A Survey of Software-Defined Network Firewalls

Abstract

The future generation of networks will run on a developing technology called Software-Defined Networking (SDN). Network administrators are given the freedom to introduce their networks. But it also brings new security worries with it. An evolving architecture that is dynamic, manageable, efficient, and adaptive is called software-defined networking (SDN). Network administrators have access to a succinct description of the entire network topology thanks to the SDN. It separates a network's control and forwarding systems, enabling the management of the physical and logical networks independently.  The fundamental framework for applications and network services is removed thanks to the SDN architecture, which decouples the network control and forwarding operations to allow for direct programmability of the network control. The main idea behind SDN is to separate the control layer from the rest of the network and concentrate it in a single location. This means that every network device just needs to focus on the data layer and send data packets from one node to another, depending on decisions made by SDN controllers on forwarding. The open flow protocol is the foundation of SDN and permits the separation of the control and data planes. This leads to some issues, including DDoS attacks, unauthorized access, inconsistent open flow policies in switches that have been approved for use with open flow, and conflicts with firewall tactics and traffic management. SDN-directed firewalls can solve the aforementioned issues. SDN enables networks to be completely managed by software programmes, pushing the boundaries of already-existing network infrastructures. This approach makes it simpler to efficiently and programmatically redistribute network traffic flows to accommodate rising demand.