In stateful Software Defined Network (SDN) data planes, network switches hold some local flow-related states thanks to which they are able to perform decisions by locally executing simple algorithms. While stateful data planes provide better reactiveness in respect to vanilla SDN, states are still bounded to single switches which represents a significant restraint for network-wide applications. To deal with the current limitations of stateful data planes we introduce and provide design guidelines for LODGE, a model according to which distributed network applications are able to make local decisions at each switche based on some global variables shared across other switches. We describe the implementation of LODGE with a basic application providing support for the detection of Distributed Denial of Service (DDoS) attack in a scenario of stateful data planes involving P4 and Open Packet Processor (OPP) enabled switches. We validate the two implementations in a small emulated testbed and we show the beneficial effects on the reduction of the total network traffic.
LODGE: LOcal Decisions on Global statEs in programmable data planes / Sviridov, German; Bonola, Marco; Tulumello, Angelo; Giaccone, Paolo; Bianco, Andrea; Bianchi, Giuseppe. - ELETTRONICO. - (2018), pp. 28-36. ((Intervento presentato al convegno IEEE Conference on Network Softwarization and Workshops (NetSoft) tenutosi a Montreal, Canada nel 2018 [10.1109/NETSOFT.2018.8460115].
Titolo: | LODGE: LOcal Decisions on Global statEs in programmable data planes | |
Autori: | ||
Data di pubblicazione: | 2018 | |
Abstract: | In stateful Software Defined Network (SDN) data planes, network switches hold some local flow-rel...ated states thanks to which they are able to perform decisions by locally executing simple algorithms. While stateful data planes provide better reactiveness in respect to vanilla SDN, states are still bounded to single switches which represents a significant restraint for network-wide applications. To deal with the current limitations of stateful data planes we introduce and provide design guidelines for LODGE, a model according to which distributed network applications are able to make local decisions at each switche based on some global variables shared across other switches. We describe the implementation of LODGE with a basic application providing support for the detection of Distributed Denial of Service (DDoS) attack in a scenario of stateful data planes involving P4 and Open Packet Processor (OPP) enabled switches. We validate the two implementations in a small emulated testbed and we show the beneficial effects on the reduction of the total network traffic. | |
ISBN: | 9781538646335 | |
Appare nelle tipologie: | 4.1 Contributo in Atti di convegno |
File in questo prodotto:
File | Descrizione | Tipologia | Licenza | |
---|---|---|---|---|
lodge.pdf | Post-print pdf | 2. Post-print / Author's Accepted Manuscript | Non Pubblico - Accesso privato/ristretto | Administrator Richiedi una copia |
cameraready.pdf | Camera ready | 2. Post-print / Author's Accepted Manuscript | PUBBLICO - Tutti i diritti riservati | Visibile a tuttiVisualizza/Apri |
http://hdl.handle.net/11583/2721448