Moreover, due to the capability of OpenFlow switches to manage and control network, several studies, such as, ,, and, have used OpenFlow's capabilities as a firewall (i.e., first-hop security). The network protocol is changed by implementing the control logic in the controller, and complex traffic engineering requirements are met by reconfiguring, updating, or swapping the controller instead of upgrading or replacing the network hardware. The Control-plane logic can be moved from individual network devices to a centralized controller or a collection of controllers by generating a standardized network-accessible interface to control the data plane of network equipment. OpenFlow has elicited interest due to the amount of control it provides to developers of network control software. SDN uses many protocols, the most common of which is OpenFlow. The use of software-defined networking (SDN) has rapidly increased in the last decade, and this increased usage has resulted in a new technique to control and manage a network from a centralized controller. The proposed mechanism is evaluated in a simulated environment by using six scenarios, and results exhibit that the proposed mechanism effectively fixes the loophole and successfully prevents the abuse of IPv6 fragmentation in OpenFlow networks. This study tests the IPv6 fragmented packets that can evade the OpenFlow firewall, and proposes a new mechanism to guard against attacks carried out by malicious users to exploit IPv6 fragmentation loophole in OpenFlow networks. The OpenFlow firewall cannot identify the message payload unless the switch implements IPv6 fragment reassembly. ![]() However, the firewall provided by OpenFlow suffers from Internet protocol version 6 (IPv6) fragmentation, which can be used to bypass the OpenFlow firewall. Therefore, it is used as an innovative firewall that acts as a first-hop security to protect networks against malicious users. ![]() OpenFlow also offers a new approach to handle security threats accurately and responsively. The control plane thus becomes responsive to changes in topology and load balancing requirements. ![]() OpenFlow makes a network highly flexible and fast-evolving by separating control and data planes.
0 Comments
Leave a Reply. |