Performance evaluation of a firewall service based on virtualized IncludeOS unikernels

Tytus Kurek; Marcin Niemiec; Artur Lason

doi:10.1038/s41598-024-51167-8

Scientific Reports (Jan 2024)

Performance evaluation of a firewall service based on virtualized IncludeOS unikernels

Tytus Kurek,
Marcin Niemiec,
Artur Lason

Affiliations

Tytus Kurek: AGH University of Krakow
Marcin Niemiec: AGH University of Krakow
Artur Lason: AGH University of Krakow

DOI: https://doi.org/10.1038/s41598-024-51167-8
Journal volume & issue: Vol. 14, no. 1
pp. 1 – 12

Abstract

Read online

Abstract Network function virtualization technology has long moved beyond the experimental phase to become a standard in the implementation of modern telecommunications networks. It is anticipated that in the near future all network services will be implemented in software based on cloud-native architecture. As a result, telecommunications service providers have started exploring containers and unikernels as alternative technologies to traditional virtual machines. This paper presents performance evaluation of a firewall service based on IncludeOS unikernels. It shows that IncludeOS unikernels achieve promising performance results compared to Ubuntu-based virtual machines and containers. The presented evaluation is based on a number of experiments and benchmarks performed to investigate how different parameters of a firewall service change depending on the number of firewall rules.

Published in Scientific Reports

ISSN: 2045-2322 (Online)
Publisher: Nature Portfolio
Country of publisher: United Kingdom
LCC subjects: Medicine; Science
Website: https://www.nature.com/srep/

About the journal