VIRTUAL PORT MONITORING METHOD AND APPARATUS

US 20140003249A1
Filed: 12/27/2012
Published: 01/02/2014
Est. Priority Date: 06/30/2012
Status: Abandoned Application

First Claim

Patent Images

1. A virtual port monitoring method, comprising:

intercepting a packet received and/or sent by at least one mirror source virtual port; and

when the packet is intercepted, mirroring the packet to a mirror destination virtual port, so that a monitoring virtual machine monitors the at least one mirror source virtual port according to the mirrored packet received from the mirror destination virtual port.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Embodiments of the present invention provide a virtual port monitoring method and apparatus. The virtual port monitoring method includes: intercepting a packet received and/or sent by at least one mirror source virtual port; and when the packet received and/or sent by the at least one mirror source virtual port is intercepted, mirroring the packet to the mirror destination virtual port, so that a monitoring virtual machine monitors the at least one mirror source virtual port according to the mirrored packet received from the mirror destination virtual port. The virtual port monitoring method and apparatus provided in the embodiments of the present invention implement the monitoring on packets among multiple virtual machines of a same physical server, and improves the reliability and security of a system.

42 Citations

View as Search Results

19 Claims

1. A virtual port monitoring method, comprising:
- intercepting a packet received and/or sent by at least one mirror source virtual port; and
  
  when the packet is intercepted, mirroring the packet to a mirror destination virtual port, so that a monitoring virtual machine monitors the at least one mirror source virtual port according to the mirrored packet received from the mirror destination virtual port.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The virtual port monitoring method according to claim 1, wherein a physical server where the at least one mirror source virtual port and the mirror destination virtual port are located is the same physical server where the monitoring virtual machine is located.
  - 3. The virtual port monitoring method according to claim 1, wherein before the intercepting the packet, the method further comprises:
    - according to a received configuration parameter, configuring at least one virtual port as the mirror source virtual port, configuring a virtual port other than the at least one virtual port as the mirror destination virtual port, and setting a mirroring relationship between the at least one mirror source virtual port and the mirror destination virtual port, and a mirroring mode of each mirror source virtual port, wherein the mirroring mode is configured to implement one of the group consisting of;
      
      (a) receiving and sending a mirror, (b) receiving the mirror, and (c) sending the mirror.
  - 4. The virtual port monitoring method according to claims 1, further comprising:
    - parsing packet header information of a first packet received from a physical port, obtaining a first destination address, and sending the first packet to a virtual port corresponding to the first destination address.
  - 5. The virtual port monitoring method according to claims 1, further comprising:
    - parsing packet header information of a second packet received from a virtual port, obtaining a second destination address, if the second destination address corresponds to a virtual port, sending the second packet to the virtual port corresponding to the second destination address, and if the second destination address corresponds to no virtual port, sending the second packet to a physical port.

6. A virtual port monitoring method, comprising:
- receiving a mirrored packet from a mirror destination virtual port; and
  
  according to the mirrored packet, monitoring at least one mirror source virtual port, wherein the mirrored packet is received and/or sent by the at least one mirror source virtual port.
- View Dependent Claims (7, 8)
- - 7. The virtual port monitoring method according to claim 6, wherein:
    - the method is executed by a monitoring virtual machine; and
      
      a physical server where the at least one mirror source virtual port and the mirror destination virtual port are located is the same physical server where the monitoring virtual machine is located.
  - 8. The virtual port monitoring method according to claim 6, wherein the monitoring at least one mirror source virtual port according to the mirrored packet comprises:
    - parsing packet header information of the mirrored packet,obtaining a source address,according to the source address, determining a mirror source virtual port that sends the mirrored packet, andmonitoring the mirror source virtual port that sends the mirrored packet.

9. A virtual port monitoring apparatus, comprising:
- an interception unit, configured to intercept a packet received and/or sent by at least one mirror source virtual port; and
  
  a mirroring unit, configured to, when the packet is intercepted, mirror the packet to a mirror destination virtual port, so that a monitoring virtual machine monitors the at least one mirror source virtual port according to the mirrored packet received from the mirror destination virtual port.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 10. The virtual port monitoring apparatus according to claim 9, wherein a physical server where the at least one mirror source virtual port and the mirror destination virtual port are located is the same physical server where the monitoring virtual machine is located.
  - 11. The virtual port monitoring apparatus according to claim 9, further comprising:
    - a configuration unit, configured to, according to a received configuration parameter, configure at least one virtual port as the mirror source virtual port, configure a virtual port other than the at least one virtual port as the mirror destination virtual port, and set a mirroring relationship between the at least one mirror source virtual port and the mirror destination virtual port, and a mirroring mode of each mirror source virtual port, wherein the mirroring mode is configured to implement one of the group consisting of;
      
      (a) receiving and sending a mirror, (b) receiving the mirror and (c) sending the mirror.
  - 12. The virtual port monitoring apparatus according to claim 10, further comprising:
    - a configuration unit, configured to, according to a received configuration parameter, configure at least one virtual port as the mirror source virtual port, configure a virtual port other than the at least one virtual port as the mirror destination virtual port, and set a mirroring relationship between the at least one mirror source virtual port and the mirror destination virtual port, and a mirroring mode of each mirror source virtual port, wherein the mirroring mode is configured to implement one of the group consisting of (a) receiving and sending a mirror, (b) receiving the mirror, and sending the mirror.
  - 13. The virtual port monitoring apparatus according to claim 9, further comprising:
    - a first forwarding unit, configured to parse packet header information of a first packet received from a physical port, obtain a first destination address, and send the first packet to a virtual port corresponding to the first destination address.
  - 14. The virtual port monitoring apparatus according to claim 10, further comprising:
    - a first forwarding unit, configured to parse packet header information of a first packet received from a physical port, obtain a first destination address, and send the first packet to a virtual port corresponding to the first destination address.
  - 15. The virtual port monitoring apparatus according to claim 11, further comprising:
    - a first forwarding unit, configured to parse packet header information of a first packet received from a physical port, obtain a first destination address, and send the first packet to a virtual port corresponding to the first destination address.
  - 16. The virtual port monitoring apparatus according to claim 9, further comprising:
    - a second forwarding unit, configured to parse packet header information of a second packet received from a virtual port, obtain a second destination address, if the second destination address corresponds to a virtual port, send the second packet to the virtual port corresponding to the second destination address, and if the second destination address corresponds to no virtual port, send the second packet to a physical port.
  - 17. The virtual port monitoring apparatus according to claim 10, further comprising:
    - a second forwarding unit, configured to parse packet header information of a second packet received from a virtual port, obtain a second destination address, if the second destination address corresponds to a virtual port, send the second packet to the virtual port corresponding to the second destination address, and if the second destination address corresponds to no virtual port, send the second packet to a physical port.
  - 18. The virtual port monitoring apparatus according to claim 11, further comprising:
    - a second forwarding unit, configured to parse packet header information of a second packet received from a virtual port, obtain a second destination address, if the second destination address corresponds to a virtual port, send the second packet to the virtual port corresponding to the second destination address, and if the second destination address corresponds to no virtual port, send the second packet to a physical port.

19. A server, comprising multiple virtual machines, a network interface card, and further comprising a virtual port monitoring apparatus wherein:
- the virtual port monitoring apparatus comprises;
  
  an interception unit, configured to intercept a packet received and/or sent by at least one mirror source virtual port; and
  
  a mirroring unit, configured to, when the packet is intercepted, mirror the packet to a mirror destination virtual port so that a monitoring virtual machine monitors the at least one mirror source virtual port according to the mirrored packet received from the mirror destination virtual port;
  
  the network interface card, comprising a physical port, multiple virtual network interface cards and a virtual port corresponding to each virtual network interface card, a multiple virtual port comprises at least one mirror source virtual port and a mirror destination virtual port;
  
  each virtual machine is allocated a virtual network interface card, the multiple virtual machines comprise at least one monitoring virtual machine, wherein the virtual network interface card allocated to the monitoring virtual machine provides the mirrored packet received from the mirror destination virtual port of the network interface card to the monitoring virtual machine.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Huawei Technologies Co., Ltd. (Huawei Investment & Holding Co., Ltd.)
Original Assignee
Huawei Technologies Co., Ltd. (Huawei Investment & Holding Co., Ltd.)
Inventors
CAI, Shishun

Application Number

US13/728,323
Publication Number

US 20140003249A1
Time in Patent Office

Days
Field of Search
US Class Current

370/241
CPC Class Codes

H04L 43/10   Active monitoring, e.g. hea...

H04L 43/12   Network monitoring probes

H04L 43/20   the monitoring system or th...

VIRTUAL PORT MONITORING METHOD AND APPARATUS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

42 Citations

19 Claims

Specification

Use Cases

Quick Links

Others

VIRTUAL PORT MONITORING METHOD AND APPARATUS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

42 Citations

19 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others