Open vSwitch 2014 Fall Conference: L7-Filter and Open vSwitch

Open vSwitch 2014 Fall Conference: L7-Filter and Open vSwitch

presented by: Franck Baudin, Qosmos

This talk will discuss extending the datapath with a packet content matcher (regex at least), in order to achieve at least a basic L7 classification, knowing that, first, L7 classification is related to a network conversation made of two OpenFlow flows: client to server and server to client, and, second, L7 classification is done thanks to a specific pattern found often in the very first payload packets, for instance "GET " for HTTP. Following packets won't include the same pattern, but still belong to the same HTTP conversation.