Design And Implementation Of System Of Network Data Packet Capture Basedon WinPcap

With the continuous development of computer technology and the rapidpopularization of network applications, the network has increasingly become anindispensable tool in the daily life. At the same time, the safety and reliability of thenetwork has been paid increasing attention. The security refers that the information ofnetwork will not be leaked, changed and destructed. Reliability means that the networksystem could run continuously and reliably, and the network service is not interrupted.The technologies of capturing, monitoring and analyzing of network data are basictechnologies for network maintenance, but also the kernel means of the networkintrusion. So it is of great significance to research the technology of capturing,monitoring and analyzing of network data for ensuring the health, safety and reliableoperation of network.This paper mainly studies the capture and analysis technologies of network datapacket, and a data packet capture system is developed based on technology of WinPcap,which realize the capture and analysis of network data packet. Firstly, the associatedresearch status, theory and technology of the network data security are analyzed andsummarized. And the study is focused on the basically implemental mechanism,methods and means of network data packet capture and analysis, and currently beingapplied network analysis systems. Secondly, the principle and advantages of Berkeleypacket filter (BPF) using for packet capture, filtering, as well as the work mechanismand internal architecture of WinPcap network data capture library are studied. Finally,the hierarchy of software of network packet capture and analysis is concretely analyzed.And by using techniques of software engineering and object-oriented analysis, specificsoftware design and implementation of network packet capture and analysis ispresented by calling library of WinPcap packet capture and analysis. Then theWinPcap-based network data packet capture and analysis system is implemented byprogramming with visual C++.Nowadays, the research of WinPcap-based (LibPcap-based) network data packetcapture and analysis system is constantly evolving for its open source and it is an openproblem of the technology. With the innovation of network technology, the follow-upresearch on the most widely used system is benefit to not only the evolution of thislibrary and its application system, but also to the affording of latest solution for thesustainable developing and changing problem of network security.