Intshayelelo
I-Network Traffic linani lilonke leepakethi ezidlula kwikhonkco lothungelwano ngexesha leyunithi, eyisisalathiso esisisiseko sokulinganisa umthwalo wothungelwano kunye nokusebenza kogqithiso. Ukujongwa kwetrafikhi yenethiwekhi kukubamba idatha iyonke yeepakethi zothumelo lwenethiwekhi kunye neenkcukacha-manani, kunye nokubanjwa kwedatha yetrafikhi yenethiwekhi kukubanjwa kweepakethi zedatha yenethiwekhi ye-IP.
Ngokwandiswa kweziko ledatha ye-Q network isikali, inkqubo yesicelo ininzi kwaye ininzi kakhulu, isakhiwo senethiwekhi sinzima ngakumbi nangakumbi, iinkonzo zenethiwekhi kwiimfuno zemithombo yenethiwekhi ziphezulu kwaye ziphezulu, izoyikiso zokhuseleko lwenethiwekhi zingaphezulu nangaphezulu. , ukusebenza kunye nokugcinwa kweemfuno ezisulungekileyo ziyaqhubeka ziphucula, ukuqokelela kwezithuthi zenethiwekhi kunye nohlalutyo kuye kwaba yindlela yohlalutyo oluyimfuneko lweziseko zedatha. Ngokusebenzisa uhlalutyo olunzulu lwetrafikhi yenethiwekhi, abaphathi benethiwekhi banokukhawulezisa indawo yephutha, bahlalutye idatha yesicelo, balungise isakhiwo senethiwekhi, ukusebenza kwenkqubo kunye nokulawula ukhuseleko ngakumbi intuitive, kunye nokukhawuleza indawo yephutha. Ukuqokelelwa kwezithuthi zenethiwekhi sisiseko senkqubo yohlalutyo lwendlela. Inethiwekhi yokubamba i-traffic ebanzi, enengqiqo kunye nesebenzayo iluncedo ekuphuculeni ukusebenza kakuhle kwe-traffic traffic, ukucoca kunye nokuhlalutya, ukuhlangabezana neemfuno zokuhlalutya kwe-traffic ukusuka kwii-angles ezahlukeneyo, ukwandisa inethiwekhi kunye nezibonakaliso zokusebenza kwezoshishino, kunye nokuphucula amava omsebenzisi kunye nokwaneliseka.
Kubaluleke kakhulu ukufunda iindlela kunye nezixhobo zokubamba i-traffic traffic ukuze uqonde ngokufanelekileyo kunye nokusebenzisa inethiwekhi, ukubeka iliso ngokuchanekileyo kunye nokuhlalutya inethiwekhi.
Ixabiso leNgqokelela yeZithuthi zeNethiwekhi/yokubambisa
Ukusebenza kunye nokugcinwa kweziko ledatha, ngokusekwa kweqonga le-traffic capturing yenethiwekhi edibeneyo, idibaniswe neqonga lokubeka iliso kunye nokuhlalutya kunokuphucula kakhulu ukusebenza kunye nokulawulwa kokugcinwa kunye nenqanaba lokulawula ukuqhubeka kweshishini.
1. Ukubonelela ngeDatha yokuBeka iliso kunye noHlalutyo Umthombo weDatha: I-traffic yentsebenziswano yezoshishino kwiziseko zothungelwano ezifunyenwe ngokubanjwa kwe-traffic yenethiwekhi inokubonelela ngomthombo wedatha ofunekayo wokubeka iliso kuthungelwano, ukubeka iliso kukhuseleko, idatha enkulu, uhlalutyo lokuziphatha kwabathengi, uhlalutyo lweemfuno zeqhinga lokufikelela kunye nokuphucula, zonke iintlobo zeqonga lokuhlalutya okubonakalayo, kunye nohlalutyo lweendleko, ukwandiswa kwesicelo kunye nokufuduka.
2. I-Fault Fault-Traceability Ability: ngokubamba i-network traffic, inokuqonda ukuhlalutya umva kunye nokuxilongwa kwempazamo yedatha yembali, ukubonelela ngenkxaso yedatha yembali yophuhliso, isicelo kunye namasebe oshishino, kunye nokusombulula ngokupheleleyo ingxaki yobungqina obunzima bokubamba, ukusebenza okuphantsi kunye nokusebenza kakuhle. nokukhanyela.
3. Ukuphucula iNdlela yokuSebenza ngokuFanelekileyo. Ngokubonelela ngomthombo wedatha odibeneyo womnatha, ukubeka iliso kwisicelo, ukubeka iliso kwezokhuseleko kunye nezinye iiplatifomu, kunokuphelisa ukungahambelani kunye ne-asymmetry yolwazi oluqokelelwe ngamaqonga okubeka iliso okuqala, ukuphucula ukusebenza kakuhle kokusingatha zonke iintlobo zengxakeko, ngokukhawuleza ukufumana ingxaki, qalisa kwakhona. ishishini, kunye nokuphucula inqanaba lokuqhubekeka kweshishini.
Ukuhlelwa kweNgqokelela yeZithuthi zeNethiwekhi/yokubanjwa
Ukuthathwa kwetrafikhi yenethiwekhi ikakhulu kukubeka iliso kunye nokuhlalutya iimpawu kunye notshintsho lokuhamba kwedatha yenethiwekhi yekhompyuter ukuze ubambe iimpawu zendlela yothungelwano luphela. Ngokutsho kwemithombo eyahlukeneyo ye-traffic yenethiwekhi, i-traffic traffic ihlulwe kwi-network node port traffic, i-IP yokuphela kwe-IP, i-traffic traffic yeenkonzo ezithile kunye nedatha yedatha yenkonzo yomsebenzisi epheleleyo.
1. I-Network Node Port Traffic
Uthungelwano lwe-port ye-Node ye-Node ibhekiselele kulwazi lweenkcukacha-manani zeepakethi ezingenayo neziphumayo kwisixhobo sothungelwano sesixhobo sothungelwano. Ibandakanya inani leepakethe zedatha, inani leebhayithi, ukuhanjiswa kobungakanani bepakethi, ukulahleka kwepakethi kunye nolunye ulwazi lwezibalo olungafundiyo.
2. Ukuphela-to-ekupheleni IP Traffic
Ukuphela-ukuya-ekuphelweni kwetrafikhi ye-IP kubhekisa kuluhlu lwenethiwekhi ukusuka kumthombo ukuya kwindawo! Amanani eepakethi zeP. Xa kuthelekiswa ne-network node port traffic, i-IP yokuphela kwe-IP iqulethe ulwazi oluninzi. Ngokuhlalutya kwayo, sinokuyazi inethiwekhi yendawo apho abasebenzisi kwinethiwekhi yokufikelela, eyona siseko esibalulekileyo sohlalutyo lwenethiwekhi, ukucwangcisa, ukuyila kunye nokuphucula.
3. I-Service Layer Traffic
I-traffic layer yenkonzo iqulethe ulwazi malunga namachweba oluhlu lwesine (i-TCP day layer) ukongeza kwi-IP ye-IP yokuphela ukuya ekupheleni. Ngokucacileyo, iqulethe ulwazi malunga neentlobo zeenkonzo zesicelo ezingasetyenziselwa uhlalutyo olunzulu.
4. Gqibezela iTrafikhi yeeNkcukacha zoMsebenzi
I-traffic yedatha yedatha yenkonzo epheleleyo iyasebenza kakhulu kuhlalutyo lokhuseleko, ukusebenza kunye neminye imiba. Ukubamba idatha yenkonzo yomsebenzisi epheleleyo kufuna isakhono sokuthwebula esomeleleyo kunye nesantya esiphezulu sogcino lwediski kunye nomthamo. Ngokomzekelo, ukubamba iipakethi zedatha ezingenayo zabaduni kunokumisa ulwaphulo-mthetho oluthile okanye bafumane ubungqina obubalulekileyo.
Indlela eqhelekileyo yokuQokelelwa kweTrafikhi yeNethiwekhi / ukubamba
Ngokweempawu kunye neendlela zokucubungula ukuthuthwa kwetrafikhi yothungelwano, ukubamba i-traffic kunokohlulwa ngokwezi ndidi zilandelayo: ukuqokelela ngokuyinxenye kunye nokuqokelela okupheleleyo, ukuqokelela okusebenzayo kunye nokuqokelela okuzenzekelayo, ukuqokelela okuphakathi kunye nokusasazwa kokuqokelela, ukuqokelelwa kwe-hardware kunye nokuqokelela isofthiwe, njl. uphuhliso lokuqokelelwa kwezithuthi, iindlela ezisebenzayo nezisebenzayo zokuqokelelwa kwezithuthi ziye zaveliswa ngokusekwe kwezi ngcinga zokuhlela zingentla.
Ithekhnoloji yokuqokelela i-intanethi ye-traffic ngokuyinhloko iquka iteknoloji yokubeka iliso esekelwe kwisibuko se-traffic, iteknoloji yokubeka iliso esekelwe kwi-real-time packet capture, iteknoloji yokubeka iliso esekelwe kwi-SNMP / RMON, kunye neteknoloji yokubeka iliso esekelwe kwi-protocol yohlalutyo lwe-traffic yenethiwekhi efana ne-NetiowsFlow. Phakathi kwabo, iteknoloji yokubeka iliso esekelwe kwisibuko se-traffic ibandakanya indlela ye-TAP ebonakalayo kunye nendlela yokusabalalisa ngokusekelwe kwiprobe ye-hardware.
1. Ngokusekelwe kwi-Traffic Mirror Monitoring
Umgaqo wobuchwephesha bokubeka iliso kwi-intanethi ye-traffic esekelwe kwisibuko esipheleleyo kukuphumeza ikopi engalahlekanga kunye nokuqokelela umfanekiso we-traffic traffic ngokusebenzisa isibuko se-port yezixhobo zenethiwekhi ezifana nokutshintsha okanye izixhobo ezongezelelweyo ezifana ne-optical splitter kunye ne-probe yenethiwekhi. Ukubeka iliso kuthungelwano lonke kufuneka kuthathelwe isikimu esisasazwayo, kusetyenziswe i-probe kwikhonkco ngalinye, kwaye emva koko kuqokelelwe idatha yazo zonke iiprobes ngokusebenzisa iseva yangasemva kunye nedathabheyisi, kunye nokwenza uhlalutyo lwendlela kunye nengxelo yexesha elide yenethiwekhi yonke. Xa kuthelekiswa nezinye iindlela zokuqokelela i-traffic, eyona nto ibalulekileyo yokuqokelelwa kwemifanekiso yetrafikhi kukuba inokubonelela ngolwazi olutyebileyo lomaleko wesicelo.
2. Ngokusekelwe kwi-Real-time Packet Capture Monitoring
Ngokusekelwe kwitekhnoloji yokuhlalutya ipakethe yexesha langempela, ngokuyintloko ibonelela ngohlalutyo olucacileyo lwedatha ukusuka kwinqanaba lomzimba ukuya kwinqanaba lesicelo, lijolise kuhlalutyo lweprotocol. Ibamba iipakethi ze-interface ngexesha elifutshane lokuhlalutya, kwaye ihlala isetyenziselwa ukuqonda ukuxilongwa ngokukhawuleza kunye nesisombululo sokusebenza kwenethiwekhi kunye nephutha. Ineziphene ezilandelayo: ayinakubamba iipakethi ezinetrafikhi enkulu kunye nexesha elide, kwaye ayikwazi ukuhlalutya indlela yendlela yabasebenzisi.
3. ITekhnoloji yokuHlola esekelwe kwi-SNMP/RMON
Ukujongwa kwetrafikhi ngokusekelwe kwiprotocol ye-SNMP/RMON iqokelela ezinye izinto eziguquguqukayo ezinxulumene nezixhobo ezithile kunye nolwazi lwetrafikhi ngesixhobo sothungelwano se-MIB. Ibandakanya: inani lee-byte zokufaka, inani leepakethi ezingezizo ezosasazo, inani leepakethi zokusasaza, inani leepakethi zokufakelwa, inani leempazamo zepakethi yokufaka, inani leepakethi zeprotocol ezingaziwayo, inani leepakethi eziphumayo, inani leemveliso -iipakethi zokusasazwa, inani leepakethi zokusasazwa kwemveliso, inani leepakethi eziphumayo, inani leempazamo zepakethe eziphumayo, njl. Ekubeni i-routers ezininzi ngoku zixhasa i-SNMP eqhelekileyo, inzuzo yale ndlela kukuba akukho zixhobo zokufumana idatha ezongezelelweyo ezifunekayo. Nangona kunjalo, iquka kuphela umxholo osisiseko onjengenani leebhayithi kunye nenani leepakethi, ezingafanelekanga ukubeka iliso kwi-traffic enzima.
4. ITekhnoloji yokuJonga iTrafikhi esekwe kwi-Netflow
Ngokusekwe kuhlolo lwetrafikhi lwe-Nethow, ulwazi lwetrafikhi olubonelelweyo luyandiswa ukuya kwinani leebhayithi kunye neepakethi ezisekelwe kwintlanu-(idilesi ye-IP yomthombo, idilesi ye-IP yendawo ekuyiwa kuyo, izibuko lomthombo, indawo yokufikela, inombolo yeprotocol) manani, anokwahlula. ukuhamba kumjelo ngamnye onengqondo. Indlela yokubeka iliso inokusebenza okuphezulu kokuqokelelwa kolwazi, kodwa ayinakuhlalutya ulwazi lomaleko womzimba kunye noluhlu lwekhonkco ledatha, kwaye ifuna ukusebenzisa ezinye izixhobo zokuhambisa. Ihlala ifuna ukuncamathisela imodyuli eyahlukileyo yokusebenza kwisixhobo sothungelwano.
Ixesha lokuposa: Oct-17-2024
