WO2022022404A1 - Network data processing system and method, network element device and server - Google Patents

Network data processing system and method, network element device and server Download PDF

Info

Publication number
WO2022022404A1
WO2022022404A1 PCT/CN2021/108056 CN2021108056W WO2022022404A1 WO 2022022404 A1 WO2022022404 A1 WO 2022022404A1 CN 2021108056 W CN2021108056 W CN 2021108056W WO 2022022404 A1 WO2022022404 A1 WO 2022022404A1
Authority
WO
WIPO (PCT)
Prior art keywords
data
network element
session
element device
network
Prior art date
Application number
PCT/CN2021/108056
Other languages
French (fr)
Chinese (zh)
Inventor
宿文强
Original Assignee
阿里巴巴集团控股有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 阿里巴巴集团控股有限公司 filed Critical 阿里巴巴集团控股有限公司
Publication of WO2022022404A1 publication Critical patent/WO2022022404A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/08Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
    • H04L43/0876Network utilisation, e.g. volume of load or congestion level
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/04Processing captured monitoring data, e.g. for logfile generation

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Mining & Analysis (AREA)
  • Environmental & Geological Engineering (AREA)
  • Computer And Data Communications (AREA)

Abstract

An embodiment of the present application provides a network data processing system and method, a network element device, and a server. Said system comprises: a first network element device, configured to send first data to a second network element device, replicate the first data to obtain second data, and send the second data to a target server; and the target server, configured to execute a corresponding network traffic monitoring task according to the received second data. According to the technical solution provided in the embodiments of the present application, in cases where there is no need to connect a plurality of complex auxiliary devices, such as an optical splitter and a shunting switch, to a network interface, the first network element device can directly complete the replication operation of data traffic, and then send the replicated data traffic to the target server for executing a monitoring task. The network data processing system of the present solution has a simple structure, low costs and high construction efficiency.

Description

网络数据处理系统、方法、网元设备和服务器Network data processing system, method, network element device and server
本申请要求2020年07月30日递交的申请号为202010753981.2、发明名称为“网络数据处理系统、方法、网元设备和服务器”中国专利申请的优先权,其全部内容通过引用结合在本申请中。This application claims the priority of the Chinese patent application filed on July 30, 2020 with the application number of 202010753981.2 and the invention titled "Network data processing system, method, network element device and server", the entire contents of which are incorporated into this application by reference .
技术领域technical field
本申请涉及计算机技术领域,尤其涉及网络数据处理系统、方法、网元设备和服务器。The present application relates to the field of computer technology, and in particular, to a network data processing system, method, network element device and server.
背景技术Background technique
在网络应用中,为了保证网络平台和用户的合法权益,通常需要进行网络设备监测。比如,在公有云网络产品应用中,需要对各用户使用流量进行计费,还需要网络攻击行为进行监测。比较常用的监测手段是,利用分流技术对目标网络设备的流量情况进行分流,进而对分流得到的流量进行相关分析处理。In network applications, in order to ensure the legitimate rights and interests of network platforms and users, network device monitoring is usually required. For example, in the application of public cloud network products, it is necessary to charge the traffic used by each user, and to monitor the network attack behavior. A more commonly used monitoring method is to use the diversion technology to divert the traffic of the target network device, and then to perform relevant analysis and processing on the traffic obtained by diversion.
在现有技术中,在进行监测分流操作的时候,为了减少分流操作对网络稳定性造成的不利影响,通常会专门搭建一个监测系统,比如,在目标网络设备的流量端口连接一个分光器,然后将分光器连接到分流交换机,通过分流交换机将分流发送给监测服务器,从而达到监测的目的。具体来说,利用分光器从流量端口获取流量镜像,分流交换机对该流量进行分流处理,可以得到某个目标网络设备的镜像流量。分流交换机再将该镜像流量发送给监测服务器,该监测服务器通过镜像流量实现对目标网络设备的监测。这种方案利用分光器、分流交换机搭建监测系统的设备成本高,结构复杂,建设周期长。In the prior art, in order to reduce the adverse impact of the offload operation on network stability when monitoring the offload operation, a monitoring system is usually built. For example, an optical splitter is connected to the traffic port of the target network device, and then The optical splitter is connected to the distribution switch, and the distribution is sent to the monitoring server through the distribution switch, so as to achieve the purpose of monitoring. Specifically, the optical splitter is used to obtain traffic mirroring from the traffic port, and the splitting switch performs traffic splitting processing to obtain the mirrored traffic of a target network device. The distribution switch then sends the mirrored traffic to the monitoring server, and the monitoring server monitors the target network device through the mirrored traffic. This solution uses optical splitters and split switches to build a monitoring system with high equipment cost, complex structure and long construction period.
发明内容SUMMARY OF THE INVENTION
为解决或改善现有技术中存在的问题,本申请各实施例提供了一种网络数据处理系统、方法、网元设备和服务器。In order to solve or improve the problems existing in the prior art, various embodiments of the present application provide a network data processing system, method, network element device and server.
在本申请的一个实施例中,提供了一种网络数据处理系统。该系统包括:In one embodiment of the present application, a network data processing system is provided. The system includes:
第一网元设备,用于将第一数据发送至第二网元设备,并对所述第一数据进行复制得到第二数据;将所述第二数据发送至目标服务器;a first network element device, configured to send the first data to the second network element device, copy the first data to obtain the second data; send the second data to the target server;
目标服务器,用于根据接收到的所述第二数据,执行相应的网络流量监测任务。The target server is configured to perform a corresponding network traffic monitoring task according to the received second data.
在本申请的一个实施例中,提供了一种网络数据处理方法,应用于第一网元设备。所述方法包括:In an embodiment of the present application, a network data processing method is provided, which is applied to a first network element device. The method includes:
将接收到的第一数据发送至第二网元设备;sending the received first data to the second network element device;
对所述第一数据进行复制,得到第二数据;Copying the first data to obtain second data;
将所述第二数据发送至目标服务器。The second data is sent to the target server.
在本申请的另一个实施例中,提供了一种网络数据处理方法,应用于服务器。所述方法包括:In another embodiment of the present application, a network data processing method is provided, which is applied to a server. The method includes:
获取第一网元设备对第一数据进行复制得到的第二数据;acquiring second data obtained by duplicating the first data by the first network element device;
根据所述第二数据,执行相应的网络流量监测任务。According to the second data, a corresponding network traffic monitoring task is performed.
在本申请的一个实施例中,提供了一种网元设备。所述网元设备包括:存储器及处理器;其中,In an embodiment of the present application, a network element device is provided. The network element equipment includes: a memory and a processor; wherein,
所述存储器,用于存储程序;the memory for storing programs;
所述处理器,与所述存储器耦合,用于执行所述存储器中存储的所述程序,以用于:The processor, coupled to the memory, executes the program stored in the memory for:
将接收到的第一数据发送至第二网元设备;sending the received first data to the second network element device;
对所述第一数据进行复制,得到第二数据;Copying the first data to obtain second data;
将所述第二数据发送至目标服务器。The second data is sent to the target server.
在本申请的一个实施例中,提供了一种服务器,所述服务器包括:存储器及处理器;其中,In an embodiment of the present application, a server is provided, and the server includes: a memory and a processor; wherein,
所述存储器,用于存储程序;the memory for storing programs;
所述处理器,与所述存储器耦合,用于执行所述存储器中存储的所述程序,以用于:The processor, coupled to the memory, executes the program stored in the memory for:
获取第一网元设备对第一数据进行复制得到的第二数据;acquiring second data obtained by duplicating the first data by the first network element device;
根据所述第二数据,执行相应的网络流量监测任务。According to the second data, a corresponding network traffic monitoring task is performed.
本申请实施例提供的技术方案,当第一网元设备接收到如网络接口装置发送的第一数据后,将该第一数据发送至第二网元设备的同时,第一网元设备还对该第一数据进行复制得到第二数据;目标服务器接收第一网元设备发送的第二数据,并根据第二数据执行相关的网络流量监测任务。采用本实施例提供的技术方案,网络架构中无需设置分光器、分流交换机等多种复杂辅助设备,而直接利用第一网元设备便可完成对数据的复制工作,进而将复制的数量发送给具有网络流量监测能力的目标服务器,结构简单、成本更低、搭建效率更高。In the technical solutions provided by the embodiments of the present application, after the first network element device receives the first data sent by the network interface device, for example, the first network element device sends the first data to the second network element device, and the first network element device also sends the first data to the second network element device. The first data is copied to obtain second data; the target server receives the second data sent by the first network element device, and performs related network traffic monitoring tasks according to the second data. With the technical solution provided in this embodiment, there is no need to set up multiple complex auxiliary devices such as optical splitters and distribution switches in the network architecture, and the first network element device can directly use the first network element to complete the data replication, and then send the number of replications to The target server with network traffic monitoring capability has simple structure, lower cost and higher construction efficiency.
附图说明Description of drawings
为了更清楚地说明本申请实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作一简单地介绍,显而易见地,下面描述中的附图是本申请的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the following will briefly introduce the accompanying drawings used in the description of the embodiments or the prior art. Obviously, the accompanying drawings in the following description These are some embodiments of the present application. For those of ordinary skill in the art, other drawings can also be obtained based on these drawings without any creative effort.
图1为本申请一实施例提供的现有网络流量监测系统的结构示意图;1 is a schematic structural diagram of an existing network traffic monitoring system provided by an embodiment of the present application;
图2为本申请一实施例提供的一种网络数据处理系统的结构示意图;FIG. 2 is a schematic structural diagram of a network data processing system according to an embodiment of the present application;
图3为本申请一实施例提供的另一种网络数据处理系统的结构示意图;3 is a schematic structural diagram of another network data processing system provided by an embodiment of the present application;
图4为本申请一实施例提供的又一种网络数据处理系统的结构示意图;4 is a schematic structural diagram of another network data processing system provided by an embodiment of the present application;
图5为本申请一实施例提供的一种网络数据处理方法的流程示意图;FIG. 5 is a schematic flowchart of a network data processing method according to an embodiment of the present application;
图6为本申请一实施例提供的另一种网络数据处理方法的流程示意图;FIG. 6 is a schematic flowchart of another network data processing method provided by an embodiment of the present application;
图7为本申请一实施例提供的网络数据处理装置的结构示意图;FIG. 7 is a schematic structural diagram of a network data processing apparatus according to an embodiment of the present application;
图8为本申请一实施例提供的另一种网络数据处理装置的结构示意图;FIG. 8 is a schematic structural diagram of another network data processing apparatus provided by an embodiment of the present application;
图9为本申请一实施例提供的一种第一网元设备的结构示意图;FIG. 9 is a schematic structural diagram of a first network element device according to an embodiment of the present application;
图10为本申请一实施例提供的一种服务器的结构示意图。FIG. 10 is a schematic structural diagram of a server according to an embodiment of the present application.
具体实施方式detailed description
如图1为本申请一实施例提供的现有网络流量监测系统的结构示意图。从图1中可以看到,现有网络流量监测系统中,通常需要借助分光器和分流交换机才能实现。参见图1所示的实例,若要实现对网络流量的监测,需要在网络中设置分光器2,分光器2网络接口装置1与网关设备3之间设置一个分光器2,分光器2将复制得到的流量发送给分流交换机4,进而由分流交换机4将流量导入到起到监测作用的目标服务器5。然而,随着云网络技术的发展,网络系统越来越庞大,若要完成对网络流量的监测任务,也就需要搭建庞大且复杂的网络流量监测系统。如此一来,不仅需要付出更多的分光器、分流交换机等硬件成本,而且还需要耗费更多的劳动力去搭建、维护等等。此外,系统越复杂,稳定性越得不到保障。FIG. 1 is a schematic structural diagram of an existing network traffic monitoring system according to an embodiment of the present application. As can be seen from Figure 1, in the existing network traffic monitoring system, it is usually achieved with the help of optical splitters and split switches. Referring to the example shown in Figure 1, in order to monitor network traffic, an optical splitter 2 needs to be set up in the network, and an optical splitter 2 is set between the network interface device 1 of the optical splitter 2 and the gateway device 3, and the optical splitter 2 will copy the The obtained traffic is sent to the distribution switch 4, and then the distribution switch 4 imports the traffic to the target server 5 that plays a monitoring role. However, with the development of cloud network technology, the network system is becoming larger and larger. To complete the monitoring task of network traffic, it is necessary to build a huge and complex network traffic monitoring system. As a result, not only need to pay more hardware costs such as optical splitters and split switches, but also need to spend more labor to build, maintain and so on. In addition, the more complex the system, the less stable it is.
本申请提供了如下各实施例以解决或部分解决上述各方案存在的问题。为了使本技术领域的人员更好地理解本申请方案,下面将结合本申请实施例中的附图,对本申请实施例中的技术方案进行清楚、完整地描述。The present application provides the following embodiments to solve or partially solve the problems existing in the above solutions. In order to make those skilled in the art better understand the solutions of the present application, the following will clearly and completely describe the technical solutions in the embodiments of the present application with reference to the accompanying drawings in the embodiments of the present application.
在本申请的说明书、权利要求书及上述附图中描述的一些流程中,包含了按照特定顺序出现的多个操作,这些操作可以不按照其在本文中出现的顺序来执行或并行执行。操作的序号如101、102等,仅仅是用于区分各个不同的操作,序号本身不代表任何的执行顺序。另外,这些流程可以包括更多或更少的操作,并且这些操作可以按顺序执行或并行执行。需要说明的是,本文中的“第一”、“第二”等描述,是用于区分不同的消息、设备、模块等,不代表先后顺序,也不限定“第一”和“第二”是不同的类型。此外,下文描述的实施例仅仅是本申请一部分实施例,而不是全部的实施例。基于本申请中的实施例,本领域技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本申请保护的范围。Some of the processes described in the specification, claims, and above-mentioned figures of the present application contain operations that occur in a particular order, and the operations may be performed out of the order in which they are presented herein or in parallel. The sequence numbers of the operations, such as 101, 102, etc., are only used to distinguish different operations, and the sequence numbers themselves do not represent any execution order. Additionally, these flows may include more or fewer operations, and these operations may be performed sequentially or in parallel. It should be noted that the descriptions such as "first" and "second" in this document are used to distinguish different messages, devices, modules, etc., and do not represent a sequence, nor do they limit "first" and "second" are different types. In addition, the embodiments described below are only a part of the embodiments of the present application, but not all of the embodiments. Based on the embodiments in this application, all other embodiments obtained by those skilled in the art without creative efforts shall fall within the protection scope of this application.
图2为本申请一实施例提供的一种网络数据处理系统的结构示意图。在这个网络数据处理系统中,不含有分光器和分流交换机等分流设备,也不需要分流交换机提供镜像端口进行流量镜像操作。如图2所示,包括:第一网元设备13及目标服务器14。具体来说:FIG. 2 is a schematic structural diagram of a network data processing system according to an embodiment of the present application. In this network data processing system, there are no split devices such as optical splitters and split switches, and no split switches are required to provide mirror ports for traffic mirroring operations. As shown in FIG. 2 , it includes: a first network element device 13 and a target server 14 . Specifically:
第一网元设备13,用于将第一数据发送至第二网元设备200,并对所述第一数据进行复制得到第二数据;将所述第二数据发送至目标服务器14;the first network element device 13, configured to send the first data to the second network element device 200, copy the first data to obtain the second data; send the second data to the target server 14;
目标服务器14,用于根据接收到的所述第二数据,执行相应的网络流量监测任务。The target server 14 is configured to perform a corresponding network traffic monitoring task according to the received second data.
在本实施例中,第一网元设备除保有原有功能(如对两个网络中使用不同传输协议的数据进行转换后发送)外,还具有数据复制能力。在对第三网元设备发送的第一数据进行监控时,可由第一网元设备对第一数据进行复制,也就是不需要在网络接口装置与第一网元设备之间设置分光器等设备。第一网元设备可以是网关设备。In this embodiment, the first network element device not only retains the original function (such as converting and sending data using different transmission protocols in the two networks), but also has a data duplication capability. When monitoring the first data sent by the third network element device, the first data can be copied by the first network element device, that is, there is no need to set up a device such as an optical splitter between the network interface device and the first network element device. . The first network element device may be a gateway device.
具体的,本实施例提供的所述系统,如图2所示,还可包括网络接口装置12,用于接收第三网元设备11发送的第一数据,并将所述第一数据发送至第一网元设备13。具体实施时,所述网络接口装置可是路由器、无线接入点(如Wi-Fi-AP)、交换机等,本实施例对此不作具体限定。Specifically, the system provided in this embodiment, as shown in FIG. 2 , may further include a network interface device 12 for receiving the first data sent by the third network element device 11 and sending the first data to The first network element device 13 . During specific implementation, the network interface device may be a router, a wireless access point (such as a Wi-Fi-AP), a switch, or the like, which is not specifically limited in this embodiment.
参见图2所示,所述第三网元设备11与第二网元设备15可以分别处于两个网络中,如第一网络100和第二网络200。这两个网络的数据传输协议可以不同,也可相同,本实施例对此不作限定。具体的,所述第一网络100和第二网络200均为局域网;或者,第一网络100为提供公共服务的云平台所在的网络,第二网络200为网络服务提供商组成的互联网。Referring to FIG. 2 , the third network element device 11 and the second network element device 15 may be respectively in two networks, such as the first network 100 and the second network 200 . The data transmission protocols of the two networks may be different or the same, which is not limited in this embodiment. Specifically, the first network 100 and the second network 200 are both local area networks; or, the first network 100 is the network where the cloud platform providing public services is located, and the second network 200 is the Internet composed of network service providers.
需要说明的是,这里利用第一网元设备对第一数据进行复制,不会对第一数据的传输产生影响。这与利用分光器、分流交换机不同,若分光器所占得的分光比过多,可能会削弱原链路数据传输的稳定性和准确性;此外,在有一些应用场景中,还会出现二次分光或者多次分光,这将直接导致光信号严重衰减。本申请中采用第一网元设备对接收到的第一数据直接采用复制的方案,不会对第一数据的传输产生影响,更不会出现信号衰减的问题,能够有效确保获取到的第一数据和第二数据的准确性、稳定性。第一网元设备在利用复制方式得到第二数据之后,第一数据还可以继续发送给第二网元设备。It should be noted that, here the first network element device is used to copy the first data, which will not affect the transmission of the first data. This is different from the use of splitters and split switches. If the split ratio occupied by the splitter is too large, the stability and accuracy of the data transmission of the original link may be weakened; in addition, in some application scenarios, there will be two Sub-splitting or multiple splitting, which will directly lead to serious attenuation of the optical signal. In this application, the first network element equipment is used to directly copy the received first data, which will not affect the transmission of the first data, and will not cause the problem of signal attenuation, which can effectively ensure the obtained first data. Accuracy and stability of data and secondary data. After the first network element device obtains the second data by means of copying, the first data may be further sent to the second network element device.
进一步的,这里所选择的第一网元设备13可以是内置有可编程交换处理模块的网关设备,并且,在可编程交换处理模块中配置有数据复制引擎。比如,在第一网元设备接收到由网络接口装置所发送的第一数据之后,启动该数据复制引擎,对第一数据进行复制,得到完全相同的第二数据。此外,在可编程交换模块中,还可以对数据复制格式、数据处理方式等进行相关设定。比如,可以对第一数据中不是很重要的报文进行过滤。由于复制操作直接在网关内进行,不需要再经过过多的数据传输、数据处理操作,可以确保数据安全,提高数据复制效率。此外,利用可编程交换模块可以根据需要进行编程设定,能够更好的满足多种不同应用场景、多种不同应用需求。Further, the first network element device 13 selected here may be a gateway device with a built-in programmable switching processing module, and a data replication engine is configured in the programmable switching processing module. For example, after the first network element device receives the first data sent by the network interface device, the data replication engine is started to replicate the first data to obtain identical second data. In addition, in the programmable switching module, the data replication format, data processing method, etc. can also be set. For example, unimportant packets in the first data may be filtered. Since the replication operation is performed directly in the gateway, there is no need to go through too many data transmission and data processing operations, which can ensure data security and improve data replication efficiency. In addition, the programmable switching module can be programmed as needed, which can better meet a variety of different application scenarios and different application requirements.
图2示出的网络数据处理系统架构简单,第一网元设备13可直接将复制得到的第二数据发送至目标服务器14。第一网元设备13与目标服务器14这两个网元耦合比较紧密。本实施例的另一种可变形的方案,如图3所示,第一网元设备13与目标服务器14间可 不直接通信,而是,第一网元设备13将复制得到的第二数据发送至网络接口装置12,以由网络接口装置12将所述第二数据转发给目标服务器14。相较于图2所示的结构,图3所示的方案中第一网元设备13和所述目标服务器14耦合不那么紧密,在网络建设上会更简单方便,且有利于提升网元稳定性。The network data processing system shown in FIG. 2 has a simple architecture, and the first network element device 13 can directly send the copied second data to the target server 14 . The two network elements of the first network element device 13 and the target server 14 are relatively closely coupled. Another deformable solution of this embodiment, as shown in FIG. 3 , the first network element device 13 and the target server 14 may not communicate directly, but the first network element device 13 sends the copied second data to the network interface device 12 for forwarding the second data to the target server 14 by the network interface device 12 . Compared with the structure shown in FIG. 2 , in the solution shown in FIG. 3 , the coupling between the first network element device 13 and the target server 14 is not so tight, which is simpler and more convenient in network construction, and is conducive to improving the stability of network elements. sex.
在实际应用中,目标服务器除了可以进行网络流量监测外,还可以用于异常流量分析、流量计费、网络性能分析、上网用户行为分析等等。在具体实施时,可通过部署多个服务器的方式,以由不同的服务器承担不同的任务;比如,有的服务器用于网络流量监测、流量计费等;有的服务器用于异常流量分析等。当然,承担相同任务的服务器可以是一个,也可以是多个,本实施例对此不作限定。In practical applications, in addition to monitoring network traffic, the target server can also be used for abnormal traffic analysis, traffic accounting, network performance analysis, and online user behavior analysis. In specific implementation, different servers may undertake different tasks by deploying multiple servers; for example, some servers are used for network traffic monitoring, traffic accounting, etc.; some servers are used for abnormal traffic analysis, etc. Of course, there may be one or more servers that undertake the same task, which is not limited in this embodiment.
在一具体的实施例方案中,本实施例的网络数据处理系统包括有多个服务器。假设,多个服务器均承担同一任务,如流量监测。相应的,本实施例中提及的所述目标服务器11即所述多个服务器16(如图4所示)中的一个。具体的,本实施例所述第一网元设备13在将所述第二数据发送至目标服务器11时可具体为:In a specific embodiment solution, the network data processing system of this embodiment includes a plurality of servers. Suppose, multiple servers are all responsible for the same task, such as traffic monitoring. Correspondingly, the target server 11 mentioned in this embodiment is one of the multiple servers 16 (as shown in FIG. 4 ). Specifically, when the first network element device 13 in this embodiment sends the second data to the target server 11, it may be as follows:
从所述多个服务器16中,为所述第二数据选定一目标服务器;from the plurality of servers 16, selecting a target server for the second data;
将所述第二数据发送至所述目标服务器。Sending the second data to the target server.
参见图4所示,所述第一网元设备13可将所述第二数据及所述目标服务器的标识发送至网络接口装置12,以由所述网络接口装置12根据所述目标服务器的标识,将所述第二数据发送至所述目标服务器。Referring to FIG. 4 , the first network element device 13 may send the second data and the identifier of the target server to the network interface device 12, so that the network interface device 12 can send the second data and the identifier of the target server to the network interface device 12 according to the identifier of the target server. , and send the second data to the target server.
同一会话的所有数据信息均被发送至同一服务器是比较理想的。如果,将同一会话的数据被随机分配到不同服务器,因不同服务器之间不会相互通信,这就不能很好的跟踪两网元设备间的流量。会话是指通信双方进行通信的过程,多用于网络上,比如TCP的三次握手就创建了一个会话,TCP关闭连接就关闭会话。会话一但建立就会一直存在,直到通信的一方空闲时间超过了一个时间阈值,该会话才会被删除。会话存在期间(或存活期间),通信双方传输的数据(比如用户客户端设备给服务器发送的请求)会被存储在该会话中。比如,使用线性链表的方式对会话进行管理。当有新数据时,可通过查找,确定被管理的会话链表中是否存在有该新数据对应的会话,如果存在,在将该新数据存储到其对应的会话中。由此可知,本实施例中所述第一网元设备可通过查找会话的方式,来为所述第二数据选定一目标服务器。具体的,所述第一网元设备13在从所述多个服务器16中,为所述第二数据选定一目标服务器时,具体用于:Ideally, all data messages for the same session are sent to the same server. If the data of the same session is randomly distributed to different servers, since the different servers will not communicate with each other, it is impossible to track the traffic between the two network element devices very well. Session refers to the process of communication between two communicating parties. It is mostly used on the network. For example, the three-way handshake of TCP creates a session, and when TCP closes the connection, the session is closed. Once the session is established, it will always exist, and the session will not be deleted until the idle time of the communicating party exceeds a time threshold. During the existence (or survival period) of the session, the data transmitted by the two communicating parties (for example, the request sent by the user's client device to the server) will be stored in the session. For example, use a linear linked list to manage sessions. When there is new data, it can be searched to determine whether there is a session corresponding to the new data in the managed session linked list, and if so, the new data is stored in the corresponding session. It can be seen that, in this embodiment, the first network element device can select a target server for the second data by searching for a session. Specifically, when the first network element device 13 selects a target server for the second data from the plurality of servers 16, it is specifically used for:
确定是否存在所述第二数据所属的会话;determining whether there is a session to which the second data belongs;
存在所述第二数据所属的会话时,将所述多个服务器中与所述会话关联的服务器作为所述目标服务器。When there is a session to which the second data belongs, the server associated with the session among the plurality of servers is used as the target server.
具体实施时,可基于第二数据中携带的参数来查询对应的会话。即所述第一网元设备13在确定是否存在所述第二数据所属的会话时,具体用于:During specific implementation, the corresponding session may be queried based on the parameters carried in the second data. That is, when the first network element device 13 determines whether there is a session to which the second data belongs, it is specifically used to:
获取所述第二数据携带的参数,其中,所述参数包括但不限于:源IP地址、源端口、目的IP地址及目的端口;基于所述参数,查询是否存在所述第二数据所属的会话。Acquire parameters carried by the second data, where the parameters include but are not limited to: source IP address, source port, destination IP address, and destination port; based on the parameters, query whether there is a session to which the second data belongs .
例如,第一网元设备接收到第二数据之后,将对第二数据进行解析、筛选相关操作,从而获取第二数据中携带的参数。该参数包括:源IP地址、源端口、目的IP地址及目的端口;此外,还可以包括传输层协议、服务类型、接口索引等。在一些可实现的实施方案中,具有相同参数的两个数据可认为是同一会话。因此,在具体实施时,可通过比对第二数据的参数与各会话中已有数据的参数的方式,来查询是否存在第二数据所属的会话。若存在所述第二数据所属的会话,则将与所述会话关联的服务器作为所述目标服务器。其中,与所述会话关联的服务器,可简单理解为:该会话创建时该会话的第一个数据的复制数据被发送的服务器。会话的第一数据可随机发送至任一服务器,或者,基于负载均衡原则来选定服务器。具体实现时,可设计一个数据表,该数据表中包含有会话与服务器的对应关系。会话被删除后,该数据表中有关该会话的关系数据也被删除。For example, after receiving the second data, the first network element device will parse and filter the second data to obtain parameters carried in the second data. The parameters include: source IP address, source port, destination IP address, and destination port; in addition, may also include transport layer protocol, service type, interface index, and the like. In some possible implementations, two data with the same parameters may be considered the same session. Therefore, during specific implementation, it is possible to query whether there is a session to which the second data belongs by comparing the parameters of the second data with the parameters of the existing data in each session. If there is a session to which the second data belongs, the server associated with the session is used as the target server. Wherein, the server associated with the session can be simply understood as: the server to which the copy data of the first data of the session is sent when the session is created. The first data of the session may be randomly sent to any server, or the server may be selected based on a load balancing principle. During specific implementation, a data table can be designed, and the data table contains the corresponding relationship between sessions and servers. After a session is deleted, the relational data about the session in this data table is also deleted.
在有一些应用中,可引入哈希算法参与到网络流量发送过程。具体来说,采用哈希算法,为所述至少一个会话中的任一会话计算与其关联的哈希因子。即本实施例中,所述第一网元设备13在基于所述参数查询是否存在所述第二数据所属的会话时,可具体为:根据所述参数,计算哈希因子;利用所述哈希因子,查询是否存在所述第二数据所属的会话。In some applications, a hash algorithm can be introduced to participate in the process of sending network traffic. Specifically, using a hashing algorithm, a hash factor associated therewith is calculated for any one of the at least one session. That is, in this embodiment, when querying whether there is a session to which the second data belongs based on the parameter, the first network element device 13 may specifically: calculate a hash factor according to the parameter; use the hash factor The si factor is used to query whether there is a session to which the second data belongs.
进一步的,若利用哈希因子查询不存在所述第二数据所属的会话,则本实施例中所述的第一网元设备13还可用于:不存在所述第二数据所属的会话时,创建所述第二数据所属的会话;利用哈希算法,为所述会话计算与其关联的哈希因子,以便于查询;将所述多个服务器中任一服务器作为所述目标服务器;将所述目标服务器的服务器标识与所述会话关联,以便于后续接收到与所述第二数据同属所述会话的复制数据时能基于所述服务器标识完成将所述复制数据发送至目标服务器的操作。Further, if the hash factor is used to query the session to which the second data does not exist, the first network element device 13 described in this embodiment can also be used to: when there is no session to which the second data belongs, Create a session to which the second data belongs; use a hash algorithm to calculate a hash factor associated with the session for easy query; use any one of the multiple servers as the target server; use the The server identifier of the target server is associated with the session, so that the operation of sending the replicated data to the target server can be completed based on the server identifier when subsequently receiving replicated data belonging to the session with the second data.
在实际应用中,会话、会话关联的哈希因子,以及会话关联的服务器标识,可以存储在第一网元设备中,也可以存储在专用存储设备中。例如,本实施例提供的所述网络数据处理系统还可包括第一网元设备13通信连接的存储设备。该存储设备存储至少一个会话及各会话关联的服务器标识;所述第一网元设备13,还用于采用哈希算法,为所述至少一个会话中的任一会话计算与其关联的哈希因子;将计算得到所述哈希因子发送至所述存储设备,以便于所述存储设备将所述哈希因子与相应的会话关联。容易理解的是,采用将哈希因子等相关数据存储到具有通信连接关系的存储设备当中,可以有效减轻第一网元设备的存储负担,而且存储设备的存储空间更大。In practical applications, the session, the hash factor associated with the session, and the server identifier associated with the session may be stored in the first network element device, or may be stored in a dedicated storage device. For example, the network data processing system provided in this embodiment may further include a storage device communicatively connected to the first network element device 13 . The storage device stores at least one session and a server identifier associated with each session; the first network element device 13 is further configured to use a hash algorithm to calculate a hash factor associated with any session in the at least one session ; Send the calculated hash factor to the storage device, so that the storage device can associate the hash factor with the corresponding session. It is easy to understand that by storing relevant data such as hash factors in a storage device having a communication connection relationship, the storage burden of the first network element device can be effectively reduced, and the storage space of the storage device is larger.
或者,本实施例中的所述第一网元设备13可以是具有一定计算能力的边缘网关。该边缘网关保有网关基本功能(即数据转换发送等),还具有数据复制功能,还具有计算哈希因子、数据存储能力等等,使得本实施例提供的系统架构更简单、搭建成本低。Alternatively, the first network element device 13 in this embodiment may be an edge gateway with a certain computing capability. The edge gateway retains the basic functions of the gateway (ie, data conversion and transmission, etc.), and also has the function of data replication, calculation of hash factors, data storage capabilities, etc., which makes the system architecture provided by this embodiment simpler and the construction cost is low.
上述实施例是从整体系统的角度对本申请的技术方案进行的说明。下面将从单个执行主体的角度进行说明。如图5为本申请一实施例提供的一种网络数据处理方法的流程示意图。本实施例提供的网络数据处理方法的执行主体可以是第一网元设备。该第一网元设备为具有可编程交换处理模块,并且在可编程交换处理模块中配置有数据复制引擎的设备,从而能够独立实现网络流量分流相关操作。具体的,如图5所示,所述网络数据处理方法包括:The above-mentioned embodiments describe the technical solutions of the present application from the perspective of the overall system. The following will be explained from the perspective of a single executive. FIG. 5 is a schematic flowchart of a method for processing network data according to an embodiment of the present application. The execution body of the network data processing method provided in this embodiment may be the first network element device. The first network element device is a device having a programmable switching processing module, and a data replication engine is configured in the programmable switching processing module, so that operations related to network traffic distribution can be independently implemented. Specifically, as shown in FIG. 5 , the network data processing method includes:
401:将接收到的第一数据发送至第二网元设备。401: Send the received first data to a second network element device.
402:对所述第一数据进行复制,得到第二数据。402: Copy the first data to obtain second data.
403:将所述第二数据发送至目标服务器。403: Send the second data to the target server.
上述402对第一数据进行复制的方式如下:The manner in which the above 402 replicates the first data is as follows:
在接收到第一数据之后,启动第一网元设备中的数据复制引擎;通过数据复制引擎,对第一数据进行复制得到第二数据。需要说明的是,第一网元设备可以将第一数据完全复制得到第二数据,也可以根据实际应用需求(比如,计费应用、安全监测应用等),对第一数据进行解析、过滤等操作,过滤掉无关数据,进而复制得到与当前应用相关的第二数据;还可以先对第一数据进行复制,再对复制得到的数据进行解析和过滤,再生产第二数据。After receiving the first data, the data replication engine in the first network element device is started; the first data is replicated through the data replication engine to obtain the second data. It should be noted that the first network element device can completely copy the first data to obtain the second data, and can also parse and filter the first data according to actual application requirements (for example, billing applications, security monitoring applications, etc.). operation to filter out irrelevant data, and then copy to obtain second data related to the current application; firstly, the first data may be copied, and then the copied data is parsed and filtered, and the second data is produced.
如前文所述实施例中的图2和图3可知,网络数据处理系统的结构关系可以有两种方式,分别对应两种不同的将第二数据发送至目标服务器的方式。具体来说,上述步骤403可以采用如下两种实现方式:As can be seen from FIG. 2 and FIG. 3 in the aforementioned embodiments, there may be two ways for the structural relationship of the network data processing system, respectively corresponding to two different ways of sending the second data to the target server. Specifically, the above step 403 can be implemented in the following two ways:
方式一,结合图2所示的结构示意图可知,第一网元设备在接收到由网络接口装置发送的第一数据之后,对第一数据进行复制,然后,由第一网元设备直接发送给与其具有连接关系的目标服务器,从而实现对网络流量监测操作。 Mode 1, with reference to the schematic structural diagram shown in FIG. 2 , after receiving the first data sent by the network interface device, the first network element device copies the first data, and then the first network element device directly sends it to The target server that has a connection relationship with it, so as to realize the operation of monitoring network traffic.
方式二,结合图3所示结构示意图可知,第一网元设备13在接收到有网络接口装置12发送的第一数据之后,对第一数据进行复制,然后,第一网元设备13将所述第二数据发送至网络接口装置12,以由所述网络接口装置12将所述第二数据转发至所述目标服务器14。其中,所述第一数据为第三网元设备11发送至所述网络接口装置12,再由所述网络接口装置12发出的。即本实施例中的步骤403“将所述第二数据发送至目标服务器”包括:将所述第二数据发送至网络接口装置,以由所述网络接口装置将所述第二数据转发至所述目标服务器。 Mode 2, with reference to the schematic structural diagram shown in FIG. 3 , after receiving the first data sent by the network interface device 12, the first network element device 13 copies the first data, and then the first network element device 13 copies all the data. The second data is sent to the network interface device 12 for forwarding the second data to the target server 14 by the network interface device 12 . The first data is sent by the third network element device 11 to the network interface device 12 , and then sent by the network interface device 12 . That is, the step 403 of “sending the second data to the target server” in this embodiment includes: sending the second data to the network interface device, so that the network interface device forwards the second data to the target server. the target server.
当服务器为多个时,本实施例中步骤403可包括如下步骤:When there are multiple servers, step 403 in this embodiment may include the following steps:
4031、从多个服务器中,为所述第二数据选定一目标服务器;4031. From a plurality of servers, select a target server for the second data;
4032、将所述第二数据发送至所述目标服务器。4032. Send the second data to the target server.
具体来说,上述步骤4031可利用第二数据所属会话来选定目标服务器。即上述4031可包括;Specifically, in the above step 4031, the target server may be selected by using the session to which the second data belongs. That is, the above 4031 may include;
确定是否存在所述第二数据所属的会话;存在所述第二数据所属的会话时,将所述多个服务器中与所述会话关联的服务器作为所述目标服务器。It is determined whether there is a session to which the second data belongs; when there is a session to which the second data belongs, a server associated with the session among the multiple servers is used as the target server.
其中,确定是否存在与第二数据对应的会话的方式包括:获取所述第二数据携带的参数,其中,所述参数包括:源IP地址、源端口、目的IP地址及目的端口;基于所述参数,查询是否存在所述第二数据所属的会话。这里所说的参数还可以包括传输层协议(具体的如协议号)、服务类型、接口索引等。进而,基于这些参数从多个会话中去查找所述第二数据所属的会话。具体的,有关如何查找第二数据所属会话的内容,可参见上文中的相应内容,此处不作赘述。The method of determining whether there is a session corresponding to the second data includes: acquiring parameters carried by the second data, wherein the parameters include: source IP address, source port, destination IP address, and destination port; based on the parameter, query whether there is a session to which the second data belongs. The parameters mentioned here may also include a transport layer protocol (specifically, a protocol number), a service type, an interface index, and the like. Further, based on these parameters, the session to which the second data belongs is searched from multiple sessions. Specifically, for how to find the content of the session to which the second data belongs, reference may be made to the corresponding content above, which will not be repeated here.
进一步的,还可利用哈希因子来实现会话的查询。即上述步骤“基于所述参数,查询是否存在所述第二数据所属的会话”,可包括:Further, the hash factor can also be used to implement the query of the session. That is, the above step "based on the parameter, query whether there is a session to which the second data belongs" may include:
S1、根据所述参数,计算哈希因子;S1, according to the parameter, calculate the hash factor;
S2、利用所述哈希因子,查询是否存在所述第二数据所属的会话。S2. Using the hash factor, query whether there is a session to which the second data belongs.
这里需要说明的是,有关基于源IP地址、源端口、目的IP地址及目的端口等等计算哈希因子的算法,本实施例对此不作具体限定。It should be noted here that the algorithm for calculating the hash factor based on the source IP address, source port, destination IP address, and destination port, etc., is not specifically limited in this embodiment.
若查询存在所述第二数据所属的会话时,将所述多个服务器中与所述会话关联的服务器作为所述目标服务器。例如,第一网元设备本地存储有会话与服务器标识的关联关系列表,由此在具体实施时,可通过查询该关联关系列表,来获取某一会话对应的服务器标识。If there is a session to which the second data belongs to the query, a server associated with the session among the multiple servers is used as the target server. For example, the first network element device locally stores a list of association relationships between sessions and server identifiers, so during specific implementation, the server identifier corresponding to a session can be obtained by querying the association relationship list.
若查询不存在所述第二数据所属的会话时,本实施例提供的所述方法还可包括如下步骤:If there is no session to which the second data belongs to the query, the method provided by this embodiment may further include the following steps:
404、不存在所述第二数据所属的会话时,创建所述第二数据所属的会话;404. When the session to which the second data belongs does not exist, create a session to which the second data belongs;
405、利用哈希算法,为所述会话计算与其关联的哈希因子,以便于查询;405. Using a hash algorithm, calculate a hash factor associated with the session for easy query;
406、将所述多个服务器中任一服务器作为所述目标服务器;406. Use any one of the multiple servers as the target server;
407、将所述目标服务器的服务器标识与所述会话关联,以便于后续接收到与所述第二数据同属所述会话的复制数据时能基于所述服务器标识完成将所述复制数据发送至目标服务器的操作。407. Associate the server identifier of the target server with the session, so that when the replicated data that belongs to the session as the second data is subsequently received, the replicated data can be sent to the target based on the server identifier. Operation of the server.
如图6为本申请一实施例提供的另一种网络数据处理方法的流程示意图。本实施例提供的网络数据处理方法的执行主体可以是服务器。该服务器可用于针对接收到的复制数据执行对网络流量监测任务、或异常流量分析等等,本实施例对此不作具体限定。在本实施例中以服务器承担网络流量监测任务为例进行说明。具体的,如图6所示,所述网络数据处理方法包括:FIG. 6 is a schematic flowchart of another network data processing method provided by an embodiment of the present application. The execution body of the network data processing method provided in this embodiment may be a server. The server may be configured to perform a task of monitoring network traffic, or analyzing abnormal traffic, etc. with respect to the received replication data, which is not specifically limited in this embodiment. In this embodiment, the server undertakes the network traffic monitoring task as an example for description. Specifically, as shown in FIG. 6 , the network data processing method includes:
501:获取第一网元设备对第一数据进行复制得到的第二数据。501: Acquire second data obtained by duplicating the first data by the first network element device.
502:根据所述第二数据,执行相应的网络流量监测任务。502: Execute a corresponding network traffic monitoring task according to the second data.
其中,实现步骤501的方式有两种,包括:接收第一网元设备对所述第一数据进行 复制后发送的所述第二数据;或者接收网络接口装置发送的所述第二数据。There are two ways to implement step 501, including: receiving the second data sent by the first network element device after duplicating the first data; or receiving the second data sent by a network interface device.
一般来说,采用如图2所示的结构,服务器可直接从第一网元设备接收第二数据。采用图3所示的结构,服务器是从网络接口设备接收第一网元设备复制的第二数据。当然,这里仅作为举例说明,在实际应用中,用户可以根据自己的实际需求选择合适的连接方式,从而可以直接利用第一网元设备帮助目标服务器实现相应的网络流量监测功能。Generally speaking, with the structure shown in FIG. 2 , the server can directly receive the second data from the first network element device. With the structure shown in FIG. 3 , the server receives the second data copied by the first network element device from the network interface device. Of course, this is only used as an example. In practical applications, the user can select an appropriate connection mode according to his actual needs, so that the first network element device can be directly used to help the target server implement the corresponding network traffic monitoring function.
需要说明的是,所述第一数据为第三网元设备发送至所述网络接口装置,再由所述网络接口发送至所述第一网元设备的;所述第二数据为所述第一网元设备在对第一数据进行复制后发送至所述网络接口装置的。It should be noted that the first data is sent by the third network element device to the network interface device, and then sent to the first network element device by the network interface; the second data is the first data Sent by a network element device to the network interface device after copying the first data.
图7为本申请一实施例提供的网络数据处理装置的结构示意图。如图7所示,所述网络数据处理装置包括:发送模块61、数据复制模块62(比如,可以是配置有复制引擎的可编程交换处理模块,以便通过该模块实现了数据复制功能)。其中,FIG. 7 is a schematic structural diagram of a network data processing apparatus according to an embodiment of the present application. As shown in FIG. 7 , the network data processing apparatus includes: a sending module 61 and a data copying module 62 (for example, it may be a programmable switching processing module configured with a copying engine, so that the data copying function can be realized by this module). in,
发送模块61,用于将接收到的第一数据发送至第二网元设备。数据复制模块62用于对所述第一数据进行复制,得到第二数据。发送模块61还用于将所述第二数据发送至目标服务器。The sending module 61 is configured to send the received first data to the second network element device. The data copying module 62 is configured to copy the first data to obtain the second data. The sending module 61 is further configured to send the second data to the target server.
本实施例提供的技术方案,当第一网元设备接收到网络接口装置发送的第一数据后,将该第一数据发送至第二网元设备的同时,第一网元设备还对该第一数据进行复制得到第二数据;目标服务器接收第一网元设备发送的第二数据,并根据第二数据执行相关的网络流量监测任务。采用本实施例提供的技术方案,网络架构中无需设置分光器、分流交换机等多种复杂辅助设备,而直接利用第一网元设备便可完成对数据的复制工作,进而将复制的数量发送给具有网络流量监测能力的目标服务器,结构简单、成本更低、搭建效率更高。In the technical solution provided by this embodiment, after the first network element device receives the first data sent by the network interface device, and sends the first data to the second network element device, the first network element device also sends the first data to the second network element device. One data is copied to obtain second data; the target server receives the second data sent by the first network element device, and performs related network traffic monitoring tasks according to the second data. With the technical solution provided in this embodiment, there is no need to set up multiple complex auxiliary devices such as optical splitters and distribution switches in the network architecture, and the first network element device can directly use the first network element to complete the data replication, and then send the number of replications to The target server with network traffic monitoring capability has simple structure, lower cost and higher construction efficiency.
进一步地,数据复制模块62用于在接收到所述第一数据后,启动数据复制引擎;通过所述数据复制引擎,对所述第一数据进行复制得到所述第二数据。Further, the data duplication module 62 is configured to start a data duplication engine after receiving the first data; and obtain the second data by duplicating the first data through the data duplication engine.
进一步地,发送模块61还用于将所述第二数据发送至网络接口装置,以由所述网络接口装置将所述第二数据转发至所述目标服务器;其中,所述第一数据为第三网元设备发送至所述网络接口装置,再由所述网络接口装置发出的。Further, the sending module 61 is further configured to send the second data to a network interface device, so that the network interface device forwards the second data to the target server; wherein the first data is the first data The three network element devices are sent to the network interface device, and then sent by the network interface device.
进一步地,发送模块61还用于从多个服务器中,为所述第二数据选定一目标服务器;将所述第二数据发送至所述目标服务器。Further, the sending module 61 is further configured to select a target server for the second data from a plurality of servers; and send the second data to the target server.
进一步地,还包括确定模块63,用于确定是否存在所述第二数据所属的会话;存在所述第二数据所属的会话时,将所述多个服务器中与所述会话关联的服务器作为所述目标服务器。Further, it also includes a determining module 63 for determining whether there is a session to which the second data belongs; when there is a session to which the second data belongs, the server associated with the session among the multiple servers is used as the the target server.
进一步地,确定模块63用于获取所述第二数据携带的参数,其中,所述参数包括:源IP地址、源端口、目的IP地址及目的端口;基于所述参数,查询是否存在所述第二数据所属的会话。Further, the determining module 63 is configured to obtain parameters carried by the second data, wherein the parameters include: source IP address, source port, destination IP address and destination port; based on the parameters, query whether there is the first 2. The session to which the data belongs.
进一步地,确定模块63用于根据所述参数,计算哈希因子;利用所述哈希因子,查询是否存在所述第二数据所属的会话。Further, the determining module 63 is configured to calculate a hash factor according to the parameter; and use the hash factor to query whether there is a session to which the second data belongs.
进一步地,确定模块63用于若不存在所述第二数据所属的会话时,创建会话并存储所述第二数据;利用哈希算法,为所述会话计算与其关联的哈希因子,以便于查询;将所述多个服务器中任一服务器作为所述目标服务器;将所述目标服务器的服务器标识与所述会话关联,以便于后续接收到与所述第二数据同属所述会话的复制数据时能基于所述服务器标识完成将所述复制数据发送至目标服务器操作。Further, the determining module 63 is configured to create a session and store the second data if there is no session to which the second data belongs; using a hash algorithm, calculate a hash factor associated with the session for the convenience of query; use any one of the multiple servers as the target server; associate the server identifier of the target server with the session, so as to subsequently receive the replicated data that belongs to the session with the second data At the same time, the operation of sending the replicated data to the target server can be completed based on the server identifier.
这里需要说明的是:上述实施例提供的网络数据处理装置可实现上述相应方法实施例中描述的技术方案,上述各模块或单元具体实现的原理及有益效果可参见上述相应方法实施例中的相应内容,此处不再赘述。It should be noted here that the network data processing apparatus provided by the above embodiments can implement the technical solutions described in the above corresponding method embodiments, and the specific implementation principles and beneficial effects of the above modules or units can be referred to the corresponding method embodiments above. The content will not be repeated here.
图8为本申请一实施例提供的另一种网络数据处理装置的结构示意图。如图8所示,所述网络数据处理装置包括:获取模块71、执行模块72。FIG. 8 is a schematic structural diagram of another network data processing apparatus according to an embodiment of the present application. As shown in FIG. 8 , the network data processing apparatus includes: an acquisition module 71 and an execution module 72 .
获取模块71,用于获取第一网元设备对第一数据进行复制得到的第二数据。The obtaining module 71 is configured to obtain second data obtained by duplicating the first data by the first network element device.
执行模块72,用于根据所述第二数据,执行相应的网络流量监测任务。The execution module 72 is configured to execute a corresponding network traffic monitoring task according to the second data.
进一步地,获取模块71,用于接收第一网元设备对所述第一数据进行复制后发送的所述第二数据;或者接收网络接口装置发送的所述第二数据;其中,所述第一数据为第三网元设备发送至所述网络接口装置,再由所述网络接口发送至所述第一网元设备的;所述第二数据为所述第一网元设备在对第一数据进行复制后发送至所述网络接口装置的。Further, the obtaining module 71 is configured to receive the second data sent by the first network element device after duplicating the first data; or receive the second data sent by the network interface device; wherein the first data One data is sent by the third network element device to the network interface device, and then sent by the network interface to the first network element device; the second data is that the first network element device is responding to the first network element device. The data is copied and sent to the network interface device.
这里需要说明的是:上述实施例提供的网络数据处理装置可实现上述相应方法实施例中描述的技术方案,上述各模块或单元具体实现的原理及有益效果可参见上述相应方法实施例中的相应内容,此处不再赘述。It should be noted here that the network data processing apparatus provided by the above embodiments can implement the technical solutions described in the above corresponding method embodiments, and the specific implementation principles and beneficial effects of the above modules or units can be referred to the corresponding method embodiments above. The content will not be repeated here.
本申请又一个实施例还提供一种网元设备。如图9为本申请一实施例提供的一种网元设备的结构示意图。该网元设备包括存储器81、处理器82及通信组件83;其中,Yet another embodiment of the present application further provides a network element device. FIG. 9 is a schematic structural diagram of a network element device according to an embodiment of the present application. The network element device includes a memory 81, a processor 82 and a communication component 83; wherein,
所述存储器81,用于存储程序;The memory 81 is used to store programs;
所述处理器82,与所述存储器81耦合,用于执行所述存储器81中存储的所述程序,以用于:指示通信组件83将接收到的第一数据发送至第二网元设备;对所述第一数据进行复制,得到第二数据;指示通信组件将所述第二数据发送至目标服务器。The processor 82, coupled to the memory 81, is configured to execute the program stored in the memory 81, so as to: instruct the communication component 83 to send the received first data to the second network element device; Copying the first data to obtain second data; instructing the communication component to send the second data to the target server.
上述存储器可被配置为存储其它各种数据以支持在网元设备上的操作。这些数据的示例包括用于在网元设备上操作的任何应用程序或方法的指令。存储器可以由任何类型的易失性或非易失性存储设备或者它们的组合实现,如静态随机存取存储器(SRAM),电可擦除可编程只读存储器(EEPROM),可擦除可编程只读存储器(EPROM),可编程只读存储器(PROM),只读存储器(ROM),磁存储器,快闪存储器,磁盘或光盘。The memory described above may be configured to store various other data to support operations on the network element device. Examples of such data include instructions for any application or method operating on the network element device. Memory can be implemented by any type of volatile or non-volatile storage device or a combination thereof, such as Static Random Access Memory (SRAM), Electrically Erasable Programmable Read Only Memory (EEPROM), Erasable Programmable Read Only Memory (EPROM), Programmable Read Only Memory (PROM), Read Only Memory (ROM), Magnetic Memory, Flash Memory, Magnetic or Optical Disk.
进一步地,本实施例中的所述处理器可以具体是:可编程交换处理芯片,该可编程 交换处理芯片中配置有数据复制引擎,能对接收到的数据进行复制。Further, the processor in this embodiment may specifically be: a programmable switching processing chip, and a data copying engine is configured in the programmable switching processing chip, which can copy the received data.
上述处理器在执行存储器中的程序时,除了上面的功能之外,还可实现其它功能,具体可参见前面各实施例的描述。When the above-mentioned processor executes the program in the memory, in addition to the above-mentioned functions, other functions may also be implemented. For details, please refer to the descriptions of the foregoing embodiments.
进一步,如图9所示,网元设备还包括:电源组件84等其它组件。图9中仅示意性给出部分组件,并不意味着第一网元设备只包括图9所示组件。Further, as shown in FIG. 9 , the network element device further includes: a power supply component 84 and other components. Only some components are schematically shown in FIG. 9 , which does not mean that the first network element device only includes the components shown in FIG. 9 .
具体实施时,所述网元设备可以是网关设备。During specific implementation, the network element device may be a gateway device.
本申请实施例还提供了一种服务器,应用于网络流量监测服务端。如图10为本申请一实施例提供的一种服务器的结构示意图。该服务器包括存储器91、处理器92、通信组件93以及电源组件94;其中,所述存储器91,用于存储程序;The embodiment of the present application also provides a server, which is applied to a network traffic monitoring server. FIG. 10 is a schematic structural diagram of a server according to an embodiment of the present application. The server includes a memory 91, a processor 92, a communication component 93 and a power supply component 94; wherein, the memory 91 is used to store programs;
所述处理器92,与所述存储器91耦合,用于执行所述存储器91中存储的所述程序,以用于:获取第一网元设备对第一数据进行复制得到的第二数据;根据所述第二数据,执行相应的网络流量监测任务。The processor 92, coupled to the memory 91, is configured to execute the program stored in the memory 91, so as to: obtain second data obtained by copying the first data by the first network element device; For the second data, a corresponding network traffic monitoring task is performed.
其中,处理器92在执行存储器91中的程序时,除了上面的功能之外,还可实现其它功能,具体可参见前面各实施例的描述。Wherein, when the processor 92 executes the program in the memory 91, in addition to the above functions, other functions may also be implemented. For details, please refer to the descriptions of the foregoing embodiments.
相应地,本申请实施例还提供一种存储有计算机程序的计算机可读存储介质,所述计算机程序被计算机执行时能够实现上述各实施例提供的网络数据处理方法的步骤或功能。Correspondingly, the embodiments of the present application further provide a computer-readable storage medium storing a computer program, and when the computer program is executed by a computer, the steps or functions of the network data processing methods provided by the foregoing embodiments can be implemented.
以上所描述的装置实施例仅仅是示意性的,其中所述作为分离部件说明的单元可以是或者也可以不是物理上分开的,作为单元显示的部件可以是或者也可以不是物理单元,即可以位于一个地方,或者也可以分布到多个网络单元上。可以根据实际的需要选择其中的部分或者全部模块来实现本实施例方案的目的。本领域普通技术人员在不付出创造性的劳动的情况下,即可以理解并实施。The device embodiments described above are only illustrative, wherein the units described as separate components may or may not be physically separated, and the components displayed as units may or may not be physical units, that is, they may be located in One place, or it can be distributed over multiple network elements. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution in this embodiment. Those of ordinary skill in the art can understand and implement it without creative effort.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解到各实施方式可借助软件加必需的通用硬件平台的方式来实现,当然也可以通过硬件。基于这样的理解,上述技术方案本质上或者说对现有技术做出贡献的部分可以以软件产品的形式体现出来,该计算机软件产品可以存储在计算机可读存储介质中,如ROM/RAM、磁碟、光盘等,包括若干指令用以使得一台计算机设备(可以是个人计算机,服务器,或者网络设备等)执行各个实施例或者实施例的某些部分所述的方法。From the description of the above embodiments, those skilled in the art can clearly understand that each embodiment can be implemented by means of software plus a necessary general hardware platform, and certainly can also be implemented by hardware. Based on this understanding, the above-mentioned technical solutions can be embodied in the form of software products in essence or the parts that make contributions to the prior art, and the computer software products can be stored in computer-readable storage media, such as ROM/RAM, magnetic A disc, an optical disc, etc., includes several instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to perform the methods described in various embodiments or some parts of the embodiments.
最后应说明的是:以上实施例仅用以说明本申请的技术方案,而非对其限制;尽管参照前述实施例对本申请进行了详细的说明,本领域的普通技术人员应当理解:其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本申请各实施例技术方案的精神和范围。Finally, it should be noted that the above embodiments are only used to illustrate the technical solutions of the present application, but not to limit them; although the present application has been described in detail with reference to the foregoing embodiments, those of ordinary skill in the art should understand that: it can still be Modifications are made to the technical solutions recorded in the foregoing embodiments, or some technical features thereof are equivalently replaced; and these modifications or replacements do not make the essence of the corresponding technical solutions deviate from the spirit and scope of the technical solutions of the embodiments of the present application.

Claims (23)

  1. 一种网络数据处理系统,其特征在于,包括:A network data processing system, comprising:
    第一网元设备,用于将第一数据发送至第二网元设备,并对所述第一数据进行复制得到第二数据;将所述第二数据发送至目标服务器;a first network element device, configured to send the first data to the second network element device, copy the first data to obtain the second data; send the second data to the target server;
    目标服务器,用于根据接收到的所述第二数据,执行相应的网络流量监测任务。The target server is configured to perform a corresponding network traffic monitoring task according to the received second data.
  2. 根据权利要求1所述的系统,其特征在于,所述第一网元设备具有可编程交换处理模块,所述可编程交换处理模块配置有数据复制引擎;The system according to claim 1, wherein the first network element device has a programmable switching processing module, and the programmable switching processing module is configured with a data replication engine;
    所述数据复制引擎,用于对接收到所述第一数据进行复制得到所述第二数据。The data replication engine is configured to replicate the received first data to obtain the second data.
  3. 根据权利要求1所述系统,其特征在于,所述第一网元设备在将所述第二数据发送至目标服务器时,具体用于:The system according to claim 1, wherein, when the first network element device sends the second data to the target server, it is specifically used for:
    将所述第二数据发送至所述网络接口装置,以由所述网络接口装置将所述第二数据转发至所述目标服务器。The second data is sent to the network interface device for forwarding by the network interface device to the target server.
  4. 根据权利要求1至3中任一项所述的系统,其特征在于,包括多个服务器,所述目标服务器为所述多个服务器中的一个;以及The system according to any one of claims 1 to 3, characterized in that it comprises a plurality of servers, and the target server is one of the plurality of servers; and
    所述第一网元设备在将所述第二数据发送至目标服务器时,具体用于:When the first network element device sends the second data to the target server, it is specifically used for:
    从所述多个服务器中,为所述第二数据选定一目标服务器;from the plurality of servers, selecting a target server for the second data;
    将所述第二数据发送至所述目标服务器。Sending the second data to the target server.
  5. 根据权利要求4所述的系统,其特征在于,所述第一网元设备在从所述多个服务器中,为所述第二数据选定一目标服务器时,具体用于:The system according to claim 4, wherein, when the first network element device selects a target server for the second data from the plurality of servers, it is specifically used for:
    确定是否存在所述第二数据所属的会话;determining whether there is a session to which the second data belongs;
    存在所述第二数据所属的会话时,将所述多个服务器中与所述会话关联的服务器作为所述目标服务器。When there is a session to which the second data belongs, the server associated with the session among the plurality of servers is used as the target server.
  6. 根据权利要求5所述的系统,其特征在于,所述第一网元设备在确定是否存在所述第二数据所属的会话时,具体用于:The system according to claim 5, wherein, when the first network element device determines whether there is a session to which the second data belongs, it is specifically configured to:
    获取所述第二数据携带的参数,其中,所述参数包括:源IP地址、源端口、目的IP地址及目的端口;Acquiring parameters carried by the second data, wherein the parameters include: a source IP address, a source port, a destination IP address, and a destination port;
    基于所述参数,查询是否存在所述第二数据所属的会话。Based on the parameter, query whether there is a session to which the second data belongs.
  7. 根据权利要求6所述的系统,其特征在于,所述第一网元设备在基于所述参数,查询是否存在所述第二数据所属的会话时,具体用于:The system according to claim 6, wherein when the first network element device queries whether there is a session to which the second data belongs based on the parameter, the first network element device is specifically used for:
    根据所述参数,计算哈希因子;According to the parameter, calculate the hash factor;
    利用所述哈希因子,查询是否存在所述第二数据所属的会话。Using the hash factor, it is queried whether there is a session to which the second data belongs.
  8. 根据权利要求7所述的系统,其特征在于,所述第一网元设备内存储有至少一个会话及各会话关联的服务器标识;以及The system according to claim 7, wherein the first network element device stores at least one session and a server identifier associated with each session; and
    所述第一网元设备还用于:The first network element device is also used for:
    采用哈希算法,为所述至少一个会话中的任一会话计算与其关联的哈希因子。A hash factor associated with any one of the at least one session is calculated using a hashing algorithm.
  9. 根据权利要求7所述的系统,其特征在于,还包括:与所述第一网元设备通信连接的存储设备;The system according to claim 7, further comprising: a storage device communicatively connected to the first network element device;
    所述存储设备,用于存储至少一个会话及各会话关联的服务器标识;The storage device is used to store at least one session and a server identifier associated with each session;
    所述第一网元设备,还用于采用哈希算法,为所述至少一个会话中的任一会话计算与其关联的哈希因子;将计算得到所述哈希因子发送至所述存储设备,以便于所述存储设备将所述哈希因子与相应的会话关联。The first network element device is further configured to use a hash algorithm to calculate a hash factor associated with any session in the at least one session; send the calculated hash factor to the storage device, to facilitate the storage device to associate the hash factor with the corresponding session.
  10. 根据权利要求1至3中任一项所述的系统,其特征在于,所述第一网元设备为网关设备。The system according to any one of claims 1 to 3, wherein the first network element device is a gateway device.
  11. 根据权利要求10所述的系统,其特征在于,还包括:The system of claim 10, further comprising:
    网络接口装置,用于接收第三网元设备发送的第一数据,并将所述第一数据发送至第一网元设备。A network interface device, configured to receive first data sent by a third network element device, and send the first data to the first network element device.
  12. 一种网络数据处理方法,其特征在于,适用于第一网元设备,包括:A network data processing method, characterized in that it is applicable to a first network element device, comprising:
    将接收到的第一数据发送至第二网元设备;sending the received first data to the second network element device;
    对所述第一数据进行复制,得到第二数据;Copying the first data to obtain second data;
    将所述第二数据发送至目标服务器。The second data is sent to the target server.
  13. 根据权利要求12所述的方法,其特征在于,对所述第一数据进行复制,得到第二数据,包括:The method according to claim 12, wherein the first data is copied to obtain the second data, comprising:
    在接收到所述第一数据后,启动数据复制引擎;After receiving the first data, start the data replication engine;
    通过所述数据复制引擎,对所述第一数据进行复制得到所述第二数据。The second data is obtained by copying the first data through the data copying engine.
  14. 根据权利要求12所述的方法,其特征在于,将所述第二数据发送至目标服务器,包括:The method according to claim 12, wherein sending the second data to the target server comprises:
    将所述第二数据发送至网络接口装置,以由所述网络接口装置将所述第二数据转发至所述目标服务器;sending the second data to a network interface device for forwarding by the network interface device to the target server;
    其中,所述第一数据为第三网元设备发送至所述网络接口装置,再由所述网络接口装置发出的。Wherein, the first data is sent by the third network element device to the network interface device, and then sent by the network interface device.
  15. 根据权利要求12所述的方法,其特征在于,将所述第二数据发送至目标服务器,包括:The method according to claim 12, wherein sending the second data to the target server comprises:
    从多个服务器中,为所述第二数据选定一目标服务器;From a plurality of servers, selecting a target server for the second data;
    将所述第二数据发送至所述目标服务器。Sending the second data to the target server.
  16. 根据权利要求15所述的方法,其特征在于,从多个服务器中,为所述第二数据选定一目标服务器,包括:The method according to claim 15, wherein selecting a target server for the second data from a plurality of servers comprises:
    确定是否存在所述第二数据所属的会话;determining whether there is a session to which the second data belongs;
    存在所述第二数据所属的会话时,将所述多个服务器中与所述会话关联的服务器作为所述目标服务器。When there is a session to which the second data belongs, the server associated with the session among the plurality of servers is used as the target server.
  17. 根据权利要求16所述的方法,其特征在于,确定是否存在所述第二数据所属 的会话,包括:The method according to claim 16, wherein determining whether there is a session to which the second data belongs, comprising:
    获取所述第二数据携带的参数,其中,所述参数包括:源IP地址、源端口、目的IP地址及目的端口;Acquiring parameters carried by the second data, wherein the parameters include: a source IP address, a source port, a destination IP address, and a destination port;
    基于所述参数,查询是否存在所述第二数据所属的会话。Based on the parameter, query whether there is a session to which the second data belongs.
  18. 根据权利要求17所述的方法,其特征在于,基于所述参数,查询是否存在所述第二数据所属的会话,包括:The method according to claim 17, wherein, based on the parameter, querying whether there is a session to which the second data belongs, comprising:
    根据所述参数,计算哈希因子;Calculate the hash factor according to the parameters;
    利用所述哈希因子,查询是否存在所述第二数据所属的会话。Using the hash factor, it is queried whether there is a session to which the second data belongs.
  19. 根据权利要求18所述的方法,其特征在于,所述方法还包括:The method of claim 18, wherein the method further comprises:
    不存在所述第二数据所属的会话时,创建所述第二数据所属的会话;When there is no session to which the second data belongs, creating a session to which the second data belongs;
    利用哈希算法,为所述会话计算与其关联的哈希因子,以便于查询;utilizing a hashing algorithm, computing a hash factor associated therewith for the session to facilitate query;
    将所述多个服务器中任一服务器作为所述目标服务器;Use any one of the multiple servers as the target server;
    将所述目标服务器的服务器标识与所述会话关联,以便于后续接收到与所述第二数据同属所述会话的复制数据时能基于所述服务器标识完成将所述复制数据发送至目标服务器的操作。Associating the server identifier of the target server with the session, so that the process of sending the replicated data to the target server can be completed based on the server identifier when subsequently receiving replicated data that belongs to the same session as the second data. operate.
  20. 一种网络数据处理方法,其特征在于,适用于服务器,所述方法包括:A network data processing method, characterized in that it is applicable to a server, the method comprising:
    获取第一网元设备对第一数据进行复制得到的第二数据;acquiring second data obtained by duplicating the first data by the first network element device;
    根据所述第二数据,执行相应的网络流量监测任务。According to the second data, a corresponding network traffic monitoring task is performed.
  21. 根据权利要求20所述的方法,其特征在于,获取第一网元设备对第一数据进行复制得到的第二数据,包括:The method according to claim 20, wherein acquiring the second data obtained by duplicating the first data by the first network element device comprises:
    接收第一网元设备对所述第一数据进行复制后发送的所述第二数据;或者receiving the second data sent by the first network element device after duplicating the first data; or
    接收网络接口装置发送的所述第二数据;receiving the second data sent by the network interface device;
    其中,所述第一数据为第三网元设备发送至所述网络接口装置,再由所述网络接口发送至所述第一网元设备的;所述第二数据为所述第一网元设备在对第一数据进行复制后发送至所述网络接口装置的。The first data is sent by the third network element device to the network interface device, and then sent by the network interface to the first network element device; the second data is the first network element The device sends the first data to the network interface device after copying the first data.
  22. 一种网元设备,其特征在于,包括存储器、处理器及通信组件;其中,A network element device is characterized by comprising a memory, a processor and a communication component; wherein,
    所述存储器,用于存储程序;the memory for storing programs;
    所述处理器,与所述存储器耦合,用于执行所述存储器中存储的所述程序,以用于:The processor, coupled to the memory, executes the program stored in the memory for:
    指示所述通信组件将接收到的第一数据发送至第二网元设备;instructing the communication component to send the received first data to the second network element device;
    对所述第一数据进行复制,得到第二数据;Copying the first data to obtain second data;
    指示所述通信组件将所述第二数据发送至目标服务器。The communication component is instructed to send the second data to a target server.
  23. 一种服务器,其特征在于,包括存储器及处理器;其中,A server, characterized by comprising a memory and a processor; wherein,
    所述存储器,用于存储程序;the memory for storing programs;
    所述处理器,与所述存储器耦合,用于执行所述存储器中存储的所述程序,以用于:The processor, coupled to the memory, executes the program stored in the memory for:
    获取第一网元设备对第一数据进行复制得到的第二数据;acquiring second data obtained by duplicating the first data by the first network element device;
    根据所述第二数据,执行相应的网络流量监测任务。According to the second data, a corresponding network traffic monitoring task is performed.
PCT/CN2021/108056 2020-07-30 2021-07-23 Network data processing system and method, network element device and server WO2022022404A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202010753981.2A CN114095403A (en) 2020-07-30 2020-07-30 Network data processing system, method, network element equipment and server
CN202010753981.2 2020-07-30

Publications (1)

Publication Number Publication Date
WO2022022404A1 true WO2022022404A1 (en) 2022-02-03

Family

ID=80037156

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2021/108056 WO2022022404A1 (en) 2020-07-30 2021-07-23 Network data processing system and method, network element device and server

Country Status (2)

Country Link
CN (1) CN114095403A (en)
WO (1) WO2022022404A1 (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160212778A1 (en) * 2014-02-21 2016-07-21 Yaana Technologies, Inc. Method and System for Data Flow Management of User Equipment in a Tunneling Packet Data Network
CN106453299A (en) * 2016-09-30 2017-02-22 北京奇虎科技有限公司 Network security monitoring method and device, and cloud WEB application firewall
CN110417612A (en) * 2019-06-11 2019-11-05 北京全路通信信号研究设计院集团有限公司 A kind of Network Traffic Monitoring System and method based on network element

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8358591B2 (en) * 2007-06-06 2013-01-22 Hewlett-Packard Development Company, L.P. Network traffic monitoring in a server network environment
CN104348749B (en) * 2014-07-28 2018-02-16 湖北誉恒科技有限公司 A kind of flow control methods, apparatus and system
CN106375160A (en) * 2016-10-28 2017-02-01 上海优刻得信息科技有限公司 Flow monitoring system and flow monitoring method
CN109561051A (en) * 2017-09-26 2019-04-02 中兴通讯股份有限公司 Content distributing network safety detection method and system
CN110545213A (en) * 2019-08-12 2019-12-06 安徽云探索网络科技有限公司 Computer network data flow monitoring system and method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160212778A1 (en) * 2014-02-21 2016-07-21 Yaana Technologies, Inc. Method and System for Data Flow Management of User Equipment in a Tunneling Packet Data Network
CN106453299A (en) * 2016-09-30 2017-02-22 北京奇虎科技有限公司 Network security monitoring method and device, and cloud WEB application firewall
CN110417612A (en) * 2019-06-11 2019-11-05 北京全路通信信号研究设计院集团有限公司 A kind of Network Traffic Monitoring System and method based on network element

Also Published As

Publication number Publication date
CN114095403A (en) 2022-02-25

Similar Documents

Publication Publication Date Title
US20150052252A1 (en) Method and system for optimizing a network by independently scaling control segments and data flow
WO2006131037A1 (en) A system and method for achieving the data communication
US9432321B2 (en) Method and apparatus for messaging in the cloud
CN102916897B (en) A kind of method and apparatus realizing VRRP load balancing
WO2008034353A1 (en) A method, system and device for establishing a peer to peer connection in a p2p network
US11153185B2 (en) Network device snapshots
CN106790420A (en) A kind of many session channel method for building up and system
US20210368006A1 (en) Request response method, device, and system applied to bit torrent system
EP3588859A1 (en) Network device configuration versioning
US20170163809A1 (en) Method and Device for Recording Multimedia Data
WO2022022404A1 (en) Network data processing system and method, network element device and server
CN109408487A (en) Document handling system and method under a kind of NAS file system
CN104378373A (en) SBC-oriented malformation SIP message detection method and system
US11356368B2 (en) Pinning bi-directional network traffic to a service device
US11366785B1 (en) Method and system for transparent database command replacement
Fiedler et al. Reliable VoIP services using a peer-to-peer intranet
Chen et al. Development of a decentralised virtual service redirector for Internet applications
CN117097591B (en) Application security access gateway system and route forwarding method
CN117424928B (en) Network equipment and resource sharing method
US20020184377A1 (en) One to many mapping of application service provision
Ilie et al. Statistical models for Gnutella signaling traffic
CN114268594A (en) Data processing method and system and virtual switch
Burgess et al. Network Patterns in Cfengine and Scalable Data Aggregation.
CN117459445A (en) Spring Cloud Gateway-based API gateway forwarding method and system
Shinde A Cloud Enable Data Sharing Platform using BESTPEER++

Legal Events

Date Code Title Description
NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 21851083

Country of ref document: EP

Kind code of ref document: A1