共查询到19条相似文献,搜索用时 374 毫秒
1.
当前互联网技术发展迅速,新型网络协议的不断出现,要求网络转发设备能够及时提供对新协议的支持.目前,软件定义网络要兼顾可编程协议解析和数据转发性能仍然面临诸多困难.对此,本文提出了基于解析和执行联动结构的可编程数据平面(CLIPE),通过在硬件的解析器上部署用户可定义模块,可实时更新硬件中解析逻辑中的协议多叉树,从而实现协议解析的用户定制性;并且,通过解析器和动作执行器联动的创新结构,减少了整个处理架构的冗余性,从而减小动作执行时延,提高了硬件资源利用率,与现有方案相比,节约了11%的逻辑资源和24%的BRAM资源.最后,本文基于NetFPGA-10G板卡完成了本方案的原型机实现. 相似文献
2.
随着新协议的不断涌现和网络速率的迅猛增长,报文解析结构在解析灵活度和解析速率上面临挑战。该文结合流水线设计和二叉trie树查表思想,提出一种应用于路由转发的报文协议解析结构(Parsing PipelineArchitecture for Forwarding,PPAF),通过构建协议二叉trie树来支持报文协议解析的灵活度,利用硬件多级流水查表提升报文协议解析处理速率,采用节点映射算法解决协议二叉trie树节点到流水线映射过程中存储资源不均衡的问题。基于NetFPGA平台的仿真结果表明,相对于现有的高速解析结构,PPAF在处理速率和资源占用上取得较好的均衡的同时,能够提供基于接口的独立灵活解析能力。 相似文献
3.
协议无感知转发支持任意协议的解析和处理,增强了软件定义网络的可编程能力。为提高转发性能,该文提出一种应用于协议无感知转发交换机的流缓存方法,通过识别匹配和动作的依赖关系,得到匹配字段的绝对位置,用以预先解析报文。为确保流缓存的加速效果,根据匹配类型与表项数量选择应用流缓存的流表。此外,该文对比了单流表缓存与多流表缓存对转发性能的提升,并提出了根据网络流量实际情况的自适应切换策略。通过扩展POFSwitch实现所提方法,并用实际规则与骨干网流量进行验证,应用流缓存后,交换机报文转发速率提升了220%。流缓存可以为可编程数据平面提供更高的转发性能。 相似文献
4.
介绍了基于高性能FPGA的千兆网络数据分析过滤采集系统设计.该系统能够对千兆主干网的网络数据进行分析,过滤和采集.该系统提供良好的配置接口,并将所关心的数据转发,百分比采样或是抛弃.而且能够对报文进行统计,并按照协议类型,源地址,目的地址等规则将数据包分类存储起来.本系统采用硬件查找方式进行数据包的分类极大地加速了数据包分类的速度. 相似文献
5.
目前存在的网络监测软件基本都只是对捕获的数据包按标准的网络协议进行解析。然而,当数据包种类非常多时,数据捕获的可靠性很难保证,很多时候需要对自定义报文解析并进行仲裁。本算法主要以UDP协议报文数据段为重点,支持点对点、组播报文和广播报文的捕获与解析,既能按用户设计的应用层协议解析报文,又能高效地进行解析和仲裁。报文类型可由系统用户自行定义,用户可以根据需要添加报文规则,用于监控与分析报文。 相似文献
6.
7.
8.
软件定义网络(Software-Defined Network,SDN)中的网络应用往往需要实现多种功能以满足上层业务需求,而如何对运行在控制器上的功能模块进行编排以完成数据包的多功能组合处理是一个仍待解决的问题.针对该问题,本文提出基于多级流表的功能并行和串行组合方案;其次,提出与任意多级流表交换机相适配的功能组合算法;最后,在Ryu控制器中添加功能组合模块并基于NetFPGA-10G节点完成了功能组合的原型实现.仿真实验与结果表明,与现有功能组合方案相比,所提功能组合方法降低了流处理时延及表项存储开销. 相似文献
9.
软交换是下一代网络呼叫与控制的核心,是NGN体系结构中的关键技术,其核心思想是硬件软件化,通过软件来实现原来交换机的控制和业务处理等功能。文中从软交换的定义出发,对软交换技术的网络体系总体结构,分层模型,协议和标准以及软交换所具有的主要功能进行了论述,并指出了软交换所面临的若干问题。 相似文献
10.
11.
Aiming at the application of mimic arbitration,a programmable semantic parsing approach for mimic arbitration was proposed.Based on the idea of matching lookup table,this method could achieve custom protocol parsing through domain pointer configuration,and solve the problem of programmable protocol parsing for different protocols.By adopting pipeline control method,the congestion free in the procedure of protocol parsing was guaranteed and the performance of protocol parsing was improved.By introducing Hash operation,the complexity of semantic reordering design of sub-packages was simplified.The performance analysis results show that this approach has the characteristics of high flexibility protocol parsing,high processing capacity and low resource utilization. 相似文献
12.
A hardware‐acceleration architecture that separates virtual network functions (VNFs) and network control (called HSN) is proposed to solve the mismatch between the simple flow steering requirements and strong packet processing abilities of software‐defined networking (SDN) forwarding elements (FEs) in SDN/network function virtualization (NFV) architecture, while improving the efficiency of NFV infrastructure and the performance of network‐intensive functions. HSN makes full use of FEs and accelerates VNFs through two mechanisms: (1) separation of traffic steering and packet processing in the FEs; (2) separation of SDN and NFV control in the FEs. Our HSN prototype, built on NetFPGA‐10G, demonstrates that the processing performance can be greatly improved with only a small modification of the traditional SDN/NFV architecture. 相似文献
13.
14.
针对软件定义网络(SDN)中OpenFlow协议匹配字段固定且数量有限,数据流转发缺少有效的转发验证机制等问题,该文提出一种基于数据平面可编程的软件定义网络报文转发验证机制。通过为数据报文添加自定义密码标识,将P4转发设备加入基于OpenFlow的软件定义网络,在不影响数据流正常转发的基础上,对网络业务流精确控制和采样。控制器验证采样业务报文完整性,并针对异常报文下发流规则至OpenFlow转发设备,对恶意篡改、伪造等异常数据流进行转发控制。最后,构建基于开源BMv2的P4转发设备和基于OpenFlow的Open vSwitch转发设备的转发验证原型,并构建仿真网络进行实验。实验结果表明,该机制能够有效检测业务报文篡改、伪造等转发异常行为,与同类验证机制相比,在安全验证处理开销保持不变的情况下,能够实现更细粒度的业务流精确控制采样和更低的转发时延。 相似文献
15.
针对软件定义网络(SDN)中缺乏安全高效的数据来源验证机制问题,该文提出基于密码标识的报文转发验证机制。首先,建立基于密码标识的报文转发验证模型,将密码标识作为IP报文进出网络的通行证。其次,设计SDN批量匿名认证协议,将SDN控制器的验证功能下放给SDN交换机,由SDN交换机进行用户身份验证和密码标识验证,快速过滤伪造、篡改等非法报文,提高SDN控制器统一认证与管理效率,同时可为用户提供条件隐私保护。提出基于密码标识的任意节点报文抽样验证方案,任何攻击者无法通过推断采样来绕过报文检测,确保报文的真实性的同时降低其处理延迟。最后,进行安全性分析和性能评估。结果表明该机制能快速检测报文伪造和篡改及抵抗ID分析攻击,但同时引入了大约9.6%的转发延迟和低于10%的通信开销。 相似文献
16.
Genetic algorithm‐based routing method for enhanced video delivery over software defined networks 下载免费PDF全文
Video streaming has emerged as a killer application in today's Internet, delivering a tremendous amount of media contents to millions of users at any given time. Such a heavy traffic load demands an effective routing method. In this paper, an effective routing method, named GA‐SDN, is developed based on software defined network (SDN) technique. To facilitate the researchers in this field to evaluate the video delivery quality over SDN, an evaluation framework and its associated source codes are provided. The framework integrates the H.264 Scalable Video coding streaming Evaluation Framework (SVEF) with the Mininet emulator. Through this framework, video processing researchers can evaluate their proposed coding algorithms in an SDN‐enabled network emulator, while network operators or executives can evaluate the impact of real video streams on the developing network architectures or protocols. Experiment results demonstrate the usefulness of myEvalSVC_SDN and prove that GA‐SDN outperforms traditional Bellman‐Ford routing algorithm in terms of packet drop rate, throughput, and average peak signal‐to‐noise ratio. 相似文献
17.
18.
Software-defined networking (SDN) scheme decouples network control plane and data plane, which can improve the flexibility of traffic management in networks. OpenFlow is a promising implementation instance of SDN scheme and has been applied to enterprise networks and data center networks in practice. However, it has less effort to spread SDN control scheme over the Internet to conquer the ossification of inter-domain routing. In this paper, we further innovate to the SDN inter-domain routing inspired by the OpenFlow protocol. We apply SDN flow-based routing control to inter-domain routing and propose a fine-granularity inter-domain routing mechanism, named SDI (Software Defined Inter-domain routing). It enables inter-domain routing to support the flexible routing policy by matching multiple fields of IP packet header. We also propose a method to reduce redundant flow entries for inter-domain settings. And, we implement a prototype and deploy it on a multi-domain testbed. 相似文献
19.
In mobile ad hoc networks (MANETs), channel contention and packet collision can seriously affect the performance of routing protocols, which will eventually affect the performance of the whole network. Besides, the arbitrary mobility of nodes makes contention and collision ever-changing and more complex. Thus, it is imperative to analyze the problem of contention and collision so as to build appropriate routes in MANETs. In this paper, by respectively predicting the durations of the contention and collision at every hop along the route, a minimum interference cross-layer routing protocol (MI-CLR) is proposed based on Random Waypoint (RWP) model. The new protocol classifies the interference in the network into two types; the first type of interference can only affect channel contention, while the other affects both channel contention and packet collision. Via taking the two types of interference together into account, we propose a new routing metric to build routes which guarantees that the established routes will not break frequently while having the minimum interference. Simulation results show that the MI-CLR protocol can significantly improve the network performance such as the average end-to-end delay, the packet loss ratio, the routing overhead and the throughput. 相似文献