Development of Software-Defined Mesh Network Emulator Testbed for DDoS Defence Study

This paper has proposed to develop a software-defined mesh network emulator testbed in order to study a network defense against a DDoS attack. By using SDN, virtual switches can be reprogrammed to drop attacker traffics at the earliest possible locations. This is advantageous in comparison with the current industrial practice whereby only a firewall sitting at the network domain border or a gateway can perform such dropping action. The testbed uses the GNS3 platform where OVS switches are constructed and controlled by the Opendaylight controller. A simple Linux script has been developed herein to instantiate a distributed ping attack from all possible starting switches to a victim gateway with the DDoS intention. The numerical example reported here shows TCP and UDP throughputs, round-trip time as measurable by emulated network users to demonstrate the application of SDN in resolving the attacking adverse effects.

[1]  Chaodit Aswakul,et al.  SybilVote: Formulas to Quantify the Success Probability of Sybil Attack in Online Social Network Voting , 2017, IEEE Communications Letters.

[2]  Abeer Alsadoon,et al.  Development of a virtualized networking lab using GNS3 and VMware workstation , 2016, 2016 International Conference on Wireless Communications, Signal Processing and Networking (WiSPNET).

[3]  S. Mercy Shalinie,et al.  A survey of distributed denial of service attack , 2016, 2016 10th International Conference on Intelligent Systems and Control (ISCO).

[4]  Chaodit Aswakul,et al.  SybilComm: Sybil community detection using persuading function in IoT system , 2016, 2016 International Conference on Electronics, Information, and Communications (ICEIC).

[5]  Sanjay Jha,et al.  A Survey of Securing Networks Using Software Defined Networking , 2015, IEEE Transactions on Reliability.

[6]  Sherali Zeadally,et al.  Cyberwar: The What, When, Why, and How [Commentary] , 2014, IEEE Technol. Soc. Mag..

[7]  Cian Shu Tan Network simulator test engine for Huawei eNSP and Cisco GNS3 , 2014 .

[8]  Hang Yin,et al.  Comparison between physical devices and simulator software for Cisco network technology teaching , 2013, 2013 8th International Conference on Computer Science & Education.

[9]  Mr. JustinGopinath,et al.  DDoS Mitigation using Software Defined Network , 2015 .