Analysis of Benchmarking Methodology for Firewall Performance(RFC 3511) (RFC 3511방화벽 성능측정 방법론 분석)

Younseo Jeong (정연서)

Analysis of Benchmarking Methodology for Firewall Performance(RFC 3511)

Journal of Software Assessment and Valuation
Abbr : JSAV
2011, 7(2), pp.65-71
Publisher : Korea Software Assessment and Valuation Society
Research Area : Engineering > Computer Science
Received : October 24, 2011
Accepted : December 20, 2011
Published : December 31, 2011

¹한국전자통신연구원

ABSTRACT

The Internet Engineering Task Force (IETF) develops and promotes Internet standards(a guideline, standards specification, etc). The IETF is organized into a large number of working groups and informal discussion groups (BoF)s, each dealing with a specific topic. The Benchmarking Methodology Working Group (BMWG) will continue to produce a series of recommendations concerning the key performance characteristics of internetworking technologies, or benchmarks for network devices, systems, and services. RFC 3511 discusses and defines a number of tests that may be used to describe the performance characteristics of firewalls. It covers ten items in four areas: forwarding, connection, latency and filtering. We can use this standard as a guideline to make an objective evaluation for the performance of firewalls. In this paper, we discussed testing methodologies of RFC 3511. And then examined the IP throughput and the concurrent connections for Firewall. We also tested TCP connection throughput.

KEYWORDS

Citation status

* References for papers published after 2023 are currently being built.

[web] / IETF WG introduction / http://www.ietf.org/wg/concluded/

[other] Bradner, S / 1999 / Benchmarking Methodology for Network Interconnect Devices / RFC 2544

[other] Mandeville, R / 2000 / Benchmarking Methodology for LAN Switching Devices / RFC 2889

[other] Popoviciu, C / 2008 / IPv6 Benchmarking Methodology for Network Interconnect Devices / RFC 5180

[other] Dunn / 2001 / Methodology for ATM Benchmarking / RFC 3116

[other] Hickman / 2003 / Benchmarking Methodology for Firewall Performance / RFC 3511

[other] Stopp / 2004 / Methodology for IP Multicast Benchmarking / RFC 3918

[other] Manral / 2005 / Benchmarking Basic OSPF Single Router Control Plane Convergence / RFC 4061

[other] Akhter / 2009 / MPLS Forwarding Benchmarking Methodology for IP Flows / RFC 5695

[other] Poretsky / 2011 / Benchmarking Methodology for Link-State IGP Data-Plane Route Convergence / RFC 6413

[other] Bradner / 2011 / RFC 2544 Applicability Statement: Use on Production Networks Considered Harmful / Internet Draft

[other] Hamilton / 2011 / Benchmarking Meth odology for Content-Aware Network Devices / Internet Draft

[other] Jan Novak / 2011 / IP Flow Information Accounting and Export Benchmarking Methodology / Internet Draft

[other] Papneja / 2011 / Methodology for benchmarking MPLS protection mechanisms / Internet Draft

[other] / 2006 / 네트워크 보안 장비에 대한 성능 측정 방법 / TTAS.KO-12.0044

[other] Newman, D / 1999 / Benchmarking Terminology for Firewall Devices / RFC 2647

[other] Bradner, S / 1991 / Benchmarking Terminology for Network Interconnection Devices / RFC 1242

[report] / 2008 / Product Certification Report / NSS labs

[other] Test Summary / 2005 / Secui.com NXG2000 / Tolly Group

[report] / Cisco IOS Firewall

KJCKorea
Journal Central

Journal of Software Assessment and Valuation 2023 KCI Impact Factor : 0.35