0% found this document useful (0 votes)

201 views15 pages

Advanced Internet Monitoring System Guide

The document describes an Internet Monitoring System (IMS) capable of intercepting internet traffic at 100 Gbps speeds. The IMS has a hardware-based front-end for packet capture and a software-based back-end for control, monitoring, data warehousing, and business intelligence. It can capture each packet in real-time with nanosecond timestamping, recognize sources and destinations, filter duplicate packets, and slice packets to multiple CPUs for processing while recording to disk storage. Key challenges are processing millions of packets per second within nanoseconds and storing terabytes of daily data.

Uploaded by

tranceforge

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

201 views15 pages

Advanced Internet Monitoring System Guide

Uploaded by

tranceforge

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

Internet Monitoring System (IMS)

Prepared by Betha Aris <betha.aris@IEEE.org>

Key Point

Intercepting Internet traffic with 100 Gbps speed Hardware-based interception (front-end) Software-based control and monitor (back-end) Realtime Deep Packet Capture/Inspection Data Warehouse Business Intelligence Data Mining

Criterias
Capturing each packet (real-time and without loss) Time-stamping each packet with nanosecond precision Recognizing the sources, destination and protocol Filtering for duplicating packet (relevant packets) Slicing packets to multiple CPUs for processing Recording each packet to disk

Challenges
With 30 million packets (@20Gbps), it means these tasks need to be completed for a packet every 30 nanoseconds. With 10 Gbps in both directions, at least 25 Giga Bytes of data per seconds. It means we need at least 2.160 Tera Bytes of data per day.

Processes

Capturing with passive probe Filtering Mediation and Handover Reconstruction Analysis Back-End Reporting (Software-based

Front-End (Hardware-based Intelligence System)

Intelligence System)

Filtering Criterias

Parameters for Identifying Username & Network Access Identifier L2 L7 Protocol (MAC, VPN, MPLS, IPV4/6, UDP/TCP, FTP, HTTP, DHCP etc) Dial-in Calling Number Identity Cable Modem Identity Generic Keyword Spotting (Regular Expression) RADIUS (Subscribers name) Email (POP, IMAP, SMTP) Webmail Sender and Its Contents Chat/IM Conversation VoIP Encrypted Protocols (Skype, Torrent, VPN and SSL)

Conceptual Framework

Capturing data from the source Filtering Data (Deep Packet Inspection) Decoding and processing data Indexing and data storage Refining data through multiple interactive analysis

Giga Interface Network Processing Units Data Mining & Text Mining Data Warehouse Business Intelligence

Front-End (Provider Edge)

Multiple passive taps (copper/fibre @10Gbps) Multiple network probe (@10Gbps) Mediation Server Network Elements (Switches, Routers, Racks, etc)

Front-End Capabilities

Passive interception IP probes with on-board DPI L2 L7 Protocol detection IP Protocol stack interception MPLS, VLAN, VPN interception

Back-End (LEA Operational Center)

Storage Monitoring Systems Analysis Result Reporting Other customization needs

How IMS Works

Proposed Network Topology

Can be changed based on further requirements/identifications

How NPUs Works

How Indexing Works

Proof of Concept

Network Monitoring for Security Analysis
No ratings yet
Network Monitoring for Security Analysis
22 pages
Network Management Essentials
100% (1)
Network Management Essentials
70 pages
Network Infrastructure Characterization Guide
No ratings yet
Network Infrastructure Characterization Guide
39 pages
Part 2 Slides
No ratings yet
Part 2 Slides
48 pages
Network Change Management Documentation
No ratings yet
Network Change Management Documentation
15 pages
IMS Network Architecture Guide
100% (1)
IMS Network Architecture Guide
34 pages
Understanding SNMP and Network Management
No ratings yet
Understanding SNMP and Network Management
12 pages
Network Security Fundamentals Overview
No ratings yet
Network Security Fundamentals Overview
35 pages
8 NetworkManagementandSecurity - PPTX 214046
No ratings yet
8 NetworkManagementandSecurity - PPTX 214046
114 pages
Alatalo Mika
No ratings yet
Alatalo Mika
73 pages
EIMS - Infraon Netflow Data Sheet
No ratings yet
EIMS - Infraon Netflow Data Sheet
4 pages
CA Module 15
No ratings yet
CA Module 15
24 pages
Network Security Protocols Overview
No ratings yet
Network Security Protocols Overview
1 page
Network Monitoring System
No ratings yet
Network Monitoring System
25 pages
Network Management
No ratings yet
Network Management
36 pages
VOD-3262 - Security With StealthWatch Using NetFlow
No ratings yet
VOD-3262 - Security With StealthWatch Using NetFlow
54 pages
iMC Platform: Enhancing Network Management
No ratings yet
iMC Platform: Enhancing Network Management
34 pages
Network Management & Monitoring Guide
No ratings yet
Network Management & Monitoring Guide
27 pages
Cyops1.1 Chp07-Dts Oa
No ratings yet
Cyops1.1 Chp07-Dts Oa
49 pages
SOC July 2022
No ratings yet
SOC July 2022
57 pages
IPTraffic Test&Measure Literature
No ratings yet
IPTraffic Test&Measure Literature
14 pages
Essential Network Management Strategies
No ratings yet
Essential Network Management Strategies
17 pages
Secure Network Architecture Essentials
No ratings yet
Secure Network Architecture Essentials
126 pages
Virtual Memory
No ratings yet
Virtual Memory
8 pages
Unit 3
No ratings yet
Unit 3
16 pages
CyOps - 7
No ratings yet
CyOps - 7
50 pages
HP Intelligent Management Center Enterprise Software Platform
No ratings yet
HP Intelligent Management Center Enterprise Software Platform
6 pages
Network Management Essentials Guide
No ratings yet
Network Management Essentials Guide
52 pages
RMON for Network Administrators
No ratings yet
RMON for Network Administrators
7 pages
Top-Down Network Design: Chapter Three
No ratings yet
Top-Down Network Design: Chapter Three
26 pages
Oromia Police College
No ratings yet
Oromia Police College
27 pages
Topic 2-Transmission Media and Network HardwareSoftware
No ratings yet
Topic 2-Transmission Media and Network HardwareSoftware
49 pages
SNMP Tutorial: DR Pipat Sookavatana CPEN 1331
No ratings yet
SNMP Tutorial: DR Pipat Sookavatana CPEN 1331
44 pages
Compiled By: Girma.N (MSC in Cse) : Unit One: Implementing Network Monitoring
No ratings yet
Compiled By: Girma.N (MSC in Cse) : Unit One: Implementing Network Monitoring
24 pages
Benchmarking Intrusion Detection Systems
No ratings yet
Benchmarking Intrusion Detection Systems
26 pages
Monitoring System Technical Proposal
No ratings yet
Monitoring System Technical Proposal
41 pages
Chapter 15
No ratings yet
Chapter 15
36 pages
PertSol ILD International LI
No ratings yet
PertSol ILD International LI
10 pages
Oromia Police College: By: Group 5 Submssion:-23/04/2025 Submitted To
No ratings yet
Oromia Police College: By: Group 5 Submssion:-23/04/2025 Submitted To
28 pages
Network Traffic Analysis and Sniffing
No ratings yet
Network Traffic Analysis and Sniffing
8 pages
SNMP V1 Network Management Overview
No ratings yet
SNMP V1 Network Management Overview
25 pages
Group 9
No ratings yet
Group 9
37 pages
Network Management Standards Overview
No ratings yet
Network Management Standards Overview
27 pages
02 - Network Mapping and Baselining L2 PDF
No ratings yet
02 - Network Mapping and Baselining L2 PDF
46 pages
RMON Network Management Overview
No ratings yet
RMON Network Management Overview
79 pages
Physical Security and Risk Management Guide
No ratings yet
Physical Security and Risk Management Guide
36 pages
Network Monitoring and Management Guide
No ratings yet
Network Monitoring and Management Guide
48 pages
Networking Monitoring and Analysis 4
No ratings yet
Networking Monitoring and Analysis 4
12 pages
Understanding Bandwidth and Networking Protocols
No ratings yet
Understanding Bandwidth and Networking Protocols
4 pages
NGN - Core Network
No ratings yet
NGN - Core Network
42 pages
NTA - Concept Note - June 2020
No ratings yet
NTA - Concept Note - June 2020
6 pages
Network Monitoring and Analysis Techniques
No ratings yet
Network Monitoring and Analysis Techniques
15 pages
Network Management and O&M Overview
No ratings yet
Network Management and O&M Overview
34 pages
The IP Multimedia Subsystem
No ratings yet
The IP Multimedia Subsystem
242 pages
Network Management Fundamentals Quiz
No ratings yet
Network Management Fundamentals Quiz
23 pages
en
No ratings yet
en
37 pages
MIT Technology Review Business Report The Internet of Things NI
No ratings yet
MIT Technology Review Business Report The Internet of Things NI
14 pages
Change Implementation Process Guide
No ratings yet
Change Implementation Process Guide
1 page
Managing Your Stress: Working Well
No ratings yet
Managing Your Stress: Working Well
18 pages
Brabham Crowdsourcing Problem Solving PDF
No ratings yet
Brabham Crowdsourcing Problem Solving PDF
16 pages
OSS Managed Services - A New Business Model For Service Providers
No ratings yet
OSS Managed Services - A New Business Model For Service Providers
12 pages
TLS & SSLv3 Vulnerabilities
No ratings yet
TLS & SSLv3 Vulnerabilities
25 pages
Configuring STB NIP 2212 Modbus TCP
No ratings yet
Configuring STB NIP 2212 Modbus TCP
17 pages
OLT ZTE Course - Network Education
No ratings yet
OLT ZTE Course - Network Education
5 pages
Datasheet OSA5420 - Series
No ratings yet
Datasheet OSA5420 - Series
6 pages
Profibus: What A Fieldbus System Needs To Offer
No ratings yet
Profibus: What A Fieldbus System Needs To Offer
48 pages
Understanding Network Provisioning in IT
No ratings yet
Understanding Network Provisioning in IT
15 pages
HansRobot Communication Protocol Guide
No ratings yet
HansRobot Communication Protocol Guide
57 pages
Understanding Network Quality Analysis (NQA)
No ratings yet
Understanding Network Quality Analysis (NQA)
5 pages
Router Packet Handling at Input Ports
No ratings yet
Router Packet Handling at Input Ports
21 pages
Networking Basics for Tech Enthusiasts
No ratings yet
Networking Basics for Tech Enthusiasts
38 pages
ICT 4010 Test 1 Marking Guide C
No ratings yet
ICT 4010 Test 1 Marking Guide C
4 pages
Unit 3
No ratings yet
Unit 3
30 pages
Stop and Wait ARQ
100% (2)
Stop and Wait ARQ
13 pages
Catalyst Ie3100 Rugged Series Ds
No ratings yet
Catalyst Ie3100 Rugged Series Ds
20 pages
DHCP Incident DhcpLog
No ratings yet
DHCP Incident DhcpLog
20 pages
Addpac GSM CLI Manual Guide - Eng
No ratings yet
Addpac GSM CLI Manual Guide - Eng
56 pages
Installation Manual IC-602A: I.Confirmation Prior To Installation III. Installation Procedure
No ratings yet
Installation Manual IC-602A: I.Confirmation Prior To Installation III. Installation Procedure
5 pages
Modules 9 - 12 Group Exam Answers PART 1
No ratings yet
Modules 9 - 12 Group Exam Answers PART 1
2 pages
Network Security University Question Papers
No ratings yet
Network Security University Question Papers
24 pages
PCI Compliance Vulnerability Report
No ratings yet
PCI Compliance Vulnerability Report
91 pages
Config Mtu Nexus
No ratings yet
Config Mtu Nexus
4 pages
WFO V15 2 Genesys Integration With Recorder
100% (1)
WFO V15 2 Genesys Integration With Recorder
97 pages
RCSP RDL 6000 Mod 2 ENB Overview Config R1.3.2 V1.3
No ratings yet
RCSP RDL 6000 Mod 2 ENB Overview Config R1.3.2 V1.3
64 pages
Avionics Full-Duplex Switched Ethernet: History
No ratings yet
Avionics Full-Duplex Switched Ethernet: History
6 pages
CoAP and XMPP in IoT Networking
No ratings yet
CoAP and XMPP in IoT Networking
21 pages
CSMA/CD Throughput: CS 536 Park
No ratings yet
CSMA/CD Throughput: CS 536 Park
21 pages
Understanding Internet Networking Basics
No ratings yet
Understanding Internet Networking Basics
15 pages
Unreadable Document Content
No ratings yet
Unreadable Document Content
21 pages
S4100
No ratings yet
S4100
112 pages
OSPFv3 Fundamentals for CCNP ENARSI
No ratings yet
OSPFv3 Fundamentals for CCNP ENARSI
16 pages
Tellabs T-8606 V3.60 Release Notes
No ratings yet
Tellabs T-8606 V3.60 Release Notes
6 pages

Advanced Internet Monitoring System Guide

Uploaded by

Advanced Internet Monitoring System Guide

Uploaded by

Internet Monitoring System (IMS)

Prepared by Betha Aris <betha.aris@IEEE.org>

Front-End (Hardware-based Intelligence System)

Front-End (Provider Edge)

Back-End (LEA Operational Center)

Storage Monitoring Systems Analysis Result Reporting Other customization needs

How IMS Works

Proposed Network Topology

How NPUs Works

How Indexing Works

You might also like