- 學位論文
於NetFPGA-10G實現高速網路流量量測系統
An Implementation and Study of High-Speed Traffic Measurement System on NetFPGA-10G
摘要
本論文探討多種基於速寫演算法的流量計數方式,以實際的核心網路流量來模擬測試並比較其效能。將兩種演算法CM-Sketch(Count Min Sketch)與MPC(Multiple Probabilistic Counting),以硬體描述語言(Verilog HDL)實現在NetFPGA-10G開發平台,並且完成具有網路資料分流(Network Traffic Tap)功能之高速網路流量量測系統。此系統,在觀測時間之內,可以量測流經觀測點所有不同種類封包流的個數(Distinct Flow Count),以及每一個流量中的封包出現次數。
並列摘要
Network traffic flow measurement and analysis are the essential part of the network intrusion detection system design. In this dissertation, we study selected sketch-based algorithms which are capable of estimating the cardinality and multiplicities of traffic flow in high-speed core networks. We explore these algorithms with real-world network traffic traces and implement two of them in NetFGPA 10G platform. The traffic measurement prototype is capable of acting as a network tap to identify the number of distinct IP flows and the number of times a packet belongs to a particular IP flow. We also provide register interfaces for the host to retrieve these measurement results for high level application design.
參考文獻
被引用紀錄
延伸閱讀
- 王南程(2010)。電腦網路流量變異偵測系統之NetFPGA硬體實現〔碩士論文,中原大學〕。華藝線上圖書館。https://doi.org/10.6840/cycu201000853
- 黃柏瑜(2020)。於NetFPGA平台實現基於速寫演算法之高速網路流量資訊熵值估算分析〔碩士論文,中原大學〕。華藝線上圖書館。https://doi.org/10.6840/cycu202000498
- Chen, P. (2004). 適用於10GBASE-LX4光纖通訊系統之類比等化器設計 [master's thesis, National Taiwan University]. Airiti Library. https://doi.org/10.6342/NTU.2004.01417
- Chien, Y. R. (2009). 以10GBASE-T為例之全雙工多通道基頻預編碼系統強健性設計 [doctoral dissertation, National Taiwan University]. Airiti Library. https://doi.org/10.6342/NTU.2009.01144
- Hsu, L. Y. (2015). Implementation of High-resolution Multi-channel Time-to-digital Converter in FPGA [master's thesis, National Taiwan University]. Airiti Library. https://doi.org/10.6342/NTU.2015.00477