Information Technology Reference
In-Depth Information
established to DSCP value equals to 40. Here the value 40 is just provided as a basic
example, and there is no intention to mean any high-level business objective.
Since the routing policy is very verbose, we only present a fragment of the
mapping.
<CIM_IPHeadersFilter>
<HdrIPVersion>4</HdrIPVersion>
<HdrSrcAddres>155.0.0.0</HdrSrcAddres>
<HdrSrcMask>255.0.0.0</HdrSrcMask>
<HdrSrcPortStart>80</HdrSrcPortStart>
<HdrSrcPortEnd>80</HdrSrcPortEnd>
</CIM_IPHeadersFilter>
<CIM_RoutingAction>
<RemarkAction>1</RemarkAction>
<RemarkValue>40</RemarkValue>
</CIM_RoutingAction>
The
RemarkAction
equals 1 identifies the value “Change DSCP” and the
RemarkValue
identifies the new value for the DSCP.
6 Deployment of a PBNM Framework for Routing Purpose
The design and implementation of the policy-based network management (PBNM)
system now presented have been developed by the University of Murcia as part of the
EU IST Euro6IX project [7]. The main objective of the project is to support the rapid
introduction of IPv6 in Europe. In this sense, one of the UMU contributions to the
project has been the development of a general PBNM functional architecture [8] (with
IPv6 support) which allows the management of various kinds of network aspects, like
VPN-IPsec, QoS and multihoming. The last contribution has been the integration of
the routing model presented as part of this paper.
Figure 4 shows the general architecture and the elements which made up the
implementation. The management architecture is composed of 5 main elements
(Policy Console, PMT, Policy Repository, PDP and PEP) which are described as
follows.
6.1 Policy Console
The policy console represents the entry point to the architecture. Our proposal is using
a simple internet browser to access (i.e. Firefox, Netscape Navigator or Internet
Explorer).
In order to protect the communication between the Policy Console and the Policy
Management Tool, a secure connection is required, which provides confidentiality,
data integrity, and a mutual authentication between the policy administrator using the
Policy Console and the PMT server. HTTP protocol combined with SSL (i.e., HTTPS
protocol) using X.509 certificates is a good approach to obtain these objectives and
therefore PBNM system uses them for securing this communication.
