High Performance Firewalls in MANETs

Hang Zhao; Steven Michael Bellovin

High Performance Firewalls in MANETs
Zhao, Hang
Bellovin, Steven Michael
Computer Science
Permanent URL:
Book/Journal Title:
MSN 2010: 2010 Sixth International Conference on Mobile Ad-hoc and Sensor Networks: proceedings: 20-22 December 2010, Hangzhou, China
IEEE Computer Society
Publisher Location:
Los Alamitos, Calif.
Doing route selection based in part on source addresses is a form of policy routing, which has started to receive increased amounts of attention. In this paper, we extend our previous work on ROLF (ROuting as the Firewall Layer) to achieve source prefix filtering. This permits easy definition of "inside" and "outside", even in MANET environment where there is no topological boundary. We present algorithms for route propagation and packet forwarding using ROFL, we measure its performance in a simulated environment with two different ad hoc routing protocols. Simulation results demonstrate that ROFL can significantly reduce unwanted packets without extra control traffic incurred, and thus improves overall system performance and preserves battery power of mobile nodes. ROFL is the first scheme to provide a concrete defense against some battery exhaustion attacks in MANETs. Moreover, it requires only minor changes to existing ad hoc network routing protocols, making it practical and feasible to be deployed in real world.
Computer science
Publisher DOI:
Item views:
text | xml
Suggested Citation:
Hang Zhao, Steven Michael Bellovin, 2011, High Performance Firewalls in MANETs, Columbia University Academic Commons, http://hdl.handle.net/10022/AC:P:11332.

In Partnership with the Center for Digital Research and Scholarship at Columbia University Libraries | Terms of Use | Copyright