LOFTVerified Migration of Linux Firewalls to SDN

Julius Michaelis 🌐 and Cornelius Diekmann 🌐

October 21, 2016

This is a development version of this entry. It might change over time and is not stable. Please refer to release versions for citations.

Abstract

We present LOFT — Linux firewall OpenFlow Translator, a system that transforms the main routing table and FORWARD chain of iptables of a Linux-based firewall into a set of static OpenFlow rules. Our implementation is verified against a model of a simplified Linux-based router and we can directly show how much of the original functionality is preserved.

License

BSD License

Topics

Session LOFT

Depends on