簡易檢索 / 詳目顯示

回結果列表
研究生: 李紀萱
Li, Chi-Hsuan
論文名稱: 利用軟體定義網路交換機之多流表架構實現網路設備虛擬化
Enabling CPE Virtualization with Multiple Flow Tables Architecture in SDN Switches
指導教授: 黃能富
Huang, Nen-Fu
口試委員: 石維寬
Shih, Wei-Kuan
陳俊良
Chen, Jiann-Liang
學位類別: 碩士
Master
系所名稱:
論文出版年: 2017
畢業學年度: 105
語文別: 英文
論文頁數: 58
中文關鍵詞: 多流表網路功能虛擬化軟體定義網路網路設備虛擬化
外文關鍵詞: Multiple flow tables, NFV, SDN, vCPE
相關次數: 點閱:1下載:0
分享至:
查詢本校圖書館目錄 查詢臺灣博碩士論文知識加值系統 勘誤回報

    • 近年,網路服務提供商為了減少其資本性支出以及營運成本,提出網路設備虛擬化的概念,而軟體定義網路和網路功能虛擬化在此創新當中擔任關鍵的角色。本論文提出了一種多流表的虛擬網路功能架構,在此架構底下,這些虛擬化的網路功能通過在雲端的控制器和客戶端的交換機之間的協同作用實現,還可以透過先前高速網路實驗室所提出的網路設備虛擬化之框架來部署,客戶只需要擁有本地網絡上通用的軟體定義交換機,通過框架就可以輕鬆訂閱不同的網絡服務,如防火牆,網路地址轉換,動態主機設定協定和服務品質頻寬管理。實驗結果顯示,我們利用多流表管理機制實現之虛擬化網路功能的性能不亞於單流表之架構,更展示了與其他應用程序分類系統整合的靈活性。

    The virtual Customer Premise Equipment (vCPE) concept has been proposed recently to reduce OPEX and CAPEX. Software-defined networking (SDN) and network functions virtualization (NFV) are key roles for this innovation. This thesis proposes a virtual network functions architecture with multiple flow tables. These VNFs are achieved by the synergies between a VNF controller on cloud and an SDN switch at the edge and deployed by the previous HSNL vCPE framework. The customer only needs a generic SDN switch at local network and it is very easy to subscribing different network services, such as Firewall, NAT, DHCP, and applications quality of service (QoS) by a browser-based dashboard. Experiments are conducted to evaluate the performance of VNFs implemented by the proposed multiple flow table management mechanism. The flexibility of architecture to integrate with other application classification system, such as IDS or IPS, is also demonstrated.

    Abstract i 中文摘要 ii Table of Contents iii List of Figures vi List of Tables viii Chapter 1 Introduction 1 Chapter 2 Related Work 5 2.1 SDN 5 2.2 OpenFlow Protocol 7 2.2.1 OpenFlow Switch Components 7 2.2.2 Flow Table Pipeline, Matching and Table-miss 8 2.3 NFV 10 2.3.1 The Concept of NFV 10 2.3.2 ETSI NFV MANO Model 12 2.4 Related vCPE framework 12 2.4.1 NetFATE 12 2.4.2 Ericsson CPE 14 2.4.3 Juniper Cloud CPE 16 2.5 HSNL vCPE framework 18 2.5.1 Deployment Model 18 2.5.2 CPE Platform NFV Architecture 20 2.5.3 System Implementation 20 Chapter 3 System Design and Implementation 23 3.1 Overview of Network Functions 23 3.1.1 Stateful Processing Component 23 3.1.2 Stateless Processing Component 24 3.2 Multiple Flow Table Strategy 25 3.3 Service Control 27 3.4 Network functions 29 3.4.1 Firewall 29 3.4.2 NAT 30 3.4.3 DHCP 33 3.4.4 Forwarding 33 3.4.5 Traffic Mirroring 34 3.4.6 QoS 35 3.5 The whole work flow of our MFT mechanism 37 Chapter 4 Experimental Results and Discussion 39 4.1 Multiple Table Performance 39 4.2 Integration Evaluation 41 4.2.1 Evaluation of QoS When Host Bandwidth Is Limited 41 4.2.2 Evaluation of QoS When Application Bandwidth Is Limited 42 4.3 Discussion: Single Flow Table vs. Multiple Flow Tables 45 4.3.1 The Restriction of Single Table 45 4.3.2 NAT with Forwarding 46 4.3.3 NAT with Forwarding and Firewall 49 4.3.4 NAT with Forwarding and QoS 50 Chapter 5 Conclusion and Future Work 52 Bibliography 54

    [1] B. Pfaff, B. Lantz, B. Heller et al., “OpenFlow switch specification, version 1.3. 0,” Open Networking Foundation, 2012.
    [2] M. Chiosi, D. Clarke, P. Willis, A. Reid, J. Feger, M. Bugenhagen, W. Khan, M. Fargano, C. Cui, H. Deng et al., “Network functions virtualisation: An introduction, benefits, enablers, challenges and call for action,” in SDN and OpenFlow World Congress, 2012, pp. 22–24.
    [3] NFV ISG, “Network Functions Virtualisation (NFV); Virtual Network Functions Architecture,” ETSI, Tech. Rep. GS NFV-SWA 001 V1.1.1, Dec. 2014.
    [4] A. Lombardo, A. Manzalini, G. Schembra, G. Faraci, C. Rametta and V. Riccobene, "An open framework to enable NetFATE (Network Functions at the edge)," Proceedings of the 2015 1st IEEE Conference on Network Softwarization (NetSoft), London, 2015, pp. 1-6.
    [5] P. Cota and J. Sabec, “CPE virtualization by unifying NFV, SDN and cloud technologies,” in 2016 39th International Convention on Information and Communication Technology, Electronics and Microelectronics (MIPRO). IEEE, May 2016. [Online]. Available: https://doi.org/10.1109/mipro.2016.7522204
    [6] “Juniper networks cloud CPE solution,” https://www.juniper.net/assets/kr/kr/local/ pdf/solutionbriefs/3510561-en.pdf.
    [7] C.-W. Lin, “A Novel Virtual CPE Architecture and Service for Enterprises with SDN Network Technologies,” Master’s thesis, National Tsing Hua University, No.101, Sec. 2, Guangfu Rd., East Dist., Hsinchu City 300, Taiwan, 2016.
    [8] N. McKeown, “Software-defined networking,” INFOCOM keynote talk, vol. 17, no. 2, pp. 30–32, 2009.
    [9] O. N. Foundation, “Software-defined networking: The new norm for networks,” ONF White Paper, vol. 2, pp. 2–6, 2012.
    [10] N. Feamster, J. Rexford, and E. Zegura, “The road to SDN,” ACM SIGCOMM Computer Communication Review, vol. 44, no. 2, pp. 87–98, Apr. 2014.
    [11] D. Kreutz, F. M. V. Ramos, P. E. Verissimo, C. E. Rothenberg, S. Azodolmolky, and S. Uhlig, “Software-defined networking: A comprehensive survey,” Proceedings of the IEEE, vol. 103, no. 1, pp. 14–76, Jan. 2015.
    [12] N. McKeown, T. Anderson, H. Balakrishnan, G. Parulkar, L. Peterson, J. Rexford, S. Shenker, and J. Turner, “OpenFlow,” ACM SIGCOMM Computer Communication Review, vol. 38, no. 2, p. 69, Mar. 2008.
    [13] “Software-defined networking (SDN) definition,” https://www.opennetworking.org/ sdn-resources/sdn-definition.
    [14] R. Mijumbi, J. Serrat, J.-L. Gorricho, N. Bouten, F. D. Turck, and R. Boutaba, “Network function virtualization: State-of-the-art and research challenges,” IEEE Communications Surveys & Tutorials, vol. 18, no. 1, pp. 236–262, 2016.
    [15] NEC/Netcracker, “Nec’s vCPE solution.” [Online]. Available: http://www.nec.com/ en/global/solutions/tcs/vcpe/
    [16] P. Minoves, O. Frendved, B. Peng, A. Mackarel, and D. Wilson, “Virtual CPE: Enhancing CPE’s deployment and operations through virtualization,” in 4th IEEE International Conference on Cloud Computing Technology and Science Proceedings. IEEE, Dec. 2012.
    [17] Z. Bronstein and E. Shraga, “NFV virtualisation of the home environment,” in 2014 IEEE 11th Consumer Communications and Networking Conference (CCNC). IEEE, Jan. 2014.
    [18] NFV ISG, “Network functions virtualisation (NFV); use cases,” ETSI, Tech. Rep. GS NFV 001 V1.1.1, Oct. 2013.
    [19] M. Ibanez, N. M. Madrid, and R. Seepold, “Virtualization of residential gateways,” in 2007 Fifth Workshop on Intelligent Solutions in Embedded Systems. IEEE, Jun. 2007.
    [20] ——, “Security management with virtual gateway platforms,” in 2009 Third International Conference on Emerging Security Information, Systems and Technologies. IEEE, 2009.
    [21] B. Zamaere, L. Da, and E. Kullberg, “On the design and implementation of a virtualized residential gateway,” in 2012 2nd International Conference on Consumer Electronics, Communications and Networks (CECNet). IEEE, Apr. 2012.
    [22] N. Herbaut, D. Negru, G. Xilouris, and Y. Chen, “Migrating to a NFV-based home gateway: Introducing a surrogate vNF approach,” in 2015 6th International Conference on the Network of the Future (NOF). IEEE, Sep. 2015.
    [23] F. Sanchez and D. Brazewell, “Tethered linux CPE for IP service delivery,” in Proceedings of the 2015 1st IEEE Conference on Network Softwarization (NetSoft). IEEE, Apr. 2015.
    [24] R. Bonafiglia, S. Miano, S. Nuccio, F. Risso, and A. Sapio, “Enabling NFV services on resource-constrained CPEs,” in 2016 5th IEEE International Conference on Cloud Networking (Cloudnet). IEEE, Oct. 2016.
    [25] J. Soares, M. Dias, J. Carapinha, B. Parreira, and S. Sargento, “Cloud4nfv: A platform for virtual network functions,” in 2014 IEEE 3rd International Conference on Cloud Networking (CloudNet). IEEE, Oct. 2014.
    [26] J. Soares, C. Goncalves, B. Parreira, P. Tavares, J. Carapinha, J. P. Barraca, R. L. Aguiar, and S. Sargento, “Toward a telco cloud environment for service functions,” IEEE Communications Magazine, vol. 53, no. 2, pp. 98–106, Feb. 2015.
    [27] N.-F. Huang, C.-W. Lin, S.-J. Wu, C.-H. Li, and I.-J. Liao, “A novel virtual CPE architecture and service for enterprises with SDN network technologies,” in PROCEEDINGS OF THE 9TH IEEE INTERNATIONAL CONFERENCE ON UBI-MEDIA COMPUTING” UMEDIA-2016”, 2016, pp. 104–109.
    [28] NFV ISG, “Network Functions Virtualisation (NFV); Management and Orchestration,” ETSI, Tech. Rep. GS NFV-MAN 001 V1.1.1, Dec. 2014.
    [29] ——, “Network Functions Virtualisation (NFV); Ecosystem; Report on SDN Usage in NFV Architectural Framework,” ETSI, Tech. Rep. GS NFV-EVE 005 V1.1.1, Dec. 2015.
    [30] Open Networking Foundation, “The benefits of multiple flow tables and TTPs,” ONF, Tech. Rep., 2015.
    [31] J. Matias, J. Garay, N. Toledo, J. Unzilla, and E. Jacob, “Toward an SDN-enabled NFV architecture,” IEEE Communications Magazine, vol. 53, no. 4, pp. 187–193, Apr. 2015.
    [32] “Open network foundation,” https://www.opennetworking.org/.
    [33] “Ryu SDN framework,” http://osrg.github.io/ryu/.
    [34] NFV ISG, “Network Functions Virtualisation (NFV); Terminology for Main Concepts in NFV,” ETSI, Tech. Rep. GS NFV 003 V1.2.1, Dec. 2014.
    [35] ——, “Network Functions Virtualisation (NFV); Infrastructure; Hypervisor Domain,” ETSI, Tech. Rep. GS NFV-INF 004 V1.1.1, Jan. 2015.
    [36] M. Kuz´niar, P. Peresˇ´ıni, and D. Kostic´, “What you need to know about SDN flow tables,” in Passive and Active Measurement. Springer Science + Business Media, 2015, pp. 347–359.
    [37] “Edge Core switches” , http://www.edge-core.com/productsKind.php?cls=1.
    [38] “iPerf”, https://iperf.fr/iperf-doc.php.

    QR CODE