[go: up one dir, main page]

CN113489603A - Interactive background traffic generation method and system in network shooting range - Google Patents

Interactive background traffic generation method and system in network shooting range Download PDF

Info

Publication number
CN113489603A
CN113489603A CN202110684121.2A CN202110684121A CN113489603A CN 113489603 A CN113489603 A CN 113489603A CN 202110684121 A CN202110684121 A CN 202110684121A CN 113489603 A CN113489603 A CN 113489603A
Authority
CN
China
Prior art keywords
node
flow
traffic
file
interactive
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202110684121.2A
Other languages
Chinese (zh)
Other versions
CN113489603B (en
Inventor
詹项羽
谢峥
高庆官
殷庆荣
高健平
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nanjing Cyber Peace Technology Co Ltd
Original Assignee
Nanjing Cyber Peace Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nanjing Cyber Peace Technology Co Ltd filed Critical Nanjing Cyber Peace Technology Co Ltd
Priority to CN202110684121.2A priority Critical patent/CN113489603B/en
Publication of CN113489603A publication Critical patent/CN113489603A/en
Application granted granted Critical
Publication of CN113489603B publication Critical patent/CN113489603B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/14Network analysis or design
    • H04L41/145Network analysis or design involving simulating, designing, planning or modelling of a network
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/50Reducing energy consumption in communication networks in wire-line communication networks, e.g. low power modes or reduced link rate

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention discloses an interactive background traffic generation method and system in a network shooting range, and belongs to the technical field of network security. In the method, an interactive flow generator is deployed on a virtual node of a target range, communication opposite sides, roles and background flow files are configured for any two nodes needing to apply flow in a target range scene, and the nodes load the specified background flow files and analyze the flow after receiving a simulation instruction; the node serving as the client role analyzes the request message and replaces the IP to send to the service end node, and the service end node analyzes the corresponding response message and replaces the IP to reply, so that the flow interaction phenomenon between two intercommunicating nodes in a real network is simulated. Compared with the prior art, the method does not need additional flow generation nodes, reduces the occupation of scene resources, can simulate real network flow interactive response according to real flow files, and improves the high simulation of the shooting range environment simulation.

Description

Interactive background traffic generation method and system in network shooting range
Technical Field
The invention relates to an interactive background traffic generation method and system in a network shooting range, belonging to the technical field of network security.
Background
The network shooting range is a platform for simulating a real network environment based on a virtualization technology and supporting network space security technology verification, network weapon equipment test, attack and defense countermeasure drilling and network risk assessment. In the actual use of a network target range, a plurality of virtual machines are operated, the virtual machines are communicated with each other through a network, and background flow needs to be applied between the two virtual machines to simulate complex network behaviors in real life.
The method for generating flow in the network target range is shown in fig. 1, an independent network environment application scene is virtualized in a network target range platform, at least two nodes, namely a node 1 and a node 2, exist in the scene, one flow generation node (capable of generating background flow) is started by default when the scene is generally started for simulating real flow, an instruction is issued to the flow generation node through the platform, and after the instruction is received, designated background flow is respectively sent to a target machine, so that the background flow is received in the node 1 and the node 2.
The problems of the existing flow generation mode are as follows: 1. the background traffic sent in the network environment is unidirectional traffic, that is, the traffic from a traffic generation node to a target node cannot reflect the traffic interaction behavior between the two nodes. 2. The target node has no corresponding software or network environment, and background flow operation has no feedback, so that the reality of the simulation flow is influenced. 3. In the process of starting the scene, an additional flow generation node needs to be started for generating the flow, so that the resource consumption in the scene starting process is increased, and the resource waste is caused.
Disclosure of Invention
The purpose of the invention is as follows: in view of the problems in the prior art, the present invention aims to provide a method and a system for generating interactive background traffic in a network shooting range, which simulate real network traffic interactive response by embedding a traffic generator in a virtual node, thereby improving high simulation of shooting range environment simulation.
The technical scheme is as follows: in order to achieve the above object, the present invention provides a method for generating interactive background traffic in a network shooting range, comprising the following steps:
(1) in the process of starting the nodes of the virtual scene, deploying an interactive flow generator on the nodes;
(2) sending a simulation instruction to at least one pair of intercommunication nodes in a network target range scene, and specifying a communication counterpart, a role and a background flow file;
(3) after a node appointed to be in a client role receives a simulation instruction, an interactive flow generator on the node loads an appointed background flow file and analyzes the flow, a request message in the flow file is screened out, a source IP in the request message is replaced by an IP of a cost node, and a target IP is replaced by an IP of an appointed communication counterpart and then sent out;
(4) after receiving the simulation instruction, the node which is designated as the role of the server loads a designated background flow file and analyzes the flow, after receiving a request message sent by the client node, the node matches a response message from the flow file, replaces the IP of the cost node with the source IP in the response message, and sends the IP after replacing the IP of the designated communication counterpart with the destination IP;
(5) and (4) repeating the steps (3) to (4) until all the designated background traffic file data are transmitted.
Preferably, the interactive traffic generator performs traffic analysis according to a message protocol in the traffic file, and matches each request message with a corresponding response message according to a sequence number field in the same message.
Based on the same inventive concept, the interactive background traffic generation system in the network shooting range comprises an interactive traffic generator deployed on a virtual node in a network shooting range scene and a traffic simulation configuration module deployed on a network shooting range management platform;
the flow simulation configuration module is used for configuring at least one pair of intercommunicating nodes generating interactive flow in a target range and appointing a communication counterpart, a role and a background flow file for the nodes;
the interactive flow generator finishes deployment in the starting process of the virtual scene, is used for loading a specified background flow file and analyzing flow after receiving a simulation instruction, screens out a request message in the flow file if a node where the interactive flow generator is located is configured to be a client role, replaces an IP of a cost node with a source IP in the request message, and sends out a destination IP after replacing the IP of a specified communication counterpart; if the node where the node is located is configured to be the server role, after a request message sent by the client node is received, a response message is matched from the flow file, the source IP in the response message is replaced by the IP of the cost node, and the destination IP is sent after being replaced by the IP of the appointed communication counterpart; and the two intercommunicating nodes finish one-time flow interactive simulation after all the data in the appointed background flow file are sent.
Preferably, the interactive traffic generator includes:
the file loading unit is used for loading a specified background flow file;
the flow analysis unit is used for carrying out flow analysis according to a message protocol in the flow file and matching each request message with a corresponding response message according to a serial number field in the same message;
the request message processing unit is used for replacing a source IP in the request message with the IP of the node when the node is configured to be a client role, and replacing a target IP with the IP of a specified communication counterpart and then sending the IP;
the response message processing unit is used for matching a corresponding response message after receiving a request message sent by a client node when the node is configured to be a server role, replacing a source IP in the response message with an IP of the node, and replacing a target IP with an IP of a specified communication counterpart and then sending the IP;
and the task monitoring unit is used for monitoring the simulation instruction, calling the file loading unit and the flow analysis unit after receiving the simulation instruction, generating interactive background flow by the request message processing unit or the response message processing unit, and finishing the simulation after all data in the specified flow file are sent.
Based on the same inventive concept, the invention provides an interactive background traffic generation system in a network target range, which comprises a network target range management platform and at least two virtual nodes configured as a pair of intercommunicating nodes, wherein each virtual node comprises a memory, a processor and a computer program stored on the memory and capable of running on the processor, and the computer program realizes the following steps when being loaded on the processor:
receiving a simulation instruction sent by a network target range management platform and a specified communication counterpart, role and background flow file;
when the node is designated as a client role, loading a designated background flow file and carrying out flow analysis, screening out a request message in the flow file, replacing a source IP in the request message with the IP of the node, and replacing a target IP with the IP of a designated communication counterpart and then sending out the IP;
when the node is designated as a server role, loading a designated background flow file and performing flow analysis, matching a response message from the flow file after receiving a request message sent by a client node, replacing the IP of the cost node with the source IP in the response message, and sending the destination IP after replacing the IP of the designated communication counterpart;
and when all the data in the specified background flow file are sent, ending the interactive flow simulation.
Has the advantages that: the interactive background flow generation scheme provided by the invention can apply flow in any two nodes, thereby realizing simulation of a real network environment. Compared with the prior art, the invention has the following advantages: 1. the interactive flow generator is arranged in the virtual node of the network shooting range scene, so that no additional flow generating node is needed, and the occupation of scene resources is reduced. 2. The invention can simulate real network flow interactive response by configuring the intercommunication nodes according to the real flow files. 3. Based on the scheme of the invention, the method can cause vivid flow interference to the attack target and the attacked target, and improve the high simulation of the shooting range environment simulation.
Drawings
Fig. 1 is a simplified diagram of a scenario in which a conventional network shooting range traffic occurs.
Fig. 2 is a simplified diagram of a traffic generation scenario according to an embodiment of the present invention.
Fig. 3 is a schematic diagram of the principle of the embodiment of the present invention.
Fig. 4 is a detailed timing diagram of the occurrence of interactive traffic in the embodiment of the present invention.
Detailed Description
The technical solution of the present invention will be clearly and completely described below with reference to the accompanying drawings and specific embodiments.
As shown in fig. 2 and 3, the interactive background traffic generation method in the network target range provided in the embodiment of the present invention can apply traffic in any two virtual nodes of the target range to promote simulation of a real network environment, and includes the specific steps of:
(1) in the process of starting the nodes of the virtual scene, deploying an interactive flow generator on the nodes;
(2) sending a simulation instruction to at least one pair of intercommunication nodes in a network target range scene, and specifying a communication counterpart, a role and a background flow file;
(3) after a node appointed to be in a client role receives a simulation instruction, an interactive flow generator on the node loads an appointed background flow file and analyzes the flow, a request message in the flow file is screened out, a source IP in the request message is replaced by an IP of a cost node, and a target IP is replaced by an IP of an appointed communication counterpart and then sent out;
(4) after receiving the simulation instruction, the node which is designated as the role of the server loads a designated background flow file and analyzes the flow, after receiving a request message sent by the client node, the node matches a response message from the flow file, replaces the IP of the cost node with the source IP in the response message, and sends the IP after replacing the IP of the designated communication counterpart with the destination IP;
(5) and (4) repeating the steps (3) to (4) until all the designated background traffic file data are transmitted.
The method of the present invention will be described in detail below with reference to specific application scenarios. A virtual scene and basic data are prepared in advance, and the background traffic file used in the present embodiment includes various traffic information such as QQ, WeChat, and mail registration. The process of generating the interactive traffic is specifically shown in fig. 4, and mainly includes the following steps:
1. the user starts a virtual scene through a network range management platform (range platform).
2. In the process of starting the scene nodes, the interactive flow generators are installed in the respective started nodes, and extra flow generation nodes do not need to be generated, so that the waste of scene resources can be effectively reduced.
3. And waiting for the completion of the startup of all the virtual machines in the scene.
4. A user sends a simulation instruction to a node of a scene through a shooting range platform, a source IP of a node 1 is designated as a local machine, a destination IP of the node 1 is designated as a node 2, the node is designated as a client, and meanwhile an interactive flow generator on the node can load a designated background flow file. The user may specify a plurality of pairs of interworking nodes to perform traffic interaction, and the processing method of each pair of interworking nodes is consistent, which is only described by taking node 1 and node 2 as an example.
5. And (3) designating the source IP of the node 2 as a local IP and the destination IP as a node 1, designating the node as a server end, and simultaneously loading a designated background flow file by an interactive flow generator on the node.
6. After the traffic file is loaded, the interactive traffic generator performs traffic analysis, the traffic file includes multiple messages, and taking a QQ message as an example, the analyzer screens out related QQ messages according to an OICQ protocol, and each request message can be matched with each response message by analyzing a sequence field in the message.
7. A flow generator in the client node 1 screens out a request message in a flow file, replaces a source IP in the request message with a cost machine IP, and replaces a target IP with a specified target IP to send out the request message;
8. a flow generator in the server node 2 receives a request message sent by the client node 1, filters the obtained message through an OICQ protocol and a sequence field, and sends out a matched response message after replacing the matched response message through a target IP appointed by the node 2;
9. and repeating the step 7 and the step 8, and sending all data in the flow file, thereby simulating the flow interaction phenomenon between two intercommunicating nodes in a real network.
Based on the same inventive concept, the interactive background traffic generation system in the network target range provided by the embodiment of the invention comprises an interactive traffic generator deployed on a virtual node in a network target range scene and a traffic simulation configuration module deployed on a network target range management platform; the traffic simulation configuration module is used for configuring at least one pair of intercommunicating nodes generating interactive traffic in a target range and appointing a communication counterpart, a role and a background traffic file for the nodes; the interactive flow generator finishes deployment in the starting process of the virtual scene, is used for loading a specified background flow file and analyzing flow after receiving the simulation instruction, screens out a request message in the flow file if a node where the interactive flow generator is located is configured to be a client role, replaces the IP of a cost node with a source IP in the request message, and sends out the target IP after replacing the IP of a specified communication counterpart; if the node where the node is located is configured to be the server role, after a request message sent by the client node is received, a response message is matched from the flow file, the source IP in the response message is replaced by the IP of the cost node, and the destination IP is sent after being replaced by the IP of the appointed communication counterpart; and the two intercommunicating nodes finish one-time flow interactive simulation after all the data in the appointed background flow file are sent.
Specifically, the interactive traffic generator includes: the file loading unit is used for loading a specified background flow file; the flow analysis unit is used for carrying out flow analysis according to a message protocol in the flow file and matching each request message with a corresponding response message according to a serial number field in the same message; the request message processing unit is used for replacing a source IP in the request message with the IP of the node when the node is configured to be a client role, and replacing a target IP with the IP of a specified communication counterpart and then sending the IP; the response message processing unit is used for matching a corresponding response message after receiving a request message sent by a client node when the node is configured to be a server role, replacing a source IP in the response message with an IP of the node, and replacing a target IP with an IP of a specified communication counterpart and then sending the IP; and the task monitoring unit is used for monitoring the simulation instruction, calling the file loading unit and the flow analysis unit after receiving the simulation instruction, generating interactive background flow by the request message processing unit or the response message processing unit, and finishing the simulation after all data in the specified flow file are sent.
Based on the same inventive concept, the invention provides an interactive background traffic generation system in a network target range, which comprises a network target range management platform and at least two virtual nodes configured as a pair of intercommunicating nodes, wherein each virtual node comprises a memory, a processor and a computer program stored on the memory and capable of running on the processor, and the computer program realizes the following steps when being loaded on the processor: receiving a simulation instruction sent by a network target range management platform and a specified communication counterpart, role and background flow file; when the node is designated as a client role, loading a designated background flow file and carrying out flow analysis, screening out a request message in the flow file, replacing a source IP in the request message with the IP of the node, and replacing a target IP with the IP of a designated communication counterpart and then sending out the IP; when the node is designated as a server role, loading a designated background flow file and performing flow analysis, matching a response message from the flow file after receiving a request message sent by a client node, replacing the IP of the cost node with the source IP in the response message, and sending the destination IP after replacing the IP of the designated communication counterpart; and when all the data in the specified background flow file are sent, ending the interactive flow simulation.

Claims (6)

1.一种网络靶场中交互式背景流量发生方法,其特征在于,包括如下步骤:1. a method for generating interactive background traffic in a network shooting range, is characterized in that, comprises the steps: (1)在启动虚拟场景的节点过程中,在节点上部署交互流量发生器;(1) In the process of starting the node of the virtual scene, deploy the interactive traffic generator on the node; (2)向网络靶场场景中的至少一对互通节点发送模拟指令,并指定通信对方、角色和背景流量文件;(2) Send a simulation command to at least a pair of intercommunication nodes in the network shooting range scene, and specify the communication partner, role and background traffic file; (3)被指定为客户端角色的节点接收到模拟指令后,该节点上的交互流量发生器加载指定的背景流量文件并进行流量解析,筛选出流量文件中的请求报文,并将请求报文中的源IP替换成本节点的IP,目的IP替换成指定的通信对方的IP后进行发出;(3) After the node designated as the client role receives the simulation command, the interactive traffic generator on the node loads the specified background traffic file and performs traffic analysis, filters out the request packets in the traffic file, and reports the request The source IP in the text replaces the IP of the cost node, and the destination IP is replaced with the IP of the designated communication partner before sending; (4)被指定为服务端角色的节点接收到模拟指令后,该节点上的交互流量发生器加载指定的背景流量文件并进行流量解析,在接收到客户端节点发出的请求报文后,从流量文件中匹配到响应报文,并将响应报文中的源IP替换成本节点的IP,目的IP替换成指定的通信对方的IP后进行发出;(4) After the node designated as the server role receives the simulation command, the interactive traffic generator on the node loads the specified background traffic file and performs traffic analysis. The response message is matched in the traffic file, and the source IP in the response message is replaced with the IP of the cost node, and the destination IP is replaced with the IP of the specified communication partner before sending; (5)重复步骤(3)-(4)直到指定的背景流量文件数据全部发送。(5) Repeat steps (3)-(4) until all the specified background flow file data is sent. 2.根据权利要求1所述的网络靶场中交互式背景流量发生方法,其特征在于,所述交互流量发生器根据流量文件中的报文协议进行流量解析,根据同一种报文中的序列号字段匹配每条请求报文和对应的响应报文。2. the interactive background flow generation method in the network shooting range according to claim 1, is characterized in that, described interactive flow generator carries out flow analysis according to the message protocol in the flow file, according to the sequence number in the same message The field matches each request packet and the corresponding response packet. 3.一种网络靶场中交互式背景流量发生系统,其特征在于,包括部署在网络靶场场景中的虚拟节点上的交互流量发生器,以及部署在网络靶场管理平台上的流量模拟配置模块;3. An interactive background flow generation system in a network shooting range, characterized in that it comprises an interactive flow generator deployed on a virtual node in a network shooting range scene, and a flow simulation configuration module deployed on a network shooting range management platform; 所述流量模拟配置模块,用于配置靶场中产生交互流量的至少一对互通节点,为节点指定通信对方、角色和背景流量文件;The traffic simulation configuration module is used to configure at least a pair of intercommunication nodes that generate interactive traffic in the shooting range, and specify a communication partner, a role and a background traffic file for the nodes; 所述交互流量发生器在虚拟场景启动过程中完成部署,用于在接收到模拟指令后加载指定的背景流量文件并进行流量解析,若其所在的节点配置为客户端角色,则筛选出流量文件中的请求报文,并将请求报文中的源IP替换成本节点的IP,目的IP替换成指定的通信对方的IP后进行发出;若其所在的节点配置为服务端角色,则在接收到客户端节点发出的请求报文后,从流量文件中匹配到响应报文,并将响应报文中的源IP替换成本节点的IP,目的IP替换成指定的通信对方的IP后进行发出;两个互通节点将指定的背景流量文件中的数据全部发送后结束一次流量交互模拟。The interactive traffic generator is deployed in the virtual scene startup process, and is used to load the specified background traffic file and perform traffic analysis after receiving the simulation command. If the node where it is located is configured as a client role, the traffic file is filtered out. The request message in the request message is sent, and the source IP in the request message is replaced with the IP of the cost node, and the destination IP is replaced with the IP of the specified communication partner before sending; After the request message sent by the client node, the response message is matched from the traffic file, and the source IP in the response message is replaced with the IP of the cost node, and the destination IP is replaced with the IP of the specified communication partner before sending; two Each intercommunication node ends a traffic interaction simulation after sending all the data in the specified background traffic file. 4.根据权利要求3所述的网络靶场中交互式背景流量发生系统,其特征在于,所述交互流量发生器包括:4. The interactive background flow generation system in the network shooting range according to claim 3, wherein the interactive flow generator comprises: 文件加载单元,用于加载指定的背景流量文件;The file loading unit is used to load the specified background traffic file; 流量解析单元,用于根据流量文件中的报文协议进行流量解析,根据同一种报文中的序列号字段匹配每条请求报文和对应的响应报文;The flow analysis unit is used to perform flow analysis according to the packet protocol in the flow file, and match each request packet and the corresponding response packet according to the sequence number field in the same type of packet; 请求报文处理单元,用于所在节点被配置为客户端角色时,将请求报文中的源IP替换成所在节点的IP,目的IP替换成指定的通信对方的IP后进行发出;The request message processing unit is used to replace the source IP in the request message with the IP of the node, and replace the destination IP with the IP of the designated communication partner when the node is configured as the client role, and then send it out; 响应报文处理单元,用于所在节点被配置为服务端角色时,在接收到客户端节点发出的请求报文后,匹配到对应的响应报文,并将响应报文中的源IP替换成所在节点的IP,目的IP替换成指定的通信对方的IP后进行发出;The response message processing unit is used to match the corresponding response message after receiving the request message sent by the client node when the node where it is located is configured as the server role, and replace the source IP in the response message with The IP of the node where the node is located, and the destination IP is replaced with the IP of the specified communication partner and sent out; 以及任务监控单元,用于监听模拟指令,在接收到模拟指令后调用文件加载单元、流量解析单元,以及请求报文处理单元或响应报文处理单元产生交互背景流量,在指定的流量文件中的数据全部发送后结束模拟。And the task monitoring unit is used to monitor the simulation command, and after receiving the simulation command, call the file loading unit, the traffic analysis unit, and the request message processing unit or the response message processing unit to generate interactive background traffic. The simulation ends when all data is sent. 5.一种网络靶场中交互式背景流量发生系统,其特征在于,包括网络靶场管理平台和至少两个被配置为一对互通节点的虚拟节点,所述虚拟节点包括存储器、处理器及存储在存储器上并可在处理器上运行的计算机程序,所述计算机程序被加载至处理器时实现如下步骤:5. A system for generating interactive background traffic in a network shooting range, characterized in that it comprises a network shooting range management platform and at least two virtual nodes configured as a pair of intercommunication nodes, the virtual nodes comprising a memory, a processor and a A computer program on a memory and executable on a processor that, when loaded into the processor, implements the following steps: 接收网络靶场管理平台发送的模拟指令,以及指定的通信对方、角色和背景流量文件;Receive the simulation instructions sent by the network range management platform, as well as the specified communication counterparty, role and background traffic files; 当所在节点被指定为客户端角色时,加载指定的背景流量文件并进行流量解析,筛选出流量文件中的请求报文,并将请求报文中的源IP替换成所在节点的IP,目的IP替换成指定的通信对方的IP后进行发出;When the node is designated as the client role, load the specified background traffic file and perform traffic analysis, filter out the request packets in the traffic file, and replace the source IP in the request packet with the IP of the node, the destination IP Replace it with the IP of the specified communication partner and send it out; 当所在节点被指定为服务端角色时,加载指定的背景流量文件并进行流量解析,在接收到客户端节点发出的请求报文后,从流量文件中匹配到响应报文,并将响应报文中的源IP替换成本节点的IP,目的IP替换成指定的通信对方的IP后进行发出;When the node is designated as the server role, load the specified background traffic file and perform traffic analysis. After receiving the request message sent by the client node, match the response message from the traffic file, and send the response message The source IP in replaces the IP of the cost node, and the destination IP is replaced with the IP of the specified communication partner before sending; 当指定的背景流量文件中的数据全部发送后,结束交互流量模拟。When all the data in the specified background flow file is sent, the interactive flow simulation ends. 6.根据权利要求5所述的网络靶场中交互式背景流量发生系统,其特征在于,根据流量文件中的报文协议进行流量解析,根据同一种报文中的序列号字段匹配每条请求报文和对应的响应报文。6. The interactive background flow generation system in the network shooting range according to claim 5, is characterized in that, according to the message protocol in the flow file, flow analysis is carried out, and each request report is matched according to the sequence number field in the same message. message and the corresponding response message.
CN202110684121.2A 2021-06-21 2021-06-21 Interactive background flow generation method and system in network target range Active CN113489603B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110684121.2A CN113489603B (en) 2021-06-21 2021-06-21 Interactive background flow generation method and system in network target range

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110684121.2A CN113489603B (en) 2021-06-21 2021-06-21 Interactive background flow generation method and system in network target range

Publications (2)

Publication Number Publication Date
CN113489603A true CN113489603A (en) 2021-10-08
CN113489603B CN113489603B (en) 2023-07-25

Family

ID=77934155

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110684121.2A Active CN113489603B (en) 2021-06-21 2021-06-21 Interactive background flow generation method and system in network target range

Country Status (1)

Country Link
CN (1) CN113489603B (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114064060A (en) * 2021-11-29 2022-02-18 安天科技集团股份有限公司 Background flow generation method and device, computing equipment and storage medium
CN114629682A (en) * 2022-02-09 2022-06-14 烽台科技(北京)有限公司 Method, device, terminal and storage medium for allocating industrial control network target range
CN115277440A (en) * 2022-05-09 2022-11-01 南京赛宁信息技术有限公司 A method and system for generating mixed traffic in a network shooting range
CN117749639A (en) * 2024-02-19 2024-03-22 南京赛宁信息技术有限公司 Automatic network target range flow generation method and system

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108939550A (en) * 2018-06-26 2018-12-07 魔力小鸟(北京)信息技术有限公司 The system of simulated environment and virtual role Interactive control and visualized management

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108939550A (en) * 2018-06-26 2018-12-07 魔力小鸟(北京)信息技术有限公司 The system of simulated environment and virtual role Interactive control and visualized management

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
赵瑜、吴承荣、严明: "基于LoadRunner的定制化业务背景流量生成系统" *

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114064060A (en) * 2021-11-29 2022-02-18 安天科技集团股份有限公司 Background flow generation method and device, computing equipment and storage medium
CN114629682A (en) * 2022-02-09 2022-06-14 烽台科技(北京)有限公司 Method, device, terminal and storage medium for allocating industrial control network target range
CN114629682B (en) * 2022-02-09 2023-06-09 烽台科技(北京)有限公司 Industrial control network target range allocation method, device, terminal and storage medium
CN115277440A (en) * 2022-05-09 2022-11-01 南京赛宁信息技术有限公司 A method and system for generating mixed traffic in a network shooting range
CN115277440B (en) * 2022-05-09 2023-08-22 南京赛宁信息技术有限公司 Method and system for generating mixed flow in network target range
CN117749639A (en) * 2024-02-19 2024-03-22 南京赛宁信息技术有限公司 Automatic network target range flow generation method and system
CN117749639B (en) * 2024-02-19 2024-05-31 南京赛宁信息技术有限公司 Automatic network target range flow generation method and system

Also Published As

Publication number Publication date
CN113489603B (en) 2023-07-25

Similar Documents

Publication Publication Date Title
CN113489603A (en) Interactive background traffic generation method and system in network shooting range
CN100471139C (en) System and method for network test
CN109525461B (en) Network equipment testing method, device, equipment and storage medium
WO2020151483A1 (en) Stress testing system for internet-of-things platform, method, device, and server
CN108256118B (en) Data processing method, device, system, computing equipment and storage medium
JP2014506045A (en) Network stimulation engine
CN104461697B (en) A kind of online IP address automatic capture system of virtual machine batch and method
CN113645314B (en) Private cloud deployment method and server
Berger et al. Does my bft protocol implementation scale?
CA3206084A1 (en) Distributed immutable data object testing
Miyachi et al. Automatic configuration and execution of internet experiments on an actual node-based testbed
CN113535572B (en) Service virtualization device and method
CN112994954B (en) Network test system, test network construction method and device
Hine et al. Scalable emulation of enterprise systems
CN117290255A (en) Batch interface performance test method based on Python and Locut frameworks
US11621893B2 (en) Methods, systems, and computer readable media for establishing dynamic agent associations in a cloud computing environment
KR100811468B1 (en) System and method for verifying server application stability through load test
CN111221687B (en) Cloud storage testing system and method
CN116361150B (en) Method, device and system for testing vehicle in whole vehicle simulation environment
Berger et al. Simulating BFT Protocol Implementations at Scale
Yeh et al. Realistic and Lightweight Cyber Agent Training Environment using Network Emulation in Mininet
CN111082984A (en) Method and device for simulating login of network equipment to carry out command line interaction
JP2013257823A (en) Simulation device
CN118193404B (en) A distributed database cluster testing method
CN111625374B (en) Task processing method, terminal and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant