Fast Service Chaining
Iurman, Justin
Promotor(s) :
Mathy, Laurent
Date of defense : 7-Sep-2017/8-Sep-2017 • Permalink : http://hdl.handle.net/2268.2/3208
Details
Title : | Fast Service Chaining |
Author : | Iurman, Justin ![]() |
Date of defense : | 7-Sep-2017/8-Sep-2017 |
Advisor(s) : | Mathy, Laurent ![]() |
Committee's member(s) : | Donnet, Benoît ![]() Leduc, Guy ![]() Barbette, Tom ![]() |
Language : | English |
Number of pages : | 59 |
Keywords : | [en] Snort [en] DPDK [en] FastClick [en] NFV |
Discipline(s) : | Engineering, computing & technology > Computer science |
Target public : | Researchers Professionals of domain Student General public Other |
Complementary URL : | https://github.com/IurmanJ |
Institution(s) : | Université de Liège, Liège, Belgique |
Degree: | Master en sciences informatiques, à finalité spécialisée en "computer systems and networks" |
Faculty: | Master thesis of the Faculté des Sciences appliquées |
Abstract
[en] Today, the network traffic keeps growing again and again. Software middleboxes are crucial elements and can't become bottlenecks, at the risk of dropping network performances. They are either a firewall, a NAT, an intrusion detection system, a WAN optimizer, a load balancer, etc. That's why they must be efficient and choices made for their implementation are very important.
The objective of this work is to speed up Snort, which is an intrusion detection system, in a context of user level service chaining. Some improvements are studied and implemented in order to reach that goal. Thanks to those, Snort itself is also improved.
This paper describes the whole work, step by step. It begins with an introduction to define the context and to explain each protagonist. Then, next chapters are each dedicated to specific tests and measurements, in a view of comparing each result and improve performances. DPDK, a fast I/O framework developed by Intel, is introduced to speed up Snort. In a context of cooperation, FastClick and Snort exchange packets through DPDK rings and jobs repetitions are avoided thanks to a notion which is also introduced: metadata. Those metadata are used to pass information between multiple middleboxes. Other ideas are also studied. Finally, it ends with future possible improvements and a conclusion that discusses whether it is worthwhile to improve elements, in a view of a cooperation.
File(s)
Document(s)
Annexe(s)
Cite this master thesis
The University of Liège does not guarantee the scientific quality of these students' works or the accuracy of all the information they contain.