This project contains code that allows SDN controllers to receive and process OpenC2 actions.
| User-Friendly Name | OpenC2 Action | OpenC2 Target | Target Specifier | Description |
|---|---|---|---|---|
| clear static flows | DELETE | 'static flow' | Remove all static flow rules. | |
| delete static flow | DELETE | 'static flow' | flow name | Remove a static flow rule. |
| add static flow | SET | 'static flow' | flow entry | Add a static flow rule. |
| list static flows | GET | 'static flow' | List static flow rules. | |
| get uptime | GET | 'uptime' | Get time since SDN controller startup. | |
| list devices | QUERY | 'device' | List devices tracked by the SDN controller. | |
| list external links | QUERY | 'external link' | List multi-hop links discovered via BDDP. | |
| list internal links | QUERY | 'internal link' | List single-hop links discovered via LLDP. | |
| list switches | QUERY | 'datapath' | List SDN switches managed by the controller. | |
| list firewall rules | GET | 'firewall rule' | List firewall rules stored in the controller. | |
| delete firewall rule | DELETE | 'firewall rule' | rule identifier | Delete a firewall rule. |
| disable firewall | SET | 'firewall state' | 'disabled' | Disable the firewall. |
| enable firewall | SET | 'firewall state' | 'enabled' | Enable the firewall. |
| get firewall status | GET | 'firewall state' | Get the enable/disable state of the firewall. | |
| unblock flow | ALLOW | sdn:flow | flow entry | Unblock network traffic matching flow parameters. |
| block flow | DENY | sdn:flow | flow entry | Block network traffic matching flow parameters. |
| unblock arp | ALLOW | sdn:flow | flow entry | Unblock ARP packets sourced from this MAC. |
| block arp | DENY | sdn:flow | flow entry | Block ARP packets sourced from this MAC. |
| unblock subnet | ALLOW | sdn:flow | flow entry | Unblocks traffic to/from the matching IP subnet. |
| block subnet | DENY | sdn:flow | flow entry | Block traffic to/from the matching IP subnet. |
| unblock mac address | ALLOW | sdn:flow | flow entry | Unblocks traffic to/from the matching MAC. |
| block mac address | DENY | sdn:flow | flow entry | Block traffic to/from the matching MAC. |
| unblock ip | ALLOW | sdn:flow | flow entry | Unblocks traffic to/from the matching IP. |
| block ip | DENY | sdn:flow | flow entry | Block traffic to/from the matching IP. |
| test connectivity | QUERY | 'health' | Validate the asset configuration for connectivity. |