Scalable High Speed IP Routing Lookups
Marcel Waldvogel
y
, George Varghese
z
,JonTurner
z
, Bernhard Plattner
y
y
Computer Engineering and Networks Laboratory
ETH Z¨urich, Switzerland
f
waldvogel,plattner
g
@tik.ee.ethz.ch
z
Computer and Communications Research Center
Washington University in St. Louis, USA
f
varghese,jst
g
@ccrc.wustl.edu
Abstract
Internet address lookup is a challenging problem because of in-
creasing routing table sizes, increased traffic, higher speed links,
and the migration to 128 bit IPv6 addresses. IP routing lookup
requires computing the best matching prefix, for which standard
solutions like hashing were believed to be inapplicable. The best
existing solution we know of, BSD radix tries, scales badly as IP
moves to 128 bit addresses. Our paper describes a new algorithm
for best matching prefix using binary search on hash tables orga-
nized by prefix lengths. Our scheme scales very well as address
and routing table sizes increase: independentof the table size, it re-
quires a worst case time of
log
2
(
address bits
)
hash lookups. Thus
only 5 hash lookups are needed for IPv4 and 7 for IPv6. We also
introduce Mutating Binary Search and other optimizations that, for
a typical IPv4 backbone router with over 33,000 entries, consider-
ably reduce the average number of hashes to less than 2, of which
one hash can be simplified to an indexed array access. We expect
similar average case behavior for IPv6.
1 Introduction
The Internet is becoming ubiquitous: everyone wants to join in.
Since the advent of the World Wide Web, the number of users,
hosts, domains, and networks connected to the Internet seems to be
exploding. Not surprisingly, network traffic is doubling every few
months. The proliferation of multimedia networking applications
and devices is expected to give traffic another major boost.
The increasing traffic demand requires three key factors to
keep pace if the Internet is to continue to provide good service:
link speeds, router data throughput, and packet forwarding rates.
1
Readily available solutions exist for the first two factors: for ex-
ample, fiber-optic cables can provide faster links,
2
and switching
technology can be used to move packets from the input interface
of a router to the corresponding output interface at gigabit speeds.
1
In our paper, we distinguish between routing (a process that computes a database
mapping destination networks to output links) and forwarding (a process by which
a routing database is consulted to decide which output link a single packet should
be forwarded on.) Route computation is less time critical than forwarding because
forwarding is done for each packet, while route computation needs to be done only
when the topology changes.
2
For example, MCI is currentlyupgradingits lines from 45Mbits/s to 155Mbits/s;
they plan to switch to 622 Mbits/s within a year.
Our paper deals with the third factor, packet forwarding, for which
current techniques perform poorly as network speedsincrease.
The major step in packet forwarding is to lookup the desti-
nation address (of an incoming packet) in the routing database.
While there are other chores, such as updating TTL fields, these
are computationally inexpensive compared to the major task of ad-
dress lookup. Data link Bridges have been doing address lookups
at 100 Mbps [Dig95] for many years. However, bridges only do
exact matching on the destination (MAC) address, while Internet
routers have to searchtheir databasefor the longestprefixmatching
a destination IP address. Thus standardtechniques for exact match-
ing, such as perfect hashing, binary search, and standard Content
Adressable Memories (CAMs) cannot directly be used for Internet
address lookups.
Prefix matching was introduced in the early 1990s, whenit was
foreseen that the number of endpoints and the amount of routing
information would grow enormously. The address classes A, B,
and C (allowing sites to have 24, 16, and 8 bits respectively for ad-
dressing) proved too inflexible and wasteful of the address space.
To makebetteruseof this scarceresource, especiallytheclassB ad-
dresses,bundles of class C networkswere givenout instead of class
B addresses. This resulted in massive growth of routing table en-
tries. So, in turn, Classless Inter-Domain Routing (CIDR) [F
+
93]
was deployed, to allow for arbitrary aggregation of networks to re-
duce routing table entries.
To reducerouting table space,aggregation is doneaggressively.
Suppose all the subnets in a big network have identical routing in-
formation except for a single, small subnet that has different infor-
mation. Instead of having multiple routing entries for each subnet
in the large network, just two entries are needed: one for the big
network, and a more specific one for the small subnet (which has
preference, if both should match). This results in better usage of
the available IP address space and decreases the amount of routing
table entries. On the other hand, the processing power needed for
forwarding lookup is increased.
Thus today an IP router’s database consists of a number of ad-
dress prefixes. When an IP router receives a packet, it must com-
pute which of the prefixes in its database has the longest match
when comparedto thedestination addressin the packet. The packet
is then forwarded to the output link associated with that prefix. For
example, a forwarding database may have the prefixes
P
1 = 0101
,
P
2 = 0101101
and
P
3 = 010110101011
. An address whosefirst
12 bits are
010101101011
has longest matching prefix
P
1
.Onthe
other hand, an address whose first 12 bits are
010110101101
has
longest matching prefix
P
3
.
The use of best matching prefix in forwarding has allowed IP
routers to accomodate variouslevels of addresshierarchies, and has
allowed different parts of the network to havedifferent views of the
First publ. in: Proceedings of ACM SIGCOMM '97 conference on Applications, Technologies, Architecture and Protocols for
Computer Communication, Cannes, France, 1997, pp. 25-36
Konstanzer Online-Publikations-System (KOPS)
URL: http://www.ub.uni-konstanz.de/kops/volltexte/2007/2471/
URN: http://nbn-resolving.de/urn:nbn:de:bsz:352-opus-24711
address hierarchy. Given that best matching prefix forwarding is
necessary for hierarchies, and hashing is a natural solution for ex-
act matching, a natural question is: “Why can’t we modify hashing
to do best matching prefix.” However, for several years now, it was
considered not to be “apparent how to accommodate hierarchies
while using hashing, other than rehashing for each level of hierar-
chy possible” [Skl93].
Our paperdescribesa novel algorithmic solution to longestpre-
fix match, using binary search over hash tables organized by the
length of the prefix. Our solution requires a worst case complexity
3
of
O
(log
2
W
)
, with
W
being the length of the address in bits.
Thus, for the current Internet protocol suite (IPv4) with 32 bit ad-
dresses, we need at most 5 hash lookups. For the upcoming IP ver-
sion 6 (IPv6) with 128 bit addresses, we can do lookup in at most
7 steps, as opposed to 128 in current algorithms (see Section 2),
giving an order of magnitude performance improvement.Using
perfect hashing, we can lookup 128 bit IP addresses in at most
7 memory accesses. This is significant because on current RISC
processors, hash functions can be found whose computation is
cheaper than a memory access.
In addition, we use severaloptimizations to significantly reduce
the average number of hashes needed. For example, our analysis of
an IPv4 forwarding table from an Internet backbone router at the
Mae-East network access point (NAP) [Mer96] show an average
case performance of less than two hashes, where the first hash can
be replaced by a simple index table lookup.
The rest of the paper is organized as follows. Section 2
describes drawbacks with existing approaches to IP lookups.
Section 3 describes our basicscheme in a series of refinements that
culminate in the basic binary search scheme. Section 4 describes
a series of important optimizations to the basic scheme that im-
prove average performance. Section 5 describes our implementa-
tion, including algorithms to build the data structure and perform
insertions and deletions. Section 6 describesperformance measure-
ments using our scheme for IPv4 addresses, and performance pro-
jections for IPv6 addresses. We conclude in Section 7 by assessing
the theoretical and practical contributions of this paper.
2 Existing Approaches to IP Lookup
We survey existing approaches to IP lookups and their problems.
We discuss approaches based on modifying exact matching sche-
mes, trie based schemes, hardware solutions based on parallelism,
proposals for protocol changes to simplify IP lookup, and caching
solutions. For the rest of this paper, we use BMP as a shorthand for
Best Matching Prefix.
Modifications of Exact Matching Schemes Classical fast
lookup techniques such hashing and binary search do not directly
applyto the bestmatchingprefix (BMP) problemsincetheyonly do
exact matches. A modified binary search technique, originally due
to Butler Lampson, is described in [Per92]. However, this method
requires
log
2
2
N
steps, with
N
being the number of routing table
entries. With current routing table sizes, the worst case would be 17
data lookups, each requiring at least one costly memory access. As
with any binary search scheme, the average number of accesses is
log
2
(2
N
)
1
. A secondclassical solution would be to reapply any
exact match scheme for each possible prefix length [Skl93]. This
is even more expensive, requiring
W
iterations of the exact match
scheme used (e.g.
W
= 128
for IPv6).
3
This assumes assuming
O
(1)
for hashing, which can be achieved using perfect
hashing, althoughlimited collisions do not affect performance significantly.
Trie Based Schemes The most commonly available IP lookup
implementation is found in the BSD kernel, and is a radix trie im-
plementation [Skl93]. If
W
is the length of an address, the worst-
case time in the basic implementation can be shown to be
O
(
W
2
)
.
Current implementations have made a number of improvements on
Sklower’s original implementation. The worst case was improved
to
O
(
W
)
by requiring that the prefix be contiguous (previously
non-contiguous masks were allowed, a feature which was never
used). Despite this, the implementation requires up to 32 or 128
costly memory accesses (for IPv4 or IPv6, respectively). Tries also
can have large storage requirements.
Hardware Solutions Hardware solutions can potentially use par-
allelism to gain lookup speed. For exact matches, this is done using
Content Addressable Memories (CAMs) in which every memory
location, in parallel, compares the input key value to the content of
that memory location.
Some CAMs allow a mask of bits that must be matched. Al-
though there are expensive so-called ternary CAMs available al-
lowing a mask to be specifiedper word, the mask must typically be
specified in advance. It has been shown that these CAMs can be
used to do BMP lookups [MF93, MTW95], but the solutions are
usually expensive.
Large CAMs are usually slower and much more expensive than
ordinary memory. Typical CAMs are small, both in the number of
bits per entry and the number of entries. Thus the CAM memory
for large address/mask pairs (256 bits needed for IPv6) and a huge
amount of prefixes appears (currently) to be very expensive. An-
other possibility is to use a number of CAMs doing parallel look-
ups for each prefix length. Again, this seems expensive. Probably
the most fundamental problem with CAMs is that CAM designs
have not historically kept pace with improvements in RAM mem-
ory. Thus a CAM based solution (or indeed any hardware solution)
runs the risk of being made obselete, in a few years, by software
technology running on faster processors and memory.
Protocol Based Solutions One way to get around the problems
of IP lookup is to have extra information sent along with the packet
to simplify or even totally get rid of IP lookups at routers. Two
major proposals along these lines are IP Switching [NMH97] and
Tag Switching [CV95, CV96, R
+
96]. Both schemes require large,
contiguous parts of the network to adopt their protocol changes be-
fore they will show a major improvement. The speedup is achieved
by adding information on the destination to every IP packet.
In IP Switching, this is done by associating a flow of packets
with an ATM Virtual Circuit; in Tag Switching, this is done by
adding a “tag” to each packet, where a “tag” is a small integer that
allows direct lookup in the router’s forwarding table. Tag switching
is based on a concept originally described by Chandranmenon and
Varghese ([CV95, CV96]) using the name “threaded indices”. The
current tag switching proposal[R
+
96] goes further than threaded
indices by adding a stack of indices to deal with hierarchies.
Neither scheme can completely avoid ordinary IP lookups.
Both schemes require the ingress router (to the portions of the net-
work implementing their protoocol) to perform a full routing de-
cision. In their basic form, both systems potentially require the
boundary routers between autonomous systems (e.g., between a
company and its ISP or between ISPs) to perform the full forward-
ing decision again, because of trust issues,scarce resources,or dif-
ferent views of the network. Scarce resources can be ATM VCs or
tags, of which only a small amount exists. Thus towards the back-
bone, they need to be aggregated; away from the backbone, they
need to be separated again.
Different views of the network can arise because systems of-
ten know more details about their own and adjacentnetworks, than
about networks further away. Although Tag Switching addresses
that problem by allowing hierarchical stacking of tags, this af-
fects routing scalability. Tag Switching assigns and distributes tags
based on routing information; thus every originating network now
has to know tags in the destination networks. Thus while both tag
switching and IP switching can provide good performance within a
level of hierarchy, neither solution currently does well at hierarchy
boundaries without scaling problems.
Caching For years, designers of fast routers have resorted to
caching to claim high speed IP lookups. This is problematic for
several reasons. First, information is typically cached on the en-
tire address, potentially diluting the cache with hundreds of ad-
dresses that map to the same prefix. Second, a typical backbone
router of the future may have hundredsof thousandsof prefixesand
be expected to forward packets at Gigabit rates. Although studies
have shown that caching in the backbone can result in hit ratios up
to and exceeding 90 percent [Par96, NMH97], the simulations of
cache behavior were done on large, fully associative caches which
commonly are implemented using CAMs. CAMs, as already men-
tioned, are usually expensive. It is not clear how set associative
caches will perform and whether cachingwill be able keep up with
the growth of the Internet. So caching doeshelp, but does not avoid
the need for fast BMP lookups, especially in view of current net-
work speedups.
Summary In summary, all existing schemes have problems of ei-
ther performance, scalability, generality, or cost. Lookup schemes
based on tries and binary search are (currently) too slow and do
not scale well; CAM solutions are expensive and carry the risk
of being quickly outdated; tag and IP switching solutions require
widespread agreement on protocol changes, and still require BMP
lookupsin portions ofthe network; finally,locality patterns at back-
bone routers make it infeasible to depend entirely on caching.
We now describe a scheme that has good performance, excel-
lent scalability, and does not require protocol changes. Our scheme
also allows a cheap,fast software implementation, and also a more
expensive (but faster) hardware implementation.
3 Basic Binary Search Scheme
Our basic algorithm is based on three significant ideas, of which
only the first has been reported before. First, we use hashing to
check whether an address
D
matches any prefix of a particular
length; second, we use binary search to reduce number of searches
from linear to logarithmic; third, we use precomputation to prevent
backtracking in case of failures in the binary search of a range.
Rather than present the final solution directly, we will gradually
refine these ideas in Section 3.1, Section 3.2, and Section 3.5 to ar-
rive at a working basic scheme. We describe further optimizations
to the basic scheme in the next section.
3.1 Linear Search of Hash Tables
Our point of departure is a simple scheme that does linear search
of hash tables organized by prefix lengths. We will improve this
scheme shortly to do binary searchon the hash tables.
The idea is to look for all prefixes of a certain length
L
using
hashing and use multiple hashes to find the best matching prefix,
starting with the largest value of
L
and working backwards. Thus
we start by dividing the database of prefixes according to lengths.
Length Hash
5
7
12
01010
0101011
0110110
011011010101
Hash tables
Figure 1: Hash Tables for each possible prefix length
Assuming a particularly tiny routing table with four prefixes of
length 5, 7, 7, and 12, respectively, each of them would be stored
in the hash table for its length (Figure 1). So each set of prefixes of
distinct length is organized as a hash table. If we have a sorted ar-
ray
L
corresponding to the distinct lengths, we only have 3 entries
in the array, with a pointer to the longest length hash table in the
last entry of the array.
To search for address
D
, we simply start with the longestlength
hash table
l
(i.e. 12 in the example), and extract the first
l
bits of
D
and do a search in the hash table for length
l
entries. If we succeed,
we have found a BMP
4
; if not, we look at the first length smaller
than
l
,say
l
0
(this is easy to find if we have the array
L
by simply
indexing one position less than the position of
l
), and continuing
the search.
More concretely, let
L
be an array of records.
L
[
i
]
:leng th
is
the lengthof prefixes found at position
i
,and
L
[
i
]
:hash
is a pointer
to a hash table containing all prefixes of length
L
[
i
]
:leng th
.The
resulting code is shown in Figure 2.
Function LinearSearch(
D
) (* search for address
D
*)
Initialize
BM P
to the empty string;
i
:= Highest index in array
L
;
While
(
BM P
=
nil
)
and
(
i
0)
do
Extract the first
L
[
i
]
:leng th
bits of
D
into
D
0
;
BM P
:= Search(
D
0
,
L
[
i
]
:hash
); (* search hash for
D
0
*)
i
:=
i
1
;
Endwhile
Figure 2: Linear Search
3.2 Binary Search of Hash Tables
The previous scheme essentially does (in the worst case) linear
search among all distinct string lengths. Linear search requires
O
(
W
)
expected time (more precisely,
O
(
W
dist
)
,where
W
dist
W
is the number of distinct lengths in the database.)
A better search strategy is to use binary search on the array
L
to cut down the number of hashes to
O
(log
2
W
dist
)
.However,for
binary search to work, we need markers in tables corresponding
to shorter lengths to point to prefixes of greater lengths. Markers
are needed to direct binary search to look for matching prefixes of
greater length. Here is an example to illustrate the need for markers.
Suppose we have the prefixes
P
1=0
,
P
2=00
,
P
3 = 111
(Figure 3 (b)). Assume that the zeroth entry of
L
points to
P
1
’s
hash table, the first to
P
2
’s hash table, and the second points to
P
3
’s hash table. Suppose we search for
111
. Binary search (a)
would start at the middle hash table and search for
11
in the hash
table containing
P
2
(the triangles denote a pointer to the hashtable
4
Recall that BMP stands for Best Matching Prefix. We use this abbreviation
throughthe rest ofthe paper
P1=0
P3=111
P2=00
Hash
Tables
Binary
Search
Increasing
Prefix Length
0
111
00
11
Hash Tables
with Marker
(a) (b) (c)
1
2
3
L
Figure 3: Binary Search on Hash Tables
to search). It would fail and have no indication that it should search
among the longer prefix tables for a better matching prefix. To fix
this problem, we simply add a marker entry
11
to the middle table.
Now when binary search is done for
111
, we will lookup
11
in the
middle hash table and find the marker node. This can be used to
direct binary search to the lower half of the table.
Trie StructureBinary Search
Increasing Prefix Length
Figure 4: Binary Search on Trie Levels
Eachhash table (markers plusrealprefixes) canbe thought of as
a horizontal layer of a trie corresponding to some length
L
(except
that the hash table contains the complete path to that layer of each
entry in that layer). Our basic schemes is essentially doing binary
search on the levels of a trie (Figure 4). We start by doing a hash
on prefixes corresponding to the median length of the trie. If we
match, we search the upper half of the trie; if we fail we search the
lower half of the trie.
Figure 4 and other figures describing search order contain sev-
eral elements: (1) Horizontal stripes grouping all the elements of
a specified prefix length, (2) a trie containing the prefixes, shown
on the right of the figure and rooted on the top of the figure, and
(3) a binary tree, shown on the left of the figure and rooted at the
left, which depicts all possible paths that binary search can fol-
low. We will use upper half to mean the half of the trie with prefix
lengths strictly less than the median length. We also use lower half
for the portion of the trie with prefix lengths strictly greater than
the median length. It is important to understand the conventions in
Figure 4 to understand the later figures and text.
3.3 Reducing Marker Storage
The following definitions are useful before proceeding. For a pre-
fix P in the table, define
Level
(
P
)
to be the integer
i
for which
L
[
i
]
:leng th
=
leng th
(
P
)
(i.e., the index of the entry in
L
that
Total entries 33199 100%
Entries needing no markers 4743 14%
Entries needing 1 marker 22505 68%
Entries needing 2 markers 3562 11%
Entries needing 3 markers 2389 7%
Total markers requested 36796 111%
(before sharing)
Total markers 8699 26%
Pure markers 8336 25%
Table 1: Marker Overhead for Backbone Forwarding Table
points to
P
’s hash table). Also, “up” to refers to shorter, “down”to
longer prefixes.
How many markers do we need? A naive view would indi-
cate placing a marker for prefix
P
at all levels in
L
higher than
the level of
P
. However, it suffices to place markers at all levels
in
L
that could be visited by binary search when looking for an
entry whose BMP is
P
. This reduces the number of markers to
at most
log
2
W
per real prefix, which keeps the storage expan-
sion modest. More precisely, if the
Level
(
P
)
is written down
in binary as
a
1
;a
2
;:::;a
n
, then we need a marker at each level
a
1
a
2
;:::;a
k
;
0
;
0
;:::;
0
such that
a
k
=1
. (We assume that
L
is padded so that its size is a power of 2). In fact, the number
of marker nodes is limited by the number of 1 bits in
Level
(
P
)
.
Clearly this results in a logarithmic number of markers.
In the typical case, many prefixes will share markers (Table 1),
reducing the marker storagefurther. In our samplerouting database
[Mer96], the storage required will increase by 25%. However, it is
easy to give a worst case example where the storage needs require
O
(log
2
W
)
markers per prefix. (Consider
N
prefixes whose first
log
2
N
bits are all distinct and whose remaining bits are all
1
’s).
3.4 Problems with Backtracking
Function NaiveBinarySearch(
D
) (* search for address
D
*)
Initialize search range
R
to cover the whole array
L
;
While
R
is not a single entry do
Let
i
correspond to the middle level in range
R
;
Extract the first
L
[
i
]
:leng th
bits of
D
into
D
0
;
Search(
D
0
,
L
[
i
]
:hash
); (* search hash table for
D
0
*)
If found then set
R
:= lower half of
R
(*longer prefixes*)
Else set R := upper half of
R
; (*shorter prefixes*)
Endif
Endwhile
Figure 5: Naive Binary Search
Binary search of hash tables can be expressed as shown in
Figure 5. Unfortunately, this algorithm is not correct as it stands
and does not take logarithmic time if implemented naively. The
problem is that while markers are good things (they lead to poten-
tially better prefixes lower in the table), they can also cause the
search to follow false leads which may fail. In case of failure, we
would have to modify the binary search (for correctness) to back-
track and search the upper half of
R
again. Such a naive modifica-
tion can lead us backto linear time search. An example will clarify
this.
First consider the prefixes
P
1=1
,
P
2=00
,
P
3 = 111
.
As discussed above, we add a marker to the middle table so that
the middle hash table contains
00
(a real prefix) and
11
(a marker
pointing down to
P
3
). Now considera search for
110
.Westartat
the middle hash table and get a hit; thus we search the third hash
table for
110
and fail. But the correct best matching prefix is at the
first level hash table — i.e.,
P
1
. The marker indicating that there
will be longer prefixes, indispensible to find
P
3
, was misleading in
this case; so apparently, we have to go back and search the upper
half of the range.
The fact that each entry contributes at most
log
2
W
markers
may cause some readers to suspect that the worst case with back-
tracking is limited to
O
(log
2
W
)
. This is incorrect. The worst case
is
O
(
W
)
. The worst-case example for say
W
bits is as follows:
wehaveaprefix
P
i
of length
i
,for
1
i<W
that contains all
0s. In addition we have the prefix
Q
whose first
W
1
bits are
all zeroes, but whose last bit is a
1
. If we search for the
W
bit
address containing all zeroes then we can show that binary search
with backtracking will take
O
(
W
)
time and visit every level in the
table. (The problem is that every level contains a false marker that
indicates the presence of something better below.)
3.5 Precomputation to Avoid Backtracking
We use precomputation to avoid backtracking when we shrink the
current range
R
to the lower half of
R
(which happens when we
find a marker at the mid point of
R
). Suppose every marker node
M
is a record that contains a variable
M :bmp
, which is the value
of the best matching prefix of the marker
M
.
M :bmp
can be pre-
computed when the marker
M
is inserted into its hash table. Now,
when we find
M
at the mid point of
R
, we indeed search the lower
half, but we also remember the value of
M :bmp
as the current best
matching prefix. Now if the lower half of
R
fails to produce any-
thing interesting, we need not backtrack, because the results of the
backtracking are already summarized in the value of
M :bmp
.The
new code is shown in Figure 6.
Function BinarySearch(
D
) (* search for address
D
*)
Initialize search range
R
to cover the whole array
L
;
Initialize
BM P
found so far to null string;
While
R
is not empty do
Let
i
correspond to the middle level in range
R
;
Extract the first
L
[
i
]
:leng th
bits of
D
into
D
0
;
M
:= Search(
D
0
,
L
[
i
]
:hash
); (* search hash for
D
0
*)
If
M
is nil Then set
R
:= upper half of
R
; (* not found *)
Elseif
M
is a prefix and not a marker
Then
BM P
:=
M :bmp
; break; (* exit loop *)
Else (*
M
is a pure marker, or marker and prefix *)
BM P
:=
M :bmp
; (* update best matching prefix so far *)
R
:= lower half of
R
;
Endif
Endwhile
Figure 6: Binary Search
The standard invariant for binary search whensearchingfor key
K
is: “
K
is in range
R
”. We then shrink
R
while preserving this in-
variant. The invariant for this algorithm, when searching for key
K
is: “EITHER (The Best Matching Prefix of
K
is BMP) OR (There
is a longer matching prefix in
R
)”.
It is easy to see that initialization preserves this invariant, and
each of the search cases preserves this invariant (this can be es-
tablished using an inductive proof.) Finally, the invariant implies
the correct result when the range shrinks to 1. Thus the algo-
rithm works correctly; also since it has no backtracking, it takes
O
(log
2
W
dist
)
time.
4 Refinements to Basic Scheme
The basic schemedescribed in Section 3 takes just 7 hashcomputa-
tions, in the worst case, for 128 bit IPv6 addresses. However, each
hash computation takes at least one access to memory; at gigabit
speeds each memory access is significant. Thus, in this section,
we explore a series of optimizations that exploit the deeper struc-
ture inherent in the problem to reduce the average number of hash
computations.
4.1 Asymmetric Binary Search
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
32
32
Prefix Length
Frequency
1 10 100 1000 10,000100,000
Figure 7: Histogram of the Prefix Length Distribution
We first describe a series of simple-minded optimizations. Our
main optimization, mutating binary search, is described in the next
section. A reader can safely skip to Section 4.2 on a first reading.
The current algorithm is a fast, yet very general, BMP search
engine. Usually, the performance of general algorithms can be im-
proved by tailoring them to the particular datasets they will be ap-
plied to. As can be seen in Figure 7, the distribution of a typical
backbone router’s forwarding table as obtained from [Mer96], the
entries are not equally distributed over the different prefix lengths.
All the concepts we described below apply to any set of addresses;
however, we will quantify the potential improvements using the ex-
isting table.
As the first improvement, which has already been mentioned
and used in the basic scheme, the search can be limited to those
prefix lengths which do contain at least one entry, reducing the
worst case number of hashes from
log
2
W
(5 with
W
=32
)to
log
2
W
dist
(4.5 with
W
dist
=23
, the number of non-empty buck-
ets in the histogram), as shown in Figure 8. (While this is an im-
provement for the worst case, in this case, it harms the average
performance, as we will see later.)