Monitoring management system of internet assets
Technical Field
The invention relates to internet assets, in particular to a monitoring management system of internet assets.
Background
In the internet information age, the assets of an enterprise include not only physical money, physical assets, but also assets distributed over the internet. The internet assets refer to all network assets of an enterprise, and include physical assets such as hardware equipment and all virtual assets related to the enterprise.
At present, the internet asset information is collected mainly by means of a scanning tool, and the collected assets are scanned by the scanning tool to obtain detailed information of the assets. However, this approach requires manual collection of assets and addition to the scanning tool for scanning, which is very inefficient. In addition, the existing internet asset monitoring and management system cannot be connected with a client seeking asset service quickly, and cannot meet the requirement of the asset service in time.
Disclosure of Invention
Technical problem to be solved
Aiming at the defects in the prior art, the invention provides the monitoring management system for the internet assets, which can effectively overcome the defects that the efficiency of collecting the internet assets is low and the connection with the client seeking the asset service cannot be quickly established in the prior art.
(II) technical scheme
In order to achieve the purpose, the invention is realized by the following technical scheme:
a monitoring management system of internet assets comprises a server, wherein the server is connected with an address information acquisition module used for acquiring address information of each site, the server is connected with an attribute information acquisition module used for acquiring attribute information of each site, the server is connected with a layer-building network construction module used for generating a layer-building network corresponding to each site according to the address information and the attribute information, and the server is connected with a sequencing integration module used for sequencing the asset information corresponding to each site according to the layer-building network;
the server is connected with a data acquisition module used for acquiring target port data, the server is connected with a data generation module used for generating a TCP message according to the target port data, the server is connected with a data transmission module used for sending the TCP message to a client and receiving a response TCP message from the client, the server is connected with a data acquisition module used for acquiring carried data from the response TCP message, the data acquisition module is connected with a reading connection module used for reading the carried data and establishing connection with the client, and the server is connected with an equipment management module used for managing the client establishing connection.
Preferably, the address information acquisition module acquires address information of each site, including:
the method comprises the steps of obtaining the address of each entry site, obtaining the address information of each entry site and the address of the next layer site contained in each entry site, and obtaining the address information of the next layer site and the address of the next layer site contained in the address of the next layer site if the address of the next layer site is not empty, and stopping until the address of the site is empty or the number of currently obtained layers is larger than the preset number of layers.
Preferably, the step of generating the hierarchical network corresponding to each site by the hierarchical network building module according to the address information and the attribute information includes:
and if the root node contains the next node, taking the next node as a subbranch of the root node until each subbranch does not contain the next node any more.
Preferably, the attribute information includes a version attribute and a port code.
Preferably, the sorting and integrating module sorts the asset information corresponding to each site according to a hierarchical network, including:
acquiring the number of layers of the layer network corresponding to each station, and sequencing the asset information of each station from large to small according to the number of the layer network layers;
if the sites with the same number of the layer-building network layers exist, sequencing the sites from large to small according to the version attributes;
and if the sites with the same version attribute exist, sequencing the sites from large to small according to the port codes.
Preferably, the data carried by the data acquisition module acquired from the response TCP packet includes a return port IP and a return port number, and the read connection module reads the return port IP and the return port number and performs data comparison with the target port data.
Preferably, the destination port data includes a port IP and a port number.
Preferably, when the reading connection module judges that the return port IP and the return port number are completely the same as the port IP and the port number, connection is established with the corresponding client; otherwise, the connection with the client is not established.
Preferably, the device management module is configured to delete or modify the client that establishes the connection, or add a new client that establishes the connection.
(III) advantageous effects
Compared with the prior art, the monitoring management system for the internet assets can automatically acquire the related information of the internet assets through the address information acquisition module and the attribute information acquisition module, and can visually display the internet assets through the layer network construction module and the sequencing integration module; meanwhile, the method can be quickly connected with a client seeking the asset service, so that the asset service is quickly responded.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below. It is obvious that the drawings in the following description are only some embodiments of the invention, and that for a person skilled in the art, other drawings can be derived from them without inventive effort.
FIG. 1 is a schematic diagram of the system of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention. It is to be understood that the embodiments described are only a few embodiments of the present invention, and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
A monitoring and management system of internet assets comprises a server, wherein the server is connected with an address information acquisition module used for acquiring address information of each site, the server is connected with an attribute information acquisition module used for acquiring attribute information of each site, the server is connected with a layer-building network construction module used for generating layer-building networks corresponding to each site according to the address information and the attribute information, and the server is connected with a sequencing and integrating module used for sequencing asset information corresponding to each site according to the layer-building networks.
The address information acquisition module acquires address information of each station, and the method comprises the following steps:
the method comprises the steps of obtaining the address of each entry site, obtaining the address information of each entry site and the address of the next layer site contained in each entry site, and obtaining the address information of the next layer site and the address of the next layer site contained in the address of the next layer site if the address of the next layer site is not empty, and stopping until the address of the site is empty or the number of currently obtained layers is larger than the preset number of layers.
The layer network construction module generates a layer network corresponding to each station according to the address information and the attribute information, and the method comprises the following steps:
and if the root node contains the next node, taking the next node as a subbranch of the root node until each subbranch does not contain the next node any more. The attribute information includes version attribute and port code.
The sequencing integration module sequences the asset information corresponding to each site according to the hierarchical network, and comprises the following steps:
acquiring the number of layers of the layer network corresponding to each station, and sequencing the asset information of each station from large to small according to the number of the layer network layers;
if the sites with the same number of the layer-building network layers exist, sequencing the sites from large to small according to the version attributes;
and if the sites with the same version attribute exist, sequencing the sites from large to small according to the port codes.
The related information of the internet assets is automatically acquired through the address information acquisition module and the attribute information acquisition module, and the internet assets can be visually displayed through the layer network construction module and the sequencing integration module.
The server is connected with a data acquisition module used for acquiring target port data, the server is connected with a data generation module used for generating a TCP message according to the target port data, the server is connected with a data transmission module used for sending the TCP message to a client and receiving a response TCP message from the client, the server is connected with a data acquisition module used for acquiring carried data from the response TCP message, the data acquisition module is connected with a reading connection module used for reading the carried data and establishing connection with the client, and the server is connected with a device management module used for managing the client which establishes connection.
The data acquisition module acquires the carried data from the response TCP message and comprises a return port IP and a return port number, and the reading connection module reads the return port IP and the return port number and compares the data with the target port data. Wherein the destination port data includes a port IP and a port number.
When the reading connection module judges that the return port IP and the return port number are completely the same as the port IP and the port number, connection is established with the corresponding client; otherwise, the connection with the client is not established.
The device management module is used for deleting and modifying the client side establishing the connection or adding a new client side establishing the connection.
The asset service can be quickly responded to by effectively identifying the port and quickly establishing connection with the client seeking the asset service.
The above examples are only intended to illustrate the technical solution of the present invention, but not to limit it; although the present invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; such modifications and substitutions do not depart from the spirit and scope of the corresponding technical solutions.