2019 SDN上机第2次作业
1. 利用mininet创建如下拓扑,要求拓扑支持OpenFlow 1.3协议,主机名、交换机名以及端口对应正确,请给出拓扑Mininet执行结果,展示端口连接情况
利用可视化工具创建拓扑
打开界面如下:
拓扑结构如下:
支持OpenFlow 1.3协议
通过net命令查看端口连接情况
使用pingall命令测试所有节点的连通性
2. 直接在Open vSwitch下发流表,用vlan得到下列虚拟网段,请逐条说明所下发的流表含义
- h1 -- h4互通
- h2 -- h5互通
- h3 -- h6互通
- 其余主机不通
(1)将h1,h2,h3三个主机进入s1的包打上vlan tag,转发到s1的端口4。(其中set field值为4096+vlan_id)
sudo ovs-ofctl -O OpenFlow13 add-flow s1 priority=1,in_port=1,actions=push_vlan:0x8100,set_field:4096-\>vlan_vid,output:4
sudo ovs-ofctl -O OpenFlow13 add-flow s1 priority=1,in_port=2,actions=push_vlan:0x8100,set_field:4097-\>vlan_vid,output:4
sudo ovs-ofctl -O OpenFlow13 add-flow s1 priority=1,in_port=3,actions=push_vlan:0x8100,set_field:4098-\>vlan_vid,output:4
(2)将从s1的端口4的包去除vlan tag, 并根据tag进行转发.
sudo ovs-ofctl -O OpenFlow13 add-flow s1 priority=1,dl_vlan=0,actions=pop_vlan,output:1
sudo ovs-ofctl -O OpenFlow13 add-flow s1 priority=1,dl_vlan=1,actions=pop_vlan,output:2
sudo ovs-ofctl -O OpenFlow13 add-flow s1 priority=1,dl_vlan=2,actions=pop_vlan,output:3
(3)将h4,h5,h6三个主机进入s2的包打上vlan tag,转发到s2的端口4。(其中set field值为4096+vlan_id)
sudo ovs-ofctl -O OpenFlow13 add-flow s2 priority=1,in_port=1,actions=push_vlan:0x8100,set_field:4096-\>vlan_vid,output:4
sudo ovs-ofctl -O OpenFlow13 add-flow s2 priority=1,in_port=2,actions=push_vlan:0x8100,set_field:4097-\>vlan_vid,output:4
sudo ovs-ofctl -O OpenFlow13 add-flow s2 priority=1,in_port=3,actions=push_vlan:0x8100,set_field:4098-\>vlan_vid,output:4
(4)将从端口4的包去除vlan tag, 并根据tag进行转发
sudo ovs-ofctl -O OpenFlow13 add-flow s2 priority=1,dl_vlan=0,actions=pop_vlan,output:1
sudo ovs-ofctl -O OpenFlow13 add-flow s2 priority=1,dl_vlan=1,actions=pop_vlan,output:2
sudo ovs-ofctl -O OpenFlow13 add-flow s2 priority=1,dl_vlan=2,actions=pop_vlan,output:3
3. 直接在Open vSwitch查看流表,提交OVS命令执行结果
(1)查看s1的流表
sudo ovs-ofctl -O OpenFlow13 dump-flows s1
(2)查看s2的流表
sudo ovs-ofctl -O OpenFlow13 dump-flows s2
4. 提交主机连通性测试结果,验证流表的有效性
使用pingall命令测试主机连通性
5. 利用Wireshark抓包,分析验证特定报文
(如果图片看不清,可ctrl+滚轮进行放大查看)
sudo wireshark
(1)vlan_id=0
(2)vlan_id=1
(3)vlan_id=2
