RadarGun

RadarGun is a tool for scalable and accurate IP alias resolution and velocity modeling. Briefly, it discovers aliases (two interfaces on the same router) among a list of IP addresses by sending probes to each IP address and inspecting the IP identifier (IP ID) in the IP header of the response. If a router's IP ID is implemented internally as a counter, RadarGun can model this counter over time by inferring the rate at which the counter increases. This rate is the "velocity" of the router and usually approximates a straight line. To determine aliases, RadarGun computes the "distance" between all pairs of lines; those pairs with a small distance, meaning their counters have similar values at the same time, are output as aliases.

RadarGun was inspired by, and an attempt to improve upon, Ally, the Scriptroute tool for alias resolution. By modeling the IP ID as a counter, RadarGun is able to resolve aliases among a list of addresses with far fewer probes than Ally, which requires fresh probes for every comparison.

Download

Version 0.1. Depends on Scriptroute.

List of IP addresses tested for the paper.

Papers

• Fixing Ally's Growing Pains with Velocity Modeling
  Adam Bender, Rob Sherwood, Neil Spring
  IMC 2008 (Internet Measurement Conference)
  

People

• Adam Bender (maintainer)
• Rob Sherwood
• Neil Spring