US 12,323,311 B2
Packet capture system, method and program
Saki Hatta, Tokyo (JP); Hiroyuki Uzawa, Tokyo (JP); Shuhei Yoshida, Tokyo (JP); and Koyo Nitta, Tokyo (JP)
Assigned to NIPPON TELEGRAPH AND TELEPHONE CORPORATION, Tokyo (JP)
Appl. No. 18/254,101
Filed by Nippon Telegraph and Telephone Corporation, Tokyo (JP)
PCT Filed Dec. 9, 2020, PCT No. PCT/JP2020/045811
§ 371(c)(1), (2) Date May 23, 2023,
PCT Pub. No. WO2022/123676, PCT Pub. Date Jun. 16, 2022.
Prior Publication US 2023/0421463 A1, Dec. 28, 2023
Int. Cl. G06F 15/173 (2006.01); H04L 43/026 (2022.01); H04L 43/028 (2022.01); H04L 47/32 (2022.01)
CPC H04L 43/028 (2013.01) [H04L 43/026 (2013.01); H04L 47/32 (2013.01)] 10 Claims
OG exemplary drawing
 
1. A packet capture system for capturing packets flowing through a capture target network, comprising:
a plurality of stages of packet distribution devices that are cascade-connected and configured to capture packets of a specific flow;
wherein each of the plurality of stages of packet distribution devices includes a memory, a hardware processor, a packet analyzer configured to analyze inputted packets and a flow identifier configured to identify a flow to be captured;
wherein packet distribution devices of the plurality of stages of packet distribution devices other than a last-stage packet distribution device of the plurality of stages of packet distribution devices include a distributor configured to distribute the inputted packets to capture the packets of the flow to be captured and configured to output packets of a flow not to be captured to a next-stage packet distribution device; and
wherein the last-stage packet distribution device of the plurality of stages of packet distribution devices includes a filter configured to filter the inputted packets to capture the packets of the flow to be captured and configured to discard the packets of the flow not to be captured.