Inference of network-wide VLAN usage in small enterprise networks

Virtual local area networks (VLANs) are heavily utilized in enterprise networks to group hosts with common requirements together as if they were on the same LAN although they may be in separate physical locations. The key benefit of VLANs is its flexibility to allow any logical LAN to be implemented on any physical infrastructure. As a result, enterprise network administrators often use VLANs to group users and use the resulting grouping to control access to resources. Even in small enterprise networks such as the one we study in this paper, there are more than 50 VLANs in use. Despite their popularity, there has been little systematic work studying deployed VLANs and more importantly, understanding the traffic flow patterns inside these VLANs. In this paper, we develop simple light-weight techniques to map VLAN traffic as it flows across a network. The mapping results from our study can be used as a part of a tool to monitor VLAN usage and may be extended to applications in problem determination and VLAN configuration optimization.

[1]  Vyas Sekar,et al.  LADS: Large-scale Automated DDoS Detection System , 2006, USENIX Annual Technical Conference, General Track.

[2]  Changjia Chen,et al.  Routing inference based on pseudo traffic matrix estimation , 2006, 20th International Conference on Advanced Information Networking and Applications - Volume 1 (AINA'06).

[3]  Nan Zhang,et al.  Characterizing VLAN usage in an operational network , 2007, INM '07.

[4]  Rajeev Rastogi,et al.  Topology discovery in heterogeneous IP networks , 2000, Proceedings IEEE INFOCOM 2000. Conference on Computer Communications. Nineteenth Annual Joint Conference of the IEEE Computer and Communications Societies (Cat. No.00CH37064).

[5]  Rajeev Rastogi,et al.  Topology discovery in heterogeneous IP networks: the NetInventory system , 2004, IEEE/ACM Transactions on Networking.

[6]  Jennifer Rexford,et al.  Revisiting Ethernet: Plug-and-play made scalable and efficient , 2007, 2007 15th IEEE Workshop on Local & Metropolitan Area Networks.