Search

CN-116506297-B - Network asset measurement management system

CN116506297BCN 116506297 BCN116506297 BCN 116506297BCN-116506297-B

Abstract

The invention provides a network asset measurement management system. The system comprises a probe layer, a data layer and a control layer, wherein the probe layer is used for acquiring task parameters to be acquired and task types according to a first task request sent by the control layer, the probe layer is used for acquiring the task parameters to be acquired of corresponding level assets according to the task types if the task parameters to be acquired are legal, the probe layer is used for constructing a current topological relation according to an acquisition sequence for acquiring the task parameters, and the data layer is used for confirming whether to replace an old topological relation with the current topological relation according to a topological relation processing instruction. The method of the invention identifies and analyzes the task parameters, task types and other data in the network asset through the probe layer, and builds the topological relation, thereby achieving timely and effective management of the network asset.

Inventors

  • LIN HONG
  • CHEN LUCHENG
  • HU MINGCHEN
  • YU HAIDONG
  • ZHANG WENLI
  • Du Zhaojuan
  • LIU PENGYING

Assignees

  • 卡奥斯工业智能研究院(青岛)有限公司
  • 卡奥斯物联科技股份有限公司

Dates

Publication Date
20260508
Application Date
20230330

Claims (8)

  1. 1. A network asset measurement management system, comprising: The probe layer is used for acquiring task parameters to be acquired and task types according to a first task request sent by the control layer, wherein the task parameters to be acquired comprise a plurality of parameter elements, the task types are used for indicating to acquire at least one level of assets, the task types comprise at least one of a second level of assets used for indicating the probe layer to acquire data of two-layer equipment, the two-layer equipment comprises a switch, the second layer is a link layer, a third level of assets used for indicating the probe layer to acquire data of three-layer equipment, the third layer is a network layer, and the first level of assets are used for indicating the probe layer to acquire data of non-two-layer and non-three-layer equipment; The probe layer is used for acquiring the task parameters to be acquired of the corresponding level assets according to the task types if the task parameters to be acquired are legal; The probe layer is used for constructing a current topological relation according to the acquisition sequence of the task parameters; The data layer is used for confirming whether the old topological relation is replaced with the current topological relation according to the topological relation processing instruction, wherein the topological relation processing instruction is generated by the interactive interface layer based on user operation and is used for indicating the replacement processing of the topological relation and displaying the updated topological relation through the interactive interface layer after the replacement is completed; The control layer is further used for generating a plurality of second task requests according to the plurality of tasks, wherein the tasks correspond to the second task requests one by one, and the second task requests are used for indicating whether the data layer inquires whether the tasks in the second task requests are legal or not.
  2. 2. The system of claim 1, wherein if the topology processing instructions issued by the interface layer confirm replacement of an old topology with a current topology, the data layer stores the replaced topology for retrieval by the interface layer.
  3. 3. The system of claim 1, wherein the control layer is further configured to send a plurality of task and second task requests to the data layer; The data layer is further used for updating non-repeated tasks in the plurality of tasks into a database of the data layer; The data layer is further used for confirming whether the task in the second task request is legal or not in the database according to the second task request.
  4. 4. The system of claim 3, wherein the data layer is further configured to cancel a repeated task of the plurality of tasks.
  5. 5. The system of claim 1, wherein the data layer is further configured to transmit the task to a Redis message queue of the control layer if the task in the second task request is legal.
  6. 6. The system of claim 5, wherein the probe layer is further configured to obtain a number of tasks from a dis message queue of the control layer; And the probe layer is also used for detecting the assets according to the task parameters and the task types in each task and storing the detection results into the data layer if the number of the tasks does not reach the upper limit of the executable tasks of the probe layer.
  7. 7. The system of any one of claims 1 to 6, wherein the interactive interface layer is configured to display the current topological relation if the topological relation handling instruction indicates a replacement; wherein the display includes a 2D display and a 3D display.
  8. 8. The system of claim 7, wherein the interactive interface layer is further configured to perform one or more of modifying tasks, deleting tasks, controlling task lists, controlling asset lists.

Description

Network asset measurement management system Technical Field The invention relates to the technical field of network asset detection, in particular to a network asset measurement management system. Background The network asset detection refers to the process of carding and counting the condition of the network asset, generally comprises active host discovery, operating system identification, application, version identification and the like, is an important premise for realizing network security management, and has wide application value in network security related work. The network assets include names, types, descriptions of devices, routing tables of network layer devices, port forwarding tables of data link layer devices, address resolution Protocol tables (Address Resolution Protocol, ARP), spanning tree Protocol information (SPANNING TREE Protocol, STP), link layer discovery Protocol information (LINK LAYER Discovery Protocol, LLDP), and the like. In the prior art, a network resource detection mode is mainly applied to a large database analysis mode, and is used for network transmission equipment discovery, network switching equipment discovery and network terminal equipment discovery, and the discovered equipment data is analyzed to complete anomaly monitoring. However, the real-time performance of detection in the prior art is poor, the connection relation between devices cannot be accurately judged, and the effectiveness of anomaly monitoring is further affected. Therefore, the invention provides a network asset measurement management mode combining topology construction and distributed task scheduling to solve the problems. Disclosure of Invention The invention provides a network asset measurement management system which is used for solving the problems that the existing network asset management method is poor in detection instantaneity and cannot effectively monitor data in network equipment. In a first aspect, the present invention provides a network asset measurement management system comprising: the probe layer is used for acquiring task parameters to be acquired and task types according to a first task request sent by the control layer, wherein the task parameters to be acquired comprise a plurality of parameter elements, and the task types are used for indicating to acquire at least one level asset; The probe layer is used for acquiring the task parameters to be acquired of the corresponding level assets according to the task types if the task parameters to be acquired are legal; The probe layer is used for constructing a current topological relation according to the acquisition sequence of the task parameters; The data layer is used for confirming whether the old topological relation is replaced with the current topological relation according to the topological relation processing instruction, wherein the topological relation processing instruction is an instruction generated by the interaction interface layer and used for indicating the replacement processing of the topological relation. In one possible implementation, the task type includes at least one of the following hierarchy of assets: The second-level asset is used for indicating the probe layer to acquire data of two-layer equipment, wherein the two-layer equipment comprises a switch, and the second layer is a link layer; The third-level asset is used for indicating the probe layer to acquire data of three layers of equipment, wherein the third layer is a network layer; And the first-level asset is used for indicating the probe layer to perform data acquisition of non-two-layer and non-three-layer equipment. In one possible implementation manner, if the topology relationship processing instruction sent by the interaction interface layer confirms that the old topology relationship is replaced by the current topology relationship, the data layer stores the replaced topology relationship for the interaction interface layer to call. In one possible implementation, the control layer is further configured to: And generating a plurality of second task requests according to the plurality of tasks, wherein the tasks are in one-to-one correspondence with the second task requests, and the second task requests are used for indicating whether the data layer inquires whether the tasks in the second task requests are legal or not. In a possible implementation manner, the control layer is further configured to send a plurality of tasks and a second task request to the data layer; The data layer is further used for updating non-repeated tasks in the plurality of tasks into a database of the data layer; The data layer is further used for confirming whether the task in the second task request is legal or not in the database according to the second task request. In a possible implementation manner, the data layer is further configured to cancel a task that is repeated in the plurality of tasks. In a possible implementation manner, the data layer is furt