首页>
外国专利>
Techniques for traffic diversion in software defined networks for mitigating denial of service attacks
Techniques for traffic diversion in software defined networks for mitigating denial of service attacks
展开▼
机译:软件定义网络中的流量转移技术,用于缓解拒绝服务攻击
展开▼
页面导航
摘要
著录项
相似文献
摘要
A method for mitigating of denial of service (DoS) attacks in a software defined network (SDN). The method comprises receiving a DoS attack indication performed against at least one destination server; programming each network element in the SDN to forward a packet based on a diversion value designated in a packet diversion field, upon reception of the DoS attack indication; instructing at least one peer network element in the SDN to mark a diversion field in each packet in the incoming traffic addressed to the destination server to allow diversion of the packet to a security server; and instructing edge network elements in the SDN to unmark the diversion field of each packet output by the security server, wherein each network element in the SDN is programmed to forward the unmarked packets processed by the security server to the at least one destination server.
展开▼