Kuti muwunike kuchuluka kwa anthu omwe ali pa netiweki, ndikofunikira kutumiza paketi ya netiweki ku NTOP/NPROBE kapena Zida Zotetezera ndi Kuwunika za Network Security. Pali njira ziwiri zothetsera vutoli:
Kujambula Ma Port(yomwe imadziwikanso kuti SPAN)
Kudina pa Netiweki(yomwe imadziwikanso kuti Replication Tap, Aggregation Tap, Active Tap, Copper Tap, Ethernet Tap, ndi zina zotero)
Musanafotokoze kusiyana pakati pa mayankho awiriwa (Port Mirror ndi Network Tap), ndikofunikira kumvetsetsa momwe Ethernet imagwirira ntchito. Pa 100Mbit ndi kupitirira apo, ma host nthawi zambiri amalankhula mu duplex yonse, zomwe zikutanthauza kuti host imodzi imatha kutumiza (Tx) ndi kulandira (Rx) nthawi imodzi. Izi zikutanthauza kuti pa chingwe cha 100 Mbit cholumikizidwa ku host imodzi, kuchuluka konse kwa ma network omwe host imodzi ingatumize/kulandira (Tx/Rx)) ndi 2 × 100 Mbit = 200 Mbit.
Kuyerekeza kwa Port ndi active packet replication, zomwe zikutanthauza kuti chipangizo cha netiweki chili ndi udindo wokopera paketiyo ku doko loyerekeza.
Izi zikutanthauza kuti chipangizochi chiyenera kugwira ntchito imeneyi pogwiritsa ntchito zinthu zina (monga CPU), ndipo njira zonse ziwiri zoyendera zidzabwerezedwanso ku doko lomwelo. Monga tanenera kale, mu ulalo wa A full duplex, izi zikutanthauza kuti
A -> B ndi B -> A
Chiwerengero cha A sichidzapitirira liwiro la netiweki paketi isanatayike. Izi zili choncho chifukwa palibe malo okwanira kukopera mapaketi. Zikuoneka kuti kujambula ma port mirroring ndi njira yabwino kwambiri chifukwa imatha kuchitika ndi ma switch ambiri (koma osati onse), chifukwa ma switch ambiri omwe ali ndi vuto la kutayika kwa mapaketi, ngati mumayang'anira ulalo wokhala ndi katundu woposa 50%, kapena kujambula ma ports pa doko lofulumira (monga kujambula ma ports a 100 Mbit pa doko la 1 Gbit). Osanenanso kuti kujambula ma packet mirroring kungafunike kusinthana ma switch resources, zomwe zingayambitse kutsika kwa magwiridwe antchito a exchange. Dziwani kuti mutha kulumikiza doko limodzi ku doko limodzi, kapena doko limodzi la VLAN ku doko limodzi, koma nthawi zambiri simungathe kukopera ma ports ambiri ku 1. (Chifukwa chake galasi la packet) likusowa.
A Network TAP (Malo Olowera Malo Ofikira)ndi chipangizo cha hardware chomwe chimagwira ntchito popanda kugwiritsa ntchito intaneti, chomwe chingathe kugwira anthu ambiri pa netiweki. Chimagwiritsidwa ntchito nthawi zambiri poyang'anira anthu ambiri pakati pa malo awiri mu netiweki. Ngati netiweki pakati pa malo awiriwa ili ndi chingwe chenicheni, TAP ya netiweki ingakhale njira yabwino kwambiri yogwirira anthu ambiri.
TAP ya netiweki ili ndi madoko osachepera atatu: doko la A, doko la B, ndi doko loyang'anira. Kuti muyike kupopa pakati pa mfundo A ndi B, chingwe cha netiweki pakati pa mfundo A ndi mfundo B chimasinthidwa ndi zingwe ziwiri, chimodzi chikupita ku doko la TAP la A, china chikupita ku doko la TAP la B. TAP imadutsa magalimoto onse pakati pa mfundo ziwiri za netiweki, kotero kuti zimalumikizanabe. TAP imakoperanso magalimoto ku doko lake loyang'anira, motero zimathandiza chipangizo chowunikira kumvetsera.
Ma TAP a pa intaneti amagwiritsidwa ntchito kwambiri ndi zida zowunikira ndi kusonkhanitsa monga APS. Ma TAP angagwiritsidwenso ntchito mu mapulogalamu achitetezo chifukwa sasokoneza, sapezeka pa netiweki, amatha kuthana ndi ma netiweki athunthu komanso osagawana, ndipo nthawi zambiri amadutsa magalimoto ngakhale pompopu itasiya kugwira ntchito kapena kutaya mphamvu.
Popeza madoko a Network Taps salandira koma amatumiza okha, switchyo sidziwa amene ali kumbuyo kwa madokowo. Zotsatira zake n'zakuti imafalitsa mapaketi ku madoko onse. Chifukwa chake, ngati mulumikiza chipangizo chanu chowunikira ku switch, chipangizocho chidzalandira mapaketi onse. Dziwani kuti njira iyi imagwira ntchito ngati chipangizo chowunikira sichitumiza paketi iliyonse ku switch; apo ayi, switchyo idzaganiza kuti mapaketi otsekedwa si a chipangizocho. Kuti muchite zimenezo, mutha kugwiritsa ntchito chingwe cha netiweki chomwe simunalumikizepo mawaya a TX, kapena kugwiritsa ntchito mawonekedwe a netiweki opanda IP (ndi DHCP-less) omwe satumiza mapaketi konse. Pomaliza dziwani kuti ngati mukufuna kugwiritsa ntchito kupopa kuti musataye mapaketi, ndiye kuti musaphatikize malangizo kapena kugwiritsa ntchito switch pomwe malangizo otsekedwa ndi ochedwa (monga 100 Mbit) kuposa doko lophatikiza (monga 1 Gbit).
Ndiye, Kodi Mungajambule Bwanji Magalimoto a Pa Intaneti? Ma Network Taps vs Switch Ports Mirror
1- Kusintha kosavuta: Network Tap > Port Mirror
2- Mphamvu ya Magwiridwe a Ntchito pa Netiweki: Kukhudza Netiweki < Galasi Lolowera
3- Kujambula, Kubwerezabwereza, Kusonkhanitsa, Kutumiza Zinthu: Kukhudza Netiweki > Galasi la Port
4- Kuchedwa kwa Kutumiza Magalimoto: Kukhudza Netiweki < Galasi Lolowera
5- Kutha Kukonza Magalimoto: Network Tap > Port Mirror
Nthawi yotumizira: Marichi-30-2022
