IP Fragmentation Lab with Vagrant

Recently, I had a need to understand IP fragmentation better, so I built a lab to experiment with.  I wanted it to be easy to setup, and built in a way that is repeatable by others, so I designed automation to stand it up with virtual machines in a hypervisor. The lab network topology is shown in Figure 1.


Figure 1 – Network Diagram for IP Fragmentation Lab

Continue reading

Collecting NetFlow with nfcapd and nfdump

This blog post is for network experimenters who want to collect (receive) NetFlow or IPFIX flow records using the nfdump package (which includes nfcapd). An example use case, building on previous blog post NetFlow on OpenWRT, is shown in diagram below (highlighted boxes):


Flow records can be useful for various applications such as network visibility and security alerting. Continue reading

Vagrant for SDN Labs

Part 1 – Introduction

I’ve been experimenting with Vagrant to automate the creation of virtual Software-Defined Networking (SDN) labs. This blog explains how create SDN labs with Vagrant.

Why SDN labs? Maybe you’re a network student or engineer learning new skills. Maybe you want to develop the next killer SDN app. Perhaps you’re doing SDN research. Virtual labs are a great way to test ideas without having to invest in SDN switch hardware, and can be set up quickly. Continue reading

Build a Home SDN Lab

Software-defined networking (SDN) separates network control from packet forwarding. SDN is great for experimenters, as we get to tinker with how the network runs, without having to worry about moving packets.

To play with SDN in your home network you’ll need a device to do the packet forwarding, under control of your software.

I’ve added instructions on how to build a home SDN lab that leverages a common consumer-grade TP-Link home router repurposed as an OpenFlow switch, including Wi-Fi.

Continue reading