Changes between Version 4 and Version 5 of GENIEducation/SampleAssignments/OpenFlowAssignment/ExerciseLayout/Execute
- Timestamp:
- 05/20/13 11:13:46 (12 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
GENIEducation/SampleAssignments/OpenFlowAssignment/ExerciseLayout/Execute
v4 v5 84 84 '''Firewall Semantics''' [[BR]] 85 85 When an OpenFlow device connects to your controller (that is, you receive a switch_ready controller event), your controller should send it instructions to: 86 - 86 87 - Pass all packets matching allowed connections to your controller 87 -Drop all other packets [[BR]]88 * Drop all other packets [[BR]] 88 89 Priorities are going to be critical to the correct operation of your controller, so set them carefully. Higher priority rules match before lower priority rules, and the first matching rule is followed. See Section 3.4 of the [http://www.openflow.org/documents/openflow-spec-v1.1.0.pdf OpenFlow specification] for more details on flow matching. [[BR]] 89 90 Upon receiving a packet from the OpenFlow device (via a ''OFPT_PACKET_IN'' message), your controller should: 91 - 90 92 - Ensure that the packet matches a rule in the configuration 91 93 - Insert a flow match in the OpenFlow device for the complete four-tuple matching the incoming packet … … 100 102 '''Hints''' [[BR]] 101 103 The following list of hints may help you design and debug your implementation more rapidly. 104 - 102 105 - Remember that OpenFlow switches are an Ethernet switch first and foremost, and that not all packets on an Ethernet are IP. In particular, your hosts will require ARP in order to pass IP traffic through the switch! 103 106 - You may pass ICMP packets without limitation, to make debugging easier. 104 107 - The Trema ''Match'' class has a ''compare()'' method that accepts a ''Match'' argument and may be useful to you — consider the ''ExactMatch#from()'' method in conjunction. 105 108 106 109 '''Extra Credit''' [[BR]] 107 110 For extra credit (if permitted by your instructor), generate TCP reset segment at the firewall to reset rejected connections. 108 111 … … 121 124 122 125 123 '''3.3 Load Balancing''' [[BR]]126 - '''3.3 Load Balancing''' [[BR]] 124 127 125 128 = [wiki:GENIEducation/SampleAssignments/OpenFlowAssignment/ExerciseLayout/Finish Next: Teardown Experiment] =