CN113765826B - Network monitoring method, platform, device and computer readable storage medium - Google Patents

Network monitoring method, platform, device and computer readable storage medium Download PDF

Info

Publication number
CN113765826B
CN113765826B CN202010485129.1A CN202010485129A CN113765826B CN 113765826 B CN113765826 B CN 113765826B CN 202010485129 A CN202010485129 A CN 202010485129A CN 113765826 B CN113765826 B CN 113765826B
Authority
CN
China
Prior art keywords
monitoring
target
data flow
network
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202010485129.1A
Other languages
Chinese (zh)
Other versions
CN113765826A (en
Inventor
李宙洲
刘畅
刘帅
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Mobile Communications Group Co Ltd
China Mobile Suzhou Software Technology Co Ltd
Original Assignee
China Mobile Communications Group Co Ltd
China Mobile Suzhou Software Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Mobile Communications Group Co Ltd, China Mobile Suzhou Software Technology Co Ltd filed Critical China Mobile Communications Group Co Ltd
Priority to CN202010485129.1A priority Critical patent/CN113765826B/en
Publication of CN113765826A publication Critical patent/CN113765826A/en
Application granted granted Critical
Publication of CN113765826B publication Critical patent/CN113765826B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/70Virtual switches
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/08Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L49/00Packet switching elements
    • H04L49/25Routing or path finding in a switch fabric

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Environmental & Geological Engineering (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The application discloses a network monitoring method, which comprises the following steps: determining a monitoring object in a current virtual network; the monitoring object comprises a virtual machine and/or virtual network equipment; determining a target transmission path for transmitting the monitoring data traffic based on the monitoring object; acquiring target data flow corresponding to the monitoring object, and transmitting the target data flow to a monitoring node through the target transmission path; the target data flow is used for being analyzed and processed by the monitoring node so as to realize that the monitoring node correspondingly monitors the state of the current virtual network, thereby realizing the monitoring of the data flow of the virtual machine and other virtual network equipment and effectively carrying out complete data flow monitoring on the private virtual network of the user. The application also discloses a network monitoring platform, a device and a computer readable storage medium.

Description

Network monitoring method, platform, device and computer readable storage medium
Technical Field
The present application relates to the field of computer technologies, and in particular, to a network monitoring method, a platform, a device, and a computer readable storage medium.
Background
Cloud Computing (Cloud Computing) is an internet-based Computing approach. The computing power of cloud computing is distributed across a large number of distributed computers, rather than local computers or remote servers, enabling enterprises to switch resources to desired applications. Open vSwitch is used as a virtual switch running on a virtualized platform, and can simulate the functions of a real physical switch, and provide rich network functions on the virtualized platform, but the functions are not limited to switching functions. Virtual switches also have numerous advantages over traditional physical switches: the configuration is more flexible, wherein a common server can configure tens or even hundreds of virtual switches, and the number of ports can be flexibly selected, for example, a server can simulate a large number of virtual switches, and each switch can preset up to 4096 virtual ports; secondly, the cost is low, and the performance which can be achieved by the expensive common switch can be obtained through virtual switching; third, functions far beyond the common physical switch can be provided, such as quality of service (Quality of Service, qoS), security group, firewall, etc.
Therefore, in a cloud computing environment, open vSwitch is generally selected as an implementation mechanism of a virtual network, so as to provide stable, high-performance and rich network functions for cloud computing. Meanwhile, the user private virtual network is monitored in real time, so that the flow of the user can be analyzed, and the influence of the user network on the service caused by disconnection can be reduced. However, the network function and the structure of the cloud computing have great difficulty in monitoring the network health condition of the user, namely, how to monitor the data traffic on the whole data path, so that the monitoring platform is ensured to acquire the network condition in the cloud environment in real time and recover the network disconnection condition in time. Currently, in a cloud computing environment, a large number of flow monitoring methods are used for a virtual machine, and a sflow protocol of Openvswitch or other monitoring software (such as a bailometer of openstack) is mainly used for flow monitoring. However, these methods are directed to data traffic of a virtual machine, and cannot completely depict and monitor complete data traffic of a private virtual network of a user.
Disclosure of Invention
In order to solve the problems in the prior art, the application provides a network monitoring method, a platform, a device and a computer readable storage medium, solves the problem that the data traffic of a virtual machine can only be monitored at present, realizes the monitoring of the data traffic of the virtual machine and other virtual network equipment, and can effectively monitor the complete data traffic of a private virtual network of a user.
In order to achieve the above purpose, the technical scheme of the application is realized as follows:
in a first aspect, a network monitoring method, the method being applied to a virtual switch, the method comprising:
determining a monitoring object in a current virtual network; the monitoring object comprises a virtual machine and/or virtual network equipment;
Determining a target transmission path for transmitting the monitoring data traffic based on the monitoring object;
Acquiring target data flow corresponding to the monitoring object, and transmitting the target data flow to a monitoring node through the target transmission path; the target data flow is used for being analyzed and processed by the monitoring node so as to realize corresponding monitoring of the current virtual network condition by the monitoring node.
Optionally, the determining, based on the monitoring object, a target transmission path for monitoring data traffic transmission includes:
creating a target interface within the virtual switch;
creating a first path between the monitoring object and the target interface;
Creating a second path between the target interface and the monitoring node, thereby obtaining the target transmission path; wherein the target transmission path includes the first path and the second path.
Optionally, the obtaining the target data traffic corresponding to the monitoring object and transmitting the target data traffic to the monitoring node through the target transmission path includes:
Acquiring a first data flow received or transmitted by the monitoring object based on the first path;
acquiring a monitoring condition, and processing the first data flow according to the monitoring condition to obtain the target data flow;
and transmitting the target data traffic to a monitoring node through the second path.
Optionally, the transmitting the target data traffic to the monitoring node through the second path includes:
Determining a target network card; the target network card is different from the network card for providing the service network in the current virtual network;
And based on the second path, the target data flow is sent to the monitoring node through the target network card.
Optionally, the acquiring, based on the first path, the first data traffic received or sent by the monitoring object includes:
and acquiring the first data flow through a multi-stage flow table of Open vSwitch based on the first path.
Optionally, the obtaining the monitoring condition, and processing the first data traffic according to the monitoring condition to obtain the target data traffic includes:
acquiring the monitoring condition;
processing the first data flow according to the monitoring condition to obtain a second data flow; wherein the second data traffic comprises at least one data packet;
The target data traffic is determined based on the second data traffic.
Optionally, the processing the first data traffic according to the monitoring condition to obtain a second data traffic includes:
if the monitoring condition is that the total data flow is monitored, the first data flow is used as the second data flow;
and if the monitoring condition is the head information of the monitoring data packet, the head information of each data packet in the first data flow is intercepted, and the head information of each data packet is used as the second data flow.
Optionally, the determining the target data traffic based on the second data traffic includes:
if the second data traffic comprises a data packet, determining that the second data traffic is the target data traffic;
If the second data flow comprises at least two data packets, determining a maximum transmission unit corresponding to the data packets transmitted by the second path;
Acquiring at least two target data packets from the at least two data packets, and assembling the at least two target data packets to obtain an assembled data packet; the size of the assembled data packet is smaller than or equal to the maximum transmission unit, and the target data flow comprises the assembled data packet and data packets except the at least two target data packets in the at least two data packets.
In a second aspect, a network monitoring platform, the network monitoring platform comprising: virtual machine, virtual network equipment, virtual switch and monitoring node; wherein:
the virtual machine and the virtual network device are both used for generating or receiving data traffic;
The virtual switch is configured to implement the following steps: determining a monitoring object in a current virtual network; the monitoring object comprises a virtual machine and/or virtual network equipment; determining a target transmission path for monitoring data traffic transmission based on the monitoring object; acquiring target data flow corresponding to the monitoring object, and transmitting the target data flow to a monitoring node through the target transmission path; the target data flow is used for being analyzed and processed by the monitoring node so as to realize corresponding monitoring of the current virtual network condition by the monitoring node;
The monitoring node is configured to receive the target data traffic sent by the virtual switch, and analyze and process the target data traffic to implement corresponding monitoring on the current virtual network condition.
In a third aspect, a network monitoring apparatus for operating the virtual switch, the apparatus comprising: the device comprises a first determining unit, a second determining unit and an obtaining unit; wherein:
the first determining unit is used for determining a monitoring object in the current virtual network; the monitoring object comprises a virtual machine and/or virtual network equipment;
The second determining unit is used for determining a target transmission path for monitoring data traffic transmission based on the monitoring object;
The acquisition unit is used for acquiring the target data flow corresponding to the monitoring object and transmitting the target data flow to the monitoring node through the target transmission path; the target data flow is used for analyzing and processing by the monitoring node so as to realize that the monitoring node carries out corresponding monitoring and processing on the current virtual network condition.
In a fourth aspect, a computer readable storage medium having a network monitoring program stored thereon, the processor implementing the steps of the network monitoring method according to any of the preceding claims when executing the network monitoring program.
The network monitoring method, the platform, the device and the computer readable storage medium provided by the embodiment of the application are characterized in that after the monitoring object in the current virtual network is determined, the target transmission path for transmitting the monitoring data flow is determined based on the monitoring object, then the target data flow corresponding to the monitoring object is obtained, and the target data flow is transmitted to the monitoring node through the target transmission path. In this way, the virtual switch can respectively transmit the target data flows corresponding to different monitoring objects in the current virtual network to the monitoring nodes so that the monitoring nodes can analyze and process the target data flows corresponding to different monitoring objects in the current virtual network, thereby realizing the monitoring of the target data flows of different monitoring objects in the current virtual network, solving the problem that the data flows of the virtual machine can only be monitored at present, realizing the monitoring of the data flows of the virtual machine and other virtual network devices, effectively carrying out complete data flow monitoring on the private virtual network of the user, avoiding the introduction of monitoring processes, greatly reducing the complexity of monitoring and improving the applicability of the scheme. Furthermore, the method and the device realize accurate positioning of the network fault position, distinguish the service flow from the monitoring data flow during monitoring, reduce the influence of the monitoring process on the existing user service, improve the use experience effect of the user and realize monitoring based on the real-time user data flow.
Drawings
Fig. 1 is a schematic flow chart of a network monitoring method provided by the application;
fig. 2 is a schematic flow chart of another network monitoring method according to the present application;
fig. 3 is an application scenario of a network monitoring method provided by the present application;
Fig. 4 is a schematic view of an application scenario provided by the present application;
fig. 5 is a schematic structural diagram of a network monitoring platform according to the present application;
fig. 6 is a schematic structural diagram of a network monitoring device according to the present application.
Detailed Description
The technical solutions of the present application will be clearly and completely described below with reference to the drawings in the embodiments.
The present embodiment provides a network monitoring method applied to a virtual switch, and referring to fig. 1, the method includes the following steps:
Step 101, determining a monitoring object in the current virtual network.
Wherein the monitoring object comprises a virtual machine and/or virtual network equipment.
In this embodiment, the monitoring object may be one or more objects that are specified by a user corresponding to the current virtual network in a virtual machine and/or a virtual network device in the current virtual network. The current virtual network comprises at least one virtual machine and at least one virtual network device. The virtual network devices include virtual routers, virtual domain name system (service) protocol servers (DNS-servers), virtual firewalls, virtual load balancers, and the like.
Step 102, determining a target transmission path for transmitting the monitored data traffic based on the monitored object.
In this embodiment, the path starting point of the target transmission path is a monitoring object, and the target transmission path may be determined from the monitoring object to the monitoring node.
Step 103, obtaining a target data flow corresponding to the monitoring object, and transmitting the target data flow to the monitoring node through a target transmission path.
The target data flow is used for being analyzed and processed by the monitoring node so as to realize corresponding monitoring of the current virtual network condition by the monitoring node.
In this embodiment, the target data traffic may be data information received or sent by the monitoring object, or may be obtained by performing corresponding processing on the data information received or sent by the monitoring object, where the data information includes application data information corresponding to the monitoring object in the current data network.
According to the network monitoring method provided by the embodiment, after the monitoring object in the current virtual network is determined, the target transmission path for transmitting the monitoring data flow is determined based on the monitoring object, then the target data flow corresponding to the monitoring object is obtained, and the target data flow is transmitted to the monitoring node through the target transmission path. In this way, the virtual switch can respectively transmit the target data flows corresponding to different monitoring objects in the current virtual network to the monitoring nodes so that the monitoring nodes can analyze and process the target data flows corresponding to different monitoring objects in the current virtual network, thereby realizing the monitoring of the target data flows of different monitoring objects in the current virtual network, solving the problem that the data flows of the virtual machine can only be monitored at present, realizing the monitoring of the data flows of the virtual machine and other virtual network devices, effectively carrying out complete data flow monitoring on the private virtual network of the user, avoiding the introduction of monitoring processes, greatly reducing the complexity of monitoring and improving the applicability of the scheme.
Based on the foregoing embodiments, the present embodiment provides a network monitoring method applied to a virtual switch, as shown with reference to fig. 2, including the steps of:
Step 201, determining a monitoring object in the current virtual network.
Wherein the monitoring object comprises a virtual machine and/or virtual network equipment.
In this embodiment, the monitoring object determined by the virtual switch may be carried in a request instruction sent by the monitoring node to monitor the current virtual network. In some application scenarios, typically one virtual switch corresponds to one monitoring node. For example, the monitoring object is specified by the corresponding operation of the monitoring node by the user, and in some application scenarios, the monitoring object can also be some default monitoring objects.
Step 202, determining a target transmission path for transmitting the monitored data traffic based on the monitored object.
In this embodiment, based on the monitoring object, the virtual switch creates a communication interface for the monitoring data traffic in the virtual switch, so as to reduce the possibility that the monitoring data traffic occupies other communication interfaces during transmission, and reduce the influence of the monitoring data traffic on the traffic in the current virtual network.
In other embodiments, step 202 may be implemented by the following steps 202 a-202 c:
Step 202a, creating a target interface within the virtual switch.
In this embodiment, an interface for the monitoring object to send the monitoring data traffic to the virtual switch, i.e. the target interface, is created on the virtual switch's integrated bridge (br-int) based on the vxlan, which may be called, for example, the vxlan interface (vxlan port). In some application scenarios, the target interface may be a created vlan interface that is not currently used by the virtual switch, or may be created based on a vlan protocol calling creation method.
Step 202b, creating a first path between the monitored object and the target interface.
In this embodiment, the path between the monitoring object and the target interface is directly determined to be the first path, for example, in the current virtual network, a firewall is further present between the VM and the virtual switch, and when the monitoring object is the VM, the path between the VM and the virtual switch is directly created to be the monitoring path, that is, the first path.
Step 202c, creating a second path between the target interface and the monitoring node, thereby obtaining a target transmission path.
The target transmission path includes a first path and a second path.
In this embodiment, the monitoring node may be a computer device having a communication connection with the current virtual network. The second path between the target interface and the monitoring node can be realized through a physical network, the physical network comprises a wired interconnection network and a wireless interconnection network, and the physical network can also comprise other communication link modes such as Bluetooth, zigBee and the like.
Step 203, obtaining a target data flow corresponding to the monitoring object, and transmitting the target data flow to the monitoring node through the target transmission path.
The target data flow is used for being analyzed and processed by the monitoring node so as to realize corresponding monitoring of the current virtual network condition by the monitoring node.
In other embodiments, step 203 may be implemented by the following steps 203 a-203 c:
Step 203a, based on the first path, acquiring a first data traffic received or transmitted by the monitoring object.
In this embodiment, the virtual switch acquires, on the first path, the first data traffic received by the monitoring object or acquires the first data traffic sent by the monitoring object.
And 203b, acquiring monitoring conditions, and processing the first data flow according to the monitoring conditions to obtain the target data flow.
In this embodiment, the monitoring condition may be a requirement that the monitoring node sends to the virtual switch, for instructing the virtual switch to process the data of the monitored object.
Step 203c, transmitting the target data traffic to the monitoring node through the second path.
In other embodiments, step 203c may be implemented by the following steps a 11-a 12:
and a step a11, determining a target network card.
The target network card is different from the network card for providing the service network in the current virtual network.
In this embodiment, the target network card is a network card for providing network bandwidth for monitoring traffic transmission. The target network card may be set according to the monitoring service.
And a step a12 of transmitting the target data traffic to the monitoring node through the target network card based on the second path.
It should be noted that, in this embodiment, the descriptions of the same steps and the same content as those in other embodiments may refer to the descriptions in other embodiments, and are not repeated here.
According to the network monitoring method provided by the embodiment, after the monitoring object in the current virtual network is determined, the target transmission path for transmitting the monitoring data flow is determined based on the monitoring object, then the target data flow corresponding to the monitoring object is obtained, and the target data flow is transmitted to the monitoring node through the target transmission path. In this way, the virtual switch can respectively transmit the target data flows corresponding to different monitoring objects in the current virtual network to the monitoring nodes so that the monitoring nodes can analyze and process the target data flows corresponding to different monitoring objects in the current virtual network, thereby realizing the monitoring of the target data flows of different monitoring objects in the current virtual network, solving the problem that the data flows of the virtual machine can only be monitored at present, realizing the monitoring of the data flows of the virtual machine and other virtual network devices, effectively carrying out complete data flow monitoring on the private virtual network of the user, avoiding the introduction of monitoring processes, greatly reducing the complexity of monitoring and improving the applicability of the scheme. Furthermore, as the monitoring object can be refined to the virtual machine and the fine network equipment, each node of the current virtual network can be subjected to flow monitoring, and the network fault position can be accurately positioned; and through setting up the goal interface, have realized the differentiation to business flow and monitoring data flow when monitoring, still transmit the monitoring data flow through the goal network card used for monitoring data flow transmission, prevent to monitor the data flow and occupy the business network broadband when transmitting, have reduced the influence of the monitoring process to the existing user business, have improved the user's use experience effect.
Based on the foregoing embodiments, the present embodiment provides a network monitoring method applied to a virtual switch, as shown with reference to fig. 3, including the steps of:
Step 301, determining a monitoring object in the current virtual network.
Wherein the monitoring object comprises a virtual machine and/or virtual network equipment.
Step 302, creating a target interface in the virtual switch.
Step 303, creating a first path between the monitored object and the target interface.
Step 304, creating a second path between the target interface and the monitoring node, thereby obtaining a target transmission path.
The target transmission path includes a first path and a second path.
Step 305, based on the first path, acquiring a first data traffic received or transmitted by the monitoring object.
In this embodiment, step 305 may be implemented by the following steps: based on the first path, a first data traffic is obtained through a multi-level flow table of OpenvSwitch.
In this embodiment, the virtual switch copies the traffic data flow sent by the monitoring object to the virtual switch or sent by the virtual switch to the monitoring object through the Open vSwitch multi-level flow table, so as to obtain the first data flow. And the service data flow is continuously transmitted according to the actual service path, and the monitoring of the data flow does not influence the transmission process of the service data flow.
And 306, acquiring monitoring conditions, and processing the first data flow according to the monitoring conditions to obtain target data flow.
In this embodiment, step 306 may be implemented by the following steps 306 a-306 b:
step 306a, obtaining the monitoring condition.
And 306b, processing the first data flow according to the monitoring condition to obtain a second data flow.
Wherein the second data traffic comprises at least one data packet.
In this embodiment, step 306b may be implemented by the following steps b11 to b 12:
And b11, if the monitoring condition is that the total data traffic is monitored, taking the first data traffic as the second data traffic.
In this embodiment, the full data traffic is monitored, i.e. no processing is performed on the first data traffic.
And b12, if the monitoring condition is the head information of the monitoring data packet, intercepting the head information of each data packet in the first data flow, and taking the head information of each data packet as the second data flow.
Step 306c, determining the target data traffic based on the second data traffic.
In this embodiment, the virtual switch analyzes the second data traffic, and determines the target data traffic from the second data traffic.
In other embodiments, step 306c may be implemented by step c11 or steps c 12-c 13. If the second data traffic includes one data packet, the virtual switch selects to execute step c11, and if the second data traffic includes at least two data packets, the virtual switch selects to execute steps c12 to c13:
and c11, if the second data traffic comprises a data packet, determining that the second data traffic is the target data traffic.
In this embodiment, if the size of the second data traffic is smaller than the maximum transmission unit, splitting the second data traffic, where the packets obtained by splitting are smaller than or equal to the maximum transmission unit, and taking the packets obtained by splitting as the target data traffic.
And c12, if the second data flow comprises at least two data packets, determining a maximum transmission unit corresponding to the data packets transmitted by the second path.
In this embodiment, the maximum transmission unit is the packet size of the largest packet that can be transmitted in the second path.
Step c13, obtaining at least two target data packets from the at least two data packets, and assembling the at least two target data packets to obtain an assembled data packet.
The size of the assembled data packet is smaller than or equal to the maximum transmission unit, and the target data flow comprises the assembled data packet and the data packets except at least two target data packets in at least two data packets.
In this embodiment, assuming that the maximum transmission unit is 1000 bytes, the second data flow includes five data packets with sizes of 300 bytes, 800 bytes, and 900 bytes, respectively. Thus, the virtual switch can assemble 3 data packets of 300 bytes to obtain an assembled data packet; since the size of the maximum transmission unit is exceeded when any two of the 800-byte data packet and the 900-byte data packet and the 3 300-byte data packets are assembled, the 800-byte data packet and the 900-byte data packet are not assembled, and thus the target data flow including the assembled data packet, the 800-byte data packet and the 900-byte data packet can be obtained. It should be noted that the sFlow function may be used to assemble at least two target packets.
Step 307, determining the target network card.
The target network card is different from the network card for providing the service network in the current virtual network.
And step 308, based on the second path, transmitting the target data traffic to the monitoring node through the target network card.
Based on the foregoing embodiment, this embodiment provides an application scenario as shown in fig. 4, including: a Virtual Machine (VM) a, a Virtual router B, a Virtual load balancer C, a Virtual firewall D, a Virtual switch (OVS) E, and a monitoring node F, wherein VM a, virtual router B, virtual load balancer C, virtual firewall D, and OVS E belong to a current Virtual network. VM A includes VM1 and VM2, VM1 and VM2 may implement a communication link with virtual switch E through qvo interfaces; the virtual router B, the virtual load balancer C and the virtual firewall D all realize communication links with the virtual switch E through tap interfaces.
The corresponding monitoring object may be one or more VMs a, or may be a virtual router B, or may be a virtual load balancer C, or a virtual firewall D, or may be any combination of the foregoing. Vxlan port1 and vxlan port2 in OVS are two interfaces, where: vxlan port1 is an interface for transmitting to an OVS in a VM or a virtual network device and transmitting to other devices except a monitoring node through the OVS, i.e., vxlan port1 is an interface for transmitting traffic of a current virtual network; and vxlan port2 is a target interface created when transmitting the monitor data traffic, i.e., an interface for transmitting the monitor data traffic. In fig. 4, solid arrows indicate traffic data flows, and broken arrows indicate target data flows. In fig. 4, only a schematic diagram sent by the service network card to the physical network is shown, and the schematic diagram after the physical network is not shown.
Based on fig. 4, the monitoring implementation may be determined as follows: when the monitoring object is data traffic sent by the VM1, the OVS E creates a monitoring data traffic transmission path, including creating a target interface vxlan port2 on br-int and distributing a target network card, so as to obtain a target transmission path as follows: VM 1- > vxlan port 2- > target network card- > monitoring node, where- > is the monitoring data flow; after the OVS E creates the target transmission path, the monitoring data flow of the VM 1-OVS E is obtained from the Open vSwitch multi-level flow table, and it is to be noted that the data flow sent by one VM1 is duplicated at the moment, and the service process of the VM1 is not affected; processing the acquired monitoring data flow according to the monitoring requirement, for example, the monitoring full data, and directly taking the monitoring data flow as the target data flow without processing the monitoring data flow because the monitoring requirement is the monitoring full data, and then sending the target data flow to the vxlan port2; and finally, the vxlan port2 sends the target data flow to the target network card, and the target data flow is sent to the monitoring node through the target network card so that the monitoring node can carry out subsequent analysis on the target data flow.
In other application scenarios, after the OVS receives the monitored data traffic, the OVS processes the monitored data traffic according to the monitoring requirement, and the processed monitored data traffic can be assembled by adopting an sFlow function to obtain an assembled data packet with a size smaller than or equal to that of a maximum transmission unit from the target network card to the data channel of the monitoring node, so as to obtain the target data traffic, wherein the target data traffic comprises the assembled data packet and the processed monitored data traffic. It should be noted that, in some application scenarios, the size of the data packet in the processed monitored data flow is close to the maximum transmission unit, and the data packet is not assembled, and the corresponding target data flow does not include the assembled data packet. In other application scenarios, all the data packets in the processed monitoring data flow can be packaged into at least one assembly data packet, and then all the corresponding target data flow is the assembly data packet.
It should be noted that, in this embodiment, the descriptions of the same steps and the same content as those in other embodiments may refer to the descriptions in other embodiments, and are not repeated here.
According to the network monitoring method provided by the embodiment, the virtual switch can respectively transmit the target data flows corresponding to different monitoring objects in the current virtual network to the monitoring nodes so that the monitoring nodes can analyze and process the target data flows corresponding to the different monitoring objects, thereby realizing the monitoring of the target data flows of the different monitoring objects in the current virtual network, solving the problem that the data flows of the virtual machine can only be monitored at present, realizing the monitoring of the data flows of the virtual machine and other virtual network devices, effectively carrying out complete data flow monitoring on the private virtual network of a user, avoiding the introduction of monitoring processes, greatly reducing the complexity of monitoring and improving the applicability of a scheme. Furthermore, since the monitoring object can be refined to the virtual machine and the virtual network equipment, each node of the current virtual network can be subjected to flow monitoring, and the network fault position can be accurately positioned; and through setting up the goal interface, have realized the differentiation to business flow and monitoring data flow when monitoring, still transmit the monitoring data flow through the goal network card used for monitoring data flow transmission, prevent to monitor the data flow and occupy the business network broadband when transmitting, have reduced the influence of the monitoring process to the existing user business, have improved the user's use experience effect. And moreover, the monitoring data flow used for monitoring is acquired through the Open vSwitch multi-level flow table, so that the real-time performance of the user data flow used for monitoring is ensured.
The present embodiment provides a network monitoring platform, which can be applied to the network monitoring methods provided in fig. 1 to 3 and the corresponding embodiments, and referring to fig. 5, the network monitoring platform 4 includes: virtual machine 41, virtual network device 42, virtual switch 43, and monitoring node 44, wherein:
Virtual machine 41 and virtual network device 42, each for generating or receiving data traffic;
A virtual switch 43 for determining a monitoring object in the current virtual network; the monitoring object comprises a virtual machine and/or virtual network equipment; determining a target transmission path for monitoring data traffic transmission based on the monitored object; acquiring target data traffic corresponding to a monitoring object, and transmitting the target data traffic to a monitoring node through a target transmission path; the target data flow is used for being analyzed and processed by the monitoring node so as to realize corresponding monitoring of the current virtual network condition by the monitoring node;
And the monitoring node 44 is configured to receive the target data traffic sent by the virtual switch, and analyze and process the target data traffic to implement corresponding monitoring on the current virtual network condition.
In other embodiments, the virtual switch is further configured to perform the steps of:
Creating a target interface within the virtual switch;
creating a first path between the monitored object and the target interface;
Creating a second path between the target interface and the monitoring node, thereby obtaining a target transmission path; the target transmission path includes a first path and a second path.
In other embodiments, the virtual switch is further configured to perform the steps of:
based on the first path, acquiring a first data flow received or transmitted by a monitoring object;
Acquiring monitoring conditions, and processing the first data flow according to the monitoring conditions to obtain target data flow;
And transmitting the target data traffic to the monitoring node through the second path.
In other embodiments, the virtual switch is further configured to perform the steps of:
determining a target network card; the target network card is different from a network card for providing a service network in the current virtual network;
And based on the second path, transmitting the target data traffic to the monitoring node through the target network card.
In other embodiments, the virtual switch is further configured to perform the steps of:
based on the first path, a first data flow is acquired through a multi-level flow table of the Open vSwitch.
In other embodiments, the virtual switch is further configured to perform the steps of:
Acquiring monitoring conditions;
Processing the first data flow according to the monitoring condition to obtain a second data flow; wherein the second data traffic comprises at least one data packet;
The target data traffic is determined based on the second data traffic.
In other embodiments, the virtual switch is further configured to perform the steps of:
If the monitoring condition is that the total data flow is monitored, the first data flow is used as the second data flow;
If the monitoring condition is the head information of the monitoring data packet, the head information of each data packet in the first data flow is intercepted, and the head information of each data packet is used as the second data flow.
In other embodiments, the virtual switch is further configured to perform the steps of:
if the second data flow comprises a data packet, determining that the second data flow is a target data flow;
if the second data flow comprises at least two data packets, determining a maximum transmission unit corresponding to the data packets transmitted by the second path;
Acquiring at least two target data packets from at least two data packets, and assembling the at least two target data packets to obtain an assembled data packet; the size of the assembled data packet is smaller than or equal to the maximum transmission unit, and the target data flow comprises the assembled data packet and the data packets except at least two target data packets in at least two data packets.
It should be noted that, in this embodiment, the descriptions of the same steps and the same content as those in other embodiments may refer to the descriptions in other embodiments, and are not repeated here.
According to the network monitoring platform provided by the embodiment, after the monitoring object in the current virtual network is determined, the target transmission path for transmitting the monitoring data flow is determined based on the monitoring object, then the target data flow corresponding to the monitoring object is obtained, and the target data flow is transmitted to the monitoring node through the target transmission path. In this way, the virtual switch can respectively transmit the target data flows corresponding to different monitoring objects in the current virtual network to the monitoring nodes so that the monitoring nodes can analyze and process the target data flows corresponding to the different monitoring objects, thereby realizing the monitoring of the target data flows of the different monitoring objects in the current virtual network, solving the problem that the data flows of the virtual machine can only be monitored at present, realizing the monitoring of the data flows of the virtual machine and other virtual network devices, and effectively carrying out complete data flow monitoring on the private virtual network of the user.
The network monitoring device 5 provided in this embodiment may be applied to a network monitoring method provided in fig. 1 to 3 and the corresponding embodiments described above, and referring to fig. 6, the device includes: a first determination unit 51, a second determination unit 52, and an acquisition unit 53, wherein:
a first determining unit 51 for determining a monitoring object in a current virtual network; the monitoring object comprises a virtual machine and/or virtual network equipment;
A second determining unit 52 for determining a target transmission path for transmitting the monitoring data traffic based on the monitoring object;
An obtaining unit 53, configured to obtain a target data flow corresponding to the monitored object, and transmit the target data flow to the monitoring node through a target transmission path; the target data flow is used for being analyzed and processed by the monitoring node so as to realize corresponding monitoring of the current virtual network condition by the monitoring node.
In other embodiments, the second determining unit includes: creating a module; wherein:
The creation module is used for creating a target interface in the virtual switch; creating a first path between the monitored object and the target interface; creating a second path between the target interface and the monitoring node, thereby obtaining a target transmission path; the target transmission path includes a first path and a second path.
In other embodiments, the acquisition unit comprises: an acquisition module and a transmission module; wherein:
the acquisition module is used for acquiring first data traffic received or transmitted by the monitoring object based on the first path;
The acquisition module is also used for acquiring monitoring conditions and processing the first data flow according to the monitoring conditions to obtain target data flow;
And the transmission module is used for transmitting the target data traffic to the monitoring node through the second path.
In other embodiments, the transmission module is specifically configured to:
determining a target network card; the target network card is different from a network card for providing a service network in the current virtual network;
And based on the second path, transmitting the target data traffic to the monitoring node through the target network card.
In other embodiments, the obtaining module is specifically configured to:
based on the first path, a first data flow is acquired through a multi-level flow table of the Open vSwitch.
In other embodiments, the obtaining module is further specifically configured to:
Acquiring monitoring conditions;
Processing the first data flow according to the monitoring condition to obtain a second data flow; wherein the second data traffic comprises at least one data packet;
a target data traffic is determined based on the second data traffic.
In other embodiments, the obtaining module is specifically configured to process the first data traffic according to the monitoring condition to obtain the second data traffic, and is further specifically configured to:
If the monitoring condition is that the total data flow is monitored, the first data flow is used as the second data flow;
If the monitoring condition is the head information of the monitoring data packet, the head information of each data packet in the first data flow is intercepted, and the head information of each data packet is used as the second data flow.
In other embodiments, the obtaining module is configured to determine the target data traffic based on the second data traffic, and is further specifically configured to:
if the second data flow comprises a data packet, determining that the second data flow is a target data flow;
if the second data flow comprises at least two data packets, determining a maximum transmission unit corresponding to the data packets transmitted by the second path;
Acquiring at least two target data packets from at least two data packets, and assembling the at least two target data packets to obtain an assembled data packet; the size of the assembled data packet is smaller than or equal to the maximum transmission unit, and the target data flow comprises the assembled data packet and the data packets except at least two target data packets in at least two data packets.
In practical applications, the first determining unit 51, the second determining unit 52, and the acquiring unit 53 may be implemented by a central processing unit (Central Processing Unit, CPU), a microprocessor (Micro Processor Unit, MPU), a digital signal Processor (DIGITAL SIGNAL Processor, DSP), or a field programmable gate array (Field Programmable GATE ARRAY, FPGA) or the like located in the wireless data transmission apparatus.
It should be noted that, in the interaction process between the steps implemented by the processor in this embodiment, reference may be made to fig. 1 to 3 and the interaction process in the network monitoring method provided in the foregoing corresponding embodiment, which is not described herein again.
According to the network monitoring device provided by the embodiment of the invention, after the monitoring object in the current virtual network is determined, the target transmission path for transmitting the monitoring data flow is determined based on the monitoring object, then the target data flow corresponding to the monitoring object is obtained, and the target data flow is transmitted to the monitoring node through the target transmission path. In this way, the virtual switch can respectively transmit the target data flows corresponding to different monitoring objects in the current virtual network to the monitoring nodes so that the monitoring nodes can analyze and process the target data flows corresponding to the different monitoring objects, thereby realizing the monitoring of the target data flows of the different monitoring objects in the current virtual network, solving the problem that the data flows of the virtual machine can only be monitored at present, realizing the monitoring of the data flows of the virtual machine and other virtual network devices, and effectively carrying out complete data flow monitoring on the private virtual network of the user.
Based on the foregoing embodiments, embodiments of the present application provide a computer readable storage medium storing one or more programs, where the one or more programs may be executed by one or more processors to implement the method implementation process provided in the embodiments corresponding to fig. 1 to 3, which is not described herein.
It will be appreciated by those skilled in the art that embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of a hardware embodiment, a software embodiment, or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, magnetic disk storage, optical storage, and the like) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flowchart illustrations and/or block diagrams, and combinations of flows and/or blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
The foregoing description is only of the preferred embodiments of the present application, and is not intended to limit the scope of the present application.

Claims (9)

1. A method of network monitoring, the method being applied to a virtual switch, the method comprising:
determining a monitoring object in a current virtual network; the monitoring object comprises a virtual machine and virtual network equipment;
Determining a target transmission path for transmitting the monitoring data traffic based on the monitoring object;
Acquiring target data flow corresponding to the monitoring object, and transmitting the target data flow to a monitoring node through the target transmission path; the target data flow is used for being analyzed and processed by the monitoring node so as to realize corresponding monitoring of the current virtual network condition by the monitoring node; the target data flow is obtained after processing the first data flow received or sent by the monitoring object; the first data flow is obtained from a multi-stage flow table of an Open vSwitch; the transmitting the target data traffic to a monitoring node through the target transmission path includes: determining a target network card; the target network card is different from the network card for providing the service network in the current virtual network; and based on the target transmission path, the target data flow is sent to the monitoring node through the target network card.
2. The method of claim 1, wherein determining a target transmission path for monitoring data traffic transmissions based on the monitored object comprises:
creating a target interface within the virtual switch;
creating a first path between the monitoring object and the target interface;
Creating a second path between the target interface and the monitoring node, thereby obtaining the target transmission path; wherein the target transmission path includes the first path and the second path.
3. The method according to claim 2, wherein the obtaining the target data traffic corresponding to the monitored object and transmitting the target data traffic to the monitoring node through the target transmission path includes:
Acquiring a first data flow received or transmitted by the monitoring object based on the first path;
acquiring a monitoring condition, and processing the first data flow according to the monitoring condition to obtain the target data flow;
and transmitting the target data traffic to a monitoring node through the second path.
4. A method according to claim 3, wherein the obtaining the monitoring condition and processing the first data traffic according to the monitoring condition to obtain the target data traffic comprises:
acquiring the monitoring condition;
processing the first data flow according to the monitoring condition to obtain a second data flow; wherein the second data traffic comprises at least one data packet;
The target data traffic is determined based on the second data traffic.
5. The method of claim 4, wherein processing the first data traffic according to the monitored condition results in a second data traffic, comprising:
if the monitoring condition is that the total data flow is monitored, the first data flow is used as the second data flow;
and if the monitoring condition is the head information of the monitoring data packet, the head information of each data packet in the first data flow is intercepted, and the head information of each data packet is used as the second data flow.
6. The method of claim 4 or 5, wherein the determining the target data traffic based on the second data traffic comprises:
if the second data traffic comprises a data packet, determining that the second data traffic is the target data traffic;
If the second data flow comprises at least two data packets, determining a maximum transmission unit corresponding to the data packets transmitted by the second path;
Acquiring at least two target data packets from the at least two data packets, and assembling the at least two target data packets to obtain an assembled data packet; the size of the assembled data packet is smaller than or equal to the maximum transmission unit, and the target data flow comprises the assembled data packet and data packets except the at least two target data packets in the at least two data packets.
7. A network monitoring platform, the network monitoring platform comprising: virtual machine, virtual network equipment, virtual switch and monitoring node; wherein:
the virtual machine and the virtual network device are both used for generating or receiving data traffic;
The virtual switch is configured to implement the following steps: determining a monitoring object in a current virtual network; the monitoring object comprises a virtual machine and virtual network equipment; determining a target transmission path for monitoring data traffic transmission based on the monitoring object; acquiring target data flow corresponding to the monitoring object, and transmitting the target data flow to a monitoring node through the target transmission path; the target data flow is used for being analyzed and processed by the monitoring node so as to realize corresponding monitoring of the current virtual network condition by the monitoring node; the target data flow is obtained based on the processing of the first data flow representing the receiving or sending of the monitoring object; the first data flow is obtained from a multi-stage flow table of an Open vSwitch; the transmitting the target data traffic to a monitoring node through the target transmission path includes: determining a target network card; the target network card is different from the network card for providing the service network in the current virtual network; based on the target transmission path, the target data flow is sent to the monitoring node through the target network card;
The monitoring node is configured to receive the target data traffic sent by the virtual switch, and analyze and process the target data traffic to implement corresponding monitoring on the current virtual network condition.
8. A network monitoring device for operating a virtual switch, the device comprising: the device comprises a first determining unit, a second determining unit and an obtaining unit; wherein:
the first determining unit is used for determining a monitoring object in the current virtual network; the monitoring object comprises a virtual machine and virtual network equipment;
The second determining unit is used for determining a target transmission path for monitoring data traffic transmission based on the monitoring object;
the acquisition unit is used for acquiring the target data flow corresponding to the monitoring object and transmitting the target data flow to the monitoring node through the target transmission path; the target data flow is used for analyzing and processing by the monitoring node so as to realize that the monitoring node carries out corresponding monitoring and processing on the current virtual network condition; the target data flow is obtained based on the processing of the first data flow representing the receiving or sending of the monitoring object; the first data flow is obtained from a multi-stage flow table of an Open vSwitch; the transmitting the target data traffic to a monitoring node through the target transmission path includes: determining a target network card; the target network card is different from the network card for providing the service network in the current virtual network; and based on the target transmission path, the target data flow is sent to the monitoring node through the target network card.
9. A computer readable storage medium, wherein a network monitoring program is stored on the computer readable storage medium, and wherein a processor implements the steps of the network monitoring method according to any one of claims 1 to 6 when executing the network monitoring program.
CN202010485129.1A 2020-06-01 2020-06-01 Network monitoring method, platform, device and computer readable storage medium Active CN113765826B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010485129.1A CN113765826B (en) 2020-06-01 2020-06-01 Network monitoring method, platform, device and computer readable storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010485129.1A CN113765826B (en) 2020-06-01 2020-06-01 Network monitoring method, platform, device and computer readable storage medium

Publications (2)

Publication Number Publication Date
CN113765826A CN113765826A (en) 2021-12-07
CN113765826B true CN113765826B (en) 2024-05-28

Family

ID=78782631

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010485129.1A Active CN113765826B (en) 2020-06-01 2020-06-01 Network monitoring method, platform, device and computer readable storage medium

Country Status (1)

Country Link
CN (1) CN113765826B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115208904B (en) * 2022-06-29 2024-06-04 深圳星云智联科技有限公司 Flow monitoring method and related equipment

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104378264A (en) * 2014-12-12 2015-02-25 武汉噢易云计算有限公司 sFlow based virtual machine process traffic monitoring method
CN104683165A (en) * 2013-11-27 2015-06-03 北京天地超云科技有限公司 Monitor method for virtual machine network data in Xen virtual environment
WO2016155816A1 (en) * 2015-04-01 2016-10-06 Telefonaktiebolaget Lm Ericsson (Publ) Methods and devices for monitoring of network performance for container virtualization
CN107623611A (en) * 2017-09-22 2018-01-23 国云科技股份有限公司 A kind of flux monitoring system of cloud platform virtual machine
CN108494657A (en) * 2018-04-08 2018-09-04 苏州云杉世纪网络科技有限公司 OpenStack cloud platform virtual probe mirror methods based on Open vSwitch
CN108900384A (en) * 2018-07-20 2018-11-27 新华三云计算技术有限公司 Network flow monitoring method, apparatus and system, computer readable storage medium
CN109905283A (en) * 2017-12-07 2019-06-18 ***通信集团公司 A kind of flow statistical method, device and computer readable storage medium
CN109951353A (en) * 2019-03-11 2019-06-28 北京启明星辰信息安全技术有限公司 A kind of cloud platform flow rate testing methods and resource pool system
CN109981403A (en) * 2019-03-05 2019-07-05 北京勤慕数据科技有限公司 Virtual machine network data traffic monitoring method and device

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10469342B2 (en) * 2014-10-10 2019-11-05 Nicira, Inc. Logical network traffic analysis
US9781037B2 (en) * 2015-09-15 2017-10-03 Cisco Technology, Inc. Method and apparatus for advanced statistics collection
US11310241B2 (en) * 2018-09-18 2022-04-19 Microsoft Technology Licensing, Llc Mirroring virtual network traffic

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104683165A (en) * 2013-11-27 2015-06-03 北京天地超云科技有限公司 Monitor method for virtual machine network data in Xen virtual environment
CN104378264A (en) * 2014-12-12 2015-02-25 武汉噢易云计算有限公司 sFlow based virtual machine process traffic monitoring method
WO2016155816A1 (en) * 2015-04-01 2016-10-06 Telefonaktiebolaget Lm Ericsson (Publ) Methods and devices for monitoring of network performance for container virtualization
CN107623611A (en) * 2017-09-22 2018-01-23 国云科技股份有限公司 A kind of flux monitoring system of cloud platform virtual machine
CN109905283A (en) * 2017-12-07 2019-06-18 ***通信集团公司 A kind of flow statistical method, device and computer readable storage medium
CN108494657A (en) * 2018-04-08 2018-09-04 苏州云杉世纪网络科技有限公司 OpenStack cloud platform virtual probe mirror methods based on Open vSwitch
CN108900384A (en) * 2018-07-20 2018-11-27 新华三云计算技术有限公司 Network flow monitoring method, apparatus and system, computer readable storage medium
CN109981403A (en) * 2019-03-05 2019-07-05 北京勤慕数据科技有限公司 Virtual machine network data traffic monitoring method and device
CN109951353A (en) * 2019-03-11 2019-06-28 北京启明星辰信息安全技术有限公司 A kind of cloud platform flow rate testing methods and resource pool system

Also Published As

Publication number Publication date
CN113765826A (en) 2021-12-07

Similar Documents

Publication Publication Date Title
US20220368611A1 (en) Distributed packet deduplication
Katsikas et al. Metron:{NFV} service chains at the true speed of the underlying hardware
US10938727B2 (en) Method and device for offloading processing of data flows
Qi et al. Assessing container network interface plugins: Functionality, performance, and scalability
EP3343840B1 (en) Dynamic distribution of network entities among monitoring agents
US20160065479A1 (en) Distributed input/output architecture for network functions virtualization
US20140181267A1 (en) Methods and systems to split equipment control between local and remote processing units
JP2018033135A (en) Method and system for processing dsr load balancing using loopback interface in virtual network environment
US20190132345A1 (en) Apparatus for network function virtualization using software defined networking and operation method thereof
Sanz et al. SFCPerf: An automatic performance evaluation framework for service function chaining
US11336545B2 (en) Network device measurements employing white boxes
EP3306877B1 (en) Packet loss positioning in vxlan
Lee et al. No more middlebox: Integrate processing into network
Lee et al. High-performance software load balancer for cloud-native architecture
Elsayed et al. Dealing with COVID-19 network traffic spikes [cybercrime and forensics]
CN113765826B (en) Network monitoring method, platform, device and computer readable storage medium
Katsikas et al. Metron: High-performance NFV service chaining even in the presence of blackboxes
US11855872B2 (en) Methods, systems, and computer readable media for network traffic generation using machine learning
Caraguay et al. Framework for optimized multimedia routing over software defined networks
CN106789650B (en) Wide area network acceleration method and device based on IP
CN110768870B (en) Quality monitoring method and device for intelligent special line
Shah et al. Implementation and performance analysis of firewall on open vSwitch
Waheed et al. Implementation of virtual firewall function in SDN (software defined networks)
Grønsund et al. A solution for SGi-LAN services virtualization using NFV and SDN
Bonfim et al. Identifying performance bottlenecks in software data planes for cloud-based nfv services

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant