CN113242150A - Calico network plug-in-based data packet capturing method and system in K8s - Google Patents
Calico network plug-in-based data packet capturing method and system in K8s Download PDFInfo
- Publication number
- CN113242150A CN113242150A CN202110620336.8A CN202110620336A CN113242150A CN 113242150 A CN113242150 A CN 113242150A CN 202110620336 A CN202110620336 A CN 202110620336A CN 113242150 A CN113242150 A CN 113242150A
- Authority
- CN
- China
- Prior art keywords
- configuration
- capturing
- operator
- packet
- grabbing
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
- H04L41/0813—Configuration setting characterised by the conditions triggering a change of settings
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/445—Program loading or initiating
- G06F9/44521—Dynamic linking or loading; Link editing at or after load time, e.g. Java class loading
- G06F9/44526—Plug-ins; Add-ons
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0866—Checking the configuration
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
- G06F2009/45591—Monitoring or debugging support
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/455—Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
- G06F9/45533—Hypervisors; Virtual machine monitors
- G06F9/45558—Hypervisor-specific management and integration aspects
- G06F2009/45595—Network integration; Enabling network access in virtual machine instances
Abstract
The invention provides a data packet capturing method and a data packet capturing system based on a Calico network plug-in K8s, which comprises a packet monitoring and capturing step, wherein the packet monitoring and capturing step comprises the following steps: grabbing step 1: the Operator acquires initial configuration, wherein the configuration comprises monitoring configuration and packet capturing and filtering configuration; and (2) a grabbing step: the Operator starts to monitor Calico WorkloadEndpoint resources on the node according to the monitoring configuration; a grabbing step 3: the Operator monitors that a WorkloadEndpoint object is created; and a grabbing step 4: the Operator acquires field information in a WorkloadEndpoint object; and a grabbing step 5: the Operator generates a packet capturing rule according to the packet capturing filter configuration and the field information acquired in the capturing step 4; and a grabbing step 6: and the Operator starts a packet capturing subprogram according to the packet capturing rule to start packet capturing. The invention can obtain the information of the Pod (application) change in time, correspondingly modify the operation of capturing the data packet, is difficult to lose the application service data and does not lose or lose as little as possible.
Description
Technical Field
The invention relates to the technical field of data packet capture, in particular to a data packet capture method and system based on a Calico network plug-in K8 s.
Background
In a conventional IT environment, the basic implementation of network traffic monitoring is as follows: and filtering and capturing data packets of the network card of the server, and then analyzing the captured data packets. The network card of the server and the application deployed on the server belong to relatively stable components, and the data packet capturing operation does not need to be changed frequently. However, in the Kubernetes (K8s) cluster environment, Pod can be created, destroyed, and migrated at any time, which means that the application and the network card corresponding to the application will change at any time, which brings great challenges to packet capture: how to obtain the information of the Pod (application) change in time and correspondingly modify the operation of capturing the data packet, so that the application service data is not lost or is lost as little as possible, and then more accurate network flow analysis and monitoring can be carried out.
One method for acquiring all the veth endpoints on the node is to use netlink API provided by linux operating system to poll regularly, but this method has the defects that: in the mode of timed polling, information of Pod change may be lost; timed polling is relatively performance intensive because the number of network interfaces that change is small relative to all (perhaps hundreds) of interfaces on a node; an additional method is needed to obtain Pod information corresponding to the path endpoint, depending on the specific network plug-in and the implementation of the container runtime.
Chinese patent publication No. CN110213198A discloses a network traffic monitoring method and system, the monitoring method includes: step S1: the monitoring network equipment is used for capturing a data packet from the network data generated by the first service module; step S2: storing the data packet; step S3: analyzing the data packet, and generating a dynamic rule according to an analysis result; step S4: importing a static rule, and monitoring and filtering the network data generated by the first service module according to the dynamic rule and the static rule; step S5: and transmitting the network data subjected to monitoring and filtering to a second service module, wherein one of the first service module and the second service module is a network application service module, and the other one is a network interface. The network flow monitoring method and the system provided by the file have the advantages of flexible monitoring mode, reliable monitoring content and no influence on normal transmission of network data.
For the prior art, the inventor thinks that the information of Pod (application) change cannot be obtained in time in the method K8s, and then the operation of capturing a data packet cannot be modified correspondingly, so that it is difficult to achieve that application service data is not lost or is lost as little as possible, which makes it difficult to perform relatively accurate network traffic analysis and monitoring.
Disclosure of Invention
Aiming at the defects in the prior art, the invention aims to provide a method and a system for capturing a data packet based on a Calico network plug-in K8 s.
According to the data packet capturing method based on the Calico network plug-in K8s provided by the invention, the data packet capturing method comprises nodes, wherein the nodes comprise an Operator, a Calico and a packet capturing subprogram, the method comprises a packet monitoring and capturing step, and the packet monitoring and capturing step comprises the following steps:
grabbing step 1: the Operator acquires initial configuration, wherein the configuration comprises monitoring configuration and packet capturing and filtering configuration;
and (2) a grabbing step: the Operator starts to monitor Calico WorkloadEndpoint resources on the node according to the monitoring configuration;
a grabbing step 3: the Operator monitors that a WorkloadEndpoint object is created;
and a grabbing step 4: the Operator acquires field information in a WorkloadEndpoint object;
and a grabbing step 5: the Operator generates a packet capturing rule according to the packet capturing filter configuration and the field information acquired in the capturing step 4;
and a grabbing step 6: and the Operator starts a packet capturing subprogram according to the packet capturing rule to start packet capturing.
Preferably, the method further comprises a configuration changing step, the configuration changing step comprising the steps of:
variation step 1: operator obtains configuration;
and (2) a change step: restarting an Operator when the monitoring configuration is changed;
and (3) a change step: and when the configuration of the packet capturing filter is changed, the Operator regenerates the packet capturing rule and restarts a packet capturing subprogram corresponding to the packet capturing rule.
Preferably, the capturing step 1 includes obtaining the initial configuration from a local configuration file or a remote configuration center.
Preferably, the field information acquired by the Operator in the grabbing step 4 includes an interfaceName field, a pod field, and an ipNetworks field.
Preferably, the changing step 1 includes the Operator acquiring the configuration by periodically requesting the remote configuration center or receiving an external notification.
A data packet capturing system based on a Calico network plug-in K8s comprises a packet monitoring and capturing module, wherein the packet monitoring and capturing module comprises the following modules:
grabbing module M1: the Operator acquires initial configuration, wherein the configuration comprises monitoring configuration and packet capturing and filtering configuration;
grabbing module M2: the Operator starts to monitor Calico WorkloadEndpoint resources on the node according to the monitoring configuration;
grabbing module M3: the Operator monitors that a WorkloadEndpoint object is created;
grabbing module M4: the Operator acquires field information in a WorkloadEndpoint object;
grabbing module M5: the Operator generates a packet capturing rule according to the packet capturing filter configuration and the field information acquired by the capturing module 4;
grabbing module M6: and the Operator starts a packet capturing subprogram according to the packet capturing rule to start packet capturing.
Preferably, the system further comprises a configuration change module, and the configuration change module comprises the following modules:
change module M1: operator obtains configuration;
change module M2: restarting an Operator when the monitoring configuration is changed;
change module M3: and when the configuration of the packet capturing filter is changed, the Operator regenerates the packet capturing rule and restarts a packet capturing subprogram corresponding to the packet capturing rule.
Preferably, the fetching module M1 includes obtaining an initial configuration from a local configuration file or a remote configuration center.
Preferably, the field information acquired by the Operator in the crawling module M4 includes an interfaceName field, a pod field, and an ipNetworks field.
Preferably, the change module M1 includes an Operator to obtain the configuration by periodically requesting the remote configuration center or receiving an external notification.
Compared with the prior art, the invention has the following beneficial effects:
1. the invention can obtain the information of the Pod (application) change in time, and correspondingly modify the operation of capturing the data packet, so that the application service data is difficult to lose, and the application service data is not lost or is lost as little as possible;
2. the program library libcalaco-go provided by the Calico official community has strong compatibility and applicability;
3. the K8s Operator programming model has strong robustness and fault tolerance;
4. the Operator is deployed on each node and is only responsible for monitoring the Pod on the node, so that the overall performance and reliability are improved.
Drawings
Other features, objects and advantages of the invention will become more apparent upon reading of the detailed description of non-limiting embodiments with reference to the following drawings:
FIG. 1 is a diagram of an embodiment of the present invention;
FIG. 2 is a flow chart of a snoop packet capture;
fig. 3 is a flow chart of configuration changes.
Detailed Description
The present invention will be described in detail with reference to specific examples. The following examples will assist those skilled in the art in further understanding the invention, but are not intended to limit the invention in any way. It should be noted that it would be obvious to those skilled in the art that various changes and modifications can be made without departing from the spirit of the invention. All falling within the scope of the present invention.
The embodiment of the invention discloses a data packet capturing method and system based on a Calico network plug-in K8s, and as shown in FIG. 1, the method comprises an API server and a node, wherein the API server is a K8s cluster API server and is used as a cluster control center. The node is a node in the K8s cluster that functions as a physical machine or a virtual machine running Pod.
The node in turn comprises the following components: the Operator is a monitoring program and is used for monitoring Calico WorkloadEndpoint resources on the node, generating corresponding packet capturing rules and managing packet capturing subprograms. And the packet capturing subprogram is used for capturing the data packet on the target network card according to the packet capturing rule. The application Pod is an application container whose role is to run a specific service. eth0 is a network interface inside the application Pod. Calixxx is a network interface corresponding to eth0 on a node, forms a pair of veths, and is a target network card for capturing an application Pod. Calico is one of the mainstream network plug-ins of Kubernetes cluster now, and uses the path (virtual network equipment) to provide the Pod network interface. The path is implemented as a pair of directly connected network interfaces, one end is inside the Pod, and the other end is on the node where the Pod is located. Packet fetching of a Pod (application) may be implemented as fetching a path endpoint on the node where the Pod is located. This has the advantage that no access to the Pod inside is required for the bale grabbing operation.
As shown in fig. 1 and fig. 2, the method includes a step of monitoring packet capture, and the step of monitoring packet capture includes the following steps:
grabbing step 1: the Operator obtains initial configuration, which includes monitoring configuration and packet capturing and filtering configuration. The Operator obtains the initial configuration from a local configuration file or a remote configuration center.
And (2) a grabbing step: and the Operator starts to monitor Calico WorkloadEndpoint resources on the node according to the monitoring configuration.
A grabbing step 3: the Operator monitors that a WorkloadEndpoint object is created. The Operator monitors that a new WorkloadEndpoint object is created.
And a grabbing step 4: the Operator acquires field information in the WorkloadEndpoint object. The field information acquired by the Operator in the grabbing step 4 comprises an interfaceName field, a pod field and an ipNetworks field. The Operator acquires fields such as an interface name, a pod, an ipNetworks and the like in the newly created WorkloadEndpoint object.
And a grabbing step 5: and the Operator generates a packet capturing rule according to the packet capturing filter configuration and the field information acquired in the capturing step 4. For example, the packet capture filter is configured to "capture TCP packets received by APP1 on port 1234", then the corresponding packet capture rule is: if the prefix of the above "pod" is "APP 1", then the TCP packet with the network card destination address of the above "interface name" on the capture node being "ipNetworks" and the destination port being 1234 (here, the rule of the destination address is optional, and the result of the post-capture packet is more accurate).
And a grabbing step 6: and the Operator starts a packet capturing subprogram according to the packet capturing rule to start packet capturing. The Operator starts a packet capturing subprogram and starts packet capturing.
As shown in fig. 1 and 3, the method further includes a configuration change step, and the configuration change step includes the steps of:
variation step 1: operator obtains the configuration. The variation step 1 includes the Operator acquiring the configuration by periodically requesting the remote configuration center or receiving an external notification. The Operator periodically requests the remote configuration center to obtain the latest configuration, or receives external notification to obtain the latest configuration.
And (2) a change step: and restarting the Operator when the monitoring configuration is changed. If the listening configuration changes, e.g. stops listening to applications (corresponding to one or more Pod) in the k8s namespace NS1, starts listening to applications in the k8s namespace NS2, etc., restarts the Operator (using the updated listening configuration).
And (3) a change step: and when the configuration of the packet capturing filter is changed, the Operator regenerates the packet capturing rule and restarts a packet capturing subprogram corresponding to the packet capturing rule. If the configuration of the packet capture filter changes, for example, the capture of a packet of the application APP1 (corresponding to one or more Pod) is stopped, the capture of a TCP packet received by the application APP2 at the port 1234 is stopped, the capture of a UDP packet sent by the application APP2 to the port 5678 is started, and the Operator regenerates the packet capture rule and restarts the corresponding packet capture subroutine.
The principle of the invention is as follows: (1) pod create (scheduled to a certain node due to new build or drift). (2) The Calico plug-in configures the Pod network. (3) The Operator listens to the message created by the WorkloadEndpoint from the API server through the libcalaco-go program library (the WorkloadEndpoint represents the Pod configured by the Calico plug-in for the network). (4) And the Operator generates a packet capturing rule according to the packet capturing filter configuration and the field information in the WorkloadEndpoint. (5) The Operator starts to grab the network packets of the Pod. (6) The application in Pod starts running. (7) The application in the Pod starts network communication. It can be seen that when the Pod is created, the packet capturing action is started before the internal application of the Pod starts to perform network communication, thus ensuring that the communication data of the service network is not lost.
The invention realizes the capture of data packets between the Pods (applications) based on the Calico network plug-in the Kubernetes cluster. The method is based on the program library libcalaco-go provided by the Calico official community, can be compatible with different versions of Calico, and does not depend on changes possibly occurring in the internal implementation of the Calico in the future. Based on a K8s Operator programming model, the K8s Operator programming model is an intelligent operation and maintenance mode with high robustness and fault tolerance, wherein the state of some resources in a K8s cluster is continuously monitored in a program mode, corresponding processing is carried out, and manual intervention is not needed in the whole process.
Those skilled in the art will appreciate that, in addition to implementing the system and its various devices, modules, units provided by the present invention as pure computer readable program code, the system and its various devices, modules, units provided by the present invention can be fully implemented by logically programming method steps in the form of logic gates, switches, application specific integrated circuits, programmable logic controllers, embedded microcontrollers and the like. Therefore, the system and various devices, modules and units thereof provided by the invention can be regarded as a hardware component, and the devices, modules and units included in the system for realizing various functions can also be regarded as structures in the hardware component; means, modules, units for performing the various functions may also be regarded as structures within both software modules and hardware components for performing the method.
The foregoing description of specific embodiments of the present invention has been presented. It is to be understood that the present invention is not limited to the specific embodiments described above, and that various changes or modifications may be made by one skilled in the art within the scope of the appended claims without departing from the spirit of the invention. The embodiments and features of the embodiments of the present application may be combined with each other arbitrarily without conflict.
Claims (10)
1. A data packet capturing method based on Calico network plug-in K8s is characterized by comprising a node, wherein the node comprises an Operator, Calico and a packet capturing subprogram, the method comprises a packet monitoring and capturing step, and the packet monitoring and capturing step comprises the following steps:
grabbing step 1: the Operator acquires initial configuration, wherein the configuration comprises monitoring configuration and packet capturing and filtering configuration;
and (2) a grabbing step: the Operator starts to monitor Calico WorkloadEndpoint resources on the node according to the monitoring configuration;
a grabbing step 3: the Operator monitors that a WorkloadEndpoint object is created;
and a grabbing step 4: the Operator acquires field information in a WorkloadEndpoint object;
and a grabbing step 5: the Operator generates a packet capturing rule according to the packet capturing filter configuration and the field information acquired in the capturing step 4;
and a grabbing step 6: and the Operator starts a packet capturing subprogram according to the packet capturing rule to start packet capturing.
2. The method for capturing data packets based on Calico network plug-in K8s as claimed in claim 1, wherein the method further includes a configuration change step, the configuration change step includes the following steps:
variation step 1: operator obtains configuration;
and (2) a change step: restarting an Operator when the monitoring configuration is changed;
and (3) a change step: and when the configuration of the packet capturing filter is changed, the Operator regenerates the packet capturing rule and restarts a packet capturing subprogram corresponding to the packet capturing rule.
3. The method for capturing the data packet based on the Calico network plug-in K8s as claimed in claim 1, wherein the capturing step 1 includes obtaining the initial configuration from a local configuration file or a remote configuration center.
4. The method for grabbing the data packet according to claim 1, wherein the field information obtained by the Operator in the grabbing step 4 includes an interfaceName field, a pod field and an ipNetworks field.
5. The method for capturing the data packet based on the CaLico network plug-in the K8s, according to claim 1, wherein the changing step 1 comprises an Operator obtaining the configuration by periodically requesting a remote configuration center or receiving an external notification.
6. A data packet capture system based on a Calico network plug-in K8s, characterized in that, the data packet capture method based on the Calico network plug-in K8s as claimed in claims 1-5 is applied, the system includes a monitoring packet capture module, the monitoring packet capture module includes the following modules:
grabbing module M1: the Operator acquires initial configuration, wherein the configuration comprises monitoring configuration and packet capturing and filtering configuration;
grabbing module M2: the Operator starts to monitor Calico WorkloadEndpoint resources on the node according to the monitoring configuration;
grabbing module M3: the Operator monitors that a WorkloadEndpoint object is created;
grabbing module M4: the Operator acquires field information in a WorkloadEndpoint object;
grabbing module M5: the Operator generates a packet capturing rule according to the packet capturing filter configuration and the field information acquired by the capturing module 4;
grabbing module M6: and the Operator starts a packet capturing subprogram according to the packet capturing rule to start packet capturing.
7. The system for capturing data packets based on Calico network plug-in K8s as claimed in claim 6, wherein the system further includes a configuration change module, the configuration change module includes the following modules:
change module M1: operator obtains configuration;
change module M2: restarting an Operator when the monitoring configuration is changed;
change module M3: and when the configuration of the packet capturing filter is changed, the Operator regenerates the packet capturing rule and restarts a packet capturing subprogram corresponding to the packet capturing rule.
8. The system for capturing data packets based on Calico network plug-in K8s as claimed in claim 6, wherein said capturing module M1 comprises obtaining initial configuration from local configuration file or remote configuration center.
9. The system for grabbing data packets according to claim 6, wherein the field information obtained by the Operator in the grabbing module M4 comprises an interfaceName field, a pod field and an ipNetworks field.
10. The system for capturing data packets in K8s based on CaLico network plug-in unit according to claim 6, wherein the change module M1 comprises an Operator to obtain the configuration by periodically requesting a remote configuration center or receiving an external notification.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110620336.8A CN113242150B (en) | 2021-06-03 | 2021-06-03 | Calico network plug-in-based data packet capturing method and system in K8s |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110620336.8A CN113242150B (en) | 2021-06-03 | 2021-06-03 | Calico network plug-in-based data packet capturing method and system in K8s |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN113242150A true CN113242150A (en) | 2021-08-10 |
| CN113242150B CN113242150B (en) | 2022-11-22 |
Family
ID=77136578
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110620336.8A Active CN113242150B (en) | 2021-06-03 | 2021-06-03 | Calico network plug-in-based data packet capturing method and system in K8s |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113242150B (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114938378A (en) * | 2022-04-22 | 2022-08-23 | 新华智云科技有限公司 | Resource filtering method, system, equipment and storage medium based on kubernets |
| US11516079B1 (en) * | 2021-10-27 | 2022-11-29 | Dell Products L.P. | Network initialization communication storage system |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102082728A (en) * | 2010-12-28 | 2011-06-01 | 北京锐安科技有限公司 | Dynamic loading method for filtering rules of network audit system |
| CN104683295A (en) * | 2013-11-27 | 2015-06-03 | 中兴通讯股份有限公司 | Data packet filtering rule configuration method, device and system |
| CN111352664A (en) * | 2018-12-05 | 2020-06-30 | 北京京东尚科信息技术有限公司 | Distributed machine learning task starting method, system, equipment and storage medium |
| CN111917580A (en) * | 2020-07-28 | 2020-11-10 | 平安普惠企业管理有限公司 | Packet capture processing method, device, equipment and computer readable storage medium |
| CN112511339A (en) * | 2020-11-09 | 2021-03-16 | 宝付网络科技(上海)有限公司 | Container monitoring alarm method, system, equipment and storage medium based on multiple clusters |
-
2021
- 2021-06-03 CN CN202110620336.8A patent/CN113242150B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102082728A (en) * | 2010-12-28 | 2011-06-01 | 北京锐安科技有限公司 | Dynamic loading method for filtering rules of network audit system |
| CN104683295A (en) * | 2013-11-27 | 2015-06-03 | 中兴通讯股份有限公司 | Data packet filtering rule configuration method, device and system |
| CN111352664A (en) * | 2018-12-05 | 2020-06-30 | 北京京东尚科信息技术有限公司 | Distributed machine learning task starting method, system, equipment and storage medium |
| CN111917580A (en) * | 2020-07-28 | 2020-11-10 | 平安普惠企业管理有限公司 | Packet capture processing method, device, equipment and computer readable storage medium |
| CN112511339A (en) * | 2020-11-09 | 2021-03-16 | 宝付网络科技(上海)有限公司 | Container monitoring alarm method, system, equipment and storage medium based on multiple clusters |
Non-Patent Citations (1)
| Title |
|---|
| 刘渊等: "云环境下基于Kubernetes集群系统的容器网络研究与优化", 《信息网络安全》 * |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11516079B1 (en) * | 2021-10-27 | 2022-11-29 | Dell Products L.P. | Network initialization communication storage system |
| CN114938378A (en) * | 2022-04-22 | 2022-08-23 | 新华智云科技有限公司 | Resource filtering method, system, equipment and storage medium based on kubernets |
| CN114938378B (en) * | 2022-04-22 | 2023-06-27 | 新华智云科技有限公司 | Resource filtering method, system, equipment and storage medium based on kubernetes |
Also Published As
| Publication number | Publication date |
|---|---|
| CN113242150B (en) | 2022-11-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108600029B (en) | Configuration file updating method and device, terminal equipment and storage medium | |
| CN108632338B (en) | Storage system and method for providing automatic storage discovery | |
| CN113242150B (en) | Calico network plug-in-based data packet capturing method and system in K8s | |
| US8838723B2 (en) | High availability management system for stateless components in a distributed master-slave component topology | |
| CN112866017B (en) | Method, system, medium and device for configuring BMC IP address of bare metal server | |
| US9348771B1 (en) | Cloud-based instrument driver system | |
| KR102328938B1 (en) | Management of log data in electronic systems | |
| US20120317610A1 (en) | Dynamically defining network access rules | |
| US20100235493A1 (en) | Extendable distributed network management system and method | |
| CN105357273A (en) | Universal SOCKET communication and process management platform and method in asynchronous communication mode | |
| RU2605918C2 (en) | Method for providing functions in industrial automation system and industrial automation system | |
| CN113220422B (en) | Method and system for modifying Pod network interface based on operation of CNI plug-in K8s | |
| CN106549789A (en) | A kind of method and system for realizing that server is installed | |
| CN112564994B (en) | Flow monitoring method and device, cloud server and storage medium | |
| CN110377324B (en) | Information platform monitoring system and construction method | |
| WO2021252527A1 (en) | Diagnosing intermediary network nodes | |
| CN104702469A (en) | Method for monitoring network data, entity machine virtual device and network system | |
| CN115580497B (en) | Method, device and storage medium for controlling data transmission in container environment | |
| EP3304333A1 (en) | Local object instance discovery for metric collection on network elements | |
| CN105337781A (en) | Network management system and method and network system | |
| CN104079440A (en) | Synchronous configuration method of primary equipment and stand-by equipment and SNMP (Simple Network Management Protocol) system | |
| CN108985397B (en) | Method and device for inquiring Bond information and computer storage medium | |
| CN111083215A (en) | Session information synchronization method, device, equipment, system and storage medium | |
| JP6775452B2 (en) | Monitoring system, program and monitoring method | |
| CN115514670B (en) | Data capturing method, device, electronic equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |