CN103368793A - Method for achieving network inspection by identifying network overall attribute - Google Patents
Method for achieving network inspection by identifying network overall attribute Download PDFInfo
- Publication number
- CN103368793A CN103368793A CN2013103031558A CN201310303155A CN103368793A CN 103368793 A CN103368793 A CN 103368793A CN 2013103031558 A CN2013103031558 A CN 2013103031558A CN 201310303155 A CN201310303155 A CN 201310303155A CN 103368793 A CN103368793 A CN 103368793A
- Authority
- CN
- China
- Prior art keywords
- network
- attribute
- inspection
- overall
- check
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention relates to a method for achieving network inspection by identifying the network overall attribute. The method includes the following steps that (1) a data form of the network overall attribute is established according to information of network devices; (2) the overall attribute and the state of a network are filled in the form of the network overall attribute; (3) whether relevant attributes of the whole network conform to set inspection rules or not is inspected; (4) relevant inspection result reports are generated. The method for achieving network inspection by identifying the network overall attribute has the advantages that a brand new network overall attribute conception is adopted, and extracted massive and chaotic information of the network devices is tidily and uniformly identified to standardized network overall attribute information which can be measured, compared, judged and identified. The method is superior to the network inspection method that only a network stand-alone can be simply inspected, and achieves overall inspection on the overall state, the overall attribute and the overall matching attribute of the network from the macroscopic perspective. The method for achieving network inspection by identifying the network overall attribute is particularly suitable for inspecting and troubleshooting medium and large networks.
Description
Technical field
The present invention relates to the network security technology field, be specifically related to a kind of method that realizes Network Check by the marked network integrity attribute.
Background technology
Existing network is being checked, or upgrading existing network, perhaps test in the New Deal project, all need reliability and the validity of network are assessed objectively, to reduce the investment risk of networking, make planned network that very high performance be arranged, perhaps make test result can truly reflect the performance of New Deal.Legacy network design and planing method are mainly by experience, and to the catenet of complexity, the incessantly main points of design are grabbed owing to predicting in a lot of places.Therefore more and more need a kind of new Network Check and audit means.
The automatic inspection of network equipments configuration is faced with again a large amount of technical barriers, automatic decision from the configuration of the equipment that automatically recognizes of equipment, check and automatically generation report of later stage, all there are more technological difficulties, especially whether automatically from the facility information of magnanimity, differentiating safety, whether close rule, whether meet technical need.In addition, how can not merely only check an equipment, but check the attribute of network integral body, check whether the every attribute between InterWorking Equipment mates, then become impact and check important technology ability accuracy and comprehensive.The present networks inspection method has created and has a kind ofly identified by the attribute of phase-split network facility information to network integral body, and then carries out the method for compliance, matching, compliance check, solves the industry difficult problem that automation checks.
The network equipment comprises the hardware unit that all consist of network principal and are used for network connection, and the non-material object of guarantee network-in-dialing, the object that exists in logic comprises: the various terminal equipments such as PC terminal, private server, printer, portable terminal; Router, switch, fire compartment wall, the independent networking isolated plants such as physical function module of pegging graft; The physical circuit that needs in the networking or logic connect, such as network cable, wireless connections; Non-entity target in logic, as " local area network (LAN) " this pseudo-entity itself of being formed by each network connection device or " cloud " (pseudo-entity " cloud " is suitable for various application occasions, as: backbone network that is provided by operator etc.).
Summary of the invention
But the purpose of this invention is to provide a kind of automation with operability and implement the method for passing through marked network integrity attribute realization Network Check that the network equipment checks, the above-mentioned shortcoming that exists to overcome present prior art.
The objective of the invention is to be achieved through the following technical solutions:
A kind of method by marked network integrity attribute realization Network Check may further comprise the steps:
1) creates the data form of network integrity attribute according to network equipment information;
2) attribute and the state of network integral body are inserted in the described network integrity attribute list;
3) check whether the association attributes of whole network meets the inspection rule of setting;
4) generate the coherence check report the test.
Further, in the step 1), described data form is for the information that gives, and analyzes the number of devices that comprises in the information, and an attribute database of the whole network correspondence establishment that forms for all devices;
Further, step 2) in, the data form of the corresponding attribute of whole network set up complete after, dissecting needle is to the relevant information of whole network; Wherein, with further corresponding one or more of this network integrity attribute or state of being converted into of described relevant information.
Further, in the step 3), according to filling complete device attribute, attribute and the state of whole network checked, and the attribute of whole network is examined one by one.
Further, in the step 4), in checking process, do not arrange out one by one meeting the clauses and subclauses that preset rule, generate report.
Beneficial effect of the present invention is: the present invention adopts brand-new network integrity attribute concept, so that the information of the confusing network equipment of the magnanimity of extracting, by neat, unified be designated measurable, can compare, can judge, discernible normalized network integrity attribute information.This method has surmounted the Network Check means that can only simply check the network unit, realizes from macroscopic perspective, and state, attribute, the matching of network integral body had a comprehensive method of inspection.This method is specially adapted to inspection and the misarrangement of big-and-middle-sized network simultaneously.
Description of drawings
The below is described in further detail the present invention with reference to the accompanying drawings.
Fig. 1 is the flow chart of realizing the method for Network Check by the marked network integrity attribute of the present invention.
Embodiment
As shown in Figure 1, the described method by marked network integrity attribute realization Network Check of present embodiment comprises the steps:
1) creates a Network Check project, and read network equipment information.Implementor name in system's automatic fitration information, it is an equipment that the implementor name that occurs is all regarded as, and prepares to be used for filling the various attributes (each equipment is a table) of this equipment for a data list corresponding to each equipment establishment.Create simultaneously an independent list and be used for the whole association attributes of marked network.
For example: comprise 8 equipment (each own different device name) in the network equipment information that gives, except 8 equipment for this reason create 8 corresponding data lists, create simultaneously a data list, for attribute and the state of the integral body that identifies the network that is formed by these 8 network equipments.And one of attribute that these 8 equipment also are this network integral body in fact to have (this network comprises the number of devices attribute: 8);
2) scanning information file again, with network whole relevant state and attribute, correspondence is filled in the attribute or state list of network integral body.Comprise some attributes and state that network integral body should have in the database of each overall network, in scanning process, in case find the sign of these attributes or state, namely in database, do corresponding mark.
For example: this network integral body has been used the OSPF Routing Protocol, and comprise 3 ospf areas, do not use MD5 effect etc., the information that these are decomposed out between the ospf router, all be can be regarded as a certain or multiple attribute of this whole network, be identified at respectively in the network integrity attribute.
3) attribute of network integral body and state all analyze complete after.Beginning is stored in the inspection rule in the rule database according to ready, checks whether the association attributes of network integral body meets rule; To verify existing network integrity attribute and state one by one the requirement of network integrity attribute or state each bar in the rule base in the checking process.
For example: the zone of the OSPF of Cisco should be continuous, and All Ranges all links to each other with area0.As individual areas occurs and do not link area0, then the OSPF Routing Area setting of this network has comprised at least one mistake.
4) all underproof projects in the previous step inspection are listed in the report.
In this patent, the network equipment refers in particular to all hardware units that consist of network principal and be used for network connection, and ensures the object non-material object, that exist in logic of network-in-dialing, comprising:
1, the various terminal equipments such as PC terminal, private server, printer, portable terminal;
2, router, switch, fire compartment wall and the independent networking isolated plants such as physical function module of pegging graft;
3, the physical circuit that needs in the networking or logic connect, such as network cable, wireless connections;
4, in logic non-entity target, as " local area network (LAN) " this pseudo-entity itself of being formed by each network connection device or " cloud " (pseudo-entity " cloud " is suitable for various application occasions, as: backbone network that is provided by operator etc.).
The present invention is not limited to above-mentioned preferred forms; anyone can draw other various forms of products under enlightenment of the present invention; no matter but do any variation in its shape or structure; every have identical with a application or akin technical scheme, all drops within protection scope of the present invention.
Claims (4)
1. the method by marked network integrity attribute realization Network Check is characterized in that, may further comprise the steps:
1) creates the data form of network integrity attribute according to network equipment information;
2) attribute and the state of network integral body are inserted in the described network integrity attribute list;
3) check whether the association attributes of whole network meets the inspection rule of setting;
4) generate the coherence check report the test.
2. the method that realizes Network Check by the marked network integrity attribute according to claim 1, it is characterized in that: in the step 1), described data form is for the information that gives, analyze the number of devices that comprises in the information, and an attribute database of the whole network correspondence establishment that forms for all devices;
The method that realizes Network Check by the marked network integrity attribute according to claim 2, it is characterized in that: step 2) in, the data form of the corresponding attribute of whole network set up complete after, dissecting needle is to the relevant information of whole network, with further corresponding one or more of network integrity attribute or state of being converted into of described relevant information.
3. the method that realizes Network Check by the marked network integrity attribute according to claim 3, it is characterized in that: in the step 3), according to filling complete device attribute, attribute and the state of whole network checked, and the attribute of whole network is examined one by one.
4. the method by marked network integrity attribute realization Network Check according to claim 4 is characterized in that: in the step 4), do not arrange out one by one meeting the clauses and subclauses that preset rule in checking process, generate report.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310303155.8A CN103368793B (en) | 2013-07-18 | 2013-07-18 | A kind of method for realizing Network Check by identifying network integrity attribute |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310303155.8A CN103368793B (en) | 2013-07-18 | 2013-07-18 | A kind of method for realizing Network Check by identifying network integrity attribute |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103368793A true CN103368793A (en) | 2013-10-23 |
| CN103368793B CN103368793B (en) | 2018-04-17 |
Family
ID=49369377
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310303155.8A Expired - Fee Related CN103368793B (en) | 2013-07-18 | 2013-07-18 | A kind of method for realizing Network Check by identifying network integrity attribute |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103368793B (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105024867A (en) * | 2014-04-15 | 2015-11-04 | 吴峥 | Network equipment state detection method and apparatus |
| CN109102407A (en) * | 2018-08-10 | 2018-12-28 | 中募网络科技(北京)股份有限公司 | A kind of Si Mu company closes rule and checks and monitoring method and system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1742256A (en) * | 2003-01-24 | 2006-03-01 | 松下电器产业株式会社 | Dynamic CC/PP-based profile generation framework for network conditions assessment |
| CN1862267A (en) * | 2005-09-19 | 2006-11-15 | 华为技术有限公司 | Method for checking circuit schematic diagram |
| CN102123048A (en) * | 2011-02-14 | 2011-07-13 | 浪潮通信信息系统有限公司 | Processing method for automatically discovering disaster-tolerant relationships of telecommunication equipment |
-
2013
- 2013-07-18 CN CN201310303155.8A patent/CN103368793B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1742256A (en) * | 2003-01-24 | 2006-03-01 | 松下电器产业株式会社 | Dynamic CC/PP-based profile generation framework for network conditions assessment |
| CN1862267A (en) * | 2005-09-19 | 2006-11-15 | 华为技术有限公司 | Method for checking circuit schematic diagram |
| CN102123048A (en) * | 2011-02-14 | 2011-07-13 | 浪潮通信信息系统有限公司 | Processing method for automatically discovering disaster-tolerant relationships of telecommunication equipment |
Non-Patent Citations (1)
| Title |
|---|
| 公安部信息安全等级保护评估中心: "网络设备配置安全检查的难点与自动化工具的实际应用", 《信息网络安全》 * |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105024867A (en) * | 2014-04-15 | 2015-11-04 | 吴峥 | Network equipment state detection method and apparatus |
| CN109102407A (en) * | 2018-08-10 | 2018-12-28 | 中募网络科技(北京)股份有限公司 | A kind of Si Mu company closes rule and checks and monitoring method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103368793B (en) | 2018-04-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105242164B (en) | A kind of automatic checkout system and its method in intelligent substation secondary void loop | |
| CN103412520B (en) | Various energy resources centralized monitoring system and monitoring method thereof | |
| CN103941240B (en) | A kind of detection method of the extension set detecting device that communicates based on radar system | |
| CN104993964B (en) | Rule check method is closed in a kind of PTN L3 network datas configuration based on canonical algorithm | |
| CN106953749A (en) | A kind of transformer station process layer network method of real-time | |
| CN106383958B (en) | A kind of substation's anti-misoperation locking logic and intelligent Acceptance Test System | |
| CN104483842A (en) | Regulation and control integrated automatic master station comparison method | |
| CN108092854A (en) | The test method and device of train grade ethernet device based on IEC61375 agreements | |
| CN104052633A (en) | Integrated testing method for intelligent station 61850 and telecontrol 104 protocol | |
| WO2015149596A1 (en) | Iec61850-based communication simulation method for leakage current on-line monitoring device | |
| WO2015149595A1 (en) | Iec61850-based communication simulation method for insulation on-line monitoring device | |
| CN108357998A (en) | Elevator Fault Diagnosis method, apparatus, system and storage medium | |
| CN108712433A (en) | A kind of network security detection method and system | |
| WO2019109619A1 (en) | Full-automatic closed-loop detection method and apparatus for intelligent substation | |
| CN104166890A (en) | Method for monitoring a process and/or production plant | |
| CN106951556A (en) | The consistency desired result method and system of power distribution network artwork under offline environment | |
| CN107543986A (en) | A kind of relay protection test system based on mobile platform | |
| CN109409711A (en) | A kind of intelligent substation configuration file intelligent checking and aid decision-making system and method | |
| CN104486151A (en) | Method and device for carrying out production testing on access terminal product | |
| CN115615732A (en) | Quality detector abnormal state monitoring method and system | |
| CN103368793A (en) | Method for achieving network inspection by identifying network overall attribute | |
| CN105071991B (en) | The test method of the IP connectivity of multiple fire walls | |
| CN103368779A (en) | Method for inspecting network attribute collection | |
| KR102051580B1 (en) | Integrated clinical trial apparatus based on cdisc | |
| CN106919748B (en) | Device and method for improving FPGA prototype verification efficiency |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| ASS | Succession or assignment of patent right |
Owner name: ZHAN WEI Effective date: 20140423 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20140423 Address after: 100086, 44 floor, Zhongguancun Aviation Science Park, No. 43 West Third Ring Road, Beijing, Haidian District Applicant after: Beijing Suifang Information Technology Co., Ltd. Applicant after: Zhan Wei Address before: 100086, 44 floor, Zhongguancun Aviation Science Park, No. 43 West Third Ring Road, Beijing, Haidian District Applicant before: Beijing Suifang Information Technology Co., Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20180417 Termination date: 20210718 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |