Abstract
Customers of Virtual Private Networks (VPNs) over Differentiated Services (DiffServ) infrastructure are most likely to demand not only security but also guaranteed Quality-of-Service (QoS) in pursuance of their desire to have leased-line-like services. However, expectedly they will be unable or unwilling to predict the load between VPN endpoints. This paper proposes that customers specify their requirements as a range of quantitative services in the Service Level Agreements (SLAs). To support such services Internet Service Providers (ISPs) would need an automated provisioning system that can logically partition the capacity at the edges to various classes (or groups) of VPN connections and manage them efficiently to allow resource sharing among the groups in a dynamic and fair manner. While with edge provisioning a certain amount of resources based on SLAs (traffic contract at edge) are allocated to VPN connections, we also need to provision the interior nodes of a transit network to meet the assurances offered at the boundaries of the network. We, therefore, propose a two-layered model to provision such VPN-DiffServ networks where the top layer is responsible for edge provisioning, and drives the lower layer in charge of interior resource provisioning with the help of a Bandwidth Broker (BB). Various algorithms with examples and analyses are presented to provision and allocate resources dynamically at the edges for VPN connections. We have developed a prototype BB performing the required provisioning and connection admission.
This is a preview of subscription content, log in via an institution to check access.
Similar content being viewed by others
REFERENCES
R. Callon, M. Suzuki, B. Gleeson, A. Malis, K. Muthukrishnan, E. Rosen, C. Sargor, and J. J. Yu, A framework for provider provisioned virtual private networks, Internet draft draft-ietfppvpn-framework-01.txt, work in progress, July 2001.
J. D. Clercq, O. Paridaens, M. Iyer, and A. Krywaniuk, A framework for provider provisioned CE-based virtual private networks using IPsec, Internet draft draft-ietf-ppvpnce-based-00.txt, work in progress, July 2001.
K. Muthukrishnan, C. Kathirvelu, A. Malis, T. Walsh, F. Ammann, J. Sumimoto, and J. M. Xiao, Core MPLS IP VPN architecture, Internet draft draft-ietf-ppvpn-rfc2917bis-00.txt, work in progress, July 2001.
S. Blake, D. Black, M. Carlson, E. Davies, Z.Wang, andW.Weis, An architecture for differentiated services, RFC 2475, December 1998.
Y. Bernet, J. Binder, M. Carlson, B. E. Carpenter, S. Keshav, E. Davies, B. Ohlman, D. Verma, Z. Wang, and W. Weiss, A framework for differentiated services, Internet draft draft-ietfdiffserv-framework-02.txt, February 1999.
V. Jacobson, K. Nichols, and K. Poduri, An expedited forwarding, RFC 2598, June 1999.
I. Khalil and T. Braun, Implementation of a bandwidth broker for dynamic end-to-end resource reservation in outsourced virtual private networks, The 25th Annual IEEE Conference on Local Computer Networks (LCN), November 9–10, 2000.
T. Braun, M. Günter, and I. Khalil, Management of quality-of-service enabled VPNs. IEEE Communications Magazine, Vol. 39, No. 5, pp. 90–98, May 2001.
I. Khalil, T. Braun, and M. Günter, Implementation of a service broker for management of QoS enabled VPNs, IEEE Workshop on IP-Oriented Operations and Management (IPOM'2000), September 2000.
QBONE, The Internet2 QBone bandwidth broker, 2000. http://www.internet2.edu/qos/qbone/ QBBAC.shtml.
B. Teitelbaum, S. Hares, L. Dunn, R. Neilson, R. Narayan, and F. Reichmeyer, Internet2 QBone: Building a testbed for differentiated services, IEEE Network, Vol. 13, No. 5, pp. 8–16, 1999.
K. Nichols, Van Jacobson, and L. Zhang, A two-bit differentiated services architecture for the Internet, RFC 2638, July 1999.
N. G. Duffield, P. Goyal, A. Greenberg, P. Mishra, K. K. Ramakrishnan, and J. E. van der Merwe, A flexible model for resource management in virtual private networks. SIGCOMM'99 Conference, August 1999.
Gerald R. Ash, Routing guidelines for efficient routing methods, Internet draft draft-ashitu-sg2-routing-guidelines-00.txt, October 1999.
E. Crawley, R. Nair, B. Rajagopalan, and H. Sandick, A framework for QoS-based routing in the Internet, RFC 2386, August 1998.
S. Chen and K. Nahrstedt, An overview of quality-of-service routing for next-generation highspeed networks: Problems and solutions, IEEE Network Magazine, Vol. 12, No. 6, pp. 64–79, 1998.
F. L. Faucheur, L.Wu, B. Davie, S. Davari, P. Vaananen, R. Krishnan, P. Cheval, and J. Heinanen, MPLS support of differentiated services, Internet draft draft-ietf-mpls-diff-ext-09.txt, work in progress, April 2001.
Moshe Zukermann and Sammy Chan, Fairness in ATM networks, Computer Networks and ISDN Systems, Vol. 26, pp. 109–117, 1993.
J. M. Jaffe, Bottleneck flow control, IEEE Transactions on Communications, Vol. 29, No. 7, pp. 954–962, 1981.
F. Wong and J. R. B. deMarca, Fairness in window flow controlled computer networks, IEEE Transactions on Communications, Vol. 37, No. 5, pp. 954–962, 1989.
J. W. Wong, J. P. Sauve, and J. A. Field, A study of fairness in packet switching networks, IEEE Transactions on Communications, Vol. 30, No. 2, pp. 346–353, 1982.
Cisco web site, last modified October 2001. http://www.cisco.com.
I. Khalil and T. Braun, A range-based sla and edge driven virtual core provisioning in diffservvpns, The 26th Annual IEEE Conference on Local Computer Networks (LCN), November 15–16, 2001.
CATI, Charging and accounting technologies for the Internet. http://www.tik.ee.ethz.ch/~cati/.
Author information
Authors and Affiliations
Corresponding author
Rights and permissions
About this article
Cite this article
Khalil, I., Braun, T. Edge Provisioning and Fairness in VPN-DiffServ Networks. Journal of Network and Systems Management 10, 11–37 (2002). https://doi.org/10.1023/A:1014449424633
Issue Date:
DOI: https://doi.org/10.1023/A:1014449424633