CN113359511A - Construction method and device of industrial control simulation network, computer equipment and storage medium - Google Patents
Construction method and device of industrial control simulation network, computer equipment and storage medium Download PDFInfo
- Publication number
- CN113359511A CN113359511A CN202110699322.XA CN202110699322A CN113359511A CN 113359511 A CN113359511 A CN 113359511A CN 202110699322 A CN202110699322 A CN 202110699322A CN 113359511 A CN113359511 A CN 113359511A
- Authority
- CN
- China
- Prior art keywords
- industrial control
- network
- control simulation
- virtual machine
- simulation network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000004088 simulation Methods 0.000 title claims abstract description 287
- 238000010276 construction Methods 0.000 title claims abstract description 41
- 238000000034 method Methods 0.000 claims abstract description 37
- 238000013507 mapping Methods 0.000 claims abstract description 33
- 230000001960 triggered effect Effects 0.000 claims abstract description 29
- 238000004590 computer program Methods 0.000 claims description 19
- 238000001514 detection method Methods 0.000 claims description 5
- 238000010586 diagram Methods 0.000 description 8
- 238000012986 modification Methods 0.000 description 5
- 230000004048 modification Effects 0.000 description 5
- 238000004891 communication Methods 0.000 description 4
- 230000004044 response Effects 0.000 description 4
- 241000700605 Viruses Species 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- 230000006870 function Effects 0.000 description 2
- 230000010354 integration Effects 0.000 description 2
- 238000004519 manufacturing process Methods 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 238000004458 analytical method Methods 0.000 description 1
- 238000003491 array Methods 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 1
- 230000006698 induction Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 238000007726 management method Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 230000000007 visual effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B17/00—Systems involving the use of models or simulators of said systems
- G05B17/02—Systems involving the use of models or simulators of said systems electric
Landscapes
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Engineering & Computer Science (AREA)
- Automation & Control Theory (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The embodiment of the invention discloses a construction method and a construction device of an industrial control simulation network, computer equipment and a storage medium, and relates to the technical field of networks. The method comprises the following steps: loading industrial control network resources; detecting an operation triggered by a user on the graphical interface; generating a topology file of the industrial control simulation network according to the operation triggered by the user; starting a virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine image; creating a virtual link according to the topology configuration information and the model starting parameters; and acquiring simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network so as to complete construction of the industrial control simulation network. The method realizes the construction of the industrial control simulation network through graphical interface operation, greatly reduces the professional requirements on technicians, and improves the construction efficiency; and the migratability of the industrial control simulation network can be improved by loading industrial control network resources and modifying simulation configuration information.
Description
Technical Field
The invention relates to the technical field of networks, in particular to a construction method and a construction device of an industrial control simulation network, computer equipment and a storage medium.
Background
The integration requirements of an industrial control network system, a high-level computer, an analysis technology, an induction technology and the internet are continuously increased, so that the manufacturing industry is helped to prolong the industrial chain, and the development of intelligent manufacturing is promoted. But the accompanying network attacks such as Lesox virus, seismograph virus, Trojan horse, flame virus and the like are increasing day by day. Meanwhile, how to guarantee the safety of the industrial control network and improve the protection level of the industrial control network against hacker attacks becomes a main concern at present.
At present, the research on the industrial control simulation network is still in the initial stage, and the safety protection capability and the emergency handling capability of the industrial control network are relatively low. Because the industrial control simulation network is a new field with multi-specialty integration, the requirement on the specialty of technicians is high when the industrial control simulation network is built, the building efficiency is low, and the mobility of the industrial control simulation network is weak.
Disclosure of Invention
The embodiment of the invention provides a construction method and device of an industrial control simulation network, computer equipment and a storage medium, and aims to solve the problems that the technical requirement on technical personnel is high, the construction efficiency is low and the mobility of the industrial control simulation network is weak when the industrial control simulation network is constructed in the prior art.
In a first aspect, an embodiment of the present invention provides a method for constructing an industrial control simulation network, where the method for constructing an industrial control simulation network includes:
loading industrial control network resources, wherein the industrial control network resources comprise an industrial control network model library, an industrial control network model starting parameter library and a virtual machine mirror image library;
starting Web to provide graphical interface service;
detecting a user-triggered operation on the graphical interface;
generating a topology file of the industrial control simulation network according to the operation triggered by the user, wherein the topology file comprises topology configuration information of the industrial control simulation network, model starting parameters and a mapping relation between a model and a virtual machine mirror image;
starting a virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine image;
establishing a virtual link between virtual machine images of the industrial control simulation network according to the topology configuration information and the model starting parameters of the industrial control simulation network;
and acquiring the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network so as to complete the construction of the industrial control simulation network.
In a second aspect, an embodiment of the present invention further provides a device for constructing an industrial control simulation network, where the device includes:
the loading unit is used for loading industrial control network resources, and the industrial control network resources comprise an industrial control network model library, an industrial control network model starting parameter library and a virtual machine mirror image library;
the starting unit is used for starting Web to provide graphical interface service;
the detection unit is used for detecting the operation triggered by the user on the graphical interface;
the generating unit is used for generating a topology file of the industrial control simulation network according to the operation triggered by the user, wherein the topology file comprises topology configuration information of the industrial control simulation network, model starting parameters and a mapping relation between the model and a virtual machine mirror image;
the starting unit is used for starting the virtual machine mirror image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine mirror image;
the creating unit is used for creating a virtual link between virtual machine images of the industrial control simulation network according to the topology configuration information and the model starting parameters of the industrial control simulation network;
and the configuration unit is used for acquiring the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network so as to complete the construction of the industrial control simulation network.
In a third aspect, an embodiment of the present invention further provides a computer device, where the computer device includes a memory and a processor, where the memory stores a computer program, and the processor implements the method when executing the computer program.
In a fourth aspect, the present invention also provides a computer-readable storage medium, which stores a computer program, and the computer program realizes the above method when being executed by a processor.
The embodiment of the invention provides a method and a device for constructing an industrial control simulation network, computer equipment and a storage medium, wherein the method comprises the following steps: loading industrial control network resources; starting Web to provide graphical interface service; detecting a user-triggered operation on the graphical interface; generating a topology file of the industrial control simulation network according to the operation triggered by the user, wherein the topology file comprises topology configuration information of the industrial control simulation network, model starting parameters and a mapping relation between a model and a virtual machine mirror image; starting a virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine image; establishing a virtual link between virtual machine images of the industrial control simulation network according to the topology configuration information and the model starting parameters of the industrial control simulation network; and acquiring the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network so as to complete the construction of the industrial control simulation network. The method realizes the construction of the industrial control simulation network through graphical interface operation, greatly reduces the professional requirements on technicians, and improves the construction efficiency; and the migratability of the industrial control simulation network can be improved by loading industrial control network resources and modifying simulation configuration information.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings needed to be used in the description of the embodiments are briefly introduced below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.
Fig. 1 is a schematic flow chart of a method for constructing an industrial control simulation network according to an embodiment of the present invention;
fig. 2 is a sub-flow diagram of a method for constructing an industrial control simulation network according to an embodiment of the present invention;
fig. 3 is a sub-flow diagram of a method for constructing an industrial control simulation network according to an embodiment of the present invention;
fig. 4 is a sub-flow diagram of a method for constructing an industrial control simulation network according to an embodiment of the present invention;
fig. 5 is a schematic block diagram of a construction apparatus of an industrial control simulation network according to an embodiment of the present invention;
fig. 6 is a schematic block diagram of a computer device according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
It is to be understood that the terms "includes" and "including" when used in this specification and the appended claims are also to be construed to indicate that the terminology used in the description of the invention herein is for the purpose of describing particular embodiments only and is not intended to be limiting. As used in the specification of the present invention and the appended claims, the singular forms "a," "an," and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise.
It should be further understood that the term "and/or" as used in this specification and the appended claims refers to and includes any and all possible combinations of one or more of the associated listed items.
As used in this specification and the appended claims, the term "if" may be interpreted contextually as "when", "upon" or "in response to a determination" or "in response to a detection". Similarly, the phrase "if it is determined" or "if a [ described condition or event ] is detected" may be interpreted contextually to mean "upon determining" or "in response to determining" or "upon detecting [ described condition or event ]" or "in response to detecting [ described condition or event ]".
Referring to fig. 1, fig. 1 is a schematic flow chart of a method for constructing an industrial control simulation network according to an embodiment of the present invention. As shown in FIG. 1, the method includes the following steps S1-S7.
And S1, loading industrial control network resources.
In specific implementation, the industrial control network resources include an industrial control network model library, an industrial control network model starting parameter library and a virtual machine mirror library. The industrial control network model library comprises network link equipment, safety equipment, host equipment and an operating system. Specifically, the network link device includes: a router, a switch and a network load balancer; the security device includes: the system comprises a firewall, an intrusion detection system and a fort machine; the operating system includes: windows (server), linux (server), Android, and macos; the industrial control operating system comprises vxworks; where the host device is dominated by the x86 architecture.
It should be noted that the start parameter and the virtual machine image correspond to the corresponding industrial control model, and resources related to each model are encapsulated by a corresponding UI (User Interface).
In another embodiment, user-defined industrial control network resources are loaded, wherein the user-defined industrial control network resources comprise a user-defined industrial control network model, user-defined model starting parameters and a user-defined virtual machine image. When the industrial control network model library can not meet the requirements of users or no corresponding model exists in the model library, the users can add self-defined industrial control network resources and modify the original industrial control simulation network without building a new industrial control simulation network again, so that the mobility and the expandability of the construction of the industrial control simulation network are improved, and the efficiency of building the industrial control simulation network is improved.
S2, the Web is launched to provide the graphical interface service.
In specific implementation, after the industrial control network resources are loaded, the Web is started to provide graphical interface service. And in the graphical interface, a user can add a UI corresponding to the resources of the industrial control simulation network in the graphical interface and establish a network link. The user does not need to clearly know the specific working principle and performance of each industrial control network model, the construction of the industrial control simulation network is realized only through graphical interface operation, the professional requirements on technicians are greatly reduced, and the efficiency of constructing the industrial control simulation network is improved.
S3, detecting the operation triggered by the user on the graphical interface.
In specific implementation, the operation triggered by the user on the graphical interface is detected, the user can add the UI of the industrial control network model to be used to the graphical interface, and then the industrial control network models are connected according to the actual interface condition. The user only needs to carry out the operation of connecting the wires or adding the model according to the actual industrial control network condition, the whole process is visual and simple, and the professional requirements of technical personnel for building the industrial control simulation network are reduced.
And S4, generating a topology file of the industrial control simulation network according to the operation triggered by the user.
In specific implementation, a topology file of the industrial control simulation network is generated according to the operation triggered by the user. The operation triggered by the user comprises adding an industrial control network model, connecting the industrial control network models, obtaining the topological structure of the industrial control simulation network according to the triggering operation of the user, and generating the topological file and the resource document of the industrial control simulation network according to the topological structure of the industrial control simulation network. The topology file comprises topology configuration information of the industrial control simulation network, model starting parameters and a mapping relation between the model and a virtual machine image, and the resource file comprises virtual machine image resources of the industrial control simulation network.
The model startup parameters comprise startup parameters of various images, such as the Windows 7 operating system, the Windows 10 operating system and the Windows xp operating system in the operating system, so that only one startup parameter is needed for the operating system; for another example, the Huacheng router has different versions, but only one kind of startup parameter is provided.
The construction of the industrial control simulation network topological structure is completed through the steps, only the physical connection among the models in the industrial control simulation network is realized, and further, the logical connection among the models needs to be established according to the topological files and the resource files of the industrial control simulation network so as to complete the construction of the industrial control simulation network.
And S5, starting the virtual machine mirror image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine mirror image.
In specific implementation, the virtual machine image of the industrial control simulation network is started according to the model starting parameter and the mapping relation between the model and the virtual machine image. Virtualizing hardware equipment corresponding to the virtual machine image through the application program interface so as to realize independent operation of the virtual machine image. Specifically, relevant parameters of the virtual machine image, including the name of the virtual machine, the number of virtual machine ports, the number of virtual CPUs, the memory size, and additional startup parameters, may be modified through the application program interface.
Referring to fig. 2, in an embodiment, the step S5 specifically includes: steps S501-S502.
S501, calling a starting application program interface of the virtual machine image according to the model starting parameters of the industrial control simulation network.
In specific implementation, a starting application program interface of the virtual machine image is called according to the model starting parameter. The model startup parameters used therein are specific but not limited to: the virtual machine name, the virtual machine type, the number of network ports, the memory size, the channel establishing mode, the CPU architecture, the number of CPUs, and the additional starting parameter are combined with the configuration information modified by the user, which is included in the topology configuration information, such as: the method comprises the following steps of calling a virtual machine to start an application program interface, wherein the name of the virtual machine, the number of virtual machine network ports, the number of virtual CPUs (central processing units), the size of a memory and an additional starting parameter are used.
S502, starting the virtual machine mirror image according to the starting application program interface and the mapping relation between the model and the virtual machine mirror image.
In specific implementation, the virtual machine image is started according to the starting application program interface and the mapping relation between the model and the virtual machine image. Specifically, the virtual operating system starts the virtual machine image by starting an application program interface to acquire the mapping relationship between the model and the virtual machine image.
And S6, creating a virtual link between the virtual machine images of the industrial control simulation network according to the topology configuration information and the model starting parameters of the industrial control simulation network.
In specific implementation, a virtual link between virtual machine images of the industrial control simulation network is created according to the topology configuration information and the model starting parameters of the industrial control simulation network. The data transmission between the models is realized by establishing the logical connection between the models through the virtual link, and particularly, the parameters related to the network can be modified through the virtual link, wherein the parameters comprise the port numbers, the link names, the network throughput, the time delay and the jitter of the source host and the destination host.
Referring to fig. 3, in an embodiment, the step S6 specifically includes: steps S601-S602.
S601, calling an application program interface according to the topology configuration information and the model starting parameter of the industrial control simulation network.
In specific implementation, an application program interface is called according to the topology configuration information and the model starting parameters of the industrial control simulation network, wherein the used model starting parameters are specifically as follows: and the host serial number and the host interface number are combined with the physical connection among the models to call a link to generate an application program interface.
S602, creating a virtual link between the virtual machine images of the industrial control simulation network according to the application program interface.
In specific implementation, a virtual link between virtual machine images of the industrial control simulation network is created according to the application program interface. Specifically, virtual links among models are built through a virtualization bridge technology according to an application program interface, the virtual bridges and virtual models connected with the virtual bridges are managed in a unified mode through Kubernetes, and a network quality parameter modification interface is built. The user can modify parameters such as port numbers, link names, network throughput, time delay, jitter and the like of the source host and the destination host through the network quality parameter modification interface.
Wherein kubernetes, abbreviated as K8s, is an abbreviation formed by replacing 8 characters "ubernete" with 8. The Kubernets aims to make the application of container deployment simple and efficient, and provides a mechanism for application deployment, planning, updating and maintenance.
And S7, acquiring the simulation configuration information of the industrial control simulation network, and performing simulation configuration on the industrial control simulation network to complete the construction of the industrial control simulation network.
In specific implementation, the simulation configuration information of the industrial control simulation network is acquired to perform simulation configuration on the industrial control simulation network so as to complete construction of the industrial control simulation network. And a channel for accessing the industrial control simulation network is established through the remote control service, so that the manual configuration and deployment of the system configuration, the communication protocol, the application service and the like of the virtual image in the industrial control simulation network are realized.
Referring to fig. 4, in an embodiment, the step S7 specifically includes: steps S701-S703.
S701, establishing a loading channel of the virtual machine image of the industrial control simulation network according to the model starting parameters of the industrial control simulation network.
In specific implementation, a loading channel of a virtual machine image of the industrial control simulation network is created according to the model starting parameters of the industrial control simulation network. And establishing a user UI and a management channel of a mirror image loading port according to the channel type parameter in the model starting parameter and the port information of the virtual machine mirror image through the Guacamole service, so that the function that the user can directly log in and configure different virtual machines of the same industrial control simulation network through the UI is realized. Specifically, when the virtual machine image of the industrial control simulation network is started, the model starting parameters are imported into a Guacamole service database, and a loading channel of a user UI for managing the virtual machine image through the Guacamole service is established.
Wherein, Guacamole is a remote desktop control open source framework based on HTML5, and is a general API of a remote desktop gateway without a client. Guacamole may be used as a central gateway to access any number of computers running different remote desktop servers. Here, Guacamole will provide the functionality to access different virtual machine images in the topology over the Web.
S702, acquiring simulation configuration information of the virtual machine image of the industrial control simulation network.
In specific implementation, the simulation configuration information of the virtual machine image of the industrial control simulation network is obtained. When the actual industrial control network changes, the user can update the configuration parameters of the industrial control simulation network according to the changing condition, so that the built industrial control simulation network is closer to the actual industrial control network, and a more accurate basis is provided for the follow-up of the industrial control simulation network. When the actual industrial control network changes, the industrial control simulation network does not need to be built again, and only the virtual machine needs to be directly logged in and configured on the original basis, so that the time for building the industrial control simulation network is greatly shortened, and the efficiency for building the industrial control simulation network is improved.
And S703, entering the virtual machine image through the loading channel, and performing simulation configuration on the virtual machine image according to the simulation configuration information.
In specific implementation, the virtual machine image is entered through the loading channel, and the virtual machine image is subjected to simulation configuration according to the simulation configuration information. And storing the configuration information in the configured virtual machine images through the loading channel of each virtual machine image according to the simulation requirements and operations of the user. Specifically, the system configuration, communication protocol, and application service of the virtual machine image may be changed through the load channel. The change of data communication, safety state and application scene of the industrial control simulation network can be realized through simulation configuration.
The embodiment of the invention provides a construction method of an industrial control simulation network, which comprises the following steps: : loading industrial control network resources, wherein the industrial control network resources comprise an industrial control network model library, an industrial control network model starting parameter library and a virtual machine mirror image library; starting Web to provide graphical interface service; detecting a user-triggered operation on the graphical interface; generating a topology file of the industrial control simulation network according to the operation triggered by the user, wherein the topology file comprises topology configuration information of the industrial control simulation network, model starting parameters and a mapping relation between a model and a virtual machine mirror image; starting a virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine image; establishing a virtual link between virtual machine images of the industrial control simulation network according to the topology configuration information and the model starting parameters of the industrial control simulation network; and acquiring the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network so as to complete the construction of the industrial control simulation network. The method realizes the construction of the industrial control simulation network through graphical interface operation, greatly reduces the professional requirements on technicians, and improves the construction efficiency; and the migratability of the industrial control simulation network can be improved by loading industrial control network resources and modifying simulation configuration information.
Fig. 5 is a schematic block diagram of a construction apparatus of an industrial control simulation network according to an embodiment of the present invention. As shown in fig. 5, the present invention further provides a device 100 for constructing an industrial control simulation network, corresponding to the above method for constructing an industrial control simulation network. The apparatus 100 for building an industrial control simulation network includes a unit for executing the method for building an industrial control simulation network, and the apparatus may be configured in a desktop computer, a tablet computer, a portable computer, and other terminals. Specifically, referring to fig. 5, the building apparatus 100 of the industrial control simulation network includes a loading unit 101, a starting unit 102, a detecting unit 103, a generating unit 104, an opening unit 105, a creating unit 106, and a configuring unit 107.
The loading unit 101 is used for loading industrial control network resources, and the industrial control network resources comprise an industrial control network model library, an industrial control network model starting parameter library and a virtual machine mirror image library;
a starting unit 102 that starts a Web to provide a graphical interface service;
a detection unit 103, which detects an operation triggered by a user on the graphical interface;
the generating unit 104 is configured to generate a topology file of the industrial control simulation network according to the operation triggered by the user, where the topology file includes topology configuration information of the industrial control simulation network, a model start parameter, and a mapping relationship between the model and a virtual machine image;
the starting unit 105 is used for starting the virtual machine mirror image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine mirror image;
a creating unit 106, configured to create a virtual link between virtual machine images of the industrial control simulation network according to topology configuration information and model starting parameters of the industrial control simulation network;
and the configuration unit 107 is configured to acquire the simulation configuration information of the industrial control simulation network and perform simulation configuration on the industrial control simulation network to complete the construction of the industrial control simulation network. .
In an embodiment, the loading the industrial control network resource further includes:
and loading user-defined industrial control network resources, wherein the user-defined industrial control network resources comprise a user-defined industrial control network model, user-defined model starting parameters and a user-defined virtual machine mirror image.
In an embodiment, the starting a virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relationship between the model and the virtual machine image includes:
calling a starting application program interface of a virtual machine image according to the model starting parameter of the industrial control simulation network;
and starting the virtual machine mirror image according to the starting application program interface and the mapping relation between the model and the virtual machine mirror image.
In an embodiment, the creating a virtual link between virtual machine images of the industrial control simulation network according to topology configuration information and model startup parameters of the industrial control simulation network includes:
calling an application program interface according to the topology configuration information and the model starting parameter of the industrial control simulation network;
and creating a virtual link between the virtual machine images of the industrial control simulation network according to the application program interface.
In an embodiment, the obtaining of the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network to complete construction of the industrial control simulation network includes:
establishing a loading channel of a virtual machine image of the industrial control simulation network according to the model starting parameters of the industrial control simulation network;
acquiring simulation configuration information of a virtual machine image of the industrial control simulation network;
and entering the virtual machine image through the loading channel, and performing simulation configuration on the virtual machine image according to the simulation configuration information.
In one embodiment, the industrial control network model library comprises: a network link device, a security device, a host device, and an operating system.
In an embodiment, the generating a topology file of an industrial control simulation network according to the operation triggered by the user includes:
and generating a topology file of the industrial control simulation network according to the industrial control network model and the network link added by the user.
It should be noted that, as can be clearly understood by those skilled in the art, the construction apparatus of the industrial control simulation network and the specific implementation process of each unit may refer to the corresponding description in the foregoing method embodiment, and for convenience and conciseness of description, no further description is provided herein.
The construction device of the industrial control simulation network can be implemented in the form of a computer program, and the computer program can be run on a computer device as shown in fig. 6.
Referring to fig. 6, fig. 6 is a schematic block diagram of a computer device according to an embodiment of the present application. The computer device 300 is an upper computer. The upper computer can be a tablet computer, a notebook computer, a desktop computer and other electronic equipment.
Referring to fig. 6, the computer device 300 includes a processor 302, memory, and a network interface 305 connected by a system bus 301, where the memory may include a non-volatile storage medium 303 and an internal memory 304.
The nonvolatile storage medium 303 may store an operating system 3031 and a computer program 3032. The computer program 3032, when executed, causes the processor 302 to perform a method of building an industrial control simulation network.
The processor 302 is used to provide computing and control capabilities to support the operation of the overall computer device 300.
The internal memory 304 provides an environment for running the computer program 3032 in the non-volatile storage medium 303, and the computer program 3032, when executed by the processor 302, causes the processor 302 to execute a method for constructing an industrial simulation network.
The network interface 305 is used for network communication with other devices. Those skilled in the art will appreciate that the configuration shown in fig. 6 is a block diagram of only a portion of the configuration associated with the present application and does not constitute a limitation of the computer apparatus 300 to which the present application is applied, and that a particular computer apparatus 300 may include more or less components than those shown, or may combine certain components, or have a different arrangement of components.
Wherein the processor 302 is configured to run a computer program 3032 stored in the memory to implement the following steps:
loading industrial control network resources, wherein the industrial control network resources comprise an industrial control network model library, an industrial control network model starting parameter library and a virtual machine mirror image library;
starting Web to provide graphical interface service;
detecting a user-triggered operation on the graphical interface;
generating a topology file of the industrial control simulation network according to the operation triggered by the user, wherein the topology file comprises topology configuration information of the industrial control simulation network, model starting parameters and a mapping relation between a model and a virtual machine mirror image;
starting a virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine image;
establishing a virtual link between virtual machine images of the industrial control simulation network according to the topology configuration information and the model starting parameters of the industrial control simulation network;
and acquiring the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network so as to complete the construction of the industrial control simulation network.
In an embodiment, the loading the industrial control network resource further includes:
and loading user-defined industrial control network resources, wherein the user-defined industrial control network resources comprise a user-defined industrial control network model, user-defined model starting parameters and a user-defined virtual machine mirror image.
In an embodiment, the starting a virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relationship between the model and the virtual machine image includes:
calling a starting application program interface of a virtual machine image according to the model starting parameter of the industrial control simulation network;
and starting the virtual machine mirror image according to the starting application program interface and the mapping relation between the model and the virtual machine mirror image.
In an embodiment, the creating a virtual link between virtual machine images of the industrial control simulation network according to topology configuration information and model startup parameters of the industrial control simulation network includes:
calling an application program interface according to the topology configuration information and the model starting parameter of the industrial control simulation network;
and creating a virtual link between the virtual machine images of the industrial control simulation network according to the application program interface.
In an embodiment, the obtaining of the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network to complete construction of the industrial control simulation network includes:
establishing a loading channel of a virtual machine image of the industrial control simulation network according to the model starting parameters of the industrial control simulation network;
acquiring simulation configuration information of a virtual machine image of the industrial control simulation network;
and entering the virtual machine image through the loading channel, and performing simulation configuration on the virtual machine image according to the simulation configuration information.
In one embodiment, the industrial control network model library comprises: a network link device, a security device, a host device, and an operating system.
In an embodiment, the generating a topology file of an industrial control simulation network according to the operation triggered by the user includes:
and generating a topology file of the industrial control simulation network according to the industrial control network model and the network link added by the user.
It should be understood that, in the embodiment of the present Application, the Processor 302 may be a Central Processing Unit (CPU), and the Processor 302 may also be other general-purpose processors, Digital Signal Processors (DSPs), Application Specific Integrated Circuits (ASICs), Field Programmable Gate Arrays (FPGAs) or other Programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, and the like. Wherein a general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.
It will be understood by those skilled in the art that all or part of the flow of the method implementing the above embodiments may be implemented by a computer program instructing associated hardware. The computer program may be stored in a storage medium, which is a computer-readable storage medium. The computer program is executed by at least one processor in the computer system to implement the flow steps of the embodiments of the method described above.
Accordingly, the present invention also provides a storage medium. The storage medium may be a computer-readable storage medium. The storage medium stores a computer program. The computer program, when executed by a processor, causes the processor to perform the steps of:
loading industrial control network resources, wherein the industrial control network resources comprise an industrial control network model library, an industrial control network model starting parameter library and a virtual machine mirror image library;
starting Web to provide graphical interface service;
detecting a user-triggered operation on the graphical interface;
generating a topology file of the industrial control simulation network according to the operation triggered by the user, wherein the topology file comprises topology configuration information of the industrial control simulation network, model starting parameters and a mapping relation between a model and a virtual machine mirror image;
starting a virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine image;
establishing a virtual link between virtual machine images of the industrial control simulation network according to the topology configuration information and the model starting parameters of the industrial control simulation network;
and acquiring the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network so as to complete the construction of the industrial control simulation network.
In an embodiment, the loading the industrial control network resource further includes:
and loading user-defined industrial control network resources, wherein the user-defined industrial control network resources comprise a user-defined industrial control network model, user-defined model starting parameters and a user-defined virtual machine mirror image.
In an embodiment, the starting a virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relationship between the model and the virtual machine image includes:
calling a starting application program interface of a virtual machine image according to the model starting parameter of the industrial control simulation network;
and starting the virtual machine mirror image according to the starting application program interface and the mapping relation between the model and the virtual machine mirror image.
In an embodiment, the creating a virtual link between virtual machine images of the industrial control simulation network according to topology configuration information and model startup parameters of the industrial control simulation network includes:
calling an application program interface according to the topology configuration information and the model starting parameter of the industrial control simulation network;
and creating a virtual link between the virtual machine images of the industrial control simulation network according to the application program interface.
In an embodiment, the obtaining of the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network to complete construction of the industrial control simulation network includes:
establishing a loading channel of a virtual machine image of the industrial control simulation network according to the model starting parameters of the industrial control simulation network;
acquiring simulation configuration information of a virtual machine image of the industrial control simulation network;
and entering the virtual machine image through the loading channel, and performing simulation configuration on the virtual machine image according to the simulation configuration information.
In one embodiment, the industrial control network model library comprises: a network link device, a security device, a host device, and an operating system.
In an embodiment, the generating a topology file of an industrial control simulation network according to the operation triggered by the user includes:
and generating a topology file of the industrial control simulation network according to the industrial control network model and the network link added by the user.
Those of ordinary skill in the art will appreciate that the elements and algorithm steps of the examples described in connection with the embodiments disclosed herein may be embodied in electronic hardware, computer software, or combinations of both, and that the components and steps of the examples have been described in a functional general in the foregoing description for the purpose of illustrating clearly the interchangeability of hardware and software. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the implementation. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.
In the several embodiments provided by the present invention, it should be understood that the disclosed apparatus and method may be implemented in other ways. For example, the above-described apparatus embodiments are merely illustrative. For example, the division of each unit is only one logic function division, and there may be another division manner in actual implementation. For example, various elements or components may be combined or may be integrated into another system, or some features may be omitted, or not implemented.
The steps in the method of the embodiment of the invention can be sequentially adjusted, combined and deleted according to actual needs. The units in the device of the embodiment of the invention can be merged, divided and deleted according to actual needs. In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a storage medium. Based on such understanding, the technical solution of the present invention essentially or partially contributes to the prior art, or all or part of the technical solution can be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a terminal, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention.
In the above embodiments, the descriptions of the respective embodiments have respective emphasis, and for parts that are not described in detail in a certain embodiment, reference may be made to related descriptions of other embodiments.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, while the invention has been described with respect to the above-described embodiments, it will be understood that the invention is not limited thereto but may be embodied with various modifications and changes.
While the invention has been described with reference to specific embodiments, the invention is not limited thereto, and various equivalent modifications and substitutions can be easily made by those skilled in the art within the technical scope of the invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.
Claims (10)
1. A construction method of an industrial control simulation network is characterized by comprising the following steps:
loading industrial control network resources, wherein the industrial control network resources comprise an industrial control network model library, an industrial control network model starting parameter library and a virtual machine mirror image library;
starting Web to provide graphical interface service;
detecting a user-triggered operation on the graphical interface;
generating a topology file of the industrial control simulation network according to the operation triggered by the user, wherein the topology file comprises topology configuration information of the industrial control simulation network, model starting parameters and a mapping relation between a model and a virtual machine mirror image;
starting a virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine image;
establishing a virtual link between virtual machine images of the industrial control simulation network according to the topology configuration information and the model starting parameters of the industrial control simulation network;
and acquiring the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network so as to complete the construction of the industrial control simulation network.
2. The method for constructing an industrial control simulation network according to claim 1, wherein the loading industrial control network resources further comprises:
and loading user-defined industrial control network resources, wherein the user-defined industrial control network resources comprise a user-defined industrial control network model, user-defined model starting parameters and a user-defined virtual machine mirror image.
3. The method for constructing the industrial control simulation network according to claim 2, wherein the starting of the virtual machine image of the industrial control simulation network according to the model starting parameter and the mapping relationship between the model and the virtual machine image comprises:
calling a starting application program interface of a virtual machine image according to the model starting parameter of the industrial control simulation network;
and starting the virtual machine mirror image according to the starting application program interface and the mapping relation between the model and the virtual machine mirror image.
4. The method for constructing an industrial control simulation network according to claim 3, wherein the creating of the virtual link between the virtual machine images of the industrial control simulation network according to the topology configuration information and the model start parameter of the industrial control simulation network comprises:
calling an application program interface according to the topology configuration information and the model starting parameter of the industrial control simulation network;
and creating a virtual link between the virtual machine images of the industrial control simulation network according to the application program interface.
5. The method for constructing an industrial control simulation network according to claim 4, wherein the obtaining of the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network to complete construction of the industrial control simulation network comprises:
establishing a loading channel of a virtual machine image of the industrial control simulation network according to the model starting parameters of the industrial control simulation network;
acquiring simulation configuration information of a virtual machine image of the industrial control simulation network;
and entering the virtual machine image through the loading channel, and performing simulation configuration on the virtual machine image according to the simulation configuration information.
6. The method for constructing industrial control simulation network according to claim 5, wherein the industrial control network model library comprises: a network link device, a security device, a host device, and an operating system.
7. The method for constructing an industrial control simulation network according to claim 6, wherein the generating a topology file of the industrial control simulation network according to the operation triggered by the user comprises:
and generating a topology file of the industrial control simulation network according to the industrial control network model and the network link added by the user.
8. A construction device of an industrial control simulation network is characterized by comprising the following steps:
the loading unit is used for loading industrial control network resources, and the industrial control network resources comprise an industrial control network model library, an industrial control network model starting parameter library and a virtual machine mirror image library;
the starting unit is used for starting Web to provide graphical interface service;
the detection unit is used for detecting the operation triggered by the user on the graphical interface;
the generating unit is used for generating a topology file of the industrial control simulation network according to the operation triggered by the user, wherein the topology file comprises topology configuration information of the industrial control simulation network, model starting parameters and a mapping relation between the model and a virtual machine mirror image;
the starting unit is used for starting the virtual machine mirror image of the industrial control simulation network according to the model starting parameter and the mapping relation between the model and the virtual machine mirror image;
the creating unit is used for creating a virtual link between virtual machine images of the industrial control simulation network according to the topology configuration information and the model starting parameters of the industrial control simulation network;
and the configuration unit is used for acquiring the simulation configuration information of the industrial control simulation network to perform simulation configuration on the industrial control simulation network so as to complete the construction of the industrial control simulation network.
9. A computer arrangement, characterized in that the computer arrangement comprises a memory having stored thereon a computer program and a processor implementing the method according to any of claims 1-7 when executing the computer program.
10. A computer-readable storage medium, characterized in that the storage medium stores a computer program which, when executed by a processor, implements the method according to any one of claims 1-7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110699322.XA CN113359511A (en) | 2021-06-23 | 2021-06-23 | Construction method and device of industrial control simulation network, computer equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110699322.XA CN113359511A (en) | 2021-06-23 | 2021-06-23 | Construction method and device of industrial control simulation network, computer equipment and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113359511A true CN113359511A (en) | 2021-09-07 |
Family
ID=77535926
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110699322.XA Pending CN113359511A (en) | 2021-06-23 | 2021-06-23 | Construction method and device of industrial control simulation network, computer equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113359511A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114003006A (en) * | 2021-10-19 | 2022-02-01 | 宝鸡钛业股份有限公司 | Localization method for solving access control system restriction authority by adopting virtualization intelligent algorithm |
| CN114363021A (en) * | 2021-12-22 | 2022-04-15 | 绿盟科技集团股份有限公司 | Network shooting range system, virtual network implementation method and device of network shooting range system |
| CN114629800A (en) * | 2022-02-09 | 2022-06-14 | 烽台科技(北京)有限公司 | Visual generation method, device, terminal and storage medium for industrial control network target range |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105357039A (en) * | 2015-10-27 | 2016-02-24 | 中国船舶重工集团公司第七二二研究所 | Simulation method and device for delay tolerant network |
| CN105404207A (en) * | 2015-12-14 | 2016-03-16 | 中国电子信息产业集团有限公司第六研究所 | Industrial environment vulnerability discovering device and method |
| CN106209825A (en) * | 2016-07-07 | 2016-12-07 | 中国电子科技集团公司第二十八研究所 | A kind of customizable Botnet pilot system |
| CN106603592A (en) * | 2015-10-15 | 2017-04-26 | 中国电信股份有限公司 | Application cluster migrating method and migrating device based on service model |
| CN107632879A (en) * | 2017-10-31 | 2018-01-26 | 中国人民解放军国防科技大学 | Cloud simulation platform |
| CN109145362A (en) * | 2018-07-02 | 2019-01-04 | 中国电力科学研究院有限公司 | A kind of power network modeling method and system |
| CN109802852A (en) * | 2018-12-13 | 2019-05-24 | 烽台科技(北京)有限公司 | The construction method and system of network simulation topology applied to network target range |
| CN111726421A (en) * | 2020-07-01 | 2020-09-29 | 哈尔滨工业大学(威海) | Method and device for realizing interconnection of network target range and industrial control equipment |
-
2021
- 2021-06-23 CN CN202110699322.XA patent/CN113359511A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106603592A (en) * | 2015-10-15 | 2017-04-26 | 中国电信股份有限公司 | Application cluster migrating method and migrating device based on service model |
| CN105357039A (en) * | 2015-10-27 | 2016-02-24 | 中国船舶重工集团公司第七二二研究所 | Simulation method and device for delay tolerant network |
| CN105404207A (en) * | 2015-12-14 | 2016-03-16 | 中国电子信息产业集团有限公司第六研究所 | Industrial environment vulnerability discovering device and method |
| CN106209825A (en) * | 2016-07-07 | 2016-12-07 | 中国电子科技集团公司第二十八研究所 | A kind of customizable Botnet pilot system |
| CN107632879A (en) * | 2017-10-31 | 2018-01-26 | 中国人民解放军国防科技大学 | Cloud simulation platform |
| CN109145362A (en) * | 2018-07-02 | 2019-01-04 | 中国电力科学研究院有限公司 | A kind of power network modeling method and system |
| CN109802852A (en) * | 2018-12-13 | 2019-05-24 | 烽台科技(北京)有限公司 | The construction method and system of network simulation topology applied to network target range |
| CN111726421A (en) * | 2020-07-01 | 2020-09-29 | 哈尔滨工业大学(威海) | Method and device for realizing interconnection of network target range and industrial control equipment |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114003006A (en) * | 2021-10-19 | 2022-02-01 | 宝鸡钛业股份有限公司 | Localization method for solving access control system restriction authority by adopting virtualization intelligent algorithm |
| CN114363021A (en) * | 2021-12-22 | 2022-04-15 | 绿盟科技集团股份有限公司 | Network shooting range system, virtual network implementation method and device of network shooting range system |
| CN114363021B (en) * | 2021-12-22 | 2023-11-03 | 绿盟科技集团股份有限公司 | Network target range system, virtual network implementation method and device of network target range system |
| CN114629800A (en) * | 2022-02-09 | 2022-06-14 | 烽台科技(北京)有限公司 | Visual generation method, device, terminal and storage medium for industrial control network target range |
| CN114629800B (en) * | 2022-02-09 | 2024-03-15 | 烽台科技(北京)有限公司 | Visual generation method, device, terminal and storage medium for industrial control network target range |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| AU2019257143B2 (en) | Policy based service routing | |
| CN111835794B (en) | Firewall policy control method and device, electronic equipment and storage medium | |
| CN113359511A (en) | Construction method and device of industrial control simulation network, computer equipment and storage medium | |
| US9973472B2 (en) | Methods and systems for orchestrating physical and virtual switches to enforce security boundaries | |
| EP3251297B1 (en) | End-to-end policy enforcement in the presence of a traffic midpoint device | |
| US8266685B2 (en) | Firewall installer | |
| CN110875847B (en) | Dynamic, endpoint configuration-based deployment of network infrastructure | |
| JP5106625B2 (en) | Method, system, and computer program for configuring a firewall | |
| US20180198839A1 (en) | Automatic Discovery of Management Nodes and Generation of CLI Using HA Module | |
| US20170329739A1 (en) | Methods and systems for loading a boot agent on a router network device | |
| US11916875B2 (en) | System and method for multi-layered rule learning in URL filtering | |
| CN112269570B (en) | Security code development method and device, computing device and medium | |
| Rygielski et al. | Model-based throughput prediction in data center networks | |
| CN111124535B (en) | Function expansion method, device, equipment and storage medium of cloud host QGA | |
| CN112506590A (en) | Interface calling method and device and electronic equipment | |
| US11487570B1 (en) | Efficient creation of endpoints for accessing services directly within a cloud-based system | |
| CN109783156B (en) | Application starting control method and device | |
| CN112181401A (en) | Application construction method and application construction platform | |
| US10678515B1 (en) | Simplifying and reusing visual programming graphs | |
| US12001694B1 (en) | Data storage system configuration compliance framework | |
| US20240143718A1 (en) | Provisioning multiple platform root of trust entities of a hardware device using role-based identity certificates | |
| US20240103818A1 (en) | Annotation driven just in time and state-based rbac policy control | |
| EP4340312A1 (en) | Translation of a source intent policy model to a target intent policy model | |
| US20240097983A1 (en) | Translation of a source intent policy model to a target intent policy model | |
| CN114860685A (en) | Database migration method, device, storage medium and equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20230728 Address after: 710000 No. 127 Youyi West Road, Shaanxi, Xi'an Applicant after: Northwestern Polytechnical University Address before: 710000 19th floor, block B, innovation and technology building, Northwest University of technology, No. 127, Youyi West Road, Beilin District, Xi'an City, Shaanxi Province Applicant before: Shaanxi University of technology Ruidi Information Technology Co.,Ltd. |
|
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20210907 |