CN103259695B - Portable internet terminal monitor and its monitoring method - Google Patents
Portable internet terminal monitor and its monitoring method Download PDFInfo
- Publication number
- CN103259695B CN103259695B CN201310131193.XA CN201310131193A CN103259695B CN 103259695 B CN103259695 B CN 103259695B CN 201310131193 A CN201310131193 A CN 201310131193A CN 103259695 B CN103259695 B CN 103259695B
- Authority
- CN
- China
- Prior art keywords
- data
- monitor
- internet terminal
- server
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The invention discloses a kind of Portable internet terminal monitors, it is characterized in that, including a client monitor, CPU mono-, flash memory, Ethernet interface, the wireless network card with AP function by being loaded with linux kernel form, it allows access terminals to access network and is communicated, it carries out catching the network packet for grabbing access terminals and uploading or downloading by the main program starting operation subprocess of system, subprogram is transmitted to main program analysis the data packet caught is caught, and the data packet that needs are stored after analysis is sent to background server;One background server is communicated to connect with client monitor, including CPU bis-, memory and display, the data sended over for receiving monitor, and received data convert and is shown.The configuration of the present invention is simple, at low cost, easy to carry, specificity is stronger, does not influence networking speed, and energy consumption is very low, energy conservation and environmental protection.
Description
Technical field
The present invention relates to network monitoring device technical field, more particularly to a kind of internet terminal monitor and its
Monitoring method.
Background technique
Universal increasingly wider with wireless network and mobile radio terminal, there are public wireless aps in many cities.
Unfortunately, these AP public multipair greatly is surfed the Internet without limitation.Possess wireless network card or the laptop computer or mobile phone of wifi
Etc. terminals can enjoy a trip to internet on these peripheries AP.In this way, the number with online is more and more, online interior perhaps people
The content that exchanges also will be more and more abundant, increasingly mix, it is more likely that cause to have on internet it is many it is discordant in
Hold and occurs.Wireless aps for these contents, as gateway card in a disclosure, it should there is the obligation being monitored to data,
Make internet more harmonious with it is environmentally friendly, while should grasp bottom is which terminal issues(Or it receives)Discordant content.Mesh
Preceding network monitoring program is mostly the equipment that operation uses x86 framework, is provided to greatly to the purpose of the monitoring of network communication
Network security, these programs and equipment are all for security service.For the technology of network monitoring, foreign countries developed very at
Ripe, the country also has Some Enterprises to research and develop such technology, and product is to develop for server security, for example network is anti-mostly
Wall with flues server, intrusion detection server, security audit server etc..But the packet non-hazardous to network server, it is such
Product simultaneously less takes notice of, especially at home, many flame or character, can only be by server application or website after
Platform is deshielded and is managed.For these sensitive informations, it is necessary to it goes to manage by independent equipment, it need not to mitigate network server
The expense wanted.
Summary of the invention
The object of the invention is in order to a kind of structure for solving the deficiency of the prior art and providing it is simple, it is easy to operate,
And gateway effect can be played in a local network, the portable internet pointedly monitored for the data packet in network
Terminal monitor.
Gateway effect can be played in a local network it is a further object of the present invention to provide a kind of, for the data packet in network
The internet terminal monitoring method pointedly monitored.
The present invention is to realize above-mentioned purpose using following technical solution:A kind of potable internet terminal monitoring
Device, which is characterized in that including a client monitor, CPU mono-, flash memory, Ethernet by being loaded with linux kernel are connect
Mouth, the wireless network card composition with AP function, allow access terminals to access network and are communicated, and start operation by the main program of system
Process, which catch, grabs the network packet that access terminals are uploaded or downloaded, and subprogram is transmitted to main program the data packet caught is caught
Analysis, the data packet that needs are stored after analysis are sent to background server;
One background server is communicated to connect with client monitor, including CPU bis-, memory and display, for receiving prison
The data that visual organ sends over, and received data convert and show.
As a further illustration of the above scheme, the input of the client monitor terminates router, internal interface
Relationship is that the data packet of wireless network card controls kernel by iptables and is forwarded to Ethernet card and is sent to internet;Ethernet card
It receives the data packet from internet and wireless network card is forwarded to by iptables control kernel.
The background server is embedded with data graphical interfaces scan tool.
A kind of internet terminal monitoring method, which is characterized in that it is by the input/output ports point in customer router
Internet terminal monitor and PC server are not established, catch using internet terminal monitor grabbing network packet, be gone forward side by side
Row analysis, the data packet that needs are stored after analysis are sent to the PC server having been turned on and are stored.
It is described internet terminal monitor send data packet to PC server before, be first starting internet terminal monitor
Linux kernel, and load trawl performance, carry out network card configuration after having driven network interface card, complete network interface card with postponing its master of operation
Program, main program starting subprocess runtime subroutine, which catch, grabs network packet, and subprogram is transmitted to the data packet caught is caught
Main program analysis.
Operation service main program after the PC server starting, monitors whether internet terminal monitor sends data to
Server has, and is stored.
The server main program operational process includes receiving data and splitting data procedures, and receiving data procedures is to receive
The data that monitor sends over;Splitting data procedures is received data convert.
The present invention is using the attainable beneficial effect of above-mentioned technical solution institute:
1, it is S3C2440 by embedded board, system kernel Linux2.6.30, CPU that the present invention, which uses mainly,
(400MHZ), the internet terminal monitor of Ethernet interface composition, the content of network data packet that subnet terminal is issued
It is monitored, monitoring while does not influence the normal communication of user;One is surrounded by the network data within the scope of all monitorings
Select filtering effect, the data packet containing the sensitive information wording being arranged listened to can be uploaded to background server into
Capable storage of putting on record, places on record, in case searching;At low cost, equipment essence is small, and easy to carry and installation is particularly suitable for public transport subway
The relatively narrow public place in equal spaces, relative to other large scale equipments, specificity is stronger, does not influence networking speed, Er Qieneng
Consume it is very low, it is more energy saving with it is environmentally friendly.
2, relative to other AP, the detection function of network packet is increased, and specified service can be stored data into
Device;The boot sequence at client and server end does not influence successively to communicate;Client is detached from server, can equally open AP function
Energy.
Detailed description of the invention
Fig. 1 is the working principle of the invention schematic diagram;
Fig. 2 is client monitor and background server attachment structure schematic diagram of the invention;
Fig. 3 is work flow diagram of the invention;
Fig. 4 is client monitor general structure schematic diagram of the invention.
Description of symbols:1, client monitor 1-1, mono- 1-3 of wiring board 1-2, CPU, flash memory
1-4, Ethernet interface 1-5, wireless network card 2, bis- 2-2 of background server 2-1, CPU, memory 2-3, display.
Specific embodiment
Technical solution of the present invention is described in further detail in conjunction with the embodiments as follows.
As Figure 1-Figure 4, a kind of Portable internet terminal monitor of the present invention, including a client monitor 1, by
Wiring board 1-1, mono- 1-2 of CPU for being loaded with linux kernel, flash memory 1-3, Ethernet interface 1-4, with the wireless of AP function
Network interface card 1-5 composition allows access terminals to access network and is communicated, and catch grabbing by the main program starting operation subprocess of system
Access terminals upload or the network packet of downloading, and subprogram is transmitted to main program analysis, handle after analysis the data packet caught is caught
The data packet for needing to store is sent to background server 2, and catching here grabs data procedures using increasing income under Linux
Tcpdump network data packet sniffer tool, the data packet transmitted in network can be intercepted and captured completely and provide analysis, caught and grab by it
Port is set as wireless network card, and monitoring can be realized by either still netting interior communication to the access of internet;Main program is responsible for
Data are analyzed and sent to server;One background server 2 is communicated to connect with client monitor, including bis- 2-1 of CPU, memory
2-2 and display 2-3, the data sended over for receiving monitor, and received data convert and show;Server end
Carry ubuntu10.10 system(Optional other systems can support gtk2.0).The wherein input termination of client monitor
Router, internal interface relationship are that the data packet of wireless network card is forwarded to Ethernet card transmission by iptables control kernel
To internet;Ethernet card receives the data packet from internet and is forwarded to wireless network card by iptables control kernel.
Background server is embedded with data graphical interfaces scan tool, for checking that data are grabbed in specified catching.
A kind of monitoring method corresponding with the internet terminal device, it is by the input/output ports in customer router
Internet terminal monitor and PC server are established respectively, catch using internet terminal monitor and are grabbed network packet, and
It is analyzed, the data packet that needs are stored after analysis is sent to the PC server having been turned on and is stored.
As shown in figure 3, internet terminal monitor:The driving such as linux kernel load network interface card, driving after hardware electrifying startup
Carry out network card configuration after playing network interface card, complete network interface card with postponing operation main program, main program start subprocess runtime subroutine into
Row, which is caught, grabs network packet, and subprogram is transmitted to main program analysis, the data that needs are stored after analysis the data packet caught is caught
Packet is sent to service routine and is stored.Specifically by the content in main program analysis Tcpdump_data structural body, if number
It according to keyword is not contained, then abandons, if organizing bunchiness form to be sent to server containing crucial son.
Server PC:Operation service program after server starting, monitors whether internet terminal monitor has transmission data
To server, have, is stored.
Server main program operational process includes receiving data and splitting data procedures, and receiving data procedures is to receive monitoring
The data that device sends over;Received data convert into Tcpdump_data categorical variable, then splitting data procedures is
Store MySQL database.
What has been described above is only a preferred embodiment of the present invention, it is noted that for those of ordinary skill in the art
For, without departing from the concept of the premise of the invention, various modifications and improvements can be made, these belong to the present invention
Protection scope.
Claims (5)
1. a kind of Portable internet terminal monitor, which is characterized in that including a client monitor, by being loaded in Linux
CPU mono-, flash memory, Ethernet interface, the wireless network card composition with AP function of core, allow access terminals to access network simultaneously
It is communicated, carries out catching the network packet for grabbing access terminals and uploading or downloading by the main program starting operation subprocess of system,
Subprogram is transmitted to main program analysis the data packet caught is caught, and the data packet that needs are stored after analysis is sent to background service
Device;
One background server is communicated to connect with client monitor, including CPU bis-, memory and display, for receiving monitor
The data sended over, and received data convert and show;The input of the client monitor terminates router, in
Portion's interface relationship is that the data packet of wireless network card controls kernel by iptables and is forwarded to Ethernet card and is sent to internet;With
Too network interface card receives the data packet from internet and is forwarded to wireless network card by iptables control kernel.
2. Portable internet terminal monitor according to claim 1, which is characterized in that the background server is embedded
There is data graphical interfaces scan tool.
3. a kind of internet terminal as described in claim 1-2 any one monitors method, which is characterized in that it be by
The output port of customer router establishes internet terminal monitor and PC server respectively, using internet terminal monitor into
Row catches and grabs network packet, and is analyzed, the data packet that needs are stored after analysis be sent to the PC server that has been turned on into
Row storage;It is described internet terminal monitor send data packet to PC server before, be first starting internet terminal monitor
Linux kernel, and load trawl performance, carry out network card configuration after having driven network interface card, complete network interface card with postponing its master of operation
Program, main program starting subprocess runtime subroutine, which catch, grabs network packet, and subprogram is transmitted to the data packet caught is caught
Main program analysis.
4. internet terminal according to claim 3 monitors method, which is characterized in that run after the PC server starting
Main program is serviced, monitors whether internet terminal monitor sends data to server, has, is stored.
5. internet terminal according to claim 4 monitors method, which is characterized in that the server main program was run
Journey includes receiving data and splitting data procedures, and receiving data procedures is the data for receiving monitor and sending over;Split data
Process is received data convert.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310131193.XA CN103259695B (en) | 2013-04-16 | 2013-04-16 | Portable internet terminal monitor and its monitoring method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310131193.XA CN103259695B (en) | 2013-04-16 | 2013-04-16 | Portable internet terminal monitor and its monitoring method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103259695A CN103259695A (en) | 2013-08-21 |
| CN103259695B true CN103259695B (en) | 2018-11-16 |
Family
ID=48963410
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310131193.XA Active CN103259695B (en) | 2013-04-16 | 2013-04-16 | Portable internet terminal monitor and its monitoring method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103259695B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105208352B (en) * | 2015-10-16 | 2018-07-31 | 杭州中威电子股份有限公司 | A kind of network video safety monitoring system and physical isolation method |
| CN108063747A (en) * | 2016-11-09 | 2018-05-22 | 北京君正集成电路股份有限公司 | Wireless data processing method and apparatus |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101179461A (en) * | 2007-09-14 | 2008-05-14 | 东南大学 | Wireless LAN access device for remote content monitoring |
| CN101282244A (en) * | 2008-05-09 | 2008-10-08 | 浙江大学 | Method for detecting instruction based on SPM |
| CN101588275A (en) * | 2008-12-25 | 2009-11-25 | 深圳市宇沃德信息技术有限公司 | Method for information monitoring of network application layer |
| CN202503533U (en) * | 2012-03-13 | 2012-10-24 | 杭州领优信息科技有限公司 | Network monitoring device based on WLAN (wireless local area network) technology |
-
2013
- 2013-04-16 CN CN201310131193.XA patent/CN103259695B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101179461A (en) * | 2007-09-14 | 2008-05-14 | 东南大学 | Wireless LAN access device for remote content monitoring |
| CN101282244A (en) * | 2008-05-09 | 2008-10-08 | 浙江大学 | Method for detecting instruction based on SPM |
| CN101588275A (en) * | 2008-12-25 | 2009-11-25 | 深圳市宇沃德信息技术有限公司 | Method for information monitoring of network application layer |
| CN202503533U (en) * | 2012-03-13 | 2012-10-24 | 杭州领优信息科技有限公司 | Network monitoring device based on WLAN (wireless local area network) technology |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103259695A (en) | 2013-08-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106355873B (en) | Internet of things intelligent traffic gateway and system thereof | |
| US9307555B2 (en) | Method and system for mobile terminal to access the network through cell phone | |
| CN104869043B (en) | A kind of method and terminal for establishing VPN connection | |
| Malik et al. | Literature review on home automation system | |
| CN103763125A (en) | Statistical method and device for number of actual users in operator network | |
| CN103259695B (en) | Portable internet terminal monitor and its monitoring method | |
| WO2017185653A1 (en) | Method and apparatus for resolving co-frequency interference | |
| CN103095850B (en) | Method and system for sharing network by mobile terminal through computer | |
| CN204595460U (en) | Based on the intelligent domestic system of WIFI | |
| CN104852951A (en) | Grain depot safety monitoring system work flow | |
| CN206100019U (en) | Intelligence house node management system | |
| CN202918312U (en) | Medical equipment intelligent cloud management and maintenance system | |
| CN106940927A (en) | A kind of domestic air conditioning long-distance intelligent networked control systems | |
| CN110045705A (en) | Using the intelligent home furnishing control method of heterogeneous wireless network, apparatus and system | |
| CN204465579U (en) | A kind of Intelligent wireless router | |
| CN204272389U (en) | A kind of based on the cancellated intelligent domestic system of ZigBee | |
| CN106375271A (en) | network application service device and operation method thereof | |
| CN203243345U (en) | Portable internet terminal monitor | |
| CN106686697B (en) | The method of zigbee terminal device node administration | |
| CN109842551A (en) | A kind of intelligent networking gateway based on IPv6 | |
| CN102209235A (en) | Monitoring method and monitoring terminal | |
| CN104125605A (en) | Implementing method and device for request of building WIFI connection | |
| CN204291019U (en) | A kind of full Wireless office system | |
| CN202696646U (en) | Router capable of storing on-line behavior data | |
| CN102014123A (en) | Mobile terminal-based page monitoring method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C53 | Correction of patent for invention or patent application | ||
| CB03 | Change of inventor or designer information |
Inventor after: Li Jun Inventor after: Zhang Qingsheng Inventor before: Li Jun Inventor before: Cao Lixin |
|
| COR | Change of bibliographic data |
Free format text: CORRECT: INVENTOR; FROM: LI JUN CAO LIXIN TO: LI JUN ZHANG QINGSHENG |
|
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20181015 Address after: Room 01, 02, 03, 1902, No. 246, 248, 250 Wushan Road, Tianhe District, Guangzhou City, Guangdong Province Applicant after: Guangdong Heng electrical information Polytron Technologies Inc Address before: 510600 Zhongshan Avenue, Guangzhou, Guangdong 293 Applicant before: Li Jun |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |