OFFWall: A Static OpenFlow-Based Firewall Bypass

Stateful firewalls are becoming bottlenecks for high-speed communication networks. To counteract, trusted network flows may statically bypass the firewall. As access control lists (ACLs) of moderately priced switches do not allow port selection, they cannot be used for implementation of a static firewall bypass. In this work, we present a software-defined networking (SDN) based solution for a static firewall bypass based on moderately priced commodity hardware. We propose OFFWall, an OpenFlow (OF) controller that translates a whitelist of trusted flows into flow rules and installs them on an SDN switch to implement the firewall bypass.

Germann, Bastian; Schmidt, Mark; Stockmayer, Andreas; Menth, Michael (2018): OFFWall: A Static OpenFlow-Based Firewall Bypass. 11. DFN-Forum Kommunikationstechnologien. Bonn: Gesellschaft für Informatik e.V.. PISSN: 1617-5468. ISBN: 978-3-88579-677-0. pp. 43-55. Sicherheit. Günzburg. 27.-28. Juni 2021

Sammlungen

P283 - 11. DFN-Forum Kommunikationstechnologien

Komplettanzeige

OFFWall: A Static OpenFlow-Based Firewall Bypass

Volltext URI

Dokumententyp

Dateien

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen