Uvavanyo lwepakethi enzulu (I-DPI)Ngaba itekhnoloji esetyenziswe kwiipakethi zenethiwekhi (i-NPBS) yokuhlola nokuhlalutya imixholo yeepakethi zenethiwekhi kwinqanaba le-Grantur. Kubandakanya ukuvavanya ukuhlawulwa, izihloko, kunye nolunye ulwazi lweProtocol kwiipakethi zokufumana ulwazi oluneenkcukacha kwi-traffic.
I-DPI ihamba ngaphaya kohlalutyo olude olunesihloko kwaye linika ukuqonda okunzulu kwedatha ehamba ngenethiwekhi. Ivumela uhlolo olunzulu lweeprotokholi zesicelo, ezinjenge-http, i-FTP, i-SMTP, i-VIIP, okanye iiprothokholi ezisasazayo. Ngokuvavanya umxholo owona mxholo kwiipakethi, i-DPI inokufumanisa kwaye ichonge izicelo ezithile, iiprothokholi, okanye iipateni zedatha ethile.
Ukongeza kuhlalutyo lweedilesi zomthombo, iidilesi zokuphela, amazibuko omthombo, iindidi zemigaqo, i-DPI ikwasongeza uhlalutyo lwesicelo kunye neziqulatho zazo. Xa ipakethi ye-1P, i-TCP okanye i-UDP yedatha ihamba kwinkqubo yeqela le-DPI isekwe kwitekhnoloji ye-DPI yenkqubo ye-OSI ukulungelelanisa itrafikhi ye-OSI, ukuze iphinde ilungelelanise itrafiki ngokwenkqubo yolawulo echazwe yinkqubo.
Isebenza njani i-DPI?
Imililo yemveli yemveli ihlala iswele amandla okuqhubekeka ukwenza ukhangelo lwexesha lokwenyani kwi-tramus enkulu yendlela. Njengokuqhubela phambili kwetekhnoloji, i-DPI ingasetyenziselwa ukwenza iitsheki ezintsonkothileyo ukukhangela iintloko kunye nedatha. Ngokwesiqhelo, ii-firewills ezinenkqubo yokufunyanwa kwezinto zihlala zisebenzisa i-DPI. Kwilizwe apho ulwazi lwedijithali lubaluleke kakhulu, zonke iziqwenga zolwazi lwedijithali zihanjiswa kwi-Intanethi kwiipakethi ezincinci. Oku kubandakanya i-imeyile, imiyalezo ithunyelwe nge-APP, iiwebhusayithi ezityelele, iincoko zevidiyo, nangaphezulu. Ukongeza kwidatha eyiyo, ezi pakethi zibandakanya i-metadata echaza umthombo wezothutho, umxholo, indawo oya kuyo, kunye nolunye ulwazi olubalulekileyo. Ngetekhnoloji yokucoca iPacket, idatha inokubekwa esweni kwaye ilawulwe ukuqinisekisa ukuba idluliselwe kwindawo efanelekileyo. Kodwa ukuqinisekisa ukhuseleko lwenethiwekhi, ukucoca ipakethi yemveli kude ngokwaneleyo. Ezinye iindlela eziphambili zokuhlolwa kwepakethi enzulu kwinethiwekhi kudweliswe apha ngezantsi:
Imowudi yokuthelekisa / utyikityo
Ipakethi nganye ijongiwe ngomdlalo ngokuchasene nedatha yedatha yohlaselo lwenethiwekhi eyaziwayo yi-firewall enezakhono zokuchonga (i-IDS). I-IDS ikhangela kwiipatheni ezithile ezikhoyo ezingalunganga kwaye ikhubaze itrafikhi xa ifunyenwe iipateni ezinobungozi. Ukungancedisi komgaqo-nkqubo ofanayo wokuprikitya kukuba kuyasebenza kuphela kwizikrini ezihlaziyiweyo rhoqo. Ukongeza, le teteknoloji inokuzikhusela kuphela kwizisongelo ezaziwayo okanye uhlaselo.
Iprotocol
Ukusukela ukuba indlela yokukhuphela iProtocol ayivumeli yonke idatha engahambelani nedatha yophawu, indlela yokutshekisha iprotocol esetyenziswe yi-ID ye-ID ye-ID ayinazo iimpazamo zePateni / indlela yokutyikitya. Endaweni yoko, ukwamkela umgaqo-nkqubo wokuchaswa okungagqibekanga. Ingcaciso ye-protocol, i-firewills igqiba ekubeni zeziphi iindlela zokugcwala zivumelekile kwaye zikhusele inethiwekhi kwizisongelo ezingaziwayo.
Inkqubo yokuthintela i-ITRUSI
Izisombululo ze-Ips zingavimba ukuhanjiswa kweepakethi eziyingozi ngokusekwe kumxholo wazo, ngokwenza oko kuyayeka uhlaselo lwexeshana. Oku kuthetha ukuba ukuba ipakethi imele umngcipheko owaziwayo wokhuseleko, i-IPS iya kuthintela ngokusekwe kwitrafikhi yendlela esekwe kwimithetho echaziweyo. Enye into engalunganga ye-IPS yimfuno yokuhlaziya rhoqo i-cyber isoyikiso se-cyber ineenkcukacha malunga nezisongelo ezitsha, kunye nokuba kunokwenzeka ukuba ziphiliswe. Kodwa le ngozi inokuncitshiswa ngokwenza imigaqo-nkqubo yolondolozo kunye nemilinganiselo yesiko, ukuseka indlela efanelekileyo yokuziphatha kwizinto zenethiwekhi, kunye nokuvavanya izilumkiso zokuphucula ukubekwa kweliso kunye nokwazisa.
I-1- I-DPI (iPakethi yePakethi yePakethi) kumthengisi wePakethi yenethiwekhi
"Inzulu" yenqanaba lePakethi kunye nePakethi yePakethi yesiqhelo, "Uvavanyo lwepakethi oluqhelekileyo" kuphela olu luhlalutyo lwe-IP, kubandakanya idilesi ye-Port kunye ne-Port kunye ne-PORTORT, i-SPORT, ichonge imisebenzi eyahlukeneyo, ukufezekisa imisebenzi ephambili:
1) Uhlalutyo lwesicelo-Uhlalutyo lwendlela yokuqulunqwa kwendlela, uhlalutyo lwentsebenzo, kunye nohlalutyo lokuhamba
2) Uhlalutyo lomsebenzisi-Ukwahlula kweqela labasebenzisi, uhlalutyo lokuziphatha, uhlalutyo lwesiphelo, uhlalutyo loTrafti, njl.
3) Uhlalutyo lwezinto zenethiwekhi-uhlalutyo olusekwe kwiimpawu zengingqi (isixeko, isithili, isitalato, njl.njl) kunye nomthwalo wesitishi
I-4) Ulawulo lweTrafikhi - I-P2P Shicing, isiqinisekiso se-Q2P, isiqinisekiso se-Bandwidth, ulungelelwaniso lwezixhobo zenethiwekhi, njl.
5) Isiqinisekiso sokhuseleko - ukuhlaselwa kwe-DDOS, isaqhwithi sedatha, ukuthintela ukuhlaselwa yintsholongwane, njl njl.
Ukuhlelwa ngokubanzi kwezicelo zenethiwekhi
Namhlanje kukho izicelo ezingenakubalwa kwi-Intanethi, kodwa iiwebhu eziqhelekileyo zewebhu zinokuphelisa.
Ngokwazi kwam, eyona nkampani iqondile i-Huawei, eyathi inokuthi iqaphele i-4,000 yee-Apps. Uhlalutyo lweProtocol yimodyuli esisiseko yeenkampani ezininzi zomlilo (Hiuwei, i-HTE, njl.njl.), Kwaye ikwayimodyuli ebaluleke kakhulu, exhasa ukufezekiswa kweemodyuli ezisebenzayo, kunye nokuphucula ukusebenza kweemveliso. Kwimodeli yokuchonga i-malware ngokusekwe kwiimpawu zendlela, njengoko ndenza ngoku, ukuchongwa kwenkqubococol echanekileyo kunye nebanzi nako kubaluleke kakhulu. Ngaphandle kwendlela yothungelwano lwezicelo eziqhelekileyo kwitrafikhi yenkampani, ukugcwala okuseleyo kuya kunika i-akhawunti encinci, engcono yohlalutyo lwe-malware kunye ne-alamu.
Ngokusekwe kumava am, izicelo ezisetyenziswa rhoqo ezisetyenziswayo zihlelwa ngokwemisebenzi yazo:
I-PS: Ngokwembono yobuqu malunga nokuhlelwa kwesicelo, unazo naziphi na iingcebiso ezilungileyo zokushiya isiphakamiso somyalezo
1). I-imeyile
2). Ividiyo
3). Imidlalo
4). I-Ofisi ye-OA yeOfisi
5). Uhlaziyo lwesoftware
6). Imali (ibhanki, i-aliipay)
7). Isitokhwe
8). Unxibelelwano lwentlalo (isoftware)
9). UkuKhangela kwiWebhu (mhlawumbi ngcono kuchongwe ii-URLs)
10). Izixhobo zokukhuphela (idiski yewebhu, ukhuphelo lwe-P2P, i-BT enxulumene)
Emva koko, indlela i-DPI (i-DEAD Conschtion) isebenza kwi-NPB:
1). Ipakethi yepakethi: I-NPB ithintela ithrafikhi yendlela emiselweyo kwimithombo eyahlukeneyo, njengokutshintsha, iirouters, okanye iimpompo. Ifumana iipakethi eziqukuqela inethiwekhi.
2). Ipakethi yepakethi: Iipakethi ezifakiweyo zidityaniswa yi-NPB ukukhupha iifolda ezahlukeneyo zeprotocol kunye nedatha enxulumene noko. Le nkqubo yokupakisha inceda ekuchongeni izinto ezahlukeneyo ezikwiipakethi, ezinje ngezihloko ze-ESETNET, ii-ECP ze-IP, izihloko ze-IP, i-Teather Feeers (umz.
3). Uhlalutyo lokuhlawula: nge-DPI, i-NPB ihamba ngaphaya kovavanyo lwe-header kwaye igxile kumvuzo, kubandakanya neyona datha ngaphakathi kweepakethi. Ivavanya umxholo we-Dead Wations, ngaphandle kwesicelo okanye iprothokholi esetyenzisiweyo, ukukhupha ulwazi olufanelekileyo.
4). Ukuchonga i-Protocol: I-DPI yenza ukuba i-NPB ichonge iiprothokholi ezithile kunye nezicelo ezisetyenziswa ngaphakathi kwendlela yenethiwekhi. Ingafumana kwaye iqalise iiprothokholi ezifana ne-http, ftp, i-SMTP, DNS, VEIP, okanye iiprothokholi zevidiyo.
5). Uhlolo lwesiqulatho: I-DPI ivumela i-NPB ukuba ihlole umxholo weepakethi zeepathethi ezithile, ityikityo, okanye amagama aphambili. Oku kwenza ukuba ukufunyanwa kwezisongelo zenethiwekhi, ezinjenge-malware, iintsholongwane, iinzame zokungenelela, okanye imisebenzi ekrokrelayo. I-DPI ikwasetyenziselwa kwakhona ukucocwa komxholo, imigaqo-nkqubo yokunyanzelisa inethiwekhi, okanye ichonge ukophula idatha.
6). Ukukhupha iMetadatha: Ngexesha le-DPI, i-NPB ikhuphe i-metadata efanelekileyo evela kwiipakethi. Oku kunokubandakanya ulwazi olunje ngomthombo kunye needilesi ze-IP, iinombolo zePort, iinkcukacha zeSeshini, idatha yentengiselwano, okanye nayiphi na enye impawu ezifanelekileyo.
7). Ukuhambahamba kwezithuthi okanye ukungcola: ngokusekwe kuhlalutyo lwe-DPI, i-NPB inokuthi ihambe ngeendlela ezikhethiweyo kwiindawo ezichongiweyo zokuqhubela phambili, ezinjengezixhobo zezokhuseleko, okanye amaqonga okubeka esweni. Ingakwazisela imithetho yokucoca ukulahla okanye iphinde ithumele iipakethi ezisekwe kumxholo ochongiweyo okanye iipateni.
IXESHA LOKUQALA: Jun-25-2023
