Hello Ryu Community,
FlowForwarding.org's LINC OF-Capable switch has implemented the support for
TLS between the switch and the controllers. You can find the new version of
LINC on github/master, also tagged as 1.1.1.
https://github.com/FlowForwarding/LINC-Switch/tree/1.1.1<https://outlook.infoblox.com/owa/redir.aspx?C=f6oBtgoqy0W6w7vMvT-mUUcVUIjO3c8IjhBLB8WdmppKJXvTRo_RiODiKynEIM9frhvl6c0h5VQ.&URL=https%3a%2f%2fgithub.com%2fFlowForwarding%2fLINC-Switch%2ftree%2f1.1.1>
Here the Controllers are validated by the switch based on the
external-certificates set up using OF-Config. Those should be CA
certificates confirming the authenticity of whatever certificate is being
send to the switch by the controller. This can be done only via OF-Config
using the edit-config operation. The private key on the switch side is
necessary to encrypt/decrypt the traffic between the switch and the
controller after establishing the connection, so you have to generate one
and put it in the sys.config file. If the controller is also validating the
switch then you also need to generate and specify the switch certificate in
sys.config for the purpose of this validation. There's no need to copy or
share certificates between the switch and the controller.
The code was tested with a generic TLS server, not a particular controller.
Can you help this with Ryu as the controller and also post instructions on
how to use TLS for Ryu - Switch communication?
Thanks & Regards
/Shivaram
------------------------------------------------------------------------------
Free Next-Gen Firewall Hardware Offer
Buy your Sophos next-gen firewall before the end March 2013
and get the hardware for free! Learn more.
http://p.sf.net/sfu/sophos-d2d-feb
_______________________________________________
Ryu-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/ryu-devel
