|
|||||
|
|
| 基于WinPcap的实时网络监测系统 | |
| 引用本文: | 谢鲲,张大方,文吉刚,谢高岗.基于WinPcap的实时网络监测系统[J].湖南大学学报(自然科学版),2006,33(2):118-121. |
| 作者姓名: | 谢鲲 张大方 文吉刚 谢高岗 |
| 作者单位: | 1. 湖南大学,计算机与通信学院,湖南,长沙,410082 2. 湖南大学,软件学院,湖南,长沙,410082 3. 中国科学院计算技术研究所,信息网络研究室,北京,100008 |
| 基金项目: | 国家自然科学基金资助项目(60473031,60273070,60403031),国家863高技术研究发展计划资助项目(2005AA121560) |
| 摘 要: | 实现了一个基于WinPcap的实时网络流量监测系统,完成了数据包级和流级的流量指标,包括2~7层协议分布,不同协议的流量速率,包大小分布,不同聚集程度的流分布,前N名的IP主机和主机对分布等;并提供网络运行状态的告警指标.实验结果表明,对于100 M以太网,基于WinPcap的软件捕获流量监测程序的处理上限为60 000 packet/s,完全可以胜任100 M以太网监测需求. |
| 关 键 词: | 流量分析 被动网络测试 计算机网络 网络协议 |
| 文章编号: | 1000-2472(2006)02-0118-04 |
| 收稿时间: | 08 29 2005 12:00AM |
| 修稿时间: | 2005-08-29 |
A Real-Time Network Monitor System Based on WinPcap |
|
| XIE Kun,ZHANG Da-fang,WEN Ji-gang,XIE Gao-gang.A Real-Time Network Monitor System Based on WinPcap[J].Journal of Hunan University(Naturnal Science),2006,33(2):118-121. | |
| Authors: | XIE Kun ZHANG Da-fang WEN Ji-gang XIE Gao-gang |
| Institution: | 1. College of Computer and Communication, Hunan Univ, Changsha,Hunan 410082,China; 2. College of Software, Hunan Univ,Changsha,Hunan 410082,China; 3. Institute of Computing Technology, Chinese Academy of Sciences, Beijing 100080,China |
| Abstract: | This paper provided a real-time network monitor system based on WinPcap, which supported packet level and flow level traffic metrics such as link utilization, protocol distribution in 2-7 protocol levels, various aggravated flow distribution, top NIP host and IP host pair. The monitor system also supported network worrying and alert statistics. Performance evaluations have shown that the monitor system can process up to 60 000 packets per sec on 100 M Ethernet link. This demonstrates that the software network monitor system is applicable to 100 M Ethernet Networks. |
| Keywords: | network traffic analysis passive network measurement computer network network protocols |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |
| 点击此处可从《湖南大学学报(自然科学版)》浏览原始摘要信息 | |
| 点击此处可从《湖南大学学报(自然科学版)》下载免费的PDF全文 | |