SPAN, RSPAN, ndi ERSPAN ndi njira zomwe zimagwiritsidwa ntchito pa intaneti kuti zigwire ndikuyang'anira kuchuluka kwa anthu omwe akuyenda kuti aunike. Nayi chidule cha chilichonse:
SPAN (Switched Port Analyzer)
Cholinga: Amagwiritsidwa ntchito kuwonetsa kuchuluka kwa magalimoto kuchokera ku madoko enaake kapena ma VLAN pa switch kupita ku doko lina kuti ayang'anire.
Chogwiritsira Ntchito: Choyenera kusanthula kuchuluka kwa magalimoto m'deralo pa switch imodzi. Kuchuluka kwa magalimoto kumawonetsedwa ku doko losankhidwa kumene chowunikira maukonde chingathe kuwajambula.
RSPAN (Kutali kwa SPAN)
Cholinga: Kumawonjezera mphamvu za SPAN pama switch angapo mu netiweki.
Chogwiritsira Ntchito: Chimalola kuyang'anira magalimoto kuchokera pa switch imodzi kupita ku ina kudzera pa trunk link. Chothandiza pazochitika pomwe chipangizo chowunikira chili pa switch ina.
ERSPAN (SPAN Yotalikira Yolumikizidwa)
Cholinga: Chimaphatikiza RSPAN ndi GRE (Generic Routing Encapsulation) kuti chiphatikize magalimoto omwe ali ndi mawonekedwe ofanana.
Mlandu Wogwiritsira Ntchito: Imalola kuyang'anira kuchuluka kwa magalimoto omwe amadutsa pa ma network oyendetsedwa. Izi ndizothandiza pa zomangamanga zovuta za ma network komwe kuchuluka kwa magalimoto kumafunika kujambulidwa m'magawo osiyanasiyana.
Switch port Analyzer (SPAN) ndi njira yowunikira magalimoto yogwira ntchito bwino komanso yogwira ntchito bwino. Imatsogolera kapena kuwonetsa magalimoto kuchokera ku doko loyambira kapena VLAN kupita ku doko lopitako. Izi nthawi zina zimatchedwa session monitoring. SPAN imagwiritsidwa ntchito pothetsa mavuto okhudzana ndi kulumikizana ndikuwerengera kagwiritsidwe ntchito ka netiweki ndi magwiridwe antchito, pakati pa zina zambiri. Pali mitundu itatu ya SPAN yomwe imathandizidwa pa zinthu za Cisco ...
a. SPAN kapena SPAN yakomweko.
b. SPAN yakutali (RSPAN).
c. SPAN yakutali yolumikizidwa (ERSPAN).
Kudziwa: "Wogulitsa Mapaketi a Network a Mylinking™ wokhala ndi SPAN, RSPAN ndi ERSPAN"
Kujambula zithunzi za SPAN / traffic / port mirroring kumagwiritsidwa ntchito pazinthu zambiri, ndipo pansipa pali zina.
- Kugwiritsa ntchito IDS/IPS mu njira yachiwerewere.
- Mayankho ojambulira mafoni a VOIP.
- Zifukwa zotsatirira malamulo a chitetezo kuti ziwunikire ndikusanthula magalimoto.
- Kuthetsa mavuto okhudzana ndi kulumikizana, kuyang'anira kuchuluka kwa magalimoto.
Kaya mtundu wa SPAN ukuyenda bwanji, gwero la SPAN likhoza kukhala mtundu uliwonse wa doko mwachitsanzo doko loyendetsedwa, doko losinthira la thupi, doko lolowera, thunthu, VLAN (madoko onse ogwira ntchito amayang'aniridwa ndi switch), EtherChannel (kaya doko kapena ma interfaces onse a doko-njira) ndi zina zotero. Dziwani kuti doko lokonzedwa kuti lifike ku SPAN SINGAKHALE gawo la VLAN yochokera ku SPAN.
Magawo a SPAN amathandizira kuyang'anira kuchuluka kwa magalimoto omwe akubwera (ingress SPAN), kuchuluka kwa magalimoto omwe akubwera (egress SPAN), kapena kuchuluka kwa magalimoto omwe akuyenda mbali zonse ziwiri.
- Ingress SPAN (RX) imakopera magalimoto omwe amalandiridwa ndi ma source ports ndi ma VLAN kupita ku doko lopitako. SPAN imakopera magalimotowo asanasinthe chilichonse (monga VACL kapena ACL fyuluta, QoS kapena ingress kapena egress policing).
- Egress SPAN (TX) imakopera magalimoto omwe amatumizidwa kuchokera ku ma source ports ndi ma VLAN kupita ku doko lopitako. Kusefa kapena kusintha kulikonse kofunikira ndi VACL kapena ACL filter, QoS kapena ingress kapena egress policing kumachitika switch isanatumize magalimoto ku doko lopitako la SPAN.
- Mawu onse awiri akagwiritsidwa ntchito, SPAN imakopera kuchuluka kwa magalimoto a pa intaneti omwe amalandiridwa ndi kutumizidwa ndi ma source ports ndi ma VLAN kupita ku doko lopitako.
- SPAN/RSPAN nthawi zambiri imanyalanyaza mafelemu a CDP, STP BPDU, VTP, DTP ndi PAgP. Komabe mitundu iyi ya magalimoto imatha kutumizidwa ngati lamulo lobwerezabwereza la encapsulation lakonzedwa.
SPAN kapena SPAN Yapafupi
SPAN imawonetsa kuchuluka kwa magalimoto kuchokera ku mawonekedwe amodzi kapena angapo pa switch kupita ku mawonekedwe amodzi kapena angapo pa switch yomweyo; chifukwa chake SPAN nthawi zambiri imatchedwa LOCAL SPAN.
Malangizo kapena zoletsa ku SPAN yakomweko:
- Madoko onse awiri a Layer 2 switched ndi madoko a Layer 3 akhoza kukhazikitsidwa ngati madoko oyambira kapena opitako.
- Gwero likhoza kukhala doko limodzi kapena angapo kapena VLAN, koma osati kuphatikiza kwa izi.
- Ma Trunk ports ndi ma source ports ovomerezeka osakanikirana ndi ma source ports omwe si trunk.
- Madoko ofikira 64 a SPAN amatha kukonzedwa pa switch.
- Tikakonza doko lolowera, kasinthidwe kake koyambirira kamasinthidwa. Ngati kasinthidwe ka SPAN kachotsedwa, kasinthidwe koyambirira pa doko limenelo kamabwezeretsedwanso.
- Mukakonza doko lolowera, dokolo limachotsedwa mu bundle iliyonse ya EtherChannel ngati ili mbali ya imodzi. Ngati inali doko loyendetsedwa, kasinthidwe ka SPAN kamachotsa kakonzedwe ka doko loyendetsedwa.
- Madoko olowera sathandizira chitetezo cha madoko, kutsimikizira kwa 802.1x, kapena ma VLAN achinsinsi.
- Doko likhoza kugwira ntchito ngati doko lopitako kwa gawo limodzi la SPAN.
- Doko silingathe kukhazikitsidwa ngati doko lopitako ngati ndi doko loyambira la gawo la span kapena gawo la VLAN yoyambira.
- Ma port channel interfaces (EtherChannel) amatha kukonzedwa ngati ma source ports koma osati ngati kopita kwa SPAN.
- Kuwongolera kwa magalimoto ndi "zonse" mwachisawawa pa magwero a SPAN.
- Madoko olowera satenga nawo mbali mu chitsanzo cha mtengo wozungulira. Sichitha kuthandizira DTP, CDP ndi zina zotero. SPAN Yapafupi imaphatikizapo ma BPDU mumsewu wowunikira, kotero ma BPDU aliwonse omwe akuwoneka padoko lolowera amakopedwa kuchokera ku doko loyambira. Chifukwa chake musalumikize switch ku mtundu uwu wa SPAN chifukwa ingayambitse kuzungulira kwa netiweki. Zida za AI zithandiza kuti ntchito igwire bwino ntchito, ndipoAI yosaonekautumiki ukhoza kupititsa patsogolo ubwino wa zida za AI.
- Pamene VLAN yakonzedwa ngati gwero la SPAN (lomwe nthawi zambiri limatchedwa VSPAN) ndi njira zonse ziwiri zolowera ndi kutuluka, tumizani mapaketi obwerezabwereza kuchokera ku doko loyambira pokhapokha ngati mapaketi asinthidwa mu VLAN yomweyo. Kopi imodzi ya paketiyo imachokera ku traffic yolowera pa doko lolowera, ndipo kopi inayo ya paketiyo imachokera ku traffic yotulukira pa doko lotulukira.
- VSPAN imayang'anira kuchuluka kwa magalimoto omwe amatuluka kapena kulowa m'madoko a Layer 2 mu VLAN.
Chipinda Chotalikira (RSPAN)
Remote SPAN (RSPAN) ndi yofanana ndi SPAN, koma imathandizira ma source ports, ma source VLANs, ndi ma destination ports pa ma switch osiyanasiyana, omwe amapereka remote monitoring traffic kuchokera ku ma source ports omwe amagawidwa pa ma switch angapo ndipo amalola destination centrally centrally network capture devices. Gawo lililonse la RSPAN limanyamula SPAN traffic kudzera pa RSPAN VLAN yodzipereka yosankhidwa ndi wogwiritsa ntchito m'ma switch onse omwe akutenga nawo mbali. VLAN iyi imayikidwa ku ma switch ena, kulola kuti RSPAN session traffic inyamulidwe kudzera pa ma switch angapo ndikuperekedwa ku destination capture station. RSPAN imakhala ndi RSPAN source session, RSPAN VLAN, ndi RSPAN destination session.
Malangizo kapena zoletsa ku RSPAN:
- VLAN yeniyeni iyenera kukonzedwa kuti igwiritsidwe ntchito pofikira ku SPAN komwe kudzadutsa pakati pa ma switch kudzera pa maulalo a trunk kupita ku doko lofikira.
- Ikhoza kupanga mtundu womwewo wa gwero - osachepera doko limodzi kapena osachepera VLAN imodzi koma singakhale yosakanikirana.
- Malo oti mupiteko ndi RSPAN VLAN osati single port in switch, kotero ma port onse mu RSPAN VLAN adzalandira magalimoto omwe amawonetsedwa.
- Konzani VLAN iliyonse ngati RSPAN VLAN malinga ngati zipangizo zonse za netiweki zomwe zikugwira ntchito zikuthandizira makonzedwe a RSPAN VLAN, ndikugwiritsa ntchito RSPAN VLAN yomweyo pa gawo lililonse la RSPAN
- VTP ikhoza kufalitsa makonzedwe a ma VLAN omwe ali ndi manambala kuyambira 1 mpaka 1024 ngati ma RSPAN VLAN, iyenera kukonza pamanja ma VLAN omwe ali ndi manambala oposa 1024 ngati ma RSPAN VLAN pazida zonse za netiweki yoyambira, yapakati, komanso yopita.
- Kuphunzira ma adilesi a MAC kwalepheretsedwa mu RSPAN VLAN.
SPAN yakutali yolumikizidwa (ERSPAN)
Encapsulated remote SPAN (ERSPAN) imabweretsa generic routing encapsulation (GRE) ya magalimoto onse ogwidwa ndipo imalola kuti ifalikire m'magawo a Layer 3.
ERSPAN ndiCisco mwiniwakendipo ikupezeka pa nsanja za Catalyst 6500, 7600, Nexus, ndi ASR 1000 zokha mpaka pano. ASR 1000 imathandizira gwero la ERSPAN (kuyang'anira) kokha pa Fast Ethernet, Gigabit Ethernet, ndi ma port-channel interfaces.
Malangizo kapena zoletsa ku ERSPAN:
- Magawo a gwero la ERSPAN sakutengera kuchuluka kwa magalimoto a ERSPAN GRE ochokera kumadoko oyambira. Gawo lililonse la gwero la ERSPAN likhoza kukhala ndi madoko kapena ma VLAN ngati magwero, koma osati onse awiri.
- Mosasamala kanthu za kukula kulikonse kwa MTU komwe kwakonzedwa, ERSPAN imapanga mapaketi a Layer 3 omwe amatha kutalika mpaka ma byte 9,202. Ma traffic a ERSPAN angalephereke chifukwa cha mawonekedwe aliwonse mu netiweki omwe amakakamiza kukula kwa MTU kochepera ma byte 9,202.
- ERSPAN siithandiza kugawikana kwa mapaketi. Chidutswa cha "musagawikane" chayikidwa mu mutu wa IP wa mapaketi a ERSPAN. Magawo opita ku ERSPAN sangathe kusonkhanitsanso mapaketi a ERSPAN ogawikana.
- ID ya ERSPAN imasiyanitsa kuchuluka kwa magalimoto a ERSPAN omwe akufika pa adilesi ya IP yomweyi kuchokera ku magawo osiyanasiyana a ERSPAN; ID ya ERSPAN yokonzedwa iyenera kufanana ndi zida zoyambira ndi zoyambira.
- Pa doko loyambira kapena VLAN yoyambira, ERSPAN imatha kuyang'anira kuchuluka kwa magalimoto omwe akubwera, kutuluka, kapena onse awiri omwe akubwera ndi kutuluka. Mwachisawawa, ERSPAN imayang'anira kuchuluka kwa magalimoto onse, kuphatikiza mafelemu a multicast ndi Bridge Protocol Data Unit (BPDU).
- Ma interface a tunnel omwe amathandizidwa ngati ma source ports a ERSPAN source session ndi GRE, IPinIP, SVTI, IPv6, IPv6 over IP tunnel, Multipoint GRE (mGRE) ndi Secure Virtual Tunnel Interfaces (SVTI).
- Njira ya VLAN yosefera sigwira ntchito mu gawo lowunikira la ERSPAN pa ma interface a WAN.
- ERSPAN pa Cisco ASR 1000 Series Routers imathandizira ma interfaces a Layer 3 okha. Ma interfaces a Ethernet sathandizidwa pa ERSPAN akakonzedwa ngati ma interfaces a Layer 2.
- Pamene gawo lakonzedwa kudzera mu ERSPAN configuration CLI, session ID ndi mtundu wa gawo sizingasinthidwe. Kuti musinthe, choyamba muyenera kugwiritsa ntchito lamulo loti palibe mawonekedwe a configuration kuti muchotse gawolo kenako ndikusinthanso gawolo.
- Cisco IOS XE Release 3.4S:- Kuyang'anira mapaketi a tunnel omwe sali otetezedwa ndi IPsec kumathandizidwa pa IPv6 ndi IPv6 kudzera pa IP tunnel interfaces kokha ku magawo a ERSPAN source, osati ku magawo a ERSPAN destination.
- Cisco IOS XE Release 3.5S, thandizo linawonjezedwa pa mitundu yotsatira ya ma WAN interfaces monga ma source ports pa source session: Serial (T1/E1, T3/E3, DS0), Packet over SONET (POS) (OC3, OC12) ndi Multilink PPP (multilink, pos, ndi serial keywords zinawonjezedwa ku lamulo la source interface).
Kugwiritsa ntchito ERSPAN ngati Local SPAN:
Kuti tigwiritse ntchito ERSPAN kuyang'anira kuchuluka kwa magalimoto kudzera mu doko limodzi kapena angapo kapena ma VLAN mu chipangizo chimodzi, tiyenera kupanga malo opezera ERSPAN ndi magawo ofikira a ERSPAN mu chipangizo chomwecho, kuyenda kwa deta kumachitika mkati mwa rauta, zomwe zimafanana ndi zomwe zili mu SPAN yakomweko.
Zinthu zotsatirazi zimagwiritsidwa ntchito mukamagwiritsa ntchito ERSPAN ngati SPAN yakomweko:
- Magawo onsewa ali ndi ERSPAN ID yofanana.
- Magawo onsewa ali ndi adilesi ya IP yofanana. Adilesi ya IP iyi ndi adilesi ya IP ya ma rauta; ndiko kuti, adilesi ya IP ya loopback kapena adilesi ya IP yokonzedwa pa doko lililonse.
| (config)# monitor session 10 mtundu wa erspan-source |
| (config-mon-erspan-src)# source interface Gig0/0/0 |
| (config-mon-erspan-src)# kopita |
| (config-mon-erspan-src-dst)# ip address 10.10.10.1 |
| (config-mon-erspan-src-dst)# adilesi ya ip yoyambira 10.10.10.1 |
| (config-mon-erspan-src-dst)# erspan-id 100 |
Nthawi yotumizira: Ogasiti-28-2024
