CN110808862A - Method for collecting data of electric power industrial control network equipment based on SNMP protocol - Google Patents

Method for collecting data of electric power industrial control network equipment based on SNMP protocol Download PDF

Info

Publication number
CN110808862A
CN110808862A CN201911085158.2A CN201911085158A CN110808862A CN 110808862 A CN110808862 A CN 110808862A CN 201911085158 A CN201911085158 A CN 201911085158A CN 110808862 A CN110808862 A CN 110808862A
Authority
CN
China
Prior art keywords
data
snmp
configuration
network equipment
module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201911085158.2A
Other languages
Chinese (zh)
Inventor
王小东
邹丛林
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Tiandihexing Technology Co Ltd
Original Assignee
Beijing Tiandihexing Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Tiandihexing Technology Co Ltd filed Critical Beijing Tiandihexing Technology Co Ltd
Priority to CN201911085158.2A priority Critical patent/CN110808862A/en
Publication of CN110808862A publication Critical patent/CN110808862A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/02Standardisation; Integration
    • H04L41/0213Standardised network management protocols, e.g. simple network management protocol [SNMP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0893Assignment of logical groups to network elements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/2866Architectures; Arrangements
    • H04L67/30Profiles

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer And Data Communications (AREA)

Abstract

The invention discloses a method for collecting data of an electric power industrial control network device based on an SNMP protocol, which is realized by a data collection system, wherein the data collection system is connected with SNMP AGENT network devices through a switch, the data collection system comprises a configuration module, a data receiving module and a data storage module, and the method comprises the following steps: s1, setting the configuration of a user SNMP V3; s2, the data receiving module sends a request for SNMP V3 data of the fixed OID to the port of the network equipment SNMP AGENT; s3, after the port SNMP AGENT of the network device receives the SNMP GET request, returning a data message with the ENGINEID; s4, the data receiving module receives the data message and then analyzes the message to obtain msgAuthorativeEngineID; s5, writing the SNMP V3 user configuration and ENGINNEID into the configuration file together, so as to realize the data transceiving of the corresponding SNMP V3.

Description

Method for collecting data of electric power industrial control network equipment based on SNMP protocol
Technical Field
The invention relates to the field of network data processing, in particular to a method for acquiring data of electric power industrial control network equipment based on an SNMP protocol.
Background
In the existing power network, the SNMP data communication of the industrial control equipment adopts a communication mode of V1 and V2, but because SNMP V1 and V2 are plaintext transmission, the communicated data is easy to steal and is easy to be attacked by SNMP FUZZER, so that the industrial control equipment is paralyzed, and the industrial control equipment cannot work normally. The network equipment in the power field is not capable of supporting the application of the SNMP V3, and a data acquisition method capable of supporting the acquisition of the SNMP V3 is urgently needed to meet the use requirements of people.
Disclosure of Invention
The invention aims to solve the problems and provides a method for acquiring the data of the industrial power control network equipment based on an SNMP (simple network management protocol) for improving the safety.
In order to achieve the purpose, the technical scheme of the invention is as follows:
a method for collecting data of industrial power control network equipment based on an SNMP protocol is realized through a data collection system, the data collection system is connected with SNMP AGENT network equipment through a switch, the data collection system comprises a configuration module for setting SNMP V3 configuration, a data receiving module for receiving and sending data and a data storage module for storing data, and the method for collecting the data of the industrial power control network equipment comprises the following steps:
s1, setting the configuration of the SNMP V3 of the user in the configuration module;
s2, the data acquisition system sends a request for SNMP V3 data of the fixed OID to the port of the network equipment SNMP AGENT through the data receiving module;
s3, after the port SNMP AGENT of the network device receives the SNMP GET request, returning a data message with the ENGINEID;
s4, after receiving the data message, the data receiving module of the data acquisition system analyzes the message to obtain msgAuthorativeEngineID;
s5, writing the SNMP V3 user configuration and ENGINNEID into the configuration file together, and then the data of the corresponding SNMPV3 can be received and sent.
Furthermore, the configuration module also comprises a data processing module; when the data acquisition system receives an MIB file data packet of the network equipment SNMP V3, the data processing module analyzes the data format of the corresponding data according to the MIB file, and finally transmits the analyzed data to the data storage module for storage.
Furthermore, a data acquisition port of the data acquisition system is connected with the dispatching data network switch, and a port of the analysis system is connected with the station control layer switch.
Compared with the prior art, the invention has the advantages and positive effects that:
the invention can support data acquisition of SNMP V3, solves the problem that sensitive data is easy to steal due to data plaintext transmission of SNMP V1 and SNMP V2, and users and data of the SNMP V3 communication mechanism sending SNMP data are encrypted, thereby effectively avoiding the situation that network equipment is attacked by SNMP FUZZER; on the other hand, the method supports the import of the private MIB files of each manufacturer, and avoids the situation that the manufacturer is required to configure the corresponding private MIB into the acquisition equipment when a client needs to support one private MIB data, thereby saving certain labor cost and time cost.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
FIG. 1 is a diagram of a data acquisition system connected to a framework of SNMP AGENT network devices;
FIG. 2 is a flow diagram of a data acquisition system acquiring ENGINEID;
FIG. 3 is a flow chart of the operation of the data processing module.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived from the embodiments of the present invention by a person skilled in the art without any creative effort, should be included in the protection scope of the present invention.
As shown in fig. 1, fig. 2 and fig. 3, the present invention discloses a method for acquiring SNMP V3 data in an industrial control power network, which is applied to acquiring SNMP V3 information of a network device, where the network device includes: switches, workstations, servers, etc.
The invention utilizes the configuration of a user V3 to send an SNMP V3 data request of a fixed OID to a SNMP AGENT terminal to acquire the ENGINEID; the data corresponding to the SNMP V3 is received and sent by configuring the corresponding ENGINEID; and obtaining private SNMP data by using a private MIB library file batch import method.
The invention provides a data acquisition system for acquiring SNMP V3 data acquired by an industrial control power network, which is used for analyzing SNMP V3 data, classifying the acquired data, storing and reading SNMP V3 configuration information and inquiring and storing the acquired data of SNMP V3. Service ports of a data acquisition and analysis system in the data acquisition system are respectively connected to a dispatching data network switch and a station control layer switch.
The data acquisition system of the invention comprises three modules: a configuration module, a data receiving module and a data storage module, which are specifically shown in fig. 1;
the data communication of the SNMP V3 mainly depends on the ENGINEID, and many manufacturers cannot support the data acquisition of the SNMP V3 because ENGINEDID cannot be acquired. The flow of acquiring the ENGINEID is shown in fig. 2:
after the user issues the configuration of the SNMP V3, the data acquisition system sends a request for SNMP V3 data of the fixed OID to the network equipment SNMP AGENT terminal;
after receiving the SNMP GET request, the network device SNMP AGENT returns a data message with the ENGINEID;
and acquiring msgAuthorativeEngineID by analyzing the message, and finally writing the user configuration and ENGINNEID of the SNMP V3 into a configuration file.
In addition, the configuration module also comprises a data processing module, the data acquisition system stores the private MIB files in the corresponding directory by importing the private MIB files of the user, and the data processing module can analyze different SNMP V3 data of each manufacturer.
The data processing module flow is shown in FIG. 3;
the data processing module receives a data packet of the network equipment SNMP V3, analyzes the data format of the corresponding data according to the MIB file, and finally reports the data to the data storage module. The data storage module stores the reported data in a database, and the stored acquisition information is stored for at least 3 months.
The invention can support data acquisition of SNMP V3, solves the problem that sensitive data is easy to steal due to data plaintext transmission of SNMP V1 and SNMP V2, and users and data of the SNMP V3 communication mechanism sending SNMP data are encrypted, thereby effectively avoiding the situation that network equipment is attacked by SNMP FUZZER; on the other hand, the method supports the import of the private MIB files of each manufacturer, and avoids the situation that the manufacturer is required to configure the corresponding private MIB into the acquisition equipment when a client needs to support one private MIB data, thereby saving certain labor cost and time cost.

Claims (3)

1. A method for collecting electric power industrial control network equipment data based on SNMP protocol is characterized in that: the method for collecting the data of the electric power industrial control network equipment is realized through a data collection system, the data collection system is connected with SNMPAGENT network equipment through a switch, the data collection system comprises a configuration module for setting SNMP V3 configuration, a data receiving module for receiving and sending data and a data storage module for storing data, and the method for collecting the data of the electric power industrial control network equipment comprises the following steps:
s1, setting the configuration of the SNMP V3 of the user in the configuration module;
s2, the data acquisition system sends SNMPV3 data request of fixed OID to the port of the network equipment SNMP AGENT through the data receiving module;
s3, after the port SNMP AGENT of the network device receives the SNMP GET request, returning a data message with the ENGINEID;
s4, after receiving the data message, the data receiving module of the data acquisition system analyzes the message to obtain msgAuthorativeEngineID;
s5, writing the SNMP V3 user configuration and ENGINNEID into the configuration file together, so as to realize the data transceiving of the corresponding SNMP V3.
2. The SNMP protocol-based method for collecting data of an electrical power industry control network device according to claim 1, wherein: the configuration module also comprises a data processing module; when the data acquisition system receives an MIB file data packet of the network equipment SNMP V3, the data processing module analyzes the data format of the corresponding data according to the MIB file, and finally transmits the analyzed data to the data storage module for storage.
3. The SNMP protocol-based method for collecting data of an electrical power industry control network device according to claim 1, wherein: the data acquisition port of the data acquisition system is connected with the dispatching data network switch, and the port of the analysis system is connected with the station control layer switch.
CN201911085158.2A 2019-11-08 2019-11-08 Method for collecting data of electric power industrial control network equipment based on SNMP protocol Pending CN110808862A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201911085158.2A CN110808862A (en) 2019-11-08 2019-11-08 Method for collecting data of electric power industrial control network equipment based on SNMP protocol

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201911085158.2A CN110808862A (en) 2019-11-08 2019-11-08 Method for collecting data of electric power industrial control network equipment based on SNMP protocol

Publications (1)

Publication Number Publication Date
CN110808862A true CN110808862A (en) 2020-02-18

Family

ID=69501489

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201911085158.2A Pending CN110808862A (en) 2019-11-08 2019-11-08 Method for collecting data of electric power industrial control network equipment based on SNMP protocol

Country Status (1)

Country Link
CN (1) CN110808862A (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050278692A1 (en) * 2004-06-15 2005-12-15 Manjula Sridhar SNMP agent code generation and SNMP agent framework for network management application development
CN101043361A (en) * 2006-06-16 2007-09-26 华为技术有限公司 Method and system for SNMP protocol based network management
CN106452839A (en) * 2016-09-05 2017-02-22 杭州华为数字技术有限公司 Message report method and device
CN106787163A (en) * 2016-11-10 2017-05-31 国家电网公司 A kind of centralized configuration and long distance control system for substation network communication device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050278692A1 (en) * 2004-06-15 2005-12-15 Manjula Sridhar SNMP agent code generation and SNMP agent framework for network management application development
CN101043361A (en) * 2006-06-16 2007-09-26 华为技术有限公司 Method and system for SNMP protocol based network management
CN106452839A (en) * 2016-09-05 2017-02-22 杭州华为数字技术有限公司 Message report method and device
CN106787163A (en) * 2016-11-10 2017-05-31 国家电网公司 A kind of centralized configuration and long distance control system for substation network communication device

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
YEKTA TURK,ALI AKMAN: ""Management of Low Powered Personal Area Networks Using Compression in SNMPv3"", 《2018 IEEE/ACS 15TH INTERNATIONAL CONFERENCE ON COMPUTER SYSTEMS AND APPLICATIONS (AICCSA)》 *
佚名: ""SNMP学习笔记之SNMPv3的报文格式以及基于USM的认证和加密过程"", 《HTTPS://BLOG.CSDN.NET/DENGXIANGBAO3167/ARTICLE/DETAILS/102365120?UTM_MEDIUM=DISTRIBUTE.PC_RELEVANT.NONE-TASK-BLOG-2~DEFAULT~BAIDUJS_TITLE~DEFAULT-0.NO_SEARCH_LINK&SPM=1001.2101.3001.4242.1》 *
钱志浩,王建中: ""基于SNMPv3的电力设备监控系统的设计与实现"", 《计算机应用与软件》 *

Similar Documents

Publication Publication Date Title
CN103746849A (en) IT (information technology) operation and maintenance management system based on mobile intelligent terminal
CN103248669A (en) Distributed software upgrade system and method
CN106487444A (en) A kind of method and system realizing mobile terminal and telecommunication apparatus data communication
CN111083296B (en) Hotel intelligent housekeeper system based on voice recognition
CN111865710A (en) Remote equipment debugging system based on public network environment
CN103873285A (en) Unified information network management platform
CN101616023A (en) A kind of method of cluster being implemented monitoring by note
CN100366013C (en) Accident power-off remote transmitting alarming system and alarming method thereof
CN102075351A (en) Network management remote control method and system
CN111884938B (en) Router information acquisition method and device
CN102571394A (en) Simple network management protocol (SNMP) network managing method and system
CN101699915A (en) Mainboard, method for realizing network locking/ card locking function and mobile terminal
CN101022364A (en) Trap message reporting method and system warning information resource/warning agent service device
CN110808862A (en) Method for collecting data of electric power industrial control network equipment based on SNMP protocol
CN111953413A (en) Optical line terminal OLT system
CN112383543B (en) Power equipment monitoring data processing system
CN101237663B (en) Operation and maintenance management method and system for base station device in wireless communication system
CN111277374A (en) Method for sampling dual redundant SV of digital device and intelligent substation protection device
CN110677303A (en) Network management system
US9654369B2 (en) Mobile terminal network port management method and device
CN112312376B (en) Method and system for remotely and interactively managing multifunctional electric meter
CN205353641U (en) Management system based on sewing machine
CN103987017A (en) Method and system for establishing service access in WLAN
CN108174396B (en) A method of the wireless CPE terminals of electric power LTE are monitored based on northbound interface
CN103532800B (en) M2M household networks and the method that Intelligent treatment is carried out according to the network

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20200218

RJ01 Rejection of invention patent application after publication