O. Yu. Guzev, I. V. Chizhov, “SDN load balancing for secure networks”, Sistemy i Sredstva Inform., 2018, Volume 28, Issue 1,Pages <nobr>123

This article is cited in 4 papers

SDN load balancing for secure networks

O. Yu. Guzev^a, I. V. Chizhov^bc

^a Research and Development Center, JSC "InfoTeCS", 1/23, b. 1 Staryy Petrovsko-Razumovskiy Pr., Moscow 127287, Russian Federation
^b Faculty of Computational Mathematics and Cybernetics, M. V. Lomonosov Moscow State University, 2nd Education Building, Faculty CMC, GSP-1, Leninskie Gory, Moscow 119991, Russian Federation
^c Institute of Informatics Problems, Federal Research Center "Computer Science and Control" of the Russian Academy of Sciences, 44-2 Vavilov Str., Moscow 119333, Russian Federation

Abstract: The software-defined networking (SDN) technology in comparison with traditional IP networks allows programming the network's behavior using a centralized controller. In this case, forwarding devices deal only with forwarding frames based on flow tables loaded into them by the controller. Flow tables are built on the controller during the processing of information about traffic flows arriving at forwarding devices. The above properties of the technology were used to create the SDN load balancer for devices of secure networks. The article discusses the architecture and software of the balancer. Descriptions of schemes and results of experiments on load balancing for such devices as L3-VPN (Level 3 Virtual Private Network) gateway, TLS (Transport Layer Security) gateway, and IDS (Intrusion Detection System) are given.

Keywords: software-defined networking (SDN); controller; OpenFlow; VPN gateway; TLS; intrusion detection system; IDS; load balancing; DPDK; Open vSwitch; Beacon.

Received: 26.11.2017

DOI: 10.14357/08696527180110