CN110519262B - Traffic statistical analysis system and method based on BGP routing identification - Google Patents
Traffic statistical analysis system and method based on BGP routing identification Download PDFInfo
- Publication number
- CN110519262B CN110519262B CN201910791101.8A CN201910791101A CN110519262B CN 110519262 B CN110519262 B CN 110519262B CN 201910791101 A CN201910791101 A CN 201910791101A CN 110519262 B CN110519262 B CN 110519262B
- Authority
- CN
- China
- Prior art keywords
- data
- bgp
- ipv6
- position information
- address
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/02—Topology update or discovery
- H04L45/04—Interdomain routing, e.g. hierarchical routing
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
A traffic statistical analysis system and method based on BGP route identification includes: s1, building an OpenStack cloud platform; s2, integrating the SDN and the OpenStack cloud platform Neutron to realize network resource virtualization; s3, the navigation system generates terminal geographical position information, and the terminal geographical position information is converted into an IPv6 address through OpenStack; s4, Quaga creates a private AS and establishes an EBGP neighbor relation with an AS4538 router of the province network node; s5, collecting BGP information (AS _ PATH), collecting IPv4 and IPv6 data, and converting the IPv4 data into IPv6 data through IVI; and S6, counting and identifying the BGP information, the IPv4 and the IPv6 network data through the Panabit equipment. The invention can realize the statistical analysis of IPv4 and IPv6 data flow based on different dimensions and layers from the data routing trend acquired from AS _ PATH information of BGP from the autonomous region of data access and terminal geographical position information based on IPv4 and IPv6 protocols, and provides effective data support for the safe operation and the information-based safe deployment of a network platform.
Description
Technical Field
The present disclosure relates to the field of computer network technologies, and in particular, to a system and a method for traffic statistics analysis based on BGP route identifiers.
Background
With the development of the internet, the importance of network security is increasingly appearing. The education network is used as an important link for connecting education resources of colleges and universities, especially safety precaution work needs to be done, and BGP routing identification information and data traffic collection provide important basic data for traffic statistical analysis of the education network.
The BGP data information statistical platform built in the OpenStack and SDN modes can accurately acquire network layer information, realizes statistical analysis of IPv4 and IPv6 data flow in multiple dimensions from an autonomous region of data access and terminal geographic position information based on IPv4 and IPv6 protocols, and provides effective data support for safe operation and information-based safe deployment of the network platform.
Disclosure of Invention
Technical problem to be solved
In order to solve the problems in the prior art, the invention provides a traffic statistical analysis system and method based on BGP routing identifiers.
(II) technical scheme
A traffic statistical analysis system based on BGP route identification comprises: the OpenStack cloud platform is used for managing virtual machines, comprises neutrons for providing virtual network functions in a cloud computing environment, and the created virtual machines are used for interacting with a Beidou navigation system, acquiring geographic position information and allocating addresses; the satellite navigation system is used for positioning the terminal and generating geographic position information; the Quagga device establishes a private AS and establishes an EBGP neighbor relation with the province network node router; the SDN equipment is integrated with a Neutron of an OpenStack cloud platform to realize network resource virtualization, and comprises an SDN controller and an SDN switch; the IVI is connected with the SDN switch port and used for converting the IPv4 data collected from the SDN switch port into IPv6 data; the Panabit equipment is connected with the ports of the Quagga, the IVI and the SDN switch and used for identifying BGP information, IPv4 and IPv6 network data and carrying out statistics and identification.
Preferably, the Neutron of the OpenStack cloud platform and the SDN equipment are integrated to realize network resource virtualization, and the network resource virtualization method is used for interaction between the created virtual machine and the Beidou navigation system, acquisition of geographic position information and address allocation.
Preferably, the SDN controller is configured to identify a network topology, calculate a path, generate a flow table according to a corresponding policy, and issue the flow table, configure and manage the SDN switch through an OpenFlow protocol, so that data is forwarded through the flow table.
Preferably, the SDN controller is further configured to perform data mirroring and offloading operations on SDN switch ports accessed by the Panabit and the IVI, so as to facilitate acquisition of IPv4 and IPv6 traffic.
A traffic statistical analysis method based on BGP routing identification comprises the following steps: s1, building an OpenStack cloud platform; s2, integrating the SDN with the OpenStack cloud platform Neutron to realize network resource virtualization; s3, the navigation system generates terminal geographical position information, and the terminal geographical position information is converted into an IPv6 address through OpenStack; s4, the Quagga router creates a private AS and establishes an EBGP neighbor relation with the province network node AS4538 router; s5, collecting BGP information, collecting IPv4 and IPv6 data, and converting the IPv4 data into IPv6 data through IVI; and S6, counting and identifying the BGP information, the IPv4 and the IPv6 network data through the Panabit equipment.
Preferably, the step S2 further includes: s21: starting an OpenStack cloud platform; s22: the SDN controller is started in an OpenStack Neutron plug-in mode; s23: the SDN controller identifies the network topology, carries out path calculation, and generates a flow table according to a corresponding strategy for issuing;
s24: the SDN controller starts a monitoring thread, when the switches are increased or decreased or the ports of the switches are changed, the monitoring thread is triggered and updated to inform the controller to calculate and plan paths of the affected nodes again, update a flow table and issue the flow table; s25: and managing and controlling the network of the OpenStack through an SDN controller.
Preferably, the step S4 further includes: s41: starting the Quagga; s42: establishing an EBGP neighbor relation between a private AS and the province network node router; s43: receiving a routing entry, and setting a community attribute to NO _ ADVERTISE; s44: BGP information acquisition is performed on the Quagga through the Panabit. And carrying out BGP information acquisition on the Quagga through the Panabit, wherein an AS PATH (AS _ PATH) attribute in the BGP information is a recognized compliance attribute, and all AS numbers which a certain route passes from a local address to a destination address are recorded in the AS _ PATH attribute according to a certain sequence. When BGP advertises a route to other ASs, the local AS number is added at the very top of the AS _ PATH list. The BGP router receiving this route knows the AS to be traversed by the destination address based on the AS _ PATH attribute.
(III) advantageous effects
The traffic statistical analysis system and method based on the BGP routing identifier realize network resource virtualization through the combination of a cloud platform and an SDN, generate terminal geographic position information through a navigation system, and convert the terminal geographic position information into an IPv6 address through OpenStack; establishing a private AS through Quaga, and establishing an EBGP (Ethernet Back propagation) neighbor relation with an AS4538 router of the province network node; BGP information, IPv4 and IPv6 network data are counted and identified through a Panabit device.
Based on IPv4 and IPv6 protocols, statistical analysis of IPv4 and IPv6 data traffic is realized based on different dimensions and layers from the autonomous region of data access, from terminal geographical position information and from the data routing trend acquired by AS _ PATH information of BGP, and effective data support is provided for safe operation and information-based safe deployment of a network platform.
Drawings
Fig. 1 is an overall structure diagram of a traffic statistics system based on BGP route identifiers according to an embodiment of the present invention;
fig. 2 is a schematic coding diagram of a traffic statistic system based on BGP route identifier according to an embodiment of the present invention;
fig. 3 is a flowchart of a traffic statistics system based on BGP route identifier according to an embodiment of the present invention;
fig. 4 is a schematic diagram of a traffic statistic system based on BGP route identifier according to an embodiment of the present invention.
Detailed Description
In order that the objects, technical solutions and advantages of the present invention will become more apparent, the present invention will be further described in detail with reference to the accompanying drawings in conjunction with the following specific embodiments.
A first embodiment of the present invention provides a traffic statistic analysis system based on BGP route identifiers, where fig. 1 is a schematic structural diagram of a traffic statistic analysis system based on BGP route identifiers according to an embodiment of the present invention, and as shown in fig. 1, the system includes: the system comprises an OpenStack cloud platform, SDN equipment, a satellite navigation system, Quagga equipment, IVI equipment and Panabit equipment. Wherein:
the OpenStack cloud platform is used for building student Virtual Machines (VMs), managing the school virtual machines through application program standard interfaces by using a virtualization technology, installing the student virtual machines in each professional node host, sending geographic position requests to a navigation system through the OVS _ agent by the virtual machines, and generating network addresses based on algorithms after feeding back position information to be distributed to each terminal;
the SDN device comprises an SDN switch and an SDN controller, the SDN switch enables the SDN controller to set configuration and management of the SDN controller by means of an OpenFlow protocol, and data are forwarded through a flow table. And the SDN controller sends the flow table item configuration message to the SDN switch through an OpenFlow protocol, controls the SDN switch to issue the flow table, establishes a virtual network forwarding path and realizes data transmission.
Neutron in an OpenStack cloud platform provides a virtual network function in a cloud computing environment, SDN equipment is integrated with the Neutron in the OpenStack cloud platform, and an SDN controller can perform network topology identification, perform path computation, and generate a flow table according to a corresponding strategy for issuing. Network management and control of the OpenStack cloud platform are achieved through the SDN controller, and functions of existing network modules are further achieved.
Cloud platform node information is transmitted between the OVS Agent on the OpenStack computing node and the Neutron plug-in unit, so that the SDN controller can conduct flow table regulation and control and the like aiming at collected information.
The navigation system in the embodiment is a Beidou satellite navigation system, also called a double-satellite positioning system or an active positioning system, positioning is realized by adopting a geometric principle of three-ball intersection, and the specific flow is as follows: measuring the distances from the user to three satellites; the position of the satellite is accurately known and is broadcast to users through telegraph messages; drawing a spherical surface by taking the satellite as the center of a sphere and the distance as the radius; the three spherical surfaces are intersected to form two points, and the user position can be obtained by eliminating one unreasonable point according to the geographical common knowledge.
The IVI is a protocol conversion technology based on SIIT, and has good support and expansibility on IPv 6. The satellite navigation system performs IPv6 address conversion on a physical address obtained after the terminal is positioned through OpenStack (neutron) and distributes the address to the terminal, and performs IPv4 and IPv6 data conversion through IVI to achieve effective acquisition of the data.
Software released by the Quagga device in a GNU copyright mode is deployed on a Linux server, and a BGP protocol is operated to acquire information. The device receives the serialized message from the Panabit from the UDP port 161, and obtains the node corresponding to the BGP management variable in the MIB tree through decoding, group name verification, and analysis. Traversing all lines of the BGP table through the GetNextRequest PDU, obtaining the values of the management variables from the corresponding modules, forming a response message, encoding and sending back to the Panabit.
The Panabit equipment mainly achieves the functions of receiving the event logs and the flow logs of the Panabit flow control system, storing, inquiring, analyzing, counting, auditing and the like to count and identify BGP information, IPv4 and IPv6 network data, wherein the data are stored in a MySQL database, and then the database is called through a PHP scripting language to be presented in a Web interface mode.
Through BGP routing and identification, based on IPv4 and IPv6 protocols, statistical analysis of IPv4 and IPv6 data traffic is achieved in a multi-dimensional mode from autonomous areas of data access and terminal geographical position information, and effective data support is provided for safe operation and information-based safe deployment of a network platform.
A second embodiment of the present invention provides a mapping relationship between a geo-location code and an IPv6 address, and fig. 2 is a block diagram of a mapping relationship between a geo-location code and an IPv6 address according to an embodiment of the present invention. Since the GPS receiver can only determine two-dimensional coordinates, i.e., longitude and latitude, when receiving only three effective GPS satellite signals, the 3D positioning including altitude can be completed only when receiving four or more effective GPS satellite signals. In view of the generality of the present disclosure, only longitudinal and latitudinal IPv6 address translation is referenced, thereby enabling such encoding to have similar characteristics to internet IP addresses, facilitating integration with the internet. The specific operation is as follows:
operation 1: the longitude and latitude are converted to a binary number fixed to a length of n bits.
In operation 1, the longitude is converted into a binary number fixed to n bits, 1 bit is used to represent a symbol, 8 bits are used to represent data on the left side of a decimal point, and the remaining n-9 bits represent data on the right side of the decimal point; the latitude is converted into a binary number with a fixed length of n bits, 1 bit is used for representing a symbol, 7 bits are used for representing data on the left side of a decimal point, and the remaining n-8 bits represent data on the right side of the decimal point.
Further, for longitude, the first bit is the sign bit, the left side of the decimal point is directly converted into 8-bit binary code, and the right side of the decimal point is generated according to the following operations: multiplying the decimal fraction by 2 to obtain a product, taking out the integral part of the product, multiplying the rest decimal part by 2 to obtain another product, taking out the integral part of the product, and carrying out the operation until n-9 bits are reached. Then the integer parts are arranged in sequence, the integer is firstly taken as the high-order significant bit of the binary decimal, and the integer is then taken as the low-order significant bit. The sign bit, the binary representation of the integer bit and the binary representation of the decimal bit are concatenated to form an encoding of longitude. For latitude, the first bit is a sign bit, the left side of the decimal point is directly converted into 7-bit binary code, and the right side of the decimal point is generated according to the following operations: multiplying the decimal fraction by 2 to obtain a product, taking out the integral part of the product, multiplying the rest decimal part by 2 to obtain another product, taking out the integral part of the product, and carrying out the operation until n-8 bits are reached. Then the integer parts are arranged in sequence, the integer is firstly taken as the high-order significant bit of the binary decimal, and the integer is then taken as the low-order significant bit. The sign bit, the binary representation of the integer bit and the binary representation of the decimal bit are concatenated to form the encoding of the latitude.
And operation 2: the binary representations of longitude and latitude are interleaved to form a position code.
In operation 2, please refer to fig. 2, the equal length binary representation of longitude and the equal length binary representation of latitude are cross-merged, and the odd-numbered bits are encoded with longitude, the even-numbered bits are encoded with latitude, or the even-numbered bits are encoded with longitude and the odd-numbered bits are encoded with latitude, so as to form the final 2 n-bit position code.
Operation 3: and expanding an OpenStack (neutron) device to generate an IPv6 address of the terminal.
In operation 3, if n is set to 30, the GPS information includes longitude and latitude, 60-bit binary numbers including signs, integers, and fractions of the longitude and latitude are extracted as the last 60 bits of the interface ID, and the remaining first 4 bits are set as reserved bits, so that the geographical location information can be mapped to a 64-bit interface ID of the IPv6 unicast address.
Further, the 64-bit interface ID of the IPv6 unicast address is added with the 64-bit IPv6 address prefix, so as to generate the IPv6 address of the terminal.
When a terminal supporting the IPv4 protocol applies for an address, OpenStack (neutron) still generates an IPv6 address based on the above method to store the geographic position information of the address, and converts the IPv4 address into a corresponding IPv6 address containing position information through IVI, so that data statistics can be conveniently carried out through Panabit.
A third embodiment of the present invention provides a traffic statistical analysis system based on BGP route identifiers, which ensures stability of IPV4 networks and IPV6 networks in virtual machines, and fig. 3 to4 are flowcharts of a method for monitoring stability of a cloud platform-based multi-tenant network according to an embodiment of the present invention, and as shown in fig. 3 to4, the method includes the following steps:
step S1: an OpenStack cloud platform is set up, and the OpenStack cloud platform is used for providing Neutron with a virtual network function in a cloud computing environment;
an OpenStack cloud platform is built based on a cloud platform environment, and the OpenStack cloud platform comprises a control node, a network node and a computing node.
Step S2: integrating SDN equipment and Neutron to realize network resource virtualization;
the SDN device comprises an SDN controller and an SDN switch;
step S2 further includes:
s21: starting an OpenStack cloud platform;
s22: the SDN controller is started in an OpenStack Neutron plug-in mode;
s23: the SDN controller identifies the network topology, carries out path calculation, and generates a flow table according to a corresponding strategy for issuing;
s24: the SDN controller starts a monitoring thread, when the switches are increased or decreased or the ports of the switches are changed, the monitoring thread is triggered and updated to inform the controller to calculate and plan paths of the affected nodes again, update a flow table and issue the flow table;
s25: and managing and controlling the network of the OpenStack cloud platform through the SDN controller.
Step S3: positioning a terminal by adopting a satellite navigation system, generating geographical position information of the terminal, and converting the geographical position information into an IPv6 address through an OpenStack cloud platform;
step S4: the Quagga router creates a private AS and establishes an EBGP neighbor relation with the province network node router;
the province network node router is an AS4538 router.
The Quagga device receives BGP information, wherein an AS PATH (AS _ PATH) attribute in the BGP information is a recognized compliance attribute, and all AS numbers which are required to pass through from a local to a destination address are recorded in the AS _ PATH attribute according to a certain sequence.
Further, operation S4 includes the following sub-operations:
sub-operation S41: starting the Quagga;
sub-operation S42: establishing a private AS and an province network node router to establish an EBGP neighbor relation;
sub-operation S43: receiving a routing entry, and setting a community attribute to NO _ ADVERTISE;
sub-operation S44: and carrying out BGP information acquisition on the Quagga through Panabit.
Step S5: collecting BGP information, IPv4 data and IPv6 data, and converting the IPv4 data into IPv6 data through IVI;
the satellite navigation system performs IPv6 address conversion on a physical address obtained after the terminal is positioned through OpenStack (neutron) and distributes the address to the terminal, and performs IPv4 and IPv6 data conversion through IVI to achieve effective acquisition of the data.
The IPv4 address would first be translated into a 6TO4 address, for example: if the resulting IPV6 address is: 2002:79c2:391c:8:21a:4dff: fe39: d3e, then 79c2:391c behind 2002 is converted into decimal corresponding IP121.194.57.28(79 is 121, c2 is 194, 39 is 57, 1c is 28), the IPv4 address would correspond TO 6TO4 address, and the 6TO4 address would correspond TO IPv6 address with geographical location information.
Due to the expandability of the IPv6 data packet, the data converted by the IVI can have the two IPv6 addresses at the same time, and the Panabit device can respectively output IPv4 data and IPv6 data according to the two IPv6 addresses.
Step S6: BGP information, IPv4 data and IPv6 network data are counted and identified through the Panabit equipment.
The Panabit equipment mainly achieves the functions of receiving the event logs and the flow logs of the Panabit flow control system, storing, inquiring, analyzing, counting, auditing and the like to count and identify BGP information, IPv4 and IPv6 network data, wherein the data are stored in a MySQL database, and then the database is called through a PHP scripting language to be presented in a Web interface mode.
In the existing network environment, a BGP data information statistical platform built by OpenStack and SDN modes can accurately collect network layer information, based on IPv4 and IPv6 protocols, statistical analysis of IPv4 and IPv6 data traffic is achieved in a multi-dimensional mode from autonomous regions of data access and terminal geographical position information, and effective data support is provided for safe operation and information-based safe deployment of the network platform. The AS PATH (AS _ PATH) attribute in the BGP information is a recognized compliance attribute, and the AS _ PATH attribute records, in a certain order, all AS numbers that a certain route passes through from the local to the destination address. The navigation system can acquire data source and destination geographic position information, the AS _ PATH information of BGP can acquire the route trend of the data, and the traffic is statistically analyzed based on different dimensions and layers.
The above-mentioned embodiments are intended to illustrate the objects, technical solutions and advantages of the present invention in further detail, and it should be understood that the above-mentioned embodiments are only exemplary embodiments of the present invention and are not intended to limit the present invention, and any modifications, equivalents, improvements and the like made within the spirit and principle of the present invention should be included in the protection scope of the present invention.
Claims (9)
1. A traffic statistical analysis system based on BGP route identification comprises:
the OpenStack cloud platform is used for managing the virtual machine and providing a Neutron of a virtual network function in a cloud computing environment;
the satellite navigation system is used for positioning the terminal and generating geographic position information of the terminal, and the geographic position information is converted into an IPv6 address through the OpenStack cloud platform;
the Quagga router establishes a private AS and establishes an EBGP neighbor relation with the province network node router;
the SDN equipment is integrated with a Neutron of an OpenStack cloud platform to realize network resource virtualization, and comprises an SDN controller and an SDN switch;
the IVI is connected with the SDN switch port and used for converting IPv4 data collected from the SDN switch port into a 6TO4 address, and the 6TO4 address corresponds TO an IPv6 address with position information;
the Panabit equipment is connected with ports of the Quagga, the IVI and the SDN switch and used for counting and identifying BGP information, IPv4 data and IPv6 data, wherein the BGP information comprises AS path attributes, and the AS path attributes record all AS numbers which a certain route passes through from local to a destination address according to a preset sequence;
the data generated by the IVI comprise the IPv6 address with the position information corresponding TO the 6TO4 address and the IPv6 address converted from the geographic position information through the OpenStack cloud platform, the Panabit device identifies IPv4 data through the IPv6 address with the position information, and identifies IPv6 data through the IPv6 address converted from the geographic position information.
2. The BGP route identification based traffic statistic analysis system of claim 1,
the SDN controller is used for identifying network topology, calculating paths, generating a flow table according to corresponding strategies and issuing the flow table, and performing QOS (quality of service) control on different services to realize the stability of the tenant virtual machine network;
the SDN controller configures and manages the SDN switch through an OpenFlow protocol, and data are forwarded through a flow table.
3. The BGP route identification-based traffic statistic analysis system according to claim 2, where the SDN controller is further configured to perform data mirroring and offloading operations on SDN switch ports accessed by the Panabit and IVI to facilitate collection of IPv4 and IPv6 traffic.
4. The BGP route identification based traffic statistic analysis system of claim 1,
the virtual machine realizes data transmission with the SDN switch through the vSwitch; and the virtual machine transmits the node information of the cloud platform to Neutron through the OVS agent to complete the request of the geographic position and the IP address of the virtual machine.
5. A traffic statistic analysis method based on BGP route identification is characterized by comprising the following steps:
s1, an OpenStack cloud platform is set up, and the OpenStack cloud platform is used for providing Neutron with a virtual network function in a cloud computing environment;
s2, integrating SDN equipment with the Neutron to realize network resource virtualization;
s3, positioning the terminal by adopting a satellite navigation system, generating the geographical position information of the terminal, and converting the geographical position information into an IPv6 address through an OpenStack cloud platform;
s4, the Quagga router creates a private AS and establishes an EBGP neighbor relation with the province network node router;
s5, collecting BGP information, IPv4 data and IPv6 data, converting the IPv4 data into a 6TO4 address through IVI, wherein the 6TO4 address corresponds TO the IPv6 address with position information, the BGP information comprises AS path attributes, and the AS path attributes record all AS numbers which a certain route passes through from local TO destination addresses according TO a preset sequence;
s6, counting and identifying BGP information, IPv4 data and IPv6 data through the Panabit equipment;
the data generated by the IVI comprise the IPv6 address with the position information corresponding TO the 6TO4 address and the IPv6 address converted from the geographic position information through the OpenStack cloud platform, the Panabit device identifies IPv4 data through the IPv6 address with the position information, and identifies IPv6 data through the IPv6 address converted from the geographic position information.
6. The BGP route identification-based traffic statistic analysis method according to claim 5, wherein the SDN device includes an SDN controller and an SDN switch;
step S2 further includes:
s21: starting an OpenStack cloud platform;
s22: the SDN controller is started in an OpenStack Neutron plug-in mode;
s23: the SDN controller identifies the network topology, carries out path calculation, and generates a flow table according to a corresponding strategy for issuing;
s24: the SDN controller starts a monitoring thread, when the switches are increased or decreased or the ports of the switches are changed, the monitoring thread is triggered and updated to inform the controller to calculate and plan paths of the affected nodes again, update a flow table and issue the flow table;
s25: and managing and controlling the network of the OpenStack cloud platform through an SDN controller.
7. The BGP route identification-based traffic statistic analysis method according to claim 5, wherein step S4 further includes:
s41: starting a Quagga router;
s42: establishing a private AS and an province network node router to establish an EBGP neighbor relation;
s43: receiving a routing entry, and setting a community attribute to NO _ ADVERTISE;
s44: BGP information acquisition is carried out on the Quagga router through a Panabit device.
8. The BGP route identification based traffic statistic analysis method of claim 5,
when the BGP router announces a route to other AS, the local AS number is added at the forefront of the AS path list, the adjacent AS number nearest to the local AS number is arranged at the front, and the other AS numbers are sequentially arranged.
9. The traffic statistic analysis method based on BGP route identification as claimed in claim 5, wherein Quagga device receives serialized message from Panabit device from UDP port 161, obtains node corresponding to BGP management variable in MIB tree through decoding, group name verification and analysis, traverses all rows of BGP table through GetNextRequest PDU to obtain value of management variable, and forms the value of management variable into response message.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910791101.8A CN110519262B (en) | 2019-08-26 | 2019-08-26 | Traffic statistical analysis system and method based on BGP routing identification |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910791101.8A CN110519262B (en) | 2019-08-26 | 2019-08-26 | Traffic statistical analysis system and method based on BGP routing identification |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110519262A CN110519262A (en) | 2019-11-29 |
| CN110519262B true CN110519262B (en) | 2022-07-12 |
Family
ID=68627797
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910791101.8A Active CN110519262B (en) | 2019-08-26 | 2019-08-26 | Traffic statistical analysis system and method based on BGP routing identification |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110519262B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113285879B (en) * | 2021-05-19 | 2022-11-25 | 郑州埃文计算机科技有限公司 | Method for carrying out network security transmission by bypassing appointed geographic area |
| CN113747470A (en) * | 2021-08-09 | 2021-12-03 | 咪咕音乐有限公司 | Interface flow analysis method, routing equipment and storage medium |
| CN114095417B (en) * | 2022-01-19 | 2022-05-20 | 融智通科技(北京)股份有限公司 | Programmable routing switch, system and method |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102394794A (en) * | 2011-11-04 | 2012-03-28 | 中国人民解放军国防科学技术大学 | Coordinated monitoring method for preventing BGP routing hijacking |
| CN105657080A (en) * | 2016-03-09 | 2016-06-08 | 浙江安正科技股份有限公司 | IP address configuration method and system |
| CN107370642A (en) * | 2017-09-04 | 2017-11-21 | 赛尔网络有限公司 | One kind is based on cloud platform multi-tenant network smoothness monitoring system and method |
| CN108718247A (en) * | 2018-04-16 | 2018-10-30 | 哈尔滨工业大学 | A kind of Autonomous Domain grade method for simulating network based on virtualization technology |
| CN109246200A (en) * | 2018-08-17 | 2019-01-18 | 下代互联网重大应用技术(北京)工程研究中心有限公司 | A kind of service system and method based on virtual CDN |
-
2019
- 2019-08-26 CN CN201910791101.8A patent/CN110519262B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102394794A (en) * | 2011-11-04 | 2012-03-28 | 中国人民解放军国防科学技术大学 | Coordinated monitoring method for preventing BGP routing hijacking |
| CN105657080A (en) * | 2016-03-09 | 2016-06-08 | 浙江安正科技股份有限公司 | IP address configuration method and system |
| CN107370642A (en) * | 2017-09-04 | 2017-11-21 | 赛尔网络有限公司 | One kind is based on cloud platform multi-tenant network smoothness monitoring system and method |
| CN108718247A (en) * | 2018-04-16 | 2018-10-30 | 哈尔滨工业大学 | A kind of Autonomous Domain grade method for simulating network based on virtualization technology |
| CN109246200A (en) * | 2018-08-17 | 2019-01-18 | 下代互联网重大应用技术(北京)工程研究中心有限公司 | A kind of service system and method based on virtual CDN |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110519262A (en) | 2019-11-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110519262B (en) | Traffic statistical analysis system and method based on BGP routing identification | |
| CN104780096B (en) | A kind of system controlling virtual network and Virtual Network Controller node | |
| CN101911600B (en) | Method and system via the Mapless global traffic load balancing of Anycast | |
| CN107370642B (en) | Multi-tenant network stability monitoring system and method based on cloud platform | |
| Misra et al. | Network routing: fundamentals, applications, and emerging technologies | |
| CN107547242B (en) | The acquisition methods and device of VM configuration information | |
| CN112491636B (en) | Data processing method and device and computer storage medium | |
| CN100493003C (en) | Automatic discovering and managing method for extendable interconnection network measurement server | |
| US20140317313A1 (en) | Nat sub-topology management server | |
| CN103685583A (en) | Method and system for resolving domain names | |
| KR20130101618A (en) | System and method for operating network based on network virtualization | |
| EP3379781B1 (en) | Method for counting bgp community attribute or extended community attribute flow value, and device | |
| JPWO2014142258A1 (en) | COMMUNICATION SYSTEM, CONTROL DEVICE, ADDRESS ALLOCATION METHOD, AND PROGRAM | |
| CN107454132B (en) | Method and device for supporting multi-tenant network transmission | |
| CN109246200B (en) | Service system and method based on virtual CDN | |
| CN110875889B (en) | Method and device for acquiring path | |
| CN114244763B (en) | Dynamic network topology management method and system based on rule engine | |
| US11277336B2 (en) | Tunnel-based network connectivity for computing clusters | |
| JP2002252631A (en) | Vpn information providing system and its method | |
| CN106506247B (en) | Virtual network creating method and device | |
| JP2015128325A (en) | Virtual network management server and edge router | |
| CN112235158B (en) | Flow mirroring method and device, virtual machine platform and storage medium | |
| CN106789651B (en) | Method and system for preventing cloud server network from generating broadcast storm | |
| CN117221272A (en) | SID allocation method and device, electronic equipment and storage medium | |
| CN117729103A (en) | Deployment method, system and network system of distributed network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |