Programming Assignment #4 contains two items, Stateful firewall and TCP Redirection.
1. Common requirement
- Implement as a network application running on POX or ONOS.
(We will check your assignment with SDNHub VM. Please check previous notice)
- Use Mininet with "Single" template topology
- Include additional binary to be used for testing your assignment (E.g, If you demonstrates Stateful firewall, you need to make FTP server and FTP command generator. In this case, "additional binary"s are "simple FTP server" and "command generator")
2. Stateful firewall
- Supports both of modes, ACTIVE and PASSIVE
- Assumption
- ONLY 21 port (used for management channel) is opened
- Requirement
- Block any communication except FTP related communication.
- Automatically issuing Flow_Mod for inserting flow rules for using FTP data transmission.
3. TCP redirection
- Requirement
* Automatically modifying packet for satisfying below condition.
* Host A tries to connect to Host B,
but is should be automatically redirected to Host C.
* Then, Host A sends 1K data to Host B
(Actually Host C will receive the data)
* Host C sends 1K data to host A
(A should receive the data, and it should believe that it is from Host B)
'정보보안 > 네트워크보안' 카테고리의 다른 글
| OpenFlow version 1.3 tutorial (0) | 2015.05.27 |
|---|---|
| 소프트웨어 정의 네트워킹의 네트워크 보안 (Network Security in the New Paradigm of Software Defined Networking( SDN )) #2 (0) | 2015.05.26 |
| 소프트웨어 정의 네트워킹의 네트워크 보안 (Network Security in the New Paradigm of Software Defined Networking( SDN )) (0) | 2015.05.21 |
| Assignment #3 Build a botnet (0) | 2015.05.17 |
| Assignment #3 - Build a botnet (0) | 2015.05.12 |