Intshayelelo
Kwiminyaka yakutshanje, umlinganiselo weenkonzo zamafu kumashishini aseTshayina uyakhula. Iinkampani zetekhnoloji zibambe ithuba lomjikelo omtsha wenguqu yetekhnoloji, zenza utshintsho lwedijithali, zandisa uphando kunye nokusetyenziswa kwetekhnoloji entsha efana nekhompyuter yelifu, idatha enkulu, ubukrelekrele bokwenziwa, i-blockchain kunye ne-Intanethi yezinto, kwaye zaphucula isayensi yazo kunye ne-Intanethi. ubunakho benkonzo yeteknoloji. Ngophuhliso oluqhubekayo lwefu kunye neteknoloji ye-virtualization, iinkqubo ezininzi zezicelo kumaziko edatha zifuduka zisuka kwi-campus yasekuqaleni yomzimba ukuya kwi-platform yefu, kwaye i-traffic yempuma-ntshona kwindawo yefu yamaziko edatha ikhula kakhulu. Nangona kunjalo, inethiwekhi yesiqhelo yokuqokelela izithuthi eziphathekayo ayikwazi ukuqokelela ngokuthe ngqo i-traffic ye-mpuma-ntshona kwindawo yelifu, okukhokelela ekubeni i-traffic traffic kwindawo yelifu ibe yindawo yokuqala. Kuye kwaba yinto engenakuphepheka ukuqonda ukutsalwa kwedatha ye-traffic yempuma-ntshona kwindawo yelifu. Ukuqaliswa kobuchwephesha obutsha bokuqokelelwa kwe-traffic kwimpuma-ntshona kwindawo yelifu kwenza inkqubo yesicelo isetyenziswe kwindawo yefu nayo inenkxaso yokubeka iliso egqibeleleyo, kwaye xa kukho iingxaki kunye nokusilela, uhlalutyo lokubanjwa kwepakethi lunokusetyenziswa ukuhlalutya ingxaki kunye nokulandelela idatha. ukuhamba.
1. Indawo yelifu kwimpuma-ntshona ye-traffic ayinakuqokelelwa ngokuthe ngqo, ukwenzela ukuba inkqubo yesicelo kwindawo yelifu ayikwazi ukuhambisa ukubonwa kokubeka iliso ngokusekelwe kwixesha langempela lokuhamba kwedatha yeshishini, kunye nabasebenzi bokusebenza kunye nokugcinwa abakwazi ukufumana ngexesha elifanelekileyo ukusebenza kwenkqubo yesicelo kwimeko yefu, ezisa iinzuzo ezithile ezifihliweyo ekusebenzeni okunempilo kunye nokuzinza kwenkqubo yesicelo kwimeko yefu.
2. I-traffic yempuma nentshona kwindawo yefu ayinakuqokelelwa ngokuthe ngqo, okwenza kube nzima ukukhupha ngokuthe ngqo iipakethi zedatha ukuhlalutya xa iingxaki zenzeka kwizicelo zoshishino kwindawo yefu, ezisa ubunzima obuthile kwindawo ephosakeleyo.
3. Ngeemfuno ezingqongqo zokhuseleko lwenethiwekhi kunye nophicotho olwahlukeneyo, olufana ne-BPC yokubeka iliso kwintengiselwano yesicelo, inkqubo yokufumanisa ukungena kwe-IDS, i-imeyile kunye nenkqubo yokurekhoda ukurekhoda kwenkonzo yabathengi, imfuno yokuqokelelwa kwezithuthi empuma-ntshona kwindawo yelifu nayo iya iba ngakumbi kwaye. zingxamiseke ngakumbi. Ngokusekwe kolu hlalutyo lungentla, ibe yinto engenakuphepheka yokuqonda ukutsalwa kwedatha yetrafikhi yempuma-ntshona kwindawo yelifu, kwaye yazise itekhnoloji entsha yokuqokelela izithuthi empuma-ntshona kwindawo yelifu ukwenza inkqubo yesicelo ifakwe efini. okusingqongileyo kunokuba nenkxaso egqibeleleyo yokubeka iliso. Xa iingxaki kunye nokungaphumeleli kwenzeka, uhlalutyo lokubanjwa kwepakethi lungasetyenziselwa ukuhlalutya ingxaki kunye nokulandelela ukuhamba kwedatha. Ukuqonda ukutsalwa kunye nohlalutyo lwe-traffic yempuma-ntshona kwindawo yelifu sisixhobo esinamandla somlingo wokuqinisekisa ukusebenza okuzinzileyo kweenkqubo zesicelo ezifakwe kwindawo yelifu.
Iimetrics eziphambili zokuThatha iTrafikhi yeNethiwekhi engabonakaliyo
1. Ukusebenza kweNethiwekhi yeTraffic Capturing
I-akhawunti ye-traffic yempuma-ntshona i-akhawunti ye-traffic center yedatha, kwaye iteknoloji yokufumana ukusebenza okuphezulu iyadingeka ukuze kuqondwe ukuqokelela okupheleleyo. Kwangelo xesha linye lokufumana, eminye imisebenzi yangaphambili efana nokudityaniswa, ukunqunyulwa, kunye nokususa umvandedwa kufuneka igqitywe kwiinkonzo ezahlukeneyo, nto leyo eyandisa ngakumbi iimfuno zokusebenza.
2. IResource Overhead
Uninzi lweendlela zokuqokelelwa kwezithuthi empuma-ntshona kufuneka zihlale kwikhompyuter, ukugcinwa kunye nemithombo yenethiwekhi enokuthi isetyenziswe kwinkonzo. Ukongeza ekusebenziseni ezi zibonelelo kancinane kangangoko kunokwenzeka, kusekho imfuneko yokuqwalasela ukuphunyezwa kolawulo lweteknoloji yokufunyanwa. Ngokukodwa xa umlinganiselo weenodi usanda, ukuba iindleko zolawulo nazo zibonisa umgca wokunyuka.
3. Inqanaba lokungena
Ubuchwephesha bokufumana obuqhelekileyo bangoku buhlala bufuna ukongeza umgaqo-nkqubo wokufumana owongezelelweyo kwi-hypervisor okanye amacandelo anxulumeneyo. Ukongeza kwiingxabano ezinokubakho kunye nemigaqo-nkqubo yezoshishino, le migaqo-nkqubo idla ngokunyusa umthwalo kwi-hypervisor okanye amanye amacandelo oshishino kwaye ichaphazela inkonzo ye-SLA.
Ukususela kwinkcazo engentla, kunokubonwa ukuba i-traffic capture in cloud environment kufuneka igxininise ekubanjweni kwe-traffic yempuma-ntshona phakathi koomatshini obubonakalayo kunye nemiba yokusebenza. Kwangaxeshanye, ngokujonga iimpawu eziguquguqukayo zeqonga lelifu, ingqokelela yezithuthi kwindawo yelifu kufuneka igqobhoze kwindlela ekhoyo yesipili sokutshintsha ngokwesiko, kwaye iqonde ukuqokelela okuguquguqukayo kunye ngokuzenzekelayo kunye nokubekwa esweni, ukuze kutshatiswe ukusebenza ngokuzenzekelayo kunye nenjongo yokugcinwa kwenethiwekhi yefu. Ingqokelela yezithuthi kwindawo yelifu kufuneka ifezekise ezi njongo zilandelayo:
1) Qonda umsebenzi wokubamba wetrafikhi yempuma-ntshona phakathi koomatshini bokwenene
I-2) Ukubamba kusetyenziswe kwi-node ye-computing, kwaye i-architecture yokuqokelela esasazwayo isetyenziselwa ukuphepha iingxaki zokusebenza kunye nokuzinza okubangelwa isibuko sokutshintsha.
3) Iyakwazi ukuqonda ngokuguquguqukayo utshintsho lwezixhobo zomatshini obonakalayo kwindawo yelifu, kwaye isicwangciso sokuqokelela sinokuhlengahlengiswa ngokuzenzekelayo ngotshintsho lwezixhobo zoomatshini.
I-4) Isixhobo sokubamba kufuneka sibe nesixhobo sokukhusela ukugqithiswa komthwalo wokunciphisa impembelelo kumncedisi
I-5) Isixhobo sokubamba ngokwaso sinomsebenzi wokuphucula i-traffic
6) Iqonga lokubamba linokubeka iliso kwitrafikhi yomatshini oqokelelweyo
Ukukhethwa kweNdlela yokuThatha iTrafikhi yoMatshini kwiNdawo yeLifu
Ukuthathwa kwetrafikhi yomatshini kwindawo yelifu kufuna ukuhambisa iprobe yokuqokelela kwi-node yekhompyuter. Ngokwendawo yendawo yokuqokelela enokuthi ibekwe kwindawo yekhompyuter, imowudi yokubamba itrafikhi yomatshini kwindawo yelifu inokwahlulwa ngokweendlela ezintathu:Imo yomenzeli, Imowudi yoMatshini obonakalayokwayeImowudi yomamkeli.
Imowudi yoMatshini obonakalayo: umatshini wokubamba odibeneyo ufakwe kwinginginya nganye ebonakalayo kwindawo yelifu, kwaye i-probe yokubamba ethambileyo ifakwe kumatshini obonakalayo wokubamba. I-traffic yenginginya ibonakaliswe kumatshini wokuthatha i-virtual ngokubonisa i-traffic yekhadi lenethiwekhi ye-virtual kwi-switch ye-virtual, kwaye emva koko umatshini we-virtual wokubamba usasazwa kwiqonga lokubanjwa kwetrafikhi yemveli ngokusebenzisa ikhadi lenethiwekhi elizinikeleyo. Kwaye emva koko isasazwe kwiqonga ngalinye lokubeka iliso kunye nohlalutyo. Inzuzo kukuba i-softswitch bypass mirroring, engenakho ukungenelela kwikhadi lenethiwekhi yeshishini elikhoyo kunye nomatshini obonakalayo, unokuqonda kwakhona imbono yokutshintsha komatshini kunye nokufuduka ngokuzenzekelayo kwemigaqo-nkqubo ngeendlela ezithile. Ukungalungi kukuba akunakwenzeka ukuphumeza indlela yokukhusela umthwalo ogqithisileyo ngokubamba umatshini we-virtual ofumana i-traffic, kwaye ubungakanani betrafikhi enokuthi ibonakaliswe yintsebenzo yokutshintsha okubonakalayo, okunempembelelo ethile ekuzinzeni kokutshintsha okubonakalayo. Kwimeko-bume ye-KVM, iqonga lelifu lifuna ukukhupha ngokulinganayo itafile yokuhamba komfanekiso, enzima ukulawula nokugcina. Ngokukodwa xa umatshini wokusingatha usilela, umatshini wokubamba uyafana nomatshini wenyani weshishini kwaye uya kufudukela kwimikhosi eyahlukeneyo kunye nabanye oomatshini.
Imo yomenzeli: Faka i-probe yokubamba i-soft probe (i-Agent Agent) kumatshini ngamnye obonakalayo ofuna ukubamba i-traffic kwindawo yelifu, kwaye ukhuphe i-traffic ye-mpuma nentshona yendawo yefu ngokusebenzisa i-software ye-Agent, kwaye uyisasaze kwiqonga ngalinye lokuhlalutya. Iingenelo kukuba izimeleyo kwiqonga le-virtualization, ayichaphazeli ukusebenza kwenguqu ebonakalayo, inokufuduka kunye nomatshini obonakalayo, kwaye inokwenza ukucoca i-traffic. Ukungalungi kukuba amaninzi amaninzi kufuneka alawulwe, kwaye impembelelo ye-Agent ngokwayo ayinakukhutshelwa ngaphandle xa iphoso lenzeka. Ikhadi lenethiwekhi yemveliso ekhoyo kufuneka kwabelwane ngayo ukutshiza i-traffic, enokuthi ichaphazele intsebenziswano yezoshishino.
Imowudi yomamkeli: ngokuthumela i-probe yengqokelela ezimeleyo ethambileyo kwinginginya nganye ebonakalayo kwimekobume yelifu, isebenza kwimowudi yenkqubo kumamkeli, kwaye ihambisa itrafikhi ebanjiweyo kwiqonga lokubanjwa kwetrafikhi yesiqhelo. Iinzuzo zigqityiweyo umatshini wokudlula, akukho kungenelela kumatshini wenyani, ikhadi lenethiwekhi yeshishini kunye nokutshintsha umatshini wenyani, indlela yokubamba elula, ulawulo olufanelekileyo, akukho mfuneko yokugcina umatshini ozimeleyo ozimeleyo, ukufunyanwa kweprobe elula kunye nethambileyo kunokufikelela ukhuseleko lomthwalo ogqithisiweyo. Njengenkqubo yokusingatha, inokubeka iliso kwinginginya kunye nezixhobo zomatshini ezibonakalayo kunye nokusebenza ukukhokela ukuthunyelwa kwesicwangciso sesibuko. Ukungalungi kukuba kufuneka kusetyenziswe inani elithile lezixhobo zokusingatha, kwaye impembelelo yokusebenza kufuneka inikwe ingqalelo. Ukongeza, amanye amaqonga abonakalayo anokungaxhasi ukuthunyelwa kokuthatha iiprobes zesoftware kumamkeli.
Ukususela kwimeko yangoku yoshishino, imowudi yomatshini wenyani inezicelo kwifu likawonkewonke, kwaye i-Agent Mode kunye ne-Host Mode inabasebenzisi abathile kwifu labucala.
Ixesha lokuposa: Nov-06-2024
