SDN-based flow detection method

A technology of traffic detection and flow, which is applied in the field of network communication, can solve the problems of not being able to meet the application scenarios and realize the detection of total path traffic, and achieve the effect of improving the detection accuracy

Inactive Publication Date: 2017-01-11
STATE GRID ANHUI ELECTRIC POWER +2
View PDF4 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the current Meter table is dedicated to restricting the traffic of a certain type of service flow, which cannot meet the requirements of other application scenarios; The Meter table that limits one type of service flow cannot detect the total flow of the path

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • SDN-based flow detection method
  • SDN-based flow detection method
  • SDN-based flow detection method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0018] The present invention will be further described below in conjunction with accompanying drawing:

[0019] A flow detection method based on SDN, comprising the following steps:

[0020] S1: Obtain network traffic detection rules;

[0021] S2: Obtain the attribute information of the message of the first data stream, and judge whether the attribute information matches the obtained network traffic detection rule, if the attribute information matches the security rule, proceed to the next step, if the attribute If the information does not match the security rules, it is determined that the network traffic is normal;

[0022] S3: Process the data obtained by the flow statistics information collection module, and generate a traffic matrix or sample entropy matrix according to different settings. When performing traffic anomaly detection, combine the sample entropy matrix of the source IP address and the destination IP address to form t×2P dimensional combined entropy matrix; ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to an SDN-based flow detection method. The method comprises the following steps: obtaining the network flow detection rule; obtaining attribute information of the message of a first data stream, judging whether the attribute information is matched with the obtained network flow detection rule, if the attribute information is matched with the safety rule, executing the next step, if the attribute information is not matched with the safety rule, determining that the network flow is normal; building a sub-space model, and computing a flow threshold value E according to the sub-space model; accessing the information item of the OpenFlow exchanger flow list through an SDN network controller, and obtaining the communication flow Q arriving the exchanger; and comparing the flow threshold value E with the communication flow Q, if E is smaller than or equal to Q, presenting that the network flow is normal, otherwise the network flow is abnormal. The SDN-based flow detection method is capable of detecting the safety of the internal flow of the network, and effectively improving the detection accuracy for DDoS attack generated in the SDN network.

Description

technical field [0001] The invention relates to the technical field of network communication, in particular to an SDN-based traffic detection method. Background technique [0002] SDN is a new type of network architecture, and its core idea is to separate the control plane of network equipment from the forwarding plane to achieve flexible control of network traffic. SDN includes SDN controllers and SDN devices, wherein the SDN controller can issue a flow table to the SDN device for the SDN device to forward certain types of service flows according to the flow table; and the SDN controller can also send the SDN device A Meter table is issued for traffic monitoring of the service flow. The Meter table defines the maximum allowable bandwidth corresponding to the service flow. The SDN device performs flow control on the forwarded service flow according to the above Meter table. However, the current Meter table is dedicated to restricting the traffic of a certain type of service...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/26H04L29/06
CPCH04L43/16H04L43/08H04L63/1425
Inventor 谢小军潘子春张引强苏涛吴非夏同飞
Owner STATE GRID ANHUI ELECTRIC POWER
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap