通信学报Issue(z1):46-51,6.DOI:10.3969/j.issn.1000-436x.2014.z1.010
面向应急响应的高速网络流量采集设计与实现
Design and implementation of high-speed network traffic sensor for emergency response
马亚洲 1龚俭 1杨望1
作者信息
- 1. 东南大学 计算机科学与工程学院,江苏 南京 211189
- 折叠
摘要
Abstract
In the network analysis and tracking, network security emergency response needs a emsrgency sensor that captures saw packets of specific IP, port, protocol. Base on the high-speed packet capture tool PF_RING DNA, it uses mutil-thread to capture network packets that match sensor rules, and allocates the shared buffer to improve the perform-ance of the disk storage of packets, at the same time through setting different states for the packet sensor rule, impliments adding sensor rules and human intervention dynamically. The experimental results show that in the dual 10 Gigabit NICs environment, emergency sensor can capture and handle network traffic of 19.98 Gbit/s(3.5 Mpacket/s), and the maximum rate of emergency sensor is 1 297 Mbit/s(204.9 kpacket/s).关键词
应急响应/PF_RING DNA/分组采集/动态规则Key words
emergency response/PF_RING DNA/packet capture/dynamic rule分类
信息技术与安全科学引用本文复制引用
马亚洲,龚俭,杨望..面向应急响应的高速网络流量采集设计与实现[J].通信学报,2014,(z1):46-51,6.
