实验7:基于REST API的SDN北向应用实践
(一)基本要求
1、编写Python程序,调用OpenDaylight的北向接口实现以下功能
(1) 利用Mininet平台搭建下图所示网络拓扑,并连接OpenDaylight;
-
启动ODL
./distribution-karaf-0.6.4-Carbon/bin/karaf
-
创建topo
sudo mn --topo=single,3 --controller=remote,ip=127.0.0.1,port=6633 --switch ovsk,protocols=OpenFlow13
(2) 下发指令删除s1上的流表数据。import requests
- 编写delete.py,调用OpenDaylight的北向接口下发指令删除s1上的流表数据
- delete.py
-
from requests.auth import HTTPBasicAuth if __name__ == '__main__': url = 'http://127.0.0.1:8181/restconf/operational/opendaylight-inventory:nodes/node/openflow:1/' headers = {'Content-Type': 'application/json'} response = requests.delete(url=url, headers=headers, auth=HTTPBasicAuth('admin', 'admin')) print(response.content)
-
(3)下发硬超时流表,实现拓扑内主机h1和h3网络中断20s。
- 编写timeout.py及timeout.json,调用OpenDaylight的北向接口下发硬超时流表,实现拓扑内主机h1和h3网络中断20s
- timeout.py
#!/usr/bin/python import requests from requests.auth import HTTPBasicAuth if __name__ == "__main__": url = 'http://127.0.0.1:8181/restconf/config/opendaylight-inventory:nodes/node/openflow:1/flow-node-inventory:table/0/flow/1' with open("./timeout.json") as file: str = file.read() headers = {'Content-Type': 'application/json'} res = requests.put(url, str, headers=headers, auth=HTTPBasicAuth('admin', 'admin')) print (res.content)
imeout.json
-
{ "flow": [ { "id": "1", "match": { "in-port": "1", "ethernet-match": { "ethernet-type": { "type": "0x0800" } }, "ipv4-destination": "10.0.0.3/32" }, "instructions": { "instruction": [ { "order": "0", "apply-actions": { "action": [ { "order": "0", "drop-action": {} } ] } } ] }, "flow-name": "flow", "priority": "65535", "hard-timeout": "20", "cookie": "2", "table_id": "0" } ] }
(4)获取s1上活动的流表数。
- 编写get_flows.py,调用OpenDaylight的北向接口获取s1上活动的流表数
- get_flows.py
import requests from requests.auth import HTTPBasicAuth if __name__ == '__main__': url = 'http://127.0.0.1:8181/restconf/operational/opendaylight-inventory:nodes/node/openflow:1/' \ 'flow-node-inventory:table/0/opendaylight-flow-table-statistics:flow-table-statistics' headers = {'Content-Type': 'application/json'} response = requests.get(url=url, headers=headers, auth=HTTPBasicAuth('admin', 'admin')) print(response.content)
2、编写Python程序,调用Ryu的北向接口实现以下功能
(1) 实现上述OpenDaylight实验拓扑上相同的硬超时流表下发。- 编写ryu_timeout.py及ryu_timeout.json,调用Ryu的北向接口实现硬超时流表下发
ryu_timeout.py
import requests from requests.auth import HTTPBasicAuth if __name__ == '__main__': url = 'http://127.0.0.1:8080/stats/flowentry/add' headers = {'Content-Type': 'application/json'} json = open('ryu_timeout.json').read() response = requests.post(url, data=json, headers=headers) print(response.content)
ryu_timeout.json
{ "dpid": 1, "cookie": 1, "cookie_mask": 1, "table_id": 0, "hard_timeout": 20, "priority": 65535, "flags": 1, "match":{ "in_port":1 }, "actions":[] }
打开ryu
-
ryu-manager ryu.app.simple_switch_13 ryu.app.ofctl_rest-
创建topo
-
sudo mn --topo=single,3 --mac --controller=remote,ip=127.0.0.1,port=6633 --switch ovsk,protocols=OpenFlow13
-
运行ryu_timeout.py
-
实现硬超时功能
(2) 参考Ryu REST API的文档,基于VLAN实验的网络拓扑,编程实现相同的VLAN配置。
提示:拓扑生成后需连接Ryu,且Ryu应能够提供REST API服务
VLAN_ID HOST 0 h1、h3 1 h2、h4 - 根据VLAN实验的网络拓扑编写ryu_topo.py
ryu_topo.py
from mininet.topo import Topo class ryu_topo(Topo): def __init__(self): Topo.__init__(self) self.addSwitch("s1") self.addSwitch("s2") self.addHost("h1") self.addHost("h2") self.addHost("h3") self.addHost("h4") self.addLink("s1", "h1") self.addLink("s1", "h2") self.addLink("s2", "h3") self.addLink("s2", "h4") self.addLink("s1", "s2") topos = {'ryu_topo': (lambda: ryu_topo())
-
- 法二:参考Ryu REST API的文档,编写ryu_vlan.py,ryu_vlan.json代码
-
ryu_vlan.py
import json import requests if __name__ == '__main__': url = 'http://127.0.0.1:8080/stats/flowentry/add' headers = {'Content-Type': 'application/json'} f = open('ryu_vlan.json').read() flows = json.loads(f)['flows'] [requests.post(url, data=json.dumps(flows[i]), headers=headers) for i in range(0, 8)]
ryu_vlan.json
{ "flows": [ { "dpid": 1, "priority": 1, "match": { "in_port": 1 }, "actions": [{ "type": "PUSH_VLAN", "ethertype": 33024 }, { "type": "SET_FIELD", "field": "vlan_vid", "value": 4096 }, { "type": "OUTPUT", "port": 3 } ] }, { "dpid": 1, "priority": 1, "match": { "in_port": 2 }, "actions": [{ "type": "PUSH_VLAN", "ethertype": 33024 }, { "type": "SET_FIELD", "field": "vlan_vid", "value": 4097 }, { "type": "OUTPUT", "port": 3 } ] }, { "dpid": 1, "priority": 1, "match": { "vlan_vid": 0 }, "actions": [{ "type": "POP_VLAN", "ethertype": 33024 }, { "type": "OUTPUT", "port": 1 } ] }, { "dpid": 1, "priority": 1, "match": { "vlan_vid": 1 }, "actions": [{ "type": "POP_VLAN", "ethertype": 33024 }, { "type": "OUTPUT", "port": 2 } ] }, { "dpid": 2, "priority": 1, "match": { "in_port": 1 }, "actions": [{ "type": "PUSH_VLAN", "ethertype": 33024 }, { "type": "SET_FIELD", "field": "vlan_vid", "value": 4096 }, { "type": "OUTPUT", "port": 3 } ] }, { "dpid": 2, "priority": 1, "match": { "in_port": 2 }, "actions": [{ "type": "PUSH_VLAN", "ethertype": 33024 }, { "type": "SET_FIELD", "field": "vlan_vid", "value": 4097 }, { "type": "OUTPUT", "port": 3 } ] }, { "dpid": 2, "priority": 1, "match": { "vlan_vid": 0 }, "actions": [{ "type": "POP_VLAN", "ethertype": 33024 }, { "type": "OUTPUT", "port": 1 } ] }, { "dpid": 2, "priority": 1, "match": { "vlan_vid": 1 }, "actions": [{ "type": "POP_VLAN", "ethertype": 33024 }, { "type": "OUTPUT", "port": 2 } ] } ] }
-
实现
-
打开ryu
ryu-manager ryu.app.simple_switch_13 ryu.app.ofctl_rest
-
topo连接控制器
sudo mn --custom ryu_topo.py --topo ryu_topo --mac --controller=remote,ip=127.0.0.1,port=6633 --switch ovsk,protocols=OpenFlow13
-
删除流表
curl -X DELETE http://127.0.0.1:8080/stats/flowentry/clear/1curl -X DELETE http://127.0.0.1:8080/stats/flowentry/clear/2
- 法二:运行ryu_vlan.py代码,实现相同的VLAN配置
-
实验心得
- 这次实验花了很长的时间,本来对这网络方面已经不算太了解,就是在不断的试错不断地改正,向别的同学不断学习才慢慢做出来的,有时候一个小错误一直找不到是哪里的问题,便需要一直找就很费时间花精力,所以我的动手能力还有待提高,对于这些知识点还需要更深入地去熟悉
-
【推荐】国内首个AI IDE,深度理解中文开发场景,立即下载体验Trae
【推荐】编程新体验,更懂你的AI,立即体验豆包MarsCode编程助手
【推荐】抖音旗下AI助手豆包,你的智能百科全书,全免费不限次数
【推荐】轻量又高性能的 SSH 工具 IShell:AI 加持,快人一步
· 分享一个免费、快速、无限量使用的满血 DeepSeek R1 模型,支持深度思考和联网搜索!
· 使用C#创建一个MCP客户端
· 基于 Docker 搭建 FRP 内网穿透开源项目(很简单哒)
· ollama系列1:轻松3步本地部署deepseek,普通电脑可用
· 按钮权限的设计及实现