Chapter

NETWORKING 2005. Networking Technologies, Services, and Protocols; Performance of Computer and Communication Networks; Mobile and Wireless Communications Systems

Volume 3462 of the series Lecture Notes in Computer Science pp 743-755

FPL-3: Towards Language Support for Distributed Packet Processing

  • Mihai-Lucian CristeaAffiliated withLeiden University
  • , Willem de BruijnAffiliated withVrije Universiteit Amsterdam
  • , Herbert BosAffiliated withVrije Universiteit Amsterdam

Abstract

The FPL-3 packet filtering language incorporates explicit support for distributed processing into the language. FPL-3 supports not only generic header-based filtering, but also more demanding tasks, such as payload scanning, packet replication and traffic splitting. By distributing FPL-3 based tasks across a possibly heterogeneous network of processing nodes, the NET-FFPF network monitoring architecture facilitates very high speed packet processing. Results show that NET-FFPF can perform complex processing at gigabit speeds. The proposed framework can be used to execute such diverse tasks as load balancing, traffic monitoring, firewalling and intrusion detection directly at the critical high-bandwidth links (e.g., in enterprise gateways).

Keywords

High-speed packet processing traffic splitting network monitoring