CN115348126A - Network target range entity equipment access method, device and implementation system - Google Patents
Network target range entity equipment access method, device and implementation system Download PDFInfo
- Publication number
- CN115348126A CN115348126A CN202210886752.7A CN202210886752A CN115348126A CN 115348126 A CN115348126 A CN 115348126A CN 202210886752 A CN202210886752 A CN 202210886752A CN 115348126 A CN115348126 A CN 115348126A
- Authority
- CN
- China
- Prior art keywords
- entity
- information
- interface
- equipment
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 30
- 210000001503 joint Anatomy 0.000 claims description 6
- 238000010586 diagram Methods 0.000 description 4
- 238000003032 molecular docking Methods 0.000 description 3
- 238000004088 simulation Methods 0.000 description 3
- 238000012360 testing method Methods 0.000 description 3
- 238000012795 verification Methods 0.000 description 3
- 238000004891 communication Methods 0.000 description 2
- 238000010276 construction Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000013473 artificial intelligence Methods 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 238000005553 drilling Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 238000011160 research Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/2854—Wide area networks, e.g. public data networks
- H04L12/2856—Access arrangements, e.g. Internet access
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides a network target range entity device access method, a device and an implementation system, wherein the method comprises the following steps: acquiring entity equipment information, wherein the entity equipment information comprises: basic attribute information and access information, wherein the access information comprises service interface information and management interface information; determining the context of the network interface of the entity equipment, and generating a flow table combining virtuality and reality; and after the network shooting range scene starts to be started, issuing the flow table combined with the reality and the virtuality to each virtual switch and each entity switch. Multi-interface layered access (service interface and management interface) of the entity equipment can be supported, and the security is higher. The access of more flexible entity equipment can be provided, the access information can be automatically sensed and acquired, and efficient and simple configuration is realized. The application scene can be flexibly adjusted according to the entity equipment, and the method can adapt to different applications.
Description
Technical Field
The invention relates to the technical field of computers, in particular to a network shooting range entity device access method, a network shooting range entity device access device and an implementation system.
Background
Network shooting ranges have become an essential network space security core infrastructure for network space security research, learning, testing, verification, drilling and the like in various countries. Network shooting ranges are highly valued in all countries in the world and are used as important means for safety capacity construction support.
Particularly, under the condition that new technologies, new services and new modes of new services such as 5G, big data, artificial intelligence, internet of vehicles, industrial internet, internet of things and the like are rapidly developed, more and more systems and components are needed to be tested and verified in the network target range through the construction of characteristic network target ranges of different scenes, and if all the systems and components are realized in a network target range internal simulation mode, the problems of insufficient simulation degree and overhigh realization cost exist; moreover, the method and steps after the test is completed still need to be verified on the physical device, so it is important and necessary to flexibly access the physical device to the network target range.
Disclosure of Invention
The present invention aims to provide a network shooting range entity device access method, apparatus and implementation system that overcomes or at least partially solves the above problems.
In order to achieve the purpose, the technical scheme of the invention is realized as follows:
one aspect of the present invention provides a network shooting range entity device access method, including: acquiring entity equipment information, wherein the entity equipment information comprises: basic attribute information and access information, wherein the access information comprises service interface information and management interface information; determining the context of the network interface of the entity equipment, and generating a flow table combining virtuality and reality; and after the network shooting range scene starts to be started, issuing the virtual and real combined flow table to each virtual switch and each entity switch.
Wherein the acquiring of the entity device information includes: receiving manually input basic attribute information of the entity equipment; and receiving the service interface information and the management interface information of the entity equipment which are manually input, or acquiring the service interface information and the management interface information from the entity switch.
Wherein, the service interface comprises: a standard network interface; the management interface comprises: a standard network interface, an AUX, a console interface, and/or a BMC interface.
Wherein the determining the context of the network interface of the entity device comprises: and dividing the service interface of the entity equipment and the equipment connected with the entity equipment into a VLAN id or a VXLAN id.
Another aspect of the present invention provides an access apparatus for network shooting range entity equipment, including: an obtaining module, configured to obtain entity device information, where the entity device information includes: basic attribute information and access information, wherein the access information comprises service interface information and management interface information; a generating module, configured to determine a context of a network interface of the entity device, and generate a virtual-real combined flow table; and the issuing module is used for issuing the flow table combined with the virtual and the real to each virtual switch and each entity switch after the network target range scene starts to be started.
The obtaining module obtains the entity device information in the following way: receiving manually input basic attribute information of the entity equipment; and receiving the service interface information and the management interface information of the entity equipment which are manually input, or acquiring the service interface information and the management interface information from the entity switch.
Wherein, the service interface comprises: a standard network interface; the management interface includes: a standard network interface, an AUX, a console interface, and/or a BMC interface.
Wherein the generation module determines a context of a network interface of the entity device by: and dividing service interfaces of the entity equipment and equipment connected with the entity equipment into a VLAN id or VXLAN id.
The invention also provides a system for realizing the access of the network target range entity equipment, which comprises the following steps: the system comprises a switching equipment management module, an entity equipment management module, a scene configuration management module and a management agent virtual machine module; wherein: the switching equipment management module is used for establishing links with each entity switch and each virtual switch, synchronously issuing virtual and real combined flow tables, realizing the synchronization of configuration files and receiving configuration information issued by the scene configuration management module; the entity equipment management module is used for defining and describing entity equipment; the scene configuration management module is used for quoting the entity equipment, configuring the context configuration relation in the network target range scene, carrying out preliminary configuration item agreement and sending configuration information to the exchange equipment management module; and the management agent virtual machine module is used for realizing the butt joint with the entity equipment through special virtual equipment and a physical connecting line, accessing a network target range or a specified scene through a network interface of the virtual machine and managing the entity equipment.
The switching device management module is specifically configured to establish a link with each entity switch and each virtual switch through an openflow protocol.
Therefore, the network target range entity equipment access method, the network target range entity equipment access device and the network target range entity equipment access implementation system can support multi-interface layered access (service interface and management interface) of entity equipment, and are safer.
In addition, more flexible access of entity equipment can be provided, access information can be sensed and acquired automatically, and efficient and simple configuration is realized.
Meanwhile, the application scene can be flexibly adjusted according to the entity equipment, and the method can adapt to different applications.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings needed to be used in the description of the embodiments are briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on the drawings without creative efforts.
Fig. 1 is a flowchart of a network target range entity device access method according to an embodiment of the present invention;
fig. 2 is a flowchart of an embodiment of a method for accessing a network target site entity device according to the present invention;
fig. 3 is a schematic structural diagram of a network target range entity device access apparatus according to an embodiment of the present invention;
fig. 4 is a schematic structural diagram of a network target range entity device access implementation system according to an embodiment of the present invention.
Detailed Description
Exemplary embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. While exemplary embodiments of the present disclosure are shown in the drawings, it should be understood that the present disclosure may be embodied in various forms and should not be limited to the embodiments set forth herein. Rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the disclosure to those skilled in the art.
Fig. 1 shows a flowchart of a network target location entity device access method provided in an embodiment of the present invention, and referring to fig. 1, the network target location entity device access method provided in an embodiment of the present invention includes:
s1, acquiring entity equipment information, wherein the entity equipment information comprises: basic attribute information and access information, wherein the access information comprises service interface information and management interface information.
Specifically, the entity equipment is accessed to the network target range according to the service interface and the management interface to realize the layering of management and service, and meanwhile, the management interface aiming at the non-TCP/IP protocol is accessed after I/O docking is carried out through the appointed virtual access virtual machine, so that the docking of the entity equipment and the network target range is realized.
As an optional implementation manner of the embodiment of the present invention, the acquiring the entity device information includes: receiving basic attribute information of manually input entity equipment; and receiving the manually input service interface information and management interface information of the entity equipment, or acquiring the service interface information and the management interface information from the entity switch.
Specifically, when adding the entity equipment, the basic attribute information of the entity equipment can be manually added, including the name, the model, the type and the use of the equipment; this is to understand the role of the physical device; facilitating retrieval and continued sophistication in the system.
When adding or perfecting access information of entity equipment, adding can be performed in two ways:
1. the service interface and the management interface (which may be simply understood as a network card herein) are added manually, and include MAC addresses and IP addresses of one or more service network cards.
2. If the service interface and the management interface of the entity device are already connected to the entity switch, the MAC address and the IP address of the entity device and the location of the switch where the entity device is located can be obtained through the entity switch (for example, the 3 rd interface on the switch is connected to the 1 st service network card of the entity device); of course, the entity switch may also feed back the acquired interface information of the entity device so as to manually check and confirm, thereby manually completing the access information.
The access information comprises the type, the number, the access mode and the management mode of network interfaces; this is the access information for direct interfacing with the network range.
As an optional implementation manner of the embodiment of the present invention, the service interface includes: a standard network interface; the management interface comprises: a standard network interface, an AUX, a console interface, and/or a BMC interface.
Specifically, the service interfaces of the entity devices are standard network interfaces by default, and can communicate with other devices through a TCP/IP protocol; the management interface may be understood as a specific interface for implementing device management, and some of the interfaces are the same as the service interface, but some of the interfaces are different from the Console interface, the AUX interface, the BMC interface, and the like, and need to be connected through a dedicated cable to the physical server/host and then connected to the physical server/host through the network for configuration management.
Therefore, after the entity device information is acquired, the interface of the entity device accessing the network target range, no matter the interface is a service interface or a management interface, no matter the management interface is a standard network interface, an AUX interface, a console interface and a BMC interface, can be determined, so as to lay a foundation for the subsequent scene access.
And S2, determining the context of the network interface of the entity equipment, and generating a flow table combining virtuality and reality.
Specifically, in a scenario of a network target range, the network target range is defined according to a planned deployment position of the entity device, and a context of a network interface of the entity device is determined, for example, a first service port A1 is connected to an a interface of a certain virtual device, a second service port A2 is connected to a B port of another virtual device, and a management interface A3 is connected to a switch in an operation and maintenance management area, and is available for remote configuration management.
As an optional implementation manner of the embodiment of the present invention, determining a context relationship of a network interface of an entity device includes: and dividing service interfaces of the entity equipment and equipment connected with the entity equipment into a VLAN id or a VXLAN id.
Specifically, in the configuration implementation layer, an interface a of the virtual device (identified and identified by the MAC addresses of the virtual machine and the virtual machine) and a first service port A1 (identified and identified by the MAC addresses of the entity device and the entity device) are divided into a VLAN id or a VXLAN id; may communicate with each other on the same VLAN or VXLAN.
Because the virtual equipment of the scene is not formally issued, the virtual equipment can be effective or set only when the scene is formally started and the virtual network connection relation is established. The VLAN ID or VXLAN ID can be clearly defined in the configuration file or not, and is distributed and generated when issued, and then assigned in a unified way.
Generating a virtual-real combined flow table according to the above docking situation, where the flow table is a basic configuration file of a switch of an openflow protocol, and includes vlan id, a flow table number, an ethernet protocol type (ipv 4 by default), a matching source MAC and a destination MAC (which may be understood as MAC addresses of the above a interface and A1 interface), and other contents; the method is used for distributing to all virtual switches and all physical switches, and the virtual device A interface and the A1 interface of the physical device can be communicated with each other no matter how many switches are separated.
And S3, after the network shooting range scene starts to be started, issuing the virtual and real combined flow table to each virtual switch and each entity switch.
Specifically, once the network target range scene starts to be started, and various resources such as virtual devices and virtual machines are started to form a simulation network, the generated virtual-real combined flow is issued to each virtual machine switch and each entity switch, and communication between the entity device service/management interface and the virtual scene device is formed.
And the flow table is issued to the entity switch, and the entity switch defines the VLAN or VXLAN for the corresponding MAC address interface of the entity equipment, thereby realizing the butt joint.
Therefore, the network target range issues the network interface definition of the entity equipment to the switch accessed by the vswitch and the entity equipment through the openflow protocol by the scene description and the access strategy definition of the entity equipment, so as to realize the butt joint of the virtualization environment and the real switching environment; and finally, the communication of the service flow and the management flow of the scene virtual machine and the entity equipment in the virtual machine environment is realized.
Therefore, the network target range entity equipment access method provided by the embodiment of the invention can support multi-interface layered access (service interface and management interface) of entity equipment, and is safer; the access of more flexible entity equipment can be provided, the access information can be automatically sensed and acquired, and efficient and simple configuration is realized; meanwhile, the application scene can be flexibly adjusted according to the entity equipment, and the method can adapt to different applications.
The network target yard entity device access method provided in the embodiment of the present invention is described below by taking a specific flow of the network target yard entity device access method shown in fig. 2 as an example, but the present invention is not limited thereto:
1. configuring a virtual-real combination task;
2. adding basic information of entity equipment;
3. equipment access judgment is carried out, if the equipment is accessed, access information is automatically acquired, and after manual verification and confirmation, entity equipment access information is perfected; if the access is not accessed, the access information of the entity equipment is perfected after the access information is manually input and confirmed;
4. determining task references and associated definitions of entity equipment;
5. forming a flow table combining virtuality and reality;
6. judging whether a network target range scene is started, and if so, issuing a virtual-real combined flow table to a virtual switch and an entity switch;
7. and completing the access of the entity equipment.
Therefore, the invention integrates a plurality of resources such as entity equipment, virtual equipment, network environment and the like by configuring virtual and real combined tasks, and realizes task targets such as testing of the virtual equipment, verification of the entity equipment and the like. The definition/reference of the tasks and the required entity equipment can be realized, and the definition/reference of the entity equipment can also be carried out in the task process; the virtual environment resources are allocated only in the task process, so that the task is not started and the scheduling configuration of the entity equipment is not performed (no access scene and application environment are provided, so that no need exists).
Fig. 3 shows a schematic structural diagram of a network target yard entity device access apparatus provided in an embodiment of the present invention, where the network target yard entity device access apparatus applies the foregoing method, and only the structure of the network target yard entity device access apparatus is briefly described below, and please refer to the related description in the network target yard entity device access method for other inexhaustible matters, referring to fig. 3, the network target yard entity device access apparatus provided in an embodiment of the present invention includes:
an obtaining module, configured to obtain entity device information, where the entity device information includes: basic attribute information and access information, wherein the access information comprises service interface information and management interface information;
the generating module is used for determining the context of the network interface of the entity equipment and generating a flow table combining virtuality and reality;
and the issuing module is used for issuing the flow table combined with the virtual and the real to each virtual switch and each entity switch after the network target range scene starts to be started.
As an optional implementation manner of the embodiment of the present invention, the obtaining module obtains the entity device information by: receiving basic attribute information of manually input entity equipment; and receiving the manually input service interface information and management interface information of the entity equipment, or acquiring the service interface information and the management interface information from the entity switch.
As an optional implementation manner of the embodiment of the present invention, the service interface includes: a standard network interface; the management interface comprises: a standard network interface, an AUX, a console interface, and/or a BMC interface.
As an optional implementation manner of the embodiment of the present invention, the generation module determines the context relationship of the network interface of the entity device by: the service interfaces of the entity devices and the devices connected to them are classified into a VLAN id or VXLAN id.
Therefore, the access device for the entity equipment in the network target range provided by the embodiment of the invention can support multi-interface layered access (a service interface and a management interface) of the entity equipment, and is safer; the access of more flexible entity equipment can be provided, the access information can be automatically sensed and acquired, and efficient and simple configuration is realized; meanwhile, the application scene can be flexibly adjusted according to the entity equipment, and the method can adapt to different applications.
Fig. 4 shows a schematic structural diagram of an implementation system for network target court entity device access provided by an embodiment of the present invention, and referring to fig. 4, the implementation system for network target court entity device access provided by the embodiment of the present invention includes: the system comprises a switching equipment management module, an entity equipment management module, a scene configuration management module and a management agent virtual machine module; wherein:
the switching equipment management module is used for establishing links with each entity switch and each virtual switch, synchronously issuing virtual and real combined flow tables, realizing the synchronization of configuration files and receiving configuration information issued by the scene configuration management module;
the entity equipment management module is used for defining and describing entity equipment;
the scene configuration management module is used for quoting the entity equipment, configuring the context configuration relation in the network target range scene, carrying out preliminary configuration item agreement and sending the configuration information to the exchange equipment management module;
and the management agent virtual machine module is used for realizing the butt joint with the entity equipment through the special virtual equipment and a physical connection line, accessing a network target range or a specified scene through a network interface of the virtual machine and managing the entity equipment.
As an optional implementation manner of the embodiment of the present invention, the switching device management module is specifically configured to establish a link with each entity switch and each virtual switch through an openflow protocol.
Specifically, the switching device management module establishes links with each entity switch and the virtual switch by using an openflow protocol, synchronously issues a flow table combining virtuality and reality, realizes synchronization of configuration files, and receives the issue of the scene configuration management module.
The entity equipment management module is used for centralized management of entity equipment, completes definition and description of the entity equipment, can be understood as modeling description of the entity equipment according to elements of a virtual scene, and defines the most basic necessary information; the entity equipment can realize the automatic acquisition of the interface information of the entity equipment by means of the exchange equipment management module.
And the scene configuration management module is used for realizing the reference of the entity equipment, configuring the context configuration relation in the scene, carrying out preliminary configuration item agreement and sending the preliminary configuration item agreement to the exchange equipment management module.
The management agent virtual machine module is set for solving the problem that a management interface of the entity equipment is an interface of a non-Ethernet standard, realizes the butt joint with the entity equipment through special virtualization equipment and a physical connection line, and accesses a network target range or a specified scene through a network interface of the virtual machine again for managing the entity equipment.
Therefore, the system for realizing the access of the entity equipment of the network target range provided by the embodiment of the invention can support the multi-interface layered access (a service interface and a management interface) of the entity equipment, and is safer; the access of more flexible entity equipment can be provided, the access information can be automatically sensed and acquired, and efficient and simple configuration is realized; meanwhile, the application scene can be flexibly adjusted according to the entity equipment, and the method can adapt to different applications.
The above are merely examples of the present application and are not intended to limit the present application. Various modifications and changes may occur to those skilled in the art to which the present application pertains. Any modification, equivalent replacement, improvement or the like made within the spirit and principle of the present application shall be included in the scope of the claims of the present application.
Claims (10)
1. A network shooting range entity device access method is characterized by comprising the following steps:
acquiring entity equipment information, wherein the entity equipment information comprises: basic attribute information and access information, wherein the access information comprises service interface information and management interface information;
determining the context of the network interface of the entity equipment, and generating a flow table combining virtuality and reality;
and after the network shooting range scene starts to be started, issuing the flow table combined with the reality and the virtuality to each virtual switch and each entity switch.
2. The method of claim 1, wherein the obtaining entity device information comprises:
receiving manually input basic attribute information of the entity equipment; and
and receiving the manually input service interface information and the manually input management interface information of the entity equipment, or acquiring the service interface information and the management interface information from the entity switch.
3. The method of claim 1, wherein the traffic interface comprises: a standard network interface; the management interface includes: a standard network interface, an AUX, a console interface, and/or a BMC interface.
4. The method of claim 1, wherein determining the contextual relationship of the network interface of the entity device comprises:
and dividing service interfaces of the entity equipment and equipment connected with the entity equipment into a VLAN id or VXLAN id.
5. A network range entity device access apparatus, comprising:
an obtaining module, configured to obtain entity device information, where the entity device information includes: basic attribute information and access information, wherein the access information comprises service interface information and management interface information;
a generating module, configured to determine a context of a network interface of the entity device, and generate a virtual-real combined flow table;
and the issuing module is used for issuing the flow table combined with the virtual and the real to each virtual switch and each entity switch after the network target range scene starts to be started.
6. The apparatus of claim 5, wherein the obtaining module obtains the entity device information by:
receiving manually input basic attribute information of the entity equipment; and
and receiving the manually input service interface information and the manually input management interface information of the entity equipment, or acquiring the service interface information and the management interface information from the entity switch.
7. The apparatus of claim 5, wherein the traffic interface comprises: a standard network interface; the management interface comprises: a standard network interface, an AUX, a console interface, and/or a BMC interface.
8. The apparatus of claim 5, wherein the generation module determines the context of the network interface of the entity device by:
and dividing the service interface of the entity equipment and the equipment connected with the entity equipment into a VLAN id or a VXLAN id.
9. A system for realizing device access of network target range entity is characterized by comprising: the system comprises a switching equipment management module, an entity equipment management module, a scene configuration management module and a management agent virtual machine module; wherein:
the switching device management module is used for establishing links with each entity switch and each virtual switch, synchronously issuing a flow table combining virtuality and reality, realizing synchronization of configuration files and receiving configuration information issued by the scene configuration management module;
the entity equipment management module is used for defining and describing entity equipment;
the scene configuration management module is used for quoting the entity equipment, configuring the context configuration relation in the network target range scene, carrying out preliminary configuration item agreement and sending configuration information to the exchange equipment management module;
and the management agent virtual machine module is used for realizing the butt joint with the entity equipment through special virtualization equipment and a physical connecting line, accessing a network target range or a specified scene through a network interface of the virtual machine and managing the entity equipment.
10. The system of claim 9,
the switching device management module is specifically configured to establish a link with each entity switch and each virtual switch through an openflow protocol.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210886752.7A CN115348126A (en) | 2022-07-26 | 2022-07-26 | Network target range entity equipment access method, device and implementation system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210886752.7A CN115348126A (en) | 2022-07-26 | 2022-07-26 | Network target range entity equipment access method, device and implementation system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115348126A true CN115348126A (en) | 2022-11-15 |
Family
ID=83949663
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210886752.7A Pending CN115348126A (en) | 2022-07-26 | 2022-07-26 | Network target range entity equipment access method, device and implementation system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115348126A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116132221A (en) * | 2023-04-04 | 2023-05-16 | 鹏城实验室 | Virtual-real interconnection method, device, equipment and storage medium of network target range platform |
| CN116366708A (en) * | 2023-04-11 | 2023-06-30 | 南京审计大学 | System and method for dynamically switching entity equipment in network target range virtual-real combined scene |
Citations (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104778073A (en) * | 2015-04-17 | 2015-07-15 | 广东电网有限责任公司信息中心 | Novel information security attack and defense experiment platform and implementation method thereof |
| CN109039703A (en) * | 2018-06-27 | 2018-12-18 | 中国科学院信息工程研究所 | The method and system of business scenario network rapid build under a kind of complex network simulated environment |
| CN110035136A (en) * | 2019-04-18 | 2019-07-19 | 北京弘睿博通国际教育科技有限公司 | The method that the whole network unifies DHCP service is provided in a kind of multi-VLAN multisegment network |
| CN110132051A (en) * | 2019-06-12 | 2019-08-16 | 广州锦行网络科技有限公司 | A kind of information security actual combat target range construction method that actual situation combines |
| CN110191043A (en) * | 2019-05-23 | 2019-08-30 | 北京永信至诚科技股份有限公司 | The VLAN division method and system in City-level network target range |
| CN111478820A (en) * | 2020-06-24 | 2020-07-31 | 南京赛宁信息技术有限公司 | Network equipment configuration system and method for large-scale network environment of network target range |
| CN111600913A (en) * | 2020-07-22 | 2020-08-28 | 南京赛宁信息技术有限公司 | Self-adaptive access method and system for real equipment in attack and defense scene of network shooting range |
| CN111651241A (en) * | 2020-08-04 | 2020-09-11 | 北京赛宁网安科技有限公司 | Flow acquisition system and method for network target range |
| US20200344088A1 (en) * | 2019-04-29 | 2020-10-29 | Vmware, Inc. | Network interoperability support for non-virtualized entities |
| CN112202624A (en) * | 2020-12-07 | 2021-01-08 | 南京赛宁信息技术有限公司 | Real equipment fast access system and method for network target range scene arrangement |
| CN113691416A (en) * | 2021-07-29 | 2021-11-23 | 中科兴云(北京)科技有限公司 | Distributed layered deployed network target range management platform |
| CN114265666A (en) * | 2021-12-21 | 2022-04-01 | 北京永信至诚科技股份有限公司 | Network target range data acquisition system and method |
| CN114301656A (en) * | 2021-12-23 | 2022-04-08 | 北京赛宁网安科技有限公司 | Virtual-real combination system and method for network attack and defense platform |
| CN114363021A (en) * | 2021-12-22 | 2022-04-15 | 绿盟科技集团股份有限公司 | Network shooting range system, virtual network implementation method and device of network shooting range system |
-
2022
- 2022-07-26 CN CN202210886752.7A patent/CN115348126A/en active Pending
Patent Citations (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104778073A (en) * | 2015-04-17 | 2015-07-15 | 广东电网有限责任公司信息中心 | Novel information security attack and defense experiment platform and implementation method thereof |
| CN109039703A (en) * | 2018-06-27 | 2018-12-18 | 中国科学院信息工程研究所 | The method and system of business scenario network rapid build under a kind of complex network simulated environment |
| CN110035136A (en) * | 2019-04-18 | 2019-07-19 | 北京弘睿博通国际教育科技有限公司 | The method that the whole network unifies DHCP service is provided in a kind of multi-VLAN multisegment network |
| US20200344088A1 (en) * | 2019-04-29 | 2020-10-29 | Vmware, Inc. | Network interoperability support for non-virtualized entities |
| CN110191043A (en) * | 2019-05-23 | 2019-08-30 | 北京永信至诚科技股份有限公司 | The VLAN division method and system in City-level network target range |
| CN110132051A (en) * | 2019-06-12 | 2019-08-16 | 广州锦行网络科技有限公司 | A kind of information security actual combat target range construction method that actual situation combines |
| CN111478820A (en) * | 2020-06-24 | 2020-07-31 | 南京赛宁信息技术有限公司 | Network equipment configuration system and method for large-scale network environment of network target range |
| CN111600913A (en) * | 2020-07-22 | 2020-08-28 | 南京赛宁信息技术有限公司 | Self-adaptive access method and system for real equipment in attack and defense scene of network shooting range |
| CN111651241A (en) * | 2020-08-04 | 2020-09-11 | 北京赛宁网安科技有限公司 | Flow acquisition system and method for network target range |
| CN112202624A (en) * | 2020-12-07 | 2021-01-08 | 南京赛宁信息技术有限公司 | Real equipment fast access system and method for network target range scene arrangement |
| CN113691416A (en) * | 2021-07-29 | 2021-11-23 | 中科兴云(北京)科技有限公司 | Distributed layered deployed network target range management platform |
| CN114265666A (en) * | 2021-12-21 | 2022-04-01 | 北京永信至诚科技股份有限公司 | Network target range data acquisition system and method |
| CN114363021A (en) * | 2021-12-22 | 2022-04-15 | 绿盟科技集团股份有限公司 | Network shooting range system, virtual network implementation method and device of network shooting range system |
| CN114301656A (en) * | 2021-12-23 | 2022-04-08 | 北京赛宁网安科技有限公司 | Virtual-real combination system and method for network attack and defense platform |
Non-Patent Citations (2)
| Title |
|---|
| CASONCHAN: "基于Open vSwitch的OpenFlow实践", pages 1 - 3, Retrieved from the Internet <URL:http://www.cnblogs.com/CasonChan/p/4748527.html> * |
| ITPUB博客: "理解什么叫管理vlan与业务VLAN,理解DTP及trunk的配置", pages 1 - 3, Retrieved from the Internet <URL:http://blog.itpub.net/22214587/viewspace-746952/> * |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116132221A (en) * | 2023-04-04 | 2023-05-16 | 鹏城实验室 | Virtual-real interconnection method, device, equipment and storage medium of network target range platform |
| CN116132221B (en) * | 2023-04-04 | 2023-08-25 | 鹏城实验室 | Virtual-real interconnection method, device, equipment and storage medium of network target range platform |
| CN116366708A (en) * | 2023-04-11 | 2023-06-30 | 南京审计大学 | System and method for dynamically switching entity equipment in network target range virtual-real combined scene |
| CN116366708B (en) * | 2023-04-11 | 2023-10-27 | 南京审计大学 | System and method for dynamically switching entity equipment in network target range virtual-real combined scene |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN115348126A (en) | Network target range entity equipment access method, device and implementation system | |
| CN105099789B (en) | A kind of network element updating method and apparatus | |
| CN110301104B (en) | Optical line terminal OLT equipment virtualization method and related equipment | |
| CN114363021B (en) | Network target range system, virtual network implementation method and device of network target range system | |
| CN107508795A (en) | Across the access process device and method of container cluster | |
| CN106789168B (en) | Deployment method of data center server management network and rack top type switch | |
| CN104615455B (en) | A kind of the IPMC program remote upgrading methods and device of ATCA frameworks | |
| CN101785283B (en) | Methods and devices for communicating diagnosis data in a real time communication network | |
| CN104734931A (en) | Method and device for establishing link between virtual network functions | |
| CN105024855A (en) | Distributed cluster management system and method | |
| CN101951369A (en) | Batch terminal upgrading method and system based on automatic discovery | |
| CN106685733A (en) | FC-AE-1553 network rapid configuration and automatic testing method | |
| CN102457391B (en) | Equipment unified management method for Ethernet passive optical network and Ethernet over coax (EPON+EoC) two-way cable access network | |
| CN112698838B (en) | Multi-cloud container deployment system and container deployment method thereof | |
| CN102316043A (en) | Port virtualization method, switch and communication system | |
| CN105812221A (en) | Data transmission device and method in virtual extensible local area network | |
| CN105786732A (en) | Data access method and apparatus | |
| CN108089968A (en) | A kind of method of host's machine monitoring virtual-machine data storehouse state | |
| CN106843971A (en) | BIOS method for refreshing, server, BMC, medium and storage control | |
| CN102546840B (en) | Method, device and system for binding virtual serial port and physical serial port | |
| CN104104594B (en) | VSU protocol massages are sent and method of reseptance, equipment and system | |
| CN115242666B (en) | Simulation platform monitoring system based on data distribution service | |
| CN112351106B (en) | Service grid platform containing event grid and communication method thereof | |
| CN1609819B (en) | Test method for computer external equipment interface | |
| CN109224451A (en) | Development of games method, equipment and storage medium based on block chain subchain |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20221115 |