Beruflich Dokumente
Kultur Dokumente
LIMITATION
Approach 1:
Potential Bottleneck
Increased packet delivery time
Switch may buffer the packets
Approach 2:
High network overhead
Unnecessary overhead
Complex monitors required
FLEXAM
Flexible sampling extension for monitoring and security applications in
OpenFlow.
SAMPLING
Two types of sampling is used in the proposed solution.
Stochastic Sampling
Deterministic Sampling
APPLICATIONS
Various potential applications
Traffic classification
Quality of service
Diagnostics and troubleshooting
In depth look at
CONCLUSION
Proposed FleXam
FIREWALL
Floodlight is a signature based firewall, the first packet of
each flow triggers a packet-in message which is compared
with a set of existing firewall rules.
IDS TOOLS
SnortFlow
BroFlow
REFERENCES
Shirali-Shahreza, Sajad, and Yashar Ganjali. "Flexam: Flexible sampling extension for
monitoring and security applications in openflow." Proceedings of the second ACM
SIGCOMM workshop on Hot topics in software defined networking. ACM, 2013.
Mehdi, Syed Akbar, Junaid Khalid, and Syed Ali Khayam. "Revisiting traffic anomaly
Project Floodlight,. "Floodlight Openflow Controller -". N.p., 2016. Web. 12 Jan. 2016.
Porras, Philip, et al. "A security enforcement kernel for OpenFlow networks." Proceedings
of the first workshop on Hot topics in software defined networks. ACM, 2012.