Lesson 11:网络设计思想

计算机系统设计
Computer System Engineering
专栏索引 专栏目录 / Introduction to Computer System Engineering / 章节页
Publish Date:   2026-01-13
Word Count:   2.1k

Lesson 11 网络设计思想

在之前的课程中,系统通过虚拟内存和线程在单台物理机上构建了抽象,而这一讲跨越了单机系统的边界。

将数以亿计、异构的设备连接在一起不仅仅是连线的问题,而是一场关于确定性与效率的博弈,其核心在于**“尽力而为(Best-Effort)”**。

1. 设计的起点:两种复用

要理解互联网为什么是现在这个样子,必须先理解它想要取代什么。

  • 电路交换:这是传统电话网络的设计。

    • 机制:在通信开始前,必须建立一条端到端的独占物理通路(或时隙)。
    • 优点同步复用。它是完美的“预订制”,保证带宽,时延固定,没有拥塞。

  • 缺点:资源浪费极大。对于计算机产生的突发性流量,大部分时间线路是空闲的,且建立连接的成本过高。

  • 分组交换:这是计算机网络的选择。

    • 机制:数据被切分成一个个小的数据包(Packet/Datagram),每个包独立寻找路径,通过存储-转发的方式传输。
    • 优点异步复用(统计复用)。不需要预留资源,谁有数据谁就发,极大提高了链路的利用率。
    • 代价:引入了不确定性。因为没有预留座位,数据包可能需要排队

    这两个的区别就是:前者为对端数据的传递整了一条专用通道(有建立和维护通道的成本),后者让每次的数据自己携带收发双方的指示信息,并把数据分段后放在公共信道上传递(但这需要复杂的算法)。

2. 核心模型:尽力而为(Best-Effort)

这是本章最重要的概念,也是互联网架构的灵魂。

网络层(IP层)做了一个承诺:“我会尽力把你的数据包送到目的地,但我不保证一定送到,也不保证按时送到,更不保证不丢包。”

这种设计看似不不靠谱,实则很聪明:

  1. 时延与抖动:由于路由器采用异步复用,数据包需要在缓冲区排队。排队长度的波动导致了时延抖动
  2. 丢包与乱序:当缓冲区满时,路由器唯一的选择就是丢弃数据包。同时,不同的包可能走不同的路,导致到达顺序错乱。
  3. 拥塞:当所有人都想发数据时,网络就会堵车。

正是因为网络层卸载了“保证可靠性”的沉重包袱,它才能保持足够的简单和通用,从而连接世界上所有的异构设备。

3. 数学工具:排队论与时延分析

为了量化“尽力而为”带来的副作用,课程引入了排队论作为数学工具。

  • M/M/1 模型:用于分析最简单的排队系统(泊松分布到达,指数分布服务时间)。
  • 直觉结论:随着链路利用率接近 100%,排队时延会呈指数级上升。这解释了为什么我们不能为了省钱而把带宽占满,必须要留有余量来吸收突发流量。

4. 分层设计:化繁为简

面对如此复杂的网络环境,我们再次使用了计算机科学的终极武器:模块化与分层

  1. 点到点层(Link Layer):解决物理连接问题(如以太网),负责在直连设备间传输帧(Frame)
  2. 网络层(Network Layer):解决寻址与路由问题(如 IP),利用虚拟链路将数据包跨网段投递。
  3. 端到端层(End-to-End Layer):解决可靠性与应用适配问题(如 TCP/UDP),在不可靠的网络之上构建可靠的流(Stream)
  4. 应用层:处理具体的业务逻辑(HTTP, DNS)。

可以用TCP/IP网络模型来理解

5. 经典论文阅读

**《End-to-End Arguments in System Design》**J.H. Saltzer, D.P. Reed, D.D. Clark)

它提出了著名的端到端论(牛牛牛牛牛)。

  • 核心问题:一个功能(比如文件传输的正确性校验、数据加密),应该放在网络的底层(路由器/通信链路)实现,还是放在端系统(应用程序/操作系统)实现?
  • 论点
    如果一个功能必须在端点完成才能保证完全正确,那么在底层去实现这个功能就是多余的,甚至是有害的(会降低性能、增加复杂度)。底层只应提供最基础的通用服务。
  • 例子
    文件传输。即使每一跳路由器都保证数据不出错(链路层校验),路由器本身的内存错误、软件Bug仍然可能破坏文件。因此,接收端最终必须校验文件的完整性。既然端点必须校验,那么底层重复做复杂的校验就是浪费。
  • **结论:**让网络核心保持简单(只负责转发),把复杂的逻辑(重传、流控、加密)推向边缘。

6. 对照

Lesson 11 Network Design Principles

In previous lessons, the system built abstractions via virtual memory and threads on a single physical machine. This lesson crosses the boundary of single-node systems.

Connecting billions of heterogeneous devices together is not just a matter of wiring; it is a game and trade-off between “Determinism” and “Efficiency”, the core of which lies in “Best-Effort”.

1. The Starting Point of Design: The Trade-off Between Two Multiplexing Methods

To understand why the Internet is the way it is now, one must first understand what it sought to replace.

  • Circuit Switching: This is the design of traditional telephone networks.

    • Mechanism: Before communication begins, an exclusive end-to-end physical path (or time slot) must be established.
    • Pros: Synchronous Multiplexing. It is the perfect “reservation system,” guaranteeing bandwidth, fixed latency, and no congestion.
    • Cons: Extreme resource waste. For bursty traffic generated by computers, the line remains idle most of the time, and the cost of establishing a connection is too high.

  • Packet Switching: This is the choice for computer networks.

    • Mechanism: Data is sliced into small Packets/Datagrams. Each packet finds its path independently and is transmitted via Store-and-Forward.
    • Pros: Asynchronous Multiplexing (Statistical Multiplexing). No reservation is needed; send whenever you have data. This vastly improves link utilization.
    • Cost: Introduction of uncertainty. Since there are no reserved seats, packets may need to queue.

    The difference is: the former creates a dedicated channel for data transfer between peers (with costs for establishment and maintenance), while the latter lets the data carry instruction information for both sender and receiver, and segments the data for transmission over a public channel (but this requires complex algorithms).

2. Core Model: Best-Effort

This is the most important concept of this chapter and the soul of the Internet architecture.

The Network Layer (IP Layer) makes a promise: “I will try my best to deliver your packet to the destination, but I do not guarantee it will arrive, I do not guarantee it will arrive on time, and I do not guarantee it will not be lost.”

This design seems unreliable, but it is actually very clever:

  1. Latency & Jitter: Since routers use asynchronous multiplexing, packets must queue in buffers. Fluctuations in queue length lead to Latency Jitter.
  2. Loss & Reordering: When buffers are full, the router’s only choice is to Drop packets. Meanwhile, different packets may take different paths, arriving out of order.
  3. Congestion: When everyone wants to send data, the network gets jammed.

Precisely because the Network Layer offloads the heavy burden of “guaranteeing reliability,” it can remain simple and universal enough to connect all the heterogeneous devices in the world.

3. Mathematical Tools: Queuing Theory and Latency Analysis

To quantify the side effects of “Best-Effort,” the course introduces Queuing Theory as a mathematical tool.

  • M/M/1 Model: Used to analyze the simplest queuing systems (Poisson arrival, Exponential service time).
  • Intuitive Conclusion: As link utilization approaches 100%, queuing latency rises exponentially. This explains why we cannot fully saturate bandwidth just to save money; we must leave Headroom to absorb bursty traffic.

4. Layered Design: Simplifying Complexity

Facing such a complex network environment, we once again use the ultimate weapon of computer science: Modularity and Layering.

  1. Link Layer (Point-to-Point): Solves physical connection issues (e.g., Ethernet), responsible for transmitting Frames between directly connected devices.
  2. Network Layer: Solves addressing and routing issues (e.g., IP), using Virtual Links to deliver packets across network segments.
  3. End-to-End Layer: Solves reliability and application adaptation issues (e.g., TCP/UDP), building reliable Streams on top of an unreliable network.
  4. Application Layer: Handles specific business logic (HTTP, DNS).

This can be understood using the TCP/IP network model.

5. Classic Paper Reading

《End-to-End Arguments in System Design》 (J.H. Saltzer, D.P. Reed, D.D. Clark)

It proposes the famous End-to-End Arguments (Super Important/GOAT).

  • Core Question: Should a function (such as data correctness verification in file transfer, or data encryption) be implemented at the bottom of the network (routers/communication links) or in the end systems (applications/operating systems)?
  • Argument:
    If a function must be completed at the End-points to guarantee full correctness, then implementing that function in the lower levels is redundant and even harmful (it lowers performance and increases complexity). The lower levels should only provide the most basic, general-purpose services.
  • Example:
    File transfer. Even if every router hop guarantees no data errors (Link Layer checks), memory errors or software bugs in the routers themselves can still corrupt the file. Therefore, the receiver must ultimately verify the file’s integrity. Since the end-points must verify it anyway, doing complex verification at the bottom is a waste.
  • Conclusion: Keep the network core simple (only responsible for forwarding) and push complex logic (retransmission, flow control, encryption) to the edges.
Author: linda1729
Link: https://linda1729-blog.netlify.app/posts/2026-01-13-system-engineering-network-design/
Reprint policy: All articles in this blog are used except for special statements CC BY 4.0 reprint policy. If reproduced, please indicate source linda1729 !
计算机系统设计
评论
  TOC