Network audit data collection method, corresponding device and equipment, and storage medium

A data collection and data technology, applied in the network field, can solve the problems of missed audit, complex implementation, poor fault tolerance, etc., and achieve the effect of reducing the probability of missed audit, increasing fault tolerance, and improving audit performance

Inactive Publication Date: 2018-11-13
BEIJING TOPSEC NETWORK SECURITY TECH +2
View PDF4 Cites 7 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Although there are corresponding solutions in the existing network audit system, the implementation of the existing network audit system is complicated, and there is a bottleneck in the overall performance, which will not increase linearly with the system hardware configuration; and the fault tolerance is poor. Once the program crashes abnormally, Then its auditing function may be used, which will cause a large number of unaudited network events

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network audit data collection method, corresponding device and equipment, and storage medium
  • Network audit data collection method, corresponding device and equipment, and storage medium
  • Network audit data collection method, corresponding device and equipment, and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0045] An embodiment of the present invention provides a network audit data collection device, such as figure 1 As shown, the device includes:

[0046] The data capture unit 10 is used to start a data forwarding process, create a plurality of virtual network interfaces through the data forwarding process, capture the original data message from the physical network card, and send the original data message to each virtual network interface;

[0047] The data acquisition unit 20 is configured to start a plurality of network audit processes, and obtain corresponding original data packets from corresponding virtual network interfaces through each network audit process.

[0048] In the embodiment of the present invention, the virtual network interface can be pre-created through the data forwarding process and has the characteristics of a network card. When the data forwarding process for creating the virtual network interface finishes running, the virtual network interface is also d...

Embodiment 2

[0070] Embodiments of the present invention provide a method for collecting network audit data, such as Figure 4 mentioned, including:

[0071] S101, start a data forwarding process; create multiple virtual network interfaces through the data forwarding process, capture original data packets from the physical network card, and send the original data packets to each virtual network interface;

[0072] S102. Start a plurality of network audit processes; obtain corresponding original data packets from corresponding virtual network interfaces through each network audit process.

[0073] In the embodiment of the present invention, optionally, the process of creating a plurality of virtual network interfaces through the data forwarding process, grabbing the original data packets from the physical network card, and sending the original data packets to each virtual network interface ,include:

[0074] Running the virtual interface creation module and the data forwarding module thro...

Embodiment 3

[0087] An embodiment of the present invention provides a computer device, the computer device includes a memory and a processor, the memory stores a computer program, and the processor executes the computer program, so as to implement any one of the second embodiment. method steps.

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a network audit data collection method, a corresponding device and equipment and a storage medium. The device comprises a data capture unit, which is used for starting a data forwarding process, creating a plurality of virtual network interfaces through the data forwarding process, capturing an original data message from a physical network card and sending the original datamessage to each virtual network interface; and a data collection unit, which is used for starting a plurality of network auditing processes, and obtaining corresponding original data message from thecorresponding virtual network interface through each network auditing process. The network audit data collection method, the corresponding device and equipment and the storage medium in the inventioneffectively improve the auditing performance of network flow, increase the fault tolerance of the network auditing system, and reduce the probability of network auditing time audit missing.

Description

technical field [0001] The invention relates to the field of network technology, in particular to a method for collecting network audit data, corresponding devices, equipment and storage media. Background technique [0002] The network audit system is deployed at the network egress, captures network data packets, parses the packets and extracts the transmission content to realize the network audit function. The network audit system is deployed in enterprises or government agencies to provide effective means to improve work efficiency, deter violations, obtain evidence and determine responsibility, and trace the source. [0003] With the rapid development of the network, the bandwidth of the network egress is also continuously expanding. 100M and 1000M networks are common, and the scale of 10G network egress is also gradually formed. Large traffic is an important feature of the current network. On the other hand, network application software is diversified, and different ap...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/26H04L29/06
CPCH04L43/12H04L43/18H04L63/30
Inventor 刘勇张凤羽
Owner BEIJING TOPSEC NETWORK SECURITY TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap