Modeling and performance evaluation of transport protocols for firewall control

Authors:
Sebastian Kiesel;Michael Scharf
Affiliations:
Institute of Communication Networks and Computer Engineering, University of Stuttgart, Pfaffenwaldring 47, 70569 Stuttgart, Germany;Institute of Communication Networks and Computer Engineering, University of Stuttgart, Pfaffenwaldring 47, 70569 Stuttgart, Germany
Venue:
Computer Networks: The International Journal of Computer and Telecommunications Networking
Year:
2007

Citing 13
Cited 0

Partial-order transport service for multimedia and other applications

IEEE/ACM Transactions on Networking (TON)
Congestion Control in Linux TCP

Proceedings of the FREENIX Track: 2002 USENIX Annual Technical Conference
RSVP as Firewall Signalling Protocol

ISCC '01 Proceedings of the Sixth IEEE Symposium on Computers and Communications
Analysis on packet resequencing for reliable network protocols

Performance Evaluation
SCTP versus TCP for MPI

SC '05 Proceedings of the 2005 ACM/IEEE conference on Supercomputing
Performance Benefits of Avoiding Head-of-Line Blocking in SCTP

ICAS-ICNS '05 Proceedings of the Joint International Conference on Autonomic and Autonomous Systems and International Conference on Networking and Services
The 3G IP Multimedia Subsystem (IMS): Merging the Internet and the Cellular Worlds, Second Edition

The 3G IP Multimedia Subsystem (IMS): Merging the Internet and the Cellular Worlds, Second Edition
SCTP: an innovative transport layer protocol for the web

Proceedings of the 15th international conference on World Wide Web
A simulation-based comparative evaluation of transport protocols for SIP

Computer Communications
Modeling and performance evaluation of SCTP as transport protocol for firewall control

NETWORKING'06 Proceedings of the 5th international IFIP-TC6 conference on Networking Technologies, Services, and Protocols; Performance of Computer and Communication Networks; Mobile and Wireless Communications Systems
A practical approach to SIP, qos and AAA integration

NETWORKING'06 Proceedings of the 5th international IFIP-TC6 conference on Networking Technologies, Services, and Protocols; Performance of Computer and Communication Networks; Mobile and Wireless Communications Systems
NSIS: a new extensible IP signaling protocol suite

IEEE Communications Magazine
Evaluation of transport protocols for the session initiation protocol

IEEE Network: The Magazine of Global Internetworking

Quantified Score

Hi-index	0.00

Visualization

Abstract

Firewalls are a crucial building block for securing IP networks. The usage of out-of-band signaling protocols such as SIP for IP telephony and multimedia applications requires a dynamic control of these firewalls and imposes several challenges. Recently, several firewall control architectures and protocols have been developed. The main focus of this paper is the simple middlebox configuration protocol (SIMCO), which is a new transaction-based firewall control protocol. Due to the impact on call setup delays, firewall signaling requires small end-to-end delays and thus mandates a careful choice of the transport protocol. Therefore, this paper studies SCTP, TCP and UDP-based transport for SIMCO and compares different configurations that allow to optimize the performance. We present an analytical model to quantify the impact of head-of-line blocking in SCTP and TCP and verify it with measurements. Both the model and measurements reveal that SCTP can significantly reduce the SIMCO response times by leveraging transmission over multiple parallel streams. While already a few SCTP streams can almost completely avoid head-of-line blocking, our results show that TCP- and UDP-based transport may suffer from significantly larger delays.