OFFWall: A Static OpenFlow-Based Firewall Bypass

Abstract
Stateful firewalls are becoming bottlenecks for high-speed communication networks. To counteract, trusted network flows may statically bypass the firewall. As access control lists (ACLs) of moderately priced switches do not allow port selection, they cannot be used for implementation of a static firewall bypass. In this work, we present a software-defined networking (SDN) based solution for a static firewall bypass based on moderately priced commodity hardware. We propose OFFWall, an OpenFlow (OF) controller that translates a whitelist of trusted flows into flow rules and installs them on an SDN switch to implement the firewall bypass.
  • Citation
  • BibTeX
Germann, B., Schmidt, M., Stockmayer, A. & Menth, M., (2018). OFFWall: A Static OpenFlow-Based Firewall Bypass. In: Müller, P., Neumair, B., Reiser, H. & Dreo Rodosek, G. (Hrsg.), 11. DFN-Forum Kommunikationstechnologien. Bonn: Gesellschaft für Informatik e.V.. (S. 43-55).
@inproceedings{mci/Germann2018,
author = {Germann, Bastian AND Schmidt, Mark AND Stockmayer, Andreas AND Menth, Michael},
title = {OFFWall: A Static OpenFlow-Based Firewall Bypass},
booktitle = {11. DFN-Forum Kommunikationstechnologien},
year = {2018},
editor = {Müller, Paul AND Neumair, Bernhard AND Reiser, Helmut AND Dreo Rodosek, Gabi} ,
pages = { 43-55 },
publisher = {Gesellschaft für Informatik e.V.},
address = {Bonn}
}
DateienGroesseFormatAnzeige
DFN-Forum-Proceedings-004.pdf945.1Kb PDF View/Open

Haben Sie fehlerhafte Angaben entdeckt? Sagen Sie uns Bescheid: Send Feedback

More Info

ISBN: 978-3-88579-677-0
ISSN: 1617-5468
xmlui.MetaDataDisplay.field.date: 2018
Language: en (en)
Content Type: Text/Conference Paper
Collections

Show full item record