We propose a methodology to infer end-end path properties of TCP connections (such as packet loss, reordering and delay) and other factors that affect TCP sender behavior using passive measurements collected at a single point of observation along the end-end path. With this passive approach, an observation point in a Tier-1 backbone network can observe and analyze millions of TCP connections, which originate and terminate from a highly diverse cross-section of end points in today's Internet - a capability that is unmatched by current active measurement techniques. We apply our passive measurement inference techniques on traces collected in a large Tier-1 backbone network. We analyze the causes of out-of-sequence packets (due to loss, reordering and in-network duplication), the distribution and variation of round-trip delay, the congestion control flavors of TCP, and the extent to which application-level considerations limit TCP throughput. We validate the accuracy of our measurement-based inference techniques by comparing inferred behavior with active measurements made on monitored flows. But empirical validation alone is insufficient, since monitored paths can exhibit a wide range of network properties, many of which may occur only rarely. Thus, we use a combination of model-checking and formal reasoning to identify all possible events in the network for which the inference rules can produce incorrect results.
Cited By
- Qian F, Gerber A, Mao Z, Sen S, Spatscheck O and Willinger W TCP revisited Proceedings of the 9th ACM SIGCOMM conference on Internet measurement, (76-89)
- Siekkinen M, Urvoy-Keller G and Biersack E On the interaction between internet applications and TCP Proceedings of the 20th international teletraffic conference on Managing traffic performance in converged networks, (962-973)
Index Terms
- "measurements-in-the-middle": inferring end-end path properties and characteristics of tcp connections through passive measurements
Recommendations
An end-middle-end approach to connection establishment
SIGCOMM '07: Proceedings of the 2007 conference on Applications, technologies, architectures, and protocols for computer communicationsThe current model for flow establishment in the Internet: DNS Names, IP addresses, and transport ports, is inadequate. Not all of the problem is due to the small IPv4 address space and resulting NAT boxes. Even where global addresses exist, firewalls ...
An end-middle-end approach to connection establishment
The current model for flow establishment in the Internet: DNS Names, IP addresses, and transport ports, is inadequate. Not all of the problem is due to the small IPv4 address space and resulting NAT boxes. Even where global addresses exist, firewalls ...
Multipath in the middle(box)
HotMiddlebox '13: Proceedings of the 2013 workshop on Hot topics in middleboxes and network function virtualizationMultipath TCP (MPTCP) is a major modification to TCP that enables a single transport connection to use multiple paths. Smartphones can benefit from MPTCP by using both WiFi and 3G/4G interfaces for their data-traffic, potentially improving the ...