SlideShare a Scribd company logo

Slides Mpls Tunnel

E
edge7
Education
1 of 17
Download to read offline
Introduction Scans Course project for AANSW Revealing MPLS Tunnels obscured by traceroute Adriano Donato De Matteis, Daniele Di Proietto, Enrico D’Urso Tutor: Ing. Valerio Luconi Universit` Di Pisa a 16 Marzo 2013 1 / 10
Introduction Scans Indice 1 Introduction 2 Scans 2 / 10
Introduction Scans Paper We reproduced the experiment in the paper Revealing MPLS tunnels obscured from traceroute, B. Donnet, M. Luckie, P. M´rindol, and J. Pansiot, 2012 e 3 / 10
Introduction Scans Paper We reproduced the experiment in the paper Revealing MPLS tunnels obscured from traceroute, B. Donnet, M. Luckie, P. M´rindol, and J. Pansiot, 2012 e Goals Understand the deployment of MPLS The presented techniques do not help very much in refining the internet topology. 3 / 10
Introduction Scans Paper We reproduced the experiment in the paper Revealing MPLS tunnels obscured from traceroute, B. Donnet, M. Luckie, P. M´rindol, and J. Pansiot, 2012 e Goals Understand the deployment of MPLS The presented techniques do not help very much in refining the internet topology. The paper presents some improvements to the traceroute techniques, to detect MPLS tunnels 3 / 10
Introduction Scans MPLS features of interest RFC 4950 It allows routers to embed MPLS information into an ICMP time-exceeded message ttl-propagate Router option to copy IP TTL into MPLS TTL when creating an MPLS label for an IP packet 4 / 10
Introduction Scans Tunnel taxonomy aa aa ttl-propagate aa aa Enabled Disabled RFC4950 aa a Enabled Explicit Opaque Disabled Implicit Invisible 5 / 10
Introduction Scans Tunnel taxonomy aa aa ttl-propagate aa aa Enabled Disabled RFC4950 aa a Enabled Opaque Explicit Disabled Implicit Invisible Explicit Explicit tunnels are those in which both RFC4950 and ttl-propagate are enabled. A common traceroute can correctly detect all the hops, and the attached MPLS label unveils us the tunnel. 5 / 10
Introduction Scans Tunnel taxonomy aa aa ttl-propagate aa aa Enabled Disabled RFC4950 aa a Enabled Explicit Opaque Disabled Invisible Implicit Implicit Implicit tunnels are those in which only ttl-propagate is enabled. They do not hide hops from common traceroute techniques. 5 / 10
Introduction Scans Tunnel taxonomy aa aa ttl-propagate aa aa Enabled Disabled RFC4950 aa a Enabled Explicit Opaque Disabled Implicit Invisible Opaque Opaque tunnels are those in which ttl-propagate is disabled, but RFC4950 is enabled. Since ttl-propagate is disabled, traceroute techniques (which rely on TTL expiration) do not work. Only the last hop is revealed, but we can recognize it as the end of a tunnel. 5 / 10
Introduction Scans Tunnel taxonomy aa aa ttl-propagate aa aa Enabled Disabled RFC4950 aa a Enabled Explicit Opaque Disabled Implicit Invisible Invisible Invisible tunnels are those in which both ttl-propagate and RFC4950 are disabled. Again, they hide the internal hops from traceroute discovery. We can not even detect the presence of the tunnel. 5 / 10
Introduction Scans Dataset Goal Our goal is to analyze the Italian infrastructure We have identified a list of italian ip relying on two files taken from www.isolario.it and http://dev.maxmind.com: GeoIPCountryWhois.csv prefix as 6 / 10
Introduction Scans Dataset GeoIPCountryWhois.csv "2.156.0.0","2.159.255.255","IT","Italy" "2.160.0.0","2.175.255.255","DE","Germany" "2.192.0.0","2.199.255.255","IT","Italy" "5.1.112.0","5.1.119.255","CH","Switzerland" "5.1.120.0","5.1.255.255","DE","Germany" prefix as 1.2.4.0/24 24151|24409 1.20.0.0/17 56120 1.20.0.0/24 56120 1.20.1.0/24 56120 1.20.125.0/24 56120 1.20.126.0/24 56120 7 / 10
Introduction Scans Dataset Figure : Uml scheme 8 / 10
Introduction Scans Indice 1 Introduction 2 Scans 9 / 10
Introduction Scans Scans We have launched four scans from four different places, two different cities (same target list ). Pisa. ISP: Fastweb Pisa. ISP: Infostrada Pisa. ISP: GARR Orbetello (GR). ISP: TelecomItalia 10 / 10
Introduction Scans Scamper To launch traceroute and to ping we used the tool scamper. Scamper Scamper: a Scalable and Extensible Packet Prober for Active Measurement of the Internet. scamper -c "trace -P UDP-paris" -i "$ipdst" -O warts ... scamper -c "ping -c $probecount" -i "$line" -O warts ... 11 / 10

Recommended

Cascon2011_2_architecture
Cascon2011_2_architectureCascon2011_2_architecture
Cascon2011_2_architectureONTORULE Project
 
Python for Data Science
Python for Data SciencePython for Data Science
Python for Data ScienceDhaval Limbachiya
 
FIBRE-BR – People, Resources , Roadmap
FIBRE-BR – People, Resources , RoadmapFIBRE-BR – People, Resources , Roadmap
FIBRE-BR – People, Resources , RoadmapFIBRE Testbed
 
Thesis L Leyssenne - November 27th 2009 - Part1
Thesis L Leyssenne - November 27th 2009 - Part1Thesis L Leyssenne - November 27th 2009 - Part1
Thesis L Leyssenne - November 27th 2009 - Part1Laurent Leyssenne
 
Bandwidth measurement
Bandwidth measurementBandwidth measurement
Bandwidth measurementjeromy fu
 
Theorem proving and the real numbers: overview and challenges
Theorem proving and the real numbers: overview and challengesTheorem proving and the real numbers: overview and challenges
Theorem proving and the real numbers: overview and challengesLawrence Paulson
 
Slide aansw
Slide aanswSlide aansw
Slide aanswedge7
 
D tosi portfolio2013
D tosi portfolio2013D tosi portfolio2013
D tosi portfolio2013Daniele Tosi
 

Recommended

Cascon2011_2_architecture
Cascon2011_2_architectureCascon2011_2_architecture
Cascon2011_2_architectureONTORULE Project
 
Python for Data Science
Python for Data SciencePython for Data Science
Python for Data ScienceDhaval Limbachiya
 
FIBRE-BR – People, Resources , Roadmap
FIBRE-BR – People, Resources , RoadmapFIBRE-BR – People, Resources , Roadmap
FIBRE-BR – People, Resources , RoadmapFIBRE Testbed
 
Thesis L Leyssenne - November 27th 2009 - Part1
Thesis L Leyssenne - November 27th 2009 - Part1Thesis L Leyssenne - November 27th 2009 - Part1
Thesis L Leyssenne - November 27th 2009 - Part1Laurent Leyssenne
 
Bandwidth measurement
Bandwidth measurementBandwidth measurement
Bandwidth measurementjeromy fu
 
Theorem proving and the real numbers: overview and challenges
Theorem proving and the real numbers: overview and challengesTheorem proving and the real numbers: overview and challenges
Theorem proving and the real numbers: overview and challengesLawrence Paulson
 
Slide aansw
Slide aanswSlide aansw
Slide aanswedge7
 
D tosi portfolio2013
D tosi portfolio2013D tosi portfolio2013
D tosi portfolio2013Daniele Tosi
 
State of Puppet Amsterdam
State of Puppet AmsterdamState of Puppet Amsterdam
State of Puppet AmsterdamPuppet
 
Daniele Tosi - OFSRC projects portfolio
Daniele Tosi - OFSRC projects portfolioDaniele Tosi - OFSRC projects portfolio
Daniele Tosi - OFSRC projects portfolioDaniele Tosi
 
Why EoMPLS for CE
Why EoMPLS for CEWhy EoMPLS for CE
Why EoMPLS for CEAnuradha Udunuwara
 
Unified MPLS. Построение современных и масштабируемых MPLS-сетей.
Unified MPLS. Построение современных и масштабируемых MPLS-сетей. Unified MPLS. Построение современных и масштабируемых MPLS-сетей.
Unified MPLS. Построение современных и масштабируемых MPLS-сетей. Cisco Russia
 
MPLS-TP (MPLS Transport Profile)
MPLS-TP (MPLS Transport Profile)MPLS-TP (MPLS Transport Profile)
MPLS-TP (MPLS Transport Profile)Shivlu Jain
 
Multi Protocol Label Switching. (by Rahil Reyaz)
Multi Protocol Label Switching. (by Rahil Reyaz)Multi Protocol Label Switching. (by Rahil Reyaz)
Multi Protocol Label Switching. (by Rahil Reyaz)RAHIL REYAZ
 
Service Density By Xelerated At Linley Seminar
Service Density By Xelerated At Linley SeminarService Density By Xelerated At Linley Seminar
Service Density By Xelerated At Linley SeminarXelerated
 
Kkbnet2010 i pv6 tunneling algorithms
Kkbnet2010 i pv6 tunneling algorithmsKkbnet2010 i pv6 tunneling algorithms
Kkbnet2010 i pv6 tunneling algorithmshanums1
 
Mpls
MplsMpls
Mplsarbhatawdekar
 
Day one-poster-vpns
Day one-poster-vpnsDay one-poster-vpns
Day one-poster-vpnsDervainJocelyn
 
MPLS
MPLSMPLS
MPLSfaisal rahim
 
PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview PROIDEA
 
Rapid Ring Protection Protocol (RRPP)
Rapid Ring Protection Protocol (RRPP)Rapid Ring Protection Protocol (RRPP)
Rapid Ring Protection Protocol (RRPP)KHNOG
 
ODC010001 MPLS Basic Knowledge ISSUE1.5.ppt
ODC010001 MPLS Basic Knowledge ISSUE1.5.pptODC010001 MPLS Basic Knowledge ISSUE1.5.ppt
ODC010001 MPLS Basic Knowledge ISSUE1.5.pptRandyDookheran1
 
17-Pete_Vickers-IPv6-in-the-Mobile-Net
17-Pete_Vickers-IPv6-in-the-Mobile-Net17-Pete_Vickers-IPv6-in-the-Mobile-Net
17-Pete_Vickers-IPv6-in-the-Mobile-NetIPv6no
 
IPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network Norway
IPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network NorwayIPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network Norway
IPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network NorwayIPv6no
 
Internship end
Internship endInternship end
Internship endMaxime Denis
 
Smarting the Dumb Pipes
Smarting the Dumb PipesSmarting the Dumb Pipes
Smarting the Dumb PipesOpen API Service
 
IETF MPLS-TP RFCs & Drafts - OCT 2010
IETF MPLS-TP RFCs & Drafts - OCT 2010IETF MPLS-TP RFCs & Drafts - OCT 2010
IETF MPLS-TP RFCs & Drafts - OCT 2010Cisco Service Provider
 
Designing LoRaWAN networks for dense IoT deployments
Designing LoRaWAN networks for dense IoT deploymentsDesigning LoRaWAN networks for dense IoT deployments
Designing LoRaWAN networks for dense IoT deploymentsActility
 
The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13Steve Thomason
 
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...christianmathematics
 

More Related Content

Similar to Slides Mpls Tunnel

State of Puppet Amsterdam
State of Puppet AmsterdamState of Puppet Amsterdam
State of Puppet AmsterdamPuppet
 
Daniele Tosi - OFSRC projects portfolio
Daniele Tosi - OFSRC projects portfolioDaniele Tosi - OFSRC projects portfolio
Daniele Tosi - OFSRC projects portfolioDaniele Tosi
 
Unified MPLS. Построение современных и масштабируемых MPLS-сетей.
Unified MPLS. Построение современных и масштабируемых MPLS-сетей. Unified MPLS. Построение современных и масштабируемых MPLS-сетей.
Unified MPLS. Построение современных и масштабируемых MPLS-сетей. Cisco Russia
 
MPLS-TP (MPLS Transport Profile)
MPLS-TP (MPLS Transport Profile)MPLS-TP (MPLS Transport Profile)
MPLS-TP (MPLS Transport Profile)Shivlu Jain
 
Multi Protocol Label Switching. (by Rahil Reyaz)
Multi Protocol Label Switching. (by Rahil Reyaz)Multi Protocol Label Switching. (by Rahil Reyaz)
Multi Protocol Label Switching. (by Rahil Reyaz)RAHIL REYAZ
 
Service Density By Xelerated At Linley Seminar
Service Density By Xelerated At Linley SeminarService Density By Xelerated At Linley Seminar
Service Density By Xelerated At Linley SeminarXelerated
 
Kkbnet2010 i pv6 tunneling algorithms
Kkbnet2010 i pv6 tunneling algorithmsKkbnet2010 i pv6 tunneling algorithms
Kkbnet2010 i pv6 tunneling algorithmshanums1
 
PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview PROIDEA
 
Rapid Ring Protection Protocol (RRPP)
Rapid Ring Protection Protocol (RRPP)Rapid Ring Protection Protocol (RRPP)
Rapid Ring Protection Protocol (RRPP)KHNOG
 
ODC010001 MPLS Basic Knowledge ISSUE1.5.ppt
ODC010001 MPLS Basic Knowledge ISSUE1.5.pptODC010001 MPLS Basic Knowledge ISSUE1.5.ppt
ODC010001 MPLS Basic Knowledge ISSUE1.5.pptRandyDookheran1
 
17-Pete_Vickers-IPv6-in-the-Mobile-Net
17-Pete_Vickers-IPv6-in-the-Mobile-Net17-Pete_Vickers-IPv6-in-the-Mobile-Net
17-Pete_Vickers-IPv6-in-the-Mobile-NetIPv6no
 
IPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network Norway
IPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network NorwayIPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network Norway
IPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network NorwayIPv6no
 
Designing LoRaWAN networks for dense IoT deployments
Designing LoRaWAN networks for dense IoT deploymentsDesigning LoRaWAN networks for dense IoT deployments
Designing LoRaWAN networks for dense IoT deploymentsActility
 

Similar to Slides Mpls Tunnel (20)

State of Puppet Amsterdam
State of Puppet AmsterdamState of Puppet Amsterdam
State of Puppet Amsterdam
 
Daniele Tosi - OFSRC projects portfolio
Daniele Tosi - OFSRC projects portfolioDaniele Tosi - OFSRC projects portfolio
Daniele Tosi - OFSRC projects portfolio
 
Why EoMPLS for CE
Why EoMPLS for CEWhy EoMPLS for CE
Why EoMPLS for CE
 
Unified MPLS. Построение современных и масштабируемых MPLS-сетей.
Unified MPLS. Построение современных и масштабируемых MPLS-сетей. Unified MPLS. Построение современных и масштабируемых MPLS-сетей.
Unified MPLS. Построение современных и масштабируемых MPLS-сетей.
 
MPLS-TP (MPLS Transport Profile)
MPLS-TP (MPLS Transport Profile)MPLS-TP (MPLS Transport Profile)
MPLS-TP (MPLS Transport Profile)
 
Multi Protocol Label Switching. (by Rahil Reyaz)
Multi Protocol Label Switching. (by Rahil Reyaz)Multi Protocol Label Switching. (by Rahil Reyaz)
Multi Protocol Label Switching. (by Rahil Reyaz)
 
Service Density By Xelerated At Linley Seminar
Service Density By Xelerated At Linley SeminarService Density By Xelerated At Linley Seminar
Service Density By Xelerated At Linley Seminar
 
Kkbnet2010 i pv6 tunneling algorithms
Kkbnet2010 i pv6 tunneling algorithmsKkbnet2010 i pv6 tunneling algorithms
Kkbnet2010 i pv6 tunneling algorithms
 
Mpls
MplsMpls
Mpls
 
Day one-poster-vpns
Day one-poster-vpnsDay one-poster-vpns
Day one-poster-vpns
 
MPLS
MPLSMPLS
MPLS
 
PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview PLNOG 6: Julian Curtis - IPv6 Overview
PLNOG 6: Julian Curtis - IPv6 Overview
 
Rapid Ring Protection Protocol (RRPP)
Rapid Ring Protection Protocol (RRPP)Rapid Ring Protection Protocol (RRPP)
Rapid Ring Protection Protocol (RRPP)
 
ODC010001 MPLS Basic Knowledge ISSUE1.5.ppt
ODC010001 MPLS Basic Knowledge ISSUE1.5.pptODC010001 MPLS Basic Knowledge ISSUE1.5.ppt
ODC010001 MPLS Basic Knowledge ISSUE1.5.ppt
 
17-Pete_Vickers-IPv6-in-the-Mobile-Net
17-Pete_Vickers-IPv6-in-the-Mobile-Net17-Pete_Vickers-IPv6-in-the-Mobile-Net
17-Pete_Vickers-IPv6-in-the-Mobile-Net
 
IPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network Norway
IPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network NorwayIPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network Norway
IPv6 i det mobile nettet: Pete Vickers, Network Engineer, Network Norway
 
Internship end
Internship endInternship end
Internship end
 
Smarting the Dumb Pipes
Smarting the Dumb PipesSmarting the Dumb Pipes
Smarting the Dumb Pipes
 
IETF MPLS-TP RFCs & Drafts - OCT 2010
IETF MPLS-TP RFCs & Drafts - OCT 2010IETF MPLS-TP RFCs & Drafts - OCT 2010
IETF MPLS-TP RFCs & Drafts - OCT 2010
 
Designing LoRaWAN networks for dense IoT deployments
Designing LoRaWAN networks for dense IoT deploymentsDesigning LoRaWAN networks for dense IoT deployments
Designing LoRaWAN networks for dense IoT deployments
 

Recently uploaded

The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13Steve Thomason
 
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...christianmathematics
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeThiyagu K
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationnomboosow
 
Arihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfArihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfchloefrazer622
 
Activity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdfActivity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdfciinovamais
 
Unit-IV- Pharma. Marketing Channels.pptx
Unit-IV- Pharma. Marketing Channels.pptxUnit-IV- Pharma. Marketing Channels.pptx
Unit-IV- Pharma. Marketing Channels.pptxVishalSingh1417
 
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in DelhiRussian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhikauryashika82
 
General AI for Medical Educators April 2024
General AI for Medical Educators April 2024General AI for Medical Educators April 2024
General AI for Medical Educators April 2024Janet Corral
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingTechSoup
 
IGNOU MSCCFT and PGDCFT Exam Question Pattern: MCFT003 Counselling and Family...
IGNOU MSCCFT and PGDCFT Exam Question Pattern: MCFT003 Counselling and Family...IGNOU MSCCFT and PGDCFT Exam Question Pattern: MCFT003 Counselling and Family...
IGNOU MSCCFT and PGDCFT Exam Question Pattern: MCFT003 Counselling and Family...PsychoTech Services
 
Sanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfSanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfsanyamsingh5019
 
Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Celine George
 
Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfagholdier
 
fourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writingfourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writingTeacherCyreneCayanan
 
Class 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfClass 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfAyushMahapatra5
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactPECB
 
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...Sapna Thakur
 

Recently uploaded (20)

The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13The Most Excellent Way | 1 Corinthians 13
The Most Excellent Way | 1 Corinthians 13
 
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
 
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
Mattingly "AI & Prompt Design: Structured Data, Assistants, & RAG"
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and Mode
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communication
 
Arihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdfArihant handbook biology for class 11 .pdf
Arihant handbook biology for class 11 .pdf
 
Activity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdfActivity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdf
 
Unit-IV- Pharma. Marketing Channels.pptx
Unit-IV- Pharma. Marketing Channels.pptxUnit-IV- Pharma. Marketing Channels.pptx
Unit-IV- Pharma. Marketing Channels.pptx
 
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in DelhiRussian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
 
General AI for Medical Educators April 2024
General AI for Medical Educators April 2024General AI for Medical Educators April 2024
General AI for Medical Educators April 2024
 
Grant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy ConsultingGrant Readiness 101 TechSoup and Remy Consulting
Grant Readiness 101 TechSoup and Remy Consulting
 
IGNOU MSCCFT and PGDCFT Exam Question Pattern: MCFT003 Counselling and Family...
IGNOU MSCCFT and PGDCFT Exam Question Pattern: MCFT003 Counselling and Family...IGNOU MSCCFT and PGDCFT Exam Question Pattern: MCFT003 Counselling and Family...
IGNOU MSCCFT and PGDCFT Exam Question Pattern: MCFT003 Counselling and Family...
 
Sanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdfSanyam Choudhary Chemistry practical.pdf
Sanyam Choudhary Chemistry practical.pdf
 
Advance Mobile Application Development class 07
Advance Mobile Application Development class 07Advance Mobile Application Development class 07
Advance Mobile Application Development class 07
 
Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17
 
Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdf
 
fourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writingfourth grading exam for kindergarten in writing
fourth grading exam for kindergarten in writing
 
Class 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdfClass 11th Physics NEET formula sheet pdf
Class 11th Physics NEET formula sheet pdf
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global Impact
 
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...
BAG TECHNIQUE Bag technique-a tool making use of public health bag through wh...
 

Slides Mpls Tunnel

  • 1. Introduction Scans Course project for AANSW Revealing MPLS Tunnels obscured by traceroute Adriano Donato De Matteis, Daniele Di Proietto, Enrico D’Urso Tutor: Ing. Valerio Luconi Universit` Di Pisa a 16 Marzo 2013 1 / 10
  • 2. Introduction Scans Indice 1 Introduction 2 Scans 2 / 10
  • 3. Introduction Scans Paper We reproduced the experiment in the paper Revealing MPLS tunnels obscured from traceroute, B. Donnet, M. Luckie, P. M´rindol, and J. Pansiot, 2012 e 3 / 10
  • 4. Introduction Scans Paper We reproduced the experiment in the paper Revealing MPLS tunnels obscured from traceroute, B. Donnet, M. Luckie, P. M´rindol, and J. Pansiot, 2012 e Goals Understand the deployment of MPLS The presented techniques do not help very much in refining the internet topology. 3 / 10
  • 5. Introduction Scans Paper We reproduced the experiment in the paper Revealing MPLS tunnels obscured from traceroute, B. Donnet, M. Luckie, P. M´rindol, and J. Pansiot, 2012 e Goals Understand the deployment of MPLS The presented techniques do not help very much in refining the internet topology. The paper presents some improvements to the traceroute techniques, to detect MPLS tunnels 3 / 10
  • 6. Introduction Scans MPLS features of interest RFC 4950 It allows routers to embed MPLS information into an ICMP time-exceeded message ttl-propagate Router option to copy IP TTL into MPLS TTL when creating an MPLS label for an IP packet 4 / 10
  • 7. Introduction Scans Tunnel taxonomy aa aa ttl-propagate aa aa Enabled Disabled RFC4950 aa a Enabled Explicit Opaque Disabled Implicit Invisible 5 / 10
  • 8. Introduction Scans Tunnel taxonomy aa aa ttl-propagate aa aa Enabled Disabled RFC4950 aa a Enabled Opaque Explicit Disabled Implicit Invisible Explicit Explicit tunnels are those in which both RFC4950 and ttl-propagate are enabled. A common traceroute can correctly detect all the hops, and the attached MPLS label unveils us the tunnel. 5 / 10
  • 9. Introduction Scans Tunnel taxonomy aa aa ttl-propagate aa aa Enabled Disabled RFC4950 aa a Enabled Explicit Opaque Disabled Invisible Implicit Implicit Implicit tunnels are those in which only ttl-propagate is enabled. They do not hide hops from common traceroute techniques. 5 / 10
  • 10. Introduction Scans Tunnel taxonomy aa aa ttl-propagate aa aa Enabled Disabled RFC4950 aa a Enabled Explicit Opaque Disabled Implicit Invisible Opaque Opaque tunnels are those in which ttl-propagate is disabled, but RFC4950 is enabled. Since ttl-propagate is disabled, traceroute techniques (which rely on TTL expiration) do not work. Only the last hop is revealed, but we can recognize it as the end of a tunnel. 5 / 10
  • 11. Introduction Scans Tunnel taxonomy aa aa ttl-propagate aa aa Enabled Disabled RFC4950 aa a Enabled Explicit Opaque Disabled Implicit Invisible Invisible Invisible tunnels are those in which both ttl-propagate and RFC4950 are disabled. Again, they hide the internal hops from traceroute discovery. We can not even detect the presence of the tunnel. 5 / 10
  • 12. Introduction Scans Dataset Goal Our goal is to analyze the Italian infrastructure We have identified a list of italian ip relying on two files taken from www.isolario.it and http://dev.maxmind.com: GeoIPCountryWhois.csv prefix as 6 / 10
  • 13. Introduction Scans Dataset GeoIPCountryWhois.csv "2.156.0.0","2.159.255.255","IT","Italy" "2.160.0.0","2.175.255.255","DE","Germany" "2.192.0.0","2.199.255.255","IT","Italy" "5.1.112.0","5.1.119.255","CH","Switzerland" "5.1.120.0","5.1.255.255","DE","Germany" prefix as 1.2.4.0/24 24151|24409 1.20.0.0/17 56120 1.20.0.0/24 56120 1.20.1.0/24 56120 1.20.125.0/24 56120 1.20.126.0/24 56120 7 / 10
  • 14. Introduction Scans Dataset Figure : Uml scheme 8 / 10
  • 15. Introduction Scans Indice 1 Introduction 2 Scans 9 / 10
  • 16. Introduction Scans Scans We have launched four scans from four different places, two different cities (same target list ). Pisa. ISP: Fastweb Pisa. ISP: Infostrada Pisa. ISP: GARR Orbetello (GR). ISP: TelecomItalia 10 / 10
  • 17. Introduction Scans Scamper To launch traceroute and to ping we used the tool scamper. Scamper Scamper: a Scalable and Extensible Packet Prober for Active Measurement of the Internet. scamper -c "trace -P UDP-paris" -i "$ipdst" -O warts ... scamper -c "ping -c $probecount" -i "$line" -O warts ... 11 / 10