Presentation is loading. Please wait.

Presentation is loading. Please wait.

Flotapr2 Analyze traffic from anywhere in the openflow network www.wookieware.com.

Published byPiers Floyd Modified over 9 years ago

Similar presentations

Presentation on theme: "Flotapr2 Analyze traffic from anywhere in the openflow network www.wookieware.com."— Presentation transcript:

1 flotapr2 Analyze traffic from anywhere in the openflow network www.wookieware.com

2 Success from failure It started with an SDN application called flotapr. It’s premise was that it could find all the conversations a target host was having and let you pick which conversation you wanted to tap into. The limiting factor was the analyzer “always” had to be on the same dpid as the source IP. I have no idea how this application ever gave the appearance of working but somehow it looked like it did. Flotapr2 was born out of flotapr’s failure. Now with flotapr2 you can pick any source, destination and analyzer port in the openflow network and all the flows will automatically be setup. There are many different types. Source flow, Destination flow, Analyzer flow and the most important flow…the convergent. This is where the path from the source to the analyzer and destination to the analyzer converge. At this point a bifurcated flow is created and the flows pushed to the dpids along the path to the analyzer are configured as one way only.

3 Typical network capture Target Host All traffic from and to host Mirror traffic to remote port Analyzer All traffic in and out of a specific port can be mirrored to another port.

4 OpenFlow network capture Source Host Traffic from src to dst & traffic from dst to src Mirror traffic to analyzer Destination Host Traffic from src to dst & traffic from dst to src Analyzer One way traffic

5 Flows  {“flow”:{“priority”:30000,”ide_timeout”:60000,”match”:[{“eth_type”:”ipv4”},{“ipv4_dst”:”1 0.132.0.20”},{“ipv4_src”:”10.132.0.10”}],”actions”:[{“output”:1}]}}  {“flow”:{“priority”:30000,”ide_timeout”:60000,”match”:[{“eth_type”:”ipv4”},{“ipv4_dst”:”1 0.132.0.10”},{“ipv4_src”:”10.132.0.20”}],”actions”:[{“output”:4}]}}  {“flow”:{“priority”:30000,”ide_timeout”:60000,”match”:[{“eth_type”:”ipv4”},{“ipv4_dst”:”1 0.132.0.20”},{“ipv4_src”:”10.132.0.10”}],”actions”:[{“output”:1},{“output”:6}]}}  {“flow”:{“priority”:30000,”ide_timeout”:60000,”match”:[{“eth_type”:”ipv4”},{“ipv4_dst”:”1 0.132.0.20”},{“ipv4_src”:”10.132.0.10”}],”actions”:[{“output”:4},{“output”:6}]}} flotapr2 verifies openflow 1.0. or 1.3 capabilities. In the event of 1.3 a table variable is supplied at the login screen and is passed to the flows along with a modified instructions set. Standard flow Bifurcated flow –Forks traffic to analyzer port or direction (Port 6)

6 Main Screen Enter credentials, The Source IP address and the Analyzer IP address

7 Select Destination IP address

8 Flow Table

9 Source and Analyzer on same dpid There are only four possible scenarios for deployment

10 Source IP Destination IP Analyzer IP Analyzer on Core Switch (Common Path) Analyzer anywhere in the openflow network

11 Destination and Analyzer on same dpid

12 All in One Source IP Destination IP Analyzer IP

13 Hard setting the flows S D A Convergent dpid

14 Getting flotapr2  flotapr2 is available in a docker image.  From a docker server: sudo docker pull xod442/flotapr2_v2  Once downloaded from dockerhub.com, start it up with :  sudo docker run -d -p 80:80 xod442/flotapr2_v2 /usr/sbin/apache2ctl -D FOREGROUND  Point a web browser at the ip address or FQDN of the docker server.  That’s it!!!

Download ppt "Flotapr2 Analyze traffic from anywhere in the openflow network www.wookieware.com."

Similar presentations

WEB AND WIRELESS AUTOMATION connecting people and processes InduSoft Web Solution Welcome.

WEB AND WIRELESS AUTOMATION connecting people and processes InduSoft Web Solution Welcome.
Visit us at www.mcscontrols.com Introduction to Computer Networks.

Visit us at Introduction to Computer Networks.
ESafe Reporter V3.0 eSafe Learning and Certification Program February 2007.

ESafe Reporter V3.0 eSafe Learning and Certification Program February 2007.
Copyright 2014 Kenneth M. Chipps Ph.D. www.chipps.com Software Defined Networking Lab Using Mininet and the Floodlight Controller Last Update 2014.02.02.

Copyright 2014 Kenneth M. Chipps Ph.D. Software Defined Networking Lab Using Mininet and the Floodlight Controller Last Update
Copyright 2014 Kenneth M. Chipps Ph.D. www.chipps.com Software Defined Networking Lab Using Mininet and the POX Controller Last Update 2014.02.04 2.1.0.

Copyright 2014 Kenneth M. Chipps Ph.D. Software Defined Networking Lab Using Mininet and the POX Controller Last Update
Networking By: Matt Motl… Programmer Brent Everson… Programming Mentor.

Networking By: Matt Motl… Programmer Brent Everson… Programming Mentor.
 The IP address and port combination at which the NetScaler appliance receives client requests for the associated web application.  A public endpoint.

 The IP address and port combination at which the NetScaler appliance receives client requests for the associated web application.  A public endpoint.
Towards Virtual Routers as a Service 6th GI/ITG KuVS Workshop on “Future Internet” November 22, 2010 Hannover Zdravko Bozakov.

Towards Virtual Routers as a Service 6th GI/ITG KuVS Workshop on “Future Internet” November 22, 2010 Hannover Zdravko Bozakov.
Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung(1203584897) SriramGopinath(1203800749)

Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung( ) SriramGopinath( )
Performance Analysis of Orb Rabin Karki and Thangam V. Seenivasan 1.

Performance Analysis of Orb Rabin Karki and Thangam V. Seenivasan 1.
Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung(1203584897) Sriram Gopinath(1203800749)

Traffic Management - OpenFlow Switch on the NetFPGA platform Chun-Jen Chung( ) Sriram Gopinath( )
DASAN NETWORKS GPON Training

DASAN NETWORKS GPON Training
Click it Apache Service will start If Skype is on, then Quit Skype and exit from Skype. Does not work if Skype is On. You can start Skype later on.

Click it Apache Service will start If Skype is on, then Quit Skype and exit from Skype. Does not work if Skype is On. You can start Skype later on.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
Networking Components

Networking Components
VMWare Workstation Installation. Starting Vmware Workstation Go to the start menu and start the VMware Workstation program. *Note: The following instructions.

VMWare Workstation Installation. Starting Vmware Workstation Go to the start menu and start the VMware Workstation program. *Note: The following instructions.
OSPF www.systemyar.net. To route, a router needs to do the following: Know the destination address Identify the sources it can learn from Discover possible.

OSPF To route, a router needs to do the following: Know the destination address Identify the sources it can learn from Discover possible.
Remote Accessing Your Home Computer Using VNC and a Dynamic DNS Name.

Remote Accessing Your Home Computer Using VNC and a Dynamic DNS Name.
Cisco 2 - Routers Perrine & modified by Brierley Page 18/18/2015 Chapter 5 IOS Internet Operating System (IOS)

Cisco 2 - Routers Perrine & modified by Brierley Page 18/18/2015 Chapter 5 IOS Internet Operating System (IOS)
Basic Network Training. Cable/DSL Modem The modem is the first link in the chain It is usually provided by the ISP and often has a coax cable connector.

Basic Network Training. Cable/DSL Modem The modem is the first link in the chain It is usually provided by the ISP and often has a coax cable connector.

Similar presentations

Ads by Google