CN106100999A - Image network flow control protocol in a kind of virtualized network environment - Google Patents

Image network flow control protocol in a kind of virtualized network environment Download PDF

Info

Publication number
CN106100999A
CN106100999A CN201610744511.3A CN201610744511A CN106100999A CN 106100999 A CN106100999 A CN 106100999A CN 201610744511 A CN201610744511 A CN 201610744511A CN 106100999 A CN106100999 A CN 106100999A
Authority
CN
China
Prior art keywords
mirror image
stream
flow
conservancy diversion
water conservancy
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201610744511.3A
Other languages
Chinese (zh)
Other versions
CN106100999B (en
Inventor
不公告发明人
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Ruihe Yuntu Technology Co Ltd
Original Assignee
Beijing Ruihe Yuntu Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Ruihe Yuntu Technology Co Ltd filed Critical Beijing Ruihe Yuntu Technology Co Ltd
Priority to CN201610744511.3A priority Critical patent/CN106100999B/en
Publication of CN106100999A publication Critical patent/CN106100999A/en
Application granted granted Critical
Publication of CN106100999B publication Critical patent/CN106100999B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1001Protocols in which an application is distributed across nodes in the network for accessing one among a plurality of replicated servers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/54Organization of routing tables
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/12Avoiding congestion; Recovering from congestion
    • H04L47/125Avoiding congestion; Recovering from congestion by balancing the load, e.g. traffic engineering
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/35Switches specially adapted for specific applications
    • H04L49/354Switches specially adapted for specific applications for supporting virtual local area networks [VLAN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1425Traffic logging, e.g. anomaly detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1095Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

Image network flow control protocol based on software definition in a kind of virtualized network environment, it is characterized in that, this agreement can adapt to the most decoupling and the mirror image flow collection of distributed deployment, mirror image traffic distribution and the system structure of mirror image flow-control, mirror image water flow collection device node/virtual machine is deployed in the business network environment of user, its major function is the mirror image flow in capture virtualized environment, is forwarding according to the purpose specified by agreement;Mirror image traffic distribution device is deployed in non-traffic network environment, and i.e. without the concern for the offered load impact on customer service network environment normal network communications, its function is that the flow analysis equipment according to the many purposes specified by agreement carries out flow duplication and distribution;Mirror image flow master controller carries out unified control to the forwarding logic of whole image network flow, it is provided that the interface of software definition.

Description

Image network flow control protocol in a kind of virtualized network environment
Technical field
The present invention relates to field of information security technology, particularly relate to the control to image network flow in virtualized network environment Scheme processed and control protocol.
Background technology
In virtualized network environment, virtual network border be the such as VLAN of the isolation scheme by virtual machine and isolation boundary or VXLAN is constituted, and physical network border remains traditional forming based on physical network switch and network link.This allows for Virtual network border and the physical network border of one network being made up of virtual machine are inconsistent.Conventional physical safety equipment are from thing During reason network boundary (uplink port of physical switches) image network flow, just cannot obtain a complete virtual network limit Network traffics corresponding to boundary.Can directly be communicated by virtual switch between virtual machine, and flow is not forwarded to Physical Network On network link, this partial discharge also directly cannot be monitored by physical security apparatus.
In order to solve the blind zone problem of the network flow monitoring in virtual network environment, existing frequently-used technological means is By configuring virtual switch or virtual machine that utilization is arranged in virtualized environment is needing the network traffics of monitoring from virtual Change in environment and export on physical link.Wherein can solve virtual by configuring the flow export plan of virtual machine switch Between communication flows do not go out the problem cannot being captured on physical link, but yet suffer from due to virtual network border and thing The problem of the flow that cannot capture a complete virtual network border that reason network boundary is inconsistent and causes.Pass through virtual machine Traffic capture on virtual switch is derived again and more rationally and is accepted a kind of by more and more security firms Scheme.
Software defined network (Software Defined Networks, SDN) is that a kind of utilization thed propose in recent years decouples The key-course of the network hardware, forwarding and data Layer realize network traffics high flexibility forwards the new network controlled control Framework.In order to support the motility of software definition, it is impossible to completed the forwarding to certain network flow by single physical switches Control, because single one physical switch lacks the support of enough network Global Topological information, therefore at software defined network In environment, need to carry out control authority the management of centralization, with forward node to controlling node inquiry forwarding strategy, control joint Point issues the mode of forwarding strategy and performs.Software defined network is a kind of technological thought, and Openflow is the most most Representational SDN implements one of technology.
Captured the packet on virtual switch by secure virtual machine, and export to the mirror image on the network equipment specified Diversion plan, there are following problem: 1) calculate resource problem: secure virtual machine needs to be deployed in the service environment of user In, mirror image data bag could be captured from virtual switch.Certain calculating has been occupied from the derivation that captures of packet Resource (IO and interruption), if needing to carry out each packet the deep-packet detection of complexity, that will take user's industry greatly The calculating resource of business environment so that scheme is difficult to be accepted.2) Internet resources problem: in real service environment, generally empty Plan machine is deployed on blade server, and this allows for the flow that secure virtual machine goes out and generally has to take the thing of business network Reason link, then if not to needing the flow derived to carry out any optimization just derivation, then the network bandwidth can be made to take double, and Optimize and further mean that needing analytical data bag to take more calculates resource.3) mirror image flow duplicate removal problem: two different physics The flow of the communication between virtual machine on equipment can be captured by different secure virtual machines, and i.e. a flow is captured twice, And between secure virtual machine in the case of not communicating, it is difficult to judge whether to duplicate flow, the most all deriving will be extra to net Network resource and safety equipment bring load pressure, and are the wastes of a kind of resource.4) many purposes water conservancy diversion problem: safety detection is with careful Meter is not merely the work of one equipment of intruding detection system, generally requires multiple special detection and audit device is joined Close work, such as network audit, database audit, intrusion detection, application performance management system with increasing based on big data Situation Awareness, the equipment such as data analysis.And the mirror image flow of virtual machine is led to multiple physics from a physical machine simultaneously Equipment, produced duplicate packet and the work of derived grid stream, will seriously take business physical machine calculating resource and Internet resources, this almost becomes cannot realizing in the virtualized network environment of present stage of a task.Further, the most of the same race Detect different to the demand of network traffics with audit device, as database audit has only to the flowing of access of data base, invasion inspection Examining system is concerned with the packet information of the degree of depth and Situation Awareness is more it is desirable that the essential information etc. 5 of network flow) extension Sex chromosome mosaicism: the proposition of the concepts such as agility, linkage makes network security be required to support more complicated strategy, on-demand performs peace Full monitoring strategies, by software definition real time modifying security strategy etc..These demands all cannot in the scheme of secure virtual machine It is implemented.
Visible root problem be control and forwarding be integrated together, therefore cannot meet complicated business logic, expansion simultaneously Malleability motility and high performance demand.Therefore the concept of software definition is used, by decoupling for the business of key-course and forwarding, Use a control centre concentrated to complete the decision-making of overall control strategy, secure virtual machine be only responsible for the capture to flow With the forwarding behavior according to the strategy obtained from control centre.This framework will be to more conform to virtualize now and cloud computing ring Regulatory requirement to image network flow in border.But, only have this framework the enforceable solution that cannot have constituted, Also need to support the mirror image flow control protocol of this framework, by this agreement by software definition and uncoupled control and Forwarding isolating construction is together in series, and can constitute the solution of a most available mirror image traffic monitoring management.
Summary of the invention
The invention aims to realize a kind of concept utilizing software definition and realize image network flow control plan With mirror image flow control protocol, it is used for solving: 1) by mirror image flow control protocol, the forwarding plan of fine granularity definition mirror image flow Slightly;2) by mirror image flow control protocol, reduce mirror image and forward the computational load of virtual machine;3) assisted by mirror image flow-control View, optimizes the legacy paths of mirror image flow;4) by mirror image flow control protocol, it is provided that have extensibility, net flexibly Network traffic security monitoring demand.
Image network flow control protocol based on software definition in a kind of virtualized network environment, this agreement can adapt to The most decoupling and the mirror image flow collection of distributed deployment, mirror image traffic distribution and the system structure of mirror image flow-control, Mirror image water flow collection device node/virtual machine is deployed in the business network environment of user, and its major function is capture virtualization Mirror image flow in environment, is forwarding according to the purpose specified by agreement;Mirror image traffic distribution device is deployed in non-traffic net In network environment, i.e. without the concern for the offered load impact on customer service network environment normal network communications, its function is root Flow duplication and distribution is carried out according to the flow analysis equipment of the many purposes specified by agreement;Mirror image flow master controller is to whole The forwarding logic of image network flow carries out unified control, it is provided that the interface of software definition.
Described image network flow control protocol, its overall workflow is:
1) after mirror image water flow collection device node captures packet, packet institute can be searched in local water conservancy diversion stream table The stream list item corresponding to stream represented, if can not find Corresponding matching item, then shows that the water conservancy diversion rule corresponding to this stream is not the most from mirror As flow master controller issues, then need to ask this rule to control centre;
2) mirror image water flow collection device node sends water conservancy diversion stream list item request protocol to mirror image flow centralized controller node, please Seek corresponding water conservancy diversion stream list item;
3) after mirror image water flow collection device node sends the request of water conservancy diversion stream list item, not yet receive mirror image flow center and control Before the stream list item that device node issues, first carrying out water conservancy diversion according to acquiescence water conservancy diversion rule, default rule is by front n the data of this stream Bag is derived to mirror image Flow Control Center;
4) after mirror image flow centralized controller node receives water conservancy diversion stream list item request message, based on message content to this locality Data base retrieves, and searches this stream being pre-configured with and defining to corresponding water conservancy diversion rule and right based on lookup result generation The stream list item rule answered;
5) if the water conservancy diversion rule of correspondence cannot be found, then by mirror image flow master controller to the mirror image flow sending request Harvester sends protocal analysis request;
6) complete data packet of this stream is reported in mirror image flow by the mirror image water flow collection device receiving protocal analysis request Heart controller;
7) content of the reported data bag that the analysis of mirror image flow master controller obtains, analysis application layer protocol, and based on The configuration of system generates the rule of corresponding water conservancy diversion;
8) if the stream analysis apparatus corresponding to this stream is single equipment, mirror image flow centralized controller node is directly to asking The mirror image water flow collection device node seeking this rule issues water conservancy diversion rule;
9) after the water conservancy diversion rule that mirror image water flow collection device node is sent under receiving, the stream table that renewal is local, and according to Flow is exported to the stream analysis apparatus of correspondence by new water conservancy diversion rule;
10) if the stream analysis apparatus corresponding to this stream is more than an equipment, mirror image flow centralized controller node selects One suitable mirror image traffic distribution device node, as water conservancy diversion purpose, and to asking the mirror image water flow collection device node of this rule Issue with this
Water conservancy diversion rule for the purpose of mirror image traffic distribution device node;
11) after the water conservancy diversion rule that mirror image water flow collection device node is sent under receiving, the stream table that renewal is local, and according to Flow is exported to the mirror image traffic distribution device node of correspondence by new water conservancy diversion rule;
12) mirror image flow centralized controller node purpose based on stream analysis apparatus and wanting required mirror image flow Ask, issue stream distribution rule to the mirror image traffic distribution device node being selected as water conservancy diversion purpose;
13) mirror image traffic distribution device node is after receiving stream distribution rule, updates this locality stream table, and is receiving from mirror After deriving, as water flow collection device node, the flow come, carry out the distribution of flow based on stream distribution rule list.
Described water conservancy diversion rule list is stored in the internal memory of mirror image water flow collection device node, and each packet is when processing Source MAC based on packet, purpose MAC, source IP, purpose IP, port numbers and VLAN ID is needed to retrieve corresponding to this packet Network flow corresponding list item in the table, packet is processed based on list item, wherein: action ID specifies needs to hold The action of row, supports to abandon and two kinds of actions of water conservancy diversion at present;Encapsulation IP, packaging V LAN are according to user network environment when water conservancy diversion The data encapsulation format needing structure when being derived by packet provided;The appointment of target MAC (Media Access Control) address is option, is not having In the environment of SDN is supported, and need directly to forward the traffic to need when safety equipment rather than traffic distribution node to refer to Fixed, statistical mark specifies the flow of this stream and packet number the need of carrying out adding up and report administrative center, during inefficacy Between be out-of-service time of this stream list item, system will enable a corresponding timer, after this stream list item is matched every time, corresponding The out-of-service time that will be reset as in this stream list item of timer, if the most not belonging to this stream table in the cycle exceeding the out-of-service time The packet of item is mated, then by this stream list item of deletion.
Described water conservancy diversion stream list item request report belongs to application layer protocol, wherein: agreement mark provides the identification information of this agreement; Device id provides the identification information of mirror image water flow collection device node;Task ID provides the task that this message is to be performed, currently For stream list item request task in flow process;Stream information includes: source MAC, purpose MAC, source IP, purpose IP, port numbers and VLAN ID, Need the identification information of the stream of the stream list item of application for definition one, described protocal analysis request message works as mirror image flow center When controller cannot match the stream list item of correspondence by the essential information of stream, need to start protocol analyzing function, divide in real time Analyse the agreement used in current stream, and the water conservancy diversion of application layer protocol specified in configuring according to system or not the joining of water conservancy diversion Put item to issue the stream table rule of water conservancy diversion, wherein: agreement mark provides the identification information of this agreement;Device id provides mirror image flow The identification information of master controller;Task ID provides the task that this message is to be performed, and appoints for agreement request in current process Business;Stream information includes: stream ID can be mirrored the storage of water flow collection device node, source MAC, purpose as unique identification id of this stream MAC, source IP, purpose IP, port numbers and VLAN ID, for one the identification information needing to carry out the stream of protocol identification of definition;Bag Number appointment needs mirror image water flow collection device to send how many packets to mirror image flow master controller, carries out protocal analysis.
Described protocol analysis data reports as after mirror image water flow collection device node receives protocal analysis request message, by right Complete being encapsulated in packet load field of packet that should flow, and plus the agreement for designated mirror flow control protocol Mark, the device id of identification self information, identification are currently that protocol analysis data reports the task ID of message task, identifies needs Sequence number corresponding to the stream ID of the stream being analyzed and the packet that currently reports;Described water conservancy diversion stream list item downward message is to work as mirror After generating the flow control policy required for mirror image water flow collection device node as flow centralized controller node, with the shape of this message This stream list item is issued to mirror image water flow collection device node by formula, and wherein, agreement mark provides the identification information of this agreement;Device id Provide the identification information of mirror image flow master controller;Task ID provides the task that this message is to be performed, in current process Water conservancy diversion list item issues task;Stream information includes: stream ID can be mirrored water flow collection device node as unique identification id of this stream and deposit Storage, source MAC, purpose MAC, source IP, purpose IP, port numbers and VLAN ID;Bag number is specified needs mirror image water flow collection device to mirror image Flow master controller sends how many packets, carries out protocal analysis;Action ID specifies the action needing to perform, and props up at present Hold and abandon and two kinds of actions of water conservancy diversion;Encapsulation IP, packaging V LAN be when water conservancy diversion according to user network environment provide by packet The data encapsulation format of structure is needed during derivation;The appointment of target MAC (Media Access Control) address is option, at the ring not having SDN to support Under border, and need directly to forward the traffic to need when safety equipment rather than traffic distribution node to specify;Statistical mark is specified The flow of this stream and packet number are the need of carrying out adding up and reporting administrative center;Out-of-service time is the mistake of this stream list item The effect time.
Described distribution rules stream table is stored in the internal memory of mirror image traffic distribution device node, and each packet is when processing Being required for source MAC based on packet, purpose MAC, source IP, purpose IP, port numbers and VLAN ID, to retrieve this packet institute right The network flow answered corresponding list item in the table, packet is processed based on list item, wherein: action ID specifies needs The action performed, in distributing list, action only has water conservancy diversion;The effect of VXLAN transition flag is to specify the stream processed with current action Remove the need of by VXLAN encapsulation, to adapt to not support detection and the audit device of VXLAN;Distribution node is in non-traffic In network, it is not necessary to specific encapsulation is isolated with the regular traffic flow realized with business network, therefore has only to pass through Specifying target MAC (Media Access Control) address to specify the forwarding purpose of stream for individual action, each action will cause the duplication of a packet and leads Stream, the out-of-service time is the out-of-service time of this stream list item, and the rule of distribution flow table is to be issued in the rule of mirror image water flow collection device While, mirror image flow centralized controller node issue to mirror image traffic distribution device node, i.e. in mirror image traffic distribution device Network flow be all that the flow in mirror image water flow collection device is identified and issued after the stream list item of coupling, just understand by from adopting Storage is derived to distributor, the most there are not unknown needs and inquires the network flow how to process, and in this message, agreement mark is given Go out the identification information of this agreement;Device id provides the identification information of mirror image flow master controller;Task ID provides this message institute Task to be performed, in current process, water conservancy diversion list item issues task;Stream information includes: source MAC, purpose MAC, source IP, purpose IP, port numbers and VLAN ID;The number of action present in action number appointment message;Action ID specifies needs perform to move Make, the most only water conservancy diversion action;The effect of VXLAN transition flag is to specify the stream with current action process the need of inciting somebody to action VXLAN encapsulation is removed, to adapt to not support detection and the audit device of VXLAN;Target MAC (Media Access Control) address is that current action specifies stream Forwarding purpose, the out-of-service time is the out-of-service time of this stream list item.
This agreement and implementation method have a following advance: 1) maximized optimizing is operated in customer service environment In be responsible for traffic capture and derivation the calculating resource of mirror image water flow collection device node use, by deep packet solution more than transport layer The task transfer of analysis gives has the independent mirror image flow centralized controller node calculating resource;2) controlled by center, software The mode of definition, optimizes the acquisition to mirror image flow flexibly, specifies, by strategy based on stream is fine-grained, the mirror captured As flow needs part that is that derive and that need not derivation;3) efficiently solve in network same present in East and West direction flow The replication problem of the flow that flow is captured on different physical hosts and causes, controls the choosing when issuing stream list item by center Select the little one end of offered load and perform water conservancy diversion, and the big one end of offered load abandons this repetition flow, solves flow duplicate removal with this Problem and balance use offered load;4) solve flow in many purposes water conservancy diversion by mirror image traffic distribution to replicate customer service The calculating resource of environment and Internet resources take and cannot the fine granularity problem that realizes traffic distribution;6) by by control Concentrate, in the way of flow control protocol, be issued to the mode of each terminal node, effectively solve there is no overall visual angle each Secure virtual machine for war lacks the autgmentability of counte-rplan when business network topological sum safety service demand changes Problem with motility.
Accompanying drawing explanation
Fig. 1 is image network flow-control stream and mirror image stream building-block of logic;
Fig. 2 is the overall workflow figure of mirror image flow control protocol
Fig. 3 is water conservancy diversion regular flow table
Fig. 4 is water conservancy diversion stream list item request message schematic diagram
Fig. 5 is protocal analysis request message schematic diagram
Fig. 6 is that protocol analysis data reports message schematic diagram
Fig. 7 is water conservancy diversion stream list item downward message schematic diagram
Fig. 8 is that distribution rules stream represents intention
Fig. 9 is distribution flow entry updating message schematic diagram
Figure 10 is embodiment schematic diagram
Detailed description of the invention
Below in conjunction with the accompanying drawings the present invention is described in further detail.
As shown in Figure 10, it is assumed that the offered load of physical host A is higher, the flow that virtual machine A communicates with virtual machine B Not in the water conservancy diversion stream table of mirror image water flow collection device 1 and mirror image water flow collection device 2.The stream communicated between virtual machine A with virtual machine B Amount includes video traffic and the intrinsic call of general operation system, wherein the intrinsic call flow of this operation system need by Intruding detection system and application performance management system are monitored and audit, but this stream list item does not exists in mirror image flow center yet In controller.Reason is only to have strategy that user issued by software definition rather than concrete in mirror image flow master controller Stream list item.Agreement X of strategy such as virtual machine A needs to be monitored by safety equipment Y.Image network flow control protocol is at this When embodiment works, will be capable of: virtual machine A and the virtual machine B that removal mirror image water flow collection device 1 captures communicates Repeat flow;The mirror image water flow collection device 2 reduced by offered load is selected to carry out the derivation of mirror image flow;By mirror image flow Distributor replicates flow in non-traffic network environment, and is distributed to intruding detection system and application performance management system.Below Concrete steps in conjunction with the embodiments introduce the work process of whole agreement.
Step 1, when virtual machine A sends packet to virtual machine B, mirror image water flow collection device 1 is on physical host A and mirror As water flow collection device 2 all can catch this packet on physical host B.The water conservancy diversion rule that mirror image water flow collection device 1 and 2 inquiry is local Then table, finding cannot be in water conservancy diversion rule from source MAC, purpose MAC, source IP, purpose IP, port numbers and the VLAN ID of this packet The exterior and the interior finds the list item of correspondence, and therefore mirror image water flow collection device 1 and 2 all can construct a water conservancy diversion stream list item request message, concurrently Give mirror image flow center control nodes.
Step 2, mirror image flow center control nodes receives the water conservancy diversion stream list item request that mirror image water flow collection device 1 and 2 is sent After message, check this locality stream list item caching, it is impossible to find the stream list item of correspondence.Mirror image flow center control nodes is based in message Source MAC, purpose MAC, source IP, purpose IP and VLAN ID to check in communicating pair from network topological information be virtual machine A and void Plan machine B, and from water conservancy diversion strategy, find the corresponding security strategy that communicates between virtual machine A and virtual machine B for needs to one As the mirror image flow of system traffic perform intrusion detection and application performance management, but need not monitor the stream of video file Amount.
Step 3, mirror image flow center control nodes is adopted based on flow load situation, the mirror image flow selecting flow load little Storage 2 place physical host derives point as mirror image flow, sends protocal analysis request message to mirror image water flow collection device 2, please Seek further message analysis.
Step 4, after mirror image water flow collection device 2 receives protocal analysis request message, by the mirror image flow of capture according to agreement The middle count packages packet specified reports message to protocol analysis data, and is sent to mirror image flow center control nodes.
Step 5, mirror image flow center control nodes reports the packet in message to judge by analyzing protocol analysis data Go out this flow and belong to general service traffics rather than video flowing, need monitored.Again based on the security strategy found respectively Generate the water conservancy diversion stream list item of a corresponding mirror image water flow collection device 1, the water conservancy diversion stream list item of a corresponding mirror image water flow collection device 2 and Article one, the distribution flow list item of corresponding mirror image traffic distribution device node.
Step 6, the task of the water conservancy diversion stream list item of corresponding mirror image water flow collection device 1 is not this flow of water conservancy diversion, and this list item is led to Cross water conservancy diversion stream list item downward message and be issued to mirror image water flow collection device 1.The water conservancy diversion stream list item of corresponding mirror image water flow collection device 2 be with Water conservancy diversion task for the purpose of mirror image traffic distribution device.Mirror image flow center control nodes is passed through this stream list item under water conservancy diversion stream list item Literary composition of transmitting messages is sent to mirror image water flow collection device 2.The distribution flow list item of corresponding mirror image traffic distribution device node is to include with invasion Water conservancy diversion task for the purpose of detecting system and application performance management system, this stream list item is issued with distribution flow entry updating message To mirror image traffic distribution device node.
Step 7, mirror image water flow collection device 1, mirror image water flow collection device 2 and mirror image traffic distribution device are receiving respective stream After the message of list item, update local corresponding stream table.
Step 8, mirror image water flow collection device 1 is after again catching the message belonging to this stream, based on source MAC, purpose MAC, source After IP, purpose IP and VLAN ID match stream list item, abandon this message.Mirror image water flow collection device 2 belongs to this stream again catching Message after, based on source MAC, purpose MAC, source IP, purpose IP and VLAN ID match stream list item after, forward the packet to Mirror image traffic distribution device node.Mirror image traffic distribution device after receiving the packet forwarded by mirror image water flow collection device 2, base After source MAC, purpose MAC, source IP, purpose IP and VLAN ID match the stream list item of correspondence, after flow is replicated portion, point It is not transmitted to intruding detection system and application performance management system.
The principle of above-described embodiment only illustrative present invention and effect thereof, and the embodiment that part is used, for For those of ordinary skill in the art, without departing from the concept of the premise of the invention, it is also possible to make some deformation and Improving, these broadly fall into protection scope of the present invention.

Claims (6)

1. image network flow control protocol based on software definition in a virtualized network environment, it is characterised in that this association View can adapt to the most decoupling and the mirror image flow collection of distributed deployment, mirror image traffic distribution and mirror image flow-control System structure, mirror image water flow collection device node/virtual machine is deployed in the business network environment of user, and its major function is to catch Obtain the mirror image flow in virtualized environment, forwarding according to the purpose specified by agreement;Mirror image traffic distribution device is deployed in In non-traffic network environment, i.e. without the concern for the offered load impact on customer service network environment normal network communications, its Function is that the flow analysis equipment according to the many purposes specified by agreement carries out flow duplication and distribution;Mirror image flow center controls Device carries out unified control to the forwarding logic of whole image network flow, it is provided that the interface of software definition.
Image network flow control protocol the most according to claim 1, its overall workflow is:
1) after mirror image water flow collection device node captures packet, can search representated by packet in local water conservancy diversion stream table The stream list item corresponding to stream, if can not find Corresponding matching item, then show that the water conservancy diversion rule corresponding to this stream is not the most from mirror image stream Amount master controller issues, then need to ask this rule to control centre;
2) mirror image water flow collection device node sends water conservancy diversion stream list item request protocol to mirror image flow centralized controller node, and it is right to ask The water conservancy diversion stream list item answered;
3) after mirror image water flow collection device node sends the request of water conservancy diversion stream list item, mirror image flow master controller joint is not yet received Before the stream list item that point issues, first carrying out water conservancy diversion according to acquiescence water conservancy diversion rule, default rule is to be led by front n the packet of this stream Go out to mirror image Flow Control Center;
4) after mirror image flow centralized controller node receives water conservancy diversion stream list item request message, based on message content to local data Storehouse is retrieved, and searches this stream being pre-configured with and defining to corresponding water conservancy diversion rule and based on lookup result generation correspondence Stream list item rule;
5) if the water conservancy diversion rule of correspondence cannot be found, then by mirror image flow master controller to the mirror image flow collection sending request Device sends protocal analysis request;
6) complete data packet of this stream is reported to the control of mirror image flow center by the mirror image water flow collection device receiving protocal analysis request Device processed;
7) content of the reported data bag that the analysis of mirror image flow master controller obtains, analyzes application layer protocol, and based on system Configuration generate the rule of corresponding water conservancy diversion;
8) if the stream analysis apparatus corresponding to this stream is single equipment, mirror image flow centralized controller node directly should to request The mirror image water flow collection device node of rule issues water conservancy diversion rule;
9), after the water conservancy diversion rule that mirror image water flow collection device node is sent under receiving, local stream table is updated, and according to new Flow is exported to the stream analysis apparatus of correspondence by water conservancy diversion rule;
10) if the stream analysis apparatus corresponding to this stream is more than an equipment, mirror image flow centralized controller node selects one Suitably mirror image traffic distribution device node, as water conservancy diversion purpose, and issues to the mirror image water flow collection device node asking this rule Water conservancy diversion rule for the purpose of this mirror image traffic distribution device node;
11), after the water conservancy diversion rule that mirror image water flow collection device node is sent under receiving, local stream table is updated, and according to new Flow is exported to the mirror image traffic distribution device node of correspondence by water conservancy diversion rule;
12) mirror image flow centralized controller node purpose based on stream analysis apparatus and the requirement to required mirror image flow, Stream distribution rule is issued to the mirror image traffic distribution device node being selected as water conservancy diversion purpose;
13) mirror image traffic distribution device node is after receiving stream distribution rule, updates this locality stream table, and is receiving from mirror image stream After amount harvester node derives the flow come, carry out the distribution of flow based on stream distribution rule list.
The overall workflow of image network flow control protocol the most according to claim 2, described water conservancy diversion rule list quilt Being stored in the internal memory of mirror image water flow collection device node, each packet is required for source MAC based on packet, mesh when processing MAC, source IP, purpose IP, port numbers and VLAN ID retrieve in the table corresponding of the network flow corresponding to this packet List item, packet is processed based on list item, wherein: action ID specifies the action needing to perform, support at present to abandon and Two kinds of actions of water conservancy diversion;Encapsulation IP, packaging V LAN are need when being derived by packet provided according to user network environment when water conservancy diversion Data encapsulation format to be constructed;The appointment of target MAC (Media Access Control) address is option, in the environment of not having SDN to support, and needs Directly to forward the traffic to need when safety equipment rather than traffic distribution node to specify, statistical mark specifies the flow of this stream With packet number the need of carrying out adding up and report administrative center, the out-of-service time is the out-of-service time of this stream list item, is To enable a corresponding timer in system, after this stream list item is matched every time, corresponding timer will be reset as this stream table Out-of-service time in Xiang, if the packet the most not belonging to this stream list item in the cycle exceeding the out-of-service time is mated, then will Delete this stream list item.
The overall workflow of image network flow control protocol the most according to claim 2, described water conservancy diversion stream list item please Report is asked to belong to application layer protocol, wherein: agreement mark provides the identification information of this agreement;Device id provides mirror image water flow collection device The identification information of node;Task ID provides the task that this message is to be performed, for stream list item request task in current process;Stream Information includes: source MAC, purpose MAC, source IP, purpose IP, port numbers and VLAN ID, needs the stream table of application for definition one The identification information of the stream of item, described protocal analysis request message cannot be by the essential information of stream when mirror image flow master controller When matching the stream list item of correspondence, need to start protocol analyzing function, analyze the agreement used in current stream in real time, and The configuration item of the water conservancy diversion of application layer protocol specified in configuring according to system or not water conservancy diversion issues the stream table rule of water conservancy diversion, its In: agreement mark provides the identification information of this agreement;Device id provides the identification information of mirror image flow master controller;Task ID Provide the task that this message is to be performed, be agreement request task in current process;Stream information includes: stream ID is as this stream Unique identification id can be mirrored the storage of water flow collection device node, source MAC, purpose MAC, source IP, purpose IP, port numbers and VLAN ID, for one the identification information needing to carry out the stream of protocol identification of definition;Bag number is specified needs mirror image water flow collection device to mirror As flow master controller sends how many packets, carry out protocal analysis.
The overall workflow of image network flow control protocol the most according to claim 2, described protocol analysis data Report as after mirror image water flow collection device node receives protocal analysis request message, by complete being encapsulated in of packet of correspondence stream In packet load field, and add the agreement mark for designated mirror flow control protocol, the equipment of identification self information ID, identify be currently protocol analysis data report message task task ID, identify the stream ID of stream needing to be analyzed and Sequence number corresponding to the packet currently reported;Described water conservancy diversion stream list item downward message is when mirror image flow centralized controller node is raw After having become the flow control policy required for mirror image water flow collection device node, with the form of this message, this stream list item is issued to mirror image Water flow collection device node, wherein, agreement mark provides the identification information of this agreement;Device id provides mirror image flow master controller Identification information;Task ID provides the task that this message is to be performed, and in current process, water conservancy diversion list item issues task;Stream information Including: stream ID can be mirrored the storage of water flow collection device node, source MAC, purpose MAC, source IP, mesh as unique identification id of this stream IP, port numbers and VLAN ID;Bag number is specified needs mirror image water flow collection device to send how many to mirror image flow master controller Packet, carries out protocal analysis;Action ID specifies the action needing to perform, and supports at present to abandon and two kinds of actions of water conservancy diversion;Envelope Dress IP, packaging V LAN are the data encapsulation needing structure when being derived by packet provided according to user network environment when water conservancy diversion Form;The appointment of target MAC (Media Access Control) address is option, in the environment of not having SDN to support, and needs directly to be forwarded by flow Need during to safety equipment rather than traffic distribution node to specify;Whether statistical mark specifies the flow of this stream and packet number Needs carry out adding up and reporting administrative center;Out-of-service time is the out-of-service time of this stream list item.
Overall workflow the most according to claim 2, described distribution rules stream table is stored in mirror image traffic distribution device In the internal memory of node, each packet is required for source MAC based on packet, purpose MAC, source IP, purpose IP, end when processing Slogan and VLAN ID retrieve the corresponding list item in the table of the network flow corresponding to this packet, with based on list item logarithm Process according to bag, wherein: action ID specifies the action needing to perform, and in distributing list, action only has water conservancy diversion;VXLAN changes mark The effect of will is to specify the stream processed with current action to remove the need of by VXLAN encapsulation, to adapt to not support the inspection of VXLAN Survey and audit device;Distribution node is in non-traffic network, it is not necessary to specific encapsulation is normal with realize with business network Service traffics are isolated, and therefore have only to by specifying target MAC (Media Access Control) address to specify the forwarding purpose of stream for individual action, each Action will cause duplication and the water conservancy diversion of a packet, out-of-service time to be the out-of-service times of this stream list item, the rule of distribution flow table It is while the rule of mirror image water flow collection device is issued, by mirror image flow centralized controller node to mirror image traffic distribution device Node issues, i.e. network flow in mirror image traffic distribution device is all that the flow in mirror image water flow collection device is identified and issues After the stream list item of coupling, just can be derived to distributor from harvester, the most do not had unknown needs inquire how to process Network flow, in this message, agreement mark provides the identification information of this agreement;Device id provides mirror image flow master controller Identification information;Task ID provides the task that this message is to be performed, and in current process, water conservancy diversion list item issues task;Stream information Including: source MAC, purpose MAC, source IP, purpose IP, port numbers and VLAN ID;Action present in action number appointment message Number;Action ID specifies the action needing to perform, the most only water conservancy diversion action;The effect of VXLAN transition flag is to specify to work as The stream that front action processes removes the need of by VXLAN encapsulation, to adapt to not support detection and the audit device of VXLAN;Purpose MAC Address is the forwarding purpose that current action specifies stream, and the out-of-service time is the out-of-service time of this stream list item.
CN201610744511.3A 2016-08-28 2016-08-28 Image network flow control methods in a kind of virtualized network environment Active CN106100999B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610744511.3A CN106100999B (en) 2016-08-28 2016-08-28 Image network flow control methods in a kind of virtualized network environment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610744511.3A CN106100999B (en) 2016-08-28 2016-08-28 Image network flow control methods in a kind of virtualized network environment

Publications (2)

Publication Number Publication Date
CN106100999A true CN106100999A (en) 2016-11-09
CN106100999B CN106100999B (en) 2019-05-24

Family

ID=57224050

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610744511.3A Active CN106100999B (en) 2016-08-28 2016-08-28 Image network flow control methods in a kind of virtualized network environment

Country Status (1)

Country Link
CN (1) CN106100999B (en)

Cited By (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106533838A (en) * 2016-11-30 2017-03-22 国云科技股份有限公司 Service characteristic time-sequence data packet collecting method facing cloud platform
CN106603346A (en) * 2017-02-07 2017-04-26 佛山易识科技有限公司 Network quality testing tool based on virtual extensible LAN
CN106878340A (en) * 2017-04-01 2017-06-20 中国人民解放军61660部队 A kind of comprehensive safety monitoring analysis system based on network traffics
CN107241283A (en) * 2017-05-23 2017-10-10 国家计算机网络与信息安全管理中心 A kind of East and West direction network traffics mirror image acquisition method across main frame tenant
CN107770098A (en) * 2017-09-05 2018-03-06 全球能源互联网研究院有限公司 A kind of transformer station's station communication drainage method and system based on SDN
CN108075970A (en) * 2016-11-16 2018-05-25 罗伯特·博世有限公司 For carrying out the method and apparatus of message transmission in a computer network
WO2018149338A1 (en) * 2017-02-14 2018-08-23 中兴通讯股份有限公司 Sdn-based remote stream mirroring control method, implementation method, and related device
CN109120492A (en) * 2017-06-26 2019-01-01 中兴通讯股份有限公司 A kind of storage unit, source interchanger, message forwarding method and mirror-image system
CN109150740A (en) * 2018-08-01 2019-01-04 武汉绿色网络信息服务有限责任公司 A kind of distributed network flow control method and device
CN109922021A (en) * 2017-12-12 2019-06-21 中国电信股份有限公司 Security protection system and safety protecting method
CN109962891A (en) * 2017-12-25 2019-07-02 中国移动通信集团安徽有限公司 Monitor method, apparatus, equipment and the computer storage medium of cloud security
CN110971391A (en) * 2018-09-30 2020-04-07 新华三技术有限公司合肥分公司 Message forwarding method and network equipment
CN111144504A (en) * 2019-12-30 2020-05-12 成都科来软件有限公司 Software image flow identification and classification method based on PCA algorithm
CN111405590A (en) * 2019-01-02 2020-07-10 中国移动通信有限公司研究院 Method, device and storage medium for exporting data traffic of virtualized network element
CN111786843A (en) * 2019-04-04 2020-10-16 中兴通讯股份有限公司 Traffic collection method, traffic collection device, network equipment and storage medium
CN112134794A (en) * 2020-10-28 2020-12-25 新华三大数据技术有限公司 Flow table backup method and device
CN112165487A (en) * 2020-09-27 2021-01-01 上海万向区块链股份公司 Zeek-based distributed network security and performance detection method and system
CN112333027A (en) * 2020-11-20 2021-02-05 桂林航天工业学院 Method for realizing distributed virtual network monitor based on software defined network
CN113347258A (en) * 2021-06-04 2021-09-03 上海天旦网络科技发展有限公司 Method and system for data acquisition, monitoring and analysis under cloud flow
CN113518045A (en) * 2020-04-10 2021-10-19 中国移动通信有限公司研究院 Flow acquisition configuration method, flow acquisition method and equipment
CN114285667A (en) * 2021-12-30 2022-04-05 湖南泛联新安信息科技有限公司 Network target range flow real-time acquisition system and method
CN114930776A (en) * 2020-01-10 2022-08-19 思科技术公司 Traffic mirroring in a hybrid network environment
CN115550258A (en) * 2022-12-02 2022-12-30 苏州浪潮智能科技有限公司 Traffic mirroring method, device, equipment and storage medium
CN116112399A (en) * 2022-12-23 2023-05-12 中核武汉核电运行技术股份有限公司 Industrial control network flow analysis system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103731298A (en) * 2013-11-15 2014-04-16 中国航天科工集团第二研究院七〇六所 Large-scale distributed network safety data acquisition method and system
CN104579810A (en) * 2013-10-23 2015-04-29 中兴通讯股份有限公司 Flow sampling method and system for software-defined network
CN105580318A (en) * 2013-09-24 2016-05-11 国际商业机器公司 Port mirroring for sampling measurement of network flows
CN105827629A (en) * 2016-05-04 2016-08-03 王燕清 Software definition safety guiding device under cloud computing environment and implementation method thereof

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105580318A (en) * 2013-09-24 2016-05-11 国际商业机器公司 Port mirroring for sampling measurement of network flows
CN104579810A (en) * 2013-10-23 2015-04-29 中兴通讯股份有限公司 Flow sampling method and system for software-defined network
CN103731298A (en) * 2013-11-15 2014-04-16 中国航天科工集团第二研究院七〇六所 Large-scale distributed network safety data acquisition method and system
CN105827629A (en) * 2016-05-04 2016-08-03 王燕清 Software definition safety guiding device under cloud computing environment and implementation method thereof

Cited By (38)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108075970A (en) * 2016-11-16 2018-05-25 罗伯特·博世有限公司 For carrying out the method and apparatus of message transmission in a computer network
CN106533838B (en) * 2016-11-30 2019-12-10 国云科技股份有限公司 Service characteristic time sequence data packet acquisition method facing cloud platform
CN106533838A (en) * 2016-11-30 2017-03-22 国云科技股份有限公司 Service characteristic time-sequence data packet collecting method facing cloud platform
CN106603346A (en) * 2017-02-07 2017-04-26 佛山易识科技有限公司 Network quality testing tool based on virtual extensible LAN
WO2018149338A1 (en) * 2017-02-14 2018-08-23 中兴通讯股份有限公司 Sdn-based remote stream mirroring control method, implementation method, and related device
CN106878340A (en) * 2017-04-01 2017-06-20 中国人民解放军61660部队 A kind of comprehensive safety monitoring analysis system based on network traffics
CN106878340B (en) * 2017-04-01 2023-09-01 中国人民解放军61660部队 Comprehensive safety monitoring analysis system based on network flow
CN107241283A (en) * 2017-05-23 2017-10-10 国家计算机网络与信息安全管理中心 A kind of East and West direction network traffics mirror image acquisition method across main frame tenant
CN109120492B (en) * 2017-06-26 2022-03-11 中兴通讯股份有限公司 Storage unit, source switch, message forwarding method and mirror image system
CN109120492A (en) * 2017-06-26 2019-01-01 中兴通讯股份有限公司 A kind of storage unit, source interchanger, message forwarding method and mirror-image system
CN107770098A (en) * 2017-09-05 2018-03-06 全球能源互联网研究院有限公司 A kind of transformer station's station communication drainage method and system based on SDN
CN109922021A (en) * 2017-12-12 2019-06-21 中国电信股份有限公司 Security protection system and safety protecting method
CN109922021B (en) * 2017-12-12 2022-03-08 中国电信股份有限公司 Safety protection system and safety protection method
CN109962891B (en) * 2017-12-25 2021-10-22 中国移动通信集团安徽有限公司 Method, device and equipment for monitoring cloud security and computer storage medium
CN109962891A (en) * 2017-12-25 2019-07-02 中国移动通信集团安徽有限公司 Monitor method, apparatus, equipment and the computer storage medium of cloud security
CN109150740A (en) * 2018-08-01 2019-01-04 武汉绿色网络信息服务有限责任公司 A kind of distributed network flow control method and device
CN110971391B (en) * 2018-09-30 2022-03-11 新华三技术有限公司合肥分公司 Message forwarding method and network equipment
CN110971391A (en) * 2018-09-30 2020-04-07 新华三技术有限公司合肥分公司 Message forwarding method and network equipment
CN111405590A (en) * 2019-01-02 2020-07-10 中国移动通信有限公司研究院 Method, device and storage medium for exporting data traffic of virtualized network element
CN111786843A (en) * 2019-04-04 2020-10-16 中兴通讯股份有限公司 Traffic collection method, traffic collection device, network equipment and storage medium
CN111786843B (en) * 2019-04-04 2023-07-04 中兴通讯股份有限公司 Traffic acquisition method and device, network equipment and storage medium
CN111144504A (en) * 2019-12-30 2020-05-12 成都科来软件有限公司 Software image flow identification and classification method based on PCA algorithm
CN111144504B (en) * 2019-12-30 2023-07-28 科来网络技术股份有限公司 Software mirror image flow identification and classification method based on PCA algorithm
CN114930776A (en) * 2020-01-10 2022-08-19 思科技术公司 Traffic mirroring in a hybrid network environment
CN113518045B (en) * 2020-04-10 2023-05-09 中国移动通信有限公司研究院 Flow acquisition configuration method, flow acquisition method and equipment
CN113518045A (en) * 2020-04-10 2021-10-19 中国移动通信有限公司研究院 Flow acquisition configuration method, flow acquisition method and equipment
CN112165487A (en) * 2020-09-27 2021-01-01 上海万向区块链股份公司 Zeek-based distributed network security and performance detection method and system
CN112165487B (en) * 2020-09-27 2022-07-15 上海万向区块链股份公司 Zeek-based distributed network security and performance detection method and system
CN112134794B (en) * 2020-10-28 2022-04-01 新华三大数据技术有限公司 Flow table backup method and device
CN112134794A (en) * 2020-10-28 2020-12-25 新华三大数据技术有限公司 Flow table backup method and device
CN112333027A (en) * 2020-11-20 2021-02-05 桂林航天工业学院 Method for realizing distributed virtual network monitor based on software defined network
CN112333027B (en) * 2020-11-20 2022-06-07 桂林航天工业学院 Method for realizing distributed virtual network monitor based on software defined network
CN113347258A (en) * 2021-06-04 2021-09-03 上海天旦网络科技发展有限公司 Method and system for data acquisition, monitoring and analysis under cloud flow
CN114285667B (en) * 2021-12-30 2023-06-02 湖南泛联新安信息科技有限公司 Real-time acquisition system and method for network target range flow
CN114285667A (en) * 2021-12-30 2022-04-05 湖南泛联新安信息科技有限公司 Network target range flow real-time acquisition system and method
CN115550258B (en) * 2022-12-02 2023-03-31 苏州浪潮智能科技有限公司 Traffic mirroring method, device, equipment and storage medium
CN115550258A (en) * 2022-12-02 2022-12-30 苏州浪潮智能科技有限公司 Traffic mirroring method, device, equipment and storage medium
CN116112399A (en) * 2022-12-23 2023-05-12 中核武汉核电运行技术股份有限公司 Industrial control network flow analysis system

Also Published As

Publication number Publication date
CN106100999B (en) 2019-05-24

Similar Documents

Publication Publication Date Title
CN106100999A (en) Image network flow control protocol in a kind of virtualized network environment
CN108234315A (en) Image network flow control protocol in a kind of virtualized network environment
CN104518967B (en) Method for routing, equipment and system
CN103338150B (en) Communication network architecture method for building up, device, server and router
CN104253770B (en) Realize the method and apparatus of the distributed virtual switch system
US20180241586A1 (en) Path Detection Method in VxLAN, Controller, and Network Device
CN106375384A (en) Management system of mirror network flow in virtual network environment and control method
JP5033856B2 (en) Devices and systems for network configuration assumptions
CN102197627B (en) The improvement of flux of multicast convergence
CN106992874A (en) Method and the network equipment for communication
WO2022083540A1 (en) Method, apparatus, and system for determining fault recovery plan, and computer storage medium
CN106416132A (en) Systems and methods for controlling network switches using a switch modeling interface at a controller
CN106789157B (en) The hardware resource management method of stacking system and stacked switch
CN105791151B (en) A kind of dynamic flow control method and device
CN108243123A (en) Processing method, device, controller and the interchanger of broadcasting packet
CN109561033A (en) The method and device of multicast replication in Overlay network
KR20140106235A (en) Open-flow switch and packet manageing method thereof
CN104283802A (en) Neighbor discovery method and device
WO2018107882A1 (en) Fault positioning method and network device
CN105357142A (en) Method for designing network load balancer system based on ForCES
CN106533832A (en) Distributed-deployment-based network flow detection system
CN108449210A (en) A kind of EIGRP routing networks fault monitoring system
US9641355B2 (en) Communication device, communication method, and program
CN107005479B (en) Method, device and system for forwarding data in Software Defined Network (SDN)
CN107465621A (en) A kind of router finds method, SDN controllers, router and network system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant