Evaluation of OpenFlow in RB750GL - RouterOS 6.6 -
2013.11.19 @ttsubo
Motivation I want to get the OpenFlow s lab in minimum cost . So, I am so happy what if it works under the experimental version . Currently RouterOS implements OpenFlow version 1.0.0 required features. Support for newer versions, optional features and switching hardware acceleration are to be added. Current implementation should be considered experimental - NOT production ready and is available for evaluation purposes. Please contact support with feature requests and bug reports. OpenFlow support is available as standalone openflow package. OpenFlow feature overrides regular packet processing functionality packets that are received on interfaces that are OpenFlow switch ports, will not pass through the regular networking stack unless OpenFlow controller sets up flows that enable this. Due to this care must be taken to not disable access to the device when configuring OpenFlow. Currently only unencrypted TCP is available as the communications channel between RouterOS OpenFlow switch and controller. http://wiki.mikrotik.com/wiki/Manual:OpenFlow 2
Test Scenario1: IP Routing in OpenFlow
3
Test Scenario1: IP Routing in OpenFlow - ICMP Echo Request from PC-A to PC-B - ICMP Echo Reply from PC-B to PC-A OFS
PC-A
OFC
PC-B
Secure Channel
192.168.0.1
ARP Request ARP Reply ICMP_Echo Request
192.168.1.1
Packet-in Packet-out
Packet-in Packet-out
Drop!! ARP Request ARP Reply
FlowMod
ICMP_Echo Request ICMP (Echo Reply
ICMP_Echo Request ICMP (Echo Reply 4
Test Result : No good !! The OFS doesn t send ARP Packets to OFC using packet-in messages . OFS
PC-A
OFC
PC-B
Secure Channel
192.168.0.1
ARP Request ARP Reply ICMP_Echo Request
192.168.1.1
Packet-in Packet-out
Packet-in Packet-out
Drop!! ARP Request ARP Reply
FlowMod
ICMP_Echo Request ICMP (Echo Reply
ICMP_Echo Request ICMP (Echo Reply 5
Investigation of the cause When the secure channel has established, I ve checked Features Reply packet as below . OFS
OFC Secure Channel
It looks like Max packets buffered sets zero value .
Hello Hello Features Request
Features Reply Set Config Echo Request Echo Reply 6
Investigation of the cause Because of Max packets buffered: zero , the OFS doesn t send Packets to OFC using packt-in messages . /* Switch features. */
struct ofp_switch_features {
struct ofp_header header;
};
OpenFlow Switch Specification Version 1.3.2
7.3 Controller-to-Switch Messages
uint64_t datapath_id;
uint32_t n_buffers;
uint8_t n_tables;
uint8_t auxiliary_id;
uint8_t pad[2];
/* Datapath unique ID. The lower 48-bits are for
a MAC address, while the upper 16-bits are
implementer-defined. */
/* Max packets buffered at once. */
/* Number of tables supported by datapath. */
/* Identify auxiliary connections */
/* Align to 64-bits. */
/* Features. */
uint32_t capabilities; /* Bitmap of support "ofp_capabilities". */
The datapath_id field uniquely identifies a datapath. The lower 48 bits are intended for the switch MAC address, while the top 16 bits are up to the implementer. An example use of the top 16 bits would be a VLAN ID to distinguish multiple virtual switch instances on a single physical switch. This field should be treated as an opaque bit string by controllers.
The n_buffers field specifies the maximum number of packets the switch can buffer when sending packets to the controller using packet-in messages (see 6.1.2).
Reference : Max packets buffered
7
Test Scenario2: IP Routing in OpenFlow without Packet-in
8
Test Scenario2: IP Routing in OpenFlow w/o Packet-in
I ve rebuilt Test Scenario1 without Packet-in as below . OFS
PC-A
OFC
PC-B
Secure Channel
192.168.0.1
ARP Request
192.168.1.1
Packet-in Packet-out
PC-A and PC-B has already done the sequence ARP resolve .
ARP Reply
ICMP_Echo Request ARP Reply
Packet-in Packet-out Packet-out Packet-out
Drop!! ARP Request ARPReply Reply ARP
FlowMod
ICMP_Echo Request ICMP (Echo Reply
ICMP_Echo Request ICMP (Echo Reply 9
Test Result : No good !! PC-A hasn t received ICMP_Echo_Reply . OFS
A Flow statistic hasn t counted up . So, the FlowEntry doesn t work in properly . [admin@MikroTik] > openflow flow print stats Flags: I - inactive # SWITCH MATCH
BYTES
0 oflow1 1 oflow1
0 0
inpor... inpor...
PACKETS DURATION 0 3m38s830ms 0 3m38s830ms 12
Investigation of the cause OFS
PC-A
OFC
PC-B
Secure Channel
192.168.0.1
ARP Reply
192.168.1.1
Packet-out Packet-out
ARP Reply
FlowMod
ICMP_Echo Request
ICMP_Echo Request
When PC-B has received ICMP_Echo_Request from PC-A, PC-B hasn t sended ICMP_Echo_Reply
13
Investigation of the cause
This packet is ICMP_Echo_Request in PC-A
192.168.0.1 (7C:C3:A1:87:8F:65)
OFS
PC-A 192.168.0.10 (00:00:00:00:00:01)
192.168.1.1 (00:1A:80:0A:9E:D4)
The OFS doesn t replace mac_address fields in spite of storing FlowTable .
PC-B
ICMP_Echo Request 14
Investigation of the cause When the secure channel has established, I ve checked Features Reply packet as below, again . OFS
OFC Secure Channel
OFS in RouterBOARD can t replace L2/L3 header field .
Hello Hello Features Request
Features Reply Set Config Echo Request Echo Reply 15
Conclusion: The latest OpenFlow code under the experimental version doesn t work in properly as below in RB750GL. I m looking forward to releasing the product version . OFC FlowMod : it works
SecureChannel : it works Packet-out : it works
Packet-in : it doesn t work PC-A
PC-B
Flow Table
OFS
Forwarding : it doesn t work 16
referense : OpenFlow in Open-WRT It works in Test Scenario1: IP Routing in OpenFlow !! OFS
Nov 19, 2013 - hardware acceleration are to be added. Current ... and bug reports. OpenFlow support is available as standalone openflow package. OpenFlow ...
NoviFlow Inc.⢠aims to change the traditional approach to networking by making switching smarter. ... Up to 1 Million wildcard match flow entries in TCAM,.
Loading⦠Page 1. Whoops! There was a problem loading more pages. openflow tutorial pdf. openflow tutorial pdf. Open. Extract. Open with. Sign In. Main menu.
Feb 4, 2014 - Upgrading an Application in a Virtual Services Container 39. Collecting ... documentation as an RSS feed and delivers content directly to your desktop using a reader application. The ...... VS: Flow created: Rule: ip,dl_vlan=3 Actions:
Jul 7, 2013 - same scheduled execution time. A controller can also invoke a time-based sequence. âThe Israel Pollak academic chair at Technion; this work ...
Feb 4, 2014 - You cannot configure a bridge domain, Virtual LANs and virtual ...... Device(config-ofa-switch)# tls trust-point local local-trustpoint-name remote .... Version file, used to check compatibility with the virtualization infrastructure.
Feb 4, 2014 - www.cisco.com/c/en/us/td/docs/general/whatsnew/whatsnew.html. Subscribe to ...... This setup utility will guide you through the basic configuration of the system. .... The Cisco Support and Documentation website provides ...
Feb 4, 2014 - ... and other countries. To view a list of Cisco trademarks, go to this URL: http:// .... Recommended disk space is 360 MB. Restrictions for Cisco ...
Nov 30, 2015 - The latest approved version is located under version control. 3 / 15. Table of Contents. Change ... Today's Network Management Challenges .
Today's major network operators demand flexible, scalable switching solutions that ... Software Defined Networking to improve the cost/performance, security, ...
Nov 30, 2015 - Other product names used herein are for identification purposes only, and may be trademarks of their respective companies. .... Date. Revision No. Author. Revision Description. Approved ... The vast array of data formats,.
view, we define an initial Routing-as-a-Service platform based on the RouteFlow ... In line with the design rationale and best practices of scale-out cloud ...
Laptop. Bob Lantz, [email protected]. November 19, 2009 ... Solution: virtual network on laptop. - my bias: large scale behavioral simulation ... Page 9 ...
Page 1 of 517. Page 1 of 517 ..... [Fei Hu]Network Innovation through OpenFlow and SDN Principles and Design(pdf){Zzzzz}.pdf. [Fei Hu]Network Innovation ...
of transition rates from secondary education to tertiary education and regression ... and rural backgrounds to attend tertiary education, in particular the technical.
In addition, data from the Education Schedule conducted by NSSO in 1995-96 are also used. ..... cost-recovery make tertiary ...... could be a shortage of seats in rural areas, which is likely to require smart expansion of public, private, or ...
Education from Carlow University, an M.A. in Theology from. Duquesne University and a D. Min in Spiritual Direction from the. Graduate Theological Foundation ...
This short Country Report, a result of a larger infoDev-supported Survey of ICT in Education in Africa, provides a general overview of ... dynamic stage in Africa; new developments and announcements happening on a daily basis somewhere on the contine
Ethical Standards in EradicationControlling Corruption in Governance A Critique - Jeet Singh Mann.pdf. 7. Ethical Standards in EradicationControlling ...
3. Investing in Shea. March 2010. 1 Contents. 2. List of Figures and Tables . ..... 24AllAfrica.com http://allafrica.com/stories/200904030782.html. 25 FlexNews ...
![[Fei Hu]Network Innovation through OpenFlow and SDN Principles ...](https://p.pdfkul.com/img/300x300/fei-hunetwork-innovation-through-openflow-and-sdn-_59ba09a11723ddacb43c4568.jpg)
