DOCSLIB.ORG

A Passive Approach to Detection of Traffic Shaping

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
A Passive Approach to Detection of Traffic Shaping A Passive Approach to Detection of Traffic Shaping Mark Norman and John Leis Electrical, Electronic and Computer Engineering, University of Southern Queensland, Australia, E-mail: [email protected] Abstract—Internet service providers often alter the profile of Shapers delay some or all of the packets in data traffic, a practice referred to as “shaping”. This may be a traffic stream in order to bring the stream into done in order to comply with a service contract, or for the compliance with a traffic profile. A shaper usually provisioning of services with real-time delivery constraints. This means that the effective throughput to the customer is reduced has a finite-size buffer, and packets may be discarded in some way, either for all traffic, or for one or more individual if there is not sufficient buffer space to hold the flows. The presence of traffic shaping may be controversial in delayed packets. some circumstances, particularly when certain classes of traffic are shaped (thus altering the traffic profile). The detection of Shaping is usually implemented in practice via a buffer- the existence of traffic shaping on a particular connection or ing algorithm – the so-called “leaky bucket” or the “token flow is desirable, but technically it is a nontrivial problem. This bucket”, depending on the requirements. Both algorithms are is especially so if the end-user has limited or no knowledge well-known. In this work, we do not assume any particular of the outside network conditions. In this paper, we propose a “blind” traffic shaping detection algorithm, and investigate its algorithmic implementation of the shaping itself. effectiveness. The proposed approach is based on order statistics, with limited per-packet computational complexity. This paper describes our novel approach to the detection of traffic shaping, II. PROBLEM STATEMENT provides several experimental results in different scenarios, and compares the effectiveness of several metrics. Finally, avenues for further developing the algorithm are suggested. Outwardly, it may seem that it is merely necessary to measure the bandwidth of a particular interface in order to I. BACKGROUND determine whether it is subject to any upstream packet shaping Traffic or bandwidth shaping is the term used to describe or throttling. However, simply measuring the throughput of the reduction in throughput of various types of network traffic the receive channel is not a reliable indicator of bandwidth at a router or interface. This is generally done to enhance shaping, since the particular flow characteristics are unknown. the performance of particular traffic classes, or to enforce a The type of flow (short and bursty, or longer bulk transfers) network access contract. Traffic shaping may manifest itself is dependent on the usage pattern at any given time. The as reduced throughput for one or more connections, protocols, particular flow(s) requested will emanate from an upstream and/or hosts, and may not be inherently obvious to the end- connection, which is subject to the vagaries of server load user. and the intervening connection path. Deliberate shaping may well be for legitimate purposes, An active approach, in which an interface is set up to such as to selectively allow greater bandwidth for short, real- receive a continuous stream of packets from an external time flows, or particular types of traffic or protocols. For source, is common for one-off testing of downstream interface example, selectively allowing shorter packets for interactive speeds. However, this has two disadvantages. First, it requires applications at the expense of larger packets may well be a co-operating host elsewhere, with known service capacity. desirable. Secondly, it is not a desirable option for continual monitoring However, when used to enforce compliance with a traffic of bandwidth, since the bandwidth of a users’ premises may be profile, the use of shaping becomes somewhat controver- subject to metering. The act of downloading a large quantity sial [1], [2]. The key issue is whether the end-user is aware that of data merely for the purposes of measuring bandwidth is such shaping is occurring, and to what degree (which impacts somewhat self-defeating, since consumes the users’ quota. on the perceived throughput). Various approaches have been suggested towards solving the Packet manipulation, in the broadest sense, implies either problem of determining when shaping is present [2], [4], [5]. delaying or dropping selected packets, and possibly modifying These usually rely on injection of packets into the network; the contents of packets. We do not consider the issue of such “active” detectors invariably also require a separate, co- modification of packet contents, but rather the presence or operating host in a different domain. absence of shaping as effected by either dropping packets, or Thus, we are presented with the problem of passively delaying their transit. determining if an interface is subject to upstream throttling. RFC2475 defines shaping in Section 2.3.3.3 as follows [3]: This paper introduces a passive approach, based on observation of existing flows and their statistical classification. 773 Proceedings of the Second APSIPA Annual Summit and Conference, pages 773–776, Biopolis, Singapore, 14-17 December 2010. 10-0107730776©2010 APSIPA. All rights reserved. III. POSSIBLE APPROACHES acknowledgement. Invariably, some ACKs will arrive early, In using protocols with acknowledgement such as TCP, it is and some late, due to packet fragmentation at the TCP layer, or likely that such selective packet dropping or delay actions will various processing delays in between (for example, the delay impact on the senders’ transmission rate. In the case of TCP, a that may occur when a packet traverses a NAT). delayed packet will manifest itself as a larger round-trip time V. PROPOSED ALGORITHM (RTT) estimate, and hence throttle the rate at which new data To determine whether such a low-overhead coarse measure- segments are introduced into the network [6], [7]. ment derived from packet arrivals is of use in determining the Without specific and time-synchronized knowledge of the presence of shaping, we first examine the statistical profile launch and receipt time of an individual packet, it is not of such data. It is expected that the skewness of such a possible to precisely determine whether an individual packet distribution will be affected by the presence or absence of has been delayed. Thus, fully “blind” detection based on the shaping. In the normal course of network flow, some skew received data stream is not possible at the level of individual will invariably be present. However, we need to find when such packets. Furthermore, the dynamic window adjustment of deviation from essentially single-mode distribution reaches a protocols such as TCP may appear to indicate the presence of critical level, at which point we infer that packet shaping is packet shaping along the path. However, it is not necessary to taking place. determine the existence of packet shaping to the granularity In order to do estimate the deviation from normal, we of an individual packet — for many purposes, it is merely need a measure of skewness. Many such measures of skew sufficient to indicate a broader trend across a flow. Given that have been proposed in the literature, and the computation of network conditions are approximately constant over a suitably some measures requires a substantial amount of data and/or long time window, a sufficiently large-scale estimation should significant computational resources. be enough to estimate whether shaping is occurring. We investigate Pearson’s first skewness coefficient, which IV. PROPOSED APPROACH for a distribution of random variable X is defined as It may be tempting to consider a model-based approach, so mean(x) − mode(x) s1 = (1) that a receiver could calculate the expected throughput from σx a particular source. However, this ignores the vagaries of the Pearson’s second skewness coefficient defined as internet path itself [8]. Furthermore, some knowledge of the 3 (mean(x) − median(x)) underlying protocol would need to be built into the model. s = (2) 2 σ The large number of TCP protocol variants currently in use x render this approach infeasible [9]. Finally, the literature also defines the higher-order skewness Unlike previous designs [2], [5], we adopt a passive ap- measures proach. This approach is based on longer-term statistical P(x − x¯)3 s = (3) characterization of packet flows — unlike active approaches, 3 Nσ3 which use concepts employed in network measurement tools. P(x − x¯)4 s = − 3 (4) In order passively determine a traffic profile, and hence 4 Nσ4 estimate the deviation from the mean flow rate at any give where N is the number of samples. time, it is necessary to either estimate or embed a statistical Several sampling and computational issues present them- model of “normal” traffic. Since any type of modelling is selves. The number of samples to collect, and the period invariably subject to assumptions, we utilize ongoing sampled over which samples are averaged, are obviously of primary measurements of the current network conditions. The present concern. In typical traffic flows, the initial samples may be work focuses on TCP, but this could be extended to other somewhat skewed, due to the TCP slow-start and congestion- protocols. Using the concept of TCP flows – that is, using avoidance algorithms. The computation of mode and median the socket pair which uniquely defines a flow from source in (1) and (2) may be difficult for large observation sequences. IP:Port to destination IP:Port – it is possible to estimate the After presentation of experimental results in the following instantaneous throughput and packet delay. However, keeping section, we return to the issue of efficiently computing these track of flows is somewhat problematic. To begin with, a parameters. potentially very large number of flows requires a fast lookup for per-packet processing.
Load more

Recommended publications
  • Traffic Management in Multi-Service Access Networks
    MARKETING REPORT MR-404 Traffic Management in Multi-Service Access Networks Issue: 01 Issue Date: September 2017 © The Broadband Forum. All rights reserved. Traffic Management in Multi-Service Access Networks MR-404 Issue History Issue Approval date Publication Date Issue Editor Changes Number 01 4 September 2017 13 October 2017 Christele Bouchat, Original Nokia Comments or questions about this Broadband Forum Marketing Draft should be directed to [email protected] Editors Francois Fredricx Nokia [email protected] Florian Damas Nokia [email protected] Ing-Jyh Tsang Nokia [email protected] Innovation Christele Bouchat Nokia [email protected] Leadership Mauro Tilocca Telecom Italia [email protected] September 2017 © The Broadband Forum. All rights reserved 2 of 16 Traffic Management in Multi-Service Access Networks MR-404 Executive Summary Traffic Management is a widespread industry practice for ensuring that networks operate efficiently, including mechanisms such as queueing, routing, restricting or rationing certain traffic on a network, and/or giving priority to some types of traffic under certain network conditions, or at all times. The goal is to minimize the impact of congestion in networks on the traffic’s Quality of Service. It can be used to achieve certain performance goals, and its careful application can ultimately improve the quality of an end user's experience in a technically and economically sound way, without detracting from the experience of others. Several Traffic Management mechanisms are vital for a functioning Internet carrying all sorts of Over-the-Top (OTT) applications in “Best Effort” mode. Another set of Traffic Management mechanisms is also used in networks involved in a multi-service context, to provide differentiated treatment of various services (e.g.
    [Show full text]
  • Design of Traffic Shaper / Scheduler for Packet Switches and Diffserv Networks : Algorithms and Architectures
    New Jersey Institute of Technology Digital Commons @ NJIT Dissertations Electronic Theses and Dissertations Spring 5-31-2001 Design of traffic shaper / scheduler for packet switches and DiffServ networks : algorithms and architectures Surong Zeng New Jersey Institute of Technology Follow this and additional works at: https://digitalcommons.njit.edu/dissertations Part of the Electrical and Electronics Commons Recommended Citation Zeng, Surong, "Design of traffic shaper / scheduler for packet switches and DiffServ networks : algorithms and architectures" (2001). Dissertations. 491. https://digitalcommons.njit.edu/dissertations/491 This Dissertation is brought to you for free and open access by the Electronic Theses and Dissertations at Digital Commons @ NJIT. It has been accepted for inclusion in Dissertations by an authorized administrator of Digital Commons @ NJIT. For more information, please contact [email protected]. Copyright Warning & Restrictions The copyright law of the United States (Title 17, United States Code) governs the making of photocopies or other reproductions of copyrighted material. Under certain conditions specified in the law, libraries and archives are authorized to furnish a photocopy or other reproduction. One of these specified conditions is that the photocopy or reproduction is not to be “used for any purpose other than private study, scholarship, or research.” If a, user makes a request for, or later uses, a photocopy or reproduction for purposes in excess of “fair use” that user may be liable for copyright
    [Show full text]
  • Market for Parking Access Services
    ITS America The Intelligent Transportation Society of America (ITS America) Connected Vehicle Insights Fourth Generation Wireless Vehicle and Highway Gateways to the Cloud An evaluation of Long Term Evolution (LTE) and other wireless technologies’ impact to the transportation sector Steven H. Bayless Technology Scan Series 2011-2012 0 Connected Vehicle Insights: 4G Wireless: Vehicle and Highway Gateways to the Cloud ITS America INTRODUCTION With Fourth Generation cellular (4G), we will see the complete extension of the internet suite of protocols to the wireless environment. 4G likely represents the end of the traditional siloed telecommunications approach that has been the result of decades of investment in single-application “purpose built” wireless technologies (e.g. radio, TV, land mobile, and cellular) and regulatory practice. Current investment patterns in infrastructure provide a strong indication of what will be available and provided in what quantities, quality, and cost beyond 2015 for both terminal devices and network infrastructure. This paper examines how next generation wide-area cellular such as 4G will be able to support vehicular applications, and how transportation infrastructure may mesh with wireless networks. Specifically, it suggests that automotive electronics engineers will need to be cognizant of how application data is treated by 4G Long Term Evolution (LTE) networks, and how innovations such as self-organizing femto-cells, “traffic shaping” and heterogeneous or “vertical roaming” across different radio access technologies may improve the performance of off-board or “cloud” -based vehicular applications Furthermore, the paper suggests that over the long term, vehicles will serve as wireless gateways that manage and collect data a number of devices or sensors deployed in vehicles and highway infrastructure, utilizing 4G cellular as the last-mile wide-area connection to the cloud.
    [Show full text]
  • RFC 6349 Testing with Truespeed™ from JDSU—Experience Your
    RFC 6349 Testing with TrueSpeed™ from JDSU— Experience Your Network as Your Customers Do RFC 6349 is the new transmission control protocol (TCP) throughput test methodology that JDSU co-authored along with representatives from Bell Canada and Deutsche Telecom. Recently issued by the Internet Engineering Task Force (IETF) organization, RFC 6349 provides a repeatable test method for TCP throughput analysis with systematic processes, metrics, and guidelines to optimize the network and server performance. This application note summarizes RFC 6349, “Framework for TCP Throughput Testing,” and highlights the automated and fully compliant JDSU RFC 6349 implementation, TrueSpeed, now available on the JDSU T-BERD®/MTS-6000A Multi-Services Application Module (MSAM) and T-BERD/MTS-5800 Handheld Network Tester. This application note also discusses the integration of TrueSpeed RFC 6349 with the ITU Y.1564 Ethernet service activation standard. This powerful testing combination provides a comprehensive means to ensure an optimized end-customer experience in multi-service (such as triple play) environments. RFC 6349 TCP Test Methodology RFC 6349 specifies a practical methodology for measuring end-to-end TCP throughput in a managed IP network with a goal of providing a better indication of the user experience. In the RFC 6349 framework, TCP and IP parameters are also specified to optimize TCP throughput. RFC 6349 recommends always conducting a Layer 2/3 turn-up test before TCP testing. After verifying the network at Layer 2/3, RFC 6349 specifies conducting
    [Show full text]
  • The Local and Global Effects of Traffic Shaping in the Internet
    The Local and Global Effects of Traffic Shaping in the Internet Massimiliano Marcon Marcel Dischinger Krishna P. Gummadi Amin Vahdat MPI-SWS MPI-SWS MPI-SWS UCSD [email protected] [email protected] [email protected] [email protected] Abstract—The Internet is witnessing explosive growth in traf- ISPs limit the aggregate bandwidth consumed by bulk flows fic, in large part due to bulk transfers. Delivering such traffic is to a fixed value, independently of the current level of link expensive for ISPs because they pay other ISPs based on peak utilization [16]. A few ISPs even resort to blocking entire utilization. To limit costs, many ISPs are deploying ad-hoc traffic shaping policies that specifically target bulk flows. However, there applications [12]. So far, these policies are not supported by is relatively little understanding today about the effectiveness of an understanding of their economic benefits relative to their different shaping policies at reducing peak loads and what impact negative impact on the performance of bulk transfers, and thus these policies have on the performance of bulk transfers. their negative impact on customer satisfaction. In this paper, we compare several traffic shaping policies with respect to (1) the achieved reduction in peak network traffic Against this backdrop, this paper poses and answers two and (2) the resulting performance loss for bulk transfers. We questions: identified a practical policy that achieves peak traffic reductions of up to 50% with only limited performance loss for bulk 1. What reduction in peak utilization can an ISP achieve transfers. However, we found that the same policy leads to large by traffic shaping only bulk flows, and how much do performance losses for bulk transfers when deployed by multiple ISPs along a networking path.
    [Show full text]
  • Experience the Network As Your Customers Do— Closing the Turn-Up Gap
    Experience the Network as Your Customers Do— Closing the Turn-up Gap Traditionally, Layer 2/3 turn-up tests such as RFC 2544 have been conducted when installing Ethernet services. After providers “certify” their networks with either an RFC 2544 test or the new Y.1564 test, they can still receive complaints of poor application performance from business-end customers using video conferencing, YouTube, Facebook, or cloud-based applications. The gap in installation testing, namely the omission of transmission control protocol (TCP)-layer testing, which is key to optimal end-customer application layer performance, is the cause for this disconnect. Figure 1 portrays a simplified view of the protocol stack and the gap between current turn-up testing methodologies and the end-user experience. End User applications (Facebook, YouTube) TCP Testing gap is TCP IP/Ethernet Tested by RFC 2544 and Y.1564 Figure 1. Simplified protocol stack showing the gap between turn-up testing and the end-user experience This testing gap does not let network providers experience network performance like their customers, so they need a solution that can verify TCP-layer performance before end-customer activation. Testing at the TCP layer can eliminate additional truck rolls, tech support calls, and customer churn which provides substantially positive implications to providers’ operating expenses (OpEx). White Paper This white paper: y Briefly introduces the TCP protocol y Summarizes some common customer-premises equipment (CPE) and network issues that can adversely affect TCP and application performance y Introduces the new IETF RFC 6349 TCP test methodology y Demonstrates the benefits to network providers who conduct RFC 6349-based TCP-layer installation testing Network and CPE Issues that Adversely Affect TCP TCP operates at open system interconnection (OSI) Layer 4 and resides on top of the IP Layer 3.
    [Show full text]
  • Traffic Management Strategies for Operators
    Traffic Management Strategies for Operators QUALCOMM, Incorporated January 2011 For more information on Qualcomm innovations: http://www.qualcomm.com/innovation/research/feature_project/femtocells.html Traffic Offload Table of Contents [1] Executive Summary ......................................................................... 1 [2] Overview of the Traffic Management Problem ................................ 2 [3] Traffic Management in Macro cellular Network ............................... 4 3.1 Innovations in Connection Management ................................. 4 3.2 Enhanced Cell_FACH Mechanism .......................................... 6 3.3 Dynamic QoS Control .............................................................. 7 3.4 SIPTO Techniques ................................................................ 10 [4] Traffic Offload via Microcells and Pico Cells .................................. 11 4.1 Performance Gains with Microcells ....................................... 13 4.2 Analysis ................................................................................. 14 [5] Traffic Offload via Femto Deployments ......................................... 16 5.1 Performance Results ............................................................. 17 5.2 Femtocells Key Challenges and Solutions ............................ 20 5.3 Femtocell Transmit Power Self Calibration ........................... 20 [6] Traffic Offload via Wi-Fi Access Points .......................................... 21 [7] Conclusions ...................................................................................
    [Show full text]
  • Study of Traffic Control and Congestion Control in Broadband ISDN
    study of Traffic Control and Congestion Control in Broadband ISDN Yoon D. Chang David H. Su U.S. DEPARTMENT OF COMMERCE Technolo^ Administration National Institute of Standards and Technology Computer Systems Laboratory Advanced Systems Division Gaithersburg, MD 20899 100 . U56 5000 NIST 1992 NISTIR 5000 Study of Traffic Control and Congestion Control in Broadband ISDN Yoon D. Chang David H. Su U.S. DEPARTMENT OF COMMERCE Technology Administration National Institute of Standards and Technology Computer Systems Laboratory Advanced Systems Division Gaithersburg, MD 20899 December 1992 U.S. DEPARTMENT OF COMMERCE Barbara Hackman Franklin, Secretary TECHNOLOGY ADMINISTRATION Robert M. White, Under Secretary for Technology NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY John W. Lyons, Director ' ' ' f * !?• ij *' i^r I. .f ’. : :j ' ' ‘ > I, 1 a ‘d^ H J4r:%':'-'A " •; '<; ‘'li " *r»^'.-VA^'^' •'.%> • - •, yir 4 , V/ 1 »|/? ,^,uJ* I:i;r ^ Vi \ ?# ' .*:.. ,r-«k •»n!i ><i> v'''i«( m*•gia 4-u •^-<* #• .j,-A vi^*«r!P ' ; , . WWSJiWV'. , ^ *if r!t<''f«i' ’t ^, •i» STUDY OF TRAFFIC CONTROL and CONGESTION CONTROL IN BROADBAND ISDN Yoon D. Chang David Su ABSTRACT In Broadband Integrated Services Digital Network (B-ISDN), the Asynchronous Transfer Mode (ATM) network architecture has been adopted as the switching and multiplexing scheme. One of the important ATM architectural issues is trafBc and congestion control. Many schemes, algorithms and theories have been studied for network flow control, congestion control, and trafBc control in order to find suitable techniques to manage network trafBc effectively to meet the quality of service requirement for network users. Among B-ISDN terminals in a Customer Premises Network (CPN) domain, a new flow control concept refered to as Generic Row Control (GFC), has been adopted and its protocol standardization is under study.
    [Show full text]
  • An Internet-Wide Analysis of Traffic Policing
    An Internet-Wide Analysis of Traffic Policing Tobias Flach∗y, Pavlos Papageorgey, Andreas Terzisy, Luis D. Pedrosa∗, Yuchung Chengy, Tayeb Karimy, Ethan Katz-Bassett∗, and Ramesh Govindan∗ ∗ University of Southern California y Google Enforces rate by dropping excess packets immediately – Can result in high loss rates Abstract. Large flows like video streams consume signifi- Policing cant bandwidth. Some ISPs actively manage these high vol- + Does not require memory buffer ume flows with techniques like policing, which enforces a + No RTT inflation Enforces rate by queueing excess packets flow rate by dropping excess traffic. While the existence of + Only drops packets when buffer is full Shaping policing is well known, our contribution is an Internet-wide – Requires memory to buffer packets study quantifying its prevalence and impact on transport- – Can inflate RTTs due to high queueing delay level and video-quality metrics. We developed a heuristic to Table 1: Overview of policing and shaping. identify policing from server-side traces and built a pipeline to process traces at scale collected from hundreds of Google search that require low latency. To achieve coexistence and servers worldwide. Using a dataset of 270 billion packets enfore plans, an ISP might enforce different rules on its traf- served to 28,400 client ASes, we find that, depending on re- fic. For example, it might rate-limit high-volume flows to gion, up to 7% of connections are identified to be policed. avoid network congestion, while leaving low-volume flows Loss rates are on average 6× higher when a trace is policed, that have little impact on the congestion level untouched.
    [Show full text]
  • Net Neutrality
    Net Neutrality According to Wikipedia... ● “Net neutrality is the principle that Internet service providers and governments regulating most of the Internet must treat all data on the Internet the same, and not discriminate or charge differentially by user, content, website, platform, application, type of attached equipment, or method of communication.” ● Term coined by Tim Wu in 2003 For it Against it Related concepts ● End-to-end principle: network smarts should be at the edges of the network ● Traffic shaping: control of network traffic ● Quality of Service (QoS): guaranteeing performance by reserving resources Specific fights ● Comcast vs. Bittorrent users ● Netflix vs. Comcast ● AT&T vs. Facetime ● Verizon vs. Netflix and Youtube Arguments for ● Internet should be easily accessible by all – Freedom of speech issue – Examples: Kazakhstan and China ● Slow content can turn users away ● Discrimination of IP packets == censorship ● Common carriers Arguments against ● Stifles innovation and reinvestment ● Stifles investment in underserved areas, hurting minority communities ● Deters competition, e.g., smaller ISPs ● Companies like Netflix overuse bandwidth ● Internet functioned for a long time without it Related: Zero Rating ● Practice of not charging Internet users for traffic for specific applications or Internet services ● Facebook Zero, Google Free Zone, Wikipedia Zero ● Especially common in the developing world Is the debate about net neutrality still going? ● Yes, and it probably will be for a long time – Fundamentally a battle for
    [Show full text]
  • Traffic Control Feature Overview and Configuration Guide
    Technical Guide Traffic Control Feature Overview and Configuration Guide Introduction This guide describes Traffic Control and how to configure it. This new Traffic Control feature replaces the existing feature called Traffic Shaping. Traffic Control (often referred to as Quality of Service or QoS) optimizes the service provided to users when interfaces become oversubscribed. This means creating policies that: identify which traffic belongs to which services apply different control parameters to the traffic belonging to different services These control parameters are applied to traffic to optimize the services and can be applied in a variety of combinations: prioritization bandwidth limiting marking egress scheduling This document explains each of the component aspects of Traffic Control including relevant commands and example configurations. The components covered are: Policies, see "Policies" on page 3 Classifying traffic using rules, see "Classifying traffic using rules" on page 6 Traffic classes and queues, see "Traffic classes and queues" on page 9 Scheduling algorithms, see "Queueing and scheduling algorithms" on page 12 Bandwidth limiting, see "Bandwidth limiting and burst control" on page 15 C613-22082-00 x REV D alliedtelesis.com Traffic Control Contents Introduction ........................................................................................................................ 1 Products and software version that apply to this guide .............................................. 2 Overview of Traffic Control................................................................................................
    [Show full text]
  • Equalizing Compared to Application Shaping (Layer-7 “Deep Packet Inspection” Products)
    WHITE PAPER Equalizing Compared to Application Shaping (Layer-7 “Deep Packet Inspection” Products) In the following sections, we will discuss equalizing, NetEqualizer's behavior-based shaping algorithms, including what equalizing is and specifically when and where it should be used. We will highlight how it fits into the overall application shaping landscape, and how in many cases equalizing is a great alternative. We will then cover when and where application shaping is used, how it can be used to your advantage, and also when it may not be a good option for what you are trying to accomplish. What is Equalizing? Overall, equalizing is a simple concept to understand. Equalizing is the art form of looking at the usage patterns or traffic “behaviors” on the network, Equalizing Summary and then when things get congested, robbing from the rich (bandwidth hogs) to give to the poor. • Suited to Internet or WAN links This behavior-based approach to traffic shaping usually mirrors what you • Simple turn-key solution, would end up doing if you could see and identify all of the traffic on your configure once and done network, but does not require the labor and cost of classifying everything. • All traffic runs unencumbered Applications such as VoIP, web-based business applications (SaaS, when network is not congested cloud-based apps), Internet browsing, and instant messaging (IM) all naturally receive higher priority, while large downloads and video receive • During peak congestion, lower priority. As behavior-based shaping does not care what the traffic shapes using fairness-based type (aka “application”) is, it also does not need to be updated constantly algorithms as applications change.
    [Show full text]