摘要20世纪90年代以来,互联网在全球飞速发展,产生了巨大的社会效益和经济效益。近年来,网络不仅提高人们的工作效率,也给人们的生活带来极大的便利,例如网上办公、视频点播、web应用等等都需要依靠电子网络来完成。网络上的数据流量与日俱增,随之而来的网络安全问题也逐渐重要。如何有效的提高网络系统的安全性、可靠性已成为计算机网络应用必须考虑并解决的一个问题。所以研究有关数据包捕获和分析技术对保证网络的可靠、安全有着重要意义。8805
本课题在对网络数据包的捕获技术进行深入研究的技术上,设计并实现了一个基于Netfilter的数据包捕获与分析系统原型,并且实现了内核态与用户态的通信。本文的主要研究内容包括:
(1)着重介绍了网络数据包捕获、收发与分析的有关基本原理、方法和手段。
(2)重点介绍了在对Linux内核Netfilter框架进行研究的基础上,实现Linux内核模式的数据包捕获与处理,并根据协议类型实现流量分类。
(3)利用netlink实现Linux内核态与用户态的数据通信,从而实现对捕获数据包的分析与呈现。
关键词 Netlink Netfilter 网络捕获 网络分析
毕业设计说明书(论文)外文摘要
Title Network Packet Capture and Analysis
based on Netfilter
Abstract
Since the 1990s, the Internet in global rapid development, has had a huge social benefits and economic benefits. In recent years, the network not only improve people's work efficiency, and also to the life of people bring great convenience, such as online video on demand, office, the web application and so on all need to rely on electronic network to accomplish. The data on the network traffic grows day by day, and with the problem of network security is also gradually important. How to effectively improve the security and reliability of the network system has become a computer network application must consider and solve a problem. So the relevant packet captures and analytical techniques to ensure network of reliable, safe has important significance.
This topic in the network packets of capture technology further technologies, design and implementation of a based on Netfilter packet capture and analysis system prototype, and realize the kernel mode and the user mode of communication. The main research contents include:
(1)Mainly introduces network packet capture, sending and receiving and analysis on the basic principle, method and means.
(2)Mainly introduces the Linux kernel Netfilter framework on the basis of the study, realize the Linux kernel mode packet capture and processing, and according to the agreement type realize flow classification.
(3)Use Linux kernel mode and realization netlink user mode of the data communication, so as to achieve the packet analysis and present capture.
Keywords Netlink Netfilter Network-capture Network-analysis
目 次
1 绪论 1
1.1 研究背景及意义 1
1.2 国内外研究现状 2
1.3 本文的主要工作 3
1.4 本文的组织 3
2 数据包捕获与分析的相关技术 4
2.1 数据包捕获介绍 4
2.2 Netfilter框架 6
2.3 Netlink介绍 11
3 系统的设计与实现 12
3.1 系统体系结构 12
3.2 模块设计 15
3.3 系统运行 23
4 总结 27
4.1 进一步研究展望 27
4.2 研究工作总结 28 基于Netfilter的网络数据包捕获与分析:http://www.751com.cn/jisuanji/lunwen_7270.html