論文使用權限 Thesis access permission:自定論文開放時間 user define
開放時間 Available:
校內 Campus: 已公開 available
校外 Off-campus: 已公開 available
論文名稱 Title |
運用軟體定義網路改善網路維運功能之研究 A Study of Applying SDN to Improve Network Management Operation |
||
系所名稱 Department |
|||
畢業學年期 Year, semester |
語文別 Language |
||
學位類別 Degree |
頁數 Number of pages |
46 |
|
研究生 Author |
|||
指導教授 Advisor |
|||
召集委員 Convenor |
|||
口試委員 Advisory Committee |
|||
口試日期 Date of Exam |
2021-02-26 |
繳交日期 Date of Submission |
2021-05-26 |
關鍵字 Keywords |
軟體定義網路、網路功能虛擬化、乙太網路、轉送、異質性 SDN, NFV, OpenFlow, Forwarding, Ethernet, TCP / IP, Heterogeneous |
||
統計 Statistics |
本論文已被瀏覽 427 次,被下載 1 次 The thesis/dissertation has been browsed 427 times, has been downloaded 1 times. |
中文摘要 |
SDN相較於傳統以交換器為主的網路架構更有彈性,基於通透與橋接特性的異質整合能力,使得它能被導入各種架構與媒介上。 無論是實體或虛擬的交換器資源,SDN可以讓異質性的交換器協同合作他能將支援同樣通訊協定的交換器整合成一個「介面」,使得計算資源可在實體與虛擬的環境上傳輸。 隨著功能開發的演進,SDN有著比傳統設備更豐富的轉送機制,提供基礎設施彈性的運用。它可以輕易融入任何網路架構,也能形成全面管控並在任何節點提供彈性的轉送,當轉送機制不符合需求時,可以將封包封裝送往控制器尋求應用程式處理。 SDN發展的初期,它所缺少應用程式處理程序以及路由轉送機制必需透過NFV原生繼承而來的應用層的處理與轉送能力補足,通常會將SDN與NFV綁定導入資訊平台中。但隨著SDN的發展,也逐漸與NFV有功能上的重疊,透過實驗證明二者在轉送機制上是可以獨立運作,無需依靠彼此。 資訊平台需求為單一服務或架構時,只需依照需求選擇擁有豐富轉送機制的SDN或是具備多樣化應用程式的NFV擇一導入即可,以簡化系統架構的複雜度。 當資訊平台需求提升成為多用戶、多元服務或On-demand時,隨著SDN應用程式開發多元化,可為各別的服務創造出專屬的架構及資源。若邊際端發生網路效能不足或短時間需要大量運算的情況,也可在邊際端的SDN設備增加計算資源來實現邊際運算並與雲端運算的之間進行的動態調配。 |
Abstract |
The Software-Defined Networking (SDN) architecture is more flexible than legacy switched-based one. Its heterogeneous integrability based on the characteristics of transparency and bridging makes the SDN could be applied by any existing network architecture with various mediums. The SDN architecture integrates all heterogeneous computing resources in environment. For example, all switches supporting identical protocol could be integrated into an "Interface" regardless of physical or virtual devices and accessed unconsciously. There are numerous transfer mechanisms in the developing SDN architecture, those provide more flexible usage of infrastructure and achieve the central controlled of all nodes. For example, the packets could be encapsulated and sent to the "controller" for programable control processing if the forwarding mechanism is insufficient at some nodes. Previous SDN is lacking in application procedures and routing mechanisms. For supplying these application layer user requirements, the Network Functions Virtualization (NFV) is accompanied with the SDN for network deploying. There are more functions for application and routing are proposed with the progress of SDN development. Previous NFV-cooperated architecture with many overlapped functions is much complex for function selection. However, the SDN and the NFV can be isolated, our experiment shows that The SDN with numerous transfer mechanisms can operate independently. Administrators can apply only the SDN for simplifying architecture for single-service requirement. For multi-tenant, multi-service or on-demand requirement, dedicated architecture and resources are available for specified service by various SDN applications. In additions, the implement of dynamically adjustment of local and clouding computing can handle unexcepted insufficient performance at border nodes and sudden mass computing requirement in short period. |
目次 Table of Contents |
論文審定書 i 中文摘要 ii 英文摘要 iii 目錄 v 第1章 緒論 1 1.1. 研究背景 1 1.2. 研究動機 2 1.3. 研究目的 2 1.4. 研究貢獻 3 第2章 文獻探討 3 2.1. TCP/IP轉送機制 4 TCP / IP協定 5 Encapsulation 5 ARP 7 Forwarding 7 NAT 8 Policy 8 Heterogeneous network 9 2.2. 網路功能虛擬化 9 2.3. 軟體定義網路 10 2.3.1. SDN框架 11 2.3.2. OpenFlow架構 11 2.3.3. OpenFlow運算能力要求 13 2.3.4. OpenFlow轉送機制 14 2.3.5. OpenFlow運作 17 2.3.6. OpenFlow特性 17 2.3.7. OpenFlow運用 18 2.4. 多租戶 18 第3章 研究方法 20 3.1. 傳統網路架構與應用程式的侷限 20 3.2. 階層式架構下的隨選機制 22 3.3. 隨選機制虛擬化的問題 25 3.4. 突破路由、VLAN與地理的限制 26 第4章 研究成果 28 4.1. 實驗工具 29 4.2. NFV與SDN功能區分 29 4.2. SDN的ON-DEMAND運用 30 4.3. SDN創造移動的機制 31 4.4. 研究成果 31 第5章 結論與未來研究 32 參考文獻 33 |
參考文獻 References |
[1] Cisco, "Cisco Open SDN Controller ." [Online]. Available: https://www.cisco.com/c/en/us/products/collateral/cloud-systems-management/open-sdn-controller/white-paper-c11-735868.html. [2] Fortinet, "The Fortinet SDN Security Framework." [Online]. Available: https://www.fortinet.com/content/dam/fortinet/assets/white-papers/SDN-Security-Framework-WhitePaper.pdf. [3] Juniper, "Integrating SDN into the Data Center." [Online]. Available: https://www.juniper.net/assets/us/en/local/pdf/whitepapers/2000542-en.pdf. [4] 林淑惠, "5G世代 SDN網路商機大爆發," 2017. [Online]. Available: https://m.ctee.com.tw/dailynews/a03aa3/a03aa3/862120/c89b6ad78b621c90af8b13150e6ea88d. [5] ithome, "不只電信科技業要用SDN,食品業也要導入新一代網路架構." [Online]. Available: https://www.ithome.com.tw/news/98408. [6] ithome, "新一代網路架構SDN顛覆傳統網路的控制模式." [Online]. Available: https://www.ithome.com.tw/node/77353. [7] 鄭明華, 王建明, 黃文祥, 吳妍靚, and 林政翰, "利用軟體定義網路在資料中心的路線權重計算負載平衡演算法," TANET2017 臺灣網際網路研討會, Oct.25~27 2017. 台中東海大學. [8] López-Rodríguez Femando and Campelo Divanilson R, "A robust SDN network architecture for service providers," in 2014 IEEE Global Communications Conference, 2014: IEEE, pp. 1903-1908. [9] Lin Bao-Shuh Paul, Lin Fuchun Joseph, and Tung Li-Ping, "The roles of 5G mobile broadband in the development of IoT, big data, cloud and SDN," Communications and Network, vol. 8, no. 01, p. 9, 2016. [10] Qin Zhijing, Denker Grit, Giannelli Carlo, Bellavista Paolo, and Venkatasubramanian Nalini, "A software defined networking architecture for the internet-of-things," in 2014 IEEE network operations and management symposium (NOMS), 2014: IEEE, pp. 1-9. [11] Jain Sushant et al., "B4: Experience with a globally-deployed software defined WAN," in ACM SIGCOMM Computer Communication Review, 2013, vol. 43, no. 4: ACM, pp. 3-14. [12] Kim Hyojoon and Feamster Nick, "Improving network management with software defined networking," IEEE Communications Magazine, vol. 51, no. 2, pp. 114-119, 2013. [13] 高雄市政府教育局, "學校資料查詢." [Online]. Available: https://www.kh.edu.tw/schools. [14] TANet, "臺灣學術網路維運中心." [Online]. Available: https://noc.tanet.edu.tw. [15] 高雄市政教育局, "OpenID服務." [Online]. Available: https://openid.kh.edu.tw. [16] Dangovas Vainius and Kuliesius Feliksas, "SDN-driven authentication and access control system," in The International Conference on Digital Information, Networking, and Wireless Communications (DINWC2014), 2014, pp. 20-23. [17] R. Amin, M. Reisslein, and N. Shah, "Hybrid SDN networks: A survey of existing approaches," IEEE Communications Surveys & Tutorials, vol. 20, no. 4, pp. 3259-3306, 2018. [18] E. Liotou, K. Samdanis, E. Pateromichelakis, N. Passas, and L. Merakos, "QoE-SDN APP: A rate-guided QoE-aware SDN-APP for HTTP adaptive video streaming," IEEE Journal on Selected Areas in Communications, vol. 36, no. 3, pp. 598-615, 2018. [19] I. Farris, T. Taleb, Y. Khettab, and J. Song, "A survey on emerging SDN and NFV security mechanisms for IoT systems," IEEE Communications Surveys & Tutorials, vol. 21, no. 1, pp. 812-837, 2018. [20] Vyos, "Open source router and firewall platform." [Online]. Available: https://www.vyos.io/subscriptions/. [21] M. Uddin, S. Mukherjee, H. Chang, and T. Lakshman, "Sdn-based multi-protocol edge switching for iot service automation," IEEE Journal on Selected Areas in Communications, vol. 36, no. 12, pp. 2775-2786, 2018. [22] Li Yadong, Li Danlan, Cui Wenqiang, and Zhang Rui, "Research based on OSI model," in 2011 IEEE 3rd International Conference on Communication Software and Networks, 2011: IEEE, pp. 554-557. [23] Murhammer Martin W, Atakan Orcun, Bretz Stefan, Pugh Larry R, Suzuki Kazunari, and Wood David H, TCP/IP tutorial and technical overview. Prentice Hall Upper Saddle River, NJ, 1998. [24] Hunt Craig, TCP/IP network administration. " O'Reilly Media, Inc.", 2002. [25] Barnes David and Sakandar Basir, Cisco LAN switching fundamentals. Cisco Press, 2005. [26] McQuerry Steve, McGrew Kelly, and Foy Stephen, Cisco Voice over Frame Relay, ATM, and IP. Cisco Press, 2001. [27] Cisco, "Configuring Data-Link Switching Plus." [Online]. Available: https://www.cisco.com/c/en/us/td/docs/ios/bridging/configuration/guide/15SY/br_15_sy_book/br_ibm_ntwking.html#wp1002976. [28] Bartky A, "RFC1795: Data Link Switching: Switch-to-Switch Protocol AIW DLSw RIG," ed: RFC Editor, 1995. [29] Jain Raj and Paul Subharthi, "Network virtualization and software defined networking for cloud computing: a survey," IEEE Communications Magazine, vol. 51, no. 11, pp. 24-31, 2013. [30] Li Yong and Chen Min, "Software-defined network function virtualization: A survey," IEEE Access, vol. 3, pp. 2542-2553, 2015. [31] Han Bo, Gopalakrishnan Vijay, Ji Lusheng, and Lee Seungjoon, "Network function virtualization: Challenges and opportunities for innovations," IEEE Communications Magazine, vol. 53, no. 2, pp. 90-97, 2015. [32] Berde Pankaj et al., "ONOS: towards an open, distributed SDN OS," in Proceedings of the third workshop on Hot topics in software defined networking, 2014, pp. 1-6. [33] Kreutz Diego, Ramos Fernando, Verissimo Paulo, Rothenberg Christian Esteve, Azodolmolky Siamak, and Uhlig Steve, "Software-defined networking: A comprehensive survey," arXiv preprint arXiv:1406.0440, 2014. [34] A Linux Foundation Collaborative Project, "Open Networking Foundation." [Online]. Available: https://www.opennetworking.org/. [35] A Linux Foundation Collaborative Project, "OpenFlow Switch Specification v.1.5.1." [Online]. Available: https://www.opennetworking.org/wp-content/uploads/2014/10/openflow-switch-v1.5.1.pdf. [36] Internet Engineering Task Force. [Online]. Available: https://www.ietf.org/. [37] A. Doria et al., " Forwarding and Control Element Separation (ForCES) Protocol Specification," Internet Engineering Task Force. [Online]. Available: http://www.ietf.org/rfc/rfc5810.txt. [38] Project Floodlight, "A Java-Based OpenFlow Controller." [Online]. Available: http://floodlight.openflowhub.org/. [39] Trema, "Full-Stack OpenFlow Framework in Ruby and C.." [Online]. Available: https://github.com/trema/. [40] The Apache Software Foundation, "POX." [Online]. Available: http://www.noxrepo.org/pox/about-pox/. [41] Nicira, "NOX." [Online]. Available: http://www.noxrepo.org/nox/about-nox/. [42] Hu Fei, Hao Qi, and Bao Ke, "A survey on software-defined network and openflow: From concept to implementation," IEEE Communications Surveys & Tutorials, vol. 16, no. 4, pp. 2181-2206, 2014. [43] A Linux Foundation Collaborative Project, "Open vSwitch on Linux, FreeBSD and NetBSD." [Online]. Available: http://docs.openvswitch.org/en/latest/intro/install/general/. [44] Voellmy Andreas and Wang Junchang, "Scalable software defined network controllers," in Proceedings of the ACM SIGCOMM 2012 conference on Applications, technologies, architectures, and protocols for computer communication, 2012, pp. 289-290. [45] Hares Susan, "Analysis of comparisons between openflow and forces," Draft-Hares-Forces-vs-Openflow-00, Work in Progress. IETF, 2012. [46] Yeganeh Soheil Hassas, Tootoonchian Amin, and Ganjali Yashar, "On scalability of software-defined networking," IEEE Communications Magazine, vol. 51, no. 2, pp. 136-141, 2013. [47] Valdivieso Caraguay Ángel Leonardo, Benito Peral Alberto, Barona Lopez Lorena Isabel, and García Villalba Luis Javier, "SDN: Evolution and opportunities in the development IoT applications," International Journal of Distributed Sensor Networks, vol. 10, no. 5, p. 735142, 2014. [48] A Linux Foundation Collaborative Project, "OpenFlow Switch Specification v.1.0.0." [Online]. Available: https://www.opennetworking.org/wp-content/uploads/2013/04/openflow-spec-v1.0.0.pdf. [49] A Linux Foundation Collaborative Project, "OpenFlow Switch Specification v.1.3.1." [Online]. Available: https://www.opennetworking.org/wp-content/uploads/2013/04/openflow-spec-v1.3.1.pdf. [50] Wikipedia, "Multiprotocol Label Switching." [Online]. Available: https://en.wikipedia.org/w/index.php?title=Multiprotocol_Label_Switching&oldid=943731350. [51] IT168資訊, "加速5G實現 SDN/NFV技術成明日之星," 2016. [Online]. Available: http://big5.jinri-toutiao.com/id/376384.html. [52] 劉恩賜, "在 SDN 架構下的 DDoS 防禦策略:基礎篇," 2019. [Online]. Available: https://secbuzzer.co/post/75. SecBuzzer. [53] 麟雲資訊, "WAN解決方案." [Online]. Available: http://www.ringcloud.com.tw/zh-tw/goods_info.php?id=122. [54] 黃耀瑋, "行動寬頻設計驗證助力 SDN/異質網路應用加速起飛," 2015. 新通訊元件雜誌. [55] Wu Di, Arkhipov Dmitri I, Asmare Eskindir, Qin Zhijing, and McCann Julie A, "UbiFlow: Mobility management in urban-scale software defined IoT," in 2015 IEEE conference on computer communications (INFOCOM), 2015: IEEE, pp. 208-216. [56] Wikipedia, "WiMAX." [Online]. Available: https://en.wikipedia.org/w/index.php?title=WiMAX&oldid=940749730. [57] Ji Philip N, "Software defined optical network," in The 2012 11th International Conference on Optical Communications and Networks (ICOCN), 2012: IEEE, pp. 1-4. [58] Cisco, "Virtual Route Forwarding Design Guide." [Online]. Available: https://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucme/vrf/design/guide/vrfDesignGuide.html. [59] Fortinet, "Packet flow." [Online]. Available: https://help.fortinet.com/fos50hlp/52data/Content/FortiOS/fortigate-life-of-packet-52/LoP-packet-flow.htm. [60] Jarvinen Ilpo, Ding Yi, Nyrhinen Aki, and Kojo Markku, "Harsh red: Improving red for limited aggregate traffic," in 2012 IEEE 26th International Conference on Advanced Information Networking and Applications, 2012: IEEE, pp. 832-840. [61] Vilalta Ricard, Mayoral Arturo, Munoz Raul, Casellas Ramon, and Martínez Ricardo, "Multitenant transport networks with SDN/NFV," Journal of Lightwave Technology, vol. 34, no. 6, pp. 1509-1515, 2015. [62] Galaxy Technologies and LLC, "GNS3." [Online]. Available: https://www.gns3.com/. [63] 部. D. Bombal, "Download Cisco IOS images and use in GNS3." [Online]. Available: https://www.youtube.com/watch?v=jhh2_PP9JLU. [64] Galaxy Technologies and LLC, "GNS3 Support List." [Online]. Available: https://www.gns3.com/marketplace/appliances. [65] A Linux Foundation Collaborative Project. [Online]. Available: https://www.openvswitch.org/. [66] OpenDaylight, "OpenDaylight: A Linux Foundation Collaborative Project " 2013. [Online]. Available: http://www.opendaylight.org. [67] Javid Tariq, Riaz Tehseen, and Rasheed Asad, "A layer2 firewall for software defined network," in 2014 Conference on Information Assurance and Cyber Security (CIACS), 2014: IEEE, pp. 39-42. [68] Barakabitze Alcardo Alex, Ahmad Arslan, Mijumbi Rashid, and Hines Andrew, "5G network slicing using SDN and NFV: A survey of taxonomy, architectures and future challenges," Computer Networks, vol. 167, p. 106984, 2020. |
電子全文 Fulltext |
本電子全文僅授權使用者為學術研究之目的,進行個人非營利性質之檢索、閱讀、列印。請遵守中華民國著作權法之相關規定,切勿任意重製、散佈、改作、轉貼、播送,以免觸法。 論文使用權限 Thesis access permission:自定論文開放時間 user define 開放時間 Available: 校內 Campus: 已公開 available 校外 Off-campus: 已公開 available |
紙本論文 Printed copies |
紙本論文的公開資訊在102學年度以後相對較為完整。如果需要查詢101學年度以前的紙本論文公開資訊,請聯繫圖資處紙本論文服務櫃台。如有不便之處敬請見諒。 開放時間 available 已公開 available |
QR Code |