SIPAV-SDN: Source Internet Protocol Address Validation for Software Defined Network
Ramesh Chand Meena1, Meenakshi Nawal2, Mahesh Bundele3
1Ramesh Chand Meena*, Research Scholar, School of Engineering & Technology, Poornima University, Jaipur, India.
2Meenakshi Nawal, Associate Professor, Computer Science and Engineering, School of Engineering & Technology, Poornima University, Jaipur, India.
3Mahesh Bundele, Director & Principal, Poornima College of Engineering, Jaipur, India.
Manuscript received on September 16, 2019. | Revised Manuscript received on 24 September, 2019. | Manuscript published on October 10, 2019. | PP: 3386-3393 | Volume-8 Issue-12, October 2019. | Retrieval Number: L26321081219/2019©BEIESP | DOI: 10.35940/ijitee.L2632.1081219
Open Access | Ethics and Policies | Cite | Mendeley | Indexing and Abstracting
© The Authors. Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC-BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)
Abstract: SDN technology is becoming every day more popular and big data centers and organizational networks have started deploying for its advantages. Current development of SDN network relies on target host IP address of packet and OFSwitches ignores checking of source host IP. SDN has separated control planes and data planes and OpenFlow protocol enabled switches are used as packet forwarding devices. The SDN controller controls flow of data packet through forwarding devices and when these are turned on, do not have any control and defense. The devices are not able to handle packet arriving from connected host. In this case, data packets of hosts are sent to the controller forwarding device for inspection and control packet creation for data packet and setting up required matching entries in flow table of forwarding device for such type of data packets generated by the hosts. The attackers can generate packets with Spoofed source IP address and perform various types of attacks. In this research paper, we offer a scheme as Source IP Address Validation for Software Defined Network (SIPAV-SDN) to check packet’s source host IP address by binding source host IP Address and MAC address with switch port. It maintains a HostTable at Controller for verification of source host IP and MAC with switch port and only forwards the packets which have valid sources host IP address. We also simulated SIPAV-SDN with hybrid SDN network and experiment results have shown that it achieved 100% packet filtering accuracy for IP spoofed TCP, UDP and ICMP packet attacks. We used python programming language for RYU controller in Mininet network emulator.
Keywords: Source, IP, Address, Validation, SIPAV, SDN, Controller
Scope of the Article: Software Engineering