Flexible Access Management System for Campus VLAN Based on OpenFlow 2011 IEEE/IPSJ International Symposium on Applications and the Internet Yasuhiro Yamasaki.

Slides:

Advertisements

Similar presentations

eduroam Delegate Authentication System with Shibboleth SSO

Advertisements

LAN Segmentation Virtual LAN (VLAN).

Supercharging PlanetLab : a high performance, Multi-Application, Overlay Network Platform Written by Jon Turner and 11 fellows. Presented by Benjamin Chervet.

5.1 Overview of Network Access Protection What is Network Access Protection NAP Scenarios NAP Enforcement Methods NAP Platform Architecture NAP Architecture.

Southampton Open Wireless Network The Topology Talk.

Oct 12, 2004CS573: Network Protocols and Standards1 Virtual LANs Network Protocols and Standards Autumn

Copyright © 2015 John Wiley & Sons, Inc. All rights reserved. 8-1 FitzGerald ● Dennis ● Durcikova Prepared by Taylor M. Wells: College of Business Administration,

Virtual Private Networks. Why VPN Fast, secure and reliable communication between remote locations –Use leased lines to maintain a WAN. –Disadvantages.

1 Version 3.0 Module 8 Virtual LANs. 2 Version 3.0.

VLANs (Virtual LANs) CS 158B Elaine Lim Allison Nham.

VLANs Semester 3, Chapter 3 Allan Johnson Website:

Chapter 16 AAA. AAA Components  AAA server –Authenticates users accessing a device or network –Authorizes user to perform specific activities –Performs.

Institute of Technology, Sligo Dept of Computing Semester 3, version Semester 3 Chapter 3 VLANs.

Jan 10, 2008CS573: Network Protocols and Standards1 Virtual LANs Network Protocols and Standards Winter

Jennifer Rexford Princeton University MW 11:00am-12:20pm SDN Software Stack COS 597E: Software Defined Networking.

© Wiley Inc All Rights Reserved. CCNA: Cisco Certified Network Associate Study Guide CHAPTER 8: Virtual LANs (VLANs)

(part 3).  Switches, also known as switching hubs, have become an increasingly important part of our networking today, because when working with hubs,

CECS 474 Computer Network Interoperability Tracy Bradley Maples, Ph.D. Computer Engineering & Computer Science Cal ifornia State University, Long Beach.

Virtual LANs. VLAN introduction VLANs logically segment switched networks based on the functions, project teams, or applications of the organization regardless.

Sybex CCNA Chapter 9: VLAN’s Instructor & Todd Lammle.

CPMT 1449 Computer Networking Technology – Lesson 1

1 Lecture #6 Switch – VLAN Asst.Prof. Dr.Anan Phonphoem Department of Computer Engineering, Faculty of Engineering, Kasetsart University, Bangkok, Thailand.

Chapter 5 Networks Communicating and Sharing Resources

LECTURE 9 CT1303 LAN. LAN DEVICES Network: Nodes: Service units: PC Interface processing Modules: it doesn’t generate data, but just it process it and.

1 Week #7 Network Access Protection Overview of Network Access Protection How NAP Works Configuring NAP Monitoring and Troubleshooting NAP.

Virtual LAN Design Switches also have enabled the creation of Virtual LANs (VLANs). VLANs provide greater opportunities to manage the flow of traffic on.

Semester 3, v Chapter 3: Virtual LANs

McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 Chapter 2 Network Models.

Professor OKAMURA Laboratory. Othman Othman M.M. 1.

10/18/2007 EETS Bluetooth Bluetooth Architecture Bluetooth Applications The Bluetooth Protocol Stack The Bluetooth Radio Layer The Bluetooth Baseband.

NetCloud 2013 Non-Tunneling Edge-Overlay Model using OpenFlow for Cloud Datacenter Networks Nagoya Institute of Technology, Japan Ryota Kawashima and Hiroshi.

11 SECURING YOUR NETWORK PERIMETER Chapter 10. Chapter 10: SECURING YOUR NETWORK PERIMETER2 CHAPTER OBJECTIVES  Establish secure topologies.  Secure.

VIRTUAL PRIVATE NETWORK By: Tammy Be Khoa Kieu Stephen Tran Michael Tse.

Architecture of High-speed Wireless ATM Network Original author: Anna Hac University of Hawaii at Manoa Presented by Wei Wang York University.

Chapter 8: Virtual LAN (VLAN)

Eduroam JP and development of UPKI roaming Yoshikazu Watanabe*, Satoru Yamano* Hideaki Goto**, Hideaki Sone** * NEC Corporation, Japan ** Tohoku University,

VIRTUAL LANS. A station is considered part of a LAN if it physically belongs to that LAN. The criterion of membership is geographic What happens if we.

© 1999, Cisco Systems, Inc. Module 9: Understanding Virtual LANs.

Chapter 7 Backbone Network. Announcements and Outline Announcements Outline Backbone Network Components  Switches, Routers, Gateways Backbone Network.

1 CSCD 433 Network Programming Fall 2011 Lecture 5 VLAN's.

Configuring Network Access Protection

輔大資工所在職研一報告人：林煥銘學號： Public Access Mobility LAN: Extending The Wireless Internet into The LAN Environment Jun Li, Stephen B. Weinstein, Junbiao.

Cisco S3C3 Virtual LANS. Why VLANs? You can define groupings of workstations even if separated by switches and on different LAN segments –They are one.

Chapter 3 - VLANs. VLANs Logical grouping of devices or users Configuration done at switch via software Not standardized – proprietary software from vendor.

The University of Bolton School of Games Computing & Creative Technologies LCT2516 Network Architecture CCNA Exploration LAN Switching and Wireless Chapter.

McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 Chapter 16 Connecting LANs, Backbone Networks, and Virtual LANs.

Configuring VLAN Chapter 14 powered by DJ 1. Chapter Objectives At the end of this Chapter you will be able to:  Understand basic concept of VLAN  Configure.

Rehab AlFallaj.  Network:  Nodes: Service units: PC Interface processing Modules: it doesn’t generate data, but just it process it and do specific task.

Ethernet Virtual LANs Hubs versus Switches –Hubs broadcast bits out all ports –Switches usually send a frame out a one port More fundamentally –In unicasting,

VLAN Cisco (Router/Switch)

Author: Weirong Jiang and Viktor K. Prasanna Publisher: The 18th International Conference on Computer Communications and Networks (ICCCN 2009) Presenter:

Chabot College ET Cisco Semester 3 Chapter 3 VLANs M. McGregor, Los Medanos College, Pittsburg, CA.

OpenFlow: Enabling Innovation in Campus Networks Yongli Chen.

Fabric: A Retrospective on Evolving SDN Presented by: Tarek Elgamal.

1 © 2007 Cisco Systems, Inc. All rights reserved.Cisco Public Network Architecture Characteristics  Explain four characteristics that are addressed by.

Virtual Local Area Networks In Security By Mark Reed.

VLAN Cisco (Router/Switch)

Virtual Private Networks

HybNET: Network Manager for a Hybrid Network Infrastructure

Virtual Local Area Networks or VLANs

HELLO WORLD!!! Run Project 2: WELCOME Subject: Virtual LAN’s

Heitor Moraes, Marcos Vieira, Italo Cunha, Dorgival Guedes

Implementing Network Access Protection

Chapter 7 Backbone Network

PPPoE Internet Point to Point Protocol over Ethernet

Updates on Recent Activities in eduroam-JP

NTHU CS5421 Cloud Computing

2019/5/2 Using Path Label Routing in Wide Area Software-Defined Networks with OpenFlow ICNP = International Conference on Network Protocols Presenter：Hung-Yen.

Presentation transcript:

Flexible Access Management System for Campus VLAN Based on OpenFlow 2011 IEEE/IPSJ International Symposium on Applications and the Internet Yasuhiro Yamasaki Yoshinori Miyamoto Junichi Yamato Yasuhiro Yamasaki *, Yoshinori Miyamoto, Junichi Yamato, Hideaki Goto, Hideaki Sone Tohoku University, Japan *NEC Corporation, Japan 1

Outline Backgrounds VLAN(Virtual Local Area Network) RADIUS(Remote Authentication Dial In User Service) SDN(Software Defined Networking) OpenFlow Campus VLAN Campus VLAN / Problems Different between General network and OpenFlow Evaluations Summary 2

Backgrounds VLAN(Virtual Local Area Network) RADIUS(Remote Authentication Dial In User Service) SDN(Software Defined Networking) OpenFlow 3

VLAN(Virtual Local Area Network) A virtual local area network (virtual LAN) is the logical grouping of network nodes. A virtual LAN allows geographically dispersed network nodes to communicate as if they were physically on the same network. 4

RADIUS(Remote Authentication Dial In User Service) Authentication Authorization Accounting 5

SDN(Software Defined Networking) 6

7

OpenFlow 8

Campus VLAN Using a lot of VLANs in campus networks – Department, Floor, Guest-/home-users and so on For example, roaming system such as eduroam – The number of VLAN is (SSID/AP The number of VLAN is (SSID/AP × Area). 9

Campus VLAN Packets are forwarded based on VLAN tag – Each network must be set to each VLAN configuration. – Each special field such as VLAN tag is necessary in the header of packet. 10

Campus VLAN / Problems IEEE802.1Q has some limitations. – ID field of VLAN is 12bits (= 4096 ID) – It is difficult to manage multi stacked VLAN The system configuration work is laborious. – It is necessary to set configuration to all network nodes 11

Differences between General network and OpenFlow Network node: dumb but fast Control server: intelligent as is expected 12

System Architecture The system configuration becomes lighter The number of ID isn’t restricted 13

14

Evaluations The access management function The times for communications 15

Summary The system manages communication access by virtual group ID (GID) managed in OpenFlow controller instead of VLAN. The number of ID is hardly restricted and even if GID is changed, the configuration of switches need not be changed because GID is only used in OpenFlow controller. 16