CN114826923A - Network rigidity evaluation method of SDN network - Google Patents
Network rigidity evaluation method of SDN network Download PDFInfo
- Publication number
- CN114826923A CN114826923A CN202110112730.0A CN202110112730A CN114826923A CN 114826923 A CN114826923 A CN 114826923A CN 202110112730 A CN202110112730 A CN 202110112730A CN 114826923 A CN114826923 A CN 114826923A
- Authority
- CN
- China
- Prior art keywords
- network
- sdn
- packet
- messages
- switch
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0896—Bandwidth or capacity management, i.e. automatically increasing or decreasing capacities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0893—Assignment of logical groups to network elements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/50—Reducing energy consumption in communication networks in wire-line communication networks, e.g. low power modes or reduced link rate
Abstract
The invention discloses a network rigidity evaluation method of an SDN (software defined network), which belongs to the technical field of network security and comprehensively evaluates the rigidity of the SDN from three directions of a network resource class, a network address topology class and a network strategy class; when the network rigidity influence caused by the network topology is judged, the concept of the number of available forwarding paths is provided, more available paths are ensured by considering the condition of acceptable delay, and the robustness and the load balancing capability of the network are greatly improved; in the process of judging the network policy efficiency, the network policy execution efficiency is judged by using the SDN controller load, and the processing condition of the network message of the SDN network can be obtained macroscopically by detecting the processing condition of the main message on the SDN controller. The method and the device can evaluate the comprehensive SDN network stiffness degree under the complicated and changeable SDN network environment, and greatly improve the accuracy of evaluating the network stiffness degree under the complicated and changeable SDN network environment.
Description
Technical Field
The invention belongs to the technical field of network security, and particularly relates to a network rigidness evaluation method of an SDN network.
Background
The rapid development of cloud computing and the strong support of national policies on cloud computing drive more and more organizations or individuals to deploy key business and core data into cloud data centers. With the increase of business requirements, cloud data centers are more and more presented with the characteristics of diversification, differentiation and high customization. However, the conventional internet is limited in that its design structure is difficult to support the current market demand in terms of flexibility, customization of services, and the like. Therefore, Network virtualization technologies such as Software Defined Network (SDN) are applied to deployment in cloud data. As can be seen from the analysis of the network architecture and the layer protocol of the SDN network, various potential safety hazards are caused in the SDN network due to programmability. In order to achieve the aims of quick early warning and accurate defense of a cloud data center, the network strategy of the SDN can be adjusted in an instructive manner, and the important significance is provided for researching a network rigidity evaluation method in the SDN.
In the SDN network, all SDN network switches are connected to a controller portion in the SDN network, the controller in the SDN network issues flow tables to each switch according to a current network policy, and the switches determine forwarding of traffic according to the issued flow tables. Therefore, it is very important to guarantee the connection condition of the SDN network and the switch. In the existing network rigidity evaluation method for the SDN, the communication capacity of the maximum guarantee edge path under the condition of the most network congestion is used as a network rigidity evaluation index, in order to select the maximum guarantee edge path, the method firstly finds out the edges in the SDN topology, then continuously finds out and eliminates the maximum number of sharable edges in the current edge set, and finally forms a target path. However, in the process of analyzing the network rigidity, the method uses a relatively static path selection method, and is difficult to make a decision on the rigidity in the SDN network under complex and variable conditions, cannot evaluate the network rigidity of the SDN network comprehensively and accurately, and is difficult to provide an instructive decision scheme for complex and variable SDN network environments.
Disclosure of Invention
In view of the above defects or improvement needs in the prior art, the present invention provides a network rigidity assessment method for an SDN network, which aims to solve the technical problem that the network rigidity of the SDN network cannot be assessed comprehensively and accurately under complex and variable conditions due to the adoption of a relatively static path selection method in the prior art.
In order to achieve the above object, in a first aspect, the present invention provides a network rigidity evaluation method for an SDN network, including the following steps:
s1, monitoring and recording packet-in messages, flow _ mod messages and packet _ out messages generated on the SDN network controller within a preset acquisition time T;
s2, after the preset acquisition time T, reading switch identity information, flow table quantity, data packet quantity and data packet flow from each switch of the SDN network, and recording the information as SDN network switch information; respectively counting the number of packet-in messages, flow _ mod messages and packet _ out messages of the SDN controller within preset acquisition time T; analyzing an IP address and a virtual IP address in a packet-in message data packet of the SDN controller within preset acquisition time T;
s3, respectively calculating the load of each switch according to the obtained SDN network switch information; respectively weighting and summing the obtained loads of all the switches to obtain the total load of the SDN network so as to evaluate the service condition of network resources of the SDN network;
respectively calculating the ratio of the number of packet-in messages of the SDN controller to the maximum number of packet-in messages reachable by the SDN controller within preset acquisition time T, the ratio of the number of flow _ mod messages to the maximum number of flow _ mod messages reachable by the SDN controller, and the ratio of the number of packet _ out messages to the maximum number of packet _ out messages reachable by the SDN controller, and recording the ratios as a first ratio, a second ratio and a third ratio respectively to evaluate the network policy efficiency execution condition of the SDN network;
determining an unused IP network segment and an unused IP address of the SDN according to an IP address and a virtual IP address in a packet-in message data packet of the SDN controller within a preset acquisition time T and by combining network pool information of the SDN, and evaluating the network variable space condition of the SDN by combining the number of available forwarding paths among the used IP addresses;
and S4, evaluating the network rigidity of the SDN based on the network resource use condition, the network strategy efficiency execution condition and the network variable space condition of the SDN.
Further preferably, the preset acquisition time T is greater than or equal to 1s and less than or equal to 5 s.
Further preferably, the SDN network switch information is represented as a multidimensional matrix established by taking a switch identity and a collection timestamp as dimensions and taking the number of flow tables, the number of packets, and the packet flow as characteristic quantities.
Further preferably, singular value decomposition is performed on the multidimensional matrix on the slice of the switch identity and the acquisition time to obtain the switch information characteristics of each switch and each acquisition time, so as to calculate the load of each switch.
Further preferably, the host sends the first traffic, the second traffic and the third traffic to the SDN network, respectively; wherein first flow < second flow < third flow;
under different flow scenes, the SDN network switch information is respectively collected; respectively calculating the load of each switch according to the obtained SDN network switch information; respectively weighting and summing the obtained loads of all the switches to obtain the total load capacity of the SDN network under three different flow scenes, wherein the total load capacity corresponds to the network resource use conditions of the SDN network at three different levels; the more traffic sent by the host, the higher the network resource utilization of the SDN network;
and comparing the total load of the SDN network obtained in the step S3 with the total load of the SDN network in the three different traffic scenarios, and determining the network resource usage of the SDN network.
Further preferably, the available forwarding path is a path with a forwarding path delay smaller than a preset delay.
Further preferably, the higher the total load of the SDN network, the higher the utilization rate of network resources of the SDN network, and the higher the network rigidity;
the lower the first ratio, the second ratio or the third ratio is, the lower the network policy efficiency of the SDN network is, and the higher the network rigidity is;
the less the unused IP network segments, unused IP addresses or available links in the SDN network are, the smaller the network variable space is, and the higher the network rigidity is.
In a second aspect, the present invention provides a network rigidity evaluation system for an SDN network, including: the system comprises an information acquisition module, a network resource evaluation module, a strategy efficiency evaluation module, a variable space evaluation module and a network rigidness evaluation module;
the information acquisition module is used for monitoring and recording packet-in information, flow _ mod information and packet _ out information generated on the SDN network controller within a preset acquisition time T; after a preset acquisition time T, reading switch identity information, flow table quantity, data packet quantity and data packet flow from each switch of the SDN network, recording as SDN network switch information, and outputting to a network resource evaluation module; respectively counting the number of packet-in messages, flow _ mod messages and packet _ out messages of the SDN controller within preset acquisition time T, and outputting the packet-in messages, the flow _ mod messages and the packet _ out messages to a strategy efficiency evaluation module; analyzing an IP address and a virtual IP address in a packet-in message data packet of the SDN controller within preset acquisition time T, and outputting the IP address and the virtual IP address to a variable space evaluation module;
the network resource evaluation module is used for respectively calculating the load of each switch according to the obtained SDN network switch information; weighting and summing the obtained loads of all the switches respectively to obtain the total load of the SDN network so as to evaluate the service condition of network resources of the SDN network and output the service condition to a network rigidness evaluation module;
the strategy efficiency evaluation module is used for respectively calculating the ratio of the number of packet-in messages of the SDN controller to the maximum number of packet-in messages reachable by the SDN controller, the ratio of the number of flow _ mod messages to the maximum number of flow _ mod messages reachable by the SDN controller and the ratio of the number of packet _ out messages to the maximum number of packet _ out messages reachable by the SDN controller within a preset acquisition time T, respectively recording the ratios as a first ratio, a second ratio and a third ratio to evaluate the network strategy efficiency execution condition of the SDN network, and outputting the result to the network rigidness evaluation module;
the variable space evaluation module is used for determining an unused IP network segment and an unused IP address of the SDN according to the IP address and the virtual IP address in a packet-in message data packet of the SDN controller within preset acquisition time T in combination with network pool information of the SDN, evaluating the network variable space condition of the SDN in combination with the number of available forwarding paths among the used IP addresses, and outputting the network variable space condition of the SDN to the network rigidity evaluation module;
the network rigidity evaluation module is used for evaluating the network rigidity of the SDN based on the network resource use condition, the network strategy efficiency execution condition and the network variable space condition of the SDN.
In a third aspect, the present invention also provides a machine-readable storage medium having stored thereon machine-executable instructions that, when invoked and executed by a processor, cause the processor to implement any one of the network rigidity assessment methods for SDN networks as described above.
In general, compared with the prior art, the above technical solution contemplated by the present invention can achieve the following beneficial effects:
1. the invention provides a network rigidity evaluation method of an SDN network, which comprehensively evaluates the rigidity of the SDN network from three directions of a network resource class, a network address topology class and a network strategy class, and comprehensively evaluates the rigidity of the SDN network under a complex and changeable SDN network environment so as to improve the accuracy of the network rigidity evaluation under the complex and changeable SDN network environment.
2. The network rigidity evaluation method of the SDN network provided by the invention provides a concept of the number of available forwarding paths when judging the network rigidity influence caused by network topology, ensures more available paths by considering the condition of acceptable delay, greatly improves the robustness of the network and the load balancing capability, and thus improves the accuracy of the evaluation of the variable space condition of the network.
3. According to the network rigidity evaluation method of the SDN, provided by the invention, in the process of judging the network policy efficiency, the network policy execution efficiency is judged by using the SDN controller load, and the processing condition of the network message of the SDN can be macroscopically obtained by detecting the processing condition of the main message on the SDN controller, so that the execution efficiency of the SDN network policy is evaluated.
Drawings
Fig. 1 is a flowchart of a network rigidity evaluation method for an SDN network according to embodiment 1 of the present invention;
fig. 2 is a schematic structural diagram of a network rigidity evaluation system of an SDN network according to embodiment 2 of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention. In addition, the technical features involved in the embodiments of the present invention described below may be combined with each other as long as they do not conflict with each other.
Examples 1,
A network rigidity evaluation method for an SDN network, as shown in fig. 1, includes the following steps:
s1, monitoring and recording packet-in messages, flow _ mod messages and packet _ out messages generated on the SDN network controller within a preset acquisition time T; specifically, the preset acquisition time T is greater than or equal to 1s and less than or equal to 5 s.
Further, before executing step S1, in the process of processing the flow table rule, the SDN controller needs to acquire a topology structure of the SDN network, a load capacity of a switch in the SDN network, a load capacity of the SDN controller, a size of an IP resource pool, and a virtual IP address mapping table structure.
And S2, after the preset acquisition time T, reading the switch identity information, the flow table quantity, the data packet quantity and the data packet flow from each switch of the SDN network, and recording as the SDN network switch information. Specifically, the number of flow tables, the number of data packets and the flow of the data packets on the switch are obtained according to the identity of the switch; the SDN network switch information is expressed as a multidimensional matrix established by taking the switch identity and the acquisition timestamp as dimensions and taking the flow table quantity, the data packet quantity and the data packet flow as characteristic quantities. And performing singular value decomposition on the multidimensional matrix on the slices of the identity and the acquisition time of the switch to obtain the information characteristics of the switches at each switch and each acquisition time so as to calculate the load of each switch.
And respectively counting the number of packet-in messages, flow _ mod messages and packet _ out messages of the SDN controller within preset acquisition time T. Specifically, for the SDN managed by a single SDN controller, respectively integrating the packet-in, flow _ mod and packet _ out message quantities of all switches within the time T e [1,5] second according to the statistical mode of the single SDN controller; and counting the message load on each SDN controller according to the construction mode of the SDN controller in the master-slave mode.
And analyzing the IP address and the virtual IP address in the packet-in message data packet of the SDN controller within the preset acquisition time T. Specifically, in the message uploading process set by the SDN controller, an SDN switch packet-in message uploading mode with a message header in the uploading message needs to be set.
S3, respectively evaluating the network resource use condition, the network strategy efficiency execution condition and the network variable space condition of the SDN network;
1) evaluation of network resource usage for SDN networks
Respectively calculating the load of each switch according to the obtained SDN network switch information; and respectively weighting and summing the obtained loads of all the switches to obtain the total load of the SDN network so as to evaluate the service condition of network resources of the SDN network. The method comprises the following specific steps: according to the analysis process of the multi-dimensional matrix, firstly, a singular value decomposition mode is used for obtaining a characteristic result on a section of the identity and the acquisition time of the switch, and then the characteristic result is compared with preset scenes under different loads so as to obtain an evaluation result aiming at the weighted loads of three scenes, namely a low scene, a high scene and a medium scene. Specifically, singular value decomposition is carried out on the multidimensional matrix on the slices of the identity and the acquisition time of the switch to obtain information characteristics of the switches and the switches at the acquisition time so as to calculate the load of each switch; specifically, the eigenvector obtained after singular value decomposition represents the eigenvalue of each switch in the packet flow, the packet number and the flow table number at the current time, and then the load of each switch is obtained on average according to the ratio of the actual highest performance of each switch. And then, weighting and summing the obtained loads of all the switches respectively to obtain the total load of the current SDN network so as to evaluate the network resource use condition of the SDN network.
When the network resource use condition of the SDN network is evaluated, the network resource use condition of the SDN network is divided into three levels of low level, medium level and high level in advance, and the specific process is as follows:
respectively sending first flow, second flow and third flow to the SDN through a host; the first flow rate is less than the second flow rate is less than the third flow rate, and the first flow rate, the second flow rate and the third flow rate respectively correspond to flow rates with different sizes in low, medium and high; in the embodiment, the first flow is 1kB/s-500 kB/s; the medium flow is 4-6 MB/s; the high flow rate is 10-20 MB/s.
Under different flow scenes, the SDN network switch information is respectively collected; respectively calculating the load of each switch according to the obtained SDN network switch information; respectively weighting and summing the obtained loads of all the switches to obtain the total load capacity of the SDN network under three different flow scenes, wherein the total load capacity corresponds to the network resource use conditions of the SDN network with three different load grades, namely low, medium and high; the more traffic sent by the host, the higher the network resource utilization of the SDN network; and comparing the obtained total load of the current SDN with the total load of the SDN under the three different flow scenes, and determining the service condition of network resources of the SDN.
2) Evaluation of network policy efficiency enforcement
Respectively calculating the ratio of the number of packet-in messages of the SDN controller to the maximum number of packet-in messages reachable by the SDN controller within preset acquisition time T, the ratio of the number of flow _ mod messages to the maximum number of flow _ mod messages reachable by the SDN controller, and the ratio of the number of packet _ out messages to the maximum number of packet _ out messages reachable by the SDN controller, and recording the ratios as a first ratio, a second ratio and a third ratio respectively to evaluate the network policy efficiency execution condition of the SDN network;
specifically, as the load of the SDN controller increases, the first ratio, the second ratio, or the third ratio decreases; when the SDN controller is unloaded, the first ratio, the second ratio, or the third ratio may increase.
3) Evaluation of network variable spatial conditions
According to the IP address and the virtual IP address in the packet-in message data packet of the SDN controller within the preset acquisition time T, determining an unused IP network segment and an unused IP address of the SDN network by combining with the network pool information of the SDN network, and evaluating the network variable space condition of the SDN network by combining with the number of available forwarding paths among the used IP addresses.
Specifically, the method comprises two aspects:
in the first aspect, in the process of evaluating a network variable space, mapping used IP addresses and used virtual IP addresses according to IP addresses and virtual IP addresses in packet-in message data packets of an SDN controller within preset acquisition time T, and calculating unused IP network segments and IP addresses of the SDN according to known IP address pool information in a network pool;
according to the second aspect, the number of available forwarding paths between used IP addresses is used as a judgment basis, the number of available forwarding paths is judged according to the forwarding path delay, and a path with the forwarding path delay smaller than the preset delay is used as an available forwarding path; in this embodiment, the forwarding path delay value is 1000 ms.
It should be noted that, in the process of determining the number of forwarding paths to be used, the present embodiment uses the network topology information between hosts corresponding to IP addresses, and uses the shortest-path and second-shortest-path algorithms to obtain the number of available forwarding paths of the optional link.
And S4, evaluating the network rigidity of the SDN based on the network resource use condition, the network strategy efficiency execution condition and the network variable space condition of the SDN.
Specifically, the higher the total load of the SDN network is, the higher the utilization rate of network resources of the SDN network is, and the higher the network rigidity is; the lower the first ratio, the second ratio or the third ratio is, the lower the network policy efficiency of the SDN network is, and the higher the network rigidity is; the less the unused IP network segments, unused IP addresses or available links in the SDN network are, the smaller the network variable space is, and the higher the network rigidity is.
It should be noted that, in this embodiment, the network stiffness of the SDN network is evaluated once every preset acquisition time T according to the method in the above steps S1-S4.
Examples 2,
A network rigidity evaluation system of an SDN network, as shown in fig. 2, includes: the system comprises an information acquisition module, a network resource evaluation module, a strategy efficiency evaluation module, a variable space evaluation module and a network rigidness evaluation module;
the information acquisition module is used for monitoring and recording packet-in information, flow _ mod information and packet _ out information generated on the SDN network controller within a preset acquisition time T; after a preset acquisition time T, reading switch identity information, flow table quantity, data packet quantity and data packet flow from each switch of the SDN network, recording as SDN network switch information, and outputting to a network resource evaluation module; respectively counting the number of packet-in messages, flow _ mod messages and packet _ out messages of the SDN controller within preset acquisition time T, and outputting the packet-in messages, the flow _ mod messages and the packet _ out messages to a strategy efficiency evaluation module; analyzing an IP address and a virtual IP address in a packet-in message data packet of the SDN controller within preset acquisition time T, and outputting the IP address and the virtual IP address to a variable space evaluation module;
the network resource evaluation module is used for respectively calculating the load of each switch according to the obtained SDN network switch information; weighting and summing the obtained loads of all the switches respectively to obtain the total load of the SDN network so as to evaluate the service condition of network resources of the SDN network and output the service condition to a network rigidness evaluation module;
the strategy efficiency evaluation module is used for respectively calculating the ratio of the number of packet-in messages of the SDN controller to the maximum number of packet-in messages reachable by the SDN controller, the ratio of the number of flow _ mod messages to the maximum number of flow _ mod messages reachable by the SDN controller and the ratio of the number of packet _ out messages to the maximum number of packet _ out messages reachable by the SDN controller within a preset acquisition time T, respectively recording the ratios as a first ratio, a second ratio and a third ratio to evaluate the network strategy efficiency execution condition of the SDN network, and outputting the result to the network rigidness evaluation module;
the variable space evaluation module is used for determining an unused IP network segment and an unused IP address of the SDN according to the IP address and the virtual IP address in a packet-in message data packet of the SDN controller within a preset acquisition time T in combination with network pool information of the SDN, evaluating the network variable space condition of the SDN in combination with the number of available forwarding paths among the used IP addresses, and outputting the network variable space condition of the SDN to the network rigidness evaluation module;
the network rigidity evaluation module is used for evaluating the network rigidity of the SDN based on the network resource use condition, the network strategy efficiency execution condition and the network variable space condition of the SDN.
The related technical features are the same as those of embodiment 1, and are not described herein.
Examples 3,
A machine-readable storage medium storing machine-executable instructions that, when invoked and executed by a processor, cause the processor to implement the network rigidity assessment method for an SDN network described in embodiment 1.
The related technical features are the same as those of embodiment 1, and are not described herein.
It will be understood by those skilled in the art that the foregoing is only a preferred embodiment of the present invention, and is not intended to limit the invention, and that any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the scope of the present invention.
Claims (9)
1. A network rigidity evaluation method of an SDN network is characterized by comprising the following steps:
s1, monitoring and recording packet-in messages, flow _ mod messages and packet _ out messages generated on the SDN network controller within a preset acquisition time T;
s2, after the preset acquisition time T, reading switch identity information, flow table quantity, data packet quantity and data packet flow from each switch of the SDN network, and recording the information as SDN network switch information; respectively counting the number of packet-in messages, flow _ mod messages and packet _ out messages of the SDN controller within the preset acquisition time T; analyzing an IP address and a virtual IP address in a packet-in message data packet of the SDN controller within the preset acquisition time T;
s3, respectively calculating the load of each switch according to the SDN network switch information; respectively weighting and summing the load of each switch to obtain the total load of the SDN network so as to evaluate the service condition of network resources of the SDN network;
respectively calculating the ratio of the number of packet-in messages of the SDN controller to the maximum number of packet-in messages reachable by the SDN controller, the ratio of the number of flow _ mod messages to the maximum number of flow _ mod messages reachable by the SDN controller, and the ratio of the number of packet _ out messages to the maximum number of packet _ out messages reachable by the SDN controller within the preset acquisition time T, and respectively recording the ratios as a first ratio, a second ratio and a third ratio to evaluate the network policy efficiency execution condition of the SDN network;
determining an unused IP network segment and an unused IP address of the SDN according to the IP address and the virtual IP address in the packet-in message data packet of the SDN controller within the preset acquisition time T and by combining network pool information of the SDN, and evaluating the network variable space condition of the SDN by combining the number of available forwarding paths among the used IP addresses;
and S4, evaluating the network rigidity of the SDN based on the network resource use condition, the network strategy efficiency execution condition and the network variable space condition of the SDN.
2. The method of claim 1, wherein the preset acquisition time T is greater than or equal to 1s and less than or equal to 5 s.
3. The method of evaluating network rigidity of the SDN network of claim 1, wherein the SDN network switch information is represented as a multidimensional matrix established by taking a switch identity and a collection timestamp as dimensions and taking a flow table number, a packet number and a packet flow as characteristic quantities.
4. The method of claim 3, wherein singular value decomposition is performed on the multidimensional matrix on slices of switch identities and acquisition times to obtain switch information characteristics of each switch at each acquisition time, so as to calculate the load of each switch.
5. The method of evaluating the network rigidity of the SDN network according to claim 1, wherein the first traffic, the second traffic, and the third traffic are sent to the SDN network by the host; wherein first flow < second flow < third flow;
respectively acquiring SDN network switch information under different flow scenes; respectively calculating the load of each switch according to the obtained SDN network switch information; respectively weighting and summing the obtained loads of all the switches to obtain the total load capacity of the SDN network under three different flow scenes, wherein the total load capacity corresponds to the network resource use conditions of the SDN network at three different levels; the more traffic sent by the host, the higher the network resource utilization of the SDN network;
comparing the total load of the SDN network obtained in the step S3 with the total load of the SDN network in the three different traffic scenarios, and determining a network resource usage of the SDN network.
6. The method of evaluating network rigidity of the SDN network of claim 1, wherein the available forwarding paths are paths having a forwarding path delay less than a preset delay.
7. The network rigidity evaluation method of the SDN network according to any one of claims 1 to 6, wherein the higher the total load of the SDN network, the higher the usage rate of network resources of the SDN network, and the higher the network rigidity;
the lower the first ratio, the second ratio or the third ratio is, the lower the network policy efficiency of the SDN network is, and the higher the network rigidity is;
the less the number of unused IP network segments, unused IP addresses or available links of the SDN network is, the smaller the network variable space is, and the higher the network rigidity is.
8. A network rigidity evaluation system of an SDN network is characterized by comprising: the system comprises an information acquisition module, a network resource evaluation module, a strategy efficiency evaluation module, a variable space evaluation module and a network rigidness evaluation module;
the information acquisition module is used for monitoring and recording packet-in information, flow _ mod information and packet _ out information generated on the SDN network controller within a preset acquisition time T; after the preset acquisition time T, reading the switch identity information, the flow table quantity, the data packet quantity and the data packet flow from each switch of the SDN network, recording as SDN network switch information, and outputting to the network resource evaluation module; respectively counting the number of packet-in messages, flow _ mod messages and packet _ out messages of the SDN controller within the preset acquisition time T, and outputting the counted messages to the strategy efficiency evaluation module; analyzing an IP address and a virtual IP address in a packet-in message data packet of the SDN controller within the preset acquisition time T, and outputting the IP address and the virtual IP address to the variable space evaluation module;
the network resource evaluation module is used for respectively calculating the load of each switch according to the SDN network switch information; respectively weighting and summing the load of each switch to obtain the total load of the SDN network so as to evaluate the service condition of network resources of the SDN network, and outputting the service condition to the network rigidness evaluation module;
the policy efficiency evaluation module is configured to calculate a ratio of the number of packet-in messages of the SDN controller to the highest number of packet-in messages reachable by the SDN controller, a ratio of the number of flow _ mod messages to the highest number of flow _ mod messages reachable by the SDN controller, and a ratio of packet _ out messages to the highest number of packet _ out messages reachable by the SDN controller within the preset acquisition time T, respectively record the ratios as a first ratio, a second ratio, and a third ratio, so as to evaluate a network policy efficiency execution condition of the SDN network, and output the result to the network stiffness evaluation module;
the variable space evaluation module is used for determining an unused IP network segment and an unused IP address of the SDN according to the IP address and the virtual IP address in the packet-in message data packet of the SDN controller within the preset acquisition time T in combination with network pool information of the SDN, evaluating the network variable space condition of the SDN in combination with the number of available forwarding paths among the used IP addresses, and outputting the network variable space condition of the SDN to the network rigidness evaluation module;
the network rigidity evaluation module is used for evaluating the network rigidity of the SDN based on the network resource use condition, the network strategy efficiency execution condition and the network variable space condition of the SDN.
9. A machine-readable storage medium having stored thereon machine-executable instructions which, when invoked and executed by a processor, cause the processor to implement the network rigidity assessment method for an SDN network of any one of claims 1-7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110112730.0A CN114826923B (en) | 2021-01-27 | 2021-01-27 | Network stiffness evaluation method of SDN (software defined network) |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110112730.0A CN114826923B (en) | 2021-01-27 | 2021-01-27 | Network stiffness evaluation method of SDN (software defined network) |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114826923A true CN114826923A (en) | 2022-07-29 |
| CN114826923B CN114826923B (en) | 2023-04-28 |
Family
ID=82525190
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110112730.0A Active CN114826923B (en) | 2021-01-27 | 2021-01-27 | Network stiffness evaluation method of SDN (software defined network) |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114826923B (en) |
Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2015131699A1 (en) * | 2014-10-17 | 2015-09-11 | 中兴通讯股份有限公司 | Load balancing method and device |
| US20150358236A1 (en) * | 2014-06-05 | 2015-12-10 | KEMP Technologies Inc. | Adaptive load balancer and methods for intelligent data traffic steering |
| CN107070714A (en) * | 2017-04-10 | 2017-08-18 | 中国人民解放军国防科学技术大学 | A kind of SDN abnormality monitoring method |
| WO2017193815A1 (en) * | 2016-05-10 | 2017-11-16 | 中兴通讯股份有限公司 | Sdn management control method, device and system, and olt |
| CN107370676A (en) * | 2017-08-03 | 2017-11-21 | 中山大学 | Fusion QoS and load balancing demand a kind of route selection method |
| CN107918690A (en) * | 2017-09-27 | 2018-04-17 | 国网安徽省电力有限公司 | A kind of relay protection device state evaluating method based on BP neural network algorithm |
| CN107959633A (en) * | 2017-11-18 | 2018-04-24 | 浙江工商大学 | A kind of load balance method based on price mechanism in industry real-time network |
| JP2018102005A (en) * | 2018-03-09 | 2018-06-28 | Kddi株式会社 | Communication system |
| CN110138759A (en) * | 2019-05-06 | 2019-08-16 | 华东师范大学 | The lightweight self-adapting detecting method and system of Packet-In injection attacks are directed under SDN environment |
| CN110198270A (en) * | 2019-05-10 | 2019-09-03 | 华中科技大学 | A kind of active defense method in SDN network based on path and IP address jump |
| CN111147287A (en) * | 2019-12-10 | 2020-05-12 | 网络通信与安全紫金山实验室 | Network simulation method and system in SDN scene |
-
2021
- 2021-01-27 CN CN202110112730.0A patent/CN114826923B/en active Active
Patent Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20150358236A1 (en) * | 2014-06-05 | 2015-12-10 | KEMP Technologies Inc. | Adaptive load balancer and methods for intelligent data traffic steering |
| WO2015131699A1 (en) * | 2014-10-17 | 2015-09-11 | 中兴通讯股份有限公司 | Load balancing method and device |
| WO2017193815A1 (en) * | 2016-05-10 | 2017-11-16 | 中兴通讯股份有限公司 | Sdn management control method, device and system, and olt |
| CN107070714A (en) * | 2017-04-10 | 2017-08-18 | 中国人民解放军国防科学技术大学 | A kind of SDN abnormality monitoring method |
| CN107370676A (en) * | 2017-08-03 | 2017-11-21 | 中山大学 | Fusion QoS and load balancing demand a kind of route selection method |
| CN107918690A (en) * | 2017-09-27 | 2018-04-17 | 国网安徽省电力有限公司 | A kind of relay protection device state evaluating method based on BP neural network algorithm |
| CN107959633A (en) * | 2017-11-18 | 2018-04-24 | 浙江工商大学 | A kind of load balance method based on price mechanism in industry real-time network |
| JP2018102005A (en) * | 2018-03-09 | 2018-06-28 | Kddi株式会社 | Communication system |
| CN110138759A (en) * | 2019-05-06 | 2019-08-16 | 华东师范大学 | The lightweight self-adapting detecting method and system of Packet-In injection attacks are directed under SDN environment |
| CN110198270A (en) * | 2019-05-10 | 2019-09-03 | 华中科技大学 | A kind of active defense method in SDN network based on path and IP address jump |
| CN111147287A (en) * | 2019-12-10 | 2020-05-12 | 网络通信与安全紫金山实验室 | Network simulation method and system in SDN scene |
Non-Patent Citations (5)
| Title |
|---|
| JUN HUANG ET AL.: "Admission control with flow aggregation for QoS provisioning in software-defined network", 《IEEE》 * |
| 李阳等: "一种SDN网络路径异常监控方法", 《计算机科学》 * |
| 王蔚等: "基于网络编码的感知无线网多中继机制", 《电子与信息学报》 * |
| 胡帅等: "有线网络中虚拟网络映射算法研究", 《计算机应用研究》 * |
| 胡柳等: "一种基于SDN的自适应多路径负载均衡策略", 《西安工程大学学报》 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114826923B (en) | 2023-04-28 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109150627B (en) | Virtual network mapping construction method based on dynamic resource demand and topology perception | |
| CN111478850B (en) | Gateway adjusting method and device | |
| US10320688B2 (en) | Aggregating flows by endpoint category | |
| US10193811B1 (en) | Flow distribution using telemetry and machine learning techniques | |
| US10771363B2 (en) | Devices for analyzing and mitigating dropped packets | |
| CN111835562B (en) | Log uploading method, log inquiring method and system | |
| CN111726299B (en) | Flow balancing method and device | |
| CN109067926A (en) | Load-balancing method, device, computer equipment and storage medium | |
| CN101834763B (en) | Multiple-category large-flow parallel measuring method under high speed network environment | |
| CN110855741B (en) | Service self-adaptive access method and device, storage medium and electronic device | |
| CN111782700A (en) | Data stream frequency estimation method, system and medium based on double-layer structure | |
| CN114205226B (en) | Method and system for guaranteeing business application experience | |
| CN113347286A (en) | Method, device and equipment for determining domain name server and storage medium | |
| CN114826923A (en) | Network rigidity evaluation method of SDN network | |
| CN110972199B (en) | Flow congestion monitoring method and device | |
| KR101338223B1 (en) | System and method for analyzing network traffic | |
| US11115857B2 (en) | Bandwidth sentinel | |
| WO2023125380A1 (en) | Data management method and corresponding apparatus | |
| CN111935769B (en) | Poor cell identification method, device and equipment | |
| CN112532448B (en) | Network topology processing method and device and electronic equipment | |
| CN112954667B (en) | Detection method and device for hotspot mobile terminal, computer equipment and storage medium | |
| US9900251B1 (en) | Bandwidth sentinel | |
| CN106817268B (en) | DDOS attack detection method and system | |
| CN111371826B (en) | CDN node performance detection method, device and system | |
| Yang et al. | Load balancing scheduling algorithm for storage system based on state acquisition and dynamic feedback |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |