M.Sc. Niklas Steinleitner
Position:
Research Assistant
Phone:
+49 (551) 39-1 35 83
Office:
SW 0.112
Email:
Homepage
Computer Networks im April 2007
Research Projects
Publications
2006
Implementation and Performance Study of a New NAT/Firewall Signaling Protocol ,
Xiaoming Fu , Niklas Steinleitner , Henning Peters, and Hannes Tschofenig, in Proceedings of the 26th International Conference on Distributed Computing Systems-Workshops (ICDCSW 2006), the 5th International Workshop on Assurance in Distributed Systems and Networks (ADSN2006), Lisboa, Portugal,
IEEE Computer Society, ISBN 0-7695-2541-5, July 2006.
Read abstract
The NAT/Firewall NSIS Signaling Layer Protocol (NAT/FW NSLP) is a path-coupled signaling protocol for explicit Network Address Translator and firewall configuration within an extensible IP signaling framework currently being developed by the IETF Next Steps in Signaling (NSIS) working group. This new protocol allows end hosts to signal along a path to configure NATs and firewalls according to the data flow needs. In this paper we present a first open source implementation and performance evaluation of the NAT/FW NSLP protocol. The implementation utilizes a generic state machine template and can automatically generate source code for message handling classes. The performance study shows that our implementation scales well and is able to support firewall signaling for up to tens of thousands of flows in parallel even in a low-end PC testbed environment. The overall performance bottleneck is found to lie in the utilized firewall implementation, not depending on the NAT/FW NSLP implementation.
PDF [394.6 kB]
2005
Performance Analysis of the TCP/IP Stack of Linux Kernel 2.6.9 ,
Xiaoming Fu , Niklas Steinleitner , Jan Demter, Christian Dickmann, and Henning Peters, Technical Report No. IFI-TB-2005-03, Institute for Informatics, University of Göttingen, Germany,
ISSN 1611-1044, April 2005.
Read abstract
This document reports the project "performance study of the TCP/IP stack for the Linux kernel" which we performed during the practical course Computer Networks in winter semester 2004/05, including its design, implementation and performance results. We analysed the packet processing time traversing each layer of the Linux kernel 2.6.9 TCP/IP stack (socket, TCP/UDP, IP and Ethernet) and the influence of multi-threading and different packet sizes. The design is based on the idea of inserting probing points via hooks in the kernel code and export timing data to a userspace application. A packet generator and analysis tools were also developed. The results demonstrate a number of key concepts in TCP/IP networking, such as layering, user-system interface, connection versus datagram modes, processing routines and their overhead in different layers. Some preliminary results reveal the system has its bottlenecks in different situations, and our tools released under GPL-license have been designed in such a way that allows easy extensibility for other networking diagnostics purposes.
PDF [246.1 kB]
