CN103986600B - One kind is found automatically based on multi-protocols business network and filter method, system - Google Patents

One kind is found automatically based on multi-protocols business network and filter method, system Download PDF

Info

Publication number
CN103986600B
CN103986600B CN201410203594.6A CN201410203594A CN103986600B CN 103986600 B CN103986600 B CN 103986600B CN 201410203594 A CN201410203594 A CN 201410203594A CN 103986600 B CN103986600 B CN 103986600B
Authority
CN
China
Prior art keywords
resource
network
network equipment
information
address
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410203594.6A
Other languages
Chinese (zh)
Other versions
CN103986600A (en
Inventor
胡文莉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Upper Marine Infotech Share Co Ltd Of Interrogating
Original Assignee
Upper Marine Infotech Share Co Ltd Of Interrogating
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Upper Marine Infotech Share Co Ltd Of Interrogating filed Critical Upper Marine Infotech Share Co Ltd Of Interrogating
Priority to CN201410203594.6A priority Critical patent/CN103986600B/en
Publication of CN103986600A publication Critical patent/CN103986600A/en
Application granted granted Critical
Publication of CN103986600B publication Critical patent/CN103986600B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)
  • Computer And Data Communications (AREA)

Abstract

The present invention is suitable for network resource management, provides one kind and is found automatically and filter method, system based on multi-protocols business network.This method comprises: establishing resource information station, the essential attribute of each resource is listed, is the unique keyword value of every resource distribution at resource information station;The description information of network apparatus in networks is obtained by snmp protocol, and description information is matched with the resource information at resource information station to obtain the essential attribute of the network equipment;The description information of network apparatus in networks is obtained by netbios protocol, and description information is matched with the resource information at resource information station to obtain the essential attribute of the network equipment;Duplicate removal processing is filtered to the network equipment.The present invention, which can solve the network equipment, cannot maximize discovery and the information-based unintelligible problem of classification, and knownization of part unknownization equipment is made using multi-protocols.

Description

One kind is found automatically based on multi-protocols business network and filter method, system
Technical field
The present invention relates to network resource managements, more particularly to a kind of multi-protocols business network that is based on to find and filter automatically Method, system.
Background technique
More and more huger as network becomes increasingly complex, the network equipment increasingly diversification, traditional network discovery cannot It maximizes discovery and is not easy to management and non-SNMP (Simple Network Management Protocol, simple network management Agreement) equipment need personnel to be managed by hand so that partial network devices are in the unknownization stage, while traditional net Network discovery judges the essential information of equipment by acquisition network equipment much information, sorts out complicated unintelligible.In summary, existing There is technology in actual use and there will naturally be inconvenient and defect, so it is necessary to be improved.
Summary of the invention
For above-mentioned defect, the purpose of the present invention is to provide one kind based on multi-protocols business network find automatically with Filter method, system, can solve the network equipment cannot maximize discovery and the information-based unintelligible problem of classification, be made using multi-protocols Knownization of part unknownization equipment.
To achieve the goals above, the present invention provides a kind of find automatically based on multi-protocols business network and filtering side Method, which comprises
Resource information station is established, the essential attribute of each resource is listed, is every resource distribution at the resource information station Unique keyword value;
The description information of network apparatus in networks is obtained by snmp protocol, and by the description information and resource information station Resource information matched;
The description information of network apparatus in networks is obtained by netbios protocol, and the description information and resource are believed The resource information at breath station is matched;
Duplicate removal processing is filtered to the network equipment.
According to the method for the present invention, the step of " essential attribute for listing each resource " includes: the class for listing each resource Not, manufacturer, purposes and series.
According to the method for the present invention, the step " for the unique keyword value of every resource distribution at the resource information station " In rapid, the keyword value is derived from the unique key value of network equipment description information, generic resource can be set more A keyword value is split between multiple keyword values by branch.
According to the method for the present invention, the step of " description information being matched with the resource information at resource information station " In, the description information need to include the keyword value of resource, as long as first it is exact matching that a plurality of keyword value, which matches it,.
According to the method for the present invention, the step of " being filtered duplicate removal processing to the network equipment " include:
Judge whether network appliance IP address is existing;
And if so, the essential attribute of the network equipment of two identical IP address is matched, if two networks are set It is standby identical, remove repetition;
If existed without identical IP address, by by the MAC Address of the network equipment with it has been found that the network equipment MAC Address is matched, and if the same removal repeats.
The present invention accordingly provide it is a kind of found automatically based on multi-protocols business network and filtration system, the system packet It includes:
Module is established at resource information station, for establishing resource information station, is listed the essential attribute of each resource, is the money The unique keyword value of every resource distribution at source information station;
First network equipment discovery module, for obtaining the description information of network apparatus in networks by snmp protocol, and The description information is matched with the resource information at resource information station;
Second network equipment discovery module obtains the description information of network apparatus in networks by netbios protocol, and will The description information is matched with the resource information at resource information station;
Filter, for being filtered duplicate removal processing to the network equipment.
Classification, manufacturer, the purposes that module is also used to list each resource are established in the system according to the present invention, resource information station And series.
The system according to the present invention, the keyword value is derived from the unique key value of network equipment description information, for same Multiple keyword values can be set in the resource of classification, are split between multiple keyword values by branch.
The system according to the present invention, the description information need to include the keyword value of resource, a plurality of keyword value It is first exact matching with it.
The system according to the present invention, the filter include:
Judgment module judges whether network appliance IP address is existing;
Essential attribute matching module, for there are when the network equipment of two identical IP address that two IP address are identical The essential attribute of the network equipment is matched, and removes repetition if two network equipments are identical;
MAC Address matching module, in the presence of no identical IP address, by by the MAC Address of the network equipment It is matched with the MAC Address for the network equipment having found, if the same removal repeats.
The present invention lists the essential attribute of each resource, is every money at resource information station by establishing resource information station Source configures unique keyword value, and then snmp protocol and netbios protocol obtain the description information of network apparatus in networks, And match the description information with the resource information at resource information station, finally the network equipment of discovery is filtered It handles again.The present invention carries out network equipment discovery and filtering using snmp protocol combination NetBIOS agreement, can solve network and sets It is standby to maximize discovery and the information-based unintelligible problem of classification, knownization of part unknownization equipment is made using multi-protocols.
Detailed description of the invention
Fig. 1 is that the present invention is a kind of to be found and the frame diagram of filtration system automatically based on multi-protocols business network;
Fig. 2 is the flow chart for being found and being filtered based on the customized IP network section of user in an embodiment of the present invention;
Fig. 3 is the flow chart being filtered in an embodiment of the present invention;
Fig. 4 is that the present invention is a kind of to be found and the flow chart of filter method automatically based on multi-protocols business network.
Specific embodiment
In order to make the objectives, technical solutions, and advantages of the present invention clearer, with reference to the accompanying drawings and embodiments, right The present invention is further elaborated.It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, and It is not used in the restriction present invention.
It is found automatically and filtration system 100, including money as shown in Figure 1, the present invention is a kind of based on multi-protocols business network Module 10, first network equipment discovery module 20, the second network equipment discovery module 30 and filter 40 are established in source information station.
Module 10 is established at resource information station, is the every of resource information station for establishing the essential attribute for listing each resource Resource distribution unique keyword (keyword) value.Specifically, module is established at resource information station is also used to list each resource Classification, manufacturer, purposes and series etc..Resource refers to all network relevant devices, including router, interchanger, fire prevention Wall, host, printer etc..Wherein classification may include the network equipment, host system, using, it is customized etc.;Purposes may include exchange Device, router etc..For the unique keyword value of every resource distribution of station resource, keyword value is derived from network equipment description letter The unique key value of breath, Keyword are the special abstract of sub-fraction of description information.Generic resource can be set Multiple keyword values;It is split between multiple keyword values by branch.Keyword is to make a summary in network equipment description Information, such as description information are as follows:
“H3C Comware Platform Software
Comware Software Version5.20,Release2603P06
H3C Service Router SR6604
Copyright(c)2004-2011Hangzhou H3C Technologies Co.,Ltd.“
Then keyword may be configured as H3C SR6604.
First network equipment discovery module 20, for obtaining the description information of network apparatus in networks by snmp protocol, And description information is matched with the resource information at resource information station to obtain the essential attribute of the network equipment.Description information is only It is the description of equipment, essential information, the title including equipment, manufacturer, series etc..Matching principle are as follows: description information need to include money The keyword value in source, first it is exact matching that a plurality of keyword value, which only matches it,.Then available network is set after matching completely Standby essential information.Such as description information are as follows:
“Huawei Versatile Routing Platform Software
VRP(R)software,Version5.90(NE20E V600R003C00SPCa00)
Copyright(C)2000-2012Huawei Technologies Co.,Ltd.
NE20E-X6 "and" STRING:Huawei Versatile Routing Platform Software
VRP(R)software,Version5.90(NE20E V600R003C00SPCa00)
Copyright(C)2000-2012Huawei Technologies Co.,Ltd.
NE40E“
Two description informations belong to the router of NE series, and keyword may be configured as Huawei NE40E at this time, Huawei NE20E, first description information only needs to be matched to keyword Huawei NE20E, even if then successful match.
Second network equipment discovery module 30 obtains the description information of network apparatus in networks by netbios protocol, and Description information is matched with the resource information at resource information station.Specifically non-configuration snmp protocol equipment can be passed through Netbios protocol carries out supplement discovery, and Hostname, MAC (the Media Access of equipment are got by netbios protocol Control, media access control) address, CDP (Cisco Discovery Protocol, CISCO discovery protocol) and FDB Relevant informations such as (Forwarding Database, forwarding databases) are converted into non-configuration SNMP equipment by unknownization known Change.NetBIOS can only get the individual information of equipment, can not get description information, not needed to supplement and use Keyword value is carried out to be matched.
Filter 40, for being filtered duplicate removal processing to the network equipment.Filter 40 includes:
Judgment module judges whether network appliance IP address is existing.
Essential attribute matching module, for there are when the network equipment of two identical IP address that two addresses IP are identical The essential attribute of the network equipment matched, repetition is removed if two network equipments are identical, if not identical person will be new It was found that the corresponding network equipment of the IP address record to information resources station.
MAC Address matching module, in the presence of no identical IP address, by by the MAC Address of the network equipment It is matched with the MAC Address for the network equipment having found, if the same removal repeats, if not identical by the MAC The corresponding network equipment in location is recorded to information resources station.
Fig. 2 is the flow chart for being found and being filtered based on the customized IP network section of user in an embodiment of the present invention.? User is firstly the need of customized network segment information before it was found that, and network discovery device traverses each IP address in network segment, first The IP address being not present by PING operation filtering reduces time-out when SNMP obtains data and causes lag behavior.Detailed reality It is existing that steps are as follows:
Step S201 obtains IP address.
Step S202, judging the IP address, whether PING is logical, if then entering step S203, otherwise returns to step S202.
Step S203, judging whether can be by the description information of SNMP acquisition of information to IP address, if then entering step Otherwise S204 enters step S205.
Step S204, judges whether description information matches with the keyword value at information resources station, if then entering step Otherwise S206 enters step S205.Such as getting the description information of IP address is DESC, if DESC exists, and Keyword is matched, if there is no then using netbios protocol progress essential information acquisition.Assuming that keyword information is (Cisco C2600, Cisco C1841), is split with comma, if DESC includes Cisco and includes C2600, is matched Success, then the essential information of the equipment is the network equipment, and manufacturer is Cisco, and series is C2600, and function is router.
Step S205 is obtained the equipment essential information of IP address by netbios protocol, enters step S206 after the completion.
Step S206 carries out equipment filtering.
Fig. 3 is the flow chart being filtered in an embodiment of the present invention.
Step S301 has found the network equipment.
Step S302 loads known network device.
Step S303 judges that the IP address whether there is, if then entering step S304, otherwise enters step S305.
Step S304, judge the IP address the network equipment whether with the network equipment of identical IP address in Internet resources station Essential information matching, if then returning to step S301, otherwise enter step S306.
Step S305 judges that the MAC Address of the network equipment of the IP address whether there is, if then returning to step S301, Otherwise S306 is entered step.
Step S306 records the network equipment to information resources station.
Fig. 4 is that the present invention is a kind of to be found and the flow chart of filter method, this method automatically based on multi-protocols business network Realize that this method comprises the following steps by system as shown in Figure 1:
Step S401 establishes resource information station, lists the essential attribute of each resource, is every resource at resource information station Configure unique keyword value.Specifically, the step of " essential attribute for listing each resource " includes: to list each resource Classification, manufacturer, purposes and series.Keyword value is derived from the unique key value of network equipment description information, for generic Multiple keyword values can be set in resource, are split between multiple keyword values by branch.
Step S402 obtains the description information of network apparatus in networks by snmp protocol, and by description information and resource The resource information of information station is matched to obtain the essential attribute of the network equipment." by the money of description information and resource information station Source information is matched to obtain the essential attribute of the network equipment " the step of in, description information need to include resource keyword Value, a plurality of keyword value only with first to match it be exact matching.
Step S403 is obtained the description information of network apparatus in networks by netbios protocol, and by description information and provided The resource information at source information station is matched to obtain the essential attribute of the network equipment." by description information and resource information station Resource information is matched to obtain the essential attribute of the network equipment " the step of in, description information need to include resource keyword Value, as long as first it is exact matching that a plurality of keyword value, which matches it,.
Step S404 is filtered duplicate removal processing to the network equipment.
Preferably step S404 further include: judge whether network appliance IP address is existing;And if so, by two The essential attribute of the network equipment of identical IP address is matched, and removes repetition if two network equipments are identical;If not yet With the presence of identical IP address, by by the MAC Address of the network equipment with it has been found that the MAC Address of the network equipment carry out Match, if the same removal repeats.
In conclusion the present invention lists the essential attribute of each resource, is resource information station by establishing resource information station The unique keyword value of every resource distribution, then snmp protocol and netbios protocol obtain retouching for network apparatus in networks State information, and the description information matched with the resource information at resource information station, finally to the network equipment of discovery into Row filtering duplicate removal processing.The present invention carries out network equipment discovery and filtering using snmp protocol combination netbios protocol, can solve The network equipment cannot maximize discovery and the information-based unintelligible problem of classification, be made known to the unknownization equipment of part using multi-protocols Change.
Certainly, the present invention can also have other various embodiments, without deviating from the spirit and substance of the present invention, ripe It knows those skilled in the art and makes various corresponding changes and modifications, but these corresponding changes and change in accordance with the present invention Shape all should fall within the scope of protection of the appended claims of the present invention.

Claims (2)

1. one kind is found automatically based on multi-protocols business network and filter method, which is characterized in that the described method includes:
Establish resource information station, the essential attribute for listing each resource include: list the classification of each resource, manufacturer, purposes with And series,
For the unique keyword value of every resource distribution at the resource information station, wherein the keyword value is derived from network Multiple keyword values, multiple keyword values can be set for generic resource in the unique key value of device descriptive information Between be split by branch;
The description information of network apparatus in networks is obtained by snmp protocol, and by the money of the description information and resource information station Source information is matched to obtain the essential attribute of the network equipment;Wherein, the description information need to include the keyword of resource Value, as long as first it is exact matching that a plurality of keyword value, which matches it,;
The description information of network apparatus in networks is obtained by netbios protocol, and by the description information and resource information station Resource information matched to obtain the essential attribute of the network equipment;
Duplicate removal processing is filtered to the network equipment, comprising: judge whether network appliance IP address is existing,
If it is present the essential attribute of the network equipment of two identical IP address is matched, if two network equipments It is identical, remove repetition;
If existed without identical IP address, by by the MAC of the MAC Address of the network equipment and the network equipment having found Location is matched, and if the same removal repeats.
2. one kind is found automatically based on multi-protocols business network and filtration system, which is characterized in that the system comprises:
Module is established at resource information station, for establishing resource information station, the essential attribute for listing each resource include: list it is each Classification, manufacturer, purposes and the series of resource are the unique keyword value of every resource distribution at the resource information station, In, the keyword value is derived from the unique key value of network equipment description information, generic resource can be set multiple Keyword value is split between multiple keyword values by branch;
First network equipment discovery module, for obtaining the description information of network apparatus in networks by snmp protocol, and by institute Description information is stated to be matched with the resource information at resource information station to obtain the essential attribute of the network equipment;Wherein, described to retouch The keyword value that information need to include resource is stated, first it is exact matching that a plurality of keyword value, which only matches it,;
Second network equipment discovery module obtains the description information of network apparatus in networks by netbios protocol, and will be described Description information is matched with the resource information at resource information station to obtain the essential attribute of the network equipment;Filter, for pair The network equipment is filtered duplicate removal processing, wherein the filter includes: judgment module, whether judges network appliance IP address It is existing;
Essential attribute matching module, for there are when the network equipment of two identical IP address by the identical network of two IP address The essential attribute of equipment is matched, and removes repetition if two network equipments are identical;
MAC Address matching module is used in the presence of no identical IP address, by by the MAC Address of the network equipment and It was found that the MAC Address of the network equipment matched, if the same removal repeats.
CN201410203594.6A 2014-05-14 2014-05-14 One kind is found automatically based on multi-protocols business network and filter method, system Active CN103986600B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410203594.6A CN103986600B (en) 2014-05-14 2014-05-14 One kind is found automatically based on multi-protocols business network and filter method, system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410203594.6A CN103986600B (en) 2014-05-14 2014-05-14 One kind is found automatically based on multi-protocols business network and filter method, system

Publications (2)

Publication Number Publication Date
CN103986600A CN103986600A (en) 2014-08-13
CN103986600B true CN103986600B (en) 2018-12-04

Family

ID=51278427

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410203594.6A Active CN103986600B (en) 2014-05-14 2014-05-14 One kind is found automatically based on multi-protocols business network and filter method, system

Country Status (1)

Country Link
CN (1) CN103986600B (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104618375B (en) * 2015-01-30 2018-09-28 普联技术有限公司 A kind of discovery method and device of the network equipment
CN105138546B (en) * 2015-07-10 2018-11-06 国家电网公司 IMS information equipment accounts based on Dom4J disappear weighing method
CN108737145A (en) * 2017-04-24 2018-11-02 中兴通讯股份有限公司 A kind of matched method and device of system resource application

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6131117A (en) * 1997-12-29 2000-10-10 Cisco Technology, Inc. Technique for correlating logical names with IP addresses on internetworking platforms
CN102088377A (en) * 2011-01-04 2011-06-08 深圳市易聆科信息技术有限公司 Man-machine correspondence method and device for assets management
CN102118271A (en) * 2011-03-29 2011-07-06 上海北塔软件股份有限公司 Method for discovering illegally-accessed equipment

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6131117A (en) * 1997-12-29 2000-10-10 Cisco Technology, Inc. Technique for correlating logical names with IP addresses on internetworking platforms
CN102088377A (en) * 2011-01-04 2011-06-08 深圳市易聆科信息技术有限公司 Man-machine correspondence method and device for assets management
CN102118271A (en) * 2011-03-29 2011-07-06 上海北塔软件股份有限公司 Method for discovering illegally-accessed equipment

Also Published As

Publication number Publication date
CN103986600A (en) 2014-08-13

Similar Documents

Publication Publication Date Title
US10595215B2 (en) Reducing redundant operations performed by members of a cooperative security fabric
CN102882758B (en) Method, network side equipment and the data center apparatus of virtual private cloud access network
US7463593B2 (en) Network host isolation tool
CN108055207A (en) A kind of network topology cognitive method and device
CN103491095A (en) Flow cleaning framework and device and flow lead and reinjection method
CN109257225B (en) Method, device, storage medium and processor for generating network topology
JP2004328732A (en) Method and apparatus for determining shared broadcast domain of network switch, port and interface
CN107800668B (en) Distributed denial of service attack defense method, device and system
CN107222462A (en) A kind of LAN internals attack being automatically positioned of source, partition method
CN109714206A (en) Electric power monitoring system Generating Network Topology Map, network bus topological diagram
CN104579978B (en) A kind of dynamic network Datalink Layer Topology Discovery method
CN103986600B (en) One kind is found automatically based on multi-protocols business network and filter method, system
CN105099921A (en) User-based rapid business processing method and device
CN101631060B (en) Method and device for managing edge port
CN106067906B (en) A kind of method and monitoring device of reconnect
CN107888711B (en) Cross-network-segment equipment searching and communication method
CN104219100A (en) Information acquiring method and device
CN103200107B (en) Message transmitting method and message transmitting equipment
CN107483341A (en) A kind of across fire wall packet fast forwarding method and device
Wijesinghe et al. Botnet detection using software defined networking
CN107094187A (en) A kind of method of the access switch port of automatic lookup MAC Address
CN101938411B (en) Method and equipment for processing ND snooping item
US9154409B2 (en) Method for debugging private VLAN
CN103607350A (en) Method and device for generating route
CN107426100A (en) A kind of VPN user access methods and device based on user's group

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant