摘要
随着网络的迅速发展,信息量的增大,大量的无效数据降低了网络监控的效率,对网络数据包的捕获和过滤变得尤为必要了。BPF数据包过滤器以其简洁的结构在计算机内核中对数据报进行第1层过滤,减轻了用户层工作的负担并且提高了抓包率。研究了BPF的工作原理和过滤模型并且提出了在Windows系统下如何运用BPF过滤器开发包过滤系统。BPF数据包过滤器在网络监控方面有巨大的研究和使用价值。
With the rapid development of the network and the increase of the amount of information, a large amount of invalid data have reduced the efficiency of the network monitoring, It becomes particularly essential to catch and filter these network packets. BPF filters packets with succinct structure among computer kernel, lightened burden of working and improved the rate of stressing packets among the user layer. The operation principle and model of filtering for BPF were researched and how to use BPF to develop data filter system under Windows System was put forward.
出处
《计算机工程与设计》
CSCD
北大核心
2005年第9期2384-2385,2394,共3页
Computer Engineering and Design
