IPC분류정보
국가/구분 |
United States(US) Patent
등록
|
국제특허분류(IPC7판) |
|
출원번호 |
UP-0831452
(2004-04-22)
|
등록번호 |
US-7627669
(2009-12-16)
|
발명자
/ 주소 |
- Dugatkin, Diego
- Hannel, Clifford
|
출원인 / 주소 |
|
대리인 / 주소 |
|
인용정보 |
피인용 횟수 :
10 인용 특허 :
62 |
초록
▼
Automated capturing and characterization of network traffic using feedback is described. A method may include capturing network traffic, compiling network traffic data based on the network traffic, analyzing the network traffic data, and automatically providing instructions based on the analyzing to
Automated capturing and characterization of network traffic using feedback is described. A method may include capturing network traffic, compiling network traffic data based on the network traffic, analyzing the network traffic data, and automatically providing instructions based on the analyzing to control the capturing and the compiling. A system on which the method may execute may include one or more chassis or computing devices having one or more network cards. The chassis and/or the computing devices may be connected to one or more networks, and may be connected to one another. A system that implements the method may include collectors, characterization units, and a feedback controller.
대표청구항
▼
It is claimed: 1. A method to capture and analyze network traffic performed by a network testing system coupled with a network, the network testing system including a plurality of network cards, the network testing system including software which when executed causes the network testing system to p
It is claimed: 1. A method to capture and analyze network traffic performed by a network testing system coupled with a network, the network testing system including a plurality of network cards, the network testing system including software which when executed causes the network testing system to perform actions comprising: capturing network traffic from the network based on a first set of filters compiling network traffic data based on the network traffic, wherein the network traffic data includes at least one of protocol distribution data, length distribution data, transaction distribution data, header information, and payload data computing basic statistics based on the network traffic data sorting the network traffic data to determine network traffic distribution data automatically preparing amended filters based on the network traffic data, the basic statistics and the network traffic distribution data capturing additional network traffic based on the amended filters compiling additional network traffic data based on the additional network traffic performing analysis of the additional network traffic data to produce a network traffic characterization. 2. The method of claim 1 further comprising: preparing refined analysis instructions based on the network traffic characterization performing analysis of the network traffic data based on the refined analysis instructions. 3. The method of claim 2 further comprising: preparing refined filters based on at least the network traffic characterization performing analysis of the additional network traffic data based on the refined filters. 4. The method of claim 1 further comprising providing a user interface to a user receiving user defined filters capturing network traffic based on the user defined filters. 5. The method of claim 4 further comprising receiving a network traffic analysis specification from the user. 6. The method of claim 1 wherein the network traffic includes a plurality of data units adhering to a plurality of communications protocols. 7. The method of claim 6 wherein the plurality of communications protocols includes at least a User Datagram Protocol (UDP), a Transmission Control Protocol (TCP), and a Hypertext Transfer Protocol (HTTP). 8. A machine readable medium having instructions stored thereon which when executed by a processor cause a network testing system to perform operations comprising: capturing network traffic from a network based on filters compiling network traffic data based on the capturing, wherein the network traffic data includes at least one of protocol distribution data, length distribution data, transaction distribution data, header information, and payload data analyzing the network traffic data to produce a network traffic characterization successively refining the capturing and the compiling based on the network traffic characterization, the successively refining including automatically providing a first set of instructions to control the capturing and the compiling, the first set of instructions based on the analyzing preparing a second set of instructions based on the network traffic characterization providing the second set of instructions to control the analyzing preparing generated network traffic based on the network traffic characterization transmitting the generated network traffic onto the network. 9. The machine readable medium of claim 8 wherein the network traffic is comprised of a plurality of data units adhering to a plurality of communications protocols. 10. The method of claim 9 wherein the plurality of communication protocols includes at least a User Datagram Protocol (UDP), a Transmission Control Protocol (TCP), and a Hypertext Transfer Protocol (HTTP). 11. The machine readable medium of claim 8 wherein the filters are at least one of user defined and system defined. 12. The machine readable medium of claim 8 wherein the providing comprises preparing amended filters based on the instructions such that the capturing and the compiling are based on the amended filters. 13. The machine readable medium of claim 8 coupled with the network testing system. 14. The machine readable medium of claim 8 wherein the network is a production network. 15. The machine readable medium of claim 8 wherein the network is a test network. 16. A method of capturing and analyzing network traffic performed by a network testing system coupled with a network, the network testing system including a plurality of network cards, the network testing system including software which when executed causes the network testing system to perform actions comprising: capturing network traffic from the network based on filters compiling network traffic data based on the capturing, wherein the network traffic data includes at least one of protocol distribution data, length distribution data, transaction distribution data, header information, and payload data analyzing the network traffic data to create a network traffic characterization automatically providing a first set of instructions to control the capturing and the compiling, the first set of instructions based on the network traffic characterization preparing amended filters based on the first set of instructions such that the capturing and the compiling are based on the amended filters successively refining the capturing and the compiling based on the first set of instructions preparing a second set of instructions based on the network traffic characterization providing the second set of instructions to control the analyzing preparing generated network traffic based on the network traffic characterization transmitting the generated network traffic onto the network. 17. The method of claim 16 wherein the network traffic is comprised of a plurality of data units adhering to a plurality of communications protocols. 18. The method of claim 17 wherein the plurality of communication protocols includes at least a User Datagram Protocol (UDP), a Transmission Control Protocol (TCP), and a Hypertext Transfer Protocol (HTTP). 19. The method of claim 16 wherein the filters are at least one of user defined and system defined. 20. A system to capture and analyze network traffic, the system comprising: a processor a storage medium having software stored thereon which when executed by the processor causes the system to provide a plurality of collectors to capture network traffic and to compile network traffic data, wherein the collectors are configured to filter the network traffic, wherein the collectors each include at least one data collection unit for each of a plurality of communications protocols supported by the system, wherein the network traffic data includes at least one of protocol distribution data, length distribution data, transaction distribution data, header information and payload data a plurality of characterization units to analyze the network traffic to create a network traffic characterization a feedback controller coupled with the collectors and the characterization units to control the network traffic captured by the collectors based on the network traffic data and the network traffic characterization, including successively refining the functioning of the collectors and the characterization units by sending instructions to the collectors and the characterization units a traffic generator to prepare generated network traffic based on the network traffic characterizations received from the characterization units and to transmit the generated network traffic onto the network. 21. The system of claim 20 wherein the instructions are based on the network traffic data and the network traffic characterization. 22. The system of claim 20 wherein the collectors include filters that are at least one of user defined and system defined. 23. The system of claim 20 wherein the plurality of communication protocols includes at least a User Datagram Protocol (UDP), a Transmission Control Protocol (TCP), and a Hypertext Transfer Protocol (HTTP). 24. The system of claim 20 wherein the software when executed by the processor causes the system to further provide a manager to provide a user interface to allow a user to at least one of view the network traffic data provide instructions to the collectors provide commands to the characterization units. 25. The system of claim 20 coupled with a network testing system. 26. The system of claim 20 coupled to a production network. 27. The system of claim 20 coupled to a test network.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.