Packet flow monitoring tool and method
Abstract
A system and method for converting packet streams into session summaries. Session summaries are a group of packets each having a common source and destination internet protocol (IP) address, and, if present in the packets, common ports. The system first captures packets from a transport layer of a network of computer systems, then decodes the packets captured to determine the destination IP address and the source IP address. The system then identifies packets having common destination IP addresses and source IP addresses, then writes the decoded packets to an allocated memory structure as session summaries in a queue.
- Inventors:
-
- Richland, WA
- Issue Date:
- Research Org.:
- Pacific Northwest National Laboratory (PNNL), Richland, WA (United States)
- Sponsoring Org.:
- USDOE
- OSTI Identifier:
- 1012607
- Patent Number(s):
- 7561569
- Application Number:
- 11/179,230
- Assignee:
- Battelle Memorial Institute (Richland, WA)
- Patent Classifications (CPCs):
-
H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- DOE Contract Number:
- AC06-76RL01830
- Resource Type:
- Patent
- Country of Publication:
- United States
- Language:
- English
- Subject:
- 97 MATHEMATICS AND COMPUTING
Citation Formats
Thiede, David R. Packet flow monitoring tool and method. United States: N. p., 2009.
Web.
Thiede, David R. Packet flow monitoring tool and method. United States.
Thiede, David R. Tue .
"Packet flow monitoring tool and method". United States. https://www.osti.gov/servlets/purl/1012607.
@article{osti_1012607,
title = {Packet flow monitoring tool and method},
author = {Thiede, David R},
abstractNote = {A system and method for converting packet streams into session summaries. Session summaries are a group of packets each having a common source and destination internet protocol (IP) address, and, if present in the packets, common ports. The system first captures packets from a transport layer of a network of computer systems, then decodes the packets captured to determine the destination IP address and the source IP address. The system then identifies packets having common destination IP addresses and source IP addresses, then writes the decoded packets to an allocated memory structure as session summaries in a queue.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2009},
month = {7}
}