簡易檢索 / 詳目顯示

回結果列表
研究生: 吳有智
論文名稱: 基於虛擬交換器結合Openflow的網路隔離和管理
The network segregation and management based on virtual switch with Openflow
指導教授: 張適宇
Chang, Shih-Yu
口試委員: 徐正炘
Hsu, Cheng-Hsin
許慶賢
Hsu, Ching-Hsien
學位類別: 碩士
Master
系所名稱: 電機資訊學院 - 資訊工程學系
Computer Science
論文出版年: 2012
畢業學年度: 100
語文別: 英文
論文頁數: 38
中文關鍵詞: 虛擬交換器網路隔離
外文關鍵詞: virtual switch, network segregation, Openflow
相關次數: 點閱:1下載:0
分享至:
查詢本校圖書館目錄 查詢臺灣博碩士論文知識加值系統 勘誤回報

    • 網路隔離是一個控制大型網路安全的方法,它將網路切割成多個邏輯網路區域並提供額外的保護及更高的可用性。VLAN是個常用來提供網路隔離的服務。為了支持VLAN這個服務,我們需要一些昂貴的網管型交換器來達成。在這篇論文中,我們使用Openflow虛擬交換器來達到網路隔離的效果,在網路管理的部分,我們用sFlow來監測虛擬交換器。

    Network segregation is a method of controlling the security of large networks is to divide them into separate logical network domains which has been used for provide additional protection and high availability. VLAN is a common method to provide the segmentation services. To support VLAN function, we need to have some managed switches which are more expensive then commodity off-the-shelf (COTS) Ethernet switches. In this paper, we use an Openflow virtual switch which can be built in any Linux based machine to achieve network segregation. For network management, we use sFlow to monitor virtual switches.

    Abstract - 3 - 1 Introduction - 4 - 2 System Architecture - 6 - 2.1 System components overview - 6 - 2.2 Design of architecture - 13 - 2.3 network segregation scenario - 18 - 3 Performance Result - 32 - 4 Conclusions - 35 - 5 References - 36 -

    [1] Barakat, C., E. Altman, Dabbous, W (2000). "On TCP performance in a heterogeneous network: a survey." Communications Magazine, IEEE 38(1): 40-46.

    [2] Baroncelli, F., B. Martini, Castoldi, P. (2010). "Network virtualization for cloud computing." Annals of Telecommunications 65(11): 713-721.

    [3] Chowdhury, N. and R. Boutaba (2010). "A survey of network virtualization." Computer Networks 54(5): 862-876.

    [4] Chowdhury, N. M. M. K. and R. Boutaba (2009). "Network virtualization: state of the art and research challenges." Communications Magazine, IEEE 47(7): 20-26.

    [5] Duffield, N., C. Lund, Thorup, M. (2002). Properties and prediction of flow statistics from sampled packet streams, ACM.

    [6] McKeown, N., T. Anderson, et al. (2008). "OpenFlow: enabling innovation in campus networks." ACM SIGCOMM Computer Communication Review 38(2): 69-74.

    [7] Mudigonda, J., P. Yalagandula, et al. (2010). Spain: Cots data-center ethernet for multipathing over arbitrary topologies, USENIX Association.

    [8] Pettit, J., J. Gross, et al. (2010). Virtual Switching in an Era of Advanced Edges.

    [9] Pfaff, B., J. Pettit, et al. (2009). "Extending networking into the virtualization layer." Proc. HotNets (October 2009).

    [10] sFlow, http://www.sflow.org

    [11] Open vSwitch - An Open Virtual Switch, http://openvswitch.org/

    [12] OpenFlow - Enabling Innovation in Your Network, http://www.openflow.org/

    [13] OpenStack Open Source Cloud Computing Software, http://openstack.org/

    [14] Manpage of NUTTCP, http://lcp.nrl.navy.mil/nuttcp/nuttcp.html

    [15] Architectural Overview for OpenStack Compute, http://wiki.openstack.org

    [16] Networkworld, http://www.network world.com

    無法下載圖示 全文公開日期 本全文未授權公開 (校內網路)
    全文公開日期 本全文未授權公開 (校外網路)
    全文公開日期 本全文未授權公開 (國家圖書館:臺灣博碩士論文系統)
    QR CODE