AR090381A1 - METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC - Google Patents

METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC

Info

Publication number
AR090381A1
AR090381A1 ARP130100891A AR090381A1 AR 090381 A1 AR090381 A1 AR 090381A1 AR P130100891 A ARP130100891 A AR P130100891A AR 090381 A1 AR090381 A1 AR 090381A1
Authority
AR
Argentina
Prior art keywords
traffic data
detection module
network traffic
forwarding
monitoring network
Prior art date
Application number
Other languages
Spanish (es)
Inventor
Garcia De Blas Gerardo
Montes Moreno Pablo
Javier Ramon Salguero Francisco
Tierno Sepulveda Alfonso
Original Assignee
Telefonica Sa
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Telefonica Sa filed Critical Telefonica Sa
Publication of AR090381A1 publication Critical patent/AR090381A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/04Processing captured monitoring data, e.g. for logfile generation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/02Capturing of monitoring data
    • H04L43/028Capturing of monitoring data by filtering
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/12Network monitoring probes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Mining & Analysis (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

El método comprende las etapas de: a) adquirir con un módulo de captura, datos de tráfico de una línea de entrada y reenviar dichos datos de tráfico a un módulo de detección; y b) recibir, dicho módulo de detección, dichos datos de tráfico para realizar un análisis de inspección profunda de datos de dichos datos de tráfico recibidos para realizar una detección de los mismos, en el que dicha etapa a) comprende, adquirir dichos datos de tráfico de al menos dos de dichas líneas de entrada y clasificarlos de modo que dicho reenvío a dicho módulo de detección se realice en un orden cronológico para aquellos paquetes pertenecientes a un flujo específico de dichos datos de tráfico procedentes de dichas al menos dos líneas de entrada. El sistema de la presente está previsto para implementar el método de la presente.The method comprises the steps of: a) acquiring traffic data from an input line with a capture module and forwarding said traffic data to a detection module; and b) receiving, said detection module, said traffic data to perform a deep inspection analysis of data of said traffic data received to perform a detection thereof, in which said stage a) comprises, acquiring said traffic data of at least two of said input lines and classify them so that said forwarding to said detection module is performed in chronological order for those packets belonging to a specific flow of said traffic data from said at least two input lines. The present system is intended to implement the present method.

ARP130100891 2012-03-20 2013-03-19 METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC AR090381A1 (en)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
ES201230419A ES2429396B1 (en) 2012-03-20 2012-03-20 METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC

Publications (1)

Publication Number Publication Date
AR090381A1 true AR090381A1 (en) 2014-11-05

Family

ID=47988914

Family Applications (1)

Application Number Title Priority Date Filing Date
ARP130100891 AR090381A1 (en) 2012-03-20 2013-03-19 METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC

Country Status (3)

Country Link
AR (1) AR090381A1 (en)
ES (1) ES2429396B1 (en)
WO (1) WO2013139678A1 (en)

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9998542B2 (en) * 2014-12-18 2018-06-12 Yokogawa Electric Corporation System and method for determining routing information
US10089163B2 (en) * 2015-06-17 2018-10-02 Vmware, Inc. Automatic discovery and prioritization of fault domains
CN108322403B (en) * 2018-01-31 2022-03-25 杭州迪普科技股份有限公司 Netflow flow shunting method and device
CN110808962B (en) * 2019-10-17 2022-04-29 奇安信科技集团股份有限公司 Malformed data packet detection method and device
CN113300981A (en) * 2020-02-21 2021-08-24 华为技术有限公司 Message transmission method, device and system
CN114338542A (en) * 2021-12-24 2022-04-12 国网天津市电力公司营销服务中心 Acquisition method and device for reducing network flow in power system
CN115314425B (en) * 2022-07-12 2024-02-23 清华大学 Network scanning device

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2003103233A1 (en) * 2002-05-31 2003-12-11 富士通株式会社 Packet repeating installation, network connection device, packet repeating method, recording medium, program

Also Published As

Publication number Publication date
WO2013139678A1 (en) 2013-09-26
ES2429396R1 (en) 2014-02-12
ES2429396A2 (en) 2013-11-14
ES2429396B1 (en) 2014-11-18

Similar Documents

Publication Publication Date Title
AR090381A1 (en) METHOD AND SYSTEM FOR MONITORING NETWORK TRAFFIC
PH12018500934A1 (en) Service call information processing method and device
WO2014025621A3 (en) STATISTICS AND FAILURE DETECTION IN A NETWORK ON A CHIP (NoC) NETWORK
ECSP15020350A (en) NETWORK DRIVEN SYSTEM SELECTION BY USE OF WIRELESS DEVICE INPUT
GB2512685A (en) Detection and filtering of malware based on traffic observations made in a distributed mobile traffic management system
WO2014015194A3 (en) Methods for detecting and measuring aggregation
MX365091B (en) Biological fluid collection device and biological fluid separation and testing system.
MX2021008470A (en) Systems and methods for multi-analysis.
BR112015023668A2 (en) compact optical system for substantially simultaneous monitoring of samples in a sample matrix
EP2487553A3 (en) Turbine fault analysis
EP2706721A3 (en) Detection of infected network devices via analysis of responseless outgoing network traffic
WO2011100615A3 (en) Methods, systems, and computer readable media for performing diameter answer message-based network management at a diameter signaling router (dsr)
WO2014028648A3 (en) System and method for forming predictions using event-based sentiment analysis
WO2014177952A3 (en) A method and system to dynamically detect traffic anomalies in a network
EA201490333A1 (en) METHOD AND SYSTEM FOR CLASSIFICATION OF A PROTOCOL MESSAGE IN A DATA TRANSMISSION NETWORK
MX2014002008A (en) Information processing apparatus, information processing method, program, and information processing system.
ES2523701R1 (en) System and procedure for determining the operational parameters of an aircraft and improving the operation of the aircraft
EA201590027A1 (en) DETECTION METHODS OF DISEASES OR CONDITIONS
FR2970093B1 (en) METHOD AND DEVICE FOR AUTOMATIC MONITORING OF AIR OPERATIONS REQUIRING GUARANTEE OF NAVIGATION PERFORMANCE AND GUIDANCE
FI20115104A0 (en) SYSTEM AND METHOD FOR MODEL-BASED TESTING
WO2013048111A3 (en) Method and apparatus for detecting an intrusion on a cloud computing service
BR112015001228A2 (en) computer-implemented methods for processing and reporting test results from a medical device, computer readable storage media, and system for reporting medical test results.
MX342749B (en) Methods and systems for reducing spillover by detecting signal distortion.
BR112013030616A2 (en) test apparatus for collecting one or more wellbore fluid samples from a wellbore, and method for capturing a sample from a wellbore.
BR112015002983A2 (en) system and method for analyzing an oil / gas separation process.

Legal Events

Date Code Title Description
FB Suspension of granting procedure