TWI568232B - Get the correct way to connect the network device with the common protocol SNMP - Google Patents

Get the correct way to connect the network device with the common protocol SNMP Download PDF

Info

Publication number
TWI568232B
TWI568232B TW104121046A TW104121046A TWI568232B TW I568232 B TWI568232 B TW I568232B TW 104121046 A TW104121046 A TW 104121046A TW 104121046 A TW104121046 A TW 104121046A TW I568232 B TWI568232 B TW I568232B
Authority
TW
Taiwan
Prior art keywords
network
switch
snmp
mac
location
Prior art date
Application number
TW104121046A
Other languages
Chinese (zh)
Other versions
TW201701636A (en
Inventor
wei-peng Zheng
Wei-Min Wang
sheng-xiang Huang
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed filed Critical
Priority to TW104121046A priority Critical patent/TWI568232B/en
Publication of TW201701636A publication Critical patent/TW201701636A/en
Application granted granted Critical
Publication of TWI568232B publication Critical patent/TWI568232B/en

Links

Description

以通用協定SNMP取得網路設備正確連接位置的方法 Method for obtaining a correct connection position of a network device by using a general protocol SNMP

本發明係有關一種以通用協定SNMP取得網路設備正確連接位置的方法,尤指藉由通用協定SNMP,取得網路設備對應之交換機連接埠,並自動判定交換機連接埠以過濾無效對應關係,而獲得終端設備正確連接位置之方法。 The invention relates to a method for obtaining a correct connection location of a network device by using a general protocol SNMP, in particular, obtaining a switch connection corresponding to a network device by using a general protocol SNMP, and automatically determining a switch connection to filter an invalid correspondence, and Get the method of correctly connecting the terminal device.

隨著科技進步工商發展迅速,網絡的規模不斷增長擴大,已成為現代生活中不可或缺的一部分。網路的運行是否安全、穩定、高效率會直接影響關係到企業核心業務能否順利拓展?當區域網路發生資安或故障問題時,唯有儘快找到相關發生錯誤網路設備的實體位置,才能在最短時間內有效排除故障解決問題,使網路迅速恢復正常運作,所以管理者一定要能清楚完全掌握企業內部所有的網路設備,此點在企業級的IP管理上內實極為重要。 With the rapid development of science and technology, the scale of the network has grown and expanded, and it has become an indispensable part of modern life. Is the operation of the network safe, stable, and highly efficient directly affecting whether the core business of the enterprise can be smoothly expanded? When a problem occurs in the local area network, if the physical location of the network device with the wrong network is found as soon as possible, the problem can be effectively solved in the shortest time, and the network can be quickly restored to normal operation. Therefore, the administrator must It is extremely important to be able to fully understand all the network devices in the enterprise. This is extremely important in enterprise-level IP management.

但目前市面上具備IP管理的相關功能性習知產品,針對被管理的網路設備其相關網路位置資訊,大多係以列表加上搭配網路拓樸圖(如第12圖)等方式進行呈現。即一般內部網路IP管理基本資料常以IP-MAC列表方式呈現,用以分別代表通訊位置及電腦設備。其列表的內容中缺 乏設備間連接關係,完全無法由列表或其圖示查看有關電腦設備實體位置供作參考資訊。 However, the relevant functional familiar products with IP management currently available on the market, and the related network location information of the managed network devices are mostly based on the list plus the network topology map (such as Figure 12). Presented. That is, the general internal network IP management basic data is often presented in an IP-MAC list to represent the communication location and computer equipment. Missing in the contents of its list The connection between the devices is lacking, and it is impossible to view the physical location of the computer device for reference information by the list or its icon.

所以實務上必須在IP-MAC列表後,另外再加上一項連接的交換機連接埠記錄當成輔助,方能作為網路設備實體位置基本的參考資訊。然而,此表格仍須隨時藉助人工更新,不僅費時費力,而且因為網路中設備連接關係常會持續變化,表格更新記錄永遠跟不上設備異動變化速度,始終一直無法得到正確的結果,以致造成資安管理上的困難。 Therefore, in practice, after the IP-MAC list, plus a connected switch connection record as a secondary, it can be used as a basic reference information for the network device entity location. However, this form still needs to be manually updated at any time, which is not only time-consuming and laborious, but also because the connection relationship of devices in the network often changes continuously, the form update record can never keep up with the speed of change of the device, and the correct result has not been obtained, resulting in capital Security difficulties.

為解決這個問題,較先進的著名廠牌交換機設備提供了專有的功能,可直接用以查看各連接埠的資訊或連接電腦設備。但這是特定廠牌設備專屬的內建功能,並無法與一般廠牌設備通用。如果真正要依此方法執行則所費不貲,其前提是企業內部從上至下,都必須採用相同高單價同一特定廠牌的網路設備,管理上方能正確清楚掌握到網內所有的網路設備。但此與一般習慣企業內部大都採用集合不同單價多廠牌的網路設備而明顯不同,故其前提要求是極不合理,而且也不符合當今普遍網路環境的應用實務。 To solve this problem, more advanced and well-known brand switch devices provide proprietary functions that can be used directly to view information about each port or to connect to a computer device. However, this is a built-in function unique to a particular brand of equipment and cannot be used in common with general label equipment. If you really want to implement it according to this method, the premise is that the enterprise must use the same high unit price of the same specific brand network equipment from top to bottom. The management can correctly understand all the networks in the network. device. However, this is obviously different from the general use of network equipment that collects different unit price and multi-brand cards. Therefore, the premise requirements are extremely unreasonable, and it is not in line with the application practice of today's universal network environment.

有鑑於此,本發明者乃積極投入研究構思尋求最佳解決之道。首先,當知一般終端設備連接至網路中的交換機上時,為使用網路封包能順利的轉送,在交換機(Switch)中即會自動建立一轉送表(Forwarding Table)。利用此轉送表使其收到封包時,可依目的之媒體存取控制MAC(Media Access Control)而查詢下一個送出的連接埠(Port)。但是僅由轉送表實 在無法確定表中的MAC是否真的連接在表中的連接埠上?如此則不能有效辨識出此連接埠的連接設備,到底是屬於一般終端設備的桌上型電腦或筆記型電腦(PC、NB)?或是網路設備的交換機(Switch)? In view of this, the inventors have actively invested in research and ideas to find the best solution. First, when the general terminal device is connected to the switch in the network, a forwarding table can be automatically established in the switch (Switch) for smooth transfer using the network packet. When the transfer table is used to receive the packet, the next port to be sent can be queried according to the media access control MAC (Media Access Control). But only by transfer Can't be sure if the MAC in the table is actually connected to the port in the table? In this case, the connected device of the port cannot be effectively identified. Is it a desktop computer or a notebook computer (PC, NB) belonging to a general terminal device? Or a switch for a network device?

但若仔細深入進一步探討,如果它是屬於網路設備的交換機(Switch)的話,則該連接埠的轉送表中應就會有此設備的MAC。由此可知若轉送表中一連接埠的對應MAC中包含另一交換機設備的MAC位置,則此連接埠就不是直接連接到終端設備(link-port,not access-port),則查詢上就應該略過此連接埠下所有MAC資訊記錄,因為這些MAC必定將會在網內中的其它交換機轉送表中再次出現,而且最終只會在一台交換機中被判定為應接受資料。 However, if you go deeper and discuss it further, if it is a switch belonging to a network device, the MAC address of the device should be in the transfer table of the port. It can be seen that if the corresponding MAC of a port in the forwarding table contains the MAC location of another switch device, then the port is not directly connected to the terminal device (link-port, not access-port), then the query should be Skip all MAC information records under this connection, because these MACs will definitely reappear in other switch forwarding tables in the network, and will eventually be judged as accepting data in only one switch.

基於此,本發明之主要目的,在提供一種以通用協定SNMP取得網路設備正確連接位置之方法,係用來蒐集網內中所有交換機設備,查詢每台交換機的轉送表,比對分析每一連接埠資料,更新記錄存檔,直到所有交換機查詢完成,以獲得網路內終端設備的分佈連接位置,主要包括:步驟1.以通用協定SNMP蒐集網內中所有交換機設備MAC,建立設備MAC表;步驟2.查詢每台交換機的轉送表;其特徵在於:步驟3.將轉送表轉成以連接埠為索引;步驟4.逐一比對分析每一連接埠資料,判斷是否任一筆其它交換機MAC出現在該埠設備MAC表中;若是,執行以下步驟5;若否,則 執行以下步驟6;步驟5.將此連接埠資訊略過,返回執行步驟2;步驟6.逐一將剩下的MAC與連接埠配對更新至結果,以及;步驟7.判斷是否所有交換機皆已查詢完成;若否,返回執行步驟2;若是,則動作結束;藉此,可有效經由通用協定SNMP(Simple Network Management Protocol)亦即簡單網路管理協定,取得網路設備對應之交換機連接埠,並自動判定交換機連接埠以過濾無效對應關係,快速獲得網路內所有終端設備的正確分佈連接位置。 Based on this, the main purpose of the present invention is to provide a method for obtaining a correct connection location of a network device by using a general protocol SNMP, which is used to collect all switch devices in the network, query a transfer table of each switch, and compare each analysis. Connect the data, update the record archive, until all the switches are queried to obtain the distributed connection location of the terminal devices in the network, including: Step 1. Collect all the MAC addresses of the switches in the network by the general agreement SNMP, and establish the MAC table of the device; Step 2. Query the forwarding table of each switch; the feature is: Step 3. Convert the forwarding table to the index of the connection; Step 4. Analyze each connection data one by one to determine whether any other switch MAC Now the device MAC table; if yes, perform the following step 5; if not, then Perform the following step 6; Step 5. Skip the information and return to step 2; Step 6. Update the remaining MACs and ports to the results one by one, and step 7. Determine whether all switches have been queried. If yes, return to step 2; if yes, the operation ends; thereby, the switch connection port corresponding to the network device can be obtained through the Simple Network Management Protocol (SNMP), which is a simple network management protocol. Automatically determine the switch connection to filter the invalid correspondence, and quickly obtain the correct distribution connection location of all terminal devices in the network.

100‧‧‧查詢建表流程 100‧‧‧Query construction process

200‧‧‧更新建表流程 200‧‧‧Update construction process

300‧‧‧異動建表流程 300‧‧‧Transactional construction process

400‧‧‧網路分佈環境平面圖 400‧‧‧Network distribution environment plan

410‧‧‧分支機構 410‧‧‧ branches

450‧‧‧全球性地域圖示 450‧‧‧Global geographical map

500‧‧‧區域網路 500‧‧‧Regional Network

901、902、903、904‧‧‧框 901, 902, 903, 904‧‧‧ box

51‧‧‧第一管理表 51‧‧‧First Management Form

52‧‧‧第二管理表 52‧‧‧Second Management Form

53‧‧‧第一管理表 53‧‧‧First Management Form

54‧‧‧第二管理表 54‧‧‧Second Management Form

55‧‧‧第一管理表 55‧‧‧First Management Form

56‧‧‧第二管理表 56‧‧‧Second Management Form

S1‧‧‧第一交換機 S1‧‧‧ first switch

S2‧‧‧第二交換機 S2‧‧‧second switch

S3‧‧‧第三交換機 S3‧‧‧ third switch

S4‧‧‧第四交換機 S4‧‧‧fourth switch

C1‧‧‧第一終端設備 C1‧‧‧First terminal equipment

C2‧‧‧第二終端設備 C2‧‧‧second terminal equipment

C3‧‧‧第三終端設備 C3‧‧‧Terminal terminal equipment

C4‧‧‧第四終端設備 C4‧‧‧4th terminal equipment

p1、p2、p3‧‧‧連接埠口 P1, p2, p3‧‧‧ connection port

第1圖 為本發明的方塊圖。 Figure 1 is a block diagram of the present invention.

第2圖 為本發明查詢建表的流程圖。 Figure 2 is a flow chart of the query construction table of the present invention.

第3圖 為本發明之應用例圖。 Fig. 3 is a view showing an application of the present invention.

第4-1圖 為本發明第一管理圖表。 Figure 4-1 is the first management chart of the present invention.

第4-2圖 為本發明第二管理圖表。 Figure 4-2 is a second management chart of the present invention.

第5圖 為本發明更新異動查詢建表的流程圖。 Figure 5 is a flow chart of updating the transaction query table according to the present invention.

第6圖 為本發明新增設備之應用例圖。 Figure 6 is a diagram showing an application example of a new device of the present invention.

第7-1圖 為本發明新增設備之第一管理圖表。 Figure 7-1 shows the first management chart of the new device of the present invention.

第7-2圖 為本發明新增設備之第二管理圖表。 Figure 7-2 is a second management chart of the newly added device of the present invention.

第8圖 為本發明設備異動之應用例圖。 Figure 8 is a diagram showing an application example of the device change of the present invention.

第9-1圖 為本發明設備異動之第一管理圖表。 Figure 9-1 is the first management chart of the device change of the present invention.

第9-2圖 為本發明設備異動之第二管理圖表。 Figure 9-2 is a second management chart of the device change of the present invention.

第10圖 為本發明與網路分佈環境平面圖資訊整合之示意圖。 Figure 10 is a schematic diagram of the integration of the invention and the network distribution environment plan information.

第11圖 為本發明與全球性地域圖示資訊整合之示意圖。 Figure 11 is a schematic diagram of the integration of the invention with global geographical representation information.

第12圖 為習知網路終端設備的拓樸圖。 Figure 12 is a topographical diagram of a conventional network terminal device.

以下藉由特定的具體實例詳細揭露本發明之實施方式,熟悉此技藝之人士可由本說明書所揭示之內容輕易地瞭解本發明的優點與功效。請參第1圖所示,為本發明的方塊圖。本發明以通用協定SNMP取得網路設備正確連接位置的方法,係用來蒐集網內中所有交換機設備,查詢每台交換機的轉送表,比對分析每一連接埠資料,更新記錄存檔,直到所有交換機查詢完成,以獲得網路內終端設備的分佈連接位置,主要包括:框901,a.以通用協定SNMP蒐集網內中所有交換機設備MAC,建立設備MAC表;框902,b.查詢每台交換機的轉送表,並將轉送表轉成以連接埠為索引;框903,c.比對分析每一連接埠資料,將MAC與連接埠逐一配對,以及;框904,d.更新記錄存檔,直到所有交換機皆查詢完成;請參第2圖所示,本發明進一步設有一查詢建表流程100,主要包括: S01步驟1.以通用協定SNMP蒐集網內中所有交換機設備MAC,建立設備MAC表;S02步驟2.查詢每台交換機的轉送表;特徵在於:S03步驟3.將轉送表轉成以連接埠為索引;S04步驟4.逐一比對分析每一連接埠資料,判斷是否任一筆其它交換機MAC出現在該埠設備MAC表中?若是,執行步驟5;若否,則執行步驟6;S05步驟5.將此連接埠資訊略過,返回執行步驟2;S06步驟6.逐一將MAC與連接埠配對更新至結果,以及;S07步驟7.判斷是否所有交換機皆已查詢完成?若否,返回執行步驟2;若是,則動作結束。 The embodiments of the present invention are disclosed in detail below by way of specific examples, and those skilled in the art can readily understand the advantages and functions of the present invention from the disclosure herein. Please refer to FIG. 1 for a block diagram of the present invention. The invention adopts the general agreement SNMP to obtain the correct connection location of the network device, and is used for collecting all the switch devices in the network, inquiring the transfer table of each switch, comparing and analyzing each connection data, updating the record archive until all The switch query is completed to obtain the distributed connection location of the terminal devices in the network, which mainly includes: block 901, a. Collecting MAC addresses of all switch devices in the network by using the general protocol SNMP, and establishing a device MAC table; block 902, b. query each device The transfer table of the switch, and the transfer table is indexed by the port; the frame 903, c. compares each link data, pairs the MAC with the port, and blocks 904, d. updates the record archive, All the switches are inquired for completion; as shown in FIG. 2, the present invention further provides a query construction process 100, which mainly includes: S01 Step 1. Collect all device MAC addresses in the network by general agreement SNMP, and establish a device MAC table; S02 Step 2. Query the transfer table of each switch; the feature is: S03 Step 3. Convert the transfer table to the connection port Index; S04 Step 4. Analyze each connection data one by one to determine whether any other switch MAC appears in the MAC table of the device. If yes, go to step 5; if no, go to step 6; S05 step 5. Skip the information and return to step 2; S06 step 6. Update the MAC and port 逐 to the result one by one, and; 7. Determine if all switches have been queried? If no, return to step 2; if yes, the action ends.

藉此,可有效經由通用協定SNMP,取得網路設備對應之交換機連接埠,並自動判定交換機連接埠以過濾無效對應關係,快速獲得網路內所有終端設備的正確分佈連接位置。 In this way, the switch port corresponding to the network device can be effectively obtained through the universal protocol SNMP, and the switch port is automatically determined to filter the invalid correspondence, and the correct distribution connection position of all terminal devices in the network is quickly obtained.

請參第3圖所示,譬如:一企業的區域網路500內部設備分佈圖,其中之第一交換機S1的連接埠口p1(S1)與第二交換機S2的連接埠口p1(S2)接線相連,第一交換機S1的連接埠口p2(S1)與第三交換機S3的連接埠口p1(S3)接線相連,該第三交換機S3的連接埠口p2(S3)設有一第三終端設備C3,並具有一MAC3以供識別,另外該第二交換機S2的連接埠口p2(S2)接設有一第一終端設備C1,並具有一MAC1以供識別;而第二交換機S2的連接埠口p3(S2)則與第四交換機S4的連接埠口p1(S4)接線相連,該第四交換機S4 的連接埠口p2(S4)則設有一第二終端設備C2,並具有一MAC2以供識別。 Please refer to Figure 3, for example, the internal device 500 distribution map of an enterprise, where the connection port p1 (S1) of the first switch S1 and the connection port p1 (S2) of the second switch S2 are connected. Connected, the connection port p2 (S1) of the first switch S1 is connected to the connection port p1 (S3) of the third switch S3, and the connection port p2 (S3) of the third switch S3 is provided with a third terminal device C3. And having a MAC3 for identification, and the connection port p2 (S2) of the second switch S2 is connected to a first terminal device C1 and has a MAC1 for identification; and the connection port p3 of the second switch S2 (S2) is connected to the connection port p1 (S4) of the fourth switch S4, the fourth switch S4 The connection port p2 (S4) is provided with a second terminal device C2 and has a MAC 2 for identification.

藉由,本發明所提供之有效方法及步驟,同參第1~3圖及上述【0007】段所述之方法,可快速依序查詢區域網路500內部設備,經分析比對而建立出:如第4-1圖所示之第一管理表51,以知悉其中代表第一終端設備C1的MAC1連接在第二交換機S2的連接埠口p2、代表第二終端設備C2的MAC2連接在第四交換機S4的連接埠口p2,而代表第三終端設備C3的MAC3連接在第三交換機S3的連接埠口p2,以及;如第4-2圖所示之第二管理表52,以知悉第一~第四交換機S1~S4其每一個連接埠口p1、p2或p3…是否只是當成連結的通路(T)或有接設備(F);集合以上第一管理表51、第二管理表52這兩項準確比對的交互篩選結果,即可獲得區域網路500內部各個終端設備的真實連接分佈位置,其建表查詢更為簡單省時省事,而且各個終端設備實際連接分佈資料更為詳細準確,可提供資安管理上使用方便完全清楚掌握。 By means of the methods and steps provided by the present invention, the methods described in paragraphs 1~3 and [0007] above can be used to quickly query the internal devices of the regional network 500, and the comparison is established. The first management table 51 shown in FIG. 4-1 is configured to know that the MAC1 of the first terminal device C1 is connected to the port 2 of the second switch S2, and the MAC2 of the second terminal device C2 is connected. The connection port p2 of the four switch S4, and the MAC3 of the third terminal device C3 are connected to the connection port p2 of the third switch S3, and the second management table 52 as shown in FIG. 4-2, to know the Whether each of the first to fourth switches S1 to S4 is connected to the port p1, p2 or p3 is only a connected path (T) or a connected device (F); the first management table 51 and the second management table 52 are collected. The results of the two interactive comparisons can obtain the real connection location of each terminal device in the regional network 500, and the table construction query is simpler, time-saving and trouble-free, and the actual connection distribution data of each terminal device is more detailed. Accurate, can provide easy maintenance of security management Master.

請參第5、6、7-1、7-2圖所示,本發明之較佳實施例進一步並可設有一更新建表流程200,主要包括:S08步驟8.判斷是否要更新資料?若是,執行步驟2;若否,則動作結束。使區域網路500內部進行例行維護,或當有新增設備時,可方便管理者經由更新建表流程200,隨時更新掌握網內設備最新分佈情形,譬如:第6圖所示,當區域網路500內部於第四交換機S4的連接埠 口p3(S4)增設有一第四終端設備C4時,同並具有一MAC4以供識別,利用本發明所提供之有效方法及S08步驟8,可快速進行查詢分析比對區域網路500內部設備,而建立出更新後的第一管理表53(如第7-1圖)及第二管理表54(如第7-2圖),如此管理者便能隨時清楚掌握區域網路500內部各個設備的真實連接分佈位置。 As shown in the figures 5, 6, 7-1, and 7-2, the preferred embodiment of the present invention may further include an update table construction process 200, which mainly includes: S08 Step 8. Determine whether to update the data. If yes, go to step 2; if no, the action ends. Routine maintenance of the area network 500, or when there are new devices, it is convenient for the administrator to update the latest distribution of devices in the network through the update table construction process 200, for example, as shown in Fig. 6, when the area is The internal connection of the network 500 to the fourth switch S4埠 When the fourth terminal device C4 is added to the port p3 (S4), the same MAC4 is provided for identification. With the effective method provided by the present invention and the step 8 of S08, the query and analysis can be quickly performed to compare the internal devices of the regional network 500. The updated first management table 53 (such as Figure 7-1) and the second management table 54 (such as Figure 7-2) are established, so that the administrator can clearly grasp the internal devices of the regional network 500 at any time. The real connection distribution location.

請參第5、8、9-1、9-2圖所示,本發明之較佳實施例進一步並可設有一異動建表流程300,主要包括:S09步驟9.判斷是否網內交換機有異動;若是,執行步驟1;若否,則動作結束。使區域網路500內部除了設備增減,其它可能面對部門擴編或縮編造成設備移動時,管理者可經由異動建表流程300,方便隨時更新掌握網內設備異動後最新分佈情形,譬如:第8圖所示,當區域網路500內部第三終端設備C3與第四交換機S4連同其底下所接的第二終端設備C2與第四終端設備C4連接位置對調時,相同可利用本發明所提供之有效方法及S09步驟9,快速的進行查詢分析比對區域網路500內部設備,而建立出異動後的第一管理表55(如第9-1圖)及第二管理表56(如第9-2圖),如此管理者便能隨時清楚掌握區域網路500內部各個設備的真實連接分佈位置。 As shown in FIG. 5, 8, 9-1, and 9-2, the preferred embodiment of the present invention may further include a transaction configuration process 300, which mainly includes: S09 step 9. determining whether the switch in the network has a change. If yes, go to step 1; if no, the action ends. In addition to the increase or decrease of equipment in the local area network 500, other departments may face the expansion or downsizing of the department to cause the equipment to move. The manager can use the transaction table 300 to facilitate the update of the latest distribution after the device changes in the network. For example: 8 is shown, when the third terminal device C3 and the fourth switch S4 in the area network 500 are connected with the connection position of the second terminal device C2 and the fourth terminal device C4 connected thereto, the same can be provided by the present invention. The effective method and step S9 of S09, quickly perform query analysis to compare the internal devices of the regional network 500, and establish a first management table 55 (such as Figure 9-1) and a second management table 56 (such as the first) 9-2), so that the manager can clearly grasp the real connection location of each device in the regional network 500 at any time.

請參第8、10圖,本發明較佳的實施例還可進一步將區域網路500內第一~第四終端設備C1~C4的資料,包括有:每一設備的IP地址、MAC地址、及主機名稱資料,對應成單一之網路位置;再與一網路分佈環境平面圖400資訊對應整合,而將所屬管理的網路終端設備C1~C4對應成實體地理位置顯示呈現。或者如第11圖所示,更進一步擴大將跨區之企業分 支機構410與全球性地域圖示450資訊整合呈現(如Google Map)資訊整合呈現。 For example, in the preferred embodiment of the present invention, the data of the first to fourth terminal devices C1 to C4 in the area network 500 may further include: an IP address and a MAC address of each device. And the host name data, corresponding to a single network location; and then integrated with a network distribution environment plan 400 information, and the associated network terminal devices C1~C4 are correspondingly displayed as physical location display. Or as shown in Figure 11, further expand the cross-regional enterprise The branch 410 integrates with the global geographic representation 450 information presentation (such as Google Map) information integration.

藉此,以方便資安管理建檔查詢更新維護使用,讓網路故障診斷排除變得非常容易達成。直接由全球性地域圖示450及網路分佈環境平面圖400對照顯示的實體地理位置,點進簡單就能找到發生問題的網路終端設備C1~C4其相對所在的建築物平面位置,直接對應顯示以供有效處理排除故障,使網路暢通迅速恢復正常。 In this way, it is very easy to make the network fault diagnosis and elimination possible by facilitating the security management and documentation to update and maintain the use. Directly from the global geographical map 450 and the network distributed environment plan 400 in comparison with the displayed physical location of the entity, it is easy to find the network plane device C1~C4 where the problem occurs, and the relative position of the building is directly displayed. For effective troubleshooting, the network can be quickly and smoothly returned to normal.

綜上所述,本發明方法新穎與習知相較又具有明顯進步,同時也具可供產業利用性,完全符合專利要件,爰提出發明專利申請。唯以上所述者,僅為本發明之較佳實施例而已,當不能以此限定本發明實施之範圍;故,凡依本發明申請專利範圍及創作說明書內容所作之簡單的等效變化與修飾,皆應仍屬本發明專利涵蓋之範圍內。 In summary, the novel method of the present invention has significant progress compared with the conventional ones, and also has industrial availability, fully conforms to the patent requirements, and proposes an invention patent application. The above is only the preferred embodiment of the present invention, and the scope of the present invention is not limited thereto; therefore, the simple equivalent changes and modifications made by the scope of the patent application and the content of the invention are All should remain within the scope of the invention patent.

S1‧‧‧第一交換機 S1‧‧‧ first switch

S2‧‧‧第二交換機 S2‧‧‧second switch

S3‧‧‧第三交換機 S3‧‧‧ third switch

S4‧‧‧第四交換機 S4‧‧‧fourth switch

C1‧‧‧第一終端設備 C1‧‧‧First terminal equipment

C2‧‧‧第二終端設備 C2‧‧‧second terminal equipment

C3‧‧‧第三終端設備 C3‧‧‧Terminal terminal equipment

p1、p2、p3‧‧‧連接埠口 P1, p2, p3‧‧‧ connection port

Claims (5)

一種以通用協定SNMP取得網路設備正確連接位置的方法,係用來蒐集網內中所有交換機設備,查詢每台交換機的轉送表,比對分析每一連接埠資料,更新記錄存檔,直到所有交換機查詢完成,以獲得網路內終端設備的分佈連接位置,主要包括:步驟1.以通用協定SNMP蒐集網內中所有交換機設備MAC,建立設備MAC表;步驟2.查詢每台交換機的轉送表;其特徵在於:步驟3.將轉送表轉成以連接埠為索引;步驟4.逐一比對分析每一連接埠資料,判斷是否任一筆其它交換機MAC出現在該埠設備MAC表中;若是,執行以下步驟5;若否,則執行以下步驟6;步驟5.將此連接埠資訊略過,返回執行步驟2;步驟6.逐一將剩下的MAC與連接埠配對更新至結果,以及;步驟7.判斷是否所有交換機皆已查詢完成;若否,返回執行步驟2;若是,則動作結束;藉此,可有效經由通用協定SNMP,取得網路設備對應之交換機連接埠,並自動判定交換機連接埠以過濾無效對應關係,快速獲得網路內所有終端設備的正確分佈連接位置。 A method for obtaining a correct connection location of a network device by using a general protocol SNMP is used to collect all switch devices in the network, query a transfer table of each switch, compare and analyze each connection data, and update the record archive until all switches The query is completed to obtain the distributed connection location of the terminal devices in the network, and the main steps include: Step 1. Collect all device MAC addresses in the network by using the general protocol SNMP, and establish a device MAC table; Step 2. Query the forwarding table of each switch; The method is characterized in that: step 3. convert the forwarding table into an index based on the connection; step 4. analyze each connection data one by one to determine whether any other switch MAC appears in the MAC table of the device; if yes, execute Step 5 below; if not, perform the following step 6; Step 5. Skip the information and return to step 2; Step 6. Update the remaining MACs and ports to the results one by one, and step 7; Determining whether all the switches have been queried; if not, returning to step 2; if yes, the action ends; thereby, it can effectively pass the general protocol SNMP, To give the corresponding switches of network equipment ports, and automatically determines the correct position of the distribution switch is connected to port correspondence relationship invalid filters, fast access to all terminal devices within the network. 如申請專利範圍第1項所述以通用協定SNMP取得網路設備正確連接位置的方法,其進一步設有一更新建表流程,即增加一步驟8.判斷是否要 更新資料;若是,執行前述步驟2;若否,則動作結束。 For example, in the method of claim 1, the general agreement SNMP is used to obtain the correct connection location of the network device, and further includes an update table construction process, that is, adding a step 8. determining whether to Update the data; if yes, perform step 2 above; if no, the action ends. 如申請專利範圍第1項所述以通用協定SNMP取得網路設備正確連接位置的方法,其進一步設有一異動建表流程,即增加一步驟9.判斷是否網內交換機或終端設備有異動;若是,執行前述步驟1;若否,則動作結束。 For example, in the method of claim 1, the general agreement SNMP is used to obtain the correct connection location of the network device, and further, a transaction establishment process is further provided, that is, adding a step 9. determining whether the switch or the terminal device in the network has a change; , perform the foregoing step 1; if not, the action ends. 如申請專利範圍第1、2或3項任一項所述以通用協定SNMP取得網路設備正確連接位置的方法,其進一步取得網路內每一終端設備資料,包括有:該終端設備的IP地址、MAC地址、及主機名稱資料,而對應單一之網路位置;再與一網路分佈環境平面圖資訊對應整合,而將所屬管理的網路終端設備對應成實體地理位置顯示呈現。 The method for obtaining the correct connection location of the network device by using the universal protocol SNMP according to any one of the claims 1, 2 or 3, further obtaining the data of each terminal device in the network, including: the IP of the terminal device The address, the MAC address, and the host name data are corresponding to a single network location; and then integrated with a network distribution environment floor plan information, and the managed network terminal device is correspondingly displayed as an entity geographic location display. 如申請專利範圍第4項所述以通用協定SNMP取得網路設備正確連接位置的方法,其中該網路終端設備對應成實體地理位置,進一步與全球性地域圖示資訊整合呈現。 The method for obtaining the correct connection location of the network device by using the SNMP protocol in the general agreement SNMP according to item 4 of the patent application scope, wherein the network terminal device corresponds to the physical geographic location, and is further integrated with the global geographical graphic information.
TW104121046A 2015-06-30 2015-06-30 Get the correct way to connect the network device with the common protocol SNMP TWI568232B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW104121046A TWI568232B (en) 2015-06-30 2015-06-30 Get the correct way to connect the network device with the common protocol SNMP

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW104121046A TWI568232B (en) 2015-06-30 2015-06-30 Get the correct way to connect the network device with the common protocol SNMP

Publications (2)

Publication Number Publication Date
TW201701636A TW201701636A (en) 2017-01-01
TWI568232B true TWI568232B (en) 2017-01-21

Family

ID=58401154

Family Applications (1)

Application Number Title Priority Date Filing Date
TW104121046A TWI568232B (en) 2015-06-30 2015-06-30 Get the correct way to connect the network device with the common protocol SNMP

Country Status (1)

Country Link
TW (1) TWI568232B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090092113A1 (en) * 2004-11-05 2009-04-09 Cisco Systems, Inc. Graphical Display of Status Information in a Wireless Network Management System
TW201208299A (en) * 2010-04-23 2012-02-16 Broadcom Corp System and method for unique identifier exchange during auto-negotiation
CN102801567A (en) * 2012-08-28 2012-11-28 北京傲天动联技术有限公司 Method for automatically discovering hierarchical network topology and method for establishing hierarchical network topology

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090092113A1 (en) * 2004-11-05 2009-04-09 Cisco Systems, Inc. Graphical Display of Status Information in a Wireless Network Management System
TW201208299A (en) * 2010-04-23 2012-02-16 Broadcom Corp System and method for unique identifier exchange during auto-negotiation
CN102801567A (en) * 2012-08-28 2012-11-28 北京傲天动联技术有限公司 Method for automatically discovering hierarchical network topology and method for establishing hierarchical network topology

Also Published As

Publication number Publication date
TW201701636A (en) 2017-01-01

Similar Documents

Publication Publication Date Title
CN109150640B (en) Network topology discovery method and system based on two-layer network protocol
US9137118B2 (en) Management server and management method
CN110098948A (en) Use the automatic sign in of the terminal device of device configuration file
US8219611B2 (en) Systems and methods for providing a complete view of large computing networks
CN105376101B (en) A kind of method and system of material object equipment access of virtual network
CN108712286A (en) The determination method, apparatus and storage medium of network topology structure
CN106790759B (en) IPv4/IPv6 converting system and method based on SDN
JP2001320393A (en) Line concentration apparatus and network managing device using this
CN100420206C (en) SNMP communication system and method
CN112822053B (en) SNMP-based link layer network topology structure discovery method and system
CN109587207A (en) System and method for finding the network equipment automatically
CN112636985A (en) Network asset detection device based on automatic discovery algorithm
CN107360271B (en) Method, system and equipment for acquiring network equipment information and automatically segmenting IP address
CN110430265A (en) A kind of method and device obtaining server and inter-exchange corresponding relationship
CN106302864A (en) A kind of IP in order arranges system
CN104378233A (en) Equipment unified management method, incorporation method and corresponding devices
TWI568232B (en) Get the correct way to connect the network device with the common protocol SNMP
CN102868601B (en) Routing system related to network topology based on graphic configuration database businesses
WO2015039468A1 (en) Operation and maintenance monitoring method based on site status, device, equipment and system
CN110309144A (en) A kind of method and device with redis building tree form data structure
CN106533726B (en) The method for obtaining the correct link position of network equipment with general agreement SNMP
EP3591481B1 (en) Device configuration management apparatus, system, and program
CN103391232A (en) Virtual machine wiring method in cloud system
CN106533727A (en) Management system for network terminal equipment correspondingly displaying physical geographical position
CN106330549A (en) Alarm AP locking method and system based on mobile terminal