Kuti uongorore traffic yetiweki, zvinodikanwa kutumira network packet kuNTOP/NPROBE kana Out-of-band Network Security uye Monitoring Tools.Pane mhinduro mbiri dzedambudziko iri:
Port Mirroring(inozivikanwawo seSPAN)
Network Tap(inozivikanwawo seReplication Tap, Aggregation Tap, Active Tap, Copper Tap, Ethernet Tap, nezvimwewo)
Usati watsanangura mutsauko pakati pemhinduro mbiri (Port Mirror uye Network Tap), zvakakosha kuti unzwisise kuti Ethernet inoshanda sei.Pa100Mbit uye pamusoro, vanogamuchira vanowanzo taura zvizere duplex, zvichireva kuti muenzi mumwe anogona kutumira(Tx) uye kugamuchira(Rx) panguva imwe chete.Izvi zvinoreva kuti pane 100 Mbit tambo yakabatana kune mumwe mugadziri, iyo yakazara huwandu hwetraffic network iyo muenzi anogona kutumira / kugamuchira (Tx / Rx)) ndeye 2 × 100 Mbit = 200 Mbit.
Iyo Port mirroring inoshanda packet replication, zvinoreva kuti network network ine basa rekukopa packet pamirrored port.
Izvi zvinoreva kuti mudziyo unofanirwa kuita basa iri nekushandisa imwe sosi (yakadai seCPU), uye nzira dzese dzetraffic dzinodzokororwa kuchiteshi chimwe chete.Sezvambotaurwa, muA full duplex link, izvi zvinoreva kuti
A -> B uye B -> A
Huwandu hweA hahupfuure kukurumidza kwetiweki kusati kwaitika kurasikirwa kwepaketi.Izvi zvinodaro nekuti hapana panyama nzvimbo yekukopa mapaketi.Zvinoitika kuti port mirroring inyanzvi huru sezvo inogona kuitwa neakawanda switch (asi kwete ese), nekuti mazhinji ekuchinja ane drawback yekurasikirwa kwepaketi, kana iwe ukatarisisa chinongedzo chine pamusoro pe50% mutoro, kana girazi zviteshi pachiteshi chinokurumidza (semuenzaniso girazi 100 Mbit ports pane 1 Gbit port).Tisingarevi kuti packet mirroring ingangoda kuchinjanisa zviwanikwa, izvo zvinogona kurodha mudziyo uye kuita kuti kuchinjana kuite kudzikisira.Ziva kuti unogona kubatanidza 1 port kune imwe chiteshi, kana 1 VLAN kune imwe chiteshi, asi iwe kazhinji haugone kukopa akawanda madoko kune 1. (Saka sepacket mirror) haipo.
A Network TAP (Terminal Access Point)chigadziriso chizere chehardware, chinogona kungobata traffic panetiweki.Inowanzo shandiswa kutarisa traffic pakati pemapoinzi maviri mune network.Kana network iri pakati pemapoinzi maviri aya iine tambo yemuviri, network TAP inogona kunge iri nzira yakanakisa yekutora traffic.
Iyo network TAP ine angangoita matatu madoko: A port, B port, uye monitor port.Kuisa pombi pakati pemapoinzi A neB, tambo yetiweki iri pakati pepoinzi A nepoinzi B inotsiviwa netambo mbiri, imwe ichienda kuchiteshi cheTAP's A, imwe ichienda kuchiteshi cheTAP B.Iyo TAP inopfuudza traffic yese pakati pemapoinzi maviri etiweki, saka achiri akabatana kune mumwe nemumwe.Iyo TAP inokopawo traffic kune yayo yekutarisa port, nekudaro ichigonesa yekuongorora mudziyo kuteerera.
Network TAPs inowanzoshandiswa nekutarisa uye kuunganidza zvishandiso seAPS.MaTAP anogona zvakare kushandiswa mumashandisirwo ekuchengetedza nekuti haana-inobtrusive, haaonekwe panetiweki, anogona kubata neakazara-duplex uye asina-akagovaniswa network, uye anowanzo pfuura-nemutraffic kunyangwe tepi ikamira kushanda kana kupera simba. .
Sezvo Network Taps ports isingagamuchire asi kutumira chete, switch haina ruzivo kuti ndiani akagara kuseri kwemadoko.Mhedzisiro yacho ndeyekuti yakatepfenyura mapaketi kune ese madoko.Naizvozvo, kana iwe batanidza zvichiongororwa mudziyo wako kuti chinja, mudziyo akadaro achagamuchira mapackets.Ziva kuti iyi michina inoshanda kana iyo yekutarisa mudziyo isingatumire chero pakiti kune switch;kana zvisina kudaro, chinja chichafunga kuti mapaketi akabatwa haasi echigadzirwa chakadaro.Kuti uite izvozvo, unogona kushandisa tambo yetiweki yausina kubatanidza waya dzeTX, kana kushandisa IP-shoma (uye DHCP-shoma) network interface isingatumire mapaketi zvachose.Chekupedzisira cherechedza kuti kana iwe uchida kushandisa pombi yekusarasikirwa nemapaketi, saka usabatanidza mafambiro kana shandisa chinja uko madhairekitori akatemerwa anononoka (semuenzaniso 100 Mbit) kuti chiteshi chekubatanidza (eg 1 Gbit).
Saka, Maitiro Ekutora Network Traffic?Network Taps vs Switch Ports Mirror
1- Kugadziriswa kuri nyore: Network Tap> Port Mirror
2- Network Performance Influence: Network Tap <Port Mirror
3- Capture, Replication, Aggregation, Forwarding Mano: Network Tap> Port Mirror
4- Traffic Forwarding Latency: Network Tap <Port Mirror
5- Traffic Preprocessing Capacity: Network Tap> Port Mirror
Nguva yekutumira: Mar-30-2022
