计算机应用 ›› 2019, Vol. 39 ›› Issue (2): 453-457.DOI: 10.11772/j.issn.1001-9081.2018082061

• 网络空间安全 • 上一篇    下一篇

软件定义广域网中控制器部署与交换机动态迁移策略

郭烜成1,2, 林晖1,2, 叶秀彩3, 许传丰1,2   

  1. 1. 福建师范大学 数学与信息学院, 福州 350117;
    2. 福建省网络安全与密码技术重点实验室(福建师范大学), 福州 350117;
    3. 筑波大学 计算机科学系, 东京 筑波 305-0000
  • 收稿日期:2018-10-12 修回日期:2018-11-06 出版日期:2019-02-10 发布日期:2019-02-15
  • 通讯作者: 林晖
  • 作者简介:郭烜成(1995-),女,福建龙岩人,硕士研究生,主要研究方向:网络安全、网络优化;林晖(1977-),男,福建福州人,副教授,博士,主要研究方向:信任管理、无线网络信息安全、移动云计算;叶秀彩(1983-),女,福建厦门人,助理教授,博士,主要研究方向:机器学习、数据分析;许传丰(1994-),男,江苏宿迁人,硕士研究生,主要研究方向:网络安全。
  • 基金资助:
    国家自然科学基金面上项目(61772008);福建省引导项目(原工业重点项目)(2016Y0031);福州市科技局项目(2017-G-79);福建省自然科学基金资助项目(2016J01289)。

Controller deployment and switch dynamic migration strategy in software defined WAN

GUO Xuancheng1,2, LIN Hui1,2, YE Xiucai3, XU Chuanfeng1,2   

  1. 1. College of Mathematics and Infomatics, Fujian Normal University, Fuzhou Fujian 350117, China;
    2. Fujian Provincial Key Laboratory of Network Security and Cryptology(Fujian Nomal University), Fuzhou Fujian 350117, China;
    3. Department of Computer Science, University of Tsukuba, Tsukuba Tokyo 305-0000, Japan
  • Received:2018-10-12 Revised:2018-11-06 Online:2019-02-10 Published:2019-02-15
  • Supported by:
    This work is partially supported by the National Natural Science Foundation of China (61772008), the Fujian Province Guiding Project (Formerly Key Industrial Project) (2016Y0031), the Fuzhou Science and Technology Bureau Project (2017-G-79), the Natural Science Foundation of Fujian Province (2016J01289).

摘要: 在软件定义广域网(SD-WAN)部署中,由于广域网(WAN)覆盖范围极大这一特性,单控制器部署策略无论在容量、负载还是安全方面都无法满足其需求,多控制器的部署成为必然趋势。而多控制器部署后整体网络的静态配置很难适应动态的网络流变化,从而造成控制器的负载不均衡,整体网络性能降低。针对上述问题,提出一种多控制器部署算法SC-cSNN,以有效减小控制器和交换机之间的传播时延;并提出一种基于时延、控制器容量以及控制器安全等特征的交换机动态迁移算法,以有效解决控制器超负载问题。仿真实验结果表明,SC-cSNN控制器部署算法的平均最大时延优于现有的基于k-means和基于谱聚类的控制器部署算法,交换机动态迁移算法从多特征的角度有效地解决了SD-WAN控制器负载不均衡的问题。

关键词: 软件定义广域网, 谱聚类, 控制器部署, k邻近算法, 交换机动态迁移

Abstract: Due to the wide coverage of the Wide Area Network (WAN), the single-controller deployment of Software Defined-Wide Area Network (SD-WAN) cannot meet its needs in capacity, load and security, the deployment of multiple controllers becomes necessary. However, the static configuration of the whole network after the deployment of multiple controllers was difficult to be adapted to the change of dynamic network flow, which can easily lead to load unbalance of controllers, reducing the network performance. To solve this problem, a multi-controller deployment algorithm named SC-cSNN (Spectral Clustering-closeness of the Shared Nearest Neighbors) was proposed to reduce the propagation delay between the controller and the switch, and a dynamic switch migration method based on features such as time-delay, capacity and security was proposed to solve the problem of controller overload. Simulation results indicate that compared with existing controller deployment algorithms based on k-means and spectral clustering, the multi-controller deployment algorithm and the dynamic switch migration method can effectively minimize the average maximum delay between the controller and the switch and solve the problem of controller overload.

Key words: Software Defined-Wide Area Network (SD-WAN), spectral clustering, controller deployment, k-Nearest Neighbor (kNN) algorithm, switch dynamic migration

中图分类号: