Intshayelelo
Kwiminyaka yakutshanje, umlinganiselo weenkonzo zamafu kumashishini aseTshayina uyakhula. Iinkampani zetekhnoloji ziye zathatha ithuba lomjikelo omtsha woguqulo lwetekhnoloji, zaqhuba ngenkuthalo inguqu yedijithali, zandisa uphando kunye nokusetyenziswa kwetekhnoloji entsha enje ngecomputing yamafu, idatha enkulu, ubukrelekrele bokwenziwa, i-blockchain kunye ne-Intanethi yezinto, kwaye baphucula ubuchule babo benkonzo yesayensi kunye netekhnoloji. Ngophuhliso oluqhubekayo lwefu kunye neteknoloji ye-virtualization, iinkqubo ezininzi zezicelo kumaziko edatha zifuduka zisuka kwi-campus yasekuqaleni yomzimba ukuya kwi-platform yefu, kwaye i-traffic yempuma-ntshona kwindawo yefu yamaziko edatha ikhula kakhulu. Nangona kunjalo, inethiwekhi yesiqhelo yokuqokelela izithuthi eziphathekayo ayikwazi ukuqokelela ngokuthe ngqo i-traffic ye-mpuma-ntshona kwindawo yelifu, okukhokelela ekubeni i-traffic traffic kwindawo yelifu ibe yindawo yokuqala. Kuye kwaba yinto engenakuphepheka ukuqonda ukutsalwa kwedatha ye-traffic yempuma-ntshona kwindawo yelifu. Ukuqaliswa kobuchwephesha obutsha bokuqokelelwa kwe-traffic kwimpuma-ntshona kwindawo yefu kwenza inkqubo yesicelo isetyenziswe kwindawo yefu nayo ibe nenkxaso yokubeka iliso ngokugqibeleleyo, kwaye xa kuvela iingxaki kunye nokungaphumeleli, uhlalutyo lokubanjwa kwepakethi lunokusetyenziswa ukuhlalutya ingxaki kunye nokulandelela ukuhamba kwedatha.
1. Indawo yelifu ye-traffic yempuma-ntshona ayinakuqokelelwa ngokuthe ngqo, ukwenzela ukuba inkqubo yesicelo kwindawo yelifu ayikwazi ukuhambisa ukubonwa kokubeka iliso ngokusekelwe ekuhambeni kwedatha yexesha langempela, kwaye abasebenzi bokusebenza kunye nokugcinwa abakwazi ukufumanisa ngexesha elifanelekileyo ukusebenza kwenkqubo yesicelo kwimeko yelifu, ezisa iinzuzo ezithile ezifihliweyo ekusebenzeni okunempilo kunye nokuzinza kwenkqubo yesicelo kwimeko yefu.
2. I-traffic yempuma nentshona kwindawo yefu ayinakuqokelelwa ngokuthe ngqo, okwenza kube nzima ukukhupha ngokuthe ngqo iipakethi zedatha ukuhlalutya xa iingxaki zenzeka kwizicelo zoshishino kwindawo yefu, ezisa ubunzima obuthile kwindawo ephosakeleyo.
3. Ngokunyuka kweemfuno ezingqongqo zokhuseleko lwenethiwekhi kunye nophicotho olwahlukeneyo, olufana nokubekwa kweliso kwintengiselwano yesicelo se-BPC, inkqubo yokufumanisa ukungena kwe-IDS, i-imeyile kunye nenkqubo yokurekhoda ukurekhoda kwenkonzo yabathengi, imfuno yokuqokelelwa kwezithuthi empuma-ntshona kwindawo yelifu nayo iya ingxamiseka ngakumbi nangakumbi. Ngokusekwe kolu hlalutyo lungentla, ibe yinto engenakuphepheka yokuqonda ukutsalwa kwedatha kwi-traffic yempuma-ntshona kwindawo yelifu, kunye nokwazisa itekhnoloji entsha yokuqokelela izithuthi empuma-ntshona kwindawo yelifu ukwenza inkqubo yesicelo ibekwe kwindawo yelifu inokuba nayo inkxaso egqibeleleyo yokubeka iliso. Xa iingxaki kunye nokungaphumeleli kwenzeka, uhlalutyo lokubanjwa kwepakethi lungasetyenziselwa ukuhlalutya ingxaki kunye nokulandelela ukuhamba kwedatha. Ukuqonda ukutsalwa kunye nokuhlalutya kwe-traffic yempuma-ntshona kwindawo yelifu sisixhobo esinamandla somlingo wokuqinisekisa ukusebenza okuzinzileyo kweenkqubo zesicelo ezifakwe kwindawo yelifu.
Iimetrics eziphambili zokuThatha iTrafikhi yeNethiwekhi engabonakaliyo
1. Ukusebenza kweNethiwekhi yeTraffic Capturing
I-akhawunti ye-traffic yempuma-ntshona i-akhawunti ye-traffic center yedatha, kwaye iteknoloji yokufumana ukusebenza okuphezulu iyadingeka ukuze kuqondwe ukuqokelela okupheleleyo. Kwangelo xesha linye lokufumana, eminye imisebenzi yangaphambili efana nokudityaniswa, ukunqunyulwa, kunye nokususa umvandedwa kufuneka igqitywe kwiinkonzo ezahlukeneyo, nto leyo eyandisa ngakumbi iimfuno zokusebenza.
2. IResource Overhead
Uninzi lweendlela zokuqokelelwa kwezithuthi empuma-ntshona kufuneka zihlale kwikhompyuter, ukugcinwa kunye nemithombo yenethiwekhi enokuthi isetyenziswe kwinkonzo. Ukongeza ekusebenziseni ezi zibonelelo kancinane kangangoko kunokwenzeka, kusekho imfuneko yokuqwalasela ukuphunyezwa kolawulo lweteknoloji yokufunyanwa. Ngokukodwa xa umlinganiselo weenodi usanda, ukuba iindleko zolawulo nazo zibonisa umgca wokunyuka.
3. Inqanaba lokungena
Ubuchwephesha bokufumana obuqhelekileyo bangoku buhlala bufuna ukongeza umgaqo-nkqubo wokufumana owongezelelweyo kwi-hypervisor okanye amacandelo anxulumeneyo. Ukongeza kwiingxabano ezinokubakho kunye nemigaqo-nkqubo yezoshishino, le migaqo-nkqubo idla ngokunyusa umthwalo kwi-hypervisor okanye amanye amacandelo oshishino kwaye ichaphazela inkonzo ye-SLA.
Ukususela kwinkcazo engentla, kunokubonwa ukuba i-traffic capture in cloud environment kufuneka igxininise ekubanjweni kwe-traffic yempuma-ntshona phakathi koomatshini obubonakalayo kunye nemiba yokusebenza. Ngexesha elifanayo, ngokujonga iimpawu eziguquguqukayo zeqonga lelifu, ukuqokelelwa kwezithuthi kwindawo yelifu kufuneka kuqhekezwe ngendlela ekhoyo yesibuko sokutshintsha kwendabuko, kwaye kuqondwe ukuqokelela okuguquguqukayo kunye nokuzenzekelayo kunye nokubekwa esweni, ukwenzela ukuba kuhambelane nokusebenza ngokuzenzekelayo kunye nenjongo yokugcinwa kwenethiwekhi yefu. Ingqokelela yezithuthi kwindawo yelifu kufuneka ifezekise ezi njongo zilandelayo:
1) Qonda umsebenzi wokubamba wetrafikhi yempuma-ntshona phakathi koomatshini bokwenene
I-2) Ukubamba kusetyenziswe kwi-node ye-computing, kwaye i-architecture yokuqokelela esasazwayo isetyenziselwa ukuphepha iingxaki zokusebenza kunye nokuzinza okubangelwa isibuko sokutshintsha.
3) Iyakwazi ukuqonda ngokuguquguqukayo utshintsho lwezixhobo zomatshini obonakalayo kwindawo yelifu, kwaye isicwangciso sokuqokelela sinokuhlengahlengiswa ngokuzenzekelayo ngotshintsho lwezixhobo zoomatshini.
I-4) Isixhobo sokubamba kufuneka sibe nesixhobo sokukhusela ukugqithiswa komthwalo wokunciphisa impembelelo kumncedisi
I-5) Isixhobo sokubamba ngokwaso sinomsebenzi wokuphucula i-traffic
6) Iqonga lokubamba linokubeka iliso kwitrafikhi yomatshini oqokelelweyo
Ukukhethwa kweNdlela yokuThatha iTrafikhi yoMatshini kwiNdawo yeLifu
Ukuthathwa kwetrafikhi yomatshini kwindawo yelifu kufuna ukuhambisa iprobe yokuqokelela kwi-node yekhompyuter. Ngokwendawo yendawo yokuqokelela enokuthi ibekwe kwindawo yekhompyuter, imowudi yokubamba itrafikhi yomatshini kwindawo yelifu inokwahlulwa ngokweendlela ezintathu:Imo yomenzeli, Imowudi yoMatshini obonakalayokwayeImowudi yomamkeli.
Imowudi yoMatshini obonakalayo: umatshini wokubamba odibeneyo ufakwe kwinginginya nganye ebonakalayo kwindawo yelifu, kwaye i-probe yokubamba ethambileyo ifakwe kumatshini obonakalayo wokubamba. I-traffic yenginginya ibonakaliswe kumatshini wokuthatha i-virtual ngokubonisa i-traffic yekhadi lenethiwekhi ye-virtual kwi-switch ye-virtual, kwaye emva koko umatshini we-virtual wokubamba usasazwa kwiqonga lokubanjwa kwetrafikhi yemveli ngokusebenzisa ikhadi lenethiwekhi elizinikeleyo. Kwaye emva koko isasazwe kwiqonga ngalinye lokubeka iliso kunye nohlalutyo. Inzuzo kukuba i-softswitch bypass mirroring, engenakho ukungenelela kwikhadi lenethiwekhi yeshishini elikhoyo kunye nomatshini obonakalayo, unokuqonda kwakhona imbono yokutshintsha komatshini kunye nokufuduka ngokuzenzekelayo kwemigaqo-nkqubo ngeendlela ezithile. Ukungalungi kukuba akunakwenzeka ukuphumeza indlela yokukhusela umthwalo ogqithisileyo ngokubamba umatshini we-virtual ofumana i-traffic, kwaye ubungakanani betrafikhi enokuthi ibonakaliswe yintsebenzo yokutshintsha okubonakalayo, okunempembelelo ethile ekuzinzeni kokutshintsha okubonakalayo. Kwimeko-bume ye-KVM, iqonga lelifu lifuna ukukhupha ngokulinganayo itafile yokuhamba komfanekiso, enzima ukulawula nokugcina. Ngokukodwa xa umatshini wokusingatha usilela, umatshini wokubamba uyafana nomatshini wenyani weshishini kwaye uya kufudukela kwimikhosi eyahlukeneyo kunye nabanye oomatshini.
Imo yomenzeli: Faka i-probe yokubamba i-soft probe (i-Agent Agent) kumatshini ngamnye obonakalayo ofuna ukubamba i-traffic kwindawo yelifu, kwaye ukhuphe i-traffic ye-mpuma nentshona yendawo yefu ngokusebenzisa i-software ye-Agent, kwaye uyisasaze kwiqonga ngalinye lokuhlalutya. Iingenelo kukuba izimeleyo kwiqonga le-virtualization, ayichaphazeli ukusebenza kwenguqu ebonakalayo, inokufuduka kunye nomatshini obonakalayo, kwaye inokwenza ukucoca i-traffic. Ukungalungi kukuba amaninzi amaninzi kufuneka alawulwe, kwaye impembelelo ye-Agent ngokwayo ayinakukhutshelwa ngaphandle xa iphoso lenzeka. Ikhadi lenethiwekhi yemveliso ekhoyo kufuneka kwabelwane ngayo ukutshiza i-traffic, enokuthi ichaphazele intsebenziswano yezoshishino.
Imowudi yomamkeli: ngokuthumela i-probe yengqokelela ezimeleyo ethambileyo kwinginginya nganye ebonakalayo kwimekobume yelifu, isebenza kwimowudi yenkqubo kumamkeli, kwaye ihambisa itrafikhi ebanjiweyo kwiqonga lokubanjwa kwetrafikhi yesiqhelo. Iinzuzo zigqityiweyo umatshini wokudlula, akukho kungenelela kumatshini wenyani, ikhadi lenethiwekhi yeshishini kunye nokutshintsha umatshini wenyani, indlela yokubamba elula, ulawulo olufanelekileyo, akukho mfuneko yokugcina umatshini ozimeleyo ozimeleyo, ukufunyanwa kweprobe elula kunye nethambileyo kunokufikelela ukhuseleko lomthwalo ogqithisiweyo. Njengenkqubo yokusingatha, inokubeka iliso kwinginginya kunye nezixhobo zomatshini ezibonakalayo kunye nokusebenza ukukhokela ukuthunyelwa kwesicwangciso sesibuko. Ukungalungi kukuba kufuneka kusetyenziswe inani elithile lezixhobo zokusingatha, kwaye impembelelo yokusebenza kufuneka inikwe ingqalelo. Ukongeza, amanye amaqonga abonakalayo anokungaxhasi ukuthunyelwa kokuthatha iiprobes zesoftware kumamkeli.
Ukususela kwimeko yangoku yoshishino, imowudi yomatshini wenyani inezicelo kwifu likawonkewonke, kwaye i-Agent Mode kunye ne-Host Mode inabasebenzisi abathile kwifu labucala.
Ixesha lokuposa: Nov-06-2024
