^ Top

NANOG Meeting Presentation Abstract

Verifying Wide-Area Routing Configuration
Meeting: NANOG31
Date / Time: 2004-05-24 11:30am - 12:00pm
Room: Grand Ballroom
Presenters: Speakers:

Nick Feamster, MIT

Nick Feamster is a graduate student in the Networks and Mobile Systems group at the MIT\'s Computer Science and Artificial Intelligence Laboratory (formerly LCS) under the supervision of Professor Hari Balakrishnan. He is interested in wide-area networking, network measurement, and security. His current research focuses on verification techniques for BGP and interdomain traffic engineering. He is an NSF Graduate Research Fellow and the recipient of the Best Student Paper awards at the USENIX Security Symposium in 2001 and 2002. Nick received his S.B. and M.Eng. degrees in Electrical Engineering and Computer Science from MIT in 2000 and 2001, respectively.
Abstract: There is a need for a systematic approach to verifying router configurations before they are deployed. In this work, we develop a static analysis framework for configuration checking and use it in the design of rcc, a \"router configuration checker.\" rcc takes as input a set of router configurations and flags anomalies and errors based on a set of well-defined correctness conditions. We have used rcc to check BGP configurations from nine operational networks, testing nearly 700 real-world router configurations in the process. Every network we analyzed had configuration errors, some of which were potentially serious and had previously gone unnoticed. Our analysis framework and results also suggest ways in which BGP and configuration languages should be improved. rcc has also been downloaded by 30 network operators to date.



In this talk, I will:

  • Provide a survey of the BGP-related problems that have been discussed on the NANOG mailing list over the last 10 years

  • Discuss the framework we have developed for static analysis of BGP configurations.

  • Present a summary of the configuration errors we found in the ASes we have surveyed thus far.

  • Ask for more cooperation from the NANOG community. In particular, we would greatly benefit from having more people test out the tool, suggest additional features and checks, and let us know the types of errors that they have turned up in their configurations.

Files: pdfNick Feamster Presentation(PDF)
youtubeVerifying Wide-Area Routing Configuration
Sponsors: None.

Back to NANOG31 agenda.

NANOG31 Abstracts

  • Happy Packets - Initial Results
    Speakers:
    Randy Bush, IIJ; Tim GriffinIntel Research; .
    Zhuoqing MaoUniversity of Michigan; .
    Eric PurpusUniversity of Oregon; .
    Dan StutzbachUniversity of Oregon; .
  • Happy Packets - Initial Results
    Speakers:
    Randy Bush, IIJ; Tim GriffinIntel Research; .
    Zhuoqing MaoUniversity of Michigan; .
    Eric PurpusUniversity of Oregon; .
    Dan StutzbachUniversity of Oregon; .
  • Happy Packets - Initial Results
    Speakers:
    Randy Bush, IIJ; Tim GriffinIntel Research; .
    Zhuoqing MaoUniversity of Michigan; .
    Eric PurpusUniversity of Oregon; .
    Dan StutzbachUniversity of Oregon; .
  • Happy Packets - Initial Results
    Speakers:
    Randy Bush, IIJ; Tim GriffinIntel Research; .
    Zhuoqing MaoUniversity of Michigan; .
    Eric PurpusUniversity of Oregon; .
    Dan StutzbachUniversity of Oregon; .
  • Happy Packets - Initial Results
    Speakers:
    Randy Bush, IIJ; Tim GriffinIntel Research; .
    Zhuoqing MaoUniversity of Michigan; .
    Eric PurpusUniversity of Oregon; .
    Dan StutzbachUniversity of Oregon; .

 

^ Back to Top