{"title":"Implementing openflow based distributed firewall","authors":"S. Kaur, K. Kaur, Vipin Gupta","doi":"10.1109/INCITE.2016.7857611","DOIUrl":null,"url":null,"abstract":"SDN is an emerging technology which is going to drive next generation networks. Lot of companies and organizations has started using SDN applications. It is giving network administrators the flexibility in implementing their networks. But at the same time, it is bringing new security issues. To secure SDN networks, we need strong firewall application. Already some firewall applications are there but they suffer from certain shortcomings. One of the main drawbacks of existing firewall solutions is that they suffer from single point of failure due to their centralized nature and overloading of rules in single device. Other drawback of existing firewall is that they are mostly layer 2 firewalls. In this paper, we are implementing Distributed Firewall where every OpenFlow switch in a network can acts as a firewall. Plus this firewall will be capable of handling TCP, UDP and ICMP Traffic. We have tested this firewall using Mininet Emulator installed in Ubuntu 14.04 Linux installed under VirtualBox virtualization solution. We are using python based POX controller. This work is extension of our earlier work on programmable firewalls.","PeriodicalId":59618,"journal":{"name":"下一代","volume":"86 1","pages":"172-175"},"PeriodicalIF":0.0000,"publicationDate":"2016-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"12","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"下一代","FirstCategoryId":"1092","ListUrlMain":"https://doi.org/10.1109/INCITE.2016.7857611","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 12
Abstract
SDN is an emerging technology which is going to drive next generation networks. Lot of companies and organizations has started using SDN applications. It is giving network administrators the flexibility in implementing their networks. But at the same time, it is bringing new security issues. To secure SDN networks, we need strong firewall application. Already some firewall applications are there but they suffer from certain shortcomings. One of the main drawbacks of existing firewall solutions is that they suffer from single point of failure due to their centralized nature and overloading of rules in single device. Other drawback of existing firewall is that they are mostly layer 2 firewalls. In this paper, we are implementing Distributed Firewall where every OpenFlow switch in a network can acts as a firewall. Plus this firewall will be capable of handling TCP, UDP and ICMP Traffic. We have tested this firewall using Mininet Emulator installed in Ubuntu 14.04 Linux installed under VirtualBox virtualization solution. We are using python based POX controller. This work is extension of our earlier work on programmable firewalls.