A Centralized Network Policy Controller for SDN-Based Service Overlay Networking

소프트웨어정의네트워크 기반의 서비스 오버레이 네트워킹을 위한 네트워크 정책 제어기

  • 조진용 (국가슈퍼컴퓨팅연구소, 한국과학기술정보연구원) ;
  • 이소연 (국가슈퍼컴퓨팅연구소, 한국과학기술정보연구원) ;
  • 공정욱 (국가슈퍼컴퓨팅연구소, 한국과학기술정보연구원) ;
  • 김종원 (Networked Computing Systems 연구실, 광주과학기술원)
  • Received : 2013.01.31
  • Accepted : 2013.03.22
  • Published : 2013.04.30


In this paper, to manage the efficient control of IP packet flows crossing multi-provider networks such as Internet, we propose a SDN(Software Defined Networking)-based policy controller. The proposed policy controller leverages the visibility of underlying network and manages both virtual links and ports to inter-connect networking elements. The controller is capable of quickly composing multiple on-demand virtual networks and dynamically managing the composed networks, thus it can provide more flexible and optimized overlay networking environment to end-user applications. More specifically, we first look into the proposed structure and features of policy controller. With two kinds of service applications, we then verify the applicability of the proposed controller by evaluating its service composition time.

본 논문은 인터넷과 같은 다중제공자(multi-provider) 네트워크 환경 하에서 패킷 플로우를 효과적으로 제어하기 위한 SDN(Software Defined Networking) 기반의 정책 제어기를 소개한다. 제안된 정책 제어기는 네트워크 가시성 정보를 이용해 가상링크 및 가상포트 등을 직관적으로 제어함으로써 효과적인 서비스 오버레이 네트워킹(service overlay networking) 환경을 실현한다. 또한, 논리적으로 구분된 다수의 주문형 가상망을 신속히 구성하고 동적으로 관리함으로써 응용에 최적화된 네트워킹 환경을 사용자에게 제공한다. 본 논문에서는 정책 제어기의 구조 및 특징을 소개한 후, 멀티캐스트를 위한 두 가지 서비스 응용을 예시한다. 또한, 해당 응용들을 이용한 네트워크 서비스의 구성 시간을 성능 평가함으로써 정책 제어기의 적용 가능성을 확인한다.



  1. J. H. Saltzer, D. P. Reed, and D. Clark, "End-to-end arguments in system design," ACM Trans. on Comput. Syst., vol. 2, no. 4, pp. 277-288, Nov. 1984.
  2. N. McKeown, Software-defined networking, Retrieved Apr. 2009, from
  3. J. JO, S. Lee, K. Kong, and J. Kim, "A NetFPGA-based IP service gateway for the composition of service overlay networks," J. KIPS, vol. 18, no. 6, pp. 413-422, Dec. 2011.
  4. N. McKeown, T. Aderson, H. Balakrishnan, G. Parulkar, L. Peterson, J. Rexford, S. Shenker, and J. Turner, "OpenFlow: enabling innovation in campus networks," ACM SIGCOMM comput. commun. review, vol. 38, no. 2, pp. 69-74, Apr. 2008.
  5. N. Gude, T. Koponen, J. Pettit, B. Pfaff, M. Casado, N. McKeown, and S. Shenker, "NOX: towards an operating system for networks," ACM SIGCOMM comput. commun. review, vol. 38, no. 3, pp. 105-110, Apr. 2008.
  6. B. Heller, D. Erickson, N. McKeown, R. Griffith, I. Ganichev, S. Whyte, K. Zarifis, D. Moon, S. Shenker, and S. Stuart, "Ripcord: a modular platform for data center networking," ACM SIGCOMM comput. commun. review, vol. 40, no. 4, pp. 457-458, Oct. 2010.
  7. H. Ho, C. Yang, and C. Chang, "Building an e-learning platform by access grid and data grid technologies," in Proc. of EEE 2004, pp. 452-455, Taipei, Taiwan, 2004
  8. NetFPGA, The NetFPGA is:, Retrieved Apr. 2013, from
  9. Y. Zhu, B. Li, and J. Guo, "Multicast with network coding in application-layer overlay networks," IEEE JSAC, vol. 22, no. 1, pp. 107-120, 2004.
  10. Nicira Networks, Inc, "Evolution of the Ethane architecture," Nicira Networks, Inc Technical Report AFRL-RI-RS-TR-2009-41, Feb. 2009.
  11. D. Erickson, What is Beacon?, Retrieved Apr. 2013, from
  12. Project Floodlight, Open source software for building software-defined networks, Retrieved Apr. 2013, from
  13. S. Lhm, K. Park, and V. Pai, "Wide-area network acceleration for the developing world," in Proc. USENIX Annu. Tech. Conf., pp. 18, Boston, U.S.A., June 2010.
  14. A. Fox, S.D. Gribble, Y. Chawathe, and E.A. Brewer, "Adapting to network and client variation using infrastructural proxies: lessons and perspectives," IEEE Personal Commun., vol. 5, no. 4, pp. 10-19, 1998.
  15. T. Hwang, H. Park, and J. Chung, "Personal mobile a/v control point for home-to-home media streaming," IEEE Trans. Consum. Electron., vol. 54, no. 1, pp. 87-92, Feb. 2008.
  16. N. Kim and J. Kim, "UDP-tunneling based multicast connectivity solution for multi-party collaborative envrionments," in Proc. SPIE 6015, pp. 275-284, Oct. 2005.
  17. N. Foster, A. Guha, M. Reiblatt, A. Story, M.J. Freedman, N.P. Katta, C. Monsanto, J. Reich, J. Rexford, C. Schelsinger, D. Walker, and R. Harrison, "Languages for software-defined networks," IEEE Commun. Mag., vol. 51, no. 2, pp. 128-134, Feb. 2013.
  18. M. Fernandez, "Evaluating OpenFlow controller paradigms," in Proc. ICN 2013, pp. 151-157, Seville, Spain, Jan. 2013.
  19. J. Oh, "Wireless Internet local broadcasting system using IP address translation," J. KICS, vol. 28, no. 3, pp. 217-223, Mar. 2003.

Cited by

  1. Security Policy Scheme for an Efficient Security Architecture in Software-Defined Networking vol.8, pp.2, 2017,