Comparison of Ring-Buffer-Based Packet Capture Solutions
- Sandia National Lab. (SNL-CA), Livermore, CA (United States)
Traditional packet-capture solutions using commodity hardware incur a large amount of overhead as packets are copied multiple times by the operating system. This overhead slows sensor systems to a point where they are unable to keep up with high bandwidth traffic, resulting in dropped packets. Incomplete packet capture files hinder network monitoring and incident response efforts. While costly commercial hardware exists to capture high bandwidth traffic, several software-based approaches exist to improve packet capture performance using commodity hardware.
- Research Organization:
- Sandia National Lab. (SNL-CA), Livermore, CA (United States)
- Sponsoring Organization:
- USDOE National Nuclear Security Administration (NNSA)
- DOE Contract Number:
- AC04-94AL85000
- OSTI ID:
- 1225853
- Report Number(s):
- SAND2015-9378R; 607886
- Country of Publication:
- United States
- Language:
- English
Similar Records
Detecting and Blocking Network Attacks at Ultra High Speeds
An Initial Investigation of the Design Challenges Associated with Reliable 100GigE Packet Capture
Packet capture engine for commodity network interface cards in high-speed networks
Technical Report
·
Mon Nov 29 00:00:00 EST 2010
·
OSTI ID:1225853
An Initial Investigation of the Design Challenges Associated with Reliable 100GigE Packet Capture
Technical Report
·
Sun Sep 01 00:00:00 EDT 2019
·
OSTI ID:1225853
+1 more
Packet capture engine for commodity network interface cards in high-speed networks
Patent
·
Tue Sep 18 00:00:00 EDT 2018
·
OSTI ID:1225853