TY - GEN
T1 - Scalable flow-based networking with DIFANE
AU - Yu, Minlan
AU - Rexford, Jennifer L.
AU - Freedman, Michael Joseph
AU - Wang, Jia
PY - 2010
Y1 - 2010
N2 - Ideally, enterprise administrators could specify fine-grain policies that drive how the underlying switches forward, drop, and measure traffic. However, existing techniques for flow-based networking rely too heavily on centralized controller software that installs rules reactively, based on the first packet of each flow. In this paper, we propose DIFANE, a scalable and efficient solution that keeps all traffic in the data plane by selectively directing packets through intermediate switches that store the necessary rules. DIFANE relegates the controller to the simpler task of partitioning these rules over the switches. DIFANE can be readily implemented with commodity switch hardware, since all data-plane functions can be expressed in terms of wildcard rules that perform simple actions on matching packets. Experiments with our prototype on Click-based OpenFlow switches show that DIFANE scales to larger networks with richer policies.
AB - Ideally, enterprise administrators could specify fine-grain policies that drive how the underlying switches forward, drop, and measure traffic. However, existing techniques for flow-based networking rely too heavily on centralized controller software that installs rules reactively, based on the first packet of each flow. In this paper, we propose DIFANE, a scalable and efficient solution that keeps all traffic in the data plane by selectively directing packets through intermediate switches that store the necessary rules. DIFANE relegates the controller to the simpler task of partitioning these rules over the switches. DIFANE can be readily implemented with commodity switch hardware, since all data-plane functions can be expressed in terms of wildcard rules that perform simple actions on matching packets. Experiments with our prototype on Click-based OpenFlow switches show that DIFANE scales to larger networks with richer policies.
KW - access control
KW - network architecture
KW - openflow
KW - scalability
UR - http://www.scopus.com/inward/record.url?scp=78149339727&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=78149339727&partnerID=8YFLogxK
U2 - 10.1145/1851182.1851224
DO - 10.1145/1851182.1851224
M3 - Conference contribution
AN - SCOPUS:78149339727
SN - 9781450302012
T3 - SIGCOMM'10 - Proceedings of the SIGCOMM 2010 Conference
SP - 351
EP - 362
BT - SIGCOMM'10 - Proceedings of the SIGCOMM 2010 Conference
T2 - 7th International Conference on Autonomic Computing, SIGCOMM 2010
Y2 - 30 August 2010 through 3 September 2010
ER -