| Software-defined networking(SDN)implements a separate architecture for network device forwarding and control.The control plane sends flow rules to the data plane through the southbound protocol to control network forwarding.However,because the unreliable of southbound protocol,the data plane does not report the status to the control plane in real time,and there will be inconsistencies of rules between the control plane and data plane,resulting in network failure.In this paper,aiming at the problem that the control plane and data plane rules are inconsistent in SDN,we have researched related technologies of verifying the consistency of SDN rules between data plane and control plane.We propose an algorithm to verify the consistency of control plane and data plane rules by vector and matrix multiplication.Designed and implemented a system for verifying the consistency of SDN control plane and data plane rules.The main research contents and contributions of this article are as follows:Aiming at the problem of inconsistent rules between the control plane and the data plane in the software-defined network,we study the technologies of rule consistency verification based on sample real traffic packets and probe packets,and summarized the advantages and disadvantages of the technology.We proposes to verify the consistency of SDN control plane and data plane rules based on vector and matrix multiplication operations.First,when the switch is deployed,the controller generates a matrix for each switch through a matrix generation algorithm,which can ensure that the multiplication result corresponding to the path from the edge switch to any switch is different.When the switch forwards the data packet,the edge switch randomly generates a two-dimensional vector,and inserts the result of the multiplication of the two-dimensional vector and the matrix into the packet header.When the sampled packet leaves the SDN network,the corresponding switch extracts the two-dimensional vector in the packet header and compares the calculation result with the control plane to verify the consistency of the rules between the control plane and the data plane.The result of Experiment show that the algorithm can effectively verify the consistency of the rules between the control plane and the data plane.Based on the algorithm of vector and matrix operations to verify the consistency of rules,we designed and implemented a SDN control plane and data plane rule consistency verification system.The information routing module,tag calculation module,topology management module,matrix generation module,matrix delivery module,and verification module are implemented.And the system function is verified through experimental tests,which can effectively verify the inconsistency of the rules between control plane and data plane,at the same time,it has little effect on the delay of forwarding. |
PDF Full Text Request