| 5 | | In this experiment, we will use the Ryu controller to handle intrusion traffic. The system is the same as the one used in [wiki:GENIExperimenter/Tutorials/NFV/Ryu/LoadBalancePIwithRyu Experiment 2], where we use a RINA distributed application to get the intrusion detection results from the VNFs (i.e., Snort) as well as the load of the VNFs. When an intrusion is detected by VNFs, its information will be passed to the Ryu controller via the RINA distributed application, and then the Ryu controller will block the intrusion traffic by updating the !OpenFlow rules on the OVS switch. |
| 6 | | |
| 7 | | |
| 8 | | {{{ |
| 9 | | #!html |
| 10 | | <img src="http://csr.bu.edu/rina/grw-bu2016/tutorial_files/image060.gif" hspace=50> |
| | 5 | In this experiment, we will use the Ryu controller to handle intrusion traffic in the form of port scans generated by the Nmap application. In this system, we use a RINA distributed application to get the intrusion detection alerts from the VNFs (i.e., Snort) as well as the load of the VNFs. When an intrusion is detected by the VNFs, the information will be passed to the Attack Analyzer residing on the controller node via the RINA distributed application. The Attack Analyzer informs the Ryu controller about the attack, which then blocks the intrusion traffic by updating the OpenFlow rules on the OVS switch. |
| | 6 | |
| | 7 | {{{ |
| | 8 | #!html |
| | 9 | <img src="https://raw.githubusercontent.com/akhtarnabeel/public/master/Figures/MainCT_updated.png" style="width:500px;" hspace=20> |
