CN113765826A - Network monitoring method, platform, device and computer readable storage medium - Google Patents
Network monitoring method, platform, device and computer readable storage medium Download PDFInfo
- Publication number
- CN113765826A CN113765826A CN202010485129.1A CN202010485129A CN113765826A CN 113765826 A CN113765826 A CN 113765826A CN 202010485129 A CN202010485129 A CN 202010485129A CN 113765826 A CN113765826 A CN 113765826A
- Authority
- CN
- China
- Prior art keywords
- monitoring
- data traffic
- target
- network
- data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000012544 monitoring process Methods 0.000 title claims abstract description 372
- 238000000034 method Methods 0.000 title claims abstract description 56
- 230000005540 biological transmission Effects 0.000 claims abstract description 82
- 238000012545 processing Methods 0.000 claims description 29
- 230000008569 process Effects 0.000 claims description 16
- 230000006870 function Effects 0.000 description 13
- 238000010586 diagram Methods 0.000 description 12
- 238000004590 computer program Methods 0.000 description 7
- 238000004891 communication Methods 0.000 description 6
- 230000000694 effects Effects 0.000 description 3
- 230000003993 interaction Effects 0.000 description 2
- 238000004458 analytical method Methods 0.000 description 1
- 238000013459 approach Methods 0.000 description 1
- 230000004069 differentiation Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000036541 health Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 239000007787 solid Substances 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/70—Virtual switches
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/08—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/25—Routing or path finding in a switch fabric
Abstract
The application discloses a network monitoring method, which comprises the following steps: determining a monitoring object in the current virtual network; wherein the monitoring object comprises a virtual machine and/or a virtual network device; determining a target transmission path for transmitting monitoring data traffic based on the monitoring object; acquiring target data traffic corresponding to the monitored object, and transmitting the target data traffic to a monitoring node through the target transmission path; the target data traffic is used for being analyzed and processed by the monitoring node so as to realize that the monitoring node correspondingly monitors the condition of the current virtual network, thereby realizing the monitoring of the data traffic of the virtual machine and other virtual network equipment and effectively carrying out complete data traffic monitoring on the private virtual network of the user. The application also discloses a network monitoring platform, a device and a computer readable storage medium.
Description
Technical Field
The present application relates to the field of computer technologies, and in particular, to a network monitoring method, a platform, an apparatus, and a computer-readable storage medium.
Background
Cloud Computing (Cloud Computing) is an internet-based Computing approach. The computing power of cloud computing is distributed over a large number of distributed computers, rather than local computers or remote servers, enabling enterprises to switch resources to desired applications. Open vSwitch, as a virtual switch running on a virtualization platform, can simulate the functions of a real physical switch and provide rich network functions on the virtualization platform, but the functions are not limited to switching functions. Compared with the traditional physical switch, the virtual switch also has a plurality of advantages: firstly, the configuration is more flexible, wherein tens of or even hundreds of virtual switches can be configured in a common server, and the number of ports can be flexibly selected, for example, a server can simulate a large number of virtual switches, and each switch can preset 4096 virtual ports; secondly, the cost is low, and the performance which can be achieved by an expensive common switch can be obtained through virtual switching; and thirdly, functions of more than ordinary physical switches, such as Quality of Service (QoS), security group, firewall and the like, can be provided.
Therefore, in a cloud computing environment, Open vSwitch is usually selected as an implementation mechanism of a virtual network, so as to provide stable, high-performance and rich network functions for cloud computing. Meanwhile, the real-time monitoring of the private virtual network of the user can analyze the flow of the user and reduce the influence of the user network on the service due to disconnection. However, the complexity of the network function and structure of cloud computing causes great difficulty in monitoring the health condition of the user network, that is, how to monitor data traffic on the whole data path, so that the monitoring platform can acquire the network condition in the cloud environment in real time and timely recover the network disconnection condition. At present, in a cloud computing environment, there are many methods for monitoring traffic of a virtual machine, and an sflow protocol of Openvswitch or other monitoring software (such as a ceilometer of openswitch) is mainly used for monitoring traffic. However, these methods are directed to data traffic of the virtual machine, and cannot completely describe and monitor the complete data traffic of the private virtual network of the user.
Disclosure of Invention
In order to solve the problems in the prior art, the application provides a network monitoring method, a platform, a device and a computer readable storage medium, which solve the problem that the data traffic of a virtual machine can only be monitored at present, realize the monitoring of the data traffic of the virtual machine and other virtual network devices, and can effectively perform complete data traffic monitoring on a private virtual network of a user.
In order to achieve the purpose, the technical scheme of the application is realized as follows:
in a first aspect, a network monitoring method is applied to a virtual switch, and the method includes:
determining a monitoring object in the current virtual network; wherein the monitoring object comprises a virtual machine and/or a virtual network device;
determining a target transmission path for transmitting monitoring data traffic based on the monitoring object;
acquiring target data traffic corresponding to the monitored object, and transmitting the target data traffic to a monitoring node through the target transmission path; and the target data traffic is used for analyzing and processing by the monitoring node so as to realize that the monitoring node correspondingly monitors the condition of the current virtual network.
Optionally, the determining a target transmission path for monitoring data traffic transmission based on the monitoring object includes:
creating a target interface within the virtual switch;
creating a first path between the monitoring object and the target interface;
creating a second path between the target interface and the monitoring node, thereby obtaining the target transmission path; wherein the target transmission path includes the first path and the second path.
Optionally, the obtaining of the target data traffic corresponding to the monitored object and transmitting the target data traffic to the monitoring node through the target transmission path includes:
acquiring a first data flow received or sent by the monitoring object based on the first path;
acquiring a monitoring condition, and processing the first data traffic according to the monitoring condition to obtain the target data traffic;
and transmitting the target data traffic to a monitoring node through the second path.
Optionally, the transmitting the target data traffic to the monitoring node through the second path includes:
determining a target network card; the target network card is different from a network card used for providing a service network in the current virtual network;
and based on the second path, sending the target data traffic to the monitoring node through the target network card.
Optionally, the obtaining, based on the first path, a first data traffic received or sent by the monitored object includes:
based on the first path, the first data traffic is acquired through a multi-stage flow table of Open vSwitch.
Optionally, the obtaining the monitoring condition and processing the first data traffic according to the monitoring condition to obtain the target data traffic includes:
acquiring the monitoring condition;
processing the first data flow according to the monitoring condition to obtain a second data flow; wherein the second data traffic comprises at least one data packet;
determining the target data traffic based on the second data traffic.
Optionally, the processing the first data traffic according to the monitoring condition to obtain a second data traffic includes:
if the monitoring condition is monitoring full data traffic, taking the first data traffic as the second data traffic;
and if the monitoring condition is the header information of the monitoring data packet, intercepting the header information of each data packet in the first data flow, and taking the header information of each data packet as the second data flow.
Optionally, the determining the target data traffic based on the second data traffic includes:
if the second data flow comprises a data packet, determining that the second data flow is the target data flow;
if the second data traffic comprises at least two data packets, determining a maximum transmission unit corresponding to the data packets transmitted by the second path;
acquiring at least two target data packets from the at least two data packets, and assembling the at least two target data packets to obtain an assembled data packet; the size of the assembled data packet is smaller than or equal to the maximum transmission unit, and the target data traffic includes the assembled data packet and data packets of the at least two data packets except for the at least two target data packets.
In a second aspect, a network monitoring platform, the network monitoring platform comprising: the system comprises a virtual machine, virtual network equipment, a virtual switch and a monitoring node; wherein:
the virtual machine and the virtual network equipment are used for generating or receiving data flow;
the virtual switch is used for realizing the following steps: determining a monitoring object in the current virtual network; wherein the monitoring object comprises a virtual machine and/or a virtual network device; determining a target transmission path for transmitting monitoring data traffic based on the monitoring object; acquiring target data traffic corresponding to the monitored object, and transmitting the target data traffic to a monitoring node through the target transmission path; the target data traffic is used for being analyzed and processed by the monitoring node so as to realize that the monitoring node correspondingly monitors the condition of the current virtual network;
and the monitoring node is used for receiving the target data traffic sent by the virtual switch, analyzing and processing the target data traffic and realizing corresponding monitoring on the current virtual network condition.
In a third aspect, a network monitoring apparatus, the apparatus configured to operate the virtual switch, the apparatus comprising: a first determining unit, a second determining unit and an obtaining unit; wherein:
the first determining unit is used for determining a monitoring object in the current virtual network; wherein the monitoring object comprises a virtual machine and/or a virtual network device;
the second determining unit is configured to determine a target transmission path for monitoring data traffic transmission based on the monitored object;
the acquisition unit is used for acquiring target data traffic corresponding to the monitored object and transmitting the target data traffic to the monitoring node through the target transmission path; and the target data traffic is used for analyzing and processing by the monitoring node so as to realize that the monitoring node correspondingly monitors and processes the condition of the current virtual network.
In a fourth aspect, a computer-readable storage medium has a network monitoring program stored thereon, and a processor executes the network monitoring program to implement the steps of the network monitoring method according to any one of the above aspects.
According to the network monitoring method, the platform, the device and the computer readable storage medium provided by the embodiment of the application, after the monitoring object in the current virtual network is determined, the target transmission path for transmitting the monitoring data traffic is determined based on the monitoring object, then the target data traffic corresponding to the monitoring object is obtained, and the target data traffic is transmitted to the monitoring node through the target transmission path. Therefore, the virtual switch can transmit the target data traffic corresponding to different monitoring objects in the current virtual network to the monitoring node respectively, so that the monitoring node can analyze and process the target data traffic corresponding to different monitoring objects, the monitoring of the target data traffic of different monitoring objects in the current virtual network is realized, the problem that the data traffic of the virtual machine can only be monitored at present is solved, the monitoring of the data traffic of the virtual machine and other virtual network equipment is realized, the complete data traffic monitoring of the private virtual network of a user can be effectively realized, a monitoring process is not required to be introduced, the monitoring complexity is greatly reduced, and the applicability of the scheme is improved. Furthermore, accurate positioning of network fault positions and differentiation of service flow and monitoring data flow during monitoring are achieved, influence of a monitoring process on existing user services is reduced, the user experience effect is improved, and monitoring based on real-time user data flow is achieved.
Drawings
Fig. 1 is a schematic flow chart of a network monitoring method provided in the present application;
fig. 2 is a schematic flow chart of another network monitoring method provided in the present application;
fig. 3 is an application scenario of a network monitoring method provided in the present application;
fig. 4 is a schematic view of an application scenario provided in the present application;
fig. 5 is a schematic structural diagram of a network monitoring platform provided in the present application;
fig. 6 is a schematic structural diagram of a network monitoring apparatus provided in the present application.
Detailed Description
The technical solution in the present application will be clearly and completely described below with reference to the drawings in the embodiments.
The embodiment provides a network monitoring method, which is applied to a virtual switch, and as shown in fig. 1, the method includes the following steps:
The monitoring object comprises a virtual machine and/or a virtual network device.
In this embodiment, the monitoring object may be one or more objects that are specified by a user corresponding to the current virtual network in a virtual machine and/or a virtual network device in the current virtual network. The current virtual network comprises at least one virtual machine and at least one virtual network device. The virtual network devices include virtual routers, virtual domain name system (service) protocol servers (DNS-servers), virtual firewalls, virtual load balancers, and the like.
In this embodiment, the starting point of the target transmission path is a monitoring object, and the target transmission path may be determined according to the distance from the monitoring object to the monitoring node.
And 103, acquiring target data traffic corresponding to the monitored object, and transmitting the target data traffic to the monitoring node through a target transmission path.
The target data traffic is used for being analyzed and processed by the monitoring node, so that the monitoring node can correspondingly monitor the current virtual network condition.
In this embodiment, the target data traffic may be data information received or sent by the monitoring object, or may be obtained by performing corresponding processing on the data information received or sent by the monitoring object, including application data information corresponding to the monitoring object in the current data network.
In the network monitoring method provided in this embodiment, after a monitoring object in a current virtual network is determined, a target transmission path for transmitting monitoring data traffic is determined based on the monitoring object, then target data traffic corresponding to the monitoring object is obtained, and the target data traffic is transmitted to a monitoring node through the target transmission path. Therefore, the virtual switch can transmit the target data traffic corresponding to different monitoring objects in the current virtual network to the monitoring node respectively, so that the monitoring node can analyze and process the target data traffic corresponding to different monitoring objects, the monitoring of the target data traffic of different monitoring objects in the current virtual network is realized, the problem that the data traffic of the virtual machine can only be monitored at present is solved, the monitoring of the data traffic of the virtual machine and other virtual network equipment is realized, the complete data traffic monitoring of the private virtual network of a user can be effectively realized, a monitoring process is not required to be introduced, the monitoring complexity is greatly reduced, and the applicability of the scheme is improved.
Based on the foregoing embodiments, this embodiment provides a network monitoring method, which is applied to a virtual switch, and as shown in fig. 2, the method includes the following steps:
The monitoring object comprises a virtual machine and/or a virtual network device.
In this embodiment, the monitoring object determined by the virtual switch may be carried in a request instruction sent by the monitoring node to monitor the current virtual network. In some application scenarios, one virtual switch corresponds to one monitoring node. For example, the monitoring object is specified by a user performing corresponding operation on the monitoring node, and in some application scenarios, the monitoring object may also be some default monitoring object.
In this embodiment, based on the monitoring object, the virtual switch creates a communication interface for the monitoring data traffic in the virtual switch, so as to reduce the possibility that the monitoring data traffic occupies other communication interfaces during transmission, and reduce the influence of the monitoring data traffic on the service traffic in the current virtual network.
In other embodiments, step 202 may be implemented by steps 202 a-202 c:
In this embodiment, an interface for sending monitoring data traffic to the virtual switch, that is, a target interface, which may be referred to as a vxlan interface (vxlan port), is created on the integrated bridge (br-int) of the virtual switch based on the vxlan. In some application scenarios, the target interface may be a created vxlan interface that is not currently used by the virtual switch call, or may be created by calling a creation method based on a vxlan protocol.
Step 202b, a first path is created between the monitoring object and the target interface.
In this embodiment, a path between the monitoring object and the target interface is directly determined to be a first path, for example, in a current virtual network, a firewall further exists between the VM and the virtual switch, and when the monitoring object is the VM, the path between the VM and the virtual switch is directly created to be the monitoring path, that is, the first path.
Wherein the target transmission path includes a first path and a second path.
In this embodiment, the monitoring node may be a computer device having a communication connection with the current virtual network. The second path between the target interface and the monitoring node can be realized through a physical network, the physical network comprises a wired internet and a wireless internet, and the physical network can also comprise other communication link modes, such as Bluetooth, ZigBee and the like.
The target data traffic is used for being analyzed and processed by the monitoring node, so that the monitoring node can correspondingly monitor the current virtual network condition.
In other embodiments, step 203 may be implemented by steps 203 a-203 c:
In this embodiment, the virtual switch acquires, on the first path, the first data traffic received by the monitoring object, or acquires the first data traffic sent by the monitoring object.
And 203b, acquiring the monitoring condition, and processing the first data traffic according to the monitoring condition to obtain the target data traffic.
In this embodiment, the monitoring condition may be a requirement that the monitoring node sends to the virtual switch, and is used to indicate that the virtual switch processes data of the monitored object.
And step 203c, transmitting the target data traffic to the monitoring node through a second path.
In other embodiments, step 203c may be implemented by steps a 11-a 12:
step a11, determining a target network card.
The target network card is different from a network card used for providing a service network in the current virtual network.
In this embodiment, the target network card is a network card for providing a network bandwidth for monitoring traffic transmission. The target network card may be set according to the monitoring service.
And a12, sending the target data traffic to the monitoring node through the target network card based on the second path.
It should be noted that, for the descriptions of the same steps and the same contents in this embodiment as those in other embodiments, reference may be made to the descriptions in other embodiments, which are not described herein again.
In the network monitoring method provided in this embodiment, after a monitoring object in a current virtual network is determined, a target transmission path for transmitting monitoring data traffic is determined based on the monitoring object, then target data traffic corresponding to the monitoring object is obtained, and the target data traffic is transmitted to a monitoring node through the target transmission path. Therefore, the virtual switch can transmit the target data traffic corresponding to different monitoring objects in the current virtual network to the monitoring node respectively, so that the monitoring node can analyze and process the target data traffic corresponding to different monitoring objects, the monitoring of the target data traffic of different monitoring objects in the current virtual network is realized, the problem that the data traffic of the virtual machine can only be monitored at present is solved, the monitoring of the data traffic of the virtual machine and other virtual network equipment is realized, the complete data traffic monitoring of the private virtual network of a user can be effectively realized, a monitoring process is not required to be introduced, the monitoring complexity is greatly reduced, and the applicability of the scheme is improved. Furthermore, as the monitoring object can be refined to a virtual machine and fine network equipment, the flow of each node of the current virtual network can be monitored, and the network fault position can be accurately positioned; and through setting up the target interface, realized distinguishing business flow and control data traffic when monitoring, still transmit control data traffic through the target network card that is used for control data traffic transmission, prevent that control data traffic from occupying the business network broadband when transmitting, reduced the influence of monitoring process to current user's business, improved user's use and experienced the effect.
Based on the foregoing embodiments, this embodiment provides a network monitoring method, which is applied to a virtual switch, and as shown in fig. 3, the method includes the following steps:
The monitoring object comprises a virtual machine and/or a virtual network device.
And step 304, creating a second path between the target interface and the monitoring node, so as to obtain a target transmission path.
Wherein the target transmission path includes a first path and a second path.
In this embodiment, step 305 may be implemented by the following steps: based on the first path, a first data flow is obtained through a multi-stage flow table of the OpenvSwitch.
In this embodiment, the virtual switch copies, through the Open vSwitch multi-stage flow table, the service data traffic sent by the monitoring object to the virtual switch or sent by the virtual switch to the monitoring object, and obtains the first data traffic. The service data flow is transmitted continuously according to the actual service path, and the monitoring data flow does not influence the transmission process of the service data flow.
And step 306, acquiring the monitoring condition, and processing the first data traffic according to the monitoring condition to obtain the target data traffic.
In this embodiment, step 306 can be implemented by the following steps 306 a-306 b:
and step 306a, acquiring monitoring conditions.
And step 306b, processing the first data flow according to the monitoring condition to obtain a second data flow.
Wherein the second data traffic comprises at least one data packet.
In this embodiment, step 306b can be realized by the following steps b 11-b 12:
and b11, if the monitoring condition is monitoring the full data traffic, taking the first data traffic as a second data traffic.
In this embodiment, the monitoring of the full data traffic, i.e. the first data traffic, is performed without any processing.
Step b12, if the monitoring condition is the header information of the monitoring data packet, intercepting the header information of each data packet in the first data traffic, and using the header information of each data packet as the second data traffic.
And step 306c, determining the target data flow based on the second data flow.
In this embodiment, the virtual switch analyzes the second data traffic, and determines the target data traffic from the second data traffic.
In other embodiments, step 306c may be implemented by step c11 or steps c 12-c 13. If the second data traffic comprises one data packet, the virtual switch selectively performs the step c11, and if the second data traffic comprises at least two data packets, the virtual switch selectively performs the steps c 12-c 13:
and c11, if the second data flow comprises a data packet, determining the second data flow as the target data flow.
In this embodiment, if the size of the second data traffic is smaller than the maximum transmission unit, the second data traffic is split, the split data packets are all smaller than or equal to the maximum transmission unit, and the split data packets are used as the target data traffic.
Step c12, if the second data traffic includes at least two data packets, determining a maximum transmission unit corresponding to the data packets transmitted by the second path.
In this embodiment, the maximum transmission unit is the packet size of the maximum data packet that can be transmitted in the second path.
And c13, acquiring at least two target data packets from the at least two data packets, and assembling the at least two target data packets to obtain an assembled data packet.
The size of the assembled data packet is smaller than or equal to the maximum transmission unit, and the target data flow comprises the assembled data packet and data packets except for at least two target data packets in the at least two data packets.
In this embodiment, it is assumed that the maximum transmission unit is 1000 bytes, and the second data traffic includes five data packets, and the sizes of the data packets are 300 bytes, 800 bytes and 900 bytes, respectively. Thus, the virtual switch can assemble 3 data packets of 300 bytes to obtain an assembled data packet; since the size of the maximum transmission unit is exceeded when any at least two of the 800-byte data packet and the 900-byte data packet are assembled with 3 300-byte data packets, the 800-byte data packet and the 900-byte data packet are not assembled, and thus the target data traffic including the assembled data packet, the 800-byte data packet, and the 900-byte data packet can be obtained. It should be noted that the sFlow function may be used to assemble at least two target packets.
The target network card is different from a network card used for providing a service network in the current virtual network.
And 308, sending the target data traffic to the monitoring node through the target network card based on the second path.
Based on the foregoing embodiments, the present embodiment provides an application scenario as shown in fig. 4, where the application scenario includes: the Virtual Machine (VM) a, the Virtual router B, the Virtual load balancer C, the Virtual firewall D, the Virtual switch (OVS) E and the monitoring node F, where the VM a, the Virtual router B, the Virtual load balancer C, the Virtual firewall D and the OVS E belong to a current Virtual network. VM a includes VM1 and VM2, VM1 and VM2 may implement a communication link with virtual switch E through qvo interface; and the virtual router B, the virtual load balancer C and the virtual firewall D all realize communication link with the virtual switch E through a tap interface.
The corresponding monitoring object may be one or more VMs a, or may be a virtual router B, or may be a virtual load balancer C, or a virtual firewall D, or may be any combination of the foregoing. In the OVS, vxlan port1 and vxlan port2 are two interfaces, where: the vxlan port1 is an interface used for being transmitted to the OVS at a VM or a virtual network device, and is sent to other devices except the monitoring node through the OVS, that is, the vxlan port1 is an interface used for transmitting the service traffic of the current virtual network; and vxlan port2 is the target interface created when monitoring data traffic is transmitted, i.e., the interface used to transmit monitoring data traffic. Note that, in fig. 4, solid arrows indicate traffic data flows, and dashed arrows indicate target data flows. Fig. 4 only shows a schematic diagram of the service network card being sent to the physical network, and the schematic diagram after the physical network is not shown.
Based on fig. 4, an exemplary implementation of monitoring may be determined as: when the monitoring object is data traffic sent by VM1, the OVS E creates a monitoring data traffic transmission path, including creating a target interface vxlan port2 on br-int and allocating a target network card, so as to obtain a target transmission path as follows: VM 1- > vxlan port 2- > target network card- > monitoring node, wherein- > is monitoring data flow direction; after the OVS E creates a target transmission path, acquiring the monitoring data traffic of the VM1 ≧ OVS E from the Open vSwitch multi-level flow table, it should be noted that, at this time, a copy of the data traffic sent by the VM1 is performed, and the service process of the VM1 is not affected; processing the obtained monitoring data traffic according to a monitoring requirement, such as monitoring full data, wherein the monitoring requirement is the monitoring full data, so that the monitoring data traffic does not need to be processed, the monitoring data traffic is directly used as a target data traffic, and then the target data traffic is sent to the vxlan port 2; and finally, the vxlan port2 sends the target data traffic to the target network card, and the target data traffic is sent to the monitoring node through the target network card, so that the monitoring node can perform subsequent analysis on the target data traffic.
In other application scenarios, after receiving the monitoring data traffic, the OVS processes the monitoring data traffic according to the monitoring requirement, and assembles the processed monitoring data traffic by using an sFlow function to obtain an assembled data packet with a size smaller than or equal to the maximum transmission unit of the data channel from the target network card to the monitoring node, so as to obtain the target data traffic, wherein the target data traffic includes the assembled data packet and the processed monitoring data traffic. It should be noted that, in some application scenarios, the size of the data packet in the processed monitoring data traffic is close to the maximum transmission unit, and the data packet does not need to be assembled, and the corresponding target data traffic does not include an assembled data packet. In some other application scenarios, all data packets in the processed monitoring data traffic may be packaged into at least one assembled data packet, and then all corresponding target data traffic is an assembled data packet.
It should be noted that, for the descriptions of the same steps and the same contents in this embodiment as those in other embodiments, reference may be made to the descriptions in other embodiments, which are not described herein again.
In the network monitoring method provided by this embodiment, the virtual switch may transmit the target data traffic corresponding to different monitored objects in the current virtual network to the monitoring node, so that the monitoring node analyzes and processes the target data traffic corresponding to different monitored objects, thereby monitoring the target data traffic of different monitored objects in the current virtual network, solving the problem that the data traffic of the current virtual machine can only be monitored, monitoring the data traffic of the virtual machine and other virtual network devices, effectively monitoring the data traffic of the private virtual network of the user, and without introducing a monitoring process, greatly reducing the monitoring complexity, and improving the applicability of the scheme. Furthermore, as the monitoring object can be refined to the virtual machine and the virtual network equipment, the flow monitoring can be carried out on each node of the current virtual network, and the accurate positioning of the network fault position can be realized; and through setting up the target interface, realized distinguishing business flow and control data traffic when monitoring, still transmit control data traffic through the target network card that is used for control data traffic transmission, prevent that control data traffic from occupying the business network broadband when transmitting, reduced the influence of monitoring process to current user's business, improved user's use and experienced the effect. In addition, the monitoring data flow for monitoring is obtained through the Open vSwitch multi-level flow table, and the real-time performance of the user data flow for monitoring is guaranteed.
In this embodiment, a network monitoring platform is provided, which can be applied to the network monitoring method provided in fig. 1 to 3 and the corresponding embodiments described above, and as shown in fig. 5, the network monitoring platform 4 includes: virtual machine 41, virtual network device 42, virtual switch 43 and monitoring node 44, wherein:
a virtual machine 41 and a virtual network device 42, both for generating or receiving data traffic;
a virtual switch 43, configured to determine a monitoring object in the current virtual network; the monitoring object comprises a virtual machine and/or a virtual network device; determining a target transmission path for transmitting monitoring data traffic based on the monitoring object; acquiring target data traffic corresponding to a monitored object, and transmitting the target data traffic to a monitoring node through a target transmission path; the target data traffic is used for being analyzed and processed by the monitoring node so as to realize that the monitoring node correspondingly monitors the current virtual network condition;
and the monitoring node 44 is configured to receive the target data traffic sent by the virtual switch, analyze the target data traffic, and implement corresponding monitoring on the current virtual network condition.
In other embodiments, the virtual switch is further configured to perform the steps of:
creating a target interface within the virtual switch;
creating a first path between the monitoring object and the target interface;
creating a second path between the target interface and the monitoring node so as to obtain a target transmission path; wherein the target transmission path includes a first path and a second path.
In other embodiments, the virtual switch is further configured to perform the steps of:
acquiring a first data flow received or sent by a monitoring object based on a first path;
acquiring a monitoring condition, and processing the first data traffic according to the monitoring condition to obtain target data traffic;
and transmitting the target data traffic to the monitoring node through the second path.
In other embodiments, the virtual switch is further configured to perform the steps of:
determining a target network card; the target network card is different from a network card used for providing a service network in the current virtual network;
and based on the second path, sending the target data traffic to the monitoring node through the target network card.
In other embodiments, the virtual switch is further configured to perform the steps of:
based on the first path, a first data flow is obtained through a multi-level flow table of Open vSwitch.
In other embodiments, the virtual switch is further configured to perform the steps of:
acquiring a monitoring condition;
processing the first data flow according to the monitoring condition to obtain a second data flow; wherein the second data traffic comprises at least one data packet;
determining the target data traffic based on the second data traffic.
In other embodiments, the virtual switch is further configured to perform the steps of:
if the monitoring condition is monitoring the full data traffic, taking the first data traffic as a second data traffic;
and if the monitoring condition is the header information of the monitoring data packet, intercepting the header information of each data packet in the first data flow, and taking the header information of each data packet as a second data flow.
In other embodiments, the virtual switch is further configured to perform the steps of:
if the second data flow comprises a data packet, determining the second data flow as a target data flow;
if the second data flow comprises at least two data packets, determining a maximum transmission unit corresponding to the data packets transmitted by the second path;
acquiring at least two target data packets from the at least two data packets, and assembling the at least two target data packets to obtain an assembled data packet; the size of the assembled data packet is smaller than or equal to the maximum transmission unit, and the target data flow comprises the assembled data packet and data packets except for at least two target data packets in the at least two data packets.
It should be noted that, for the descriptions of the same steps and the same contents in this embodiment as those in other embodiments, reference may be made to the descriptions in other embodiments, which are not described herein again.
The network monitoring platform provided in this embodiment determines, after determining a monitoring object in a current virtual network, a target transmission path for transmitting monitoring data traffic based on the monitoring object, then obtains target data traffic corresponding to the monitoring object, and transmits the target data traffic to a monitoring node through the target transmission path. Therefore, the virtual switch can transmit the target data traffic corresponding to different monitoring objects in the current virtual network to the monitoring node respectively, so that the monitoring node can analyze and process the target data traffic corresponding to different monitoring objects, the monitoring of the target data traffic of different monitoring objects in the current virtual network is realized, the problem that the data traffic of the virtual machine can only be monitored at present is solved, the monitoring of the data traffic of the virtual machine and other virtual network equipment is realized, and the complete data traffic monitoring of the private virtual network of a user can be effectively carried out.
The network monitoring apparatus 5 provided in this embodiment can be applied to the network monitoring method provided in fig. 1 to 3 and the corresponding embodiments described above, and as shown in fig. 6, the apparatus includes: a first determining unit 51, a second determining unit 52, and an obtaining unit 53, wherein:
a first determining unit 51, configured to determine a monitoring object in a current virtual network; the monitoring object comprises a virtual machine and/or a virtual network device;
a second determining unit 52, configured to determine, based on the monitoring object, a target transmission path for transmitting the monitoring data traffic;
an obtaining unit 53, configured to obtain a target data traffic corresponding to a monitored object, and transmit the target data traffic to a monitoring node through a target transmission path; the target data traffic is used for being analyzed and processed by the monitoring node, so that the monitoring node can correspondingly monitor the current virtual network condition.
In other embodiments, the second determination unit includes: a creation module; wherein:
a creation module for creating a target interface within the virtual switch; creating a first path between the monitoring object and the target interface; creating a second path between the target interface and the monitoring node so as to obtain a target transmission path; wherein the target transmission path includes a first path and a second path.
In other embodiments, the obtaining unit includes: the device comprises an acquisition module and a transmission module; wherein:
the acquisition module is used for acquiring first data traffic received or sent by the monitoring object based on the first path;
the acquisition module is further used for acquiring the monitoring condition and processing the first data traffic according to the monitoring condition to obtain target data traffic;
and the transmission module is used for transmitting the target data flow to the monitoring node through the second path.
In other embodiments, the transmission module is specifically configured to:
determining a target network card; the target network card is different from a network card used for providing a service network in the current virtual network;
and based on the second path, sending the target data traffic to the monitoring node through the target network card.
In other embodiments, the obtaining module is specifically configured to:
based on the first path, a first data flow is obtained through a multi-level flow table of Open vSwitch.
In other embodiments, the obtaining module is further specifically configured to:
acquiring a monitoring condition;
processing the first data flow according to the monitoring condition to obtain a second data flow; wherein the second data traffic comprises at least one data packet;
based on the second data traffic, a target data traffic is determined.
In other embodiments, the obtaining module is specifically configured to process the first data traffic according to the monitoring condition to obtain the second data traffic, and is further specifically configured to:
if the monitoring condition is monitoring the full data traffic, taking the first data traffic as a second data traffic;
and if the monitoring condition is the header information of the monitoring data packet, intercepting the header information of each data packet in the first data flow, and taking the header information of each data packet as a second data flow.
In other embodiments, the obtaining module is configured to determine the target data traffic based on the second data traffic, and is further specifically configured to:
if the second data flow comprises a data packet, determining the second data flow as a target data flow;
if the second data flow comprises at least two data packets, determining a maximum transmission unit corresponding to the data packets transmitted by the second path;
acquiring at least two target data packets from the at least two data packets, and assembling the at least two target data packets to obtain an assembled data packet; the size of the assembled data packet is smaller than or equal to the maximum transmission unit, and the target data flow comprises the assembled data packet and data packets except for at least two target data packets in the at least two data packets.
In practical applications, the first determining Unit 51, the second determining Unit 52, and the obtaining Unit 53 may be implemented by a Central Processing Unit (CPU), a microprocessor Unit (MPU), a Digital Signal Processor (DSP), a Field Programmable Gate Array (FPGA), or the like in the wireless data transmitting device.
It should be noted that, in the interaction process between steps implemented by the processor in this embodiment, reference may be made to fig. 1 to 3 and the interaction process in the network monitoring method provided in the corresponding embodiments, and details are not described here.
The network monitoring apparatus provided in this embodiment determines, after determining a monitoring object in a current virtual network, a target transmission path for transmitting monitoring data traffic based on the monitoring object, then obtains target data traffic corresponding to the monitoring object, and transmits the target data traffic to a monitoring node through the target transmission path. Therefore, the virtual switch can transmit the target data traffic corresponding to different monitoring objects in the current virtual network to the monitoring node respectively, so that the monitoring node can analyze and process the target data traffic corresponding to different monitoring objects, the monitoring of the target data traffic of different monitoring objects in the current virtual network is realized, the problem that the data traffic of the virtual machine can only be monitored at present is solved, the monitoring of the data traffic of the virtual machine and other virtual network equipment is realized, and the complete data traffic monitoring of the private virtual network of a user can be effectively carried out.
Based on the foregoing embodiments, embodiments of the present application provide a computer-readable storage medium, where one or more programs are stored in the computer-readable storage medium, and the one or more programs can be executed by one or more processors to implement the method implementation processes provided in the embodiments corresponding to fig. 1 to 3, which are not described herein again.
As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of a hardware embodiment, a software embodiment, or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, optical storage, and the like) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
The above description is only a preferred embodiment of the present application, and is not intended to limit the scope of the present application.
Claims (11)
1. A network monitoring method, applied to a virtual switch, the method comprising:
determining a monitoring object in the current virtual network; wherein the monitoring object comprises a virtual machine and/or a virtual network device;
determining a target transmission path for transmitting monitoring data traffic based on the monitoring object;
acquiring target data traffic corresponding to the monitored object, and transmitting the target data traffic to a monitoring node through the target transmission path; and the target data traffic is used for analyzing and processing by the monitoring node so as to realize that the monitoring node correspondingly monitors the condition of the current virtual network.
2. The method according to claim 1, wherein the determining a target transmission path for monitoring data traffic transmission based on the monitoring object comprises:
creating a target interface within the virtual switch;
creating a first path between the monitoring object and the target interface;
creating a second path between the target interface and the monitoring node, thereby obtaining the target transmission path; wherein the target transmission path includes the first path and the second path.
3. The method according to claim 2, wherein the obtaining of the target data traffic corresponding to the monitoring object and the transmitting of the target data traffic to the monitoring node through the target transmission path comprises:
acquiring a first data flow received or sent by the monitoring object based on the first path;
acquiring a monitoring condition, and processing the first data traffic according to the monitoring condition to obtain the target data traffic;
and transmitting the target data traffic to a monitoring node through the second path.
4. The method of claim 3, wherein transmitting the target data traffic to a monitoring node via the second path comprises:
determining a target network card; the target network card is different from a network card used for providing a service network in the current virtual network;
and based on the second path, sending the target data traffic to the monitoring node through the target network card.
5. The method according to claim 3, wherein the obtaining the first data traffic received or sent by the monitoring object based on the first path comprises:
and acquiring the first data flow from a multi-stage flow table of the Open vSwitch based on the first path.
6. The method according to claim 3, wherein the obtaining the monitoring condition and processing the first data traffic according to the monitoring condition to obtain the target data traffic comprises:
acquiring the monitoring condition;
processing the first data flow according to the monitoring condition to obtain a second data flow; wherein the second data traffic comprises at least one data packet;
determining the target data traffic based on the second data traffic.
7. The method of claim 6, wherein the processing the first data traffic according to the monitoring condition to obtain a second data traffic comprises:
if the monitoring condition is monitoring full data traffic, taking the first data traffic as the second data traffic;
and if the monitoring condition is the header information of the monitoring data packet, intercepting the header information of each data packet in the first data flow, and taking the header information of each data packet as the second data flow.
8. The method of claim 6 or 7, wherein determining the target data traffic based on the second data traffic comprises:
if the second data flow comprises a data packet, determining that the second data flow is the target data flow;
if the second data traffic comprises at least two data packets, determining a maximum transmission unit corresponding to the data packets transmitted by the second path;
acquiring at least two target data packets from the at least two data packets, and assembling the at least two target data packets to obtain an assembled data packet; the size of the assembled data packet is smaller than or equal to the maximum transmission unit, and the target data traffic includes the assembled data packet and data packets of the at least two data packets except for the at least two target data packets.
9. A network monitoring platform, comprising: the system comprises a virtual machine, virtual network equipment, a virtual switch and a monitoring node; wherein:
the virtual machine and the virtual network equipment are used for generating or receiving data flow;
the virtual switch is used for realizing the following steps: determining a monitoring object in the current virtual network; wherein the monitoring object comprises a virtual machine and/or a virtual network device; determining a target transmission path for transmitting monitoring data traffic based on the monitoring object; acquiring target data traffic corresponding to the monitored object, and transmitting the target data traffic to a monitoring node through the target transmission path; the target data traffic is used for being analyzed and processed by the monitoring node so as to realize that the monitoring node correspondingly monitors the condition of the current virtual network;
and the monitoring node is used for receiving the target data traffic sent by the virtual switch, analyzing and processing the target data traffic and realizing corresponding monitoring on the current virtual network condition.
10. A network monitoring apparatus, the apparatus configured to operate a virtual switch, the apparatus comprising: a first determining unit, a second determining unit and an obtaining unit; wherein:
the first determining unit is used for determining a monitoring object in the current virtual network; wherein the monitoring object comprises a virtual machine and/or a virtual network device;
the second determining unit is configured to determine a target transmission path for monitoring data traffic transmission based on the monitored object;
the acquisition unit is used for acquiring target data traffic corresponding to the monitored object and transmitting the target data traffic to the monitoring node through the target transmission path; and the target data traffic is used for analyzing and processing by the monitoring node so as to realize that the monitoring node correspondingly monitors and processes the condition of the current virtual network.
11. A computer-readable storage medium, having a network monitoring program stored thereon, which when executed by a processor implements the steps of the network monitoring method according to any one of claims 1 to 8.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010485129.1A CN113765826A (en) | 2020-06-01 | 2020-06-01 | Network monitoring method, platform, device and computer readable storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010485129.1A CN113765826A (en) | 2020-06-01 | 2020-06-01 | Network monitoring method, platform, device and computer readable storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113765826A true CN113765826A (en) | 2021-12-07 |
Family
ID=78782631
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010485129.1A Pending CN113765826A (en) | 2020-06-01 | 2020-06-01 | Network monitoring method, platform, device and computer readable storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113765826A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115208904A (en) * | 2022-06-29 | 2022-10-18 | 深圳星云智联科技有限公司 | Flow monitoring method and related equipment |
Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104378264A (en) * | 2014-12-12 | 2015-02-25 | 武汉噢易云计算有限公司 | sFlow based virtual machine process traffic monitoring method |
| CN104683165A (en) * | 2013-11-27 | 2015-06-03 | 北京天地超云科技有限公司 | Monitor method for virtual machine network data in Xen virtual environment |
| US20160105333A1 (en) * | 2014-10-10 | 2016-04-14 | Nicira, Inc. | Logical network traffic analysis |
| WO2016155816A1 (en) * | 2015-04-01 | 2016-10-06 | Telefonaktiebolaget Lm Ericsson (Publ) | Methods and devices for monitoring of network performance for container virtualization |
| US20170078198A1 (en) * | 2015-09-15 | 2017-03-16 | Cisco Technology, Inc. | Method and apparatus for advanced statistics collection |
| CN107623611A (en) * | 2017-09-22 | 2018-01-23 | 国云科技股份有限公司 | A kind of flux monitoring system of cloud platform virtual machine |
| CN108494657A (en) * | 2018-04-08 | 2018-09-04 | 苏州云杉世纪网络科技有限公司 | OpenStack cloud platform virtual probe mirror methods based on Open vSwitch |
| CN108900384A (en) * | 2018-07-20 | 2018-11-27 | 新华三云计算技术有限公司 | Network flow monitoring method, apparatus and system, computer readable storage medium |
| CN109905283A (en) * | 2017-12-07 | 2019-06-18 | 中国移动通信集团公司 | A kind of flow statistical method, device and computer readable storage medium |
| CN109951353A (en) * | 2019-03-11 | 2019-06-28 | 北京启明星辰信息安全技术有限公司 | A kind of cloud platform flow rate testing methods and resource pool system |
| CN109981403A (en) * | 2019-03-05 | 2019-07-05 | 北京勤慕数据科技有限公司 | Virtual machine network data traffic monitoring method and device |
| US20200092299A1 (en) * | 2018-09-18 | 2020-03-19 | Microsoft Technology Licensing, Llc | Mirroring virtual network traffic |
-
2020
- 2020-06-01 CN CN202010485129.1A patent/CN113765826A/en active Pending
Patent Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104683165A (en) * | 2013-11-27 | 2015-06-03 | 北京天地超云科技有限公司 | Monitor method for virtual machine network data in Xen virtual environment |
| US20160105333A1 (en) * | 2014-10-10 | 2016-04-14 | Nicira, Inc. | Logical network traffic analysis |
| CN104378264A (en) * | 2014-12-12 | 2015-02-25 | 武汉噢易云计算有限公司 | sFlow based virtual machine process traffic monitoring method |
| WO2016155816A1 (en) * | 2015-04-01 | 2016-10-06 | Telefonaktiebolaget Lm Ericsson (Publ) | Methods and devices for monitoring of network performance for container virtualization |
| US20170078198A1 (en) * | 2015-09-15 | 2017-03-16 | Cisco Technology, Inc. | Method and apparatus for advanced statistics collection |
| CN107623611A (en) * | 2017-09-22 | 2018-01-23 | 国云科技股份有限公司 | A kind of flux monitoring system of cloud platform virtual machine |
| CN109905283A (en) * | 2017-12-07 | 2019-06-18 | 中国移动通信集团公司 | A kind of flow statistical method, device and computer readable storage medium |
| CN108494657A (en) * | 2018-04-08 | 2018-09-04 | 苏州云杉世纪网络科技有限公司 | OpenStack cloud platform virtual probe mirror methods based on Open vSwitch |
| CN108900384A (en) * | 2018-07-20 | 2018-11-27 | 新华三云计算技术有限公司 | Network flow monitoring method, apparatus and system, computer readable storage medium |
| US20200092299A1 (en) * | 2018-09-18 | 2020-03-19 | Microsoft Technology Licensing, Llc | Mirroring virtual network traffic |
| CN109981403A (en) * | 2019-03-05 | 2019-07-05 | 北京勤慕数据科技有限公司 | Virtual machine network data traffic monitoring method and device |
| CN109951353A (en) * | 2019-03-11 | 2019-06-28 | 北京启明星辰信息安全技术有限公司 | A kind of cloud platform flow rate testing methods and resource pool system |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115208904A (en) * | 2022-06-29 | 2022-10-18 | 深圳星云智联科技有限公司 | Flow monitoring method and related equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11405289B2 (en) | Distributed packet deduplication | |
| Katsikas et al. | Metron:{NFV} service chains at the true speed of the underlying hardware | |
| US10212089B1 (en) | Encapsulating traffic entropy into virtual WAN overlay for better load balancing | |
| EP3343840B1 (en) | Dynamic distribution of network entities among monitoring agents | |
| EP3355538B1 (en) | Method, apparatus and system for controlling service transmission rate | |
| Qi et al. | Assessing container network interface plugins: Functionality, performance, and scalability | |
| US20200275358A1 (en) | Stateful network slice selection using slice selector as connection termination proxy | |
| JP2018033135A (en) | Method and system for processing dsr load balancing using loopback interface in virtual network environment | |
| US10171425B2 (en) | Active firewall control for network traffic sessions within virtual processing platforms | |
| Sanz et al. | SFCPerf: An automatic performance evaluation framework for service function chaining | |
| JP2016528630A (en) | Application-aware network management | |
| US10911310B2 (en) | Network traffic steering with programmatically generated proxy auto-configuration files | |
| CN112104754A (en) | Network proxy method, system, device, equipment and storage medium | |
| Elsayed et al. | Dealing with COVID-19 network traffic spikes [cybercrime and forensics] | |
| Lee et al. | No more middlebox: Integrate processing into network | |
| Lee et al. | High-performance software load balancer for cloud-native architecture | |
| CN112788060A (en) | Data packet transmission method and device, storage medium and electronic equipment | |
| US11855872B2 (en) | Methods, systems, and computer readable media for network traffic generation using machine learning | |
| Katsikas et al. | Metron: High-performance NFV service chaining even in the presence of blackboxes | |
| CN113765826A (en) | Network monitoring method, platform, device and computer readable storage medium | |
| Caraguay et al. | Framework for optimized multimedia routing over software defined networks | |
| CN106789650B (en) | Wide area network acceleration method and device based on IP | |
| CN110768870B (en) | Quality monitoring method and device for intelligent special line | |
| Shah et al. | Implementation and performance analysis of firewall on open vSwitch | |
| Bonfim et al. | Identifying performance bottlenecks in software data planes for cloud-based nfv services |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |