CN117255021B - Network target range heterogeneous target configuration acquisition method and device, electronic equipment and storage medium - Google Patents
Network target range heterogeneous target configuration acquisition method and device, electronic equipment and storage medium Download PDFInfo
- Publication number
- CN117255021B CN117255021B CN202311508035.1A CN202311508035A CN117255021B CN 117255021 B CN117255021 B CN 117255021B CN 202311508035 A CN202311508035 A CN 202311508035A CN 117255021 B CN117255021 B CN 117255021B
- Authority
- CN
- China
- Prior art keywords
- target
- agent
- range platform
- configuration
- training task
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 47
- 238000012549 training Methods 0.000 claims abstract description 117
- 238000011156 evaluation Methods 0.000 claims description 7
- 238000004590 computer program Methods 0.000 claims description 2
- 230000008878 coupling Effects 0.000 abstract description 10
- 238000010168 coupling process Methods 0.000 abstract description 10
- 238000005859 coupling reaction Methods 0.000 abstract description 10
- 230000003993 interaction Effects 0.000 abstract description 7
- 238000004891 communication Methods 0.000 abstract description 6
- 238000005516 engineering process Methods 0.000 abstract description 4
- 238000010586 diagram Methods 0.000 description 8
- 230000008569 process Effects 0.000 description 6
- 230000006870 function Effects 0.000 description 5
- 238000011161 development Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 230000006978 adaptation Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 210000001503 joint Anatomy 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000002360 preparation method Methods 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 230000008707 rearrangement Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0894—Policy-based network configuration management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0895—Configuration of virtualised networks or elements, e.g. virtualised network function or OpenFlow elements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/14—Network analysis or design
- H04L41/145—Network analysis or design involving simulating, designing, planning or modelling of a network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/40—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks using virtualisation of network functions or resources, e.g. SDN or NFV entities
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a method, a device, electronic equipment and a storage medium for quickly accessing heterogeneous target configuration collection in a network target range, and relates to the network target range management technology. The method comprises the following steps: generating a target model according to the heterogeneous target information; transmitting the target model to a range platform through an agent, wherein the range platform establishes a training task according to the target model; receiving a training task issued by a target range platform through an agent, and issuing the training task to target equipment through an insert by the agent; and the plug-in configures and collects the target equipment according to the training task, and the agent sends the data collected by the plug-in to the target range platform. And realizing data interaction with the target equipment through the agency and the plug-in. The communication between the target equipment in the target and the target range platform is realized through the agent and the plug-in, so that the coupling between the target and the target range platform is reduced, and the usability is improved.
Description
Technical Field
The embodiment of the invention relates to a network target range management technology, in particular to a network target range heterogeneous target configuration acquisition method, a device, electronic equipment and a storage medium.
Background
The network Range (Cyber Range) is a technology or product for simulating and reproducing the running states and running environments of network architecture, system equipment and business processes in real network space based on a virtualization technology, so as to more effectively realize the actions of learning, researching, checking, competition, exercise and the like related to network safety, thereby improving the network safety countermeasure level of personnel and institutions.
In the practical application of the network target range, the target range platform is in butt joint with a plurality of heterogeneous targets, and the tasks of network security countermeasure and the like are respectively carried out in each target. The current targets have strong coupling with the range platform, i.e. the targets must be in the same set of communication configuration as the range platform when created. If a third party target or an online created target is used, communication may not be possible due to the target not matching the range platform. How to reduce the coupling of the target and the range platform becomes a problem to be solved.
Disclosure of Invention
The invention provides a network target range heterogeneous target configuration acquisition method, a device, electronic equipment and a storage medium, which are used for reducing the coupling degree of targets and a target range platform and improving usability.
In a first aspect, an embodiment of the present invention provides a method for acquiring a network target configuration of a target range, including:
generating a target model according to the target information;
transmitting the target model to a range platform through an agent, wherein the range platform establishes a training task according to the target model;
receiving a training task issued by a target range platform through an agent, and issuing the training task to target equipment through an insert by the agent;
and the plug-in configures and collects the target equipment according to the training task, and the agent sends the data acquired by the plug-in to the target range platform.
In a second aspect, an embodiment of the present invention further provides a network target configuration acquisition device, including:
the generation module is used for generating a target model according to the target information;
the initialization module is used for sending the target model to a range platform through an agent so that the range platform establishes a training task according to the target model;
the configuration module is used for receiving training tasks issued by the target range platform through an agent, and the agent issues the training tasks to the target equipment through the plug-in; and the plug-in configures and collects the target equipment according to the training task, and the agent sends the data acquired by the plug-in to the target range platform.
In a third aspect, an embodiment of the present invention further provides a computer device, including a memory, a processor, and a computer program stored in the memory and capable of running on the processor, where the processor implements a network target range heterogeneous target configuration collection method as shown in the embodiment of the present invention when executing the program.
In a fourth aspect, embodiments of the present invention also provide a storage medium containing computer executable instructions which, when executed by a computer processor, are used to perform a network range heterogeneous target configuration acquisition method as shown in embodiments of the present invention.
According to the network target range heterogeneous target configuration acquisition method provided by the embodiment of the invention, a target model is generated according to target information; transmitting the target model to a range platform through an agent, wherein the range platform establishes a training task according to the target model; receiving a training task issued by a target range platform through an agent, and issuing the training task to target equipment through an insert by the agent; the plug-in configures and collects the target equipment according to the training task, and the agent sends the data acquired by the plug-in to the target range platform. Compared with the problem of high coupling between the current target and the target range platform, the technical scheme provided by the invention can generate the target model according to the target information, and the target model normalizes the target information and can be identified by the target platform. The target sends the target model to a target platform through the agent, and the range platform establishes a training task according to the target model and issues the training task to the agent in the target. After receiving the training task, the agent issues the training task to target equipment in the target to complete the preliminary configuration of the configuration item and the acquisition item. The plug-in starts the configuration and collection of the target equipment according to the configuration item and the collection item, and the plug-in sends the data of the target equipment to the target range platform through the agent after the plug-in collects the data of the target equipment. In the process, the data interaction with the target range platform is realized through the agent, and the configuration items and the acquisition items are issued to the target equipment through the plug-in. The communication between the target equipment in the target and the target range platform is realized through the agent and the plug-in, so that the coupling between the target and the target range platform is reduced, and the usability is improved.
Drawings
FIG. 1 is a block diagram of a target data acquisition system in an embodiment of the invention;
FIG. 2 is a flow chart of a method for acquiring a network target configuration in accordance with a first embodiment of the present invention;
FIG. 3 is a schematic diagram of interaction of a range platform with target data in a third embodiment of the present invention;
fig. 4 is a schematic structural diagram of a network target range heterogeneous target configuration acquisition device in a fourth embodiment of the invention;
fig. 5 is a schematic structural diagram of a computer device in a fifth embodiment of the present invention.
Detailed Description
The invention is described in further detail below with reference to the drawings and examples. It is to be understood that the specific embodiments described herein are merely illustrative of the invention and are not limiting thereof. It should be further noted that, for convenience of description, only some, but not all of the structures related to the present invention are shown in the drawings.
Fig. 1 is a diagram of a network target configuration acquisition architecture for heterogeneous targets in a target range, including a target range platform and targets, according to an embodiment of the present invention. The range platform includes a configuration and acquisition management module for communicating with agents on the targets. Targets include agents, plug-ins, and target devices.
Optionally, a configuration acquisition management module is added to the existing target range platform. And an agent is added in the target and used for carrying out interface interaction with the target range platform, so that the management of the acquisition items and the configuration items and the sorting and forwarding functions of the acquired data are realized. Wherein the proxy framework is provided by the platform, the target needs to provide plug-ins integrated to the proxy for content adaptation and interface conversion.
Example 1
Fig. 2 is a flowchart of a network target configuration collection method provided by an embodiment of the present invention, where the embodiment is applicable to a situation where a target platform controls heterogeneous targets to collect, the method may be performed by an electronic device that implements targets in a network target, and the electronic device may be a server, and specifically includes the following steps:
and 110, generating a target model according to the target information.
And filling a target range model standard according to the target range information to obtain a target range model.
Exemplary target model criteria include: target basic information description, virtual equipment information of network topology and real equipment information of network topology.
The virtual device information (virtualTopo) of the network topology includes: virtual router information (routers), virtual switch information (networks), virtual machine information (servers), virtual inter-device wires (deviceLink).
Wherein the virtual router information includes: the device unique identification of the virtual router information, the agent unique identification that manages the device, and the router information.
Virtual router acquisition information (collection): the key value of the acquisition configuration item, the display name of the acquisition configuration item and the default value of the acquisition configuration item.
Virtual router configuration information (configuration): configuration item key value, configuration item display name and configuration item default value.
The virtual switch information includes: the device unique identification of the virtual switch, the agent unique identification that manages the device, and switch information.
The virtual switch collects information: the key value of the acquisition configuration item, the display name of the acquisition configuration item and the default value of the acquisition configuration item.
Virtual switch configuration information: configuration item key value, configuration item display name, configuration item default value.
The virtual machine information includes: the device unique identification of the virtual machine, the agent unique identification that manages the device, and virtual machine information.
The virtual machine collects information: the key value of the acquisition configuration item, the display name of the acquisition configuration item and the default value of the acquisition configuration item.
Virtual machine configuration information: configuration item key value, configuration item display name, configuration item default value.
The virtual device-to-device connection includes: the device is uniquely identified.
The real device information of the network topology includes: device information (device), real device link (deviceLink), and virtual device link (virtual Reanlink)
The device information includes: device unique identification, proxy unique identification that manages the device, and real device information.
The real equipment collects information: device unique identification of the real device, agent unique identification for managing the device, and virtual machine information.
Real device configuration information: the key value of the acquisition configuration item, the display name of the acquisition configuration item and the default value of the acquisition configuration item of the real equipment.
The real device connection includes: the device is uniquely identified.
Specifically, the target range model criteria are as follows:
the information related to the range model includes: target basic information, virtual device information of network topology, real device information of network topology and connection lines between virtual and real devices of network.
1. The virtual device information of the network topology includes: virtual router information, virtual server information, and connection information between virtual devices.
The virtual device information-virtual router of the network topology comprises basic information, acquisition information and configuration information. The basic information includes: device unique identification, proxy unique identification that manages the device, router other information. The information acquisition comprises the following steps: the key value of the acquisition configuration item, the display name of the acquisition configuration item and the default value of the acquisition configuration item. The configuration information includes: configuration item key value, configuration item display name, configuration item default value.
The virtual equipment information-virtual switch of the network topology comprises basic information, acquisition information and configuration information. The basic information includes: device unique identification, proxy unique identification for managing the device, switch other information. The information acquisition comprises the following steps: the key value of the acquisition configuration item, the display name of the acquisition configuration item and the default value of the acquisition configuration item. The configuration information includes: configuration item key value, configuration item display name, configuration item default value.
The virtual equipment information-virtual server of the network topology comprises basic information, acquisition information and configuration information. The basic information includes: server virtual machine unique identification, proxy unique identification for managing the device, virtual machine other information. The information acquisition comprises the following steps: the key value of the acquisition configuration item, the display name of the acquisition configuration item and the default value of the acquisition configuration item. The configuration information includes: configuration item key value, configuration item display name, configuration item default value.
The connection information between the virtual devices comprises: device 1 unique identity, device 2 unique identity.
2. The real device information of the network topology includes: real device information and real device-to-device connection information.
The real device-real device information of the network topology comprises basic information, acquisition information and configuration information. The basic information includes: unique identification of the device, unique identification of the agent managing the device, and other information of the real device. The information acquisition comprises the following steps: the key value of the acquisition configuration item, the display name of the acquisition configuration item and the default value of the acquisition configuration item. The configuration information includes: configuration item key value, configuration item display name, configuration item default value. The real device-to-device connection information comprises; device 1 unique identity, device 2 unique identity.
3. The connection information connection between the network virtual and real devices comprises: device 1 unique identity, device 2 unique identity.
Corresponding fields can be filled in manually according to model standards to generate a target model. Corresponding fields can be automatically filled in according to the target information to generate a target model.
Step 120, sending the target model to a range platform through an agent, wherein the range platform establishes a training task according to the target model.
The agent transmits the target model to the range platform to register the target model with the range platform. The target range platform formulates training tasks according to registered targets.
Optionally, the target model is sent to a range platform through an agent, and the range platform builds a training task according to the target model, which can be implemented by the following modes:
transmitting the target model and agent information to a target range platform through a first interface by an agent;
the target range platform determines acquisition items and configuration items related to target topology and equipment according to the target model;
the target range platform receives the service running state uploaded by the agent of the target through the second interface, and builds a training task according to the target topology.
Through the mode, uploading of the target model can be completed through the first interface and the second interface, and the target topology is obtained after the target model is analyzed by the target range platform. The target topology represents the distribution of target devices in the target. The target range platform provides the user with an editing platform for configuration items and acquisition items of the target equipment. Or the range platform can also automatically configure the configuration items and acquisition items of the target devices in the targets. After the user edits or automatically edits, the training task is perfected. The training task includes which parameters of the target device need to be configured and which parameters need to be collected and fed back. After the training task is established, the range platform issues the training task by providing an interface, so that the range platform configures configuration items and acquisition items in heterogeneous targets.
Further, building training tasks according to target topology can be implemented as:
outputting target topology, acquisition items and configuration items associated with equipment and service running states in real time by a target range platform; and receiving the editing of the acquisition items and the configuration items by the user, and perfecting a training task, wherein the training task comprises the edited configuration items and the acquisition items.
The output modes comprise various display modes, such as screen display, audio broadcasting and the like. The content such as target topology of the registered target model can be displayed in real time. And the user inputs editing operation of the acquisition items and the configuration items according to the content displayed by the target range platform. The target range platform perfects the training task according to the collection items and the configuration items edited by the user.
The method can provide the editing interface of the configuration items and the collection items for the user, and realizes manual quick configuration.
And 130, receiving the training task issued by the target range platform through the agent, and issuing the training task to the target equipment through the plug-in.
And receiving the training task issued by the target range platform through the agent, analyzing the training task by the agent, and issuing configuration items and acquisition items in the training task to the target equipment through the plug-in. The agent issues the training task to the target device through the plug-in, and starts the training task.
Optionally, the agent receives the training task issued by the target range platform, and the agent issues the configuration item and the acquisition item in the training task to the target device through the plug-in, which can be implemented by the following modes:
the agent receives training tasks issued by the target range platform through a third interface; the plug-in analyzes the training task and issues the configuration item and the acquisition item to the target equipment.
The agent receives configuration items and acquisition items in a training task issued by the target range platform through a third interface; the plug-in analyzes the training task and issues the configuration item and the acquisition item to the target equipment.
The above manner receives the configuration item and the acquisition item through the third interface. And realizing the effectiveness of the configuration item and the acquisition item on the target equipment through the proxy, and finishing initialization.
Further, after the plug-in parses the training task and issues the configuration item and the acquisition item to the target device, the method further includes:
the range platform outputs the configuration item and the acquisition item being validated according to the feedback of the agent.
The agent may feed back the active configuration items and acquisition items to the range platform, which presents the active configuration items and acquisition items to the user in real time.
Optionally, after the target range plug-in is completed to take effect, the configuration item and the effective condition of the collection item are fed back to the target range platform through the agent, so that the user can inquire the initialization result through the target range platform.
And 140, configuring and collecting target equipment by the plug-in according to the training task, and transmitting the data acquired by the plug-in to a target range platform by the agent.
And the plug-in acquires the target equipment according to the acquisition items and the configuration items in the training task, and the agent transmits the data acquired by the plug-in to the target range platform.
The agent issues the training task to the target device through the plug-in provided by the target, starts the training task and starts the training task. In the training process, the agent transmits the data acquired by the plug-in to the range platform.
Optionally, after the agent issues the training task to the target device through the plug-in, the method may further include the following steps:
the agent periodically transmits the acquired data to the range platform via a fourth interface.
On the basis of the above embodiment, after the agent sends the data acquired by the plug-in to the range platform, the method further includes:
the range platform generates an assessment report based on the collected data sent by the agent. The range platform issues a reset instruction to the target configuration agent to reset the target state.
According to the network target range heterogeneous target configuration acquisition method provided by the embodiment of the invention, a target model is generated according to target information; transmitting the target model to a range platform through an agent, wherein the range platform establishes a training task according to the target model; receiving a training task issued by a target range platform through an agent, and issuing acquisition items and configuration items in the training task to target equipment through an insert by the agent; the plug-in acquires the target equipment according to the training task, and the agent transmits the data acquired by the plug-in to the target range platform. Compared with the problem of high coupling between the current target and the target range platform, the technical scheme provided by the invention can generate the target model according to the target information, and the target model normalizes the target information and can be identified by the target platform. The target sends the target model to a target platform through the agent, and the range platform establishes a training task according to the target model and issues the training task to the agent in the target. After receiving the training task, the agent issues the training task to target equipment in the target to complete the preliminary configuration of the configuration item and the acquisition item. The plug-in starts to collect the target equipment according to the configuration item and the collection item, and the plug-in sends the data of the target equipment to the target range platform through the agency after collecting the data of the target equipment. In the process, the data interaction with the target range platform is realized through the agent, and the configuration items and the acquisition items are issued to the target equipment through the plug-in. The communication between the target equipment in the target and the target range platform is realized through the agent and the plug-in, so that the coupling between the target and the target range platform is reduced, and the usability is improved.
Example two
The second embodiment of the present invention provides a method for collecting configuration of heterogeneous targets in a network shooting range, as an example of the above embodiment, the method includes:
in the preparation phase:
step 201, generating a target model according to target information.
The target provider defines a target model according to target model standards; the target provider completes the development of the target plug-in according to the agent framework and the development document; the function of the agent and the plug-in is described in the following steps.
The initialization phase is as follows:
step 202, transmitting the target model and agent information to a range platform through a first interface by an agent.
Step 203, the target range platform determines acquisition items and configuration items related to target topology and equipment according to the target model.
Step 204, the range platform receives the service running state uploaded by the agent of the target through the second interface.
Step 205, the target range platform displays target topology, acquisition items and configuration items associated with equipment and service running states in real time.
And 206, receiving the editing of the acquisition items and the configuration items by the user, and perfecting a training task, wherein the training task comprises the edited configuration items and the acquisition items.
The agent registers the target model and its own information to the range platform via the first interface. The target range platform analyzes and displays target topology and acquisition items and configuration items associated with each device. The agent reports the service running state at regular time through the second interface. The target range platform displays the service running state of each agent in real time. The target range platform builds training tasks referencing registered target topologies.
The task configuration procedure is as follows:
step 207, the agent receives the configuration item and the collection item issued by the target range platform through the third interface.
Step 208, the plug-in issues the configuration item and the acquisition item to the target device and starts the training task.
Step 209, the range platform outputs the effective configuration item according to the feedback of the target configuration agent.
Editing the configuration items of the equipment is completed on the target range platform, and the configuration is issued to the agent through a third interface. The target plug-in issues the key-value format configuration item to the designated device and starts the training task. The range platform presents the configuration items and acquisition items that are in effect based on feedback from the agent.
The task execution process is as follows:
and 210, the plug-in acquires the target equipment according to the training task.
Step 211, the agent sends the collected data to the target range platform at regular time through the fourth interface.
The target range platform displays the states of all the devices of the target according to the feedback of the agent. The agent periodically uploads the collected data through the fourth interface.
Step 212, the target range platform generates an evaluation report according to the acquired data uploaded by the agent.
Step 213, the range platform issues a reset instruction to the target configuration agent to reset the target state.
Example III
Fig. 3 is a schematic diagram of interaction between a target range platform and target data according to a third embodiment of the present invention. The above steps may be performed by: wherein the target is a heterogeneous entity target.
1. The target builds its own model according to the model criteria.
2. The target initiates the agent and enters the target model, which registers the target to the range platform using the registration interface.
3. The agent reports the target status at regular time.
4. And analyzing the model by the target range platform, and converting the model into a network topology and displaying the network topology on the platform.
5. The target range platform builds a target range task, refers to target topology, and configures acquisition items and configuration items of each device of the target according to task information.
6. And the target range platform issues the configuration items and the acquisition items to the corresponding agents according to the target model.
7. The agent alters the configuration of the target device according to the configuration item and the acquisition item.
8. The agent collects and reports data according to the collection items.
9. And the target range platform performs the next task control step according to the feedback state of the agent.
10. After the task is completed, the target platform generates an evaluation report according to the acquired data sent by the agent.
11. After the task is completed, the target range platform issues a reset instruction to the agent to reset the physical target state.
Example IV
Fig. 4 is a schematic structural diagram of a network target configuration collection device provided by a fourth embodiment of the present invention, where the present embodiment is applicable to a situation where a target platform controls heterogeneous targets to collect, where the device may be implemented by an electronic device that implements targets in a network target, where the electronic device may be a server, and specifically includes:
a generating module 41 for generating a target model according to the target information;
an initialization module 42 for sending the target model to a range platform via an agent, the range platform establishing training tasks based on the target model;
the configuration module 43 is configured to receive, through an agent, a training task issued by the target platform, and the agent issues the training task to the target device through the plug-in; and the plug-in configures and collects the target equipment according to the training task, and the agent sends the data acquired by the plug-in to the target range platform.
On the basis of the above embodiment, the initialization module 42 is configured to:
transmitting the target model and agent information to a target range platform through a first interface by an agent;
the target range platform determines acquisition items and configuration items related to target topology and equipment according to the target model;
the target range platform receives the service running state uploaded by the agent of the target through the second interface, and builds a training task according to the target topology.
On the basis of the above embodiment, the initialization module 42 is configured to:
outputting target topology, acquisition items and configuration items associated with equipment and service running states in real time by a target range platform;
and receiving the editing of the acquisition items and the configuration items by the user, and perfecting a training task, wherein the training task comprises the edited configuration items and the acquisition items.
On the basis of the above embodiment, the configuration module 43 is configured to:
the agent receives configuration items and acquisition items in a training task issued by the target range platform through a third interface;
the plug-in analyzes the training task and issues the configuration item and the acquisition item to the target equipment.
On the basis of the above embodiment, the configuration module 43 is configured to:
the range platform outputs the configuration item and the acquisition item being validated according to the feedback of the agent.
On the basis of the above embodiment, the configuration module 43 is configured to:
the agent periodically transmits the acquired data to the range platform via a fourth interface.
On the basis of the embodiment, the system further comprises an evaluation module and a reset module.
The evaluation module is used for: the target range platform generates an evaluation report according to the acquired data sent by the agent;
the reset module is used for: the range platform issues a reset instruction to the agent to reset the target state.
The network target range configuration acquisition device provided by the embodiment of the invention is provided with a generation module 41 for generating a target model according to target information; an initialization module 42 for sending the target model to a range platform via an agent so that the range platform builds a training task from the target model; the configuration module 43 is configured to receive a training task issued by the target platform through the agent, and the agent issues the training task to the target device through the plug-in, so that the plug-in configures and collects the target device according to the training task, and the agent sends data acquired by the plug-in to the target platform. Compared with the problem of high coupling between the current target and the target range platform, the technical scheme provided by the invention can generate the target model according to the target information, and the target model normalizes the target information and can be identified by the target platform. The target sends the target model to a target platform through the agent, and the range platform establishes a training task according to the target model and issues the training task to the agent in the target. After receiving the training task, the agent issues the training task to target equipment in the target to complete the preliminary configuration of the configuration item and the acquisition item. After the plug-in acquires the data of the target equipment, the data is sent to the target range platform through the agency. In the process, the data interaction with the target range platform is realized through the agent, and the configuration items and the acquisition items are issued to the target equipment through the plug-in. The communication between the target equipment in the target and the target range platform is realized through the agent and the plug-in, so that the coupling between the target and the target range platform is reduced, and the usability is improved.
The target data acquisition device provided by the embodiment of the invention can execute the network target range configuration acquisition method provided by any embodiment of the invention, and has the corresponding functional modules and beneficial effects of the execution method.
Example five
Fig. 5 is a schematic structural diagram of a computer device according to a fifth embodiment of the present invention, and as shown in fig. 5, the computer device includes a processor 50, a memory 51, an input device 52 and an output device 53; the number of processors 50 in the computer device may be one or more, one processor 50 being taken as an example in fig. 5; the processor 50, the memory 51, the input means 52 and the output means 53 in the computer device may be connected by a bus or by other means, in fig. 5 by way of example.
The memory 51 is a computer readable storage medium, and may be used to store software programs, computer executable programs, and modules, such as program instructions/modules (e.g., the generation module 41, the initialization module 42, and the configuration module 43 in the target data acquisition device) corresponding to the network target configuration acquisition method in the embodiment of the present invention. The processor 50 executes various functional applications of the computer device and data processing, i.e. implements the above-described network range configuration acquisition method, by running software programs, instructions and modules stored in the memory 51.
The memory 51 may mainly include a storage program area and a storage data area, wherein the storage program area may store an operating system, at least one application program required for functions; the storage data area may store data created according to the use of the terminal, etc. In addition, memory 51 may include high-speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other non-volatile solid-state storage device. In some examples, memory 51 may further comprise memory located remotely from processor 50, which may be connected to the computer device via a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.
The input device 52 is operable to receive input numeric or character information and to generate key signal inputs related to user settings and function control of the computer apparatus. The output means 53 may comprise a display device such as a display screen.
Example nine
A ninth embodiment of the present invention also provides a storage medium containing computer-executable instructions, which when executed by a computer processor, are configured to perform a network target configuration acquisition method, the method comprising:
generating a target model according to the target information;
transmitting the target model to a range platform through an agent, wherein the range platform establishes a training task according to the target model;
receiving a training task issued by a target range platform through an agent, and issuing the training task to target equipment through an insert by the agent;
and the plug-in configures and collects the target equipment according to the training task, and the agent sends the data acquired by the plug-in to the target range platform.
On the basis of the above embodiment, the sending, by proxy, the target model to a range platform, where the range platform builds a training task according to the target model, including:
transmitting the target model and agent information to a target range platform through a first interface by an agent;
the target range platform determines acquisition items and configuration items related to target topology and equipment according to the target model;
the target range platform receives the service running state uploaded by the agent of the target through the second interface, and builds a training task according to the target topology.
On the basis of the above embodiment, the training task establishing according to the target topology includes:
outputting target topology, acquisition items and configuration items associated with equipment and service running states in real time by a target range platform;
and receiving the editing of the acquisition items and the configuration items by the user, and establishing a training task, wherein the training task comprises the edited configuration items and the acquisition items.
On the basis of the above embodiment, the receiving, by the agent, the training task issued by the target platform, the agent issuing the training task to the target device by the plug-in, including:
the agent receives configuration items and acquisition items in a training task issued by the target range platform through a third interface;
the plug-in analyzes the training task and issues the configuration item and the acquisition item to the target equipment.
On the basis of the above embodiment, after the plug-in parses the training task and issues the configuration item and the acquisition item to the target device, the method further includes:
the range platform outputs the configuration item and the acquisition item being validated according to the feedback of the agent.
On the basis of the above embodiment, after the agent issues the training task to the target device through the plug-in, the method further includes:
the agent periodically transmits the acquired data to the range platform via a fourth interface.
On the basis of the above embodiment, after the agent sends the data acquired by the plug-in to the range platform, the method further includes:
the target range platform generates an evaluation report according to the acquired data sent by the agent;
the range platform issues a reset instruction to the agent to reset the target state.
Of course, the storage medium containing the computer executable instructions provided in the embodiments of the present invention is not limited to the method operations described above, and may also perform the related operations in the network target range heterogeneous target configuration collection method provided in any embodiment of the present invention.
From the above description of embodiments, it will be clear to a person skilled in the art that the present invention may be implemented by means of software and necessary general purpose hardware, but of course also by means of hardware, although in many cases the former is a preferred embodiment. Based on such understanding, the technical solution of the present invention may be embodied essentially or in a part contributing to the prior art in the form of a software product, which may be stored in a computer readable storage medium, such as a floppy disk, a Read-Only Memory (ROM), a random access Memory (Random Access Memory, RAM), a FLASH Memory (FLASH), a hard disk or an optical disk of a computer, etc., and include several instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to execute the method according to the embodiments of the present invention.
It should be noted that, in the embodiment of the network target range heterogeneous target configuration acquisition device, each unit and module included are only divided according to the functional logic, but are not limited to the above-mentioned division, so long as the corresponding functions can be realized; in addition, the specific names of the functional units are also only for distinguishing from each other, and are not used to limit the protection scope of the present invention.
Note that the above is only a preferred embodiment of the present invention and the technical principle applied. It will be understood by those skilled in the art that the present invention is not limited to the particular embodiments described herein, but is capable of various obvious changes, rearrangements and substitutions as will now become apparent to those skilled in the art without departing from the scope of the invention. Therefore, while the invention has been described in connection with the above embodiments, the invention is not limited to the embodiments, but may be embodied in many other equivalent forms without departing from the spirit or scope of the invention, which is set forth in the following claims.
Claims (9)
1. The method for configuring and collecting the heterogeneous targets in the network target range is characterized by comprising the following steps of:
generating a target model according to the target information;
transmitting the target model to a range platform through an agent, wherein the range platform establishes a training task according to the target model;
the agent receives the training task issued by the target range platform, and issues the training task to the target equipment through the plug-in unit;
and the plug-in configures and collects the target equipment according to the training task, and the agent sends the data acquired by the plug-in to the target range platform.
2. The method of claim 1, wherein the sending the target model by proxy to a range platform, the range platform establishing training tasks from the target model, comprises:
transmitting the target model and agent information to a target range platform through a first interface by an agent;
the target range platform determines acquisition items and configuration items related to target topology and equipment according to the target model;
the target range platform receives the service running state uploaded by the agent of the target through the second interface, and builds a training task according to the target topology.
3. The method of claim 2, wherein the establishing training tasks based on target topology comprises:
outputting target topology, acquisition items and configuration items associated with equipment and service running states in real time by a target range platform;
and receiving the editing of the acquisition items and the configuration items by the user, and perfecting a training task, wherein the training task comprises the edited configuration items and the acquisition items.
4. The method of claim 1, wherein the agent receives training tasks issued by the range platform, and wherein the agent issues training tasks to the target device via the plug-in, comprising:
the agent receives training tasks issued by the target range platform through a third interface;
the plug-in analyzes the training task and issues the configuration item and the acquisition item to the target equipment.
5. The method of claim 4, further comprising, after the plug-in parses the training task and issues the configuration item and the acquisition item to the target device:
the range platform outputs the configuration item and the acquisition item being validated according to the feedback of the agent.
6. The method of claim 1, further comprising, after the agent transmits the plug-in acquired data to the range platform:
the target range platform generates an evaluation report according to the acquired data sent by the agent;
the range platform issues a reset instruction to the agent to reset the target state.
7. A network target range heterogeneous target configuration acquisition device, comprising:
the generation module is used for generating a target model according to the target information;
the initialization module is used for sending the target model to a range platform through an agent, and the range platform establishes a training task according to the target model;
the configuration module is used as an agent to receive the training task issued by the target range platform, and as an agent to issue the training task to the target equipment through the plug-in, so that the plug-in configures and collects the target equipment according to the training task, and the agent sends the data acquired by the plug-in to the target range platform.
8. An electronic device, the electronic device comprising:
at least one processor; and
a memory communicatively coupled to the at least one processor; wherein,
the memory stores a computer program executable by the at least one processor to enable the at least one processor to perform the network range heterogeneous target configuration collection method of any of claims 1-6.
9. A computer readable storage medium storing computer instructions for causing a processor to implement the network range heterogeneous target configuration acquisition method of any one of claims 1-6 when executed.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311508035.1A CN117255021B (en) | 2023-11-14 | 2023-11-14 | Network target range heterogeneous target configuration acquisition method and device, electronic equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311508035.1A CN117255021B (en) | 2023-11-14 | 2023-11-14 | Network target range heterogeneous target configuration acquisition method and device, electronic equipment and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN117255021A CN117255021A (en) | 2023-12-19 |
| CN117255021B true CN117255021B (en) | 2024-02-02 |
Family
ID=89137109
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202311508035.1A Active CN117255021B (en) | 2023-11-14 | 2023-11-14 | Network target range heterogeneous target configuration acquisition method and device, electronic equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117255021B (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114501501A (en) * | 2022-02-09 | 2022-05-13 | 北京恒安嘉新安全技术有限公司 | Configuration management method, device, equipment and medium for mobile communication network target range |
| CN115220736A (en) * | 2022-07-18 | 2022-10-21 | 四川大学 | Target automatic deployment method based on OPENSTACK |
| CN115617463A (en) * | 2022-11-21 | 2023-01-17 | 博智安全科技股份有限公司 | Target creating system and method based on virtualization platform |
-
2023
- 2023-11-14 CN CN202311508035.1A patent/CN117255021B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114501501A (en) * | 2022-02-09 | 2022-05-13 | 北京恒安嘉新安全技术有限公司 | Configuration management method, device, equipment and medium for mobile communication network target range |
| CN115220736A (en) * | 2022-07-18 | 2022-10-21 | 四川大学 | Target automatic deployment method based on OPENSTACK |
| CN115617463A (en) * | 2022-11-21 | 2023-01-17 | 博智安全科技股份有限公司 | Target creating system and method based on virtualization platform |
Non-Patent Citations (1)
| Title |
|---|
| 靶标系统集控软件设计;邵刚;桑作军;国防科技(第06期);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN117255021A (en) | 2023-12-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103997725B (en) | System and method for the mobile data network in abstract and layout network environment | |
| US20130305091A1 (en) | Drag and drop network topology editor for generating network test configurations | |
| CN105005471A (en) | Method, device, server and system for modifying configuration parameters of BIOS | |
| WO2012088905A1 (en) | Polling sub-system and polling method for communication network system and communication apparatus | |
| CN105827428A (en) | Management method and device of asset information | |
| CN109873867B (en) | Express cabinet information transmission method, device and system, express cabinet and storage medium | |
| CN106528289A (en) | Resource operation processing method and apparatus | |
| CN106909327A (en) | A kind of display control unit for industrial control equipment | |
| CN108154915A (en) | For the back-end data processing system and method for hospital's wechat platform | |
| CN114584354A (en) | Construction method and system of network security practical training platform | |
| CN104052679A (en) | Load balancing method and device for network flow | |
| JP2010128597A (en) | Information processor and method of operating the same | |
| CN107645565A (en) | Processing method, device, system and the processor of server state information | |
| CN106341463A (en) | A mobile internet audio/video management and control system based on an internet of things | |
| CN117255021B (en) | Network target range heterogeneous target configuration acquisition method and device, electronic equipment and storage medium | |
| CN112333171A (en) | Service data processing method and device and computer equipment | |
| CN115756472B (en) | Cloud-edge cooperative industrial equipment digital twin operation monitoring method and system | |
| WO2016091141A1 (en) | Method and apparatus for information collection | |
| CN105187391B (en) | APP and its logging in network access point methods, server and system | |
| CN110876155B (en) | Simulation system and method for wireless mesh network | |
| CN108345508A (en) | Interface calls test method and device | |
| WO2015176516A1 (en) | Method and apparatus for tracking service process | |
| CN107493251A (en) | A kind of method and terminal for logging in destination server | |
| CN111427710B (en) | Communication method, device, equipment and storage medium of components in application program | |
| CN106202470B (en) | The processing method and system of script |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |