CN101697521A - Automated testing method and system for filter network card - Google Patents
Automated testing method and system for filter network card Download PDFInfo
- Publication number
- CN101697521A CN101697521A CN 200910093982 CN200910093982A CN101697521A CN 101697521 A CN101697521 A CN 101697521A CN 200910093982 CN200910093982 CN 200910093982 CN 200910093982 A CN200910093982 A CN 200910093982A CN 101697521 A CN101697521 A CN 101697521A
- Authority
- CN
- China
- Prior art keywords
- message
- network card
- filter network
- information
- tuple
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides automated testing method and system for a filter network card. The method comprises the following steps: maintaining a pentad rule table; constructing a message according to a pentad in the pentad rule table or a randomly generated pentad; counting information needing to be generated by the filter network card aiming at the constructed message; adding the counted information to the tail of the message as the data part of the message; sending out the acquired message; using the filter network card to receive the message; comparing the counted information in the data part of the message with true information generated by the filter network card; and confirming whether the function of the filter network card is right or not. The invention can find problems existing in the filter network card in time, thereby improving the system efficiency and the system performance.
Description
Technical field
The present invention relates to field of network safety application, relate in particular to a kind of filter network card automated testing method and system.
Background technology
Prior art is to adopt transmitter and application program joint test.Transmitter can send the data message of the particular type of user's structure, and corresponding information is done statistics.When application program receives data message, also corresponding information is done statistics according to message.If both statistical informations are identical, just think that the filter network card function is correct at the data message of this type.Otherwise, just think that the filter network card function is incorrect at the data message of this type.Recycle the data message of transmitter structure particular type, test filter network card function.
The shortcoming of this kind method comprises:
(1) need possess expensive transmitter equipment;
(2) use transmitter and application program be need unite, realization difficulty and complexity increased;
(3) need the manual statistical information to transmitter and application program of people to compare, testing efficiency is low.
Also the filter network card of rule-based collection is not carried out the effective ways of automatic test in the prior art.
Summary of the invention
At the one or more problems that exist in the correlation technique, the object of the present invention is to provide a kind of filter network card automated testing method and system, with in addressing the above problem one of at least.
For achieving the above object, according to an aspect of the present invention, provide a kind of filter network card automated testing method, this method comprises: safeguard one group of five-tuple rule list; Construct message according to a five-tuple in the five-tuple rule list or a five-tuple that generates at random, and add up the information that filter network card should produce at the message of being constructed; Adding the information that counts to message tail sends as the data division of message and with resulting message; And use filter network card to receive message, and the real information that the information that counts in the data division of message and filter network card are produced is compared, determine whether the function of filter network card is correct.
Preferably, this five-tuple comprises following information: source IP address, purpose IP address, protocol number, source port, destination interface.
Preferably, this five-tuple rule list is randomly generated.
Preferably, add up according to the following at least a information in the message: five-tuple information, message protocol information, Transmission Control Protocol field, network interface card give out a contract for a project quantity and type.
Preferably, the user can according to circumstances determine the number of times of test.In the one or many test, under the equal consistent situation of comparative result, determine that the filter network card function is correct, exist under the inconsistent situation at comparative result, determine the filter network card capability error.
For achieving the above object, according to an aspect of the present invention, provide a kind of filter network card automatization test system, this system comprises: maintenance unit is used to safeguard one group of five-tuple rule list; Message structure and statistic unit are used for according at a five-tuple of five-tuple rule list or a five-tuple structure message that generates at random, and the statistics filter network card information that should produce at the message of being constructed; Packet sending unit is added the information that counts to message tail and is sent as the data division of message and with resulting message; And determining unit, be used to use filter network card to receive message, and the real information that the information that counts in the data division of message and filter network card are produced is compared, determine whether the function of filter network card is correct.
Preferably, this five-tuple can comprise following information: source IP address, purpose IP address, protocol number, source port, destination interface.
Preferably, the five-tuple rule list is randomly generated.
Preferably, add up according to the following at least a information in the message: five-tuple information, message protocol information, Transmission Control Protocol field, network interface card give out a contract for a project quantity and type.
Preferably, the user can according to circumstances determine the number of times of test.In the one or many test, under the equal consistent situation of comparative result, determine that the filter network card function is correct, exist under the inconsistent situation at comparative result, determine the filter network card capability error.
By above-mentioned at least one technical scheme of the present invention, whether correct by the function of automatically testing filter network card, can find the existing problem of filter network card in time, thereby improve system effectiveness, improved systematic function.
Description of drawings
Fig. 1 is the flow chart according to filter network card automated testing method of the present invention; And
Fig. 2 is the block diagram according to filter network card automatization test system of the present invention.
Embodiment
Functional overview
Consider the one or more problems that exist in the correlation technique, the present invention proposes a kind of filter network card automated testing method and system, can find the existing problem of filter network card in time, thereby improve system effectiveness, has improved systematic function.
Fig. 1 is the flow chart according to filter network card automated testing method of the present invention.As shown in Figure 1, automated testing method according to the present invention may further comprise the steps:
Step S102 safeguards one group of five-tuple rule list;
Step S104, according to five-tuple in the five-tuple rule list or a five-tuple structure message generating at random, and the information that should produce at the message of being constructed according to this counting messages filter network card;
Step S106 adds the information that counts to message tail and sends as the data division of message and with resulting message; And
Step S108 uses filter network card to receive message, and the real information that the information that counts in the data division of message and filter network card are produced is compared, and determines whether the function of filter network card is correct.
Wherein, this five-tuple can comprise following information: source IP address, purpose IP address, protocol number, source port, destination interface." five-tuple rule list " is the set of a plurality of five-tuples.This five-tuple rule list can be randomly generated.
Can add up according to following at least a information: five-tuple information, message protocol information, Transmission Control Protocol field, network interface card give out a contract for a project quantity and type.
Particularly, can add up according to following field in the message:
Five-tuple information: hit, do not hit
Message protocol information: Transmission Control Protocol, udp protocol
Transmission Control Protocol field: this field is arranged, do not have this field
Network interface card give out a contract for a project quantity and type
Needed form is as follows:
Statistics identifier: " STAT "
Data message length: 6,, represent by byte-sized from the statistics identifier
Five-tuple information: 1, to hit be 1, not hit be 0;
Message protocol information: 1, TCP is 1, and UDP is 0;
The Transmission Control Protocol field: 8, this field is arranged, relevant position 1 does not have this field, and corresponding positions is 0; This field of UDP message is 0 entirely;
The network interface card quantity 1:4 position of giving out a contract for a project;
The network interface card Class1 of giving out a contract for a project: 4;
The network interface card quantity 2:4 position of giving out a contract for a project;
The network interface card type 2:4 position of giving out a contract for a project;
The network interface card quantity n:4 position of giving out a contract for a project;
The network interface card type n:4 position of giving out a contract for a project;
Annotate: n can not surpass 10.
Message can send by give out a contract for a project machine or network card equipment.
In the present invention, the user can according to circumstances determine the number of times of test.How many bar records of concrete test could determine that the network interface card function is correct, are determined according to actual conditions by the user.
Above statistical information all needs comparison, and has only under all consistent situation of comparative result, determines that the filter network card function is correct, exists under the inconsistent situation at comparative result, determines the filter network card capability error.
Fig. 2 is the block diagram according to filter network card automatization test system of the present invention.As shown in Figure 2, this system comprises: maintenance unit 202 is used to safeguard one group of five-tuple rule list; Message structure and statistic unit 204 are used for according at a five-tuple of five-tuple rule list or a five-tuple structure message that generates at random, and add up the information that filter network card should produce at the message of being constructed; Packet sending unit 206 is added the information that counts to message tail and is sent as the data division of message and with resulting message; And determining unit 208, be positioned at the filter network card side, be used for when described filter network card receives message, the real information that the information that counts in the data division of message and filter network card are produced compares, and determines whether the function of filter network card is correct.
Wherein, this five-tuple can comprise following information: source IP address, purpose IP address, protocol number, source port, destination interface.The five-tuple rule list can be randomly generated.
Can add up according to following at least a information: five-tuple information, message protocol information, Transmission Control Protocol field, network interface card give out a contract for a project quantity and type.
In the present invention, the user can according to circumstances determine the number of times of test.In the one or many test, under the equal consistent situation of comparative result, determine that the filter network card function is correct, exist under the inconsistent situation at comparative result, determine the filter network card capability error.
In sum, by above-mentioned at least one technical scheme of the present invention, automated testing method of the application of the invention and system, can find the existing problem of filter network card in time, can save great amount of manpower and time, find the existing problem of filter network card as early as possible, thereby improved system effectiveness, improved systematic function.
Obviously, those skilled in the art should be understood that, above-mentioned each module of the present invention or each step can realize with the general calculation device, they can concentrate on the single calculation element, perhaps be distributed on the network that a plurality of calculation element forms, alternatively, they can be realized with the executable program code of calculation element, thereby, they can be stored in the storage device and carry out by calculation element, perhaps they are made into each integrated circuit modules respectively, perhaps a plurality of modules in them or step are made into the single integrated circuit module and realize.Like this, the present invention is not restricted to any specific hardware and software combination.
The above is the preferred embodiments of the present invention only, is not limited to the present invention, and for a person skilled in the art, the present invention can have various changes and variation.Within the spirit and principles in the present invention all, any modification of being done, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (12)
1. a filter network card automated testing method is characterized in that, comprising:
Safeguard one group of five-tuple rule list;
Construct message according to a five-tuple in described five-tuple rule list or a five-tuple that generates at random, and add up the information that filter network card should produce at the message of being constructed;
Adding the information that counts to described message tail sends as the data division of described message and with resulting message; And
Use described filter network card to receive described message, and the real information that the described information that counts in the data division of described message and described filter network card are produced is compared, determine according to comparative result whether the function of described filter network card is correct.
2. method according to claim 1 is characterized in that, described five-tuple comprises following information: source IP address, purpose IP address, protocol number, source port, destination interface.
3. method according to claim 1 is characterized in that, described five-tuple rule list is randomly generated.
4. method according to claim 1 is characterized in that, adds up according to the following at least a information in the described message: five-tuple information, message protocol information, Transmission Control Protocol field, network interface card give out a contract for a project quantity and type.
5. according to each described method in the claim 1 to 4, it is characterized in that the user can according to circumstances determine the number of times of test.
6. method according to claim 5 is characterized in that, in the one or many test, under the equal consistent situation of comparative result, determine that described filter network card function is correct, exist under the inconsistent situation, determine described filter network card capability error at described comparative result.
7. a filter network card automatization test system is characterized in that, comprising:
Maintenance unit is used to safeguard one group of five-tuple rule list;
Message structure and statistic unit are used for according at a five-tuple of described five-tuple rule list or a five-tuple structure message that generates at random, and the statistics filter network card information that should produce at the message of being constructed;
Packet sending unit is added the information that counts to described message tail and is sent as the data division of described message and with resulting message; And
Determining unit, be positioned at the filter network card side, when described filter network card received described message, the real information that the described information that counts in the data division of described message and described filter network card are produced compared, and determines according to comparative result whether the function of described filter network card is correct.
8. system according to claim 7 is characterized in that, described five-tuple comprises following information: source IP address, purpose IP address, protocol number, source port, destination interface.
9. system according to claim 7 is characterized in that, described five-tuple rule list is randomly generated.
10. system according to claim 7 is characterized in that, adds up according to the following at least a information in the described message: five-tuple information, message protocol information, Transmission Control Protocol field, network interface card give out a contract for a project quantity and type.
11., it is characterized in that the user can according to circumstances determine the number of times of test according to each described system in the claim 7 to 10.
12. system according to claim 11 is characterized in that, in the one or many test, under the equal consistent situation of comparative result, determine that described filter network card function is correct, exist under the inconsistent situation, determine described filter network card capability error at described comparative result.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910093982 CN101697521B (en) | 2009-09-25 | 2009-09-25 | Automated testing method and system for filter network card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910093982 CN101697521B (en) | 2009-09-25 | 2009-09-25 | Automated testing method and system for filter network card |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101697521A true CN101697521A (en) | 2010-04-21 |
| CN101697521B CN101697521B (en) | 2013-08-07 |
Family
ID=42142596
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200910093982 Active CN101697521B (en) | 2009-09-25 | 2009-09-25 | Automated testing method and system for filter network card |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101697521B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102404151A (en) * | 2011-11-28 | 2012-04-04 | 曙光信息产业(北京)有限公司 | Network card device for supporting complex flow statistic and related complex flow statistic method |
| CN108768784A (en) * | 2018-06-13 | 2018-11-06 | 郑州云海信息技术有限公司 | A kind of system and method for automatic test network interface card performance |
| CN113225220A (en) * | 2021-03-23 | 2021-08-06 | 深圳市东晟数据有限公司 | Test networking system of network shunt and test method thereof |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101119237A (en) * | 2006-07-31 | 2008-02-06 | 英业达股份有限公司 | Network card testing method |
| CN101340275B (en) * | 2008-08-27 | 2010-10-20 | 华为终端有限公司 | Data card, data processing and transmitting method |
| CN101478458B (en) * | 2009-01-20 | 2013-04-17 | 工业和信息化部电信传输研究所 | SIP protocol security test method |
-
2009
- 2009-09-25 CN CN 200910093982 patent/CN101697521B/en active Active
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102404151A (en) * | 2011-11-28 | 2012-04-04 | 曙光信息产业(北京)有限公司 | Network card device for supporting complex flow statistic and related complex flow statistic method |
| CN108768784A (en) * | 2018-06-13 | 2018-11-06 | 郑州云海信息技术有限公司 | A kind of system and method for automatic test network interface card performance |
| CN113225220A (en) * | 2021-03-23 | 2021-08-06 | 深圳市东晟数据有限公司 | Test networking system of network shunt and test method thereof |
| CN113225220B (en) * | 2021-03-23 | 2022-03-18 | 深圳市东晟数据有限公司 | Test networking system of network shunt and test method thereof |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101697521B (en) | 2013-08-07 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103166933B (en) | A kind of data security switching system and method | |
| EP2299633B1 (en) | Misdirected packet detection method | |
| CN103220173B (en) | A kind of alarm monitoring method and supervisory control system | |
| CN103781100B (en) | The policy control method and device of terminal peripheral hardware | |
| CN101341715A (en) | Methods and devices for defending a 3g wireless network against malicious attacks | |
| CN105207853A (en) | Local area network monitoring management method | |
| CN1937589A (en) | Routing configuration validation apparatus and methods | |
| CN102369690A (en) | Analysis of network traffic | |
| EP3547236B1 (en) | Method and device for calculating household appliance faults | |
| CN102769549A (en) | Network security monitoring method and device | |
| CN1897548A (en) | Method and system correlating different calling record to high grade collecting view | |
| CN112463772B (en) | Log processing method and device, log server and storage medium | |
| CN106301987B (en) | Message loss detection method, device and system | |
| CN104410581A (en) | Configuration information design and information extraction of AFDX (Avionics Full Duplex Switched Ethernet) network | |
| CN100370762C (en) | Method device and system for processing warning message | |
| CN101697521B (en) | Automated testing method and system for filter network card | |
| CN110087226B (en) | Flow statistical method and device, storage medium and electronic device | |
| CN113746788A (en) | Data processing method and device | |
| CN103634166A (en) | Equipment survival detection method and equipment survival detection device | |
| CN103096361B (en) | The exchange method of performance statistic and device in a kind of wireless local area network (WLAN) system | |
| CN101668014A (en) | Communication method of manufacturing grid service center and resource nodes | |
| CN106850153B (en) | Data retransmission method and system | |
| CN104486047B (en) | Self-aided terminal monitoring method, device and system | |
| CN103647666A (en) | Method and apparatus for counting call detail record (CDR) messages and outputting results in real time | |
| CN102124698A (en) | System and method for exporting structured data in a network management environment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20220729 Address after: 100193 No. 36 Building, No. 8 Hospital, Wangxi Road, Haidian District, Beijing Patentee after: Dawning Information Industry (Beijing) Co.,Ltd. Patentee after: DAWNING INFORMATION INDUSTRY Co.,Ltd. Address before: 100084 No. 6 South Road, Zhongguancun Academy of Sciences, Beijing, Haidian District Patentee before: Dawning Information Industry (Beijing) Co.,Ltd. |
|
| TR01 | Transfer of patent right |