Custom Query (1408 matches)
Results (61 - 63 of 1408)
Ticket | Resolution | Summary | Owner | Reporter |
---|---|---|---|---|
#1322 | fixed | Size-based flow management enabling dynamic DMZ | ||
Description |
Demo description paragraph (three sentence minimum): Problem description: The current networking solutions for cybersecurity adopt static policies. Packets from and to supercomputers go through a DPI (deep packet inspection) device for security inspection before being routed toward their destinations. In a network configuration where the bandwidth of the links is equal to 10 gbps and the speed of the DPI is equal to 3 gbps, this device throughput represents the system bottleneck, bringing the bandwidth of the path down to 3 gbps. The adoption of an OpenFlow router allows us to adapt the cybersecurity policies, by dynamically managing the flow forwarding rules. We divide the flows generated by the supercomputers into two groups based on flow sizes: one group consists of elephant flows (the flow size is larger than a threshold) and the other group contains mice flows (the flow size is smaller than a threshold.) The goals of our dynamic flow management are to achieve higher network performance and to gain higher utilization of the network security mechanism. Demo: The client sends multiple flows to the server. The flows are forwarded by a software switch (OpenFlow switch) to the DPI first. Flows sent to the DPI are inspected for network security purposes. When the software switch detects a legitimate elephant flow, the elephant flow will be forwarded directly to the server bypassing the DPI. In this case, we avoid sending the elephant flow through the network bottleneck of the DPI to achieve higher network performance. By our dynamic flow management, we are able to monitor how the multiple flow entries are set up in the software switch flow table and how the flows are rerouted in the network. Equipment: software switch (OpenVSwitch on Ubuntu), Server (iperf on Windows 7), Client (iperf on Windows 7), DPI(OpenVSwitch on Ubuntu), OpenFlow controller(POX on Ubuntu). List of equipment that will need AC connections (e.g. laptop, switch, monitor): 6
|
|||
#480 | fixed | S2.a Completion | ||
Description |
|
|||
#481 | fixed | Milestone S2.c Completion | ||
Description |
We have completed the integration of lab sensor nodes (totally 12). The OKGems web portal is available at http://okgems.cs.okstate.edu/. Although it allows remote access but we haven't published the site for testing. |