CN1750485A - Network simulation detection system and method - Google Patents
Network simulation detection system and method Download PDFInfo
- Publication number
- CN1750485A CN1750485A CNA200510012183XA CN200510012183A CN1750485A CN 1750485 A CN1750485 A CN 1750485A CN A200510012183X A CNA200510012183X A CN A200510012183XA CN 200510012183 A CN200510012183 A CN 200510012183A CN 1750485 A CN1750485 A CN 1750485A
- Authority
- CN
- China
- Prior art keywords
- network
- test
- unit
- parameter
- configuration
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
This invention relates to a network emulation test system and a method. The system includes a system configuration management module, a network data process module and a network interface module, among which, said system configuration management module is communicated with the network data process module, which includes various emulation test function units, receives the test instructions and test parameters sent by the management module to finish related test tasks and returns the test results back to the management module, in which, the functional test unit realizes the data flow emulation, application emulation and easy test meeting the RFC standard at high performance, high accuracy and multiple kinds
Description
Technical field
The present invention relates to a kind of network performance testing system and method, the especially a kind of reasonability of the emulation testing network architecture and the Network Artificial Measuring System And Method of performance of network equipments.
Background technology
At present, network has become the indispensable part of people's daily life work, and the performance of network is directly connected to the live and work quality, and performance how to assess network becomes one of problem that people are concerned about the most.Network performance mainly is subjected to the restriction of the network equipment and network topology structure, therefore, realize will realizing to the test of performance of network equipments with to the rational checking of network topology structure the assessment of network performance.
Performance of network equipments test mode the most intuitively is that this equipment is placed a network that comprises specific data stream, observes the bottleneck whether it becomes the network operation.This way no doubt can realize tolerance, but network equipment producer often can not have so a satisfactory network realize this test.Even network equipment development person has made up special-purpose network specially and tested a specific equipment, but this network is still kept away unavoidable a large amount of trifling configuration and operations when reality is used.Therefore, not only with high costs, configuration operation is cumbersome, and even if finished these operations, the result also can only provide a general estimation to the performance of the network equipment.If obtain test result accurately, find the bottleneck place of this equipment, it then is difficult more being revised then, the adjustment of each data all be will be referred to the configuration and the management of a plurality of Internet resources.
Because the difficulty of emulation and test, the equipment development person often can only provide the theoretical value of an equipment, perhaps please carry out final test one time to equipment by special mechanism for testing, is unfavorable for the raising of product quality, and the user also is difficult to recognize the real performance of product.
Rational checking has problems too to network topology structure.The user can not be with after being intended to make up the network of certain topological structure, do not know this network whether rationally, whether can influence under the situation of service behaviour and just bring into use, can not allow in use to pinpoint the problems the adjustment that topology of networks is correlated with again yet.And in a large-scale networking process, can exist some errors to cause the unusual of network topology structure unavoidably, and find that this is unusual, if do not drop into practical application, do not carry out emulation and often be difficult to the place of pinpointing the problems.So, also significant to the rational checking of network topology structure, but present technology still can not provide reasonable, easy, a lower-cost method of testing.
In the prior art, when people carry out performance test to a network or a network equipment, often need to build a special network, need to use the multiple pc machine produce various flows, could realize the test of being correlated with.Even finished test,, make test data inaccurate because PC produces flow often not reaching requirement aspect performance and the precision.
On the other hand, network processing unit (Network Processor, be called for short NP) with the external interface of its multimicroprocessor framework, standard, provides high performance data-handling capacity, for the processing of network data provides new platform.
Network processing unit is application specific instruction processor (the Application Specific Instruct Processor of network-oriented application, be called for short ASIP), be the data-oriented packet transaction, that have architectural feature and/or particular electrical circuit, software programmable device.Providing the handling property of hardware level by software architecture flexibly is the key characteristic of NP.Network processing unit is a kind of high-speed programmable processor that bag is handled, transmitted that is used for specially carrying out, has application-specific integrated circuit (ASIC) (Application-Specific Integrated Circuits, abbreviation ASIC) high speed and the flexibility of RISC (Reduced InstructionSet Computer), according to application need, can carry out 2 to 7 layers processing to packet, and can be by additional functions such as external universal cpu exploitation network management and network securitys.Its appearance not only helps conventional equipment development mechanism and manufacturer and develops the high performance network equipment, as: switch, router, fire compartment wall, intruding detection system (IDS) etc., the while also can be used as the core of the equipment of network simulation and test macro.
Summary of the invention
The technical problem to be solved in the present invention is, at the deficiencies in the prior art, a kind of Network Artificial Measuring System And Method is provided, high-performance, high accuracy, eurypalynous data flow emulation, application simulation and the convenient easy-to-use test that meets the RFC standard are provided, simplify testing process, the result of more accurate test is provided.
For solving the problems of the technologies described above, the invention provides a kind of network simulation detection system, comprise system configuration administration module, network data processing module and Network Interface Module, wherein, described system configuration administration module and described network data processing module communication, be used for configuration testing parameter and test command, test parameter and test command are sent to described network data processing module, receive and handle the information that described network data processing module is returned;
Described network data processing module receives test command and the test parameter that described system configuration administration module sends, and finishes corresponding test assignment according to described test command and test parameter, and test result is returned to described system configuration administration module;
The integrated more than one network interface of described Network Interface Module, described network interface is connected with described network data processing module, the data that are used for receiving send to described network data processing module, and perhaps that described network data processing resume module is intact data send to objective network or destination network device.Specifically: in network flow simulation, Network Interface Module is responsible for the packet of the good customization of network data processing module structure is sent in the objective network, provides applied in network performance test required background traffic.For network application emulation, Network Interface Module is connected on TCP/HTTP server or the safety means, sends packets such as TCP request to these equipment, is used to carry out the performance test of TCP/HTTP aspect.In network attack emulation, physical interface is connected on the target of being attacked, and sends specific attack packet.For network benchmark test, such as the forwarding packet time delay that will test a certain switch, the transmit port of Network Interface Module can be received the inlet of switch, the receiving port of Network Interface Module is received in the outlet of switch, at this moment Network Interface Module is responsible for specific packet is sent to switch by transmit port, packet is given the network data processing module by receiving from receiving port behind the switch again.For network protocol analysis, network interface is connected on certain broadcasting equipment of objective network, and on hub, the network physical module is given the network data processing module with the packet capture that the user is concerned about.
In the described network simulation detection system, described system configuration administration module comprises parameter configuration unit, message processing unit, data communication units and display unit, described parameter configuration unit is used for configuration testing parameter and test command, and described test parameter and test command are sent to described message processing unit;
Described message processing unit is used for the conversion or the processing of message, after the test parameter that is sent by described parameter configuration unit/described data communication units that receives and corresponding test command/return messages were converted to corresponding message, it was single towering to send to described data communication units/described demonstration;
Described data communication units is used for the forwarding of message, to described network data processing module, or the return messages that described network data processing module is sent send to described message processing unit with the forwards that is sent by described message processing unit that receives;
Described display unit is connected with described message processing unit with described parameter configuration unit respectively, is used for the test parameter of configurations shown and the return messages that sent by described message processing unit.
In the described network simulation detection system, described network data processing module comprises communication schedule unit, an above emulation testing functional unit, wherein, described communication schedule unit is connected with described system configuration administration module, receive its test parameter that sends and test command, judge the type of described test parameter and test command, described test parameter and test command are sent to corresponding emulation testing functional unit, and the result of this emulation testing functional unit test is returned to described system configuration administration module;
Described emulation testing functional unit is finished concrete test assignment according to test parameter and test command, and test result is returned to communication schedule unit.
In the described network simulation detection system, described emulation testing functional unit comprises in network flow simulation (Network Stream Simulating) unit, network application emulation (NetworkApplication Simulating) unit, network attack emulation (Network AttackSimulating) unit, network benchmark test (Network Benchmark Testing) unit and network protocol analysis (the Network Protocol Analyzing) unit one or several arbitrarily.
In the described network simulation detection system, described parameter configuration unit comprises in network flow simulation parameter configuration subelement, network application simulation parameter configuration subelement, the configuration of network attack simulation parameter subelement, network benchmark test parameter configuration subelement and the network protocol analysis parameter configuration subelement one or several arbitrarily.
In the described network simulation detection system, described network flow simulation unit comprises: task scheduling subelement and one or more packet constructor unit, described packet constructor unit are in ARP packet constructor unit, IP packet constructor unit, ICMP packet constructor unit, tcp data bag constructor unit, UDP message bag constructor unit, RIP packet constructor unit and the vlan data bag constructor unit one or several arbitrarily; When carrying out test emulation, described task scheduling subelement is according to the test desired data bag type of described network flow simulation parameter configuration subelement configuration, call corresponding packet constructor unit with the structure particular data packet, the described particular data packet that structure is good sends to objective network or destination network device by network interface, and by the task scheduling subelement relevant information is sent to described communication schedule unit.
In the described network simulation detection system, described network application simulation unit is used to keep the TCP connection of millions and send ten thousand grades TCP connection request, comprise that task scheduling subelement, task are carried out subelement and operation information is collected subelement, wherein, described task scheduling subelement is according to the test parameter of described network application simulation parameter configuration subelement configuration, call described task execution subelement and begin to execute the task, described operation information is collected subelement ruuning situation information is sent to described communication schedule unit in real time.
Described network attack simulation unit is mainly used in 11 kinds of network attacks commonly used of emulation, is specially: SYN Flood attacks, i.e. SYN flood attack, and SYN is the synchronous mark in the TCP message; SYN+FIN Flood attacks, and wherein, FIN is the end mark in the TCP message; ACK Flood attacks, and wherein, ACK is used for replying the symbol of reading really in the TCP message; NULL Flood attacks, promptly empty flag bit flood attack, and just the flag bit in the TCP packet header is not done setting, promptly all is 0; UDP Flood attacks, and just the open port to destination host sends a large amount of useless UDP message bags; ICMP Flood attacks, and just, utilizes the ECHO service of ICMP agreement, and cook source address sends ICMPrequest to destination host; SMURF attacks, and it is similar with ping flood, but is to send request to wrap broadcast address, causes the attack dynamics to be exaggerated; Ping of Death attacks, i.e. the Ping of death; TearDrop attacks, promptly based on the attack method of the ill packet segment of UDP; Jolt2 attacks, and the ip fragmentation of an ICMP/UDP of transmission who does not promptly stop in an endless loop can make the machine deadlock of Windows system; ARP Flood attacks, and wherein, ARP is an address resolution protocol, and it is the arp reply packets of information that sends invalid personation that ARP Flood attacks, and stops up network.
In the described network simulation detection system, described network attack simulation unit comprises task scheduling subelement and one or more attack subelement, and described attack subelement is that SYNFlood attacks subelement, SYN+FIN Flood and attacks subelement, ACK Flood and attack subelement, NULL Flood and attack subelement, UDP Flood and attack subelement, ICMP Flood and attack subelement, SMURF and attack that subelement, Ping of Death are attacked subelement, TearDrop attacks subelement; Jolt2 attacks subelement and ARP Flood and attacks in the subelement one or several arbitrarily; Described task scheduling subelement calls corresponding attack subelement according to the attack type of described network attack simulation parameter configuration subelement configuration, sends attack packets by described attack subelement and launches a offensive; And the relevant information of attack packets sent to described communication schedule unit by described task scheduling subelement.
Described network benchmark test unit is used for throughput (Throughput) test, time delay (Latency) test, frame loss rate (Frame Loss Rate) test and (Back-to-Back) test back-to-back, so, in the described network simulation detection system, described network benchmark test simulation unit comprises task scheduling subelement and one or more test subelement, and described test subelement is testing throughput subelement, delay testing subelement, frame loss rate test subelement and tests in the subelement one or several arbitrarily back-to-back; Described task scheduling subelement calls corresponding test subelement and tests according to the parameter of described network benchmark test parameter configuration subelement configuration, and described test subelement sends to described communication schedule unit with test result.
In the described network simulation detection system, described system configuration administration module also comprises the network protocol analysis subelement, described network protocol analysis unit comprises the packet capture subelement, described packet capture subelement is used for catching unknown data from objective network, and described unknown data sent to network protocol analysis subelement in the described system configuration administration module, described network protocol analysis subelement is used for the unknown data that described packet capture subelement sends is carried out protocal analysis.
The present invention also provides a kind of network simulation method of testing, may further comprise the steps:
Step 1, by system configuration administration module configuration testing parameter and test command, and send to the network data processing module;
Step 4, described emulation testing functional unit send to described network data processing module with the relevant information of test, send to described system configuration administration module by described network data processing module.
In the described network simulation method of testing, described step 1 may further comprise the steps:
In the described network simulation method of testing, the described test command of step 1 comprises the emulation testing order to network traffics, network application, network attack, network benchmark test and/or network protocol analysis; Correspondingly, the corresponding emulation testing functional unit of the module of network data processing described in the step 2 selection comprises network flow simulation unit, network application simulation unit, network attack simulation unit, network benchmark test unit and/or network protocol analysis unit.
In the described network simulation method of testing, configuration testing order described in the step 11 is the test command to network traffics, and described configuration testing parameter comprises: the IP address of selecting side slogan and configured port, gateway address, subnet mask and flow constructing variable;
The functional unit of emulation testing described in the step 3 carries out corresponding emulation testing and comprises: the network flow simulation test, be specially: the task scheduling subelement in the described network flow simulation unit is according to the test parameter and the test command that receive, call corresponding packet constructor unit with the structure particular data packet, the described particular data packet that structure is good sends to objective network or destination network device by network interface;
Described step 4 specifically comprises: described task scheduling subelement sends to data communication units in the described system configuration administration module with the communication schedule unit of relevant information by described network data processing module of test, sends to message processing unit by described data communication units and handles.
In the described network simulation method of testing, the configuration testing order described in the step 11 is the test command to network application, and described configuration testing parameter comprises: the IP address of configured port, gateway address, subnet mask; Configuration purpose IP address, destination interface, destination server performance parameter and source IP address;
The functional unit of emulation testing described in the step 3 carries out corresponding emulation testing and comprises: the network application emulation testing, be specially: the task scheduling subelement in the described network application simulation unit is according to the test parameter and the test command of configuration, and calling task is carried out subelement and carried out corresponding task;
Described step 4 specifically comprises: operation information in the described network application simulation unit collect subelement with the information of ruuning situation in real time the communication schedule unit by described network data processing module send to data communication units in the described system configuration administration module, send to message processing unit by described data communication units and handle.
In the described network simulation method of testing, the configuration testing order described in the step 11 is the test command to network attack, and described configuration testing parameter comprises: the IP address of configured port, gateway address, subnet mask; Dispose IP address, the port of effective target of attack; The network address is forged in configuration and the duration is attacked in configuration;
The functional unit of emulation testing described in the step 3 carries out corresponding emulation testing and comprises: the network attack emulation testing specifically comprises: the task scheduling subelement in the described network attack simulation unit calls corresponding attack subelement according to test parameter and test command and launches a offensive; In attack process, attack subelement and receive packet;
Described step 4 specifically comprises: described attack subelement sends to data communication units in the described system configuration administration module with the corresponding information of the attack packets communication schedule unit by described network data processing module, sends to message processing unit by described data communication units and handles.
In the described network simulation method of testing, the configuration testing order described in the step 11 is the test command to network benchmark test, and described configuration testing parameter comprises: select transmit port and accept port; The selecting side slogan; IP address, gateway address and the subnet mask of configured port; Dispose current test-types, LOT test interval, time delay distribution and selection test assignment;
The functional unit of emulation testing described in the step 3 carries out corresponding emulation testing and comprises: network benchmark test specifically comprises: call corresponding test subelement by the task scheduling subelement in the described network benchmark test unit and test;
Described step 4 is specially: the communication schedule unit of the initial data that the corresponding test subelement of testing obtains test by described network data processing module sends to the data communication units in the described system configuration administration module, sends to message processing unit by described data communication units and handles.
In the described network simulation method of testing, the configuration testing order described in the step 11 is the test command to network protocol analysis, and described configuration testing parameter comprises: the size that filtering protocol, reception buffer memory are set; The mac address filter condition is set; IP address filtering condition is set and the ports filter condition is set;
The functional unit of emulation testing described in the step 3 carries out corresponding emulation testing and comprises: network protocol analysis specifically comprises: the packet capture subelement in the described network protocol analysis unit carries out catching of packet;
Described step 4 specifically comprises: the packet of catching is sent to data communication units in the described system configuration administration module by the communication schedule unit of network data processing module by described network data processing module, send to message processing unit by described data communication units, through sending through the network protocol analysis subelement after the format conversion, the packet of catching is carried out protocal analysis.
In sum, the present invention includes various test functions unit, by providing test parameter to described test function unit, the eurypalynous data flow emulation of high-performance and high accuracy, application simulation and the convenient easy-to-use test that meets the RFC standard have been realized, testing process is simple, and test result more accurately is provided.And,, increased extensibility and flexibility because physical interface and data processing unit are separated.Converting network interface integrated circuit board as required on the data processing unit basis of invariable is to adapt to the testing requirement to diverse network.
Description of drawings
Fig. 1 is the theory diagram of network simulation detection system of the present invention;
Fig. 2 is the flow chart of network simulation method of testing of the present invention;
Fig. 3 is the structural representation of system configuration administration module of the present invention;
Fig. 4 is the structural representation of network data processing module of the present invention;
Fig. 5 is the system construction drawing of the embodiment of the invention;
Fig. 6 is the connection diagram of the integrated circuit board FIDS1201 and the integrated circuit board FIDS1202 of the embodiment of the invention;
Fig. 7 is the structural representation of embodiment of the invention IXP1200 network processing unit inside;
Fig. 8 is the integrated circuit board FIDS1201 of the embodiment of the invention and the connection diagram of PC;
Fig. 9 is the related protocol hierarchy schematic diagram of system of the present invention;
Figure 10 is the physical interface schematic diagram of the integrated circuit board FIDS1202 of the embodiment of the invention;
Figure 11 is the integrated circuit board FIDS1202 internal structure schematic diagram of the embodiment of the invention;
Figure 12 carries out the test flow chart of test assignment for the embodiment of the invention;
Flow chart when Figure 13 is the test of embodiment of the invention emulation testing functional unit;
The hardware connection diagram of this invention test implementation complete one of Figure 14.
Embodiment
The present invention is described in further detail below in conjunction with the drawings and specific embodiments.
Referring to Fig. 1, be the theory diagram of network simulation detection system of the present invention; This system comprises: system configuration administration module 1, network data processing module 2 and Network Interface Module 3, described system configuration administration module 1 is communicated by letter with described network data processing module 2, is used for configuration testing parameter, test command and the return messages after the test are handled; Test command and test parameter that described network data processing module 2 receiving system Configuration Manager 1 send are finished corresponding test assignment according to described test command and test parameter, and test result are returned to described system configuration administration module 1; The integrated identical and/or networks of different type interface more than of described Network Interface Module 3 is used to connect different destination network devices or objective network, and described Network Interface Module 3 is connected with network data processing module 2.
Based on the network simulation method of testing of this system as shown in Figure 2, may further comprise the steps:
Step 100, by system configuration administration module configuration testing parameter and test command, and send to the network data processing module;
Step 101, described network data processing module are judged the type of test command, select corresponding emulation testing functional unit;
Step 102, described emulation testing functional unit are tested;
Step 103, described emulation testing functional unit send to described network data processing module with the relevant information of test, send to the system configuration administration module by described network data processing module.
Wherein, described system configuration administration module 1 is used to be provided with test parameter, test command, the test result that processing is returned, the structure of described system configuration administration module 1 as shown in Figure 3, comprise parameter configuration unit 11, message processing unit 12, data communication units 13 and display unit 14, described parameter configuration unit 11 is used for the configuration testing parameter, and described test parameter and corresponding test command are sent to described message processing unit 12;
Described message processing unit 12 is used for the conversion of message, the conversion that it carried out comprises two aspects, on the one hand, the test parameter and the corresponding test command that are sent by described parameter configuration unit 11 that receive are converted to the message that described network data processing module 2 can be discerned, send to described data communication units 13 again; On the other hand, the test return messages that described data communication units 13 is sent are converted to corresponding message, send to described display unit 14 again;
Described data communication units 13 is used for the forwarding of message, also comprise two aspects, on the one hand, the message of described message processing unit 12 conversions of the process that receives is sent to described network data processing module 2, on the other hand, the test return messages that described network data processing module 2 is sent send to described message processing unit 12;
Described display unit 14 is connected with described message processing unit 12 with described parameter configuration unit 11 respectively, is used for the test parameter of configurations shown and the test return messages that sent by described message processing unit 12.
As shown in Figure 4, structural representation for described network data processing module 2, in the present invention, concrete test to the network architecture and the network equipment is finished by described network data processing module 2, therefore, described network data processing module 2 comprises more than one emulation testing functional unit 221,222.....22m at least, is used to finish the various test assignments that system configuration administration module 1 is paid.Because the test assignment difference that system configuration administration module 1 sends, so, what the test assignment of at first wanting recognition system Configuration Manager 1 to send is, select corresponding emulation testing functional unit again, finish concrete test assignment by corresponding emulation testing functional unit again, and the various message after will testing return to system configuration administration module 1, inform test result.So, described network data processing module 2 also comprises communication schedule unit 21, described communication schedule unit 21 management emulation testing functional units 220,221.....22m, and communicate by letter with system configuration administration module 1, test parameter and test command according to 1 transmission of system configuration administration module, drive the work of corresponding emulation testing functional unit, finish corresponding test assignment.
The emulation testing functional unit is connected with network interface in the Network Interface Module 3, when carrying out network test, the parameter that described communication schedule unit 21 will receive the test needs that sent by system configuration administration module 1 is written in the internal storage location that defines, the emulation testing functional unit will be used these parameters when testing, the result that will test is written to as a result in the internal storage location simultaneously, described communication schedule unit 21 sends to system configuration administration module 1 (being client) with the result after reading the result by its interface routine, is shown by client.At this moment, according to different test requests, network interface is carried out different functions.As, when network protocol analysis emulation, network interface is responsible for catching packet; When network benchmark test (mainly being test router), network interface is responsible for packet is sent to target device, then the packet capture of sending from target device; In other emulation testing, network interface mainly is that the good packet of structure is sent to objective network or equipment, also will receive some packets such as TCP response packet simultaneously.
Need to prove, for various emulation testing functional units, wherein, the network data processing module is given with the result data of gathering in described network protocol analysis unit, after the network data processing resume module, give the system configuration administration module, analyze, carry out processing such as various forms, diagram then by the system configuration administration module.If client has needs, data processing module can filter (as only gathering the data of particular ip address) to the data of gathering.For other emulation testing functional units, mainly be to be used for transmission information, the information that send is that corresponding emulation testing functional unit produces, so do not need client analysis.Mainly process is, the user is configured by the system configuration administration module, then configuration information is passed to the network data processing module, and the required information of network data processing module structure is given Network Interface Module 3 and sent.Said process receives some confirmations (as the TCP acknowledgment bag) possibly in the implementation of task, but these packets need not given the system configuration administration module and analyze.The information of task run can send to client by the network data processing module in all functional units, is preserved with the form of form to the dynamic demonstration of user or the result by client.
The described test command of step 100 comprises the emulation testing order to network traffics, network application, network attack, network benchmark test and/or network protocol analysis; Correspondingly, the corresponding emulation testing functional unit of the module of network data processing described in the step 101 selection comprises network flow simulation unit, network application simulation unit, network attack simulation unit, network benchmark test unit and/or network protocol analysis unit.
Referring to Fig. 5, structural representation for the present invention's one specific embodiment, network simulation detection system of the present invention comprises system configuration administration module, network data processing module and Network Interface Module, wherein, adopt client/server (C/S) structural system between system configuration administration module and the network data processing module, the system configuration administration module mainly is to read some current configuring conditions, and the configuration item that provides at present comprises: the microcode release of current operation; The state of port (8 100,000,000 ports, 2 gigabit ports), whether port is in link state (port that only is in the Link state just can be used); The system configuration administration module is by sending configuration and the operation of request realization to emulation to the network data processing module, the network data processing module returns to the system configuration administration module with the emulation testing result, shows in client.
Concrete the showing as in the present embodiment of these three modules: the system configuration administration module is a PC30 who is mounted with control program, network data processing module and Network Interface Module integrate and form a hardware unit 31, and it is connected with PC30 by Ethernet.
Described hardware unit 31 is made up of two parts, is embodied in two hardware integrated circuit boards, is respectively integrated circuit board FIDS1201 and integrated circuit board FIDS1202, is connected with special interface by bus between two integrated circuit boards, as shown in Figure 6.
On function, integrated circuit board FIDS1201 correspondence be the network data processing module, main task is to carry out the processing of data; From hardware, comprise with the lower part: network processing unit, synchronous DRAM (Synchronous DRAM, abbreviation SDRAM), static random access memory (SRAM), flash memory (FLASH), three-state content addressing register hardware cells such as (TernaryContent Addressable Memory are called for short TCAM).SDRAM, SRAM have bus separately to be connected with the IXP1200 network processing unit; The TCAM module is made up of TCAM Bridge and the 2Mb TCAM that FPGA realizes, because the TCAM of SiberCore uses special-purpose interface definition, can't directly link to each other with the interface of network processing unit, therefore the XC2S200EFT256C-7FPGA that has used a slice Xilinx is as bridging chip, is used to finish the interface conversion between the 2Mb TCAM of the sram cell of IXP1200 network processing unit and Sibercore; The SRAM/SDRAMBUS of SRAM/SDRAM by 32/64 links to each other with SRAM/SDRAM unit in the IXP1200 network processing unit; The SRAM/SDRAM unit is connected on 32 position datawires of network processing unit inside; FLASH is connected with the SRAM bus.
Integrated circuit board FIDS1202 receives data from network, be responsible for reading by micro engine, handle (as revising packet header or forwarding) then accordingly, the descriptor of bag can leave among the SRAM, jumbo bag content part leaves among the SDRAM, handles if there is unusual packet just to give network processing unit.
In the present invention, by the core parts network processing unit of this integrated circuit board FIDS1201 and the function of the network data processing module 2 among other related elements realization Fig. 1, in the present embodiment, described network processing unit adopts the IXP1200 network processing unit based on the IXA notion that Intel Company produces.The internal structure of described IXP1200 network processing unit as shown in Figure 7.
From its internal structure as seen, the IXP1200 network processing unit has following characteristics:
1, parallel processing: the computational resource of 6 micro engines and a StrongARM formation IXP1200 network processing unit, share same asset, the IXP1200 network processing unit comprises: SDRAM unit, sram cell, PCI unit etc.Micro engine and StrongARM are risc processor, concurrent working.StrongARM is responsible for conviction control aspect task and micro engine management.Micro engine is responsible for the high-speed data packets of data plane, by the micro code program to 6 micro engine/24 hardware thread assignment difference in functionality, can realize the dynamic/static allotment of network load.The heavy duty of micro code program provides very big convenience for system software upgrading.
2, Distributed Storage structure: each micro engine independently uses 256 32 bit registers.Wherein 128 registers are transfer register collection.Each micro engine is written into oneself transfer register collection with data, and the transfer register collection is operated, and writes the data destination by the transfer register collection then.After data were written into the transfer register collection, micro engine can be finished visit at single command cycle.
3, hardware multithreading: each micro engine has 4 program counter, supports 4 hardware threads.Each thread can be carried out identical or different micro code program, adopts the internal thread communication mechanism to realize thread synchronization, improves system effectiveness.Micro-code instruction adopts 5 level production line mechanism, and the execution cycle is 1 clock cycle.
4, initiatively memory management: SDRAM unit and sram cell support a plurality of read-write formations to carry out priority queueing to optimize bandwidth.Allow StrongARM and 6 micro engine/24 threads to submit read-write requests simultaneously to internal storage location, internal storage location according to certain optimisation instruction the read-write requests hardware priority is lined up.The user can self-defined memory management optimisation strategy.
5, multilayer concurrency:, can realize that data are concurrent mobile: the two-way simultaneous read-write between SDRAM unit and micro engine or the IX Bus interface by a plurality of independent data buses and control bus; Two-way simultaneous read-write between sram cell and micro engine or the IX Bus interface; Read and write between SDRAM unit and the PCI unit; Read and write between IX Bus interface and the micro engine.
6, blocks of data moves: each micro engine distributes very big register set, single instruction just can realize that the data block of 64 bytes between the functional unit moves and functional unit and IX Bus interface between the data block of 128 bytes move.Blocks of data moves when making full use of the micro engine computational resource, can also reduce the scale of micro code program.
7, extensibility: a plurality of IXP1200 network processing units can be interconnected by IX Bus, thereby the disposal ability and the data-interfaces such as data bandwidth ATM, E1/T1, EthernetMAC that effectively increase treatment system can insert the IXP1200 network processing unit by IX Bus; The micro code program memory space of micro engine has extensibility.
Therefore, when the IXP1200 network processing unit being combined the formation network test system with PC, the schematic diagram that its functional module combines with hardware as shown in Figure 8, PC30 comprises system configuration administration module 1, and this system configuration administration module 1 comprises parameter configuration unit 11, message processing unit 12, data communication units 13 and display unit 14;
IXP1200 network processing unit and peripheral circuit thereof comprise communication schedule unit 21, above emulation testing functional unit 220,221.....22m.Wherein, described communication schedule unit 21 realizes that by the Strong ARM of IXP1200 network processing unit above emulation testing functional unit 220, a 221.....22m are finished jointly by micro engine and Strong ARM.
PC30 needs the project of test to carry out the configuration of parameter by 11 pairs of its parameter configuration unit, configure the back and issue message processing unit 12 together with test command, after message processing unit 12 converts the test parameter that receives and test command to IXP1200 network processing unit manageable data format, issue data communication units 13, issue the communication schedule unit 21 of IXP1200 network processing unit by data communication units 13, what communication schedule unit 21 judgements were carried out is any test, and test parameter sent to corresponding emulation testing functional unit, the emulation testing functional unit carries out dependence test; After the emulation testing functional unit tests, test result and related data are sent to communication schedule unit 21, send to message processing unit 12 by communication schedule unit 21 through data communication units 13,, send to display unit 14 and show through after the format conversion of message processing unit 12.
Wherein, the realization of other unit in the parameter configuration unit 11 in the system configuration administration module 1, message processing unit 12, data communication units 13 and display unit 14 and the system configuration administration module 1 is specifically finished by program.
The realization of the communication schedule unit 21 of IXP1200 network processing unit and peripheral circuit correspondence thereof, above emulation testing functional unit 220,221.....22m is specifically finished by control program.
Each emulation testing functional unit also will relate to relevant procotol when test.Below from the related protocol hierarchy of the layering native system of procotol, as shown in Figure 9, be used to realize the client control program (CCS) of system configuration administration module 1 and be used to realize that the communication scheduling program (CSS) of communication schedule unit 21 is application layer software, these two parts are realized communication at link layer by Ethernet, have used Transmission Control Protocol in transport layer.802.3u corresponding to the physical layer in the osi model, ETH corresponding data link layer is IP layer and TCP layer above then.That is to say that system configuration administration module and network data processing module are followed these control protocols and communicated.
As can be known from Fig. 9, the present invention is according to the different relevant procotols of function needs design.What use at bottom also is Ethernet, and 10/100M and two kinds of Ethernet interfaces of 1000M are provided.
Integrated circuit board FIDS1202 is the network interface integrated circuit board, and this integrated circuit board is integrated various relevant network interfaces as shown in figure 10, are the physical interface external interface of integrated circuit board FIDS1202.GE0, GE1 among the figure represent gigabit port, and FE0-7 represents 8 10M/100M self adaptation ports, and FE refers to a 10M/100M self adaptation port that is used for control programming, and cPCI represents CompactPCI, and RS232 refers to serial ports.Table 1 is the explanation to the present embodiment network interface.
Table 1
| Interface name | Specification | Function |
| FE | The 10/100M Ethernet interface, RJ45 interface, 100BASE-TX, 802.3u | Link to each other with the IXP1200 network processing unit by pci bus, in the network simulation testing equipment, realize linking to each other with PC (network simulation testing equipment control end hardware) card of surfing Internet. |
| CPCI | 32,66M, PCI2.2 | Can join with the cPCI slot |
| RS232 | Serial UART Port | Be used for debugging and control to the IXP1200 network processing unit |
| GE0, GE1 | The 1000M Ethernet interface, MT-RJ interface, 1000BASE | Network simulation test function port |
| -SX,802.3z | ||
| FE0-7 | The 10/100M Ethernet interface, RJ45 interface, 100BASE-TX, 802.3u | Network simulation test function port |
As can be seen from the above table, the FE Ethernet interface is the Ethernet interface that connects the StrongARM in client rs PC (system configuration administration module) and the hardware unit 31, be responsible for linking to each other with the network interface card of client rs PC, that is to say that the information of the required interchange of program that moves on the network data processing module is transmitted by Ethernet.GE0, GE1 are the gigabit ports when doing test emulation, are used for linking objective network or equipment; FE0-7 is 8 10/,100,000,000 ports, also is to be used for linking objective network or equipment.Both are the message transmission rate difference, have again, and gigabit port generally is an optical interface, can connect optical fiber.
Referring to Figure 11, internal structure schematic diagram for integrated circuit board FIDS1202, integrated circuit board FIDS1202 by gigabit Ethernet MAC chip I XF1002 and 100Mb ethernet mac chip I XF440 respectively with network processing unit in IX Bus interface is connected the transmission of realization data with SlowPort interface in the sram cell.Integrated circuit board FIDS1202 is connected with IXP1200 network processing unit among the integrated circuit board FIDS1201 by IX Bus and 32 SRAM Bus.Integrated circuit board FIDS1202 has two main modular, and wherein, FIDS1202-2 provides gigabit Ethernet network interface, and FIDS1202-1 provides the 100 m ethernet interface.By IX Bus swap data, simultaneously, the Slow Port interface by sram cell is to its configuration of being correlated with between FIDS1202 and the IXP1200 network processing unit.
Chip I XF1002 among the figure is the dried mbit ethernet MAC of the two-way chip that Intel Company provides, and this chip can independently provide the intelligent MAC port of high-performance of two-way gigabit, and it is by IX Bus and the direct seamless link of IXP1200 network processing unit.Full duplex serializer/deserializers SER/DES chip is the physical chip of gigabit Ethernet, and it can provide complete string and translation function, has merged the transmission-receiving function of gigabit Ethernet and fiber channel.Optic is a kind of optical transceiver of gigabit Ethernet, and the light transmitting-receiving interface of gigabit Ethernet is provided.Chip I XF440 is a kind of 8 road 100Mb ethernet mac chips that Intel provides, this chip provides 8 tunnel 100 m ethernet MAC interfaces independently, it also finishes seamless link with chip I XP1200 network processing unit by IX BUS, by 8 the tunnel independently the MII/SYM interface be connected with physical chip, realize chip configuration and management by cpu bus interface.Chip LXT9763 is a kind of Fast Ethernet physical layer interface chip with 6 tunnel independence MII interfaces, and it passes through the connection between chip H1063 realization and the external ethernet interface,
In addition, integrated circuit board FIDS1202 also comprises decoder EPLD and clock driver circuit (not shown), described decoder EPLD is used to realize necessary decoding logic, and clock driver circuit (Clock Driver) is used to realize that the clock between driving of IX BUS clock and the PHY chip drives.
At different networks, can select different network interface integrated circuit boards.As: the Ethernet emulation testing can select to support the network interface integrated circuit board of Ethernet interface, and the atm network emulation testing then can be used the atm network interface integrated circuit board.Network Interface Module is responsible for data that receive are issued the network data processing module, handle by it, and the data that the network data processing resume module is crossed sends, and specifically be the transmitting-receiving of being responsible for control data by the micro engine in the network processing unit (ME).
Hardware unit 31 has increased extensibility and flexibility with this design that network processing unit and network interface are separated.Extensibility shows as on the basis that keeps network processing unit integrated circuit board FIDS1201 converting network interface integrated circuit board as required, the FIDS1202 here provides the relevant interface of Ethernet, can also design the network interface integrated circuit board that is applicable to wide area network if desired, just can realize collaborative work with integrated circuit board FIDS1201 as long as new network interface integrated circuit board meets the relevant criterion of the Slow Port interface in IX Bus interface and the sram cell.
Because the system configuration administration module 1 that is used to carry out the test parameter configuration, sends test command and shows various information is loaded in PC30 in the mode of application program, be loaded on the hardware unit 31 with the mode of the concrete unit of testing and finish scheduling with application program, so, in order to realize a certain test assignment, when specifically carrying out test assignment, the two need be coupled together and just can test.
As shown in figure 12, for carrying out the test flow chart of a certain task, may further comprise the steps:
After hardware unit 31 executes corresponding emulation testing task, withdraw from the client control program, finish.
As shown in figure 13, be emulation testing functional unit test flow chart, from the angle that TCP connects, the client control program is TCP Client, is TCP Server and be used to finish scheduling in the hardware unit with the concrete unit of testing.
The present invention can finish the diverse network test, comprises the emulation testing to network traffics, network application, network attack, network benchmark test and/or network protocol analysis; For finishing above-mentioned emulation testing, control program at hardware unit 31 and loading thereof comprises corresponding emulation testing functional unit, as network flow simulation unit, network application simulation unit, network attack simulation unit, network benchmark test unit and network protocol analysis unit.Described emulation testing functional unit also comprises some subelements in order to finish its emulation testing task, and these subelements are cooperated mutually and finished its test assignment.In addition, at different emulation testings, parameter configuration unit in the described system configuration administration module comprises corresponding network flow simulation parameter configuration subelement, network application artificial tasks parameter configuration subelement, network attack simulation parameter configuration subelement, network benchmark test parameter configuration subelement and network protocol analysis parameter configuration subelement, in order to show to the parameter of various emulation testing configurations and the result after the test, information such as state, described display unit comprise that corresponding network flow simulation shows subelement, network application emulation shows subelement, network attack emulation shows subelement, network benchmark test shows that subelement and network protocol analysis show subelement.
Particularly, when described test command was test command to network traffics, described configuration testing parameter comprised: the selecting side slogan; The IP address of configured port, gateway address, subnet mask and flow constructing variable.The test that described emulation testing functional unit carries out comprises: the network flow simulation test, be specially: the task scheduling subelement in the described network flow simulation unit is according to the test parameter and the test command that receive, call corresponding packet constructor unit structure particular data packet, the described particular data packet that structure is good sends to objective network or destination network device by network interface; Described task scheduling subelement sends to data communication units in the described system configuration administration module with the communication schedule unit of relevant information by described network data processing module of test, sends to message processing unit by described data communication units and handles.
When described configuration testing order was test command to network application, described configuration testing parameter comprised: the IP address of configured port, gateway address, subnet mask; Configuration purpose IP address, destination interface, destination server performance parameter (integer between the 0-255, the processing speed of destination server are worth big more more slowly) and source IP address.Described emulation testing functional unit is tested and is comprised: the network application emulation testing, be specially: the task scheduling subelement in the described network application simulation unit is according to the test parameter and the test command of configuration, and calling task is carried out subelement and carried out corresponding task; What network application emulation testing of the present invention realized is exactly the TCP/HTTP test function in fact, and purpose is the responding ability of test specified server to the TCP/HTTP connection request of big data quantity.Simulator, is set up TCP with server and is connected, the disposal ability of testing server to the TCP connection request of specified server transmission big data quantity as client.Test index comprises: the TCP/HTTP linking number of foundation, the TCP/HTTP linking number of disconnection, keep the number etc.See that from the angle of hardware task carries out subelement and comprise StrongARM part and micro engine part, wherein the StrongARM task of partly finishing has: arp response program, purpose ARP obtain program; The task that micro engine is partly finished has: the control of packet reception, packet transmission, TCP request package structure, tcp state, TCP respond packet structure, HTTP request package structure, http response bag structure; Operation information in the described network application simulation unit collect subelement with the information of ruuning situation in real time the communication schedule unit by described network data processing module send to data communication units in the described system configuration administration module, send to message processing unit by described data communication units and handle.
When described configuration testing order was test command to network attack, described configuration testing parameter comprised: the IP address of configured port, gateway address, subnet mask; Dispose IP address, the port of effective target of attack; The network address is forged in configuration and the duration is attacked in configuration.The test that described emulation testing functional unit carries out comprises: the network attack emulation testing specifically comprises: the task scheduling subelement in the network attack simulation unit calls corresponding attack subelement according to test parameter and test command and launches a offensive; In attack process, attack subelement and receive packet; Described task scheduling subelement sends to data communication units in the described system configuration administration module with the corresponding information of the attack packets communication schedule unit by described network data processing module, sends to message processing unit by described data communication units and handles.
When described configuration testing order was test command to network benchmark test, described configuration testing parameter comprised: select transmit port and accept port; The selecting side slogan; IP address, gateway address and the subnet mask of configured port; Dispose current test-types, LOT test interval, time delay distribution and selection test assignment.Described emulation testing functional unit is tested and comprised: network benchmark test specifically comprises: call corresponding test subelement by the task scheduling subelement in the network benchmark test unit and test; Micro engine leaves the information of task run in certain memory cell in, and information and structure message that StrongARM reads task run in this memory cell are described system configuration administration module report to client.The information of these task runs comprises: the TCP connection request bag that has sent (SYN bag) number, the TCP that has set up connect TCP connection total, that disconnected RST total, that transmission SYN bag is received and wrap number, the HTTP GET number of transmission, the HTTP Abort number of transmission; Communication schedule unit by described network data processing module sends to the data communication units in the described system configuration administration module, sends to message processing unit by described data communication units and handles.In test process, operation message is dynamically to show (StrongARM sends once to client per two seconds), and the result preserves with the form of form.
When described configuration testing order was test command to network protocol analysis, described configuration testing parameter comprised: filtering protocol is set, receives the size of buffer memory; The mac address filter condition is set; IP address filtering condition is set and the ports filter condition is set.Described emulation testing functional unit is tested and comprised: network protocol analysis specifically comprises: the packet capture subelement in the described network protocol analysis unit carries out catching of packet; Described step 4 specifically comprises: the packet of catching is sent to data communication units in the described system configuration administration module by the communication schedule unit of network data processing module by described network data processing module, send to message processing unit by described data communication units, through sending through the network protocol analysis subelement after the format conversion, the packet of catching is carried out protocal analysis.
For example, test case one: to the benchmark test of the network equipments such as router.
In the present embodiment, the LOF situation with test network is an example.
The connection layout of its hardware carries out the configuration of parameter by PC30 as shown in figure 14, and wherein, 100,000,000 port ones of selecting hardware unit 31 select 100,000,000 ports 2 as receiving port as transmit port; Port IP address, gateway address, subnet mask are set, and the network settings of port guarantee that transmit port can be communicated with by router four 0 with receiving port; " test-types " selection " Frame Loss "; Configuration purpose MAC Address, source MAC; Configuration of IP stem and UDP stem.
PC30, just the parameter configuration unit in the system configuration administration module is got off the reference record of configuration, message processing unit converts these parameter informations to message that the network data processing module can be discerned, and the message after data communication units will be changed sends to the network data processing module.Communication schedule unit in the network data processing module receives from the test command of system configuration administration module and the parameter information of configuration, and to judge described test be network benchmark test, calls network benchmark test unit this moment.Task scheduling subelement call frame Loss Rate test subelement in the network benchmark test unit, by described frame loss rate test subelement information structuring packet, the packet that structure is good sends to destination router by Network Interface Module.Packet by destination router is caught by interface, and received by network benchmark test unit, the statistical information that receives data packet number can send to the system configuration administration module by network benchmark test unit record and by communication schedule unit, after the data communication units of system configuration administration module receives these statistical informations, send to message processing unit, its these information translation become can be for the message that shows, final result shows that by the network benchmark test in the display unit subelement is shown to the user.Can pass through the data communication that sampler (Sniffer) 50 is observed between them.
Can show the statistical information of the packet that sends and receive at PC30, the user can see the loss situation of frame significantly.
Test case two, network protocol analysis.
At first, with this test macro one 100,000,000 port be connected in the network, be to be connected on the HUB here, the port of selective reception data on PC30 (as 0-7 number 100,000,000 ports) is provided with the size of buffering area, is 1,000,000 here, downloads template begins to carry out.
Data communication units sends to test parameter and test command the communication schedule unit of network data processing module, described communication schedule unit is called the network protocol analysis unit, packet is caught from network interface in the network protocol analysis unit, carries out protocal analysis and decoding.
Analysis and decoded packet can send to the system configuration administration module by communication schedule unit, and the system configuration administration module deposits these packets in buffering area, just show that by network protocol analysis subelement shows on PC30 when buffering area has been expired.
The system configuration administration module 1 that is used to finish the test parameter configuration, sends test command and shows various information is loaded in PC30 in the mode of application program, so described parameter configuration unit is integrated into the client end interface that is loaded in the control program on the PC30 with corresponding display unit.Many file structures (MDI) are adopted at this application client interface, and this mainly is to consider that native system has a plurality of emulation testing functional units, need to show a plurality of views, and simple single document structure (SDI) can't satisfy the demands.Therefore adopt many file structures, can handle the coordination of each unit and processing messages effectively so well.What this client end interface outward appearance was mainly taked is Outlook Bar style, allows the user choose the functional unit of oneself wanting easily, adds several tool state hurdles and represents state, and the user is had at fingertips to the state of emulation test system.
The client end interface of this application program is corresponding to parameter configuration unit 11 and display unit 14, and the handling procedure of this application program, algorithm are corresponding to message processing unit 12 and data communication units 13.This client end interface comprise with hardware unit in the corresponding interfaces windows of each emulation testing functional unit, information such as the state of required parameter, parameter type, data and test, result when being used to show the test of emulation testing functional unit.
Whole testing process is: after having disposed relevant parameter in the interface corresponding to a certain emulation testing functional unit, sending concrete test command, message processing unit 12 is converted to corresponding message with parameter, test command and gives data communication units 13, message sends to communication schedule unit 21 in the hardware unit 31 by data communication units 13, handles and carry out function corresponding by communication schedule unit 21.
Equally, when the communication schedule unit in the hardware unit 31 21 will be returned state that task or operation carry out and as a result the time, receive by data communication units 13 earlier, give message processing unit 12 then and handle, mail to corresponding interfaces windows interface and interface tool hurdle then and show.
The interface of corresponding each emulation testing functional unit has nothing in common with each other according to the characteristics of himself, as different parameter types, is used to show the different viewing areas of moving message etc.
The network simulation measuring system can help network equipment development enterprise to make up real network measure environment with the fastest speed, the problem that phase-split network equipment exists, and the bottleneck of discovering device finally improves the quality of products, and promotes Enterprises'Competitiveness.
The 100M port of network flow simulation unit and 1000M port all can be realized sending near the packet of linear speed, the packet of 64 bytes can realize 148,809 per seconds (100M port), 1,488,095 per second (1000M port), and the traffic volume that can successful control data bag and the transmission rate of packet.This data traffic emulation for customization special speed, specified quantitative and certain content provides good assurance.In addition, good data bag transmitting capacity provides expansion interface easily for follow-up function expansion of the present invention.
The network application simulation unit has successfully realized emulation of TCP client and HTTP Get emulation.Single 100,000,000 ports support simultaneously that greater than 1,950 000 TCP connects, and 8 100,000,000 ports can be worked simultaneously.A workable gigabit port can support 15,000,000 TCP to connect simultaneously.If the TCP server performance is enough, 100,000,000 ports can be set up greater than 60,000 TCP connections each second, and gigabit port can be set up greater than 350,000 TCP connections each second.100,000,000 port HTTP Get transmission rates are greater than 30,000 per seconds, and gigabit port is greater than 300,000 per seconds.
The network attack simulation unit has realized that successfully the two-forty of 11 types of attack packets sends, and 100,000,000 all can reach more than 85% with the transmission rate of gigabit port attack packets.Simultaneously, can accurately control the transmission number and the transmission rate of attack packets, help realizing the attack effect assessment.
The gigabit port of network benchmark test unit has successfully realized 4 kinds of benchmark test functions, can realize the linear speed transmitting-receiving of test frame.Aspect delay testing, the intrinsic time delay that each packet is transmitted is relatively stable.
The network protocol analysis unit has realized that the linear speed of packet catches, and can successfully realize the filtration of packet, has realized the layer 2-3 protocol-decoding.
It should be noted last that: above embodiment is only unrestricted in order to explanation the present invention, although the present invention is had been described in detail with reference to preferred embodiment, those of ordinary skill in the art is to be understood that, can make amendment or be equal to replacement the present invention, and not breaking away from the spirit and scope of the present invention, it all should be encompassed in the middle of the claim scope of the present invention.
Claims (10)
1, a kind of network simulation detection system, comprise system configuration administration module, network data processing module and Network Interface Module, wherein, described system configuration administration module and described network data processing module communication, be used for the configuration testing parameter, test parameter and test command are sent to described network data processing module, receive and handle the information that described network data processing module is returned; Described network data processing module receives test command and the test parameter that described system configuration administration module sends, and finishes corresponding test assignment according to described test command and test parameter, and test result is returned to described system configuration administration module; The integrated more than one network interface of described Network Interface Module, described network interface is connected with described network data processing module, the data that are used for receiving send to described network data processing module, and perhaps that described network data processing resume module is intact data send to objective network or destination network device.
2, network simulation detection system according to claim 1, it is characterized in that, described system configuration administration module comprises parameter configuration unit, message processing unit, data communication units and display unit, described parameter configuration unit is used for configuration testing parameter and test command, and described test parameter and test command are sent to described message processing unit;
Described message processing unit is used for the conversion or the processing of message, after the test parameter that is sent by described parameter configuration unit/described data communication units that receives and corresponding test command/return messages are converted to corresponding message, send to described data communication units/described display unit;
Described data communication units is used for the forwarding of message, to described network data processing module, or the return messages that described network data processing module is sent send to described message processing unit with the forwards that is sent by described message processing unit that receives;
Described display unit is connected with described message processing unit with described parameter configuration unit respectively, is used for the test parameter of configurations shown and the return messages that sent by described message processing unit.
3, network simulation detection system according to claim 1 and 2, it is characterized in that, described network data processing module comprises communication schedule unit, an above emulation testing functional unit, wherein, described communication schedule unit is connected with described system configuration administration module, receive its test parameter that sends and test command, judge the type of described test parameter and test command, described test parameter and test command are sent to corresponding emulation testing functional unit, and the result of described emulation testing functional unit test is returned to described system configuration administration module;
Described emulation testing functional unit is finished concrete test assignment according to test parameter and test command, and test result is returned to communication schedule unit.
4, network simulation detection system according to claim 3, it is characterized in that described emulation testing functional unit is in network flow simulation unit, network application simulation unit, network attack simulation unit, network benchmark test simulation unit and the network protocol analysis simulation unit one or several arbitrarily.
5, network simulation detection system according to claim 4, it is characterized in that described parameter configuration unit comprises in network flow simulation parameter configuration subelement, network application simulation parameter configuration subelement, the configuration of network attack simulation parameter subelement, network benchmark test parameter configuration subelement and the network protocol analysis parameter configuration subelement one or several arbitrarily.
6, a kind of network simulation method of testing based on the arbitrary described system of claim 1-5 may further comprise the steps:
Step 1, by system configuration administration module configuration testing parameter and test command, and described test parameter and test command sent to the network data processing module;
Step 2, described network data processing module are judged the type of described test parameter and test command, select corresponding emulation testing functional unit;
Step 3, described emulation testing functional unit carry out corresponding emulation testing;
Step 4, described emulation testing functional unit send to described network data processing module with the relevant information of test, send to described system configuration administration module by described network data processing module.
7, network simulation method of testing according to claim 6 is characterized in that, described step 1 may further comprise the steps:
Step 11, configuration testing parameter and test command;
Step 12, described test parameter and test command are converted to the message that described network data processing module can be discerned;
Step 13, will through the conversion after test parameter and test command send to described network data processing module.
8, according to claim 6 or 7 described network simulation method of testings, it is characterized in that the described test command of step 1 comprises the emulation testing order to network traffics, network application, network attack, network benchmark test and/or network protocol analysis; Correspondingly, the corresponding emulation testing functional unit of the module of network data processing described in the step 2 selection comprises network flow simulation unit, network application simulation unit, network attack simulation unit, network benchmark test simulation unit and/or network protocol analysis simulation unit.
9, network simulation method of testing according to claim 8 is characterized in that, the configuration testing order described in the step 11 is the test command to network traffics, and described configuration testing parameter comprises: the selecting side slogan; The IP address of configured port, gateway address, subnet mask and flow constructing variable;
The functional unit of emulation testing described in the step 3 carries out corresponding emulation testing and comprises: the network flow simulation test, be specially: the task scheduling subelement in the described network flow simulation unit is according to the test parameter and the test command that receive, call corresponding packet constructor unit structure particular data packet, the described particular data packet that structure is good sends to objective network or destination network device by network interface;
Described step 4 specifically comprises: described task scheduling subelement sends to data communication units in the described system configuration administration module with the communication schedule unit of relevant information by described network data processing module of test, sends to described message processing unit by described data communication units and handles.
10, network simulation method of testing according to claim 8, it is characterized in that, configuration testing order described in the step 11 is the test command to network application, and described configuration testing parameter comprises: IP address, gateway address and the subnet mask of configured port; Configuration purpose IP address, destination interface, destination server performance parameter and source IP address;
The functional unit of emulation testing described in the step 3 carries out corresponding emulation testing and comprises: the network application emulation testing, be specially: the task scheduling subelement in the described network application simulation unit is according to the test parameter and the test command of configuration, and calling task is carried out subelement and carried out corresponding task;
Described step 4 specifically comprises: operation information in the described network application simulation unit collect subelement with the information of ruuning situation in real time the communication schedule unit by described network data processing module send to data communication units in the described system configuration administration module, send to message processing unit by described data communication units and handle.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB200510012183XA CN100369423C (en) | 2005-07-14 | 2005-07-14 | Network simulation detection system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB200510012183XA CN100369423C (en) | 2005-07-14 | 2005-07-14 | Network simulation detection system and method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1750485A true CN1750485A (en) | 2006-03-22 |
| CN100369423C CN100369423C (en) | 2008-02-13 |
Family
ID=36605753
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB200510012183XA Expired - Fee Related CN100369423C (en) | 2005-07-14 | 2005-07-14 | Network simulation detection system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100369423C (en) |
Cited By (30)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2007115461A1 (en) * | 2006-04-10 | 2007-10-18 | Huawei Technologies Co., Ltd. | A test system and test method |
| WO2007118390A1 (en) * | 2006-04-13 | 2007-10-25 | Huawei Technologies Co., Ltd. | An emulation test device and method |
| CN100420209C (en) * | 2006-06-15 | 2008-09-17 | 哈尔滨工程大学 | Credible network simulation system of automatic conceptual contrast |
| WO2009062411A1 (en) * | 2007-11-14 | 2009-05-22 | Huawei Technologies Co., Ltd. | Method and device for implementing test |
| CN101945016A (en) * | 2009-07-09 | 2011-01-12 | 中兴通讯股份有限公司 | Method and device for testing stability of device webmaster |
| CN101969476A (en) * | 2010-09-25 | 2011-02-09 | 清华大学 | Communication mode management method and system for emulating semiconductor manufacturing equipment |
| CN102006308A (en) * | 2010-12-16 | 2011-04-06 | 成都西麦克虚拟现实电子技术有限公司 | High compatibility real-time simulation data network |
| CN101141765B (en) * | 2007-07-11 | 2011-04-20 | 中兴通讯股份有限公司 | Network simulation method in mobile communication system |
| CN102075362A (en) * | 2011-01-25 | 2011-05-25 | 王钰 | Communication network simulation method and system |
| CN102123058A (en) * | 2011-01-19 | 2011-07-13 | 北京神州绿盟信息安全科技股份有限公司 | Test equipment and method for testing network protocol decoder |
| CN102130898A (en) * | 2010-09-09 | 2011-07-20 | 华为技术有限公司 | Simulation method, device and system |
| CN101478442B (en) * | 2008-01-02 | 2011-11-30 | 中兴通讯股份有限公司 | Tool, system and method for networking simulation test |
| CN101286851B (en) * | 2008-03-27 | 2011-12-07 | 华南理工大学 | Detecting method of GTP status detecting firewall based on network processor |
| CN101447991B (en) * | 2008-11-19 | 2012-10-24 | 中国人民解放军信息安全测评认证中心 | Test device used for testing intrusion detection system and test method thereof |
| CN101447898B (en) * | 2008-11-19 | 2012-12-05 | 中国人民解放军信息安全测评认证中心 | Test system used for network safety product and test method thereof |
| CN102857480A (en) * | 2011-06-30 | 2013-01-02 | 北京新媒传信科技有限公司 | Data collecting system and data collecting method thereof |
| CN103067958A (en) * | 2012-12-28 | 2013-04-24 | 中国科学院深圳先进技术研究院 | Network convergence testing method and system of wireless sensor network and mobile communication network |
| CN103236955A (en) * | 2013-04-08 | 2013-08-07 | 汉柏科技有限公司 | Method for testing network equipment performance based on software |
| CN103580954A (en) * | 2013-10-29 | 2014-02-12 | 盛科网络(苏州)有限公司 | Device and method for verifying switch chip through software simulation |
| CN103685028A (en) * | 2013-11-30 | 2014-03-26 | 许继电气股份有限公司 | Method and device allowing mutual communication of multi-type ports |
| CN104868953A (en) * | 2015-04-17 | 2015-08-26 | 中国科学院光电技术研究所 | Extensible multi-channel serial port optical transmitter and receiver based on FPGA |
| CN105187257A (en) * | 2015-09-29 | 2015-12-23 | 中国舰船研究设计中心 | Warship combat system simulator system and information processing method thereof |
| WO2016197616A1 (en) * | 2015-06-12 | 2016-12-15 | 中兴通讯股份有限公司 | Method and apparatus for testing router |
| CN107579862A (en) * | 2017-10-17 | 2018-01-12 | 北京安控科技股份有限公司 | A kind of method of measuring apparatus network communications capability |
| CN110728009A (en) * | 2018-06-28 | 2020-01-24 | 北京京东尚科信息技术有限公司 | Simulation method, device and system |
| CN112070231A (en) * | 2019-06-10 | 2020-12-11 | 国际商业机器公司 | Data slicing for machine learning performance testing and improvement |
| CN112804124A (en) * | 2021-02-03 | 2021-05-14 | 上海交通大学 | Test bed and test method for time-sensitive network equipment |
| CN114244578A (en) * | 2021-11-24 | 2022-03-25 | 浙江中控技术股份有限公司 | Method, system, equipment and medium for testing protection capability of communication card |
| CN114301820A (en) * | 2021-12-25 | 2022-04-08 | 江苏信而泰智能装备有限公司 | Test port reservation method, device, equipment and readable storage medium |
| CN115102882A (en) * | 2022-06-29 | 2022-09-23 | 龙芯中科(北京)信息技术有限公司 | Test module, test device and test method of physical transceiver |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7356736B2 (en) * | 2001-09-25 | 2008-04-08 | Norman Asa | Simulated computer system for monitoring of software performance |
| CN1231032C (en) * | 2002-07-22 | 2005-12-07 | 华为技术有限公司 | Network protocol measuring method and measuring system thereof |
| CN100486182C (en) * | 2002-12-28 | 2009-05-06 | 鸿富锦精密工业(深圳)有限公司 | Network test equipment, system and method |
| CN100394729C (en) * | 2004-09-17 | 2008-06-11 | 华中科技大学 | Complex detecting system for storage server property |
-
2005
- 2005-07-14 CN CNB200510012183XA patent/CN100369423C/en not_active Expired - Fee Related
Cited By (44)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2007115461A1 (en) * | 2006-04-10 | 2007-10-18 | Huawei Technologies Co., Ltd. | A test system and test method |
| WO2007118390A1 (en) * | 2006-04-13 | 2007-10-25 | Huawei Technologies Co., Ltd. | An emulation test device and method |
| CN100420209C (en) * | 2006-06-15 | 2008-09-17 | 哈尔滨工程大学 | Credible network simulation system of automatic conceptual contrast |
| CN101141765B (en) * | 2007-07-11 | 2011-04-20 | 中兴通讯股份有限公司 | Network simulation method in mobile communication system |
| WO2009062411A1 (en) * | 2007-11-14 | 2009-05-22 | Huawei Technologies Co., Ltd. | Method and device for implementing test |
| EP2211521A4 (en) * | 2007-11-14 | 2010-10-27 | Huawei Tech Co Ltd | Method and device for implementing test |
| EP2211521A1 (en) * | 2007-11-14 | 2010-07-28 | Huawei Technologies Co., Ltd. | Method and device for implementing test |
| US8493876B2 (en) | 2007-11-14 | 2013-07-23 | Huawei Technologies Co., Ltd. | Method and apparatus for realizing a test |
| CN101159742B (en) * | 2007-11-14 | 2012-12-12 | 华为技术有限公司 | Method and device of implementing test |
| CN101478442B (en) * | 2008-01-02 | 2011-11-30 | 中兴通讯股份有限公司 | Tool, system and method for networking simulation test |
| CN101286851B (en) * | 2008-03-27 | 2011-12-07 | 华南理工大学 | Detecting method of GTP status detecting firewall based on network processor |
| CN101447898B (en) * | 2008-11-19 | 2012-12-05 | 中国人民解放军信息安全测评认证中心 | Test system used for network safety product and test method thereof |
| CN101447991B (en) * | 2008-11-19 | 2012-10-24 | 中国人民解放军信息安全测评认证中心 | Test device used for testing intrusion detection system and test method thereof |
| CN101945016A (en) * | 2009-07-09 | 2011-01-12 | 中兴通讯股份有限公司 | Method and device for testing stability of device webmaster |
| CN102130898A (en) * | 2010-09-09 | 2011-07-20 | 华为技术有限公司 | Simulation method, device and system |
| CN102130898B (en) * | 2010-09-09 | 2013-11-06 | 华为技术有限公司 | Simulation method, device and system |
| CN101969476B (en) * | 2010-09-25 | 2012-12-19 | 清华大学 | Communication mode management method and system for emulating semiconductor manufacturing equipment |
| CN101969476A (en) * | 2010-09-25 | 2011-02-09 | 清华大学 | Communication mode management method and system for emulating semiconductor manufacturing equipment |
| CN102006308A (en) * | 2010-12-16 | 2011-04-06 | 成都西麦克虚拟现实电子技术有限公司 | High compatibility real-time simulation data network |
| CN102123058A (en) * | 2011-01-19 | 2011-07-13 | 北京神州绿盟信息安全科技股份有限公司 | Test equipment and method for testing network protocol decoder |
| CN102075362A (en) * | 2011-01-25 | 2011-05-25 | 王钰 | Communication network simulation method and system |
| CN102857480B (en) * | 2011-06-30 | 2014-12-10 | 北京新媒传信科技有限公司 | Data collecting system and data collecting method thereof |
| CN102857480A (en) * | 2011-06-30 | 2013-01-02 | 北京新媒传信科技有限公司 | Data collecting system and data collecting method thereof |
| CN103067958A (en) * | 2012-12-28 | 2013-04-24 | 中国科学院深圳先进技术研究院 | Network convergence testing method and system of wireless sensor network and mobile communication network |
| CN103067958B (en) * | 2012-12-28 | 2017-02-08 | 中国科学院深圳先进技术研究院 | Network convergence testing method and system of wireless sensor network and mobile communication network |
| CN103236955A (en) * | 2013-04-08 | 2013-08-07 | 汉柏科技有限公司 | Method for testing network equipment performance based on software |
| CN103580954A (en) * | 2013-10-29 | 2014-02-12 | 盛科网络(苏州)有限公司 | Device and method for verifying switch chip through software simulation |
| CN103685028B (en) * | 2013-11-30 | 2018-06-12 | 许继电气股份有限公司 | The method and device that polymorphic type port is in communication with each other |
| CN103685028A (en) * | 2013-11-30 | 2014-03-26 | 许继电气股份有限公司 | Method and device allowing mutual communication of multi-type ports |
| CN104868953A (en) * | 2015-04-17 | 2015-08-26 | 中国科学院光电技术研究所 | Extensible multi-channel serial port optical transmitter and receiver based on FPGA |
| CN104868953B (en) * | 2015-04-17 | 2017-11-24 | 中国科学院光电技术研究所 | Extensible multi-channel serial port optical transmitter and receiver based on FPGA |
| WO2016197616A1 (en) * | 2015-06-12 | 2016-12-15 | 中兴通讯股份有限公司 | Method and apparatus for testing router |
| CN105187257A (en) * | 2015-09-29 | 2015-12-23 | 中国舰船研究设计中心 | Warship combat system simulator system and information processing method thereof |
| CN105187257B (en) * | 2015-09-29 | 2018-04-27 | 中国舰船研究设计中心 | A kind of Shipborne Combat System simulator system and its information processing method |
| CN107579862A (en) * | 2017-10-17 | 2018-01-12 | 北京安控科技股份有限公司 | A kind of method of measuring apparatus network communications capability |
| CN107579862B (en) * | 2017-10-17 | 2021-05-18 | 北京安控科技股份有限公司 | Method for measuring network communication capability of equipment |
| CN110728009A (en) * | 2018-06-28 | 2020-01-24 | 北京京东尚科信息技术有限公司 | Simulation method, device and system |
| CN112070231A (en) * | 2019-06-10 | 2020-12-11 | 国际商业机器公司 | Data slicing for machine learning performance testing and improvement |
| CN112804124A (en) * | 2021-02-03 | 2021-05-14 | 上海交通大学 | Test bed and test method for time-sensitive network equipment |
| CN112804124B (en) * | 2021-02-03 | 2022-10-25 | 上海交通大学 | Test bed and test method for time-sensitive network equipment |
| CN114244578A (en) * | 2021-11-24 | 2022-03-25 | 浙江中控技术股份有限公司 | Method, system, equipment and medium for testing protection capability of communication card |
| CN114244578B (en) * | 2021-11-24 | 2024-05-10 | 浙江中控技术股份有限公司 | Method, system, equipment and medium for testing protection capability of communication card |
| CN114301820A (en) * | 2021-12-25 | 2022-04-08 | 江苏信而泰智能装备有限公司 | Test port reservation method, device, equipment and readable storage medium |
| CN115102882A (en) * | 2022-06-29 | 2022-09-23 | 龙芯中科(北京)信息技术有限公司 | Test module, test device and test method of physical transceiver |
Also Published As
| Publication number | Publication date |
|---|---|
| CN100369423C (en) | 2008-02-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1750485A (en) | Network simulation detection system and method | |
| US11388053B2 (en) | Programmable protocol parser for NIC classification and queue assignments | |
| Afanasyev et al. | ndnSIM: NDN simulator for NS-3 | |
| CN103259735B (en) | A kind of communication means of the programmable virtual router based on NetFPGA | |
| CN102334112A (en) | Method and system for virtual machine networking | |
| CN102387045B (en) | Embedded point to point (P2P) flow monitoring system and method thereof | |
| CN105812340B (en) | A kind of method and apparatus of virtual network access outer net | |
| CN103916314A (en) | Message transmitting control method, related device and physical host | |
| CN1617526A (en) | Method and device for emulating multiple logic port on a physical poet | |
| CN1874313A (en) | Method of processing packet and metwork device | |
| CN1875585A (en) | Dynamic unknown L2 flooding control with MAC limits | |
| CN107623632B (en) | DPDK-based network protocol connection method and system | |
| US20090210601A1 (en) | Systems and methods for providing a virtual network interface connection ("nic") with the baseboard management controller ("bmc") | |
| CN101035033A (en) | Message mirroring method and network device for supporting the remote message mirror | |
| CN1549531A (en) | Apparatus for testing network equipment transmission performance and method thereof | |
| CN100336349C (en) | Implementation method and system for testing consistency of border gateway protocol of supporting IPv6 | |
| CN103281335A (en) | Embedded network protocol stack development method based on WinPcap | |
| Li et al. | SDN components and OpenFlow | |
| Wang et al. | Design and implementation of FC-AE-ASM data acquisition and forwarding system | |
| Martinek et al. | Netcope: Platform for rapid development of network applications | |
| CN1914866A (en) | Distributed finite state machine | |
| CN103618641B (en) | Data packet detecting and monitoring system based on multiple-core network processor and capable of being deployed fast | |
| CN102523208A (en) | Application layer protocol parallel processing method under multi-core architecture | |
| Scano et al. | Enabling p4 network telemetry in edge micro data centers with kubernetes orchestration | |
| Ewais et al. | A framework integrating FPGAs in VNF networks |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| EE01 | Entry into force of recordation of patent licensing contract |
Assignee: Captech Information Auditing System Technology (Beijing) Co., Ltd. Assignor: Niu Wei|Xu Yafei|Guo Shize|He Shaojun|Liu Zhiming|Chen Zheyi Contract fulfillment period: 2008.8.15 to 2013.8.14 contract change Contract record no.: 2008990001188 Denomination of invention: Network simulation detection system and method Granted publication date: 20080213 License type: Exclusive license Record date: 20081114 |
|
| LIC | Patent licence contract for exploitation submitted for record |
Free format text: EXCLUSIVE LICENSE; TIME LIMIT OF IMPLEMENTING CONTACT: 2008.8.15 TO 2013.8.14; CHANGE OF CONTRACT Name of requester: STATE XINGYE AUDIT INFORMATION SYSTEMS TECHNOLOGY Effective date: 20081114 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20080213 Termination date: 20140714 |
|
| EXPY | Termination of patent right or utility model |