An anomalous change in traffic distributions caused by an external inter-domain routing change leads to congestion of some network links, which then affects the network quality or disrupts traffic. Thus, network operators need to promptly deal with these problems by changing the routing policy or by soliciting the help of an involved or neighboring network operator through operator channels. In addition, they need to diagnose situations in which customers are affected by the incident or in which destinations become unreachable. Although this task is indispensable, understanding the situation is difficult since the cause lies outside the operators' network domains. To alleviate the load on operators, we developed a system for monitoring traffic shifts and the disruptions caused by BGP routing changes. It is challenging to extract information that is more valid from a large amount of BGP update messages and traffic flow records. By correlating these data, the system provides meaningful reports and visualized traffic statistics, and it enables operators to easily detect the cause of traffic changes and to investigate the extent of damage. We demonstrate the effectiveness of the system and evaluate its feasibility by applying it to an ISP backbone network. In addition, we present a case study of traffic changes that the system detected.
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Copy
Atsushi KOBAYASHI, Shingo KASHIMA, Hiroshi KURAKAMI, Keisuke ISHIBASHI, "Traffic Monitoring System Based on Correlation between BGP Messages and Traffic Data" in IEICE TRANSACTIONS on Communications,
vol. E94-B, no. 9, pp. 2532-2542, September 2011, doi: 10.1587/transcom.E94.B.2532.
Abstract: An anomalous change in traffic distributions caused by an external inter-domain routing change leads to congestion of some network links, which then affects the network quality or disrupts traffic. Thus, network operators need to promptly deal with these problems by changing the routing policy or by soliciting the help of an involved or neighboring network operator through operator channels. In addition, they need to diagnose situations in which customers are affected by the incident or in which destinations become unreachable. Although this task is indispensable, understanding the situation is difficult since the cause lies outside the operators' network domains. To alleviate the load on operators, we developed a system for monitoring traffic shifts and the disruptions caused by BGP routing changes. It is challenging to extract information that is more valid from a large amount of BGP update messages and traffic flow records. By correlating these data, the system provides meaningful reports and visualized traffic statistics, and it enables operators to easily detect the cause of traffic changes and to investigate the extent of damage. We demonstrate the effectiveness of the system and evaluate its feasibility by applying it to an ISP backbone network. In addition, we present a case study of traffic changes that the system detected.
URL: https://global.ieice.org/en_transactions/communications/10.1587/transcom.E94.B.2532/_p
Copy
@ARTICLE{e94-b_9_2532,
author={Atsushi KOBAYASHI, Shingo KASHIMA, Hiroshi KURAKAMI, Keisuke ISHIBASHI, },
journal={IEICE TRANSACTIONS on Communications},
title={Traffic Monitoring System Based on Correlation between BGP Messages and Traffic Data},
year={2011},
volume={E94-B},
number={9},
pages={2532-2542},
abstract={An anomalous change in traffic distributions caused by an external inter-domain routing change leads to congestion of some network links, which then affects the network quality or disrupts traffic. Thus, network operators need to promptly deal with these problems by changing the routing policy or by soliciting the help of an involved or neighboring network operator through operator channels. In addition, they need to diagnose situations in which customers are affected by the incident or in which destinations become unreachable. Although this task is indispensable, understanding the situation is difficult since the cause lies outside the operators' network domains. To alleviate the load on operators, we developed a system for monitoring traffic shifts and the disruptions caused by BGP routing changes. It is challenging to extract information that is more valid from a large amount of BGP update messages and traffic flow records. By correlating these data, the system provides meaningful reports and visualized traffic statistics, and it enables operators to easily detect the cause of traffic changes and to investigate the extent of damage. We demonstrate the effectiveness of the system and evaluate its feasibility by applying it to an ISP backbone network. In addition, we present a case study of traffic changes that the system detected.},
keywords={},
doi={10.1587/transcom.E94.B.2532},
ISSN={1745-1345},
month={September},}
Copy
TY - JOUR
TI - Traffic Monitoring System Based on Correlation between BGP Messages and Traffic Data
T2 - IEICE TRANSACTIONS on Communications
SP - 2532
EP - 2542
AU - Atsushi KOBAYASHI
AU - Shingo KASHIMA
AU - Hiroshi KURAKAMI
AU - Keisuke ISHIBASHI
PY - 2011
DO - 10.1587/transcom.E94.B.2532
JO - IEICE TRANSACTIONS on Communications
SN - 1745-1345
VL - E94-B
IS - 9
JA - IEICE TRANSACTIONS on Communications
Y1 - September 2011
AB - An anomalous change in traffic distributions caused by an external inter-domain routing change leads to congestion of some network links, which then affects the network quality or disrupts traffic. Thus, network operators need to promptly deal with these problems by changing the routing policy or by soliciting the help of an involved or neighboring network operator through operator channels. In addition, they need to diagnose situations in which customers are affected by the incident or in which destinations become unreachable. Although this task is indispensable, understanding the situation is difficult since the cause lies outside the operators' network domains. To alleviate the load on operators, we developed a system for monitoring traffic shifts and the disruptions caused by BGP routing changes. It is challenging to extract information that is more valid from a large amount of BGP update messages and traffic flow records. By correlating these data, the system provides meaningful reports and visualized traffic statistics, and it enables operators to easily detect the cause of traffic changes and to investigate the extent of damage. We demonstrate the effectiveness of the system and evaluate its feasibility by applying it to an ISP backbone network. In addition, we present a case study of traffic changes that the system detected.
ER -