Next Article in Journal
Use of a Realistic Ray-Based Model for the Evaluation of Indoor RF Coverage Solutions Using Reconfigurable Intelligent Surfaces
Next Article in Special Issue
High-Performance Embedded System for Offline Signature Verification Problem Using Machine Learning
Previous Article in Journal
Fusion Model for Classification Performance Optimization in a Highly Imbalance Breast Cancer Dataset
Previous Article in Special Issue
Multimodal Mood Consistency and Mood Dependency Neural Network Circuit Based on Memristors
 
 
Font Type:
Arial Georgia Verdana
Font Size:
Aa Aa Aa
Line Spacing:
Column Width:
Background:
Article

Integration of Interdomain Flow-Rule in Software-Defined Networks for Embedded Internet of Things Devices

1
University Institute of Information Technology, UIIT, PMAS-AAUR, Rawalpindi 46000, Pakistan
2
Department of Computer Science, Allama Iqbal Open University, H-8, Islamabad 44000, Pakistan
3
Department of Electronic and Computer Engineering, University of Limerick, V94 T9PX Limerick, Ireland
4
Department of Embedded Systems Engineering, Incheon National University, Incheon 22012, Republic of Korea
5
Energy Excellence & Smart City Lab., Incheon National University, Incheon 22012, Republic of Korea
*
Author to whom correspondence should be addressed.
Electronics 2023, 12(5), 1172; https://doi.org/10.3390/electronics12051172
Submission received: 4 January 2023 / Revised: 19 February 2023 / Accepted: 23 February 2023 / Published: 28 February 2023
(This article belongs to the Special Issue High-Performance Embedded Computing)

Abstract

:
Software-defined networking (SDN) is an evolving technology providing proper segregation between the control part and data-forwarding domain of network devices. The expansion of the Internet of Things (IoTs) and embedded mobile devices increases the volume of traffic at the network backbone and causes processing costs in the control plane. This directly affects the Ternary Content Addressable Memory (TCAM) of the switches because insufficient space makes it more challenging to manage the flow-entries. In this situation, providing services to specific users who newly authenticate after the successful handoff from the previous SDN domain is challenging. This paper proposes a method for implanting the users’ primary domain’s flow-rules in the serving SDN domain. As the TCAM is already suffering from a short space, it is hard to handle the flow-tables of multiple SDN domains in limited TCAM storage. The SDN-based Integration of the Interdomain Flow-rule in the SDN (IIF-SDN) scheme maximizes the proficiency of the switches by effectively storing flow-table and flow-entries. The effectiveness of the proposed scheme is benchmarked with proactive and reactive SDN approaches.

1. Introduction

The rapid development of online applications, cloud computing, multimedia applications, and big data analytics demands revolutionary steps for flexible, agile, cost-effective, and specific service provisioning related to individuals [1,2]. The concept of virtualization in the network enhances the functionality of the network, such as network function virtualization (NFV) and software-defined networking (SDN) [3,4]. SDN—which is divided into two parts: the control plane and the data plane—is emerging as a key enabler in the networking field, and it aids in packet transmission between network devices and the IoT. The SDN controller remote virtual machine is placed anywhere in the network to manage policy functions, routing-related jobs, and the whole background processes. The SDN itself accomplishes the run-time configuration and programmatic behavior moderation. In SDN, the packet transmission rules are stored and managed in a flow-table inside the switch. Various schemes have been developed for managing flow information for the improvement of the ability of the network [5,6]. Figure 1 demonstrates the flow-table and the flow-entry fields stored inside the flow-table.
Flow-entry is an element of the flow-table to establish the matching-field, action-field, and stats-field. The matching-field contains packet information, and the action-field holds information about what actions apply when flow-entry matches. The stats-field stores the information about how much time the packet matched [1,2,3]. The OpenFlow switch contains a flow-table, usually implemented with the technology of TCAM. The flow-table is based on rules, access control lists (ACLs), and the IP route table. The SDN controller randomly checks the switches and updates the flow-table by installing new strategies.
There are two approaches for updating the flow-table in SDN: (i) reactive and (ii) proactive; in the reactive approach, the SDN controller does not install the flow-table when the network operation is launched. Instead, the SDN controller sets up rules in the flow-table as packets arrive at the switch during the network operation. On the other hand, the flow-rules are installed into the flow-table in advance in a proactive approach as a network operation begins. The proactive approach can reduce the overhead in the communication between the controllers and switches [4,5,6]. Some more degradation issues related to the SDN performance are (i) topology changes, (ii) network reconfiguration, and iii) re-routing rules creation. The most frequent challenge for the SDN controller is upgrading the switches rapidly and consistently to maintain the quality of service (QoS) [7,8]. Figure 2 shows the taxonomy of SDN performance challenges.
The key finding of this research is (i) hybrid flow-rule integration inside the SDN switches, (ii) packet transmission without any anomaly, (iii) hybrid flow-rule execution, iv) optimized flow entries, and the update process itself. Therefore, the network data can be forwarded generally in the uninterrupted update scenario. Furthermore, the proposed IIF-SDN scheme is applied on account of a rapid response between the controller and switches for services to the continuously connecting users of different SDN domains, which is highly significant to maintain and incorporate the hybrid flow-rule in TCAM and ACLs of switches.
The rest of the paper is organized as follows: The background knowledge described in Section 2 briefly enlightens the operations in SDN networks and details of the flow-table and flow-entry management. This is followed by explaining the SDN-based IIF scheme and its function in Section 3. The Section 3 subsections describe the complete performance evaluation of IIF according to the defined performance metrics. Finally, Section 5 is the conclusion of the paper.

2. Related Work

The OpenFlow switch in an SDN-based Wi-Fi network is located at the access point, and OpenFlow provides interoperability between the controller and data plane. The centralized control in SDN technologies minimizes many problems, such as handover delay, overload or load balancing issues, and packet losses as compared to conventional Wi-Fi network technologies. The controller takes all decisions for policy implementation, including packet processing, such as the addition, modification, and deletion of entries in the OpenFlow switch’s TCAM [9]. In addition, the OpenFlow switches are used as forwarding elements in the SDN-based Wi-Fi network.
SDN is designed and developed for flow-based network applications and has complex matching patterns for packet transmission. TCAM produces more complexity because of its limited storage size for forwarding rules, and the OpenFlow technology has an essential concern regarding its deployment [10,11,12]. The solution to this problem is to reduce the demand for TCAM and aggregate the required entries by merging the flow-entries, and preserving its original semantics through wildcard rules. For the fast-updating flow-entries, there are more solutions: (i) delegate control back to the switch, (ii) common flow entries, (iii) cluster allocation in the SDN switch. However, the bandwidth can affect the update flow-rule speed between the controller and switches; for this kind of issue, some researchers proposed a solution to delegate the control back to the switch to release the overloaded SDN controller [13,14,15]. Another solution proposed in [16] is that the intermediate switch does not need any controller for rule installation if sending and receiving switches update the flow-table by parsing information in the packet header. This scheme helps to release the controller’s burden and improve the network’s speed.
An SDN-based wireless network (SWN) [17] is the scheme proposed for seamless handover, load-balancing, and unified authentication with the cooperation of the SDN controller. The author used software as a bridge between the mobile node and the access point, namely, the software access point (SAP). Although the researchers of this scheme claim good results of throughput of SAP-based handover, experimental tests are not included in this study.
After the successful handoff, it is necessary to allocate resources to the newly registered mobile user. The user frequently complains that the serving domain cannot provide the same services as the primary domain. Therefore, maintaining the QoS of the primary domain in the serving domain is crucial. SDN-based Heterogeneous Inter-Domain Handoff system for IoT (SDN-HIIoT).
The mobility-aware hybrid flow-rule cache scheme [18] chooses whether to install the flow-rule either proactively or reactively for the target-candidate-forwarding nodes based on a comparison between the delay requirement of the incoming flow and the response delay of the controller. Considering the flow-rule cache constraints, the heuristic technique is used to define and resolve the integer linear programming (ILP) issue to determine the ideal number of proactive flow rules.
SDN-HiIoT proposed in [3] is based on the heterogeneous SDN domains handoff system for mobile devices. This methodology is used to exchange the flow rules by using east-bound and west-bound APIs between two SDN controllers. Here, novel technology experiments are used based on the simulation of two SDN RYU controllers and OpenFlow switches.
The proposed solution was invented to provide the primary SDN domain’s quality of services (QoS) to those users who register from any SDN domain in the current SDN domain. SDN-HiIoT is established by the “C” controller and all “M” flow-tables. In this proposed technology, the existing SDN domain obtains the primary domain flow-rules for the newly authenticated user for the provision of quality of services (QoS). The equation before the installation of the obtained flow-rules in the current SDN domain looks like C(current) = i = 1 m M , where i = {1, 2, 3 … m}; after installation of the primary domain flow-rules, the equation becomes C(current) = i = 1 m + k M , where k is considered as an obtained flow-rule of the primary domain. Figure 3 shows the flow-rule exchange.
For the management of the flow-table, the Authority Switches scheme is also used to speed up the process of the installation of rules, which requires large-scale modification but is not sure of the OpenFlow protocol specification. An automatic flow-table control technique is proposed in [19] for the OpenFlow switch to solve insufficient flow-table resources. However, this optimization scheme needs to fulfill the requirement of the switch and real network environment. The reduction in the update and time provided some more solutions, for example, caching flow entries, storage structure modification, and some algorithms proposed for the free spacing in TCAM [20,21,22,23].
As explained in the above paragraph, the flow-table cannot handle all necessary forwarding rule entries concerning enhancing the efficiency of the flow-table, as illustrated in Figure 4. More studies have been published to manage and control the flow-table rules using the adaptive time-out mechanism [24,25,26,27,28]. Additionally, some other solutions are designed to reduce the flow-table’s size by using the aggregation concept. Other solutions focused on splitting the rules and distributing them in the network based on device capacity. Another proposed method is to limit the switch’s concurrent forwarding rules and overhead. There are some machine-learning techniques to predict patterns for traffic flow and observe the proper flow being installed in the flow-table of the switch [29,30,31].
The multi-switching delay is also part of this discussion, which reduces the delay by combing and filtering rules in a global view. The size of the storage of switches varies and is used to constrain flow-entries for the fast updating speed of the flow-table in the entire network.
The table underneath shortly describes the comprehensive research. Table 1 is based, somehow, on the SDN controller placement approach, and the zone represents the area where researchers applied their proposed scheme and obtained the results in the target column of the table.
The above work is selected from different journals on SDN-based services and technologies. Researchers have proposed very considerable techniques and methods in various areas of SDN. However, existing schemes do not significantly impact the performance of a single switch and need to resolve the complete problem of update processes. For rapid updating and providing certain services to the specific user, new schemes are required that increase system functionality, provide an optimized solution, and impact the OpenFlow network performance.

3. Proposed Work

This research focuses on making the network dynamic by implanting the different SDN-domain flow rules in the current SDN domain without disturbing the existing users’ flow rules and services. The proposed scheme is developed to provide services to specific users of different SDN-domains. The TCAM was designed for fast lookup and packet matching but is less dense than the RAM and can store fewer bits in the same chip area. Therefore, it is hard to install multiple SDN-domain flow-rules on a single SDN-domain. We have proposed a scheme for the fast lookup of entries and high-speed flow-rule installations, especially for large-scale networks. It is obligatory to enable the switches to adapt to the new policy and provide quick responses to the newly registered user of different SDN domains. Figure 5 clearly describes how our proposed scheme facilitates the SDN components without adding hardware.

3.1. IIF-SDN Formulation

As already discussed in the introduction of this article, the SDN controller works on two basic concepts—the reactive and proactive approaches—for updating the flow-table in the switch based on the occurrence of certain events in the network. In the case of a reactive approach, the SDN controller does not install any flow-rule in the switch because it waits for the packet influx, then populates the rules accordingly and installs them on the switch [32,33]. On the other hand, the SDN controller installs the flow-rules in advance as the network begins the operation. The selection of the flow-rules has a significant value for enhancing the network performance, especially in large networks, such as data centers. In our proposed IIF-SDN, we have used a proactive approach. In this case, the SDN controller obtained all other SDN domain flow-rules in advance. This technique is used for the enhancement of the efficiency of the network.
In IIF-SDN, the SDN controller stores the flow entries after becoming priority-wise from the other SDN domains; high-priority entries are saved on the top of the list. Then, as the switch is requested for installation in the switch, the controller installs the customized flow-rules list on the switch, considering the priority of each entry). This technique reduces the lookup efforts in ACL and TCAM. Figure 6 shows the IIF-SDN proactive approach on the SDN controller layer.

3.2. Network Model

The set of SDN domains represented by “SDNdom” and all flow-tables of one domain represented by “β” are shown in Table 2 and explained in Equations (1) and (2).
S D N dom = i = 1 n C ,   where   i = 1 ,   2 ,   3   n
Β = j = 1 m f r s   ,   where   j = 1 ,   2 ,   3   m β     S D N dom
The new SDNdom is registered in the network of SDNdoms; they share flow-rules with the newly registered SDNdom (as shown in Figure 7). After obtaining frs, the new SDNc sort “frs on a priority base and organize all entries in the “β”, as shown in Equations (3) and (4).
βj = frs(1), frs(2), frs(3)frs(m)
βj = frs(1)frs(2)frs(3)… frs(m−1)frs(m)
After increasing the SDN domains, Equation (1) is extended, as represented below (Equation (5)):
S D N c = i = 1 n + 1 C ,   where   i = C 1 ,   C 2 ,   C 3   C n ,   C n + 1 ,   C n + 2 ,   C n + 3   C n + n
Additionally, after increasing the SDN domains, the value of “m” will also increase by “m + 1”; then, Equation (2) of the flow-table is extended, as follows (Equation (6)):
Β = {β1, β2, β3βm, β(m + 1), β(m + 2), β(m + 3)β(m + m)}
Initially, calculate the “β” at “Sw” and differentiate the active flow-table βactSDNdom(B) and inactive flow-tables λ ∈ SDNdom(B) (as shown in Equations (7) and (8)). In this equation, the flow-rule function “f()” has some operation in TCAM for the flow-entries to make them useful for the SDN controller and switches. Equations (9) and (10) make the space by removing “λ” from the SDNSw-TCAM(B) of the corresponding switch where i, j, and k represent the number of flow-tables, and n, m, and p are the maximum value of the flow-tables.
  • Active flow-rules of the SDNdom(B) switch:
f S D N Sw TCAM B = j = 1 m β ;   where   j = 1 ,   2 ,   3   m ,   β     S D N dom B
  • Inactive flow-rules of the SDNdom(B) switch:
f S D N Sw TCAM B = k = 1 p λ ;   where   k = 1 ,   2 ,   3   p ,   β     S D N dom B  
For the new rule installation at SDNSw-TCAM(B), consider Equation (4). βact are the existing rules of SDNdom(B) and βc are the new rules of the primary domain of the user followed by the SDNCSDNdom(B).
f β act B = j = 1 m β k = 1 p λ ;   where   β     S D N dom A   and   λ     S D N dom B
f S D N Sw TCAM B = f β act B + j = 1 m β c     S D N dom A  
As discussed above, the “frs“ are acquired from the heterogeneous SDN domains and organized at the controller level. Thus, this scheme is very lightweight for the SDNdom by implanting the flow-rules in advance. The effectiveness and advancement of SDN are shown in the results section of the proposed scheme.

3.3. Approximation Algorithm

Algorithm 1 of the IIF-SDN scheme shows how the newly registered SDN controller will obtain the flow-rules “frs” from different SDN domains and will store them using a proactive approach. Furthermore, the IIF-SDN scheme arranges the flow-entries “µ” on the controller side, as shown in Algorithm 2. This scheme is designed to reduce the organization of the flow rules “frs” and the searching efforts at the SDN switch level. Here, we take an example between two SDN domains, “SDNdom(A)” and “SDNdom(B)”, as described in Algorithm 1.
Algorithm 1: For a new Mobile Node Serving SDN Domain
  • Data: SDN Controller and Switches
  • Result: Flow-rules assignment to a single Mobile Node
  • begin
  • Initialization
  • SDNdom = B;
  • SDNC; SDNSw; SDNSw-TCAM; frs-c;//∈ SDNdom(B)
  • MN ∈ SDNdom(A)
  • for all SDNSw
  • if (MN==New)
  • //generate a “prob-request” to SDNC for installation of frs-c
  • If (f(SDNC)== prob-request)
  • execute Algorithms 2 and 3
  • else
  • assign frs
  • end
The supporting Algorithm 2 is designed to facilitate Algorithm 1, which provides services to arrange the “frs“ priority-wise.
Algorithm 2: Priority-Wise Sorting of Heterogeneous SDN Domains in the Serving SDN Domain
  • Data: flow-table in current SDN controller
  • Result: permutation of flow-entries “µ” in flow-table priorities wise such that,
  • //create and initialize an array for flow-entries
  • arr[µ1] ≤ arr [µ2], arr [µ3] ≤ … arr [µm]
  • Procedure Frs_priority(arr [],m)
  • if(m ≤ 1) then
  • return;
  • else
  • for i ←1 to m-1 do
  • if (arr[µi]< arr[µm]) then swap (arr[µi], arr[µm])
  • end
  • Frs_priority (arr [],µm-1])
  • end
The phenomenon of the switch in SDN is to match the packet with “µ” of the “β” as the packet arrives; if the packet does not match, the switch requests the controller to install or update the flow-table in the switch. Indeed, the SDN controller switches are homogeneous by nature. Thus, all switches are configured on a reactive approach in the IIF-SDN scheme because of the short storage of TCAM. The main advantage of this scheme is that all hybrid flow-rules “frs” of the SDN domains are available locally, thus can easily deploy on the data layer as required. Figure 8 shows the heterogeneous SDNdoms.
The primary SDNdom of MN is “B”, and the serving SDNdom is “A”. The frs of SDNdom(B) have already been stored in the SDNcSDNdom(A) controller’s repository under this scheme. The controller installs the frs at the corresponding SDNSw on request of the corresponding SDNSw. The proposed scheme and its algorithms are very effective and enhance the network capabilities without disturbing the performance of the SDNc, SDNSw-TCAM, and existing network users.
Algorithm 3: Flow-Rule Integration in TCAM for the New Mobile Node
  • Data: SDN Controller and Switches
  • Result: Flow-rules integration in serving SDN domain’s TCAM
  • begin
    • Initialization
    • SDNc; SDNSw-TCAM; βc; λ; i; k; n;
    • for all SDNSw
    • do
    • βact(A); λ[k];//∈ SDNSw-TCAM(A)
    • β(B) [i];//∈ SDNc(A)
    • n = i++;
    • p = k++;
    • while (n ≥ p)//n is top index of βc ∈ SDNc and p is top index of λ ∈ SDNSw-TCAM ∈ SDNdom(A)
      f(β(B)) + f(βact(A)) −  k = 1 p λ A  +   i = 1 m β c ;//where A and B represent domain A and domain B.
    • end
Only one thing is added in this scheme that makes it distinguished. It accommodates the user as per its primary domain flow-table. The benefit is to enable the switch to work for all users without any anomaly of the rules. Moreover, the controller can organize the flow-tables of heterogeneous SDN domains.
After obtaining information about a new user’s registration in the network from the switch, the controller distinguishes the user’s domain and sends a request to the primary domains of the user for flow-rules. The user’s primary domain will send the upgraded and organized coy of the flow-rules to the controller. Then, the controller updates/installs the required flow-rules at the corresponding switch as shows in Figure 9.
Algorithm 3, designed for the SDN switches, clearly describes the story of the inner side of the switch and how the IIF-SDN scheme deployed and worked in switches. Under the proposed scheme, Figure 10 is the broader preview of the SDN domains, including hosts, switches, controllers, and other network components.

3.4. System Model

For the proposed IIF-SDN scheme experiment, software and packages are required to install, for example, processing power and memory size. Underneath, Table 3 describes the environment for the experiments of the proposed scheme.

4. System Implementation and Experimental Demonstrations

The experiment of the IIF-SDN scheme is summarized in Table 4, which is carried out on the small and large system environments separately. A small system experiment is based on two or three nodes only, and an extensive system is based on more than three nodes. Here, the node is considered an SDN domain which shares flow rules. We have separately passed “21,550 and 22,220” flows between the small system and “58,000 and 60,998” in the extensive system under reactive and proactive approaches, as shown in Table 4. We obtained the results of which showed the effectiveness and efficiency of the proposed scheme.
Numerous flow-tables can be stored in the SDN controller and can be installed on request of the switches in the data layer. The SDN controller communicates with the data layer using the south-bound/north-bound Application Programming Interface (API). A flow-entry is an element of the flow-table that matches and processes the packet. One SDN domain can have many flow-tables. If the SDN domains increase, then the flow-table also increases manifold. In the proposed scheme, we have shared flow-tables of all SDN domains with each SDN domain. Figure 11 and Figure 12 show the SDN domains, flow-table, and flow-table update cost at the SDN controller.
We have evaluated the updated cost of the flow-table. The increase in the SDN controller has a direct impact on flow-tables, as shown in Equation (11) below. The graph shows that the IIF-SDN scheme takes more time than the normal SDN domains; this is because we have processed the flow-table priority-wise in descending order on the SDN controller to avoid the switch labor.
f β = i = 1 n C   f S D N Sw TCAM ;   where   i = 1 ,   2 ,   3 ,     n  
Figure 13 and Figure 14 show the two nodes’ flow-rules and the multiple SDN nodes’ flow-rule exchange. Figure 15 and Figure 16 show the IIF-SDN result with the two and multiple nodes’ flow-rule exchange.
We analyzed, through an experiment, two SDN domains and multiple SDN domains under reactive and proactive approaches. The result is that after passing several flows, the proactive approach is more efficient than the reactive approach. However, there are better fits for our scenario than the reactive approach because this approach demands the flow-rules when it needs them, and the proactive approach stores them in advance.
We applied the experimental parameters to the IIF-SDN scheme; this scheme was found to be much better than the proactive approach of the SDN domain. The SDN controller worked proactively in our proposed scheme, and the switches used a reactive approach. This hybrid scheme resolved the flow-table management problems of TCAM and ACls. Figure 17 and Figure 18 show the flow-tables’ updating cost and overall performance.
The above graphs are generated based on simulation results. Initially, communication between all nodes of the proposed topology was established; then, some changes were made in the flow-tables and applied to the nodes of the network. After establishing the connections and some changes between nodes, data were transmitted from one domain to another, and the data transmission stats were achieved.
Once the flow-tables were arranged under the IIF-SDN priority rules, as defined, the complexity of the updating cost remained the least. The overall performance indicated that the results of the proposed scheme are efficient, even if there is an increase in users.

5. Conclusions

It is hard to handle the other SDN domain users’ requests for the provision of the same services in comparison to the primary SDN domain in the current domain. As discussed, the TCAM is already overloaded and has a low, dense storage element of the switch. Therefore, it is necessary to reduce the other activities of the switch related to the management of the flow-table and flow-entries. This paper proposed a solution for reducing the lookup activities of TCAM and managing the flow-rules at the switch level. The IIF-SDN scheme is designed to minimize the switch’s tasks. A proactive approach is used for the SDN controller to obtain all flow-rules of different SDN domains in advance, and a reactive approach is used for the switches. The proposed scheme is tested on two SDN domains and multiple SDN domains. The scheme is effective and efficient because the switches can obtain all flow-rules locally from the controller. Moreover, the controller arranged all flow-entries priority-wise and saved them in its repository. On the request of the switch, the SDN controller installs flow-rules from its repository for the specific user. The key findings of this paper are the incorporation of the hybrid flow-rule inside the SDN switch, packet transmission without any anomaly, parallel hybrid flow-rule execution, organized flow-entries, and the update process itself. Thus, the network data can be forwarded normally in the continuous update scenario. The proposed scheme is applied because of the quick response between the controller and switches to the service of continuously connecting the users of heterogeneous SDN domains; this is very substantial in maintaining and integrating the hybrid flow-rule in TCAM and ACLs of the switch. In the future, the SDN controller will be assisted by the server that will organize the same flow-tables of different SDN domains on the controller demand of flow-rules for mobile users.

Author Contributions

Conceptualization and Write-up, S.K.A. and S.I., Technical Assistance and paper Improvements, K.N.Q. and G.J.; Validation and Software Assistance, S.M. All authors have read and agreed to the published version of the manuscript.

Funding

This research received no external funding.

Data Availability Statement

Not applicable.

Conflicts of Interest

The authors declare no conflict of interest.

References

  1. Cui, J.; Jiang, Y.; Song, L.; Zeng, X. Optimizing Flow Entries Update in SDN Switch with Batch Update Mechanism. Int. J. Innov. Comput. Inf. Control 2021, 17, 1085–1102. [Google Scholar]
  2. Oh, B.-H.; Vural, S.; Wang, N.; Tafazolli, R. Priority-based flow control for dynamic and reliable flow management in SDN. IEEE Trans. Netw. Serv. Manag. 2018, 15, 1720–1732. [Google Scholar] [CrossRef]
  3. Khan, S.; Iqbal, S.; Qureshi, K.N.; Ghafoor, K.Z.; Kim, P.; Jeon, G. Survivability of mobile and wireless communication networks by using service oriented Software Defined Network based Heterogeneous Inter-Domain Handoff system. Comput. Commun. 2021, 175, 177–185. [Google Scholar] [CrossRef]
  4. Rzepka, M.; Borylo, P.; Lason, A.; Szymanski, A. PARD: Hybrid proactive and reactive method eliminating flow setup latency in SDN. J. Netw. Syst. Manag. 2020, 28, 1547–1574. [Google Scholar] [CrossRef]
  5. Li, R.; Pang, Y.; Zhao, J.; Wang, X. A tale of two (flow) tables: Demystifying caching rule in openflow switches. In Proceedings of the 48th International Conference on Parallel Processing, Kyoto, Japan, 5–8 August 2019; pp. 1–10. [Google Scholar]
  6. CN, S. A proactive flow admission and re-routing scheme for load balancing and mitigation of congestion propagation in SDN data plane. Int. J. Comput. Netw. Commun. (IJCNC) 2019, 10, 117–134. [Google Scholar]
  7. Huang, G.; Youn, H.Y. Proactive eviction of flow entry for SDN based on hidden Markov model. Front. Comput. Sci. 2020, 14, 1–10. [Google Scholar] [CrossRef]
  8. Qureshi, K.N.; Hussain, R.; Jeon, G. A distributed software defined networking model to improve the scalability and quality of services for flexible green energy internet for smart grid systems. Comput. Electr. Eng. 2020, 84, 106634. [Google Scholar] [CrossRef]
  9. Ying, R.; Jia, W.-K.; Zheng, Y.; Wu, Y. Fast invalid TCP flow removal scheme for improving SDN scalability. In Proceedings of the 2019 16th IEEE Annual Consumer Communications & Networking Conference (CCNC), Las Vegas, NV, USA, 11–14 January 2019; pp. 1–5. [Google Scholar]
  10. Li, Y.; Zeng, D.; Zheng, L. On communication efficient dataflow computing in software defined networking enabled cloud. Concurr. Comput. Pract. Exp. 2021, 33, 1–11. [Google Scholar] [CrossRef]
  11. Yan, B.; Liu, Q.; Shen, J.; Liang, D.; Zhao, B.; Ouyang, L. A survey of low-latency transmission strategies in software defined networking. Comput. Sci. Rev. 2021, 40, 100386. [Google Scholar]
  12. Rifai, M.; Huin, N.; Caillouet, C.; Giroire, F.; Moulierac, J.; Pacheco, D.L.; Urvoy-Keller, G. Minnie: An sdn world with few compressed forwarding rules. Comput. Netw. 2017, 121, 185–207. [Google Scholar] [CrossRef] [Green Version]
  13. Shi, X.; Li, Y.; Xie, H.; Yang, T.; Zhang, L.; Liu, P.; Zhang, H.; Liang, Z. An OpenFlow-Based Load Balancing Strategy in SDN. Comput. Mater. Contin. 2020, 62, 385–398. [Google Scholar] [CrossRef]
  14. Huang, X.; Bian, S.; Shao, Z.; Xu, H. Predictive switch-controller association and control devolution for SDN systems. IEEE/ACM Trans. Netw. 2020, 28, 2783–2796. [Google Scholar] [CrossRef]
  15. Huang, V.; Chen, G.; Zhang, P.; Li, H.; Hu, C.; Pan, T.; Fu, Q. A scalable approach to SDN control plane management: High utilization comes with low latency. IEEE Trans. Netw. Serv. Manag. 2020, 17, 682–695. [Google Scholar] [CrossRef]
  16. Ramos, R.M.; Martinello, M.; Rothenberg, C.E. Slickflow: Resilient source routing in data center networks unlocked by openflow. In Proceedings of the 38th Annual IEEE Conference on Local Computer Networks, Sydney, Australia, 12–14 October 2013; pp. 606–613. [Google Scholar]
  17. Tao, L.; Xiangming, W.; Zhaoming, L.; Xing, Z.; Yangchun, L.; Biao, Z. SWN: An SDN based framework for carrier grade Wi-Fi networks. China Commun. 2016, 13, 12–26. [Google Scholar] [CrossRef]
  18. Kim, Y.; Park, J.; Kyung, Y. Mobility-Aware Hybrid Flow Rule Cache Scheme in Software-Defined Access Networks. Electronics 2022, 11, 160. [Google Scholar] [CrossRef]
  19. Xie, L.; Zhao, Z.; Zhou, Y.; Wang, G.; Ying, Q.; Zhang, H. An adaptive scheme for data forwarding in software defined network. In Proceedings of the 2014 Sixth IEEE International Conference on Wireless Communications and Signal Processing (WCSP), Hefei, China, 23–25 October 2014; pp. 1–5. [Google Scholar]
  20. Qiu, K.; Yuan, J.; Zhao, J.; Wang, X.; Secci, S.; Fu, X. Fastrule: Efficient flow entry updates for tcam-based openflow switches. IEEE J. Sel. Areas Commun. 2019, 37, 484–498. [Google Scholar] [CrossRef] [Green Version]
  21. Qiu, K.; Yuan, J.; Zhao, J.; Wang, X.; Secci, S.; Fu, X. Fast lookup is not enough: Towards efficient and scalable flow entry updates for TCAM-based OpenFlow switches. In Proceedings of the 2018 IEEE 38th International Conference on Distributed Computing Systems (ICDCS), Vienna, Australia, 2–5 July 2018; pp. 918–928. [Google Scholar]
  22. Lu, M.; Deng, W.; Shi, Y. TF-IdleTimeout: Improving efficiency of TCAM in SDN by dynamically adjusting flow entry lifecycle. In Proceedings of the 2016 IEEE International Conference on Systems, Man, and Cybernetics (SMC), Budapest, Hungary, 12–14 October 2016; pp. 2681–2686. [Google Scholar]
  23. Marsico, A.; Doriguzzi-Corin, R.; Siracusa, D. An effective swapping mechanism to overcome the memory limitation of SDN devices. In Proceedings of the 2017 IFIP/IEEE Symposium on Integrated Network and Service Management (IM), Lisbon, Portugal, 8–12 May 2017; pp. 247–254. [Google Scholar]
  24. Isyaku, B.; Kamat, M.B.; Bakar, K.A.; Zahid, M.S.M.; Ghaleb, F.A. IHTA: Dynamic idle-hard time-out allocation algorithm based openflow switch. In Proceedings of the 2020 IEEE 10th Symposium on Computer Applications & Industrial Electronics (ISCAIE), Penang, Malaysia, 18–19 April 2020; pp. 170–175. [Google Scholar]
  25. Li, X.; Huang, Y. A flow table with two-stage time-out mechanism for sdn switches. In Proceedings of the 2019 IEEE 21st International Conference on High Performance Computing and Communications; (HPCC/SmartCity/DSS), Zhangjiajie, China, 10–12 August 2019; pp. 1804–1809. [Google Scholar]
  26. Zhang, S.Q.; Zhang, Q.; Tizghadam, A.; Park, B.; Bannazadeh, H.; Boutaba, R.; Leon-Garcia, A. TCAM space-efficient routing in a software defined network. Comput. Netw. 2017, 125, 26–40. [Google Scholar] [CrossRef]
  27. Kuźniar, M.; Perešíni, P.; Kostić, D.; Canini, M. Methodology, measurement and analysis of flow table update characteristics in hardware openflow switches. Comput. Netw. 2018, 136, 2–236. [Google Scholar] [CrossRef]
  28. Sheu, J.-P.; Lin, W.-T.; Chang, G.-Y. Efficient TCAM rules distribution algorithms in software-defined networking. IEEE Trans. Netw. Serv. Manag. 2018, 15, 854–865. [Google Scholar] [CrossRef]
  29. Ding, Z.; Fan, X.; Yu, J.; Bi, J. Update cost-aware cache replacement for wildcard rules in software-defined networking. In Proceedings of the 2018 IEEE Symposium on Computers and Communications (ISCC), Natal, Brazil, 25–28 June 2018; pp. 457–463. [Google Scholar]
  30. Wang, C.; Youn, H.Y. Entry aggregation and early match using hidden Markov model of flow table in SDN. Sensors 2019, 19, 2341. [Google Scholar] [CrossRef] [Green Version]
  31. Kang, N.; Liu, Z.; Rexford, J.; Walker, D. Optimizing the “one big switch” abstraction in software-defined networks. In Proceedings of the ninth ACM Conference on Emerging Networking Experiments and Technologies, Rome, Italy, 6–9 December 2013; pp. 13–24. [Google Scholar]
  32. Huang, G.; Youn, H.Y. Management of Flow Table of SDN for Proactive Eviction Using Fuzzy Logic. J. Inf. Sci. Eng. 2021, 37, 4. [Google Scholar]
  33. Wang, J.; Cheng, S.; Fu, X. SDN Programming for Heterogeneous Switches with Flow Table Pipelining. Sci. Program. 2018, 2018, 2848232. [Google Scholar] [CrossRef] [Green Version]
Figure 1. Flow-table and flow-entry structure.
Figure 1. Flow-table and flow-entry structure.
Electronics 12 01172 g001
Figure 2. Handover challenges.
Figure 2. Handover challenges.
Electronics 12 01172 g002
Figure 3. Flow-rule exchanger.
Figure 3. Flow-rule exchanger.
Electronics 12 01172 g003
Figure 4. Taxonomy of SDN-switch flow-entry management.
Figure 4. Taxonomy of SDN-switch flow-entry management.
Electronics 12 01172 g004
Figure 5. Structure of SDN with the IIF-SDN scheme.
Figure 5. Structure of SDN with the IIF-SDN scheme.
Electronics 12 01172 g005
Figure 6. IIF-SDN proactive approach on the SDN controller layer.
Figure 6. IIF-SDN proactive approach on the SDN controller layer.
Electronics 12 01172 g006
Figure 7. SDN controllers.
Figure 7. SDN controllers.
Electronics 12 01172 g007
Figure 8. Heterogeneous SDNdoms.
Figure 8. Heterogeneous SDNdoms.
Electronics 12 01172 g008
Figure 9. Flow-rule exchange: Reactive approach on the SDN data layer.
Figure 9. Flow-rule exchange: Reactive approach on the SDN data layer.
Electronics 12 01172 g009
Figure 10. SDN domain (hosts, switches, controller).
Figure 10. SDN domain (hosts, switches, controller).
Electronics 12 01172 g010
Figure 11. SDN domains and flow-tables.
Figure 11. SDN domains and flow-tables.
Electronics 12 01172 g011
Figure 12. Flow-table update cost at the SDN controller.
Figure 12. Flow-table update cost at the SDN controller.
Electronics 12 01172 g012
Figure 13. Two nodes’ flow-rule exchange.
Figure 13. Two nodes’ flow-rule exchange.
Electronics 12 01172 g013
Figure 14. Multiple SDN nodes’ flow-rule exchange.
Figure 14. Multiple SDN nodes’ flow-rule exchange.
Electronics 12 01172 g014
Figure 15. IIF-SDN (two nodes’ flow-rule exchange).
Figure 15. IIF-SDN (two nodes’ flow-rule exchange).
Electronics 12 01172 g015
Figure 16. IIF-SDN (multiple nodes’ flow-rule exchange).
Figure 16. IIF-SDN (multiple nodes’ flow-rule exchange).
Electronics 12 01172 g016
Figure 17. Flow-tables’ updating complexity cost.
Figure 17. Flow-tables’ updating complexity cost.
Electronics 12 01172 g017
Figure 18. Overall performance.
Figure 18. Overall performance.
Electronics 12 01172 g018
Table 1. Comparison of the improvement of TCAM, flow-table, and flow-entry utilization.
Table 1. Comparison of the improvement of TCAM, flow-table, and flow-entry utilization.
SDNController PlacementSchemeTargetZone
[29]ReactiveDirected acyclic graph used to solve the replacement problemUnder the dependency-constraints replacement problem of TCAMDistributed ACL
[30]ReactiveHidden Markov model using the Quine–McCluskey algorithmReduce the flow process time and manage-multiply the flow-tableFlow-table management
[31]Proactive“One big switch”One big switch: using the forwarding element distribute rulesThe distributed load balancer and ACL
[28]ProactiveSplit flow-tables into smaller tables and distribute them on the data layerMinimize the TCAM shortage storage problem by distributing flow-rulesDistributed ACL
[3]ReactiveSDN-HiIoTThe provision of QoS to mobile users is the same as the primary domainHeterogeneous SDN domain flow-rule exchange
HybridIIF-SDNSDN controllers use proactive, and switches use reactive approaches to reduce lookup efforts and enhance the TCAM functionalitiesFusion of different SDN domain flow-table management
Table 2. System Notations.
Table 2. System Notations.
NotationsDescription
SDNdomSDN Domain
SDNCSDN Controller
SDNSwSwitches
SDNSw-TCAMTCAM
ΒFlow-table
frsFlow-rules
µFlow-entry
βcController’s Flow-table
frs-cController’s Flow-rules
Table 3. Experimental Environment.
Table 3. Experimental Environment.
Hardware/SoftwareSpecifications
Processor3.30 GHz
CPUi5-4590
RAM6 GB
OSUbuntu 20.04 (64-bit)
Virtual NetworkOracle VM VirtualBox, Mininet, MiniEdit
SDN ControllerRYU
Access PointsOVS (Open Virtual Switch)
ovs_version 2.13.3
OpenFlow MessagesV1.3.0
Traffic GeneratorIPerf v2.0.5
Type of TrafficTCP and UDP
Table 4. Experimental setup.
Table 4. Experimental setup.
SchemeSmall SystemLarge System
Processing Time (ms)0.280.28
Reactive (number of flows)21,55058,000
Proactive (number of flows)22,22060,998
Disclaimer/Publisher’s Note: The statements, opinions and data contained in all publications are solely those of the individual author(s) and contributor(s) and not of MDPI and/or the editor(s). MDPI and/or the editor(s) disclaim responsibility for any injury to people or property resulting from any ideas, methods, instructions or products referred to in the content.

Share and Cite

MDPI and ACS Style

Afridi, S.K.; Iqbal, S.; Qureshi, K.N.; Majeed, S.; Jeon, G. Integration of Interdomain Flow-Rule in Software-Defined Networks for Embedded Internet of Things Devices. Electronics 2023, 12, 1172. https://doi.org/10.3390/electronics12051172

AMA Style

Afridi SK, Iqbal S, Qureshi KN, Majeed S, Jeon G. Integration of Interdomain Flow-Rule in Software-Defined Networks for Embedded Internet of Things Devices. Electronics. 2023; 12(5):1172. https://doi.org/10.3390/electronics12051172

Chicago/Turabian Style

Afridi, Sabih Khan, Saleem Iqbal, Kashif Naseer Qureshi, Saqib Majeed, and Gwanggil Jeon. 2023. "Integration of Interdomain Flow-Rule in Software-Defined Networks for Embedded Internet of Things Devices" Electronics 12, no. 5: 1172. https://doi.org/10.3390/electronics12051172

APA Style

Afridi, S. K., Iqbal, S., Qureshi, K. N., Majeed, S., & Jeon, G. (2023). Integration of Interdomain Flow-Rule in Software-Defined Networks for Embedded Internet of Things Devices. Electronics, 12(5), 1172. https://doi.org/10.3390/electronics12051172

Note that from the first issue of 2016, this journal uses article numbers instead of page numbers. See further details here.

Article Metrics

Back to TopTop