摘要
由于SDN具有可软件定义的特性和控制与转发相分离的特点,SDN环境下网络流量测控与传统的IP网络显著不同。提出了一种基于s Flow技术的网络流量监测与控制系统,借助s Flow数据监测的功能,把数据收集的过程从SDN控制平面分离出来。构建了基于Open Daylight控制器与Mininet的实验环境,通过模拟拒绝服务攻击来产生异常流量,利用网络流量测控的方法实现了异常流量的拦截。
The core idea of SDN(software defined networking) is that the control plane and data plane are separated,which makes the network traffic can be flexible controlled. Since SDN has these characteristics, the traffic monitoring and control in SDN have significant differences with traditional IP networks. A network traffic monitoring and control system based on s Flow technology was presented. With the application of s Flow, the process of data collection was separated from the control plane of SDN. The experimental environment was constructed based on Open Daylight controller and Mininet, and the abnormal traffic was simulated by Do S(denial of service) attacks. The experiments show that the proposed network traffic monitoring and control system can effectively intercept the abnormal traffic.
出处
《电信科学》
北大核心
2015年第S1期163-167,共5页
Telecommunications Science
基金
国家电网公司科技项目"软件定义网络(SDN)体系及其电力应用关键技术研究"
国网智能电网研究院青年基金项目"支持电力应用SDN控制功能的网络流量可视化矩阵关键技术研究"(No.SGRI-HT-81-15-002)~~
