Abstract
Internet is becoming a global IT infrastructure serving interactive and real-time services ubiquitously accessible by heterogeneous network-enabled devices. In the Internet of Services (IoS) era, monitoring infrastructures must provide to network operators fine-grained service-specific information which can be derived by dissecting application level protocols. To accommodate these new monitoring requirements network probes must be flexible, easy to extend and still be capable of analyzing high-speed network streams. Despite the increased complexity, software and hardware technologies on top of which network probes are implemented have been designed when monitoring requirements were substantially different and almost left unchanged. As a result, implementing modern probes is challenging and time consuming. In this paper we identify desirable features for reducing the work required to develop complex probes, and we present a home-grown comprehensive software framework that significantly simplifies the creation of service-oriented monitoring applications.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Agarwal, A.: The tile processor: a 64-core multicore for embedded processing. In: Proceedings of HPEC Workshop (2007)
Baldi, M., Risso, F.: Using xml for efficient and modular packet processing. In: Proceedings of Globecomm, New York, (2005)
Bos, H., de Bruijn, W., Cristea, M., Nguyen, T., Portokalidis, G.: Ffpf: fairly fast packet filters. In: OSDI’04: Proceedings of the 6th Conference on Symposium on Operating Systems Design & Implementation, pp. 24–24. USENIX Association, Berkeley (2004)
Brownlee, N., Mills, C., Ruth, G.: Traffic flow measurement: architecture. RFC 2722 (1999)
Claise, B.: Specification of the IP flow information export (IPFIX) protocol for the exchange of ip traffic flow information. RFC 5101 (2008)
Deri, L.: Improving passive packet capture: beyond device polling. In: SANE 2004: Proceedings of the 2004 System Administration and Networking Conference. USENIX Association (2004)
Deri, L., Fusco, F.: Exploiting commodity multi-core systems for network traffic analysis. Technical Report (2010)
Deri, L., Gasparakis, J., Waskiewicz, P.J., Fusco, F.: Wire-speed hardware-assisted traffic filtering with mainstream network adapters. In: NEMA ’10: Proceedings of the First International Workshop on Network Embedded Management and Applications, page to appear. Niagara Falls, Canada (2010)
Dharmapurikar, S., Paxson, V.: Robust TCP stream reassembly in the presence of adversaries. In: SSYM’05: Proceedings of the 14th Conference on USENIX Security Symposium, p. 5. USENIX Association, Berkeley (2005)
Donnelly, S.: Dag packet capture performance. http://www.endace.com (2006)
Fuji, K.: Jpcap. Homepage http://netresearch.ics.uci.edu/kfujii/jpcap/doc/
Fusco, F., Huici, F., Deri, L., Niccolini, S., Ewald, T.: Enabling high-speed and extensible real-time communications monitoring. In: IM’09: Proceedings of the 11th IFIP/IEEE International Symposium on Integrated Network Management, pp. 343–350. IEEE Press, Piscataway (2009)
Fusco, F., Stoecklin, M., Vlachos, M.: Net-fli: on-the-fly compression, archiving and indexing of streaming network traffic. In: Proceedings of the 36th International Conference on Very Large Data Bases (VLDB), page to appear (2010)
Intel: 80579 Integrated Processor. http://www.intel.com/design/intarch/ep80579 (2010)
Intel: 82599 10 gbe controller datasheet. Rev. 2.3 (2010)
Jacobson, V., Leres C., McCanne, S.: Libpcap. Homepage http://www.tcpdump.org
McCanne, S., Jacobson, V.: The BSD packet filter: a new architecture for user-level packet capture. In: USENIX’93: Proceedings of the USENIX Winter 1993 Conference, p. 2. USENIX Association, Berkeley (1993)
Orebaugh, A., Ramirez, G., Burke, J., Pesce, L.: Wireshark & Ethereal Network Protocol Analyzer Toolkit (Jay Beale’s Open Source Security). Syngress Publishing, Rockland (2006)
Protocol Plugin Library: http://www.qosmos.com/products/protocol-plugin-library
Ptacek, T., Newsham, T., Simpson, H.J.: Insertion, evasion, and denial of service: eluding network intrusion detection. Technical Report, Secure Networks (1998)
Wu, Z., Xie, M., Wang, H.: Swift: a fast dynamic packet filter. In: NSDI’08: Proceedings of the 5th USENIX Symposium on Networked Systems Design and Implementation, pp. 279–292. USENIX Association, Berkeley (2008)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer-Verlag Italia Srl
About this chapter
Cite this chapter
Deri, L., Fusco, F., Gasparakis, J. (2011). Towards Monitoring Programmability in Future Internet: Challenges and Solutions. In: Salgarelli, L., Bianchi, G., Blefari-Melazzi, N. (eds) Trustworthy Internet. Springer, Milano. https://doi.org/10.1007/978-88-470-1818-1_19
Download citation
DOI: https://doi.org/10.1007/978-88-470-1818-1_19
Published:
Publisher Name: Springer, Milano
Print ISBN: 978-88-470-1817-4
Online ISBN: 978-88-470-1818-1
eBook Packages: EngineeringEngineering (R0)