CN114124810B - Virtual test platform test flow monitoring method based on SDN and openfalcon architecture - Google Patents

Abstract

The invention discloses a virtual test platform test flow monitoring method based on SDN and openfalcon architecture; the method comprises the following steps: s1, building an SDN framework, wherein the SDN framework is divided into a data plane, a control plane and an application plane; s2, implanting an OpenFlow network communication protocol used between the controller and the forwarder in the SDN architecture; s3, introducing a concept of a flow table through OpenFlow, and guiding forwarding of the data packet by the forwarder through the flow table; s4, the OpenFlow controller sends a file to the OpenFlow switch through SLL; s5, carrying out flow monitoring according to the transmitted target page information; s6, the terminal equipment records the flow of the acquired page; the invention builds the system through SDN architecture, and uses openfalcon communication protocol to realize data communication transmission, and realizes terminal equipment comparison through identification.

Description

Virtual test platform test flow monitoring method based on SDN and openfalcon architecture

Technical Field

The invention belongs to the technical field of flow monitoring, and particularly relates to a virtual test platform test flow monitoring method based on SDN and openfalcon architecture.

Background

Flow monitoring, which can be understood as a flow shaping, is a network traffic management technology of a computer network, so as to delay part or all of the data packets to conform to one of the main forms of network traffic rules and rate limitation required by people. Network flow control is used to optimize or guarantee performance, improve latency, and/or increase the bandwidth available for certain types of packet delays to meet certain conditions. If a link goes to saturation, network delay may rise significantly. Thus, network traffic control may be utilized to prevent this from happening and to maintain a latency check. Network traffic control provides a means to control the amount of data that is sent into the network, or maximum rate of data traffic transmission, over a specified time period (bandwidth limitation). There are many ways in which this control can be implemented, but in general, network traffic control is always implemented using hold-off packets, which are typically applied at the network edge to control traffic entering the network, but may also be applied directly to a data source (e.g., a computer or a network card), or an element in the network, SDN is one implementation of network virtualization. The core technology OpenFlow separates a control surface from a data surface of network equipment, so that flexible control of network flow is realized, the network becomes more intelligent as a pipeline, a good platform is provided for innovation of the core network and application, and various problems still exist in flow monitoring in the market.

Although the traffic monitoring method provided by the disclosure of the authority publication number CN105978753B can realize statistics and monitoring of access behaviors and access traffic of specific users and provide a basis for determining subsequent access conversion rate, the problem that the existing traffic monitoring cannot effectively realize construction of a system, cannot effectively realize stable transmission and monitoring of traffic of the system, cannot realize calculation of detection processes and the like is solved, and therefore, a virtual test platform test traffic monitoring method based on SDN and openfalcon architecture is proposed.

Disclosure of Invention

The invention aims to provide a virtual test platform test flow monitoring method based on SDN and openfalcon architecture, which aims to solve the problems in the background technology.

In order to achieve the above purpose, the present invention provides the following technical solutions: a virtual test platform test flow monitoring method based on SDN and openfalcon architecture comprises the following steps:

s1, building an SDN framework, wherein the SDN framework is divided into a data plane, a control plane and an application plane; the control plane and the data plane are communicated through an SDN control data plane interface, so that the communication standard is unified, and the control plane and the data plane are mainly responsible for issuing forwarding rules in the controller to forwarding equipment;

s2, implanting an OpenFlow network communication protocol used between the controller and the forwarder in the SDN architecture; the OpenFlow network communication protocol defines forwarding and control separation of the network SDN, to realize the forwarding and control separation, a communication interface standard is established between the controller and the forwarder, and the controller is allowed to directly access and control a forwarding plane of the forwarder;

s3, introducing a concept of a flow table through OpenFlow, and guiding forwarding of the data packet by the forwarder through the flow table; the controller deploys a corresponding flow table on the forwarder through an interface provided by OpenFlow, so as to realize control of a forwarding plane;

s4, the OpenFlow controller sends the file to the OpenFlow switch through SSL; the file sending is carried out to the OpenFlow switch through SSL, access request information of a target page is obtained, and identification of terminal equipment is identified; the access request information carries access links of target pages, and an access request corresponding to the access request information is used for requesting a website server to send page information of the target pages to the terminal equipment so that the terminal equipment can display the target pages according to the page information;

s5, carrying out flow monitoring according to the transmitted target page information; according to the identification, identifying behavior information of a user uploaded by the terminal equipment on a target page, wherein the behavior information carries the identification once uploaded by the terminal equipment; determining target behavior information meeting preset behavior conditions from the behavior information, and recording the target behavior information and corresponding flow; the website server can feed back a corresponding response result to the terminal equipment according to the target behavior information;

s6, the terminal equipment records the flow of the acquired page; after the terminal equipment accesses, the page flow acquired by the terminal equipment is recorded and stored on an operation log to form flow monitoring calculation.

Preferably, the data plane in S1 includes a network general hardware component of the switch, and all network devices are connected through SDN data paths formed by different rules; the control plane comprises a logically centered SDN controller, grasps global network information and takes charge of controlling various forwarding rules; the application plane contains various SDN-based network applications, and does not need to care about the details of the bottom layer to program and deploy new applications.

Preferably, the control plane and the data plane communicate through an SDN control data plane interface, the control plane and the application plane communicate through an SDN northbound interface, and NBI is not a unified standard, so that a user is allowed to customize and develop various network management applications according to own requirements.

Preferably, the OpenFlow network in S2 includes an OpenFlow controller, an OpenFlow secure channel, and an OpenFlow switch, and the OpenFlow network communication protocol is in the control plane.

Preferably, the controller in S2 is an OpenFlow controller, where the OpenFlow controller is a brain of the SDN architecture, and directs forwarding of devices through an OpenFlow protocol, and the OpenFlow controller is divided into two main classes: open source controllers such as NOX/POX, openDaylight and commercial controllers developed by manufacturers with iMaster NCE;

the OpenFlow security channel is a channel for connecting the OpenFlow switch and the controller, is responsible for establishing a security link between the OpenFlow switch and the controller, and the controller controls and manages the switch through the channel and receives feedback from the switch;

the information interaction through the OpenFlow secure channel must be performed according to the format specified by the OpenFlow protocol, and TLS encryption is generally adopted, and sometimes, the information interaction is also implemented through TCP plaintext, and the types of OpenFlow messages transmitted in the channel include the following three types:

Controller-to-Switch message: the message sent by the OpenFlow controller and received and processed by the OpenFlow switch is mainly used for managing or acquiring the state of the OpenFlow switch;

asynchroous message: the OpenFlow switch is sent to the controller to update network events or switch state changes to the controller;

symmetry message: the system can be sent by an OpenFlow switch or a controller, is not required to be established by a request, and is mainly used for establishing connection, detecting whether the other party is online or not and the like;

the OpenFlow switch is a core component of the whole OpenFlow network and is mainly responsible for forwarding a data layer, and is a physical switch/router or a virtualized switch/router, and according to the support degree of the OpenFlow, the OpenFlow switch can be divided into two types:

OpenFlow private switch: a standard OpenFlow device only supports OpenFlow forwarding, does not support normal processing flow on an existing commercial switch, and forwards all data passing through the switch according to an OpenFlow mode;

OpenFlow compatible switches: the OpenFlow forwarding is supported, and normal two-layer forwarding and three-layer forwarding are supported, wherein a flow table, a secure channel and an OpenFlow protocol are added on the basis of a commercial switch to obtain the OpenFlow characteristic.

Preferably, the flow table used in the OpenFlow switch is a flexible rule that in the traditional network device, the data forwarding of the switch/router needs to rely on a two-layer MAC address forwarding table, a three-layer IP address routing table and a port number of a transport layer stored in the device, but the table entry does not refer to a common IP five-tuple, but integrates network configuration information of each layer in the network, and consists of a plurality of keywords and execution actions;

each flow table item of the OpenFlow flow table consists of a matching domain and a processing instruction part, wherein the most important part of the flow table items is the matching domain and the instruction, when the OpenFlow switch receives a data packet, the packet head is analyzed and then matched with the matching domain of the flow table items in the flow table, and the instruction is executed if the matching is successful.

Preferably, the establishing of the identifier of the terminal device in S4 realizes the calculation through a hash algorithm, and carries the identifier of the other terminal device obtained by the calculation in the request information, so that the website server can identify the identifier of the terminal device, thereby realizing the return of the target page.

Preferably, the hash algorithm calculates the identifier of the terminal device through a mapped algorithm, and the calculation formula of the hash algorithm is as follows:

x＝H(k)，

k represents an original value or a hash key value, H represents a mapping function, and x represents a result value obtained after the hash key is mapped;

first order linear mapping:

H(k)＝(a×k+b)mod m(a,m∈Z)，

multiplication mapping:

H(k)＝(A·k mod 2 ^w )rsh(w-r)，

wherein m=2 ^r W represents the bit number of one word length of the computer, A is an odd number, and 2 ^(w-r) <A<2 ^w (A cannot be too close to 2 ^w-r And 2 w), rsh refers to the right shift operation.

Preferably, the flow monitoring in S5 is monitoring the data flow, and generally includes data output, data input speed and total flow; the API interface monitoring method is adopted for flow monitoring, and the flow monitoring comprises internet surfing flow statistics, which is to manage internet surfing flow and carry out statistical display on month, day and real-time flow;

the method comprises the following functions:

and (5) emptying the statistical data: resetting the data flow of the current month and the data flow of the current day;

resetting the statistics: re-reading the flow data from the communication record;

flow statistics setting: the method comprises the steps of managing internet traffic, supporting the function settings of monthly traffic online amount, monthly traffic statistics starting time, traffic indicator display, traffic-free access point, preferential period and the like;

active link management: displaying access points currently being networked, and terminating a certain access point by a user and terminating all the access points;

program in networking: displaying a program which is currently in networking, and closing the selected program or switching to the program by a user;

program networking log: the weblog is viewed within 3 days.

Preferably, the calculation formula of the port flow rate of the switch of the flow monitoring algorithm is as follows:

where i represents a switch, j represents a switch port, port_speed _ij Representing the j-th port flow rate of the switch id i, wherein now_portbyte represents the flow value of the switch port at the current moment, pre_portbyte represents the flow value of the switch port at the last moment, the total flow of the time period is obtained by subtracting now_portbyte from pre_portbyte, period represents the time interval,

the residual bandwidth of the switch port is the bottleneck of a link, the residual bandwidth of the switch port is the port capacity minus the occupied bandwidth, the calculation method is shown in a formula, wherein i represents the switch, j represents the switch port, free_bw represents the residual bandwidth of the j-th port with the switch id of i, and capability represents the port capacity of the switch;

free_bw _ij ＝capacity _ij -port_speed _ij 。

compared with the prior art, the invention has the beneficial effects that:

according to the invention, the system is built in the SDN architecture, the openfalcon communication protocol is used for realizing the communication transmission of data, and the flow is monitored through the API interface, so that the flow can be effectively monitored, the inaccurate problem of the flow is prevented, the terminal equipment can be identified for comparison, the data transmission can be effectively completed, and the loss of the data is prevented.

Drawings

FIG. 1 is a schematic diagram of the system flow steps of the present invention;

fig. 2 is a schematic diagram of a position of OpenFlow in SDN according to the present invention;

FIG. 3 is a schematic diagram of an OpenFlow protocol architecture according to the present invention;

FIG. 4 is a schematic diagram of the composition of the stream entries of the present invention.

Detailed Description

The following description of the embodiments of the present invention will be made clearly and completely with reference to the accompanying drawings, in which it is apparent that the embodiments described are only some embodiments of the present invention, but not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.

Referring to fig. 1-4, the present invention provides a technical solution: a virtual test platform test flow monitoring method based on SDN and openfalcon architecture comprises the following steps:

s1, building an SDN framework, wherein the SDN framework is divided into a data plane, a control plane and an application plane; the control plane and the data plane are communicated through an SDN control data plane interface, so that the communication standard is unified, and the control plane and the data plane are mainly responsible for issuing forwarding rules in the controller to forwarding equipment;

s2, implanting an OpenFlow network communication protocol used between the controller and the forwarder in the SDN architecture; the OpenFlow network communication protocol defines forwarding and control separation of the network SDN, to realize the forwarding and control separation, a communication interface standard is established between the controller and the forwarder, and the controller is allowed to directly access and control a forwarding plane of the forwarder;

s3, introducing a concept of a flow table through OpenFlow, and guiding forwarding of the data packet by the forwarder through the flow table; the controller deploys a corresponding flow table on the forwarder through an interface provided by OpenFlow, so as to realize control of a forwarding plane;

s4, the OpenFlow controller sends the file to the OpenFlow switch through SSL; the file sending is carried out to the OpenFlow switch through SSL, access request information of a target page is obtained, and identification of terminal equipment is identified; the access request information carries access links of target pages, and an access request corresponding to the access request information is used for requesting a website server to send page information of the target pages to the terminal equipment so that the terminal equipment can display the target pages according to the page information;

s5, carrying out flow monitoring according to the transmitted target page information; according to the identification, identifying behavior information of a user uploaded by the terminal equipment on a target page, wherein the behavior information carries the identification once uploaded by the terminal equipment; determining target behavior information meeting preset behavior conditions from the behavior information, and recording the target behavior information and corresponding flow; the website server can feed back a corresponding response result to the terminal equipment according to the target behavior information;

s6, the terminal equipment records the flow of the acquired page; after the terminal equipment accesses, the page flow acquired by the terminal equipment is recorded and stored on an operation log to form flow monitoring calculation.

In order to realize exchange transmission of data information, in this embodiment, preferably, the data plane in S1 includes a network general hardware component of a switch, and all network devices are connected through SDN data paths formed by different rules; the control plane comprises a logically centered SDN controller, grasps global network information and takes charge of controlling various forwarding rules; the application plane contains various SDN-based network applications, and does not need to care about the details of the bottom layer to program and deploy new applications.

In order to realize effective interface transmission communication of data information, in this embodiment, preferably, the control plane and the data plane communicate through an SDN control data plane interface, and the control plane and the application plane communicate through an SDN northbound interface, while NBI is not a unified standard, and allows a user to customize and develop various network management applications according to own requirements.

In order to determine that the OpenFlow network communication protocol is in the SDN framework, in this embodiment, preferably, the OpenFlow network in S2 includes an OpenFlow controller, an OpenFlow secure channel, and an OpenFlow switch, and the OpenFlow network communication protocol is in the control plane.

In order to achieve efficient transmission of data information, in this embodiment, preferably, the controller in S2 is an OpenFlow controller, where the OpenFlow controller is a brain of the SDN architecture, and directs forwarding of devices through an OpenFlow protocol, and the OpenFlow controller is divided into two main classes: open source controllers such as NOX/POX, openDaylight and commercial controllers developed by manufacturers with iMaster NCE;

the OpenFlow security channel is a channel for connecting the OpenFlow switch and the controller, is responsible for establishing a security link between the OpenFlow switch and the controller, and the controller controls and manages the switch through the channel and receives feedback from the switch;

the information interaction through the OpenFlow secure channel must be performed according to the format specified by the OpenFlow protocol, and TLS encryption is generally adopted, and sometimes, the information interaction is also implemented through TCP plaintext, and the types of OpenFlow messages transmitted in the channel include the following three types:

Controller-to-Switch message: the message sent by the OpenFlow controller and received and processed by the OpenFlow switch is mainly used for managing or acquiring the state of the OpenFlow switch;

asynchroous message: the OpenFlow switch is sent to the controller to update network events or switch state changes to the controller;

symmetry message: the system can be sent by an OpenFlow switch or a controller, is not required to be established by a request, and is mainly used for establishing connection, detecting whether the other party is online or not and the like;

the OpenFlow switch is a core component of the whole OpenFlow network and is mainly responsible for forwarding a data layer, and is a physical switch/router or a virtualized switch/router, and according to the support degree of the OpenFlow, the OpenFlow switch can be divided into two types:

OpenFlow private switch: a standard OpenFlow device only supports OpenFlow forwarding, does not support normal processing flow on an existing commercial switch, and forwards all data passing through the switch according to an OpenFlow mode;

OpenFlow compatible switches: the OpenFlow forwarding is supported, and normal two-layer forwarding and three-layer forwarding are supported, wherein a flow table, a secure channel and an OpenFlow protocol are added on the basis of a commercial switch to obtain the OpenFlow characteristic.

In order to implement network transmission of flows and maintain data information addresses, in this embodiment, preferably, a flow table used in the OpenFlow switch is a two-layer MAC address forwarding table, a three-layer IP address routing table and a port number of a transport layer that are stored in a device are needed to be relied on for data forwarding of a switch/router in a traditional network device, but the table entry does not refer to a common IP five-tuple, but integrates network configuration information of each layer in the network, and is a flexible rule composed of a plurality of keywords and execution actions;

each flow table item of the OpenFlow flow table consists of a matching domain and a processing instruction part, wherein the most important part of the flow table items is the matching domain and the instruction, when the OpenFlow switch receives a data packet, the packet head is analyzed and then matched with the matching domain of the flow table items in the flow table, and the instruction is executed if the matching is successful.

In order to enable the website server to identify the identifier of the terminal device, in this embodiment, preferably, the establishing of the identifier of the terminal device in S4 implements calculation through a hash algorithm, and carries the identifier of the other terminal device obtained by calculation in the request information, so that the website server can identify the identifier of the terminal device, and further implement returning to the target page.

In order to implement the calculation design for the identifier, in this embodiment, preferably, the hash algorithm implements the calculation for the identifier of the terminal device through a mapped algorithm, and the calculation formula of the hash algorithm is as follows:

x＝H(k)，

k represents an original value or a hash key value, H represents a mapping function, and x represents a result value obtained after the hash key is mapped;

first order linear mapping:

H(k)＝(a×k+b)mod m(a,m∈Z)，

multiplication mapping:

H(k)＝(A·k mod 2 ^w )rsh(w-r)，

wherein m=2 ^r W represents the bit number of one word length of the computer, A is an odd number, and 2 ^(w-r) <A<2 ^w (A cannot be too close to 2 ^w-r And 2 w), rsh refers to the right shift operation.

In order to monitor the data traffic, in this embodiment, preferably, the traffic monitoring in S5 is monitoring the data traffic, which generally includes the speed of outputting data, inputting data, and the total traffic; the API interface monitoring method is adopted for flow monitoring, and the flow monitoring comprises internet surfing flow statistics, which is to manage internet surfing flow and carry out statistical display on month, day and real-time flow;

the method comprises the following functions:

and (5) emptying the statistical data: resetting the data flow of the current month and the data flow of the current day;

resetting the statistics: re-reading the flow data from the communication record;

flow statistics setting: the method comprises the steps of managing internet traffic, supporting the function settings of monthly traffic online amount, monthly traffic statistics starting time, traffic indicator display, traffic-free access point, preferential period and the like;

active link management: displaying access points currently being networked, and terminating a certain access point by a user and terminating all the access points;

program in networking: displaying a program which is currently in networking, and closing the selected program or switching to the program by a user;

program networking log: the weblog is viewed within 3 days.

In order to implement calculation of the flow rate speed of the switch port, in this embodiment, preferably, the flow rate speed of the switch port of the flow monitoring algorithm has the following calculation formula:

where i represents a switch, j represents a switch port, port_speed _ij Representing the j-th port flow rate of the switch id i, wherein now_portbyte represents the flow value of the switch port at the current moment, pre_portbyte represents the flow value of the switch port at the last moment, the total flow of the time period is obtained by subtracting now_portbyte from pre_portbyte, period represents the time interval,

the residual bandwidth of the switch port is the bottleneck of a link, the residual bandwidth of the switch port is the port capacity minus the occupied bandwidth, the calculation method is shown in a formula, wherein i represents the switch, j represents the switch port, free_bw represents the residual bandwidth of the j-th port with the switch id of i, and capability represents the port capacity of the switch;

free_bw _ij ＝capacity _ij -port_speed _ij 。

the working principle and the using flow of the invention are as follows:

firstly, constructing an SDN framework, wherein the SDN framework is divided into a data plane, a control plane and an application plane; the control plane and the data plane are communicated through an SDN control data plane interface, so that the communication standard is unified, and the control plane and the data plane are mainly responsible for issuing forwarding rules in the controller to forwarding equipment;

implanting an OpenFlow network communication protocol used between the controller and the forwarder in the SDN architecture; the OpenFlow network communication protocol defines forwarding and control separation of the network SDN, to realize the forwarding and control separation, a communication interface standard is established between the controller and the forwarder, and the controller is allowed to directly access and control a forwarding plane of the forwarder;

thirdly, introducing a concept of a flow table through OpenFlow, and guiding forwarding of the data packet through the flow table by a forwarder; the controller deploys a corresponding flow table on the forwarder through an interface provided by OpenFlow, so as to realize control of a forwarding plane;

fourth, the OpenFlow controller sends files to the OpenFlow switch through SSL; the file sending is carried out to the OpenFlow switch through SSL, access request information of a target page is obtained, and identification of terminal equipment is identified; the access request information carries access links of target pages, and an access request corresponding to the access request information is used for requesting a website server to send page information of the target pages to the terminal equipment so that the terminal equipment can display the target pages according to the page information;

fifthly, carrying out flow monitoring according to the transmitted target page information; according to the identification, identifying behavior information of a user uploaded by the terminal equipment on a target page, wherein the behavior information carries the identification once uploaded by the terminal equipment; determining target behavior information meeting preset behavior conditions from the behavior information, and recording the target behavior information and corresponding flow; the website server can feed back a corresponding response result to the terminal equipment according to the target behavior information;

sixthly, the terminal equipment records the flow of the acquired page; after the terminal equipment accesses, the page flow acquired by the terminal equipment is recorded and stored on an operation log to form flow monitoring calculation.

Although embodiments of the present invention have been shown and described, it will be understood by those skilled in the art that various changes, modifications, substitutions and alterations can be made therein without departing from the principles and spirit of the invention, the scope of which is defined in the appended claims and their equivalents.

Claims (4)

1. The virtual test platform test flow monitoring method based on SDN and openfalcon architecture is characterized by comprising the following steps:

s1, building an SDN framework, wherein the SDN framework is divided into a data plane, a control plane and an application plane; the control plane and the data plane are communicated through an SDN control data plane interface, so that the communication standard is unified, and the control plane and the data plane are mainly responsible for issuing forwarding rules in the controller to forwarding equipment;

s2, implanting an OpenFlow network communication protocol used between the controller and the forwarder in the SDN architecture; the OpenFlow network communication protocol defines forwarding and control separation of the network SDN, to realize the forwarding and control separation, a communication interface standard is established between the controller and the forwarder, and the controller is allowed to directly access and control a forwarding plane of the forwarder;

s3, introducing a concept of a flow table through OpenFlow, and guiding forwarding of the data packet by the forwarder through the flow table; the controller deploys a corresponding flow table on the forwarder through an interface provided by OpenFlow, so as to realize control of a forwarding plane;

s4, the OpenFlow controller sends the file to the OpenFlow switch through SSL; the file sending is carried out to the OpenFlow switch through SSL, access request information of a target page is obtained, and identification of terminal equipment is identified; the access request information carries access links of target pages, and an access request corresponding to the access request information is used for requesting a website server to send page information of the target pages to the terminal equipment so that the terminal equipment can display the target pages according to the page information;

s5, carrying out flow monitoring according to the transmitted target page information; according to the identification, identifying behavior information of a user uploaded by the terminal equipment on a target page, wherein the behavior information carries the identification once uploaded by the terminal equipment; determining target behavior information meeting preset behavior conditions from the behavior information, and recording the target behavior information and corresponding flow; the website server can feed back a corresponding response result to the terminal equipment according to the target behavior information;

s6, the terminal equipment records the flow of the acquired page; after the terminal equipment accesses, the page flow acquired by the terminal equipment is recorded and stored on an operation log to form flow monitoring calculation;

the data plane in the S1 comprises network general hardware components of a switch, and all network devices are connected through SDN data paths formed by different rules; the control plane comprises a logically centered SDN controller, grasps global network information and takes charge of controlling various forwarding rules; the application plane contains various network applications based on SDN, and does not need to care about the details of the bottom layer to program and deploy new applications;

the control plane and the data plane are communicated through an SDN control data plane interface, the control plane and the application plane are communicated through an SDN northbound interface, the NBI is not a unified standard, and a user is allowed to customize and develop various network management applications according to own requirements;

the identification of the terminal equipment in the S4 is established, calculation is realized through a hash algorithm, and the identification of other terminal equipment obtained through calculation is carried in request information, so that a website server can identify the identification of the terminal equipment, and the return of a target page is realized;

the hash algorithm calculates the identification of the terminal equipment through the mapped algorithm, and the calculation formula of the hash algorithm is as follows:

x＝H(k)，

k represents an original value or a hash key value, H represents a mapping function, and x represents a result value obtained after the hash key is mapped;

first order linear mapping:

H(k)＝(a×k+b)mod m(a,m∈Z)，

multiplication mapping:

H(k)＝(A·k mod 2 ^w )rsh(w-r)，

wherein m=2 ^r W represents the bit number of one word length of the computer, A is an odd number, and 2 ^(w-r) <A<2 ^w (A cannot be too close to 2 ^w-r And 2 w), rsh means a right shift operation;

the flow monitoring in S5 is monitoring of the data flow, and generally includes data output, data input speed and total flow; the API interface monitoring method is adopted for flow monitoring, and the flow monitoring comprises internet surfing flow statistics, which is to manage internet surfing flow and carry out statistical display on month, day and real-time flow;

the method comprises the following functions:

and (5) emptying the statistical data: resetting the data flow of the current month and the data flow of the current day;

resetting the statistics: re-reading the flow data from the communication record;

flow statistics setting: the method comprises the steps of managing internet traffic, supporting the function settings of monthly traffic online amount, monthly traffic statistics starting time, traffic indicator display, traffic-free access point, preferential period and the like;

active link management: displaying access points currently being networked, and terminating a certain access point by a user and terminating all the access points;

program in networking: displaying a program which is currently in networking, and closing the selected program or switching to the program by a user;

program networking log: checking a weblog within 3 days;

the calculation formula of the port flow speed of the exchanger of the flow monitoring algorithm is as follows:

where i represents a switch, j represents a switch port, port_speed _ij Representing the j-th port flow rate of switch id i, now_portbyte represents the current time switch port traffic value, and pre_portbyte represents the last time switch portSubtracting the flow value, now_portbyte and pre_portbyte to obtain the total flow of the time period, wherein period represents the time interval,

the residual bandwidth of the switch port is the bottleneck of a link, the residual bandwidth of the switch port is the port capacity minus the occupied bandwidth, the calculation method is shown in a formula, wherein i represents the switch, j represents the switch port, and free_bw _ij Representing the residual bandwidth of the j-th port with switch id i, capability _ij Representing the switch port capacity;

free_bw _ij ＝capacity _ij -port_speed _ij 。

2. the virtual test platform test flow monitoring method based on the SDN and openfalcon architecture of claim 1, wherein the method is characterized by comprising the following steps: the OpenFlow network in S2 includes an OpenFlow controller, an OpenFlow secure channel, and an OpenFlow switch, where the OpenFlow network communication protocol is in the control plane.

3. The virtual test platform test flow monitoring method based on the SDN and openfalcon architecture of claim 2, wherein the method is characterized by comprising the following steps: the controller in S2 is an OpenFlow controller, where the OpenFlow controller is a brain of the SDN architecture, and directs forwarding of devices through an OpenFlow protocol, and the OpenFlow controller is divided into two main classes: open source controllers such as NOX/POX, openDaylight and commercial controllers developed by manufacturers with iMaster NCE;

the OpenFlow security channel is a channel for connecting the OpenFlow switch and the controller, is responsible for establishing a security link between the OpenFlow switch and the controller, and the controller controls and manages the switch through the channel and receives feedback from the switch;

the information interaction through the OpenFlow secure channel must be performed according to the format specified by the OpenFlow protocol, and TLS encryption is generally adopted, and sometimes, the information interaction is also implemented through TCP plaintext, and the types of OpenFlow messages transmitted in the channel include the following three types:

Controller-to-Switch message: the message sent by the OpenFlow controller and received and processed by the OpenFlow switch is mainly used for managing or acquiring the state of the OpenFlow switch;

asynchroous message: the OpenFlow switch is sent to the controller to update network events or switch state changes to the controller;

symmetry message: the system can be sent by an OpenFlow switch or a controller, is not required to be established by a request, and is mainly used for establishing connection, detecting whether the other party is online or not and the like;

the OpenFlow switch is a core component of the whole OpenFlow network and is mainly responsible for forwarding a data layer, and is a physical switch/router or a virtualized switch/router, and according to the support degree of the OpenFlow, the OpenFlow switch can be divided into two types:

OpenFlow private switch: a standard OpenFlow device only supports OpenFlow forwarding, does not support normal processing flow on an existing commercial switch, and forwards all data passing through the switch according to an OpenFlow mode;

OpenFlow compatible switches: the OpenFlow forwarding is supported, and normal two-layer forwarding and three-layer forwarding are supported, wherein a flow table, a secure channel and an OpenFlow protocol are added on the basis of a commercial switch to obtain the OpenFlow characteristic.

4. The virtual test platform test flow monitoring method based on the SDN and openfalcon architecture of claim 3, wherein the method is characterized by comprising the following steps of: the flow table used in the OpenFlow switch is a flexible rule formed by a plurality of keywords and execution actions, which is used in traditional network equipment, and the data forwarding of the switch/router needs to depend on a two-layer MAC address forwarding table, a three-layer IP address routing table and a port number of a transmission layer stored in the equipment, but the table entry does not refer to a common IP five-tuple, but integrates network configuration information of each layer in the network;

each flow table item of the OpenFlow flow table consists of a matching domain and a processing instruction part, wherein the most important part of the flow table items is the matching domain and the instruction, when the OpenFlow switch receives a data packet, the packet head is analyzed and then matched with the matching domain of the flow table items in the flow table, and the instruction is executed if the matching is successful.