CN111756775A - Handheld gigabit network analyzer and application method thereof - Google Patents
Handheld gigabit network analyzer and application method thereof Download PDFInfo
- Publication number
- CN111756775A CN111756775A CN202010732278.3A CN202010732278A CN111756775A CN 111756775 A CN111756775 A CN 111756775A CN 202010732278 A CN202010732278 A CN 202010732278A CN 111756775 A CN111756775 A CN 111756775A
- Authority
- CN
- China
- Prior art keywords
- network
- port
- data
- handheld
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0654—Management of faults, events, alarms or notifications using network fault recovery
- H04L41/0663—Performing the actions predefined by failover planning, e.g. switching to standby network elements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/10—Mapping addresses of different types
- H04L61/103—Mapping addresses of different types across network layers, e.g. resolution of network layer into physical layer addresses or address resolution protocol [ARP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1458—Denial of Service
Abstract
The invention discloses a handheld gigabit network analyzer and an application method thereof, relates to the field of network analyzers, and solves the problems that the deployment time of inspection equipment is too long, and the risk of delaying the time of safety inspection exists. The network card module is communicated with the Ethernet port through RGMII, the network card module is communicated with the network mirror module through a medium-related interface, the network mirror module is communicated with an RJ45 module, the RJ45 module comprises two medium-related interfaces, and a Bypass control mode is triggered between the two medium-related interfaces through a power supply. The invention adopts bypass technology, and the network is automatically switched to physical communication. The front-end equipment connected in series is prevented from becoming a network single-point fault, time delay and difficulty in network operation and maintenance management caused by network manual switching are avoided, and high availability and stable operation of the network are guaranteed. And the pure hardware is switched, the switching time is short, and the safety of the equipment per se is ensured.
Description
Technical Field
The invention relates to the field of network analyzers, in particular to a handheld gigabit network analyzer and an application method thereof.
Background
Along with the wide application of information technology and the rapid development of network space, illegal behaviors such as network fraud, network intrusion, attack damage and the like exist in large quantity, the normal operation of the network of an enterprise or an organization is seriously influenced, and the benefits of the enterprise or the organization can be seriously damaged. The network flow can truly reflect the current state of the network, and analysis aiming at the network flow can help network management personnel to take measures in time for problems in the network, thereby reducing the risk of occurrence of safety events.
However, network traffic safety inspection of actual combat work is not well developed, on one hand, inspection analysis for a network environment cannot change an original network architecture and cannot affect normal operation of a network, and on the other hand, when large-scale server equipment is faced, the deployment time of the inspection equipment is too long, and the risk of delaying the safety inspection opportunity may exist.
Disclosure of Invention
The technical problem to be solved by the invention is as follows: aiming at the problems that the original network architecture cannot be changed and the normal operation of the network cannot be influenced by the checking and analyzing of the network environment, and when large-scale server equipment is faced, the arrangement time of the checking equipment is too long, and the risk of delaying the safety checking opportunity exists, the invention provides the handheld gigabit network analyzer for solving the problems and the application method thereof.
The invention is realized by the following technical scheme:
a handheld gigabit network analyzer comprising an ethernet port, a USB3.0 port, and a TYPEC port;
the USB3.0 port is used for importing original data of an external hard disk and supporting a SATA protocol;
the TYPEC port is used for bidirectional communication between external equipment with TYPEC input and external equipment with Ethernet input;
still include with the ethernet port passes through the network card module of RGMII communication, the network card module passes through media correlation interface communication network mirror image module, network mirror image module intercommunication RJ45 module, RJ45 module include two media correlation interfaces, pass through power triggering Bypass control mode between two media correlation interfaces.
Further, the USB3.0 port is connected to two SATA ports through a converter, each SATA port is used for connecting to an external hard disk, and a SATA protocol is used between each SATA port and the external hard disk.
Further, the TYPEC port is connected to an ethernet converter and is in data communication with the RJ45 module through a media-related interface;
data communication includes that the original data of external equipment input analysis appearance of taking the TYPEC input of even joining into the TYPEC port is reorganized and is analyzed, and passes back to the ethernet port, the ethernet port passes through USB3.0 port or RJ45 module send the data after the analysis to external hard disk or the external equipment of ethernet input.
Furthermore, in the path of the ethernet port, two media-related interfaces are connected to the network device;
when the network equipment does not work or is powered off, triggering Bypass control, and carrying out data communication by the network equipment;
and when the network equipment is powered on, the BIOS takes over the starting of the network equipment OS, executes the Bypass program of the GPIO and closes the Bypass.
The application method of the handheld gigabit network analyzer is used for analyzing the network state based on the handheld gigabit network analyzer and comprises the following steps:
s1: capturing original data of external equipment connected through the USB3.0 port or the TYPEC port, recording capturing time, protocol types, source/destination IP (Internet protocol/destination) and data packet information of all data packets by an analyzer after the external equipment is connected, and performing real-time statistics on uplink and downlink data packets of network communication;
s2: constructing an analysis model, recombining and analyzing the original data to obtain preliminary data, and analyzing the flow of the preliminary data;
s3: and importing the analysis result and the preliminary data into a safety state evaluation model, comparing the analysis result according to a network state threshold interval corresponding to the flow of the preliminary data by the safety state evaluation model, outputting and displaying that the network state is good if the analysis result is in the network state threshold interval corresponding to the flow of the preliminary data, and otherwise, early warning in real time, outputting and displaying that the network state is abnormal.
Further, aiming at ARP attack detection analysis, the IP and MAC addresses of the gateway are preset in a detection program of the analysis model in advance, when the analyzer captures a data packet as an ARP response packet, the ARP response packet is analyzed, the preset IP and MAC addresses are extracted at the same time, and the safety state evaluation model judges whether the risk of ARP attack exists or not.
Further, aiming at broadcast storm detection analysis, a network flow baseline and the proportion of the broadcast packet under a normal condition are set in a detection program of the analysis model, when the analyzer captures the data packet as the broadcast packet, the preliminary data flow in the broadcast packet and the proportion of the broadcast packet are analyzed, and when the preliminary data flow exceeds the network flow baseline and the proportion of the broadcast packet exceeds the proportion of the broadcast packet under the normal condition, the safety state evaluation model outputs the result of the risk of the broadcast storm and gives an early warning.
Further, on the basis of data packet capture and analysis by the analyzer, the number of times of accessing a source IP of a target IP address in a statistical period by the analysis model is analyzed, the safety state evaluation model is matched with a corresponding threshold value of the source IP address according to the flow of the data packet, and if the number of times of the source IP address exceeds the corresponding threshold value of the source IP address, the safety state evaluation model outputs Dos attack risk and gives an early warning.
The invention has the following advantages and beneficial effects:
the invention adopts bypass technology, and when the front-end equipment is in a shutdown state or fails, the network is automatically switched to physical communication. The front-end equipment connected in series is prevented from becoming a network single-point fault, time delay and difficulty in network operation and maintenance management caused by network manual switching are avoided, and high availability and stable operation of the network are guaranteed. The switching of pure hardware is short, the data transmission rate is not influenced, and the safety of the equipment per se can be ensured.
Drawings
The accompanying drawings, which are included to provide a further understanding of the embodiments of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the principles of the invention. In the drawings:
FIG. 1 is a schematic diagram of the present invention.
Detailed Description
Before any embodiments of the invention are explained in detail, it is to be understood that the invention is not limited in its application to the details of construction and the arrangements of components set forth in the following description or illustrated in the drawings. The invention is capable of other embodiments and of being practiced or of being carried out in various ways. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any inventive changes, are within the scope of the present invention.
A handheld gigabit network analyzer, as shown in fig. 1, comprising an ethernet port, a USB3.0 port, and a TYPEC port;
the USB3.0 port is used for importing original data of an external hard disk and supporting a SATA protocol;
the TYPEC port is used for bidirectional communication between external equipment with TYPEC input and external equipment with Ethernet input;
the handheld precursor network analyzer is characterized by further comprising a network card module which communicates with the Ethernet port through RGMII, the network card module communicates with a network mirror module through a medium-related interface, the network mirror module is communicated with an RJ45 module, the RJ45 module comprises two medium-related interfaces, a Bypass control mode is triggered between the two medium-related interfaces through a power supply, and the handheld precursor network analyzer can not influence the normal communication of an original network when equipment is accessed; meanwhile, the link bypass technology used by the invention can ensure that the accessed link is in a communication state under the condition that the equipment does not work or loses power supply. The technology is different from a bypass parallel analysis technology in a 100M mode, and the link bypass technology solves the problem of influence of serial analysis faults in a 1000M network on an analyzed network.
Preferably, the USB3.0 port is connected to two SATA ports through a converter, each SATA port is used for connecting to an external hard disk, and a SATA protocol is used between each SATA port and the external hard disk.
Preferably, the TYPEC port is connected to an ethernet converter and is in data communication with the RJ45 module through a media-related interface;
data communication includes that the original data of external equipment input analysis appearance of taking the TYPEC input of even joining into the TYPEC port is reorganized and is analyzed, and passes back to the ethernet port, the ethernet port passes through USB3.0 port or RJ45 module send the data after the analysis to external hard disk or the external equipment of ethernet input.
Preferably, in the path of the ethernet port, two media-related interfaces are connected to the network device;
when the network equipment does not work or is powered off, triggering Bypass control, and carrying out data communication by the network equipment;
and when the network equipment is powered on, the BIOS takes over the starting of the network equipment OS, executes the Bypass program of the GPIO and closes the Bypass.
The handheld gigabit network analyzer can support non-configuration access analysis in a 1000M network environment, namely, the invention can realize mirror image data analysis without degradation (network speed is reduced to 100M mode) of a 1000M network under the condition of not configuring a network address of the analyzer, different from the existing serial 1000M access packet capturing technology.
The application method of the handheld gigabit network analyzer is used for analyzing the network state based on the handheld gigabit network analyzer and comprises the following steps:
s1: capturing original data of external equipment connected through the USB3.0 port or the TYPEC port, recording capturing time, protocol types, source/destination IP (Internet protocol/destination) and data packet information of all data packets by an analyzer after the external equipment is connected, and performing real-time statistics on uplink and downlink data packets of network communication;
s2: constructing an analysis model, recombining and analyzing the original data to obtain preliminary data, and analyzing the flow of the preliminary data;
s3: and importing the analysis result and the preliminary data into a safety state evaluation model, comparing the analysis result according to a network state threshold interval corresponding to the flow of the preliminary data by the safety state evaluation model, outputting and displaying that the network state is good if the analysis result is in the network state threshold interval corresponding to the flow of the preliminary data, and otherwise, early warning in real time, outputting and displaying that the network state is abnormal.
Preferably, the ARP attack is an attack technique for the ethernet address resolution protocol. The attacker can send a false ARP response packet to point the gateway to the wrong MAC address, thereby blocking the network connection of the host. Aiming at ARP attack detection analysis, the IP and MAC addresses of the gateway are preset in a detection program of an analysis model in advance, when an analyzer captures a data packet as an ARP response packet, the ARP response packet is analyzed, the preset IP and MAC addresses are extracted at the same time, and the security state evaluation model judges whether the risk of ARP attack exists or not.
Preferably, the broadcast storm means that when broadcast data is flooded in a network and cannot be processed, a large amount of network bandwidth is occupied, so that normal service cannot run normally, and even the network is broken down.
Aiming at broadcast storm detection analysis, a network flow baseline and the proportion of a broadcast packet under a normal condition are set in a detection program of an analysis model, when an analyzer captures a data packet as the broadcast packet, the preliminary data flow in the broadcast packet and the proportion of the broadcast packet are analyzed, and when the preliminary data flow exceeds the network flow baseline and the proportion of the broadcast packet exceeds the proportion of the broadcast packet under the normal condition, a safety state evaluation model outputs a result of the risk of the broadcast storm and gives an early warning.
Preferably, the Dos attack creates large-flow useless data, which causes network congestion to the attacked device and can not normally communicate; on the basis of data packet capture and analysis by an analyzer, analyzing the number of times of accessing a source IP of a target IP address in a statistical period by a model, matching a corresponding threshold value of the source IP address by a safety state evaluation model according to the flow of a data packet, and if the number of times of the source IP address exceeds the corresponding threshold value of the source IP address, outputting Dos attack risk and early warning by the safety state evaluation model.
The above-mentioned embodiments are intended to illustrate the objects, technical solutions and advantages of the present invention in further detail, and it should be understood that the above-mentioned embodiments are merely exemplary embodiments of the present invention, and are not intended to limit the scope of the present invention, and any modifications, equivalent substitutions, improvements and the like made within the spirit and principle of the present invention should be included in the scope of the present invention.
Claims (8)
1. The handheld gigabit network analyzer is characterized by comprising an Ethernet port, a USB3.0 port and a TYPEC port;
the USB3.0 port is used for importing original data of an external hard disk and supporting a SATA protocol;
the TYPEC port is used for bidirectional communication between external equipment with TYPEC input and external equipment with Ethernet input;
still include with the ethernet port passes through the network card module of RGMII communication, the network card module passes through media correlation interface communication network mirror image module, network mirror image module intercommunication RJ45 module, RJ45 module include two media correlation interfaces, pass through power triggering Bypass control mode between two media correlation interfaces.
2. The handheld gigabit network analyzer of claim 1, wherein the USB3.0 port is connected to two SATA ports through a switch, each SATA port being configured to connect to an external hard disk, and a SATA protocol being used between each SATA port and the external hard disk.
3. The handheld gigabit network analyzer of claim 1, wherein the TYPEC port is connected to an ethernet converter and is in data communication with an RJ45 module via a media-dependent interface;
data communication includes that the original data of external equipment input analysis appearance of taking the TYPEC input of even joining into the TYPEC port is reorganized and is analyzed, and passes back to the ethernet port, the ethernet port passes through USB3.0 port or RJ45 module send the data after the analysis to external hard disk or the external equipment of ethernet input.
4. The handheld gigabit network analyzer of claim 1, wherein the ethernet port has a path for two media-related interfaces to connect to a network device;
when the network equipment does not work or is powered off, triggering Bypass control, and carrying out data communication by the network equipment;
and when the network equipment is powered on, the BIOS takes over the starting of the network equipment OS, executes the Bypass program of the GPIO and closes the Bypass.
5. An application method of the handheld gigabit network analyzer, wherein the network status analysis is performed based on the handheld gigabit network analyzer according to any one of claims 1 to 4, comprising the steps of:
s1: capturing original data of external equipment connected through the USB3.0 port or the TYPEC port, recording capturing time, protocol types, source/destination IP (Internet protocol/destination) and data packet information of all data packets by an analyzer after the external equipment is connected, and performing real-time statistics on uplink and downlink data packets of network communication;
s2: constructing an analysis model, recombining and analyzing the original data to obtain preliminary data, and analyzing the flow of the preliminary data;
s3: and importing the analysis result and the preliminary data into a safety state evaluation model, comparing the analysis result according to a network state threshold interval corresponding to the flow of the preliminary data by the safety state evaluation model, outputting and displaying that the network state is good if the analysis result is in the network state threshold interval corresponding to the flow of the preliminary data, and otherwise, early warning in real time, outputting and displaying that the network state is abnormal.
6. The application method of the handheld gigabit network analyzer of claim 5, wherein for the ARP attack detection analysis, the IP and MAC addresses of the gateway are preset in advance in the detection program of the analysis model, and when the analyzer captures a data packet as an ARP reply packet, the ARP reply packet is analyzed while the preset IP and MAC addresses are extracted, and the security status evaluation model determines whether there is a risk of ARP attack.
7. The application method of the handheld gigabit network analyzer of claim 5, wherein for broadcast storm detection analysis, a network traffic baseline and a normal broadcast packet ratio are set in a detection program of the analysis model, when the analyzer captures a data packet as a broadcast packet, a preliminary data traffic in the broadcast packet and the broadcast packet ratio are analyzed, and when the preliminary data traffic exceeds the network traffic baseline and the broadcast packet ratio exceeds the normal broadcast packet ratio, the safety state evaluation model outputs a result of the risk of the broadcast storm and gives an early warning.
8. The application method of the handheld gigabit network analyzer of claim 5, wherein the analysis model counts the number of times of accessing the source IP of the target IP address within a period based on capturing and analyzing the data packet, the security state evaluation model matches the corresponding threshold value of the source IP address according to the data packet traffic, and if the number of times of the source IP address exceeds the corresponding threshold value of the source IP address, the security state evaluation model outputs Dos attack risk and warns.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010732278.3A CN111756775A (en) | 2020-07-27 | 2020-07-27 | Handheld gigabit network analyzer and application method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010732278.3A CN111756775A (en) | 2020-07-27 | 2020-07-27 | Handheld gigabit network analyzer and application method thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN111756775A true CN111756775A (en) | 2020-10-09 |
Family
ID=72712278
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010732278.3A Pending CN111756775A (en) | 2020-07-27 | 2020-07-27 | Handheld gigabit network analyzer and application method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111756775A (en) |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060117385A1 (en) * | 2004-11-30 | 2006-06-01 | Mester Michael L | Monitoring propagation protection within a network |
| US20070171966A1 (en) * | 2005-11-15 | 2007-07-26 | Light Greta L | Passive tap and associated system for tapping network data |
| CN102142720A (en) * | 2011-04-29 | 2011-08-03 | 珠海市鸿瑞软件技术有限公司 | Network communication recorder and network communication record analysis system |
| CN102394786A (en) * | 2011-12-14 | 2012-03-28 | 武汉钢铁(集团)公司 | Hand-held network protocol and threat analyzer |
| CN102636733A (en) * | 2012-04-24 | 2012-08-15 | 珠海市鸿瑞软件技术有限公司 | Portable network record analyzer |
| CN107241238A (en) * | 2017-06-09 | 2017-10-10 | 中国电子科技集团公司第四十研究所 | A kind of network testing device of hand-held 10,000,000,000 |
| US20200045069A1 (en) * | 2018-08-02 | 2020-02-06 | Bae Systems Information And Electronic Systems Integration Inc. | Network defense system and method thereof |
| CN110808865A (en) * | 2019-11-13 | 2020-02-18 | 北京理工大学 | Passive industrial control network topology discovery method and industrial control network security management system |
-
2020
- 2020-07-27 CN CN202010732278.3A patent/CN111756775A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060117385A1 (en) * | 2004-11-30 | 2006-06-01 | Mester Michael L | Monitoring propagation protection within a network |
| US20070171966A1 (en) * | 2005-11-15 | 2007-07-26 | Light Greta L | Passive tap and associated system for tapping network data |
| CN102142720A (en) * | 2011-04-29 | 2011-08-03 | 珠海市鸿瑞软件技术有限公司 | Network communication recorder and network communication record analysis system |
| CN102394786A (en) * | 2011-12-14 | 2012-03-28 | 武汉钢铁(集团)公司 | Hand-held network protocol and threat analyzer |
| CN102636733A (en) * | 2012-04-24 | 2012-08-15 | 珠海市鸿瑞软件技术有限公司 | Portable network record analyzer |
| CN107241238A (en) * | 2017-06-09 | 2017-10-10 | 中国电子科技集团公司第四十研究所 | A kind of network testing device of hand-held 10,000,000,000 |
| US20200045069A1 (en) * | 2018-08-02 | 2020-02-06 | Bae Systems Information And Electronic Systems Integration Inc. | Network defense system and method thereof |
| CN110808865A (en) * | 2019-11-13 | 2020-02-18 | 北京理工大学 | Passive industrial control network topology discovery method and industrial control network security management system |
Non-Patent Citations (3)
| Title |
|---|
| JIM W: ""网络安全设备Bypass功能介绍及分析"", 《HTTPS://BLOG.CSDN.NET/WEIXIN_42414349/ARTICLE/DETAILS/83511073》 * |
| 吴烨虹: ""网络分析仪在网络流量监测中的应用"", 《计算机技术与发展》 * |
| 梁曼舒: ""手持式智能变电站网络测试分析仪的研制"", 《万方》 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Zhou et al. | Flow event telemetry on programmable data plane | |
| US20050182950A1 (en) | Network security system and method | |
| CN107819633B (en) | Method for rapidly discovering and processing network fault | |
| EP1980054B1 (en) | Method and apparatus for monitoring malicious traffic in communication networks | |
| US6938189B2 (en) | High performance digital loop diagnostic technology | |
| US8432827B2 (en) | Arrangement for utilization rate display and methods thereof | |
| CA2436710A1 (en) | Network port profiling | |
| US10917325B2 (en) | Deriving test profiles based on security and network telemetry information extracted from the target network environment | |
| US20050078692A1 (en) | System and method of analyzing network protocols | |
| US20050060402A1 (en) | Propagation of signals between devices for triggering capture of network data | |
| CN1866951B (en) | Method and system for detecting shared access host machine in network | |
| CN110417623B (en) | Fault diagnosis method for Ethernet switch of intelligent substation | |
| CN114567463B (en) | Industrial network information safety monitoring and protecting system | |
| CN101483559A (en) | Monitoring method for distributed IPTV service transmission quality | |
| US20070150955A1 (en) | Event detection system, management terminal and program, and event detection method | |
| Fang et al. | VTrace: Automatic diagnostic system for persistent packet loss in cloud-scale overlay network | |
| CN111988309A (en) | ICMP hidden tunnel detection method and system | |
| CN100377534C (en) | System and method for detecting network worm | |
| CN103634166B (en) | Equipment survival detection method and equipment survival detection device | |
| US8929835B2 (en) | Non-intrusive and operational communication system monitoring and diagnostics | |
| CN112003747A (en) | Fault positioning method of cloud virtual gateway | |
| CN112153020A (en) | Industrial control flow analysis method and device | |
| CN111756775A (en) | Handheld gigabit network analyzer and application method thereof | |
| US11316770B2 (en) | Abnormality detection apparatus, abnormality detection method, and abnormality detection program | |
| CN110798345A (en) | Network flow monitoring and analyzing equipment based on ZYNQ |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20201009 |