Kusiyana kwakukulu pakati pa kujambula mapaketi pogwiritsa ntchito Network TAP ndi madoko a SPAN.
Port Mirroring(wotchedwanso SPAN)
Network Tap(yomwe imadziwikanso kuti Replication Tap, Aggregation Tap, Active Tap, Copper Tap, Ethernet Tap, etc.)TAP (Pofikira Pofikira)ndi chida cha Hardware, chomwe chimatha kujambula anthu ambiri pamanetiweki. Nthawi zambiri amagwiritsidwa ntchito kuyang'anira kuchuluka kwa magalimoto pakati pa mfundo ziwiri pamaneti. Ngati maukonde pakati pa mfundo ziwirizi ali ndi chingwe chakuthupi, TAP network ikhoza kukhala njira yabwino yojambulira magalimoto.
Musanafotokoze kusiyana pakati pa njira ziwirizi (Port Mirror ndi Network Tap), ndikofunikira kumvetsetsa momwe Ethernet imagwirira ntchito. Pa 100Mbit ndi kupitilira apo, olandila nthawi zambiri amalankhula mowirikiza, kutanthauza kuti wolandila wina amatha kutumiza(Tx) ndikulandila(Rx) nthawi imodzi. Izi zikutanthauza kuti pa chingwe cha 100 Mbit cholumikizidwa ndi wolandira mmodzi, kuchuluka kwa kuchuluka kwa magalimoto omwe munthu wina angatumize / kulandira (Tx / Rx)) ndi 2 × 100 Mbit = 200 Mbit.
The Port mirroring ndi yogwira paketi kubwereza, kutanthauza kuti chipangizo netiweki ndi thupi udindo kukopera paketi ku doko galasi.
Kujambula Magalimoto: TAP vs SPAN
Mukamayang'anira kuchuluka kwa magalimoto pamaneti, ngati simukufuna kugwiritsa ntchito chithandizo mwachindunji pomwe wogwiritsa ntchito akukonzekera, muli ndi njira ziwiri zazikulu. M'nkhani yotsatirayi, tipereka chithunzithunzi cha TAP (Test Access Point) ndi SPAN (Switch Port Analyzer). Kuti muwunike mozama, katswiri wowunika mapaketi a Timo'Neill ali ndi zolemba zingapo pa lovemytool.com zomwe zimafotokoza mwatsatanetsatane, koma apa, titenga njira yowonjezereka.
SPAN
Port mirroring ndi njira yowunikira kuchuluka kwa maukonde potumiza kopi ya paketi iliyonse yomwe ikubwera ndi/kapena yotuluka kuchokera ku madoko amodzi kapena angapo (kapena VLans) yakusintha kupita ku doko lina lolumikizidwa ndi makina osanthula magalimoto. Spans nthawi zambiri amagwiritsidwa ntchito m'makina osavuta kuyang'anira masamba angapo nthawi imodzi. Chiwerengero chenicheni cha ma netiweki omwe amatha kuyang'anira zimadalira komwe SPAN imayikidwa pokhudzana ndi zida zapakati pa data. Mwinamwake mudzapeza zomwe mukuyang'ana, koma ndizosavuta kupeza nokha ndi deta yochuluka. Mwachitsanzo, ndizotheka kupeza makope angapo a data yomweyi pa VLAN yonse. Izi zimapangitsa kuthetsa mavuto a LAN kukhala kovuta kwambiri, komanso kumakhudzanso kuthamanga kwa switch cpus kapena kumakhudza Ethernet pozindikira malo. Kwenikweni, ma spans ochulukirapo, amatha kutaya mapaketi. Poyerekeza ndi matepi, ma spans amatha kuyang'aniridwa patali, zomwe zikutanthauza kuti nthawi yocheperako imagwiritsidwa ntchito posintha masinthidwe, koma mainjiniya apa intaneti akufunikabe.
Madoko a SPAN siukadaulo wongokhala, monga ena amanenera, chifukwa amatha kukhala ndi zotsatira zina zoyezeka pamagalimoto apaintaneti, kuphatikiza:
- Nthawi yosintha kulumikizana kwa chimango
- Kutaya mapaketi chifukwa choyang'ana kwambiri
- Mapaketi owonongeka amachotsedwa popanda chidziwitso, kulepheretsa kusanthula
Chifukwa chake, madoko a SPAN ndi oyenera nthawi zina pomwe kugwetsa mapaketi sikukhudza kusanthula, kapena komwe mtengo umaganiziridwa.
TAP
Mosiyana ndi izi, matepi amafunikira kuwononga ndalama pazida zam'tsogolo, koma safuna kukhazikitsidwa kwakukulu. Zowonadi, popeza sakhala chete, amatha kulumikizidwa ndikuchotsedwa pamaneti popanda kukhudza. Ma tap ndi zida za Hardware zomwe zimapereka njira yolumikizira deta yomwe ikuyenda pa netiweki yamakompyuta ndipo imagwiritsidwa ntchito kwambiri pachitetezo cha netiweki ndikuwunika magwiridwe antchito. Magalimoto omwe amawunikidwa amatchedwa "pass-through" traffic ndipo doko lomwe limagwiritsidwa ntchito powunikira limatchedwa "monitoring port". Kuti mufufuze maukonde momveka bwino, matepi amatha kuyikidwa pakati pa ma routers ndi ma switch.
Chifukwa TAP sichimakhudza mapaketi, imatha kuwonedwa ngati njira yowonera kuchuluka kwa magalimoto pamaneti.
Pali mitundu itatu ya mayankho a TAP:
- Zogawanitsa pa intaneti (1 : 1)
- Aggregate TAP (Mipikisano: 1)
- Kukonzanso TAP (1: Mipikisano)
TAP imabwereza kuchuluka kwa magalimoto pachida chimodzi choyang'anira, kapena pa chipangizo cholumikizira packet network yotalikirana kwambiri, ndipo imagwiritsa ntchito zida zoyesera za QOS zingapo (nthawi zambiri), zida zowunikira ma netiweki, ndi zida zolumikizira maukonde monga wireshark.
Kuphatikiza apo, mitundu ya TAP imasiyanasiyana kutengera mtundu wa chingwe, kuphatikiza CHIKWANGWANI TAP ndi gigabit mkuwa TAP, zonse zimagwira ntchito mofananamo potsitsa gawo lachizindikiro ku makina osanthula magalimoto, pomwe choyimira chachikulu chikupitilizabe kufalitsa popanda kusokonezedwa. Kwa fiber TAP, ndikugawa mtandawo pawiri, pamene muzitsulo zamkuwa, ndiko kubwereza chizindikiro chamagetsi.
Kufananiza TAP ndi SPAN
Choyamba, doko la SPAN siloyenera kulumikizana ndi ulalo wa 1G wathunthu, ndipo ngakhale litakhala pansi pamlingo wake wokwanira, limatsitsa mwachangu mapaketi chifukwa ndi olemedwa, kapena kungoti chosinthira chimayika patsogolo masiku okhazikika adoko kupita kudoko kuposa data ya doko la SPAN. Mosiyana ndi matepi a netiweki, madoko a SPAN amasefa zolakwika zosanjikiza zakuthupi, zomwe zimapangitsa kuti kusanthula kukhale kovuta kwambiri, ndipo monga tawonera, nthawi zowonjezeretsa zolakwika ndi mafelemu osinthidwa zitha kuyambitsa zovuta zina. Kumbali ina, TAP imatha kugwiritsa ntchito ulalo waduplex wa 1G.
TAP ingathenso kuchita kugwidwa kwathunthu kwa paketi ndikuwunika mozama paketi ya ma protocol, kuphwanya, kulowerera, ndi zina zotero. Choncho, deta ya TAP ingagwiritsidwe ntchito ngati umboni kukhoti, pamene deta ya doko la SPAN silingathe.
Chitetezo ndi mbali ina yomwe pali kusiyana pakati pa njira ziwirizi. Madoko a SPAN nthawi zambiri amakonzedwa kuti azilumikizana ndi njira imodzi, koma amathanso kulumikizana nthawi zina, zomwe zimapangitsa kuti pakhale zovuta. Mosiyana ndi izi, TAP simayankhidwa ndipo ilibe adilesi ya IP, kotero siyingabedwe.
Madoko a SPAN nthawi zambiri samadutsa ma tag a VLAN, zomwe zingapangitse kuti zikhale zovuta kuzindikira zolephera za VLAN, koma matepi sangathe kuwona netiweki yonse ya VLAN nthawi imodzi. Ngati mipope yophatikizika sinagwiritsidwe ntchito, TAP sipereka njira yofananira pamatchanelo onse awiri, koma kusamala kuyenera kuchitidwa pozindikira kuti yatha. Pali matepi ophatikizana, monga Booster for Profitap, omwe amaphatikiza madoko asanu ndi atatu a 10/100/1G muzotulutsa za 1G-10G.
Booster imatha kulowetsa mapaketi ndikuyika ma tag a VLAN. Mwanjira iyi, chidziwitso cha doko la paketi iliyonse chidzatumizidwa kwa analyzer.
Madoko a SPAN akadali chida chomwe oyang'anira ma netiweki adzagwiritsa ntchito, koma ngati liwiro ndi mwayi wodalirika wa data yonse ya netiweki ndizofunikira, TAP ndiye chisankho chabwinoko. Posankha njira yoti mutenge, madoko a SPAN ndi oyenera maukonde omwe amagwiritsidwa ntchito pang'onopang'ono, popeza mapaketi otayika samakhudza kusanthula kapena amasankha ngati mtengo uli wodetsedwa. Komabe, pamanetiweki omwe ali ndi kuchuluka kwa anthu ambiri, kuthekera kwa TAP, chitetezo, ndi kudalirika kwake kumapereka mawonekedwe athunthu pamagalimoto pamanetiweki yanu popanda kuwopa kutayika kwa paketi kapena kusefa zolakwika.
○ Zowoneka bwino
○ Fananizani kuchuluka kwa magalimoto (mapaketi onse amitundu yonse)
○ Zosasunthika, zosasokoneza (sizimasintha deta)
○ Mumndandanda, palibe ma doko osinthira omwe amagwiritsidwa ntchito kutengera kuchuluka kwa magalimoto awiri m'mahatchi Kukhazikitsa kosavuta (pulagi ndi kusewera)
○ Osakhala pachiwopsezo cha akuba (chosawoneka, chipangizo chowunikira payokha kuchokera pa netiweki, palibe adilesi ya IP/MAC)
○ Zotheka
○ Zoyenera zilizonse
○ Kuwoneka pang'ono
○ Osatengera kuchuluka kwa magalimoto (kutsitsa makulidwe ena ndi mitundu ya paketi)
○ Zosangokhala (kusintha nthawi ya paketi, kuchulukira kwachedwa)
○ Gwiritsani ntchito doko losinthira (doko lililonse la SPAN limagwiritsa ntchito cholumikizira)
○ Kulephera kugwiritsa ntchito kulumikizana kowirikiza kawiri (mapaketi otsitsidwa atadzaza, amathanso kusokoneza ma switch oyambira)
○ Mainjiniya akuyenera kukonza
○ Osatetezedwa (Dongosolo loyang'anira ndi gawo la netiweki, zovuta zachitetezo zomwe zingachitike)
○ Osachulukitsidwa
○ Zimatheka pokhapokha pazifukwa zina
Mutha kukhala osangalatsa nkhani yofananira: Momwe mungajambulire Network Traffic? Network Tap vs Port Mirror
Nthawi yotumiza: Jun-09-2025
