English

I-Mylinking™ Network Packet Broker(NPB): Ikhanyisa iiKona eziMnyama zeNethiwekhi yakho

Kwiindawo zanamhlanje ezintsonkothileyo, ezinesantya esiphezulu, kwaye zihlala zifihliwe, ukufikelela kwimbonakalo ebanzi kubaluleke kakhulu kukhuseleko, ukujonga ukusebenza kunye nokuthotyelwa.Iibroker zePakethi zeNethiwekhi (NPBs)ziye zavela kwii-aggregators ze-TAP ezilula ukuya kumaqonga aphucukileyo, ahlakaniphileyo ayimfuneko ekulawuleni idatha yezothutho kunye nokuqinisekisa ukuba ukubeka iliso kunye nezixhobo zokhuseleko zisebenza ngokufanelekileyo. Nalu ujongo oluneenkcukacha kwizicelo zabo eziphambili kunye nezisombululo:

Ingxaki enguNdoqo iiNPBs Sombulula:
Uthungelwano lwale mihla luvelisa umthamo omkhulu wezithuthi. Ukuqhagamshela izixhobo ezibalulekileyo zokhuseleko kunye nezixhobo zokubeka iliso (IDS/IPS, NPM/APM, DLP, forensics) ngokuthe ngqo kwiikhonkco zenethiwekhi (ngeezibuko ze-SPAN okanye ii-TAPs) ayisebenzi kwaye ihlala ingenakwenzeka ngenxa:

1. IsiXhobo sokuNxibelela: Izixhobo zizaliswe yitrafikhi engabalulekanga, ukulahla iipakethi kunye nezisongelo ezilahlekileyo.

2. Ukungasebenzi kakuhle kwesixhobo: Izixhobo zenkunkuma zisetyenzwa kabini okanye idatha engeyomfuneko.

3. I-Complex Topology: Uthungelwano olusasazwayo (amaZiko eeNkcukacha, iLifu, ii-Ofisi zeSebe) zenza kube ngumngeni kwindawo eyodwa yokubeka iliso.

4. IiNdawo eziFamekileyo eziFihliweyo: Izixhobo azikwazi ukuhlola itrafikhi efihliweyo (i-SSL/TLS) ngaphandle kokuguqulelwa kwekhowudi.

5. IziBonelelo ze-SPAN ezinyiniweyo: izibuko ze-SPAN zisebenzisa izixhobo zokutshintsha kwaye kaninzi azikwazi ukusingatha i-traffic yomlinganiselo opheleleyo.

Isisombululo se-NPB: I-Intelligent Traffic Mediation
IiNPB zihlala phakathi kwee-TAP zenethiwekhi/amazibuko e-SPAN kunye nezixhobo zokubeka iliso/zokhuseleko. Basebenza "njengamapolisa endlela" akrelekrele, esenza:

1. Udibaniso: Dibanisa i-traffic esuka kwiikhonkco ezininzi (zomzimba, ezibonakalayo) ukuya kwiifidi ezidibeneyo.

2. Ukucoca: Ukukhetha phambili kuphela i-traffic efanelekileyo kwizixhobo ezithile ezisekelwe kwiikhrayitheriya (IP / MAC, VLAN, protocol, port, application).

3. Ukulinganiswa komthwalo: Ukusasaza ukuhamba kwetrafikhi ngokulinganayo kwimizekelo emininzi yesixhobo esifanayo (umzekelo, ii-IDS ezihlanganisiweyo zoluvo) ukwenzela ukukala kunye nokomelela.

4. Ukudityaniswa: Ukuphelisa iikopi ezifanayo zeepakethi ezifakwe kwiilinki ezingafunekiyo.

5. I-Packet Slicing: I-Truncate iipakethi (ukususa umvuzo) ngelixa ugcina iintloko, ukunciphisa i-bandwidth kwizixhobo ezifuna kuphela imethadatha.

6. I-SSL/TLS Ukukhutshwa kwemfihlo: Ukuphelisa iiseshoni ezifihliweyo (usebenzisa izitshixo), ubonisa i-traffic-text ecacileyo kwizixhobo zokuhlola, emva koko uguqulele kwakhona.

7. Ukuphindaphinda / ukuphindaphinda: Thumela umjelo ofanayo wetrafikhi kwizixhobo ezininzi ngaxeshanye.

8. Ukucubungula okuPhezulu: Ukukhutshwa kwemethadatha, ukuveliswa kokuhamba, ukubethelwa kwexesha, ukufihla idatha ebuthathaka (umzekelo, iPII).

I-ML-NPB-3440L 3D

Fumana apha ukuze wazi ngakumbi ngale modeli:

I-Mylinking™ Network Packet Broker(NPB) ML-NPB-3440L

16*10/100/1000M RJ45, 16*1/10GE SFP+, 1*40G QSFP kunye ne-1*40G/100G QSFP28, Max 320Gbps

Iimeko zeSicelo esineenkcukacha & nezisombululo:

1. Ukuphucula ukuJonga uKhuseleko (IDS/IPS, NGFW, Threat Intel):

○ Imeko: Izixhobo zokhuseleko zonganyelwe zizixa eziphezulu zetrafikhi yaseMpuma-Ntshona kwiziko ledatha, ukulahla iipakethi kunye nezisongelo zentshukumo ezilahlekileyo. I-traffic efihliweyo ifihla imithwalo eyingozi.

○ Isisombululo seNPB:I-aggregate traffic esuka kumakhonkco abalulekileyo e-intra-DC.

* Faka izihluzo zegranular ukuthumela kuphela amacandelo etrafikhi akrokrelekayo (umzekelo, amazibuko angengawo aqhelekileyo, ii-subnets ezithile) kwi-IDS.

* Layisha ibhalansi kwiqela le-IDS zoluvo.

* Yenza i-SSL/TLS decryption kwaye uthumele i-traffic-text ecacileyo kwi-IDS/Threat Intel iqonga ukuze lihlolwe nzulu.

* Ukunciphisa itrafikhi kwiindlela ezingafunekiyo.Iziphumo:Izinga eliphezulu lokubona izoyikiso, ukuncitshiswa kwezinto ezingalunganga, ukusetyenziswa kobutyebi be-IDS okwandisiweyo.

2. Ukuphucula ukuBeka esweni iNtsebenzo (NPM/APM):

○ Imeko: Izixhobo zokuJonga ukuSebenza koThungelwano ziyasokola ukulungelelanisa idata esuka kumakhulu amakhonkco asasaziweyo (WAN, ii-ofisi zesebe, ilifu). Ukuthathwa kwepakethi epheleleyo ye-APM kubiza kakhulu kwaye kunzulu kakhulu.

○ Isisombululo seNPB:

* Ulungelelwaniso lwetrafikhi ukusuka kwii-TAP/ii-SPAN ezisasazwe ngokwejografi ukuya kwilaphu le-NPB eliphakathi.

* Hlunga i-traffic ukuthumela kuphela ukugeleza okuthe ngqo kwesicelo (umzekelo, i-VoIP, i-SaaS ebalulekileyo) kwizixhobo ze-APM.

* Sebenzisa i-packet slicing yezixhobo ze-NPM ezifuna ngokuyintloko ukuhamba / idatha yentengiselwano yexesha (izihloko), ukunciphisa kakhulu ukusetyenziswa kwe-bandwidth.

* Phinda ulandelelwano lweemetrikhi eziphambili zokusebenza kuzo zombini izixhobo ze-NPM kunye ne-APM.Iziphumo:Umbono opheleleyo, onxibeleleneyo wokusebenza, iindleko ezincitshisiweyo zesixhobo, ukuncipha kwe-bandwidth ngaphezulu kwentloko.

3. Ukubonakala kwamafu (Kusesidlangalaleni/kuBucala/kuHybrid):

○ Imeko: Ukunqongophala kofikelelo lwe-TAP yendalo kumafu oluntu (AWS, Azure, GCP). Ubunzima bokubamba kunye nokuqondisa umatshini we-virtual / container traffic kukhuseleko kunye nezixhobo zokubeka iliso.

○ Isisombululo seNPB:

* Beka i-NPBs ebonakalayo (vNPBs) ngaphakathi kwendawo yelifu.

* Ii-vNPB zicofa iswitshi yetrafikhi (umzekelo, nge-ERSPAN, i-VPC Traffic Mirroring).

* Isihluzo, iaggregate, kunye nokulinganisela komthwalo we-East-West kunye noMntla-South-South cloud traffic.

* Itonela ngokukhuselekileyo itrafikhi efanelekileyo ubuyela kwindawo ebonakalayo ye-NPBs okanye izixhobo zokujonga ezisekwe ilifu.

* Hlanganisa kunye neenkonzo zokubonakala zefu-native.Iziphumo:Ukuma kokhuseleko okungaguqukiyo kunye nokubekwa kweliso kokusebenza kuzo zonke iindawo ezixubeneyo, ukoyisa imida yokubonakala kwamafu.

4. UThintelo loLahleko lweDatha (DLP) kunye nokuThobela:

○ Imeko: Izixhobo ze-DLP kufuneka zihlole itrafikhi ephuma ngaphandle kwidatha enovakalelo (PII, PCI) kodwa zizaliswe lulawulo olungenamsebenzi lwangaphakathi. Uthotyelo lufuna ukubeka esweni ukuhamba kwedatha elawulwayo.

○ Isisombululo seNPB:

* Hlunga i-traffic ukuthumela kuphela ukuphuma okuphumayo (umzekelo, okulungiselelwe i-intanethi okanye amaqabane athile) kwi-injini ye-DLP.

* Faka isicelo sokuhlolwa kwepakethi enzulu (DPI) kwi-NPB ukuchonga ukuhamba okuqulethe iindidi zedatha ezilawulwayo kwaye uzibeke phambili kwisixhobo se-DLP.

* Gcina idatha ebuthathaka (umzekelo, amanani ekhadi letyala) ngaphakathi kweepakethingaphambiliukuthumela kwizixhobo ezingabalulekanga kakhulu zokugada ukugawulwa kwemithi.Iziphumo:Ukusebenza kwe-DLP esebenzayo ngakumbi, ukuncitshiswa kobuxoki, ukuphicothwa kokuthotyelwa okuphuculweyo, ubumfihlo bedatha obuphuculweyo.

5. I-Network Forensics & Troubleshooting:

○ Imeko: Ukufumanisa umba wokwenziwa komsebenzi ontsonkothileyo okanye ukophulwa kufuna ukuthathwa kwepakethi epheleleyo (PCAP) kumanqaku amaninzi ngokuhamba kwexesha. Ukuqalisa ukubamba ngesandla kuyacotha; ukugcina yonke into ayinakwenzeka.

○ Isisombululo seNPB:

* Ii-NPB zinokukhusela i-traffic ngokuqhubekayo (ngesantya somgca).

* Cwangcisa izichukumisi (umzekelo, imeko yemposiso ethile, i-traffic spike, isilumkiso soyikiso) kwi-NPB ukubamba ngokuzenzekelayo i-traffic efanelekileyo kwisixhobo sokubamba ipakethi eqhagamshelweyo.

* Hlunga kwangaphambili itrafikhi ethunyelwe kwisixhobo sokubamba ukugcina kuphela oko kuyimfuneko.

* Phinda kwakhona umjelo obalulekileyo wetrafikhi kwisixhobo sokubamba ngaphandle kokuchaphazela izixhobo zokuvelisa.Iziphumo:Ukukhawuleza kwe-meanti-time-resolution (MTTR) yokuphuma / ukuphulwa, ukuthathwa kwe-forensic ekujoliswe kuyo, ukunciphisa iindleko zokugcina.

Mylinking™ Network Packet Broker Total Solution

Iingqwalasela zokuPhunyezwa kunye nezisombululo:

I-Scalability: Khetha ii-NPB ezinoxinano olwaneleyo lwe-port kunye ne-throughput (1/10/25/40/100GbE+) ukusingatha i-traffic yangoku neyexesha elizayo. I-chassis yemodyuli ihlala ibonelela ngeyona nto intle yokukala. I-NPBs ebonakalayo yenza umlinganiselo weelastiki kwilifu.

Ukuqina: Ukuphumeza ii-NPB ezingafunekiyo (izibini ze-HA) kunye neendlela ezingafunekiyo kwizixhobo. Qinisekisa ungqamaniso lwelizwe kuseto lwe-HA. Sebenzisa i-NPB yokulinganisa umthwalo wokomelela kwesixhobo.

Ulawulo kunye nokuzenzekela: Ulawulo oluphakathi lubalulekile. Khangela i-APIs (RESTful, NETCONF / YANG) yokudibanisa kunye neeplatifomu ze-orchestration (Ansible, Puppet, Chef) kunye ne-SIEM / SOAR iinkqubo zokuguqulwa komgaqo-nkqubo oguquguqukayo ngokusekelwe kwizilumkiso.

Ukhuseleko: Khusela ujongano lolawulo lweNPB. Lawula ufikelelo ngokungqongqo. Ukuba i-decrypting traffic, qinisekisa imigaqo-nkqubo engqongqo yolawulo kunye nemijelo ekhuselekileyo yokudluliselwa okungundoqo. Cinga ngokufihla idatha ebuthathaka.

Udibaniso lweSixhobo: Qinisekisa ukuba iNPB ixhasa uqhagamshelo lwesixhobo esifunekayo (ujongano olubonakalayo/lokwenene, iiprothokholi). Qinisekisa ukuhambelana neemfuno zesixhobo esithile.

Ngoko,Network Packet Brokersazisebubo ubunewunewu bokuzikhethela; zingamacandelo asisiseko seziseko ezingundoqo zokuphumeza ukubonakala kothungelwano olunokusetyenzwa kwixesha langoku. Ngokudibanisa ngobukrelekrele, ukuhluza, ukulinganisa umthwalo, kunye nokulungiswa kwetrafikhi, ii-NPB zixhobisa izixhobo zokhuseleko kunye nokubeka iliso ukuze zisebenze ngokufanelekileyo kunye nokusebenza kakuhle. Badiliza iisilos zokubonakala, boyise imingeni yesikali kunye ne-encryption, kwaye ekugqibeleni babonelele ngengcaciso efunekayo ukukhusela uthungelwano, ukuqinisekisa ukusebenza kakuhle, ukuhlangabezana nezigunyaziso zokuthotyelwa, kunye nokusombulula ngokukhawuleza imiba. Ukuphumeza isicwangciso esomeleleyo se-NPB linyathelo elibalulekileyo lokwakha uthungelwano olubonakalayo ngakumbi, olukhuselekileyo, noluzinzileyo.

Ixesha lokuposa: Jul-07-2025
Cofa u-enter ukukhangela okanye i-ESC ukuvala