Intrusion Detection in Software Defined Networking Using Snort and Mirroring

Authors

  • Nithya Sampath School of Information Technology and Engineering, Vellore Institute of Technology, Vellore, India. Author
  • Jayakumar Sadhasivam School of Information Technology and Engineering, Vellore Institute of Technology, Vellore, India. Author
  • Senthil Jayavel omputer Science and Engineering, Nandha Engineering College, Erode, India Author
  • N. Swetha Chindarmony School of Information Technology and Engineering, Vellore Institute of Technology, Vellore, Author
  • Sakshi Sharma School of Information Technology and Engineering, Vellore Institute of Technology, Vellore, Author

DOI:

https://doi.org/10.61841/y8jrnd13

Keywords:

Software Defined Networking (SDN), OpenFlow Protocol, Open vSwitch, Snort, Mirroring, Intrusion Detection System (IDS), Denial of Service (DoS) attacks, Distributed Denial of Service (DDoS)attacks, Switched Port Analyser (SPAN)

Abstract

 Software-Defined Networking is a rising concept that aims to replace conventional networks by breaking up vertical integration. The control logic of network is separated from the underlying routers and switches, by logically centralized network control, and to program the network. An intrusion detection system is a software application that keeps track of a system or network for occurrence of any policy violations or malicious activity. Reports are sent to the network administrator or collected centrally using a security information and event management system when there is an occurrence of a malicious activity or policy violations. The aim of this paper is to create an Intrusion Detection System using Snort which is an open-source, free and lightweight application. The concept of the paper is to build an efficient and simplified Intrusion Detection System. First, setup a simple network topology with four virtual machines where three of them are hosts and fourth one is designed to run Snort. 

Downloads

Download data is not yet available.

Published

31.10.2019

Issue

Vol. 23 No. 4 (2019): 23 (4) 2019

Section

Articles

License

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

You are free to:

  1. Share — copy and redistribute the material in any medium or format for any purpose, even commercially.
  2. Adapt — remix, transform, and build upon the material for any purpose, even commercially.
  3. The licensor cannot revoke these freedoms as long as you follow the license terms.

Under the following terms:

  1. Attribution — You must give appropriate credit , provide a link to the license, and indicate if changes were made . You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
  2. No additional restrictions — You may not apply legal terms or technological measures that legally restrict others from doing anything the license permits.

Notices:

You do not have to comply with the license for elements of the material in the public domain or where your use is permitted by an applicable exception or limitation .

No warranties are given. The license may not give you all of the permissions necessary for your intended use. For example, other rights such as publicity, privacy, or moral rights may limit how you use the material.

How to Cite

Sampath, N., Sadhasivam, J., Jayavel, S., Chindarmony, N. S., & Sharma, S. (2019). Intrusion Detection in Software Defined Networking Using Snort and Mirroring. International Journal of Psychosocial Rehabilitation, 23(4), 1699-1710. https://doi.org/10.61841/y8jrnd13