2019/7/26 OpenFlow-Enabled User Traffic Profiling in Campus Software Defined Networks Presenter: Wei-Li,Wang Date: 2016/1/4 Author: Taimur Bakhshi and.

Slides:

Advertisements

Similar presentations

SDN and Openflow.

Advertisements

OpenFlow-Based Server Load Balancing GoneWild Author : Richard Wang, Dana Butnariu, Jennifer Rexford Publisher : Hot-ICE'11 Proceedings of the 11th USENIX.

Packet Classification using Rule Caching Author: Nitesh B. Guinde, Roberto Rojas-Cessa, Sotirios G. Ziavras Publisher: IISA, 2013 Fourth International.

A Regular Expression Matching Algorithm Using Transition Merging Department of Computer Science and Information Engineering National Cheng Kung University,

A Hybrid IP Lookup Architecture with Fast Updates Author : Layong Luo, Gaogang Xie, Yingke Xie, Laurent Mathy, Kavé Salamatian Conference: IEEE INFOCOM,

OpenFlow：Enabling Innovation in Campus Network

Deterministic Finite Automaton for Scalable Traffic Identification: the Power of Compressing by Range Authors: Rafael Antonello, Stenio Fernandes, Djamel.

SDN Management Layer DESIGN REQUIREMENTS AND FUTURE DIRECTION NO OF SLIDES : 26 1.

Memory-Efficient Regular Expression Search Using State Merging Author: Michela Becchi, Srihari Cadambi Publisher: INFOCOM th IEEE International.

SwinTop: Optimizing Memory Efficiency of Packet Classification in Network Author: Chen, Chang; Cai, Liangwei; Xiang, Yang; Li, Jun Conference: Communication.

Selective Packet Inspection to Detect DoS Flooding Using Software Defined Networking Author : Tommy Chin Jr., Xenia Mountrouidou, Xiangyang Li and Kaiqi.

2017/4/26 Rethinking Packet Classification for Global Network View of Software-Defined Networking Author: Takeru Inoue, Toru Mano, Kimihiro Mizutani, Shin-ichi.

Early Detection of DDoS Attacks against SDN Controllers

OpenFlow MPLS and the Open Source Label Switched Router Department of Computer Science and Information Engineering, National Cheng Kung University, Tainan,

Shadow MACs: Scalable Label- switching for Commodity Ethernet Author: Kanak Agarwal, John Carter, Eric Rozner and Colin Dixon Publisher: HotSDN 2014 Presenter:

Updating Designed for Fast IP Lookup Author : Natasa Maksic, Zoran Chicha and Aleksandra Smiljani´c Conference: IEEE High Performance Switching and Routing.

Forwarding Programming in Protocol- Oblivious Instruction Set Author : Jingzhou Yu, Xiaozhong Wang, Jian Song, Yuanming Zheng, Haoyu Song Conference: 2014.

Lightweight Traffic-Aware Packet Classification for Continuous Operation Author: Shariful Hasan Shaikot, Min Sik Kim Presenter: Yen-Chun Tseng Date: 2014/11/26.

Packet Classification Using Dynamically Generated Decision Trees

GFlow: Towards GPU-based High- Performance Table Matching in OpenFlow Switches Author : Kun Qiu, Zhe Chen, Yang Chen, Jin Zhao, Xin Wang Publisher : Information.

LOP_RE: Range Encoding for Low Power Packet Classification Author: Xin He, Jorgen Peddersen and Sri Parameswaran Conference : IEEE 34th Conference on Local.

Stochastic Pre-Classification for SDN Data Plane Matching Author : Luke McHale, C. Jasson Casey, Paul V. Gratz, Alex Sprintson Conference: 2014 IEEE 22nd.

SRD-DFA Achieving Sub-Rule Distinguishing with Extended DFA Structure Author: Gao Xia, Xiaofei Wang, Bin Liu Publisher: IEEE DASC (International Conference.

Cisco Router Technology. Overview Topics :- Overview of cisco Overview of cisco Introduction of Router Introduction of Router How Router Works How Router.

Deep Packet Inspection as a Service Author : Anat Bremler-Barr, Yotam Harchol, David Hay and Yaron Koral Conference: ACM 10th International Conference.

LightFlow : Speeding Up GPU-based Flow Switching and Facilitating Maintenance of Flow Table Author : Nobutaka Matsumoto and Michiaki Hayashi Conference:

JA-trie: Entropy-Based Packet Classiﬁcation Author: Gianni Antichi, Christian Callegari, Andrew W. Moore, Stefano Giordano, Enrico Anastasi Conference.

A Multi-dimensional Packet Classification Algorithm Based on Hierarchical All-match B+ Tree Author: Gang Wang, Yaping Lin*, Jinguo Li, Xin Yao Publisher:

Gijeong Kim ,Junho Kim ,Sungwon Lee Kyunghee University

2018/4/23 Dynamic Load-balanced Path Optimization in SDN-based Data Center Networks Author: Yuan-Liang Lan , Kuochen Wang and Yi-Huai Hsu Presenter: Yi-Hsien.

Minimizing latency of critical traffic through SDN

Software defined networking: Experimental research on QoS

2018/5/8 An approach for detecting encrypted insider attacks on OpenFlow SDN Networks Author: Charles V. Neu , Avelino F. Zorzox , Alex M. S. Orozcoy and.

Distributed Mobility Management for Future 5G Networks : Overview and Analysis of Existing Approaches IEEE Wireless Communications January 2015 F. Giust,

A DFA with Extended Character-Set for Fast Deep Packet Inspection

2018/6/5 Centralized Retransmission Management with SDN in Multihop Wireless Access Network Author: Bong-Hwan Oh , Jaiyoung Lee Presenter: Yi-Hsien Wu.

2018/6/26 An Energy-efficient TCAM-based Packet Classification with Decision-tree Mapping Author: Zhao Ruan, Xianfeng Li , Wenjun Li Publisher: 2013.

Cisco Router Technology

2018/11/19 Source Routing with Protocol-oblivious Forwarding to Enable Efficient e-Health Data Transfer Author: Shengru Li, Daoyun Hu, Wenjian Fang and.

Parallel Processing Priority Trie-based IP Lookup Approach

2018/12/10 Energy Efficient SDN Commodity Switch based Practical Flow Forwarding Method Author: Amer AlGhadhban and Basem Shihada Publisher: 2016 IEEE/IFIP.

2018/12/29 A Novel Approach for Prefix Minimization using Ternary trie (PMTT) for Packet Classification Author: Sanchita Saha Ray, Abhishek Chatterjee,

Binary Prefix Search Author: Yeim-Kuan Chang

2019/1/1 High Performance Intrusion Detection Using HTTP-Based Payload Aggregation 2017 IEEE 42nd Conference on Local Computer Networks (LCN) Author: Felix.

Memory-Efficient Regular Expression Search Using State Merging

Virtual TCAM for Data Center Switches

Scalable Multi-Match Packet Classification Using TCAM and SRAM

A New String Matching Algorithm Based on Logical Indexing

2019/5/2 Using Path Label Routing in Wide Area Software-Defined Networks with OpenFlow ICNP = International Conference on Network Protocols Presenter：Hung-Yen.

Compact DFA Structure for Multiple Regular Expressions Matching

Online NetFPGA decision tree statistical traffic classifier

2019/5/10 A Technique for Classification of VoIP Flows in UDP Media Streams using VoIP Signalling Traffic Author: Tejmani Sinam, Irengbam Tilokchan Singh,

2019/5/8 BitCoding Network Traffic Classification Through Encoded Bit Level Signatures Author: Neminath Hubballi, Mayank Swarnkar Publisher/Conference:

2019/5/13 A Weighted ECMP Load Balancing Scheme for Data Centers Using P4 Switches Presenter：Hung-Yen Wang Authors：Peng Wang, George Trimponias, Hong Xu,

SDN-Guard: DoS Attacks Mitigation in SDN Networks

Firewall Installation

QoS Constrained Path Optimization Algorithm in NFV/SDN Environment

Power-efficient range-match-based packet classification on FPGA

OpenSec：Policy-Based Security Using Software-Defined Networking

A Hybrid IP Lookup Architecture with Fast Updates

2019/9/14 The Deep Learning Vision for Heterogeneous Network Traffic Control Proposal, Challenges, and Future Perspective Author: Nei Kato, Zubair Md.

2019/9/3 Adaptive Hashing Based Multiple Variable Length Pattern Search Algorithm for Large Data Sets 比對 Simple Pattern 的方法是基於 Hash 並且可以比對不同長度的 Pattern。

Lightweight Security Scheme for Vehicle Tracking System Using CoAP

2019/10/9 A Weighted ECMP Load Balancing Scheme for Data Centers Using P4 Switches Presenter：Hung-Yen Wang Authors：Jin-Li Ye, Yu-Huang Chu, Chien Chen.

Authors: Ding-Yuan Lee, Ching-Che Wang, An-Yeu Wu Publisher: 2019 VLSI

MEET-IP Memory and Energy Efficient TCAM-based IP Lookup

Towards TCAM-based Scalable Virtual Routers

2019/11/12 Efficient Measurement on Programmable Switches Using Probabilistic Recirculation Presenter：Hung-Yen Wang Authors：Ran Ben Basat, Xiaoqi Chen,

Discussion Issues on IMS-based NGN

Presentation transcript:

2019/7/26 OpenFlow-Enabled User Traffic Profiling in Campus Software Defined Networks Presenter: Wei-Li,Wang Date: 2016/1/4 Author: Taimur Bakhshi and Bogdan Ghita 2016 IEEE 12th International Conference on Wireless and Mobile Computing, Networking and Communications (WiMob) Department of Computer Science and Information Engineering National Cheng Kung University, Taiwan R.O.C. CSIE CIAL Lab 1

2019/7/26 Introduction OpenFlow protocol, providing per-flow monitoring and management of OpenFlow compliant SDN switches. The OpenFlow protocol also caters for improving the individual service performance by guaranteeing quality of service through isolated application flow metering. National Cheng Kung University CSIE Computer & Internet Architecture Lab CSIE CIAL Lab

Introduction However, isolated application performance, which is the default traffic optimization method in SDN, may not be suitable for all campus users, particularly the users using different set of applications to the ones optimized. National Cheng Kung University CSIE Computer & Internet Architecture Lab

Introduction Profiling user traffic based on application trends may more accurately express user activities and aid administrators in aligning optimization solutions to the inherent campus user classes instead of individual applications. National Cheng Kung University CSIE Computer & Internet Architecture Lab

Methodology The proposed traffic profiling methodology comprises of two main components (i) OpenFlow traffic monitor and (ii) the traffic profiling engine. National Cheng Kung University CSIE Computer & Internet Architecture Lab

Methodology – Traffic Monitor National Cheng Kung University CSIE Computer & Internet Architecture Lab

Methodology – Traffic Monitor Collected from a realistic academic network. Two weeks, 42 users. Linux monitoring machine (VM1) running an Open vSwitch (SW1) and Ryu SDN controller instance connected to the departmental LAN. Port monitoring was enabled at the default gateway (SW2) to replicate all traffic to and from each user to the VM1 interface (virtual switch SW1). National Cheng Kung University CSIE Computer & Internet Architecture Lab

Methodology – Traffic Monitor 2019/7/26 Methodology – Traffic Monitor Ryu controller to collect per user flow statistics. All user machines used static IP National Cheng Kung University CSIE Computer & Internet Architecture Lab CSIE CIAL Lab

Methodology – Traffic Monitor Flow installation. packet_in packet_out Statistics collection flow_stats table_stats flow-removed National Cheng Kung University CSIE Computer & Internet Architecture Lab

Methodology – Traffic Monitor 2019/7/26 Methodology – Traffic Monitor Since the purpose of the experiment was data collection and not actual flow forwarding and OpenFlow does not prevent flow installation towards a blocked port, virtual port2 on SW1 was set to blocking mode (sink). National Cheng Kung University CSIE Computer & Internet Architecture Lab CSIE CIAL Lab

Methodology – Traffic Profiling Engine User traffic collected by the traffic monitor was classified by matching seven-tuple traffic records against source and destination IP addresses and ports used by the respective users and campus servers. National Cheng Kung University CSIE Computer & Internet Architecture Lab

Methodology – Traffic Profiling Engine National Cheng Kung University CSIE Computer & Internet Architecture Lab

Methodology – Traffic Profiling Engine National Cheng Kung University CSIE Computer & Internet Architecture Lab

User Traffic Profile As shown in Fig. 5, the variance between individual values is maximum until k=6, however, subsequent values of k (≥6) show minimum change in the successive overall variance (<0.05%). Therefore, for the present study, k=6 provided an optimal number of user profiles fitting the sample space used for further analysis. National Cheng Kung University CSIE Computer & Internet Architecture Lab

User Traffic Profile – Extracted Profiles 2019/7/26 User Traffic Profile – Extracted Profiles web browsing (39%) Communications(64.5%) Enterprise(50.3) National Cheng Kung University CSIE Computer & Internet Architecture Lab CSIE CIAL Lab

User Traffic Profile – Extracted Profiles National Cheng Kung University CSIE Computer & Internet Architecture Lab

User Traffic Profile – Extracted Profiles National Cheng Kung University CSIE Computer & Internet Architecture Lab

User Traffic Profile – Extracted Profiles National Cheng Kung University CSIE Computer & Internet Architecture Lab

User Traffic Profile – Profiling Computational Cost National Cheng Kung University CSIE Computer & Internet Architecture Lab

User Traffic Profile – Control Channel Overhead National Cheng Kung University CSIE Computer & Internet Architecture Lab

User Traffic Profile – Control Channel Overhead National Cheng Kung University CSIE Computer & Internet Architecture Lab

User Traffic Profile – Control Channel Overhead National Cheng Kung University CSIE Computer & Internet Architecture Lab