Attack on SDN

Others 2022-04-22 15:05:22 views: 0

Attack on SDN

What is SDN?

  • It is no longer an OSI seven-layer model, but a brand-new SDN three-layer model .
  • It originated from Ethane, a project led by a doctoral student at Stanford University: through a centralized controller (NOX), network administrators can define network flow-based control policies, and use this policy on network devices to control the entire network. .
  • Openflow switches do not have separate CPUs. All path calculation, security policy and other functions are implemented by the controller. Then it is sent to the switch through the Openflow protocol. The switch forwards through the flow table (Flow Table).
  • Control forwarding is completely separated and programmable (change the script of the controller, you can change the network).

NFV (Network Function Virtualization)

  • The concept of NFV was proposed by network operators.
  • Many functions in the real network (firewall, load balancing, etc.) are implemented by dedicated hardware (the functions cannot be changed after death).
  • Dedicated hardware has the problems of function solidification, difficult deployment, and high cost.
  • So the operator proposes to integrate the above functions into a general server . These functions are implemented through software . (May be to open several virtual machines, each responsible for the realization of some functions), to achieve programmability .
  • SDN also hopes to convert these hardware devices into software plug-ins deployed in the controller. One brain can solve all problems, the following is only responsible for forwarding.

true SDN

Difference between SDN and traditional network

SDN three-layer structure

  • Forwarding layer: In a narrow sense, it is a bunch of switches. Broadly speaking, devices that support the Openflow protocol can be said to be Openflow devices. There is no strict distinction between routers and switches in SDN, as long as they support the Openflow protocol.
  • Control layer: The server where the controller is installed (the controller is software!).
  • Application Layer: Scripts or written functions.
    For example, if you want to make a device in the forwarding layer a hub. Write a Python script here at the application layer, and then run the script in the controller. At this time, the controller sends the flow table to the forwarding layer through the Openflow protocol, which realizes the function of the hub. (If you want to achieve other functions, you can change the script to achieve software and programmable features! )

SDN Network Interaction Transformation

  • In the past, the device was controlled by a specific language or command line of the device. In SDN, Python or Java script is used to implement functions at the application layer.

Guess you like

Origin http://43.154.161.224:23101/article/api/json?id=325115320&siteId=291194637
Recommended
Linus is the most active in "eating dog food"!
Ranking
Share good programmer web front-end array and sorting, de-duplication and random roll call
Compilation error caused by cv_bridge and python version problems error: return-statement with no value, in function returning'void*' [-fpe
魔众帮助中心系统 v3.1.0 首页切换器,界面优化
Die beim Millimeterwellenradar-Integrationstest aufgetretene Grube (Multiprozessbindung an einen UDP-Port verursacht Probleme)
How to suppress the "requires transitive directive for an automatic module" warning properly?
LeetCode-1743. Restore the Array From Adjacent Pairs-Analysis and Code (Java)
Summer 2019 Summer soft essay 7 workers
Python中Assert断言的使用语法和例子
LeetCode one question per day (2021-2-3 sliding window median)
Fairchild, the ancestor of semiconductors, the legend of the first trillion-dollar start-up
Daily
More
2024-05-20(5)
2024-05-19(0)
2024-05-18(31)
2024-05-17(6)
2024-05-16(23)
2024-05-15(5)
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)

Code World

© 2018 codetd.com