East-west network traffic mirroring collection method of cross-host tenants
A technology of traffic collection and network traffic, which is applied in the field of communication technology security, can solve problems such as the inability to determine tenants, the impossibility of switch port mirroring, and the inapplicability of east-west network traffic of tenants in the cloud.
Inactive Publication Date: 2017-10-10
NAT COMP NETWORK & INFORMATION SECURITY MANAGEMENT CENT
View PDF7 Cites 7 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Because a tenant's virtual machine may be distributed on multiple physical hosts, and network traffic may involve multiple racks, it is impossible to determine which physical interfaces the tenant's network traffic involves, and it is impossible to mirror all switch ports
Therefore, the above two methods are not applicable to the east-west network traffic of tenants in the cloud
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0026] In order to make the above-mentioned features and advantages of the present invention more comprehensible, the following specific embodiments are described in detail in conjunction with the accompanying drawings.
[0027] The present invention provides an east-west network traffic mirror collection method across host tenants, which is suitable for a collection system, and the collection system includes a cloud service main control server, a traffic collection control server, a traffic collection Agent, a traffic collection driver, and a traffic analysis server.
[0028] Please refer to figure 1 , the traffic collection control server is used to complete the following functions:
[0029] 1) Obtain the tenant's network configuration information and the distribution information of the tenant's virtual machine on the physical host from the cloud service master server;
[0030] 2) receiving the tenant name of the tenant to be collected from the system console, generating t...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention provides an east-west network traffic mirroring collection method of cross-host tenants. The method comprises the following steps: 1) a traffic collection control server generates a traffic collection configuration parameter corresponding to a to-be-collected tenant according to a tenant name of the to-be-collected tenant, as well as network configuration information of the tenant and distribution information of a virtual machine of the tenant on a physical host obtained from a cloud service master control server; 2) the traffic collection control server issues the traffic collection configuration parameter to a traffic collection drive program through a traffic collection Agent of a cloud service host; and 3) the traffic collection drive program performs mirroring on the collected traffic specified by the traffic collection configuration parameter and sends the collected traffic subjected to the mirroring to the traffic collection Agent. By adoption of the method, east-west network traffic of the tenant can be dynamically collected in a Linux kernel drive program layer according to the tenant name, the network configuration information of the tenant and the distribution information of the virtual machine of the tenant on the physical host.
Description
technical field [0001] The invention relates to the security field of communication technology, in particular to a cross-host east-west network traffic mirror collection method. Background technique [0002] With the extensive development of cloud computing services, due to security needs, it is necessary to monitor the east-west network traffic in the cloud, which requires mirroring the east-west network traffic of tenants in the cloud. To complete the mirroring of east-west network traffic, the following functions need to be implemented: [0003] 1) Differentiate the network traffic of tenants; [0004] 2) Effectively mirror the tenant's network traffic and transmit it to the network data analysis center for analysis. [0005] Currently, network traffic mirroring is generally implemented by means of optical splitting or switch mirroring ports. The light splitting refers to cloning the light in the optical fiber through the optical splitter, which is actually to copy the...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/931H04L29/08H04L12/46H04L12/24G06F9/455
CPCG06F9/45558G06F2009/4557H04L12/4641H04L41/145H04L49/208H04L67/1095
Inventor 马秀娟吴震李传海孙伟唐积强毛洪亮徐小磊何清林张家琦王子厚
Owner NAT COMP NETWORK & INFORMATION SECURITY MANAGEMENT CENT