System and method for statistical analysis of border gateway protocol (BGP) configurations
First Claim
1. A method for statistical analysis of Border Gateway Protocol configurations comprising the steps of:
- obtaining router configuration data from multiple network elements forming an autonomous system;
parsing the router configuration data into low level policy representations;
inputting a first set of criteria;
grouping together a plurality of similar policies within an autonomous system;
inputting a second set of criteria;
detecting anomalies in network configurations by determining if a group of similar policies is valid for statistical variance analysis;
if there are insufficient similarities in the statistical variance analysis the method ends;
if there are sufficient similarities in the statistical variance analysis, decomposing the policies into configlets;
if there are non-zero variants in the statistical variance analysis, the method ends; and
if there are no non-zero variants in the statistical variance analysis, variants with probabilities of error are flagged.
12 Assignments
0 Petitions
Accused Products
Abstract
Routing and connectivity in the Internet is largely governed by the dynamics and configuration of the Border Gateway Protocol (BGP). A configuration analysis toolkit enables network operators to discover, analyze and diagnose their BGP configuration, policies and peering relationships. Statistical variance analysis in such a toolkit exploits the recurrence of policies in large networks for analysis. In a large network, policies that have similar functions are examined, e.g. all inbound route maps associated with customer autonomous systems. For n occurrences of similar policy P, it is possible to flag k deviant configurations, and evaluate the probability that the deviant configurations are in error. Analysis and policy visualization of implemented BGP configurations enable service providers to move from checking of low-level configuration to extracting analyzable BGP level policy information across a multitude of BGP routers in order to validate consistency of policies and operator intent across distributed BGP configurations using a flexible, customizable analysis engine.
-
Citations
6 Claims
-
1. A method for statistical analysis of Border Gateway Protocol configurations comprising the steps of:
-
obtaining router configuration data from multiple network elements forming an autonomous system; parsing the router configuration data into low level policy representations; inputting a first set of criteria; grouping together a plurality of similar policies within an autonomous system; inputting a second set of criteria; detecting anomalies in network configurations by determining if a group of similar policies is valid for statistical variance analysis; if there are insufficient similarities in the statistical variance analysis the method ends; if there are sufficient similarities in the statistical variance analysis, decomposing the policies into configlets; if there are non-zero variants in the statistical variance analysis, the method ends; and if there are no non-zero variants in the statistical variance analysis, variants with probabilities of error are flagged. - View Dependent Claims (2, 3)
-
-
4. A method for statistical analysis of network/router configurations comprising the steps of:
-
obtaining network/router configuration data from multiple network elements forming an autonomous system; parsing the configuration data into low level policy representations; inputting a first set of criteria; grouping together a plurality of similar policies within an autonomous system; inputting a second set of criteria; detecting anomalies in network configurations by determining if a group of similar policies is valid for statistical variance analysis; if there are insufficient similarities in the statistical variance analysis the method ends; if there are sufficient similarities in the statistical variance analysis, decomposing the policies into configlets; if there are non-zero variants in the statistical variance analysis, the method ends; and if there are no non-zero variants in the statistical variance analysis, variants with probabilities of error are flagged. - View Dependent Claims (5, 6)
-
Specification