论文信息 - Middleboxes: Controllable media firewalls

Middleboxes: Controllable media firewalls

Internet technology is promised for the broadband multi-service future. However, it is unclear how this technology can bring service providers the needed revenue, since today this technology cannot provide basic quality guarantees for the services rendered. Generally, over-provisioning of the bandwidth is used to get the services to an acceptable level, but this is costly and cannot work in areas where high aggregation rates are necessary (such as the local loop). Today IP (router) technology lacks mechanisms for high-granularity access control, per-user accounting, and quality of service (QoS) policing. We believe that, for a service provider to deploy billable services, these issues need to be resolved. Only if access to the service is controlled and only when the network provides information about the usage of the network elements can next-generation services in the telecommunication industry, like voice over IP (VoIP) and multimedia conferencing, be rolled out profitably. In this paper, we present a technology that can address these needs. We employ controllable firewalls that have the ability to prevent unwanted IP traffic from entering a network. Creating pinholes that allow individual calls (voice or real-time multimedia streams) in controllable firewalls can be done very fast and efficiently. Traditional firewalls have no such provisioning. Multiple application servers should be able to request pinholes to one or more controllable firewalls. This approach, while familiar from the public switched telephone network (PSTN), is a new paradigm for IP networks.

[1] Michael S. Borella,et al. Realm Specific IP: Framework , 2001, RFC.

[2] Eric C. Rosen,et al. Multiprotocol Label Switching Architecture , 2001, RFC.

[3] Vijay Srinivasan,et al. RSVP-TE: Extensions to RSVP for LSP Tunnels , 2001, RFC.

[4] R. Braden,et al. Resource reSer Vation Protocol (RSVP) , 1997 .

[5] Louise F. A. Spergel,et al. Application-level control of IP networks: IP beyond the Internet , 2001, Bell Labs Technical Journal.

[6] Zheng Wang,et al. An Architecture for Differentiated Services , 1998, RFC.

[7] Mark Handley,et al. SDP: Session Description Protocol , 1998, RFC.

[8] Steve Donovan,et al. SIP Session Timer , 1999 .

[9] Mark Handley,et al. SIP: Session Initiation Protocol , 1999, RFC.

[10] David L. Black,et al. An Architecture for Differentiated Service , 1998 .

[11] R. Braden,et al. Resource Reservation Protocol (rsvp) , 1995 .

[12] Henning Schulzrinne,et al. RTP: A Transport Protocol for Real-Time Applications , 1996, RFC.