VPN on Nexys2 - Lunds tekniska högskolafileadmin.cs.lth.se/.../final_presentations/VPN.pdf · 2011. 10. 31. · VPN system took days. Spend some time to learn your tools... Wireshark

Post on 05-Oct-2020

0 Views

Category:

Documents

0 Downloads

Preview:

Click to see full reader

Transcript

Dan KvelstadMichael Gissing

Leo Bärring

dt06dk5@student.lth.seint11mg3@student.lth.seet06lb2@student.lth.se

VPN on Nexys2

In a World of Rainbows and Unicorns

IPsec: Encapsulation of Packets

IPsec: The Big Picture with Packets

After the Smell of Coffee...

Networking, Nexys Style

Original Target Idea

Emulate the Hardware Cores

(re)Insert Micron SDRAM support

Insert Caches into Microblaze

Micron can only be controlled by one

Merge Brain and Emulator

● This is the first iteration that works.

● All calculations are done in software on the Brain core.

● This means no hardware accelerators.

Appending Hardware Accelerators

Lessons Learned (Nexys)

Nexys has a very limited amount of RAMB16 / BRAM blocks.

pmodnic is really buggy, example from errata:

"The Receive Packet Pending Interrupt Flag (EIR.PKTIF) does not reliably/accurately report the status of pending packets."

Networking on Nexys is sub- optimal.

● Recieve Packet (NIC)● Extract Packet via SPI● Construct an Answer● Insert Packet via SPI● Send Packet (NIC)

Microblaze is too slow to do networking at reasonable speeds.

Lessons Learned (Supporting Systems)Auxiliary systems needs time to be configured. The Linux VPN system took days.

Spend some time to learn your tools... Wireshark can decrypt packets!

Lessons Learned (Work Methods)Time spent planning is time saved debugging.

BUT: No plan survives intial contact with the enemy.

Starting with a big prototype and then successively reduce it is inefficient if not impossible. GUI tools are fine for one time operations. Butrepeated tasks are more effective when scripted.

Splitting up the workload and working independent of each other is problematic.

Individual work can cause things to be lost in merging, even with tools like GIT.

Exemple; this line was lost:#define WORDS_BIGENDIAN

It cost around 25h to resolve.

How will the Demonstration Look?

How will the Demonstration Look?

How will the Demonstration Look?

How will the Demonstration Look?

top related

HUAWEI HiSecEngine USG6500E Series Firewalls (Desktop) ·.....
Documents
Digilent Nexys2 Board Reference Manual · Digilent Nexys2.....
Documents
DrayTek VPN Solution. Outline What is VPN What does VPN Do.....
Documents
VPN Client pour Windows - tgbvpn ug VPN662 fr 1.1IPsec/ SSL....
Documents
Computer Net Lab/Praktikum Datenverarbeitung 2 1 Overview...
Documents
Lab 2 Introduction to VHDL and Nexys2
Documents
Nexys2 Sch
Documents
VPN Configuration Guide - VPN Tracker - #1 VPN Client for...
Documents
Nexys2 Reference Manual
Documents
VPN in 5 Minuten - bintec-elmeg.com · VPN in 5 Minuten...
Documents
Digilent Nexys2 Board Reference Manualnexys2:...Digilent...
Documents
EVR100 VPN Tunnel Configuration Guide v1.2 - … VPN Tunnel....
Documents
TheGreenBow VPN Client · Title: TheGreenBow VPN Client...
Documents
Digilent Nexys2 Board Reference Manual
Documents
Bomberman, Video Game -...
Documents
Virtual Private Networks. Cuprins Introducere Tipuri de...
Documents