CN118555208A - Multi-stage network equipment topology generation method, device, equipment and medium - Google Patents
Multi-stage network equipment topology generation method, device, equipment and medium Download PDFInfo
- Publication number
- CN118555208A CN118555208A CN202411020424.4A CN202411020424A CN118555208A CN 118555208 A CN118555208 A CN 118555208A CN 202411020424 A CN202411020424 A CN 202411020424A CN 118555208 A CN118555208 A CN 118555208A
- Authority
- CN
- China
- Prior art keywords
- probe
- subnet
- address
- data packet
- network device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 39
- 239000000523 sample Substances 0.000 claims abstract description 242
- 238000002347 injection Methods 0.000 claims description 39
- 239000007924 injection Substances 0.000 claims description 39
- 230000006870 function Effects 0.000 claims description 13
- 238000004458 analytical method Methods 0.000 claims description 5
- 230000004044 response Effects 0.000 claims description 3
- 238000010586 diagram Methods 0.000 abstract description 16
- 238000004891 communication Methods 0.000 abstract description 6
- 238000004590 computer program Methods 0.000 description 11
- 238000005516 engineering process Methods 0.000 description 10
- 238000007726 management method Methods 0.000 description 8
- 238000012545 processing Methods 0.000 description 7
- 238000013473 artificial intelligence Methods 0.000 description 5
- 239000000243 solution Substances 0.000 description 5
- 230000007547 defect Effects 0.000 description 3
- 239000004973 liquid crystal related substance Substances 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 230000002093 peripheral effect Effects 0.000 description 2
- 238000013459 approach Methods 0.000 description 1
- 238000003491 array Methods 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 238000004422 calculation algorithm Methods 0.000 description 1
- 238000004364 calculation method Methods 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 238000013135 deep learning Methods 0.000 description 1
- 230000003111 delayed effect Effects 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 235000019800 disodium phosphate Nutrition 0.000 description 1
- 238000000802 evaporation-induced self-assembly Methods 0.000 description 1
- 230000010365 information processing Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000002452 interceptive effect Effects 0.000 description 1
- 238000010801 machine learning Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000005055 memory storage Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 238000003058 natural language processing Methods 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000013519 translation Methods 0.000 description 1
- 230000000007 visual effect Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/12—Discovery or management of network topologies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/10—Active monitoring, e.g. heartbeat, ping or trace-route
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- Cardiology (AREA)
- General Health & Medical Sciences (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention relates to the technical field of communication, and provides a method, a device, equipment and a medium for generating a multi-stage network equipment topology, which can scan network equipment associated with each subnet at fixed time through deployed probes, acquire TTL attenuation of each injected data packet, a source IP address and a gateway IP address corresponding to the probes by analyzing ICMP injected data packets, and further analyze the connection relation among routes of each subnet according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probes so as to flexibly generate multi-stage network equipment topology diagrams of a plurality of independent inter-subnet network equipment according to the connection relation.
Description
Technical Field
The present invention relates to the field of communications technologies, and in particular, to a method, an apparatus, a device, and a medium for generating a topology of a multi-level network device.
Background
As the scale of networks increases and the number of devices increases, it becomes increasingly difficult to manually manage and monitor all network devices, so that the efficiency of network management and the ability of network monitoring can be significantly improved through the establishment of network topologies.
In the prior art, network device topology is mainly generated by the following ways:
1. network device topology discovery using SNMP (Simple Network Management Protocol );
the mode mainly has the following defects:
1) Poor universality: network equipment topology discovery using SNMP requires support by gateway equipment;
2) Version compatibility: compatibility and configuration differences between different versions of SNMP add to management complexity.
2. Conventional network device topology discovery using ARP (Address Resolution Protocol );
but this approach does not allow for logical association of network device topology relationships among multiple independent subnets.
3. Network device topology discovery using gateway device specific discovery protocols of certain vendors;
the mode mainly has the following defects:
1) Vendor locking: support for certain vendor-specific gateway devices is required;
2) The flexibility is poor: manual configuration of gateway devices for a particular vendor is required.
Aiming at the defects existing in the prior art, how to flexibly and efficiently generate network equipment topology among a plurality of independent subnets becomes a problem to be solved.
Disclosure of Invention
In view of the foregoing, it is desirable to provide a method, apparatus, device and medium for generating a topology of a multi-level network device, which aims to solve the problem that the topology between network devices of independent levels cannot be associated.
A multi-stage network device topology generation method, the multi-stage network device topology generation method comprising:
Acquiring at least one subnet, and deploying a probe in each subnet;
every preset time interval, each probe is utilized to scan the network equipment associated with the corresponding subnet;
generating ICMP data packets of each probe, and injecting local gateway information of the probe to each ICMP data packet to obtain each injected data packet;
Distributing each injection data packet to other probes except the probe to which each injection data packet belongs;
Analyzing each captured injection data packet by using each probe to obtain TTL attenuation of each injection data packet, a source IP address and a gateway IP address corresponding to the probe;
Analyzing the connection relation among routes of each subnet according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe;
and generating a multi-stage network equipment topological graph of the network equipment according to the connection relation.
According to a preferred embodiment of the present invention, the acquiring at least one subnet and deploying a probe in each subnet includes:
acquiring a plurality of subnets under each route to obtain at least one subnet;
Storing a program main body and a library file of an executable program of a corresponding probe under a designated file path corresponding to a probe server of each subnet;
Program run commands for each executable program are executed separately to deploy the corresponding probe.
According to a preferred embodiment of the present invention, the scanning the network device associated with the corresponding subnet with each probe includes:
inquiring the IP address and the MAC address of a host machine by each probe to obtain a probe server of a subnet corresponding to each probe;
Acquiring an IP address and a mask of a probe server of each probe corresponding to the subnet, and calculating an IP range of equipment under each probe corresponding to the subnet by utilizing the IP address and the mask of the probe server of each probe corresponding to the subnet; broadcasting an ARP request to all devices under the corresponding subnet based on the IP range by using each probe; when an ARP response fed back by any equipment aiming at the ARP request is received, determining the any equipment as access equipment under the subnet corresponding to each probe;
inquiring the routing information of the host machine by using each probe to obtain each gateway address, and determining the corresponding routing of each probe according to each gateway address;
and determining the probe server of each probe corresponding sub-network, the access equipment under each probe corresponding sub-network and the route corresponding to each probe as the network equipment associated with each probe corresponding sub-network.
According to a preferred embodiment of the present invention, the injecting the local gateway information of the probe to each ICMP packet to obtain each injected packet includes:
Determining a gateway corresponding to a probe to which each ICMP data packet belongs as a local gateway corresponding to each ICMP data packet;
Acquiring an IP address and an MAC address of each local gateway as information of each local gateway;
and injecting each local gateway information into the corresponding ICMP data packet by utilizing libnet interface function library to obtain each injected data packet.
According to a preferred embodiment of the present invention, the analyzing the connection relationship between routes of each subnet according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe includes:
For each injection data packet, when the value of the TTL attenuation is 1 and the source IP address is the same as the gateway IP address, determining that a subnet to which a sending probe and a receiving probe of the injection data packet belong is deployed under the same route;
When the TTL attenuation is 1 and the source IP address is different from the gateway IP address, determining that the subnet to which the transmitting probe and the receiving probe of the injected data packet belong is deployed under a route with a direct physical connection relationship;
When the value of the TTL attenuation is larger than 1, determining that the sub-network to which the transmitting probe and the receiving probe of the injected data packet belong is deployed under a route with an indirect physical connection relation; and calculating the difference value of the attenuation quantity and 1 as the number of the intermediate routes accessed between the routes with the indirect physical connection relation.
According to a preferred embodiment of the present invention, the generating the multi-level network device topology map of the network device according to the connection relation includes:
Taking the routes corresponding to each subnet and each probe as initial nodes, and generating connecting lines among the initial nodes according to the connection relation among the routes of each subnet to obtain an initial topological graph;
and adding nodes to the initial topological graph by using the probe server of the subnet corresponding to each probe and the access equipment under the subnet corresponding to each probe, and connecting each probe server, each access equipment and the corresponding subnet to obtain the multistage network equipment topological graph.
According to a preferred embodiment of the present invention, after the generating the multi-level network device topology map of the network device according to the connection relationship, the method further includes:
When the probe scans new network equipment, the scanned new network equipment is updated to the multi-stage network equipment topological graph.
A multi-stage network device topology generation apparatus, the multi-stage network device topology generation apparatus comprising:
The deployment unit is used for acquiring at least one subnet and deploying probes on each subnet;
the scanning unit is used for scanning the network equipment associated with the corresponding subnet by utilizing each probe at preset time intervals;
The generating unit is used for generating ICMP data packets of each probe and injecting local gateway information of the probe to each ICMP data packet to obtain each injected data packet;
A distribution unit for distributing each injection data packet to other probes except the probe to which each injection data packet belongs;
The analyzing unit is used for analyzing each captured injection data packet by utilizing each probe to obtain TTL attenuation of each injection data packet, a source IP address and a gateway IP address corresponding to the corresponding probe;
The analysis unit is used for analyzing the connection relation between routes of each subnet according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe to which the source IP address belongs;
The generating unit is further configured to generate a multi-level network device topology map of the network device according to the connection relationship.
A computer device, the computer device comprising:
a memory storing at least one instruction;
and the processor executes the instructions stored in the memory to realize the multi-stage network equipment topology generation method.
A computer-readable storage medium having stored therein at least one instruction for execution by a processor in a computer device to implement the multi-stage network device topology generation method.
According to the technical scheme, the network equipment associated with each subnet can be scanned at regular time through the deployed probes, the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe are obtained in a mode of analyzing the ICMP injected data packet, the connection relation among routes of each subnet is further analyzed according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe, and therefore a multi-stage network equipment topological diagram of a plurality of independent inter-subnet network equipment is flexibly generated according to the connection relation.
Drawings
FIG. 1 is a flow chart of a preferred embodiment of a method of generating a topology of a multi-stage network device of the present invention;
FIG. 2 is a first schematic diagram of a topology of a multi-stage network device of the present invention;
FIG. 3 is a second schematic diagram of a topology of a multi-stage network device of the present invention;
FIG. 4 is a third schematic diagram of a topology of a multi-stage network device of the present invention;
FIG. 5 is a functional block diagram of a preferred embodiment of the multi-stage network device topology generation apparatus of the present invention;
fig. 6 is a schematic structural diagram of a computer device implementing a preferred embodiment of a topology generation method of a multi-stage network device according to the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention will be described in detail with reference to the accompanying drawings and specific embodiments.
Fig. 1 is a flow chart of a preferred embodiment of the topology generation method of the multi-stage network device of the present invention. The order of the steps in the flowchart may be changed and some steps may be omitted according to various needs.
The multi-stage network device topology generating method is applied to one or more computer devices, wherein the computer devices are devices capable of automatically performing numerical calculation and/or information processing according to preset or stored instructions, and the hardware comprises, but is not limited to, microprocessors, application SPECIFIC INTEGRATED Circuits (ASICs), programmable gate arrays (Field-Programmable GATE ARRAY, FPGA), digital processors (DIGITAL SIGNAL processors, DSPs), embedded devices and the like.
The computer device may be any electronic product that can interact with a user in a human-computer manner, such as a Personal computer, a tablet computer, a smart phone, a Personal digital assistant (Personal DIGITAL ASSISTANT, PDA), a game console, an interactive internet protocol television (Internet Protocol Television, IPTV), a smart wearable device, etc.
The computer device may also include a network device and/or a user device. Wherein the network device includes, but is not limited to, a single network server, a server group composed of a plurality of network servers, or a Cloud based Cloud Computing (Cloud Computing) composed of a large number of hosts or network servers.
The server may be an independent server, or may be a cloud server that provides cloud services, cloud databases, cloud computing, cloud functions, cloud storage, network services, cloud communications, middleware services, domain name services, security services, content delivery networks (Content Delivery Network, CDN), and basic cloud computing services such as big data and artificial intelligence platforms.
Wherein artificial intelligence (ARTIFICIAL INTELLIGENCE, AI) is the theory, method, technique, and application system that uses a digital computer or a digital computer-controlled machine to simulate, extend, and expand human intelligence, sense the environment, acquire knowledge, and use knowledge to obtain optimal results.
Artificial intelligence infrastructure technologies generally include technologies such as sensors, dedicated artificial intelligence chips, cloud computing, distributed storage, big data processing technologies, operation/interaction systems, mechatronics, and the like. The artificial intelligence software technology mainly comprises a computer vision technology, a robot technology, a biological recognition technology, a voice processing technology, a natural language processing technology, machine learning/deep learning and other directions.
The network in which the computer device is located includes, but is not limited to, the internet, a wide area network, a metropolitan area network, a local area network, a virtual private network (Virtual Private Network, VPN), and the like.
S10, at least one subnet is obtained, and probes are deployed on each subnet.
Wherein the subnetworks are networks connected under each route.
In this embodiment, the acquiring at least one subnet and deploying the probe in each subnet includes:
acquiring a plurality of subnets under each route to obtain at least one subnet;
Storing a program main body and a library file of an executable program of a corresponding probe under a designated file path corresponding to a probe server of each subnet;
Program run commands for each executable program are executed separately to deploy the corresponding probe.
The probe may be an executable program written in a high-level programming language, and may be executed on a server of an operating system such as Linux, windows.
Through the embodiment, the probes can be deployed under each subnet to capture more comprehensive data packets.
S11, every preset time interval, each probe is utilized to scan the network equipment associated with the corresponding subnet.
The preset time interval can be configured according to actual requirements, for example, 1 hour.
In this embodiment, the scanning, with each probe, the network device associated with the corresponding subnet includes:
Each probe is used for inquiring an IP Address (Internet Protocol Address, an Internet protocol Address) and a MAC Address (MEDIA ACCESS Control Address) of a host machine of the probe, and a probe server of a corresponding subnet of each probe is obtained;
Acquiring an IP address and a mask of a probe server of each probe corresponding to the subnet, and calculating an IP range of equipment under each probe corresponding to the subnet by utilizing the IP address and the mask of the probe server of each probe corresponding to the subnet; broadcasting an ARP (Address Resolution Protocol ) request to all devices under the corresponding subnet based on the IP range with each probe; when an ARP response fed back by any equipment aiming at the ARP request is received, determining the any equipment as access equipment under the subnet corresponding to each probe;
inquiring the routing information of the host machine by using each probe to obtain each gateway address, and determining the corresponding routing of each probe according to each gateway address;
and determining the probe server of each probe corresponding sub-network, the access equipment under each probe corresponding sub-network and the route corresponding to each probe as the network equipment associated with each probe corresponding sub-network.
For example: the self IP address and the MAC address can be stored in the local of each host machine for inquiry, so that a probe server of a subnet corresponding to each probe is obtained; the probe calculates the IP range of the equipment under the subnet where the probe is positioned, such as 192.168.1.1-192.168.1.255 through the IP address and the mask of the host (i.e. the probe server), and then uses the ARP protocol to scan the equipment to obtain the access equipment under the subnet corresponding to each probe; the probes obtain default gateway addresses by inquiring routing information of the host (which can be cached in the local of the host), and further determine routes corresponding to each probe according to the gateway addresses; and integrating all scanned devices to obtain network devices associated with the corresponding sub-network of each probe.
In the above-described embodiments, the network device can be automatically scanned by the probe.
S12, generating ICMP (Internet Control Message Protocol ) data packets of each probe, and injecting local gateway information of the probe to each ICMP data packet to obtain each injected data packet.
In this embodiment, the ICMP data packet more easily passes through the firewall of the gateway, so that the ICMP data packet is more easily captured by the probe, so that the acquired data packet is more comprehensive, and more comprehensive network information can be further ensured to be acquired.
Of course, in other embodiments, other forms of data packets may be used, so long as the data packets are guaranteed to be collected by the probe, and the invention is not limited to the type of data packet.
In this embodiment, the injecting the local gateway information of the probe to each ICMP packet to obtain each injected packet includes:
Determining a gateway corresponding to a probe to which each ICMP data packet belongs as a local gateway corresponding to each ICMP data packet;
Acquiring an IP address and an MAC address of each local gateway as information of each local gateway;
and injecting each local gateway information into the corresponding ICMP data packet by utilizing libnet interface function library to obtain each injected data packet.
The data packet injected by using the libnet interface function library does not affect the actual service, and the bandwidth occupation is small, but can be analyzed by the opposite-end probe.
By the embodiment, the injection data packet carrying the local gateway information can be generated, so that when the corresponding injection data packet is captured by the subsequent probe, the local gateway information of each injection data packet can be obtained through analysis.
And S13, distributing each injection data packet to other probes except the probe to which each injection data packet belongs.
In the above embodiment, by distributing each injection data packet to the probes in other sub-networks, each injection data packet can simultaneously carry gateway information of the receiving and transmitting ends for later use in analyzing the relationship between routes.
S14, analyzing each captured injection data packet by using each probe to obtain TTL (Time To Live) attenuation quantity, source IP address and gateway IP address corresponding to the corresponding probe of each injection data packet.
Specifically, each probe is utilized to analyze the captured gateway IP address and MAC address of the sending probe carried by each injected data packet, and TTL attenuation amount, source IP address and gateway IP address corresponding to the affiliated probe of each injected data packet are extracted from the captured gateway IP address and MAC address.
The TTL attenuation amount refers to the maximum number of network segments allowed to pass before the specified IP packet is discarded by the route.
The WAN (Wide Area Network ) port information of the last hop route of the data packet after NAT (Network Address Translation ) can be obtained by resolving the source IP address.
The gateway IP address refers to the gateway IP address of the subnet where the probe is located, and belongs to the IP address of the LAN (Local Area Network ) port to which the probe is connected.
S15, analyzing the connection relation among routes of each subnet according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe.
In this embodiment, analyzing the connection relationship between routes of each subnet according to the TTL attenuation of each injected data packet, the source IP address, and the gateway IP address corresponding to the probe includes:
For each injection data packet, when the value of the TTL attenuation is 1 and the source IP address is the same as the gateway IP address, determining that a subnet to which a sending probe and a receiving probe of the injection data packet belong is deployed under the same route;
When the TTL attenuation is 1 and the source IP address is different from the gateway IP address, determining that the subnet to which the transmitting probe and the receiving probe of the injected data packet belong is deployed under a route with a direct physical connection relationship;
When the value of the TTL attenuation is larger than 1, determining that the sub-network to which the transmitting probe and the receiving probe of the injected data packet belong is deployed under a route with an indirect physical connection relation; and calculating the difference value of the attenuation quantity and 1 as the number of the intermediate routes accessed between the routes with the indirect physical connection relation.
Such as: and if the TTL attenuation values of the injected data packets corresponding to the probe server A and the probe server F are 1 and the source IP address is the same as the gateway IP address, the probe server A and the probe server F are respectively deployed on the subnet A and the subnet B belonging to the same route A.
And, for example: the TTL attenuation values of the injected data packets corresponding to the probe server A and the probe server D are 1, the source IP address is different from the gateway IP address, the gateway IP address of the probe corresponding to the injected data packet is the LAN port IP address of the physical connection route of the probe, namely the LAN port IP of the route A, and the source IP address is the WAN port IP address of the last hop route of the corresponding injected data packet, namely the WAN port IP address of the route A through NAT; the subnet B to which the probe server A belongs is deployed under the route B, the subnet A to which the probe server D belongs is deployed under the route A, the route A is directly mounted under the route B, and the route A and the route B have a direct physical connection relationship, namely the subnets to which the probe server A and the probe server D belong are deployed under the route with the direct physical connection relationship.
And, for example: the TTL attenuation value of the injected data packet corresponding to the probe server A and the probe server F is 2, and the gateway IP address of the probe corresponding to the injected data packet is the LAN port IP address of the probe physical connection route, namely the LAN port IP of the route A; the source IP address passes through NAT to be the WAN port IP address of the intermediate route corresponding to the last hop of the injected data packet, namely the WAN port IP address of the route C; therefore, when the route C is connected to the route B, the route A is mounted under the route C under the route B, and then the route A and the route B have indirect physical connection relation, and the route C is an intermediate route. At this time, the subnets to which the probe server a and the probe server F belong are disposed under the route having the indirect physical connection relationship.
Through the embodiment, the connection relation among routes can be obtained by analyzing the TTL attenuation amount, the source IP address and the gateway IP address corresponding to the affiliated probe.
S16, generating a multi-stage network device topological graph of the network device according to the connection relation.
In this embodiment, the generating the multi-level network device topology map of the network device according to the connection relationship includes:
Taking the routes corresponding to each subnet and each probe as initial nodes, and generating connecting lines among the initial nodes according to the connection relation among the routes of each subnet to obtain an initial topological graph;
and adding nodes to the initial topological graph by using the probe server of the subnet corresponding to each probe and the access equipment under the subnet corresponding to each probe, and connecting each probe server, each access equipment and the corresponding subnet to obtain the multistage network equipment topological graph.
The access device may include various devices such as printers, cameras, and the like that access the subnetwork.
For example: as shown in fig. 2, a first schematic diagram of a topology of a multi-stage network device of the present invention is shown. The probe server A and the probe server F are respectively deployed on the subnet A and the subnet B belonging to the same route A, and then according to the connection relation among the devices obtained in the previous step, the probe server of each subnet, the route corresponding to each probe, the probe server of each subnet corresponding to each probe and the access device under the subnet corresponding to each probe are used as nodes, and the nodes are connected based on the association relation, so that the corresponding multi-stage network device topological graph can be generated. Similarly, as shown in fig. 3, a second schematic diagram of the topology of the multi-stage network device of the present invention is shown. The sub-network B to which the probe server A belongs is deployed under the route B, the sub-network A to which the probe server D belongs is deployed under the route A, the route A is directly mounted under the route B, the route A and the route B have a direct physical connection relationship, namely, the sub-networks to which the probe server A and the probe server D belong are deployed under the route with the direct physical connection relationship, and then a corresponding multi-level network equipment topological graph can be generated according to the connection relationship among the equipment obtained by the above. As shown in fig. 4, a third schematic diagram of the multi-stage network device topology of the present invention is shown. And when the route C is connected to the route B, the route A is mounted under the route C under the route B, so that the route A and the route B have an indirect physical connection relationship, and the route C is an intermediate route. At this time, the subnets to which the probe server A and the probe server F belong are deployed under a route with an indirect physical connection relationship, and then a corresponding multistage network device topology graph can be generated according to the connection relationship between devices obtained in the foregoing.
Through the embodiment, the multi-stage network equipment topological graph can be flexibly generated, and the universality is stronger.
In this embodiment, after the generating the multi-level network device topology map of the network device according to the connection relationship, the method further includes:
When the probe scans new network equipment, the scanned new network equipment is updated to the multi-stage network equipment topological graph.
It will be appreciated that ARP reply packets may be dropped or delayed for forwarding due to, for example, greater traffic in the network, and thus may leak out of the device.
Based on the above problems, the embodiment can continuously capture new data packets through the timing scanning of the probe, and further continuously perfect the topology diagram of the multi-stage network equipment.
According to the technical scheme, the network equipment associated with each subnet can be scanned at regular time through the deployed probes, the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe are obtained in a mode of analyzing the ICMP injected data packet, the connection relation among routes of each subnet is further analyzed according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe, and therefore a multi-stage network equipment topological diagram of a plurality of independent inter-subnet network equipment is flexibly generated according to the connection relation.
Fig. 5 is a functional block diagram of a preferred embodiment of the topology generating apparatus of the multi-stage network device of the present invention. The multi-stage network device topology generating apparatus 11 includes a deployment unit 110, a scanning unit 111, a generating unit 112, a distributing unit 113, an analyzing unit 114, and an analyzing unit 115. The module/unit referred to in the present invention refers to a series of computer program segments, which are stored in a memory, capable of being executed by a processor and of performing a fixed function. In the present embodiment, the functions of the respective modules/units will be described in detail in the following embodiments.
The deployment unit 110 is configured to obtain at least one subnet, and deploy a probe in each subnet;
The scanning unit 111 is configured to scan, with each probe, network devices associated with a corresponding subnet at preset time intervals;
The generating unit 112 is configured to generate an ICMP data packet of each probe, and inject local gateway information of the probe to each ICMP data packet to obtain each injected data packet;
the distributing unit 113 is configured to distribute each injection data packet to other probes except for the probe to which each injection data packet belongs;
The parsing unit 114 is configured to parse each captured injection data packet by using each probe to obtain a TTL attenuation amount, a source IP address, and a gateway IP address corresponding to the probe to which each injection data packet belongs;
the analyzing unit 115 is configured to analyze a connection relationship between routes where each subnet is located according to a TTL attenuation amount of each injected data packet, a source IP address, and a gateway IP address corresponding to the probe to which the source IP address belongs;
The generating unit 112 is further configured to generate a multi-level network device topology map of the network device according to the connection relationship.
According to the technical scheme, the network equipment associated with each subnet can be scanned at regular time through the deployed probes, the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe are obtained in a mode of analyzing the ICMP injected data packet, the connection relation among routes of each subnet is further analyzed according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe, and therefore a multi-stage network equipment topological diagram of a plurality of independent inter-subnet network equipment is flexibly generated according to the connection relation.
Fig. 6 is a schematic structural diagram of a computer device according to a preferred embodiment of the present invention for implementing a topology generation method of a multi-stage network device.
The computer device 1 may comprise a memory 12, a processor 13 and a bus, and may further comprise a computer program, such as a multi-stage network device topology generation program, stored in the memory 12 and executable on the processor 13.
It will be appreciated by those skilled in the art that the schematic diagram is merely an example of the computer device 1 and does not constitute a limitation of the computer device 1, the computer device 1 may be a bus type structure, a star type structure, the computer device 1 may further comprise more or less other hardware or software than illustrated, or a different arrangement of components, for example, the computer device 1 may further comprise an input-output device, a network access device, etc.
It should be noted that the computer device 1 is only used as an example, and other electronic products that may be present in the present invention or may be present in the future are also included in the scope of the present invention by way of reference.
The memory 12 includes at least one type of readable storage medium including flash memory, a removable hard disk, a multimedia card, a card memory (e.g., SD or DX memory, etc.), a magnetic memory, a magnetic disk, an optical disk, etc. The memory 12 may in some embodiments be an internal storage unit of the computer device 1, such as a removable hard disk of the computer device 1. The memory 12 may also be an external storage device of the computer device 1 in other embodiments, such as a plug-in mobile hard disk, a smart memory card (SMART MEDIA CARD, SMC), a Secure Digital (SD) card, a flash memory card (FLASH CARD) or the like, which are provided on the computer device 1. Further, the memory 12 may also include both an internal storage unit and an external storage device of the computer device 1. The memory 12 may be used not only for storing application software installed in the computer device 1 and various types of data, such as codes of a multi-stage network device topology generation program, but also for temporarily storing data that has been output or is to be output.
The processor 13 may be comprised of integrated circuits in some embodiments, for example, a single packaged integrated circuit, or may be comprised of multiple integrated circuits packaged with the same or different functions, including one or more central processing units (Central Processing unit, CPU), microprocessors, digital processing chips, graphics processors, various control chips, and the like. The processor 13 is a Control Unit (Control Unit) of the computer device 1, connects the respective components of the entire computer device 1 using various interfaces and lines, executes various functions of the computer device 1 and processes data by running or executing programs or modules stored in the memory 12 (for example, executing a multi-stage network device topology generation program or the like), and calls data stored in the memory 12.
The processor 13 executes the operating system of the computer device 1 and various types of applications installed. The processor 13 executes the application program to implement the steps in the various multi-stage network device topology generation method embodiments described above, such as the steps shown in fig. 1.
Illustratively, the computer program may be partitioned into one or more modules/units that are stored in the memory 12 and executed by the processor 13 to complete the present invention. The one or more modules/units may be a series of computer readable instruction segments capable of performing the specified functions, which instruction segments describe the execution of the computer program in the computer device 1. For example, the computer program may be divided into a deployment unit 110, a scanning unit 111, a generation unit 112, a distribution unit 113, an analysis unit 114, an analysis unit 115.
The integrated units implemented in the form of software functional modules described above may be stored in a computer readable storage medium. The software functional modules are stored in a storage medium and include instructions for causing a computer device (which may be a personal computer, a computer device, or a network device, etc.) or a processor (processor) to perform portions of the multi-stage network device topology generation method according to the embodiments of the present invention.
The modules/units integrated in the computer device 1 may be stored in a computer readable storage medium if implemented in the form of software functional units and sold or used as separate products. Based on this understanding, the present invention may also be implemented by a computer program for instructing a relevant hardware device to implement all or part of the procedures of the above-mentioned embodiment method, where the computer program may be stored in a computer readable storage medium and the computer program may be executed by a processor to implement the steps of each of the above-mentioned method embodiments.
Wherein the computer program comprises computer program code which may be in source code form, object code form, executable file or some intermediate form etc. The computer readable medium may include: any entity or device capable of carrying the computer program code, a recording medium, a U disk, a removable hard disk, a magnetic disk, an optical disk, a computer Memory, a Read-Only Memory (ROM), a random access Memory, or the like.
Further, the computer-readable storage medium may mainly include a storage program area and a storage data area, wherein the storage program area may store an operating system, an application program required for at least one function, and the like; the storage data area may store data created from the use of blockchain nodes, and the like.
The blockchain is a novel application mode of computer technologies such as distributed data storage, point-to-point transmission, consensus mechanism, encryption algorithm and the like. The blockchain (Blockchain), essentially a de-centralized database, is a string of data blocks that are generated in association using cryptographic methods, each of which contains information from a batch of network transactions for verifying the validity (anti-counterfeit) of its information and generating the next block. The blockchain may include a blockchain underlying platform, a platform product services layer, an application services layer, and the like.
The bus may be a peripheral component interconnect standard (PERIPHERAL COMPONENT INTERCONNECT, PCI) bus, or an extended industry standard architecture (extended industry standard architecture, EISA) bus, among others. The bus may be classified as an address bus, a data bus, a control bus, etc. For ease of illustration, only one straight line is shown in fig. 6, but not only one bus or one type of bus. The bus is arranged to enable a connection communication between the memory 12 and at least one processor 13 or the like.
Although not shown, the computer device 1 may further comprise a power source (such as a battery) for powering the various components, preferably the power source may be logically connected to the at least one processor 13 via a power management means, whereby the functions of charge management, discharge management, and power consumption management are achieved by the power management means. The power supply may also include one or more of any of a direct current or alternating current power supply, recharging device, power failure detection circuit, power converter or inverter, power status indicator, etc. The computer device 1 may further include various sensors, bluetooth modules, wi-Fi modules, etc., which will not be described in detail herein.
Further, the computer device 1 may also comprise a network interface, optionally comprising a wired interface and/or a wireless interface (e.g. WI-FI interface, bluetooth interface, etc.), typically used for establishing a communication connection between the computer device 1 and other computer devices.
The computer device 1 may optionally further comprise a user interface, which may be a Display, an input unit, such as a Keyboard (Keyboard), or a standard wired interface, a wireless interface. Alternatively, in some embodiments, the display may be an LED display, a liquid crystal display, a touch-sensitive liquid crystal display, an OLED (Organic Light-Emitting Diode) touch, or the like. The display may also be referred to as a display screen or display unit, as appropriate, for displaying information processed in the computer device 1 and for displaying a visual user interface.
It should be understood that the embodiments described are for illustrative purposes only and are not limited to this configuration in the scope of the patent application.
Fig. 6 shows only a computer device 1 with components 12-13, it will be understood by those skilled in the art that the structure shown in fig. 6 is not limiting of the computer device 1 and may include fewer or more components than shown, or may combine certain components, or a different arrangement of components.
In connection with fig. 1, the memory 12 in the computer device 1 stores a plurality of instructions to implement a multi-stage network device topology generation method, the processor 13 being executable to implement:
Acquiring at least one subnet, and deploying a probe in each subnet;
every preset time interval, each probe is utilized to scan the network equipment associated with the corresponding subnet;
generating ICMP data packets of each probe, and injecting local gateway information of the probe to each ICMP data packet to obtain each injected data packet;
Distributing each injection data packet to other probes except the probe to which each injection data packet belongs;
Analyzing each captured injection data packet by using each probe to obtain TTL attenuation of each injection data packet, a source IP address and a gateway IP address corresponding to the probe;
Analyzing the connection relation among routes of each subnet according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe;
and generating a multi-stage network equipment topological graph of the network equipment according to the connection relation.
Specifically, the specific implementation method of the above instructions by the processor 13 may refer to the description of the relevant steps in the corresponding embodiment of fig. 1, which is not repeated herein.
The data in this case were obtained legally.
In the several embodiments provided in the present invention, it should be understood that the disclosed systems, devices, and methods may be implemented in other manners. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the modules is merely a logical function division, and there may be other manners of division when actually implemented.
The invention is operational with numerous general purpose or special purpose computer system environments or configurations. For example: personal computers, server computers, hand-held or portable devices, tablet devices, multiprocessor systems, microprocessor-based systems, set top boxes, programmable consumer electronics, network PCs, minicomputers, mainframe computers, distributed computing environments that include any of the above systems or devices, and the like. The invention may be described in the general context of computer-executable instructions, such as program modules, being executed by a computer. Generally, program modules include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. The invention may also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed computing environment, program modules may be located in both local and remote computer storage media including memory storage devices.
The modules described as separate components may or may not be physically separate, and components shown as modules may or may not be physical units, may be located in one place, or may be distributed over multiple network units. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of this embodiment.
In addition, each functional module in the embodiments of the present invention may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit. The integrated units can be realized in a form of hardware or a form of hardware and a form of software functional modules.
It will be evident to those skilled in the art that the invention is not limited to the details of the foregoing illustrative embodiments, and that the present invention may be embodied in other specific forms without departing from the spirit or essential characteristics thereof.
The present embodiments are, therefore, to be considered in all respects as illustrative and not restrictive, the scope of the invention being indicated by the appended claims rather than by the foregoing description, and all changes which come within the meaning and range of equivalency of the claims are therefore intended to be embraced therein. Any reference signs in the claims shall not be construed as limiting the claim concerned.
Furthermore, it is evident that the word "comprising" does not exclude other elements or steps, and that the singular does not exclude a plurality. The units or means stated in the invention may also be implemented by one unit or means, either by software or hardware. The terms first, second, etc. are used to denote a name, but not any particular order.
Finally, it should be noted that the above-mentioned embodiments are merely for illustrating the technical solution of the present invention and not for limiting the same, and although the present invention has been described in detail with reference to the preferred embodiments, it should be understood by those skilled in the art that modifications and equivalents may be made to the technical solution of the present invention without departing from the spirit and scope of the technical solution of the present invention.
Claims (10)
1. A multi-stage network device topology generation method, characterized in that the multi-stage network device topology generation method comprises:
Acquiring at least one subnet, and deploying a probe in each subnet;
every preset time interval, each probe is utilized to scan the network equipment associated with the corresponding subnet;
generating ICMP data packets of each probe, and injecting local gateway information of the probe to each ICMP data packet to obtain each injected data packet;
Distributing each injection data packet to other probes except the probe to which each injection data packet belongs;
Analyzing each captured injection data packet by using each probe to obtain TTL attenuation of each injection data packet, a source IP address and a gateway IP address corresponding to the probe;
Analyzing the connection relation among routes of each subnet according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe;
and generating a multi-stage network equipment topological graph of the network equipment according to the connection relation.
2. The multi-stage network device topology generation method of claim 1, wherein said acquiring at least one subnet and deploying probes at each subnet comprises:
acquiring a plurality of subnets under each route to obtain at least one subnet;
Storing a program main body and a library file of an executable program of a corresponding probe under a designated file path corresponding to a probe server of each subnet;
Program run commands for each executable program are executed separately to deploy the corresponding probe.
3. The multi-stage network device topology generation method of claim 1, wherein scanning network devices associated with a corresponding subnet with each probe comprises:
inquiring the IP address and the MAC address of a host machine by each probe to obtain a probe server of a subnet corresponding to each probe;
Acquiring an IP address and a mask of a probe server of each probe corresponding to the subnet, and calculating an IP range of equipment under each probe corresponding to the subnet by utilizing the IP address and the mask of the probe server of each probe corresponding to the subnet; broadcasting an ARP request to all devices under the corresponding subnet based on the IP range by using each probe; when an ARP response fed back by any equipment aiming at the ARP request is received, determining the any equipment as access equipment under the subnet corresponding to each probe;
inquiring the routing information of the host machine by using each probe to obtain each gateway address, and determining the corresponding routing of each probe according to each gateway address;
and determining the probe server of each probe corresponding sub-network, the access equipment under each probe corresponding sub-network and the route corresponding to each probe as the network equipment associated with each probe corresponding sub-network.
4. The method for generating a topology of a multi-stage network device of claim 1, wherein said injecting local gateway information of the probe to each ICMP packet to obtain each injected packet comprises:
Determining a gateway corresponding to a probe to which each ICMP data packet belongs as a local gateway corresponding to each ICMP data packet;
Acquiring an IP address and an MAC address of each local gateway as information of each local gateway;
and injecting each local gateway information into the corresponding ICMP data packet by utilizing libnet interface function library to obtain each injected data packet.
5. The method for generating a topology of a multi-stage network device of claim 1, wherein analyzing the connection relationship between routes of each subnet according to the TTL attenuation of each injected data packet, the source IP address, and the gateway IP address corresponding to the probe comprises:
For each injection data packet, when the value of the TTL attenuation is 1 and the source IP address is the same as the gateway IP address, determining that a subnet to which a sending probe and a receiving probe of the injection data packet belong is deployed under the same route;
When the TTL attenuation is 1 and the source IP address is different from the gateway IP address, determining that the subnet to which the transmitting probe and the receiving probe of the injected data packet belong is deployed under a route with a direct physical connection relationship;
When the value of the TTL attenuation is larger than 1, determining that the sub-network to which the transmitting probe and the receiving probe of the injected data packet belong is deployed under a route with an indirect physical connection relation; and calculating the difference value of the attenuation quantity and 1 as the number of the intermediate routes accessed between the routes with the indirect physical connection relation.
6. The multi-stage network device topology generation method of claim 3, wherein said generating a multi-stage network device topology map of said network device from said connection relationship comprises:
Taking the routes corresponding to each subnet and each probe as initial nodes, and generating connecting lines among the initial nodes according to the connection relation among the routes of each subnet to obtain an initial topological graph;
and adding nodes to the initial topological graph by using the probe server of the subnet corresponding to each probe and the access equipment under the subnet corresponding to each probe, and connecting each probe server, each access equipment and the corresponding subnet to obtain the multistage network equipment topological graph.
7. The method for generating a topology of a multi-stage network device of claim 1, wherein after said generating a topology of a multi-stage network device of said network device based on said connection relationship, said method further comprises:
When the probe scans new network equipment, the scanned new network equipment is updated to the multi-stage network equipment topological graph.
8. A multi-stage network device topology generation apparatus, the multi-stage network device topology generation apparatus comprising:
The deployment unit is used for acquiring at least one subnet and deploying probes on each subnet;
the scanning unit is used for scanning the network equipment associated with the corresponding subnet by utilizing each probe at preset time intervals;
The generating unit is used for generating ICMP data packets of each probe and injecting local gateway information of the probe to each ICMP data packet to obtain each injected data packet;
A distribution unit for distributing each injection data packet to other probes except the probe to which each injection data packet belongs;
The analyzing unit is used for analyzing each captured injection data packet by utilizing each probe to obtain TTL attenuation of each injection data packet, a source IP address and a gateway IP address corresponding to the corresponding probe;
The analysis unit is used for analyzing the connection relation between routes of each subnet according to the TTL attenuation of each injected data packet, the source IP address and the gateway IP address corresponding to the probe to which the source IP address belongs;
The generating unit is further configured to generate a multi-level network device topology map of the network device according to the connection relationship.
9. A computer device, the computer device comprising:
A memory storing at least one instruction; and
A processor executing instructions stored in the memory to implement the multi-stage network device topology generation method of any of claims 1 to 7.
10. A computer-readable storage medium, characterized by: the computer-readable storage medium has stored therein at least one instruction that is executed by a processor in a computer device to implement the multi-stage network device topology generation method of any of claims 1 to 7.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202411020424.4A CN118555208B (en) | 2024-07-29 | 2024-07-29 | Multi-stage network equipment topology generation method, device, equipment and medium |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202411020424.4A CN118555208B (en) | 2024-07-29 | 2024-07-29 | Multi-stage network equipment topology generation method, device, equipment and medium |
Publications (2)
Publication Number | Publication Date |
---|---|
CN118555208A true CN118555208A (en) | 2024-08-27 |
CN118555208B CN118555208B (en) | 2024-10-01 |
Family
ID=92453197
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202411020424.4A Active CN118555208B (en) | 2024-07-29 | 2024-07-29 | Multi-stage network equipment topology generation method, device, equipment and medium |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN118555208B (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN120389973A (en) * | 2025-06-05 | 2025-07-29 | 灵长智能科技(杭州)有限公司 | Private network bandwidth bottleneck detection method, system, equipment and medium |
Citations (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6952421B1 (en) * | 1999-10-07 | 2005-10-04 | Cisco Technology, Inc. | Switched Ethernet path detection |
US7200673B1 (en) * | 2000-06-09 | 2007-04-03 | Steven Augart | Determining the geographic location of a network device |
US7577738B1 (en) * | 2005-08-01 | 2009-08-18 | Avaya Inc. | Method and apparatus using voice and data attributes for probe registration and network monitoring systems |
US20130148547A1 (en) * | 2011-12-13 | 2013-06-13 | John M. Page | Method and system for collecting topology information |
US8844041B1 (en) * | 2010-01-12 | 2014-09-23 | Symantec Corporation | Detecting network devices and mapping topology using network introspection by collaborating endpoints |
CN107810619A (en) * | 2015-06-29 | 2018-03-16 | 谷歌有限责任公司 | System and method for inferring network topology and path metric in wide area network |
US20180288102A1 (en) * | 2017-03-31 | 2018-10-04 | Wipro Limited | Systems and methods for minimizing privacy intrusion during internet of things lawful interception |
CN109617728A (en) * | 2018-12-14 | 2019-04-12 | 中国电子科技网络信息安全有限公司 | A distributed IP-level network topology detection method based on multi-protocol |
CN110430080A (en) * | 2019-08-07 | 2019-11-08 | 国家计算机网络与信息安全管理中心 | Network topology probe method and device |
US20200296029A1 (en) * | 2019-03-15 | 2020-09-17 | Juniper Networks, Inc. | Planning and managing network probes using centralized controller |
US20210184961A1 (en) * | 2019-12-17 | 2021-06-17 | Noblis, Inc. | Network topology discovery |
CN115065622A (en) * | 2022-08-09 | 2022-09-16 | 北京安华金和科技有限公司 | Multi-probe-based auditing equipment testing method and system |
CN116264558A (en) * | 2022-11-22 | 2023-06-16 | 中移(苏州)软件技术有限公司 | Cloud private line quality monitoring method, device, equipment and computer storage medium |
CN117240910A (en) * | 2023-11-16 | 2023-12-15 | 中邮消费金融有限公司 | Zero trust verification system and method |
CN117675389A (en) * | 2023-12-13 | 2024-03-08 | 天翼云科技有限公司 | Traffic data processing method, device, storage medium and electronic equipment |
CN118233355A (en) * | 2024-03-14 | 2024-06-21 | 中国航空无线电电子研究所 | Cross-link path selection method |
-
2024
- 2024-07-29 CN CN202411020424.4A patent/CN118555208B/en active Active
Patent Citations (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6952421B1 (en) * | 1999-10-07 | 2005-10-04 | Cisco Technology, Inc. | Switched Ethernet path detection |
US7200673B1 (en) * | 2000-06-09 | 2007-04-03 | Steven Augart | Determining the geographic location of a network device |
US7577738B1 (en) * | 2005-08-01 | 2009-08-18 | Avaya Inc. | Method and apparatus using voice and data attributes for probe registration and network monitoring systems |
US8844041B1 (en) * | 2010-01-12 | 2014-09-23 | Symantec Corporation | Detecting network devices and mapping topology using network introspection by collaborating endpoints |
US20130148547A1 (en) * | 2011-12-13 | 2013-06-13 | John M. Page | Method and system for collecting topology information |
CN107810619A (en) * | 2015-06-29 | 2018-03-16 | 谷歌有限责任公司 | System and method for inferring network topology and path metric in wide area network |
US20180288102A1 (en) * | 2017-03-31 | 2018-10-04 | Wipro Limited | Systems and methods for minimizing privacy intrusion during internet of things lawful interception |
CN109617728A (en) * | 2018-12-14 | 2019-04-12 | 中国电子科技网络信息安全有限公司 | A distributed IP-level network topology detection method based on multi-protocol |
US20200296029A1 (en) * | 2019-03-15 | 2020-09-17 | Juniper Networks, Inc. | Planning and managing network probes using centralized controller |
CN110430080A (en) * | 2019-08-07 | 2019-11-08 | 国家计算机网络与信息安全管理中心 | Network topology probe method and device |
US20210184961A1 (en) * | 2019-12-17 | 2021-06-17 | Noblis, Inc. | Network topology discovery |
CN115065622A (en) * | 2022-08-09 | 2022-09-16 | 北京安华金和科技有限公司 | Multi-probe-based auditing equipment testing method and system |
CN116264558A (en) * | 2022-11-22 | 2023-06-16 | 中移(苏州)软件技术有限公司 | Cloud private line quality monitoring method, device, equipment and computer storage medium |
CN117240910A (en) * | 2023-11-16 | 2023-12-15 | 中邮消费金融有限公司 | Zero trust verification system and method |
CN117675389A (en) * | 2023-12-13 | 2024-03-08 | 天翼云科技有限公司 | Traffic data processing method, device, storage medium and electronic equipment |
CN118233355A (en) * | 2024-03-14 | 2024-06-21 | 中国航空无线电电子研究所 | Cross-link path selection method |
Non-Patent Citations (1)
Title |
---|
张江;孙治;段梦军;吴佑珂;: "基于ICMP、UDP、TCP协议的分布式IP级拓扑探测方法", 通信技术, no. 11, 10 November 2018 (2018-11-10) * |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN120389973A (en) * | 2025-06-05 | 2025-07-29 | 灵长智能科技(杭州)有限公司 | Private network bandwidth bottleneck detection method, system, equipment and medium |
Also Published As
Publication number | Publication date |
---|---|
CN118555208B (en) | 2024-10-01 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN118555208B (en) | Multi-stage network equipment topology generation method, device, equipment and medium | |
US20140317313A1 (en) | Nat sub-topology management server | |
CN112956158B (en) | Structural data plane monitoring | |
CN112261172A (en) | Service addressing access method, device, system, equipment and medium | |
CN114650281B (en) | File downloading method, device, equipment and storage medium based on complex network | |
CN114389792B (en) | WEB log NAT (network Address translation) front-back association method and system | |
CN109067784A (en) | The method and apparatus of anti-fraud in a kind of VXLAN | |
CN114301670B (en) | Terminal authentication method, device, equipment and medium based on IPV6 address | |
CN106201858A (en) | The test system of application program and control method thereof and device in mobile terminal | |
CN112883031A (en) | Industrial control asset information acquisition method and device | |
CN117082033A (en) | Method, device, equipment and medium for establishing network connection between storage equipment and host | |
CN117061175A (en) | Vulnerability scanning method, system and device for intranet assets and storage medium | |
CN114900430B (en) | Container network optimization method, device, computer equipment and storage medium | |
US9087299B2 (en) | Inferring connectivity in the presence of conflicting network data | |
CN112448963A (en) | Method, device, equipment and storage medium for analyzing automatic attack industrial assets | |
US20230300141A1 (en) | Network security management method and computer device | |
CN115277641B (en) | Address sharing method and device, electronic equipment and storage medium | |
WO2024207708A1 (en) | Communication processing method and device for distributed data storage | |
CN114978954A (en) | Network isolation validity verification method, device, equipment and storage medium | |
Cisco | Configuring VTP | |
Das et al. | Alarm Coloring and Grouping algorithm for root cause analysis | |
CN118041794B (en) | Application service topology generation method | |
CN120389973B (en) | Private network bandwidth bottleneck detection method, system, equipment and medium | |
CN112235148B (en) | VLAN configuration detection method, VLAN configuration detection device, electronic equipment and storage medium | |
CN115242704B (en) | Network topology data updating method and device and electronic equipment |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |