Intshayelelo
I-Network Traffic Collection kunye noHlalutyo yeyona ndlela isebenzayo yokufumana iimpawu zokuziphatha komsebenzisi womnatha wokuqala kunye neeparamitha. Ngophuculo oluqhubekayo lweziko ledatha Q ukusebenza kunye nokugcinwa, ukuqokelelwa kwetrafikhi yenethiwekhi kunye nokuhlalutya kuye kwaba yinxalenye ebalulekileyo yeziko ledatha. Ukusuka kusetyenziso lwangoku loshishino, ingqokelela yetrafikhi yomnatha ibonwa ikakhulu sisixhobo sothungelwano esixhasa isipili sendlela yokudlula. Ukuqokelelwa kwezithuthi kufuneka kuseke i-coverage ebanzi, uthungelwano olufanelekileyo nolusebenzayo lokuqokelelwa kwezithuthi, uqokelelo olunjalo lwetrafikhi lunokunceda ukwandisa uthungelwano kunye nezalathisi zokusebenza kweshishini kunye nokunciphisa amathuba okungaphumeleli.
Inethiwekhi yokuqokelela i-traffic inokuthathwa njengenethiwekhi ezimeleyo ehlanganiswe nezixhobo zokuqokelela izithuthi kwaye isetyenziswe ngokuhambelana nenethiwekhi yemveliso. Iqokelela i-traffic yomfanekiso wesixhobo sothungelwano ngasinye kwaye idibanise i-traffic yomfanekiso ngokwemigangatho yengingqi kunye nezakhiwo. Isebenzisa i-alamu yokucoca i-traffic kwisixhobo sokufumana i-traffic ukufumana isantya esipheleleyo sedatha ye-2-4 umaleko wokucoca okunemiqathango, ukususa iipakethi eziphindwe kabini, ukucutha iipakethi kunye neminye imisebenzi ephezulu yokusebenza, emva koko ithumele idatha kwitrafikhi nganye. inkqubo yokuhlalutya. Inethiwekhi yokuqokelela i-traffic ingathumela ngokuchanekileyo idatha ethile kwisixhobo ngasinye ngokweemfuno zedatha yenkqubo nganye, kwaye isombulule ingxaki yokuba idatha yesibuko yesiko ayinakuhluzwa kwaye ithunyelwe, edla ukusetyenzwa kokutshintshwa kothungelwano. Kwangaxeshanye, i-injini yokucoca i-traffic kunye nokutshintshiselana kwe-traffic yokuqokelela inethiwekhi iqonda ukuhluzwa kunye nokuthunyelwa kwedatha ngokulibaziseka okuphantsi kunye nesantya esiphezulu, iqinisekisa umgangatho wedatha eqokelelwe yinethiwekhi yokuqokelela i-traffic, kwaye ibonelela ngesiseko esihle sedatha izixhobo zokuhlalutya izithuthi ezilandelayo.
Ukuze kuncitshiswe impembelelo kwikhonkco lokuqala, ikopi yetrafikhi yoqobo idla ngokufunyanwa ngokucandwa komqadi, i-SPAN okanye i-TAP.
Itephu yeNethiwekhi eSebenzayo (I-Optical Splitter)
Indlela yokusebenzisa ukwahlula ukukhanya ukufumana ikopi yetrafikhi ifuna uncedo lwesixhobo sokucalula ukukhanya. I-splitter yokukhanya sisixhobo se-passive optical esinokuphinda sisasaze amandla ombane wesignali ye-optical ngokuhambelana nomlinganiselo ofunekayo. I-splitter inokwahlula ukukhanya ukusuka kwi-1 ukuya kwi-2,1 ukuya kwi-4 kunye ne-1 ukuya kumajelo amaninzi. Ukuze kuncitshiswe impembelelo kwikhonkco lokuqala, isikhungo sedatha ngokuqhelekileyo sithatha i-optical splitting ratio ye-80:20, 70:30, apho i-70,80 inxalenye yesignali ye-optical ibuyiselwa kwikhonkco yokuqala. Okwangoku, i-optical splitters isetyenziswa ngokubanzi kuhlalutyo lwentsebenzo yenethiwekhi (NPM / APM), inkqubo yophicotho, uhlalutyo lokuziphatha komsebenzisi, ukufumanisa ukungena kwenethiwekhi kunye nezinye iimeko.
Izinto eziluncedo:
1. Ukuthembeka okuphezulu, isixhobo sokukhanya esibonakalayo;
2. Ayihlali kwi-switch port, izixhobo ezizimeleyo, okulandelayo kunokuba nokwandiswa okulungileyo;
3. Akukho mfuneko yokuguqula ukucwangciswa kokutshintsha, akukho mpembelelo kwezinye izixhobo;
4. Ukuqokelela okupheleleyo kwetrafikhi, akukho ukucoca ipakethe yokutshintsha, kubandakanywa iipakethi zephutha, njl.
Izinto ezingeloncedo:
1. Imfuno ye-network cutover elula, iplagi ye-backbone ye-fiber kunye nokucofa kwi-splitter ye-optical, iya kunciphisa amandla okukhanya kwamanye amakhonkco e-backbone.
SPAN(Isibuko sesibuko)
I-SPAN luphawu oluza notshintsho ngokwalo, ngoko ke lufuna uqwalaselo kwiswitshi. Nangona kunjalo, lo msebenzi uya kuchaphazela ukusebenza kokutshintsha kwaye kubangele ukulahlekelwa kwepakethi xa idatha igcwele.
Izinto eziluncedo:
1. Akukho mfuneko yokongeza izixhobo ezongezelelweyo, cwangcisa iswitshi ukwandisa i-port ehambelanayo yomfanekiso wokuphindaphinda i-port
Izinto ezingeloncedo:
1. Sebenzisa izibuko lokutshintsha
2. Ukutshintsha kufuneka kuqwalaselwe, okubandakanya ulungelelwaniso oludibeneyo kunye nabavelisi beqela lesithathu, ukwandisa umngcipheko wokungaphumeleli kwenethiwekhi.
3. Ukuphindaphinda kwe-Mirror traffic kunempembelelo kwi-port kunye nokutshintsha ukusebenza.
Uthungelwano olusebenzayo TAP (TAP Aggregator)
I-TAP yeNethiwekhi sisixhobo sothungelwano sangaphandle esenza isibuko sesibuko kwaye senze ikopi yetrafikhi ukuze isetyenziswe zizixhobo ezahlukeneyo zokubeka iliso. Ezi zixhobo ziqaliswe kwindawo kwindlela yothungelwano ekufuneka ijongwe, kwaye ikopisha iipakethi ze-IP zedatha kwaye ithumele kwisixhobo sokubeka iliso kwinethiwekhi. Ukhetho lwendawo yofikelelo yesixhobo se-TAP yeNethiwekhi ixhomekeke kugxininiso lwetrafikhi yenethiwekhi-izizathu zokuqokelelwa kwedatha, uhlolo lwesiqhelo lokuhlalutya kunye nokulibaziseka, ukubhaqwa kokungena, njl. Izixhobo ze-TAP zeNethiwekhi zinokuqokelela kwaye zibonise imijelo yedatha kwireyithi ye-1G ukuya kuthi ga. 100G.
Ezi zixhobo zifikelela kwi-traffic ngaphandle kwesixhobo se-TAP sothungelwano esiguqula ukuhamba kwepakethi ngayo nayiphi na indlela, kungakhathaliseki ukuba yiyiphi isantya sokuhamba kwedatha. Oku kuthetha ukuba i-traffic traffic ayixhomekeke ekubekweni iliso kunye ne-port mirroring, eyimfuneko yokugcina ingqibelelo yedatha xa uyihambisa kukhuseleko kunye nezixhobo zokuhlalutya.
Iqinisekisa ukuba izixhobo ze-network peripheral zibeka esweni iikopi zetrafikhi ukwenzela ukuba izixhobo ze-TAP zenethiwekhi zisebenze njengabakhi-mkhanyo. Ngokutyisa ikopi yedatha yakho kuyo nayiphi na / zonke izixhobo ezixhunyiwe, ufumana ukubonakala okupheleleyo kwindawo yenethiwekhi. Kwimeko apho isixhobo se-TAP yenethiwekhi okanye isixhobo sokubeka iliso singaphumeleli, uyazi ukuba i-traffic ayiyi kuchaphazeleka, iqinisekisa ukuba inkqubo yokusebenza ihlala ikhuselekile kwaye ikhona.
Kwangaxeshanye, iba yinto ekujoliswe kuyo iyonke yezixhobo ze-TAP zenethiwekhi. Ukufikelela kwiipakethi kunokuhlala kubonelelwa ngaphandle kokuphazamisa i-traffic kwinethiwekhi, kwaye ezi zisombululo zokubonakala zinokujongana namatyala angaphezulu. Iimfuno zokubeka iliso zezixhobo ezisuka kwisizukulwana esilandelayo somlilo ukuya kukhuseleko lokuvuza kwedatha, ukubeka iliso ekusebenzeni kwesicelo, i-SIEM, i-digital forensics, i-IPS, i-IDS kunye nokunye, ukunyanzela izixhobo ze-TAP zenethiwekhi ukuba ziguquke.
Ukongeza ekunikezeni ikopi epheleleyo ye-traffic kunye nokugcina ukufumaneka, izixhobo ze-TAP zinokubonelela oku kulandelayo.
1. IiPakethi zoHluzo ukuze kunyuswe iNtsebenzo yokuJonga iNethiwekhi
Kungenxa yokuba isixhobo se-TAP yeNethiwekhi sinokwenza ikopi ye-100% yepakethi ngexesha elithile ayithethi ukuba zonke izixhobo zokubeka iliso kunye nokhuseleko kufuneka zibone yonke into. I-traffic yokusasaza kuzo zonke izixhobo zokubeka iliso kwinethiwekhi kunye nezixhobo zokhuseleko ngexesha langempela ziya kubangela ukugqithisa, ngaloo ndlela kulimaze ukusebenza kwezixhobo kunye nenethiwekhi kwinkqubo.
Ukubeka isixhobo esifanelekileyo se-Network TAP sinokunceda iipakethi zokucoca xa zihanjiswa kwisixhobo sokubeka iliso, ukuhambisa idatha echanekileyo kwisixhobo esifanelekileyo. Imizekelo yezixhobo ezinjalo ziquka iinkqubo zokufumanisa i-Intrusion (IDS), ukuThintela ukulahleka kwedatha (DLP), ulwazi lokhuseleko kunye nolawulo lwesiganeko (SIEM), uhlalutyo lwe-forensic, kunye nezinye ezininzi.
2. Unxulumano oludityanisiweyo lweNethiwekhi esebenzayo
Njengoko iNethiwekhi yokuBeka iliso kunye neemfuno zoKhuseleko zanda, iinjineli zenethiwekhi kufuneka zifumane iindlela zokusebenzisa uhlahlo lwabiwo-mali olukhoyo lwe-IT ukuphumeza imisebenzi emininzi. Kodwa ngaxa lithile, awunakuqhubeka usongeza izixhobo ezitsha kwisitaki kunye nokwandisa ubunzima benethiwekhi yakho. Kubalulekile ukwandisa ukusetyenziswa kwezixhobo zokubeka iliso kunye nokhuseleko.
Izixhobo ze-TAP zeNethiwekhi zinokunceda ngokuhlanganisa itrafikhi yenethiwekhi ezininzi, ukuya empuma nakwintshona, ukuhambisa iipakethi kwizixhobo eziqhagamshelweyo ngezibuko elinye. Ukusasaza izixhobo zokubonakala ngale ndlela kuya kunciphisa inani lezixhobo zokubeka iliso ezifunekayo. Njengoko i-East-West data traffic iqhubeka ikhula kumaziko edatha kunye naphakathi kwamaziko edatha, imfuneko yezixhobo ze-TAP yenethiwekhi ibalulekile ukugcina ukubonakala kwayo yonke imida yokulinganisa kwimiqulu emikhulu yedatha.
Inqaku eliyeleleneyo elinokuba nomdla, nceda undwendwele apha:Indlela yokuBamba iTrafikhi yeNethiwekhi? Itephu yeNethiwekhi vs Port Mirror
Ixesha lokuposa: Oct-24-2024
