Skip to content

SDNC2/OpenC2SDN

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 
 
 
 
 
 
 
 
 

OpenC2SDN: Orchestrating SDN controllers via OpenC2

This project contains code that allows SDN controllers to receive and process OpenC2 actions.

Actions currently in work:

User-Friendly Name OpenC2 Action OpenC2 Target Target Specifier Description
clear static flows DELETE 'static flow' Remove all static flow rules.
delete static flow DELETE 'static flow' flow name Remove a static flow rule.
add static flow SET 'static flow' flow entry Add a static flow rule.
list static flows GET 'static flow' List static flow rules.
get uptime GET 'uptime' Get time since SDN controller startup.
list devices QUERY 'device' List devices tracked by the SDN controller.
list external links QUERY 'external link' List multi-hop links discovered via BDDP.
list internal links QUERY 'internal link' List single-hop links discovered via LLDP.
list switches QUERY 'datapath' List SDN switches managed by the controller.
list firewall rules GET 'firewall rule' List firewall rules stored in the controller.
delete firewall rule DELETE 'firewall rule' rule identifier Delete a firewall rule.
disable firewall SET 'firewall state' 'disabled' Disable the firewall.
enable firewall SET 'firewall state' 'enabled' Enable the firewall.
get firewall status GET 'firewall state' Get the enable/disable state of the firewall.
unblock flow ALLOW sdn:flow flow entry Unblock network traffic matching flow parameters.
block flow DENY sdn:flow flow entry Block network traffic matching flow parameters.
unblock arp ALLOW sdn:flow flow entry Unblock ARP packets sourced from this MAC.
block arp DENY sdn:flow flow entry Block ARP packets sourced from this MAC.
unblock subnet ALLOW sdn:flow flow entry Unblocks traffic to/from the matching IP subnet.
block subnet DENY sdn:flow flow entry Block traffic to/from the matching IP subnet.
unblock mac address ALLOW sdn:flow flow entry Unblocks traffic to/from the matching MAC.
block mac address DENY sdn:flow flow entry Block traffic to/from the matching MAC.
unblock ip ALLOW sdn:flow flow entry Unblocks traffic to/from the matching IP.
block ip DENY sdn:flow flow entry Block traffic to/from the matching IP.
test connectivity QUERY 'health' Validate the asset configuration for connectivity.

About

Orchestration code for SDN controllers to receive and process OpenC2 actions

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published