| In recent years, peer-to-peer technology has been developing rapidly. P2Ptechnology has played an important role in file-sharing, real-time streamingmedia, video-on-demand and distributed computing systems. By using P2Ptechnology, users can get more reliable resources including more vivid contentsand in more diverse forms, but the widespread use of P2P technology has alsobrought many negative effects. Nowadays, companies, schools and many otherorganizations’ central business are all depending on the Internet, monitoringreport given by China Internet Network Information Center shows that during thepeak period of the network traffic, nearly80%of traffic are the results from P2Papplications, which brings long-time-to-respond issue in critical business, if thesituation is serious enough, it may affect the normal network applications.Especially the P2P technology has became more complex, P2P based applicationsare not only unlimited bandwidth, but also functioned with dynamic ports,disguising its own traffic as HTTP traffic, which is difficult to be discovered byfirewalls, routers, and other filtration equipment.This paper designed a P2P traffic recognition and control systems in order tosolve the problem described above。Through a comprehensive analysis of theapplication environment, the system chose to use the Linux operating system.First, the paper chose a method that is to put P2P traffic recognition and controlsystem on the existing network equipment. After that, this paper presents acontrol scheme that is more suitable for use in small networks. Secondly, thepaper analyzed the main functions of the system need to be achieved, anddesigned five functional modules; they are packet acquisition module, P2P trafficrecognition module, P2P traffic control module and system remote managementmodule. Subsequently, each of the sub-modules was designed in detail. Bycomparing the packet capturing mainstream technology, pf_ring packet capturing mechanism was chosen as the primary technology in the packet acquisitionmodule. By studying the mainstream P2P traffic identification method, combingwith the characteristics of networks and systems, the paper designed a hybridrecognition scheme in the P2P traffic identification module. This paper gave acontrol method that is a combination of Netfilter framework and TC tools in P2Ptraffic control module. Through the use of Web technology, the system canachieve the purpose of remote configuration of the system. On the Web, thespecific P2P traffic can be killed or be restricted. Non-specific P2P traffic can beset priority. Finally, P2P traffic identification and control systems be tested, thetest prove it is effective... |
PDF Full Text Request