Abstract
Software defined networking (SDN) technology decouples traditional network architectures to control planes and data planes, providing a new solution for developing new network applications and future Internet technologies. However, with the advent of SDN-related network equipment, security issues have become an important factor restricting its development. Traditional firewall in the face of constantly updated a large number of network attacks loopholes, the urgent need for the firewall to deal with dangerous mechanisms for innovation. This paper presents a SDN firewall architecture that describes its mode of operation and deploys it in the control plane. Simulation shows that the firewall policy has high security in the software defined network environment.
Highlights
In 2008, Professor Nick Meowm of Stanford University and others proposed the concept of OpenFlow, an open protocol standard funded by the Clean Slate program[1]
Based on the Openflow protocol Software defined networking (SDN) technology is a new type of network architecture, the central controller in the form of software exists in the network architecture of the control layer, the original data forwarding layer of each device on the control part of the global centralized management of the network to be Replacement, to achieve the entire network operation of the centralized control and strategy issued
Under the SDN network architecture standardized by the OpenFlow protocol, the control forwarding structure of the network enables the control forwarding policy to exist in the controller
Summary
In 2008, Professor Nick Meowm of Stanford University and others proposed the concept of OpenFlow, an open protocol standard funded by the Clean Slate program[1]. Paper [5] proposed a new firewall security system based on the architecture of software defined networking They analyse the architecture and main functional modules of this novel firewa system, and expatiate on the data flow procedure of the firewal. In the SDN architecture, the deployment and delivery of firewall policies have their own unique features: 1) flexible, through the programmable interface provided by the SDN controller, flexibility to develop a differentiated firewall strategy to build a flexible response to different security Demand firewall application; 2) high efficiency, because the SDN controller in the control layer can monitor the running status of the network infrastructure in real time so that the state of the firewall policy operation can be monitored and managed more timely and accurately, timely feedback 3) The flow table structure standardized by OpenFlow protocol in a fine-grained, SDN environment flattens the processing level for forwarding the data packet in the network, so that the data in the network is controlled by the OpenFlow protocol Under the standard data forwarding processing to meet the fine-grained requirements. The SDN firewall policy meets the traditional firewall access control and isolation functions, and further abstract and processes the fields and network resources in the OpenFlow flow entry so that the firewall can have coarse-grained and fine-grained Selective space
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
