", fabrique de commutation simple et pragmatique répondant à toutes les exigences des IXPs et en premier lieu à la garantie d'indépendance et de neutralité des échanges. Dans la première partie, nous présentons l'architecture "Umbrella" en détail avec l'ensemble des tests et validations démontrant la claire séparation du plan de contrôle et du plan de données pour augmenter la robustesse, la flexibilité et la fiabilité des IXPs. Pour une exigence d'autonomie des tests nécessaires pour les IXPs permettant l'examen de la mise en œuvre d'Umbrella et sa validation, nous avons développé l'"Open Source Network Tester" (OSNT), un système entièrement open source "hardware" de génération et de capture de trafic. OSNT est le socle pour l"OpenFLow Operations Per Second Turbo" (OFLOPS Turbo), la plate-forme d'évaluation de commutation OpenFlow. Le dernier chapitre présente le déploiement de l'architecture "Umbrella" en production sur un point d'échange régional. Les outils de test que nous avons développés ont été utilisés pour vérifier les équipements déployés en production. Ce point d'échange, stable depuis maintenant un an, est entièrement géré et contrôlé par une seule application Web remplaçant tous les systèmes complexes et propriétaires de gestion utilisés précédemment.In almost everything we do, we use the Internet. The Internet is indispensable for our today's lifestyle and to our globalized financial economy. The global Internet traffic is growing exponentially. IXPs are the heart of Internet. They are highly valuable for the Internet as neutral exchange places where all type and size of autonomous systems can "peer" together. The IXPs traffic explode. The 2013 global Internet traffic is equivalent with the largest european IXP today. The fundamental service offer by IXP is a shared layer2 switching fabric. Although it seems a basic functionality, today solutions never address their basic requirements properly. Today networks solutions are inflexible as proprietary closed implementation of a distributed control plane tight together with the data plane. Actual network functions are unmanageable and have no flexibility. We can understand how IXPs operators are desperate reading the EURO-IX "whishlist" of the requirements who need to be implemented in core Ethernet switching equipments. The network vendor solutions for IXPs based on MPLS are imperfect readjustment. SDN is an emerging paradigm decoupling the control and data planes, on opening high performance forwarding plane with OpenFlow. The aims of this thesis is to propose an IXP pragmatic Openflow switching fabric, addressing the critical requirements and bringing more flexibility. Transparency is better for neutrality. IXPs needs a straightforward more transparent layer2 fabric where IXP participants can exchange independently their traffic. Few SDN solutions have been presented already but all of them are proposing fuzzy layer2 and 3 separation. For a better stability not all control planes functions can be decoupled from the data plane. As other goal statement, networking testing tools are essential for qualifying networking equipment. Most of them are software based and enable to perform at high speed with accuracy. Moreover network hardware monitoring and testing being critical for computer networks, current solutions are both extremely expensive and inflexible. The experience in deploying Openflow in production networks has highlight so far significant limitations in the support of the protocol by hardware switches. We presents Umbrella, a new SDN-enabled IXP fabric architecture, that aims at strengthening the separation of control and data plane to increase both robustness, flexibility and reliability of the exchange. Umbrella abolish broadcasting with a pseudo wire and segment routing approach. We demonstrated for an IXP fabric not all the control plane can be decoupled from the date plane. We demonstrate Umbrella can scale and recycle legacy non OpenFlow core switch to reduce migration cost. Into the testing tools lacuna we launch the Open Source Network Tester (OSNT), a fully open-source traffic generator and capture system. Additionally, our approach has demonstrated lower-cost than comparable commercial systems while achieving comparable levels of precision and accuracy; all within an open-source framework extensible with new features to support new applications, while permitting validation and review of the implementation. And we presents the integration of OpenFLow Operations Per Second (OFLOPS), an OpenFlow switch evaluation platform, with the OSNT platform, a hardware-accelerated traffic generation and capturing platform. What is better justification than a real deployment ? We demonstrated the real flexibility and benefit of the Umbrella architecture persuading ten Internet Operators to migrate the entire Toulouse IXP. The hardware testing tools we have developed have been used to qualify the hardware who have been deployed in production. The TouIX is running stable from a year. It is fully managed and monitored through a single web application removing all the legacy complex management systems