Ukuze uhlaziye ithrafikhi yenethiwekhi, kuyadingeka ukuthumela iphakethe lenethiwekhi ku-NTOP/NPROBE noma ku-Out-of-band Network Security and Monitoring Tools.Kunezixazululo ezimbili zale nkinga:
I-Port Mirroring(eyaziwa nangokuthi i-SPAN)
I-Network Tap(okwaziwa nangokuthi Tap Replication, Tap Aggregation, Active Tap, Copper Tap, Ethernet Tap, njll.)
Ngaphambi kokuchaza umehluko phakathi kwezixazululo ezimbili(I-Port Mirror ne-Network Tap), kubalulekile ukuqonda ukuthi i-Ethernet isebenza kanjani.Ku-100Mbit nangaphezulu, abasingathi bavamise ukukhuluma nge-duplex egcwele, okusho ukuthi usokhaya oyedwa angathumela(Tx) futhi amukele(Rx) kanyekanye.Lokhu kusho ukuthi kukhebula engu-100 Mbit exhunywe kumsingathi oyedwa, inani eliphelele lethrafikhi yenethiwekhi umsingathi oyedwa angathumela/amukele(Tx/Rx)) ngu-2 × 100 Mbit = 200 Mbit.
I-Port mirroring iwukuphindaphinda kwephakethe elisebenzayo, okusho ukuthi idivayisi yenethiwekhi inomthwalo wemfanelo wokukopisha iphakethe embobeni yesibuko.
Lokhu kusho ukuthi idivayisi kufanele yenze lo msebenzi ngokusebenzisa insiza ethile (efana ne-CPU), futhi zombili izikhombisi-ndlela zethrafikhi zizophindwa endaweni efanayo.Njengoba kushiwo ngaphambili, kusixhumanisi esiphelele se-duplex, lokhu kusho ukuthi
A - > B no B -> A
Isamba esingu-A ngeke seqe isivinini senethiwekhi ngaphambi kokulahlekelwa kwephakethe.Lokhu kungenxa yokuthi asikho isikhala sokukopisha amaphakethe.Kuvele ukuthi ukwenza isibuko sechweba kuyindlela enhle njengoba kungenziwa ngokushintsha okuningi (kodwa hhayi konke), ngoba amaswishi amaningi ane-drawback yokulahleka kwephakethe, uma uqapha isixhumanisi esinomthwalo ongaphezu kuka-50%, noma isibuko izimbobo zingene embobeni esheshayo (isb. faka izimbobo ezingu-100 Mbit embobeni engu-1 Gbit).Ingasaphathwa eyokuthi ukwenza isibuko sephakethe kungase kudinge ukushintshanisa izinsiza, ezingase zilayishe idivayisi futhi zibangele ukusebenza kokushintshisana kwehle.Qaphela ukuthi ungakwazi ukuxhuma imbobo e-1 embotsheni eyodwa, noma i-VLAN engu-1 embotsheni eyodwa, kodwa ngokuvamile awukwazi ukukopisha izimbobo eziningi ku-1. (Kanjalo njengesibuko sephakethe) asikho.
I-Network TAP (Indawo yokufinyelela yesikhumulo)iyidivayisi yezingxenyekazi zekhompuyutha engenzi lutho ngokuphelele, engathwebula ithrafikhi kunethiwekhi.Ngokuvamile isetshenziselwa ukuqapha ithrafikhi phakathi kwamaphoyinti amabili kunethiwekhi.Uma inethiwekhi phakathi kwalawa maphoyinti amabili iqukethe ikhebula eliphathekayo, i-TAP yenethiwekhi ingase ibe indlela engcono kakhulu yokuthwebula ithrafikhi.
I-TAP yenethiwekhi inamachweba okungenani amathathu: imbobo A, imbobo engu-B, kanye nembobo yokuqapha.Ukuze ubeke umpompi phakathi kwamaphoyinti A no-B, ikhebuli yenethiwekhi phakathi kwephoyinti A nephoyinti B ithathelwa indawo izintambo ezimbili, enye eya echwebeni le-TAP's A, enye eya embobeni ye-TAP's B.I-TAP idlula yonke i-traffic phakathi kwamaphoyinti amabili enethiwekhi, ngakho-ke asaxhumekile kwelinye.I-TAP iphinda ikopishe ithrafikhi endaweni yayo yokuqapha, ngaleyo ndlela ivumele idivayisi yokuhlaziya ukuthi ilalele.
Ama-TAP enethiwekhi ngokuvamile asetshenziswa ngokuqapha nokuqoqa amadivayisi afana ne-APS.Ama-TAP nawo angasetshenziswa ezinhlelweni zokuphepha ngenxa yokuthi awaphazamisi, awabonakali kunethiwekhi, angabhekana namanethiwekhi agcwele i-duplex nangabelwe, futhi ngokuvamile azodlula ithrafikhi ngisho noma umpompi uyeka ukusebenza noma uphelelwa amandla. .
Njengoba izimbobo ze-Network Taps zingatholi kodwa zisakaza kuphela, iswishi ayinalo ulwazi lokuthi ubani ohlezi ngemva kwezimbobo.Umphumela wukuthi isakaza amaphakethe kuzo zonke izimbobo.Ngakho-ke, uma uxhuma idivayisi yakho yokuqapha ekushintsheni, idivayisi enjalo izothola wonke amaphakethe.Qaphela ukuthi lo mshini usebenza uma idivayisi yokuqapha ingathumeli noma yiliphi iphakethe kusiwishi;uma kungenjalo, iswishi izothatha ngokuthi amaphakethe athathiwe awawona awedivayisi enjalo.Ukuze ufeze lokho, ungasebenzisa ikhebuli yenethiwekhi ongazange uxhume kuyo izintambo ze-TX, noma usebenzise isixhumi esibonakalayo senethiwekhi ye-IP-less (kanye ne-DHCP-less) esingathumeli nhlobo amaphakethe.Ekugcineni qaphela ukuthi uma ufuna ukusebenzisa empompini ukuze ungalahlekelwa amaphakethe, khona-ke ungahlanganisi izikhombisi-ndlela noma sebenzisa iswishi lapho izikhombisi-ndlela ezithenjiwe zihamba kancane (isb. 100 Mbit) ukuthi imbobo yokuhlanganisa (isb. 1 Gbit).
Ngakho-ke, Ungathwebula Kanjani Ithrafikhi Yenethiwekhi?I-Network Taps vs Switch Ports Mirror
1- Ukucushwa okulula: Thinta Inethiwekhi > Isibuko Sembobo
2- Ithonya Lokusebenza Kwenethiwekhi: I-Network Tap < Port Mirror
3- Ukuthwebula, Ukuphindaphinda, Ukuhlanganiswa, Ikhono Lokudlulisela: I-Network Tap > Port Mirror
4- Ukubambezeleka Kokudluliselwa Kwethrafikhi: I-Network Tap < Port Mirror
5- Umthamo Wokucubungula Ngaphambi Kwethrafikhi: I-Network Tap > Isibuko Sembobo
Isikhathi sokuthumela: Mar-30-2022
