Advances, Systems and Applications
Table 4 Example of TAP high-level policy specification in DTARS application
From: OpenStackDP: a scalable network security framework for SDN-based OpenStack cloud infrastructure
TAP Policy | Identifier fields (mandatory) | Filtering fields (Optional) | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
Sender MAC | Sender IP | Receiver MAC | Receiver IP | Monitor MAC | Monitor IP | IPv4 Protocol | VLAN ID | SRC Port no | DST Port no | Other OF Fields | |
Policy#1 | 74:8f:3c: ba:91:05 | 10.1.1.5 | 74:8f:3c: ba:91:06 | 10.1.1.6 | 74:8f:3c: ba:91:07 | 10.1.1.7 | 6 (TCP) | * | * | 80 | – |
Policy#2 | 74:8f:3c: ba:91:05 | 10.1.1.5 | 74:8f:3c: ba:91:06 | 10.1.1.6 | 74:8f:3c: ba:91:08 | 10.1.1.8 | 18 (UDP) | 108 | * | * | MPLS_LABEL = 10 |
Policy#3 | 74:8f:3c: ba:91:06 | 10.1.1.6 | 74:8f:3c: ba:91:05 | 10.1.1.5 | 74:8f:3c: ba:91:09 | 10.1.1.9 | 6 (TCP) | 200 | * | 80 | IP_ECN = 9 |