Rethinking Enterprise Network Control

被引：96

作者：

Casado, Martin ^{[1
]}

Freedman, Michael J. ^{[2
]}

Pettit, Justin ^{[1
]}

Luo, Jianying ^{[1
]}

Gude, Natasha ^{[1
]}

McKeown, Nick ^{[1
]}

Shenker, Scott ^{[3
]}

机构：

[1] Stanford Univ, Stanford, CA 94305 USA

[2] Princeton Univ, Princeton, NJ 08544 USA

[3] Univ Calif Berkeley, Berkeley, CA 94720 USA

来源：

IEEE-ACM TRANSACTIONS ON NETWORKING | 2009年 / 17卷 / 04期

基金：

美国国家科学基金会;

关键词：

Architecture; management; network; security;

D O I：

10.1109/TNET.2009.2026415

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

This paper presents Ethane, a new network architecture for the enterprise. Ethane allows managers to define a single network-wide fine-grain policy and then enforces it directly. Ethane couples extremely simple flow-based Ethernet switches with a centralized controller that manages the admittance and routing of flows. While radical, this design is backwards-compatible with existing hosts and switches. We have implemented Ethane in both hardware and software, supporting both wired and wireless hosts. We also show that it is compatible with existing high-fanout switches by porting it to popular commodity switching chipsets. We have deployed and managed two operational Ethane networks, one in the Stanford University Computer Science Department supporting over 300 hosts, and another within a small business of 30 hosts. Our deployment experiences have significantly affected Ethane's design.

引用

页码：1270 / 1283

页数：14

共 20 条

[11]

Kerravala Zeus., 2002, CONFIGURATION MANAGE

[12] The part-time parliament [J].

Lamport, L .

ACM TRANSACTIONS ON COMPUTER SYSTEMS, 1998, 16 (02) :133-169

[13]

MYERS A, 2004, HOTNETS NOV

[14]

Newman P, 1996, IEEE INFOCOM SER, P1251, DOI 10.1109/INFCOM.1996.493071

[15]

Perlman R, 2004, IEEE INFOCOM SER, P1211

[16]

REXFORD J, 2004, HOTNETS NOV

[17]

ROSCOE T, 2003, COMPUT COMMUN REV, V33

[18] The use and usability of direction-based filtering in firewalls [J].

Wool, A .

COMPUTERS & SECURITY, 2004, 23 (06) :459-468

[19]

Wool A, 2004, COMPUTER, V37, P6

[20]

XIE G, 2004, P ACM SIGCOMM, P27

← 1 2 →