Netflow ndi iPfix ndi matekix onse omwe amagwiritsidwa ntchito powunikira maukonde komanso kusanthula. Amapereka chidziwitso m'mayendedwe apamadzi, pothandizira kukhathamiritsa, kusokonezeka, komanso kusanthula kwachitetezo.
Netflow:
Kodi netflow ndi chiyani?
NettflowKodi njira yoyambirira yolowera yolowera, yoyambitsidwa ndi Cisco kumapeto kwa zaka za m'ma 1990s. Maminitsi osiyanasiyana osiyanasiyana alipo, koma kuperekedwa kwakukulu kumakhazikitsidwa pa intaneti v5 kapena nefflow v9. Madongosolo aliwonse ali ndi mphamvu zosiyanasiyana, opaleshoni yoyamba idalibe chimodzimodzi:
Choyamba, rauta, switch, firewall, kapena mtundu wina wa chipangizocho chidzagwira chidziwitso pa intaneti "- makamaka mapaketi omwe amagawana ngati doko, komanso mtundu wa protocol. Pambuyo poyenda utapita kapena kuchuluka kwa nthawi yomwe yadutsa, chipangizocho chidzagulitsa zojambulajambula ku bungwe lotchedwa "woyenda".
Pomaliza, "choyenda" choyenda "chimakhala ndi malingaliro a mbirizi, kupereka chidziwitso chofananira m'mawu, ziwerengero, komanso mbiri yakale komanso yeniyeni. Pochita izi, osonkhetsa ndi osonkhetsa nthawi zambiri amakhala bungwe limodzi, nthawi zambiri amaphatikizidwa mu njira yowunikira yowunikira maukonde.
Netflow imagwira ntchito molakwika. Makina a kasitomala akapita ku seva, neffw amayamba kugwira ndi kusokoneza metadata kuchokera. Gawoli litatha, Netflow adzatumiza mbiri imodzi yonse kwa otolera.
Ngakhale zimagwiritsidwabe ntchito nthawi zambiri, Netflow v5 ali ndi malire angapo. Minda yomwe imatumizidwa imatumizidwa, kuwunikira zimathandizidwa mu njira yolumikizana yokha, ndipo matekinoloje amakono monga ipv6, MPL, ndi VXLAN samathandizidwa. Netflow v9, yodziwika bwino ngati yosinthika Netflow (FNF), imawafotokozera zina mwazomwe sangathe, kulola ogwiritsa ntchito kupanga ma tempulo azikhalidwe ndikuwonjezera chithandizo cha matekinoloje atsopano.
Otsatsa ambiri amakhalanso ndi njira zawo zokhazikitsidwa za Netflow, monga joflow kuchokera ku Juniper ndi Totream kuchokera ku Huawei. Ngakhale kusinthasintha kumatha kusiyanasiyana, kukhazikitsa izi nthawi zambiri kumabweretsa zojambula zomwe zikugwirizana ndi osonkhanitsa a Netflow ndi owunikira.
Mawonekedwe a Netflow:
~ Data yoyenda: Netflow amapanga zojambulajambula zomwe zimaphatikizapo zambiri monga gwero la ma adilesi, madoko, mapaketi, packetor, mapaketi ndi mitundu ya protocol.
~ Kuwunika kwamagalimoto: Netflow imapereka mawonekedwe am'madzi am'madzi, kulola oyang'anira kuti azindikire mapulogalamu apamwamba, ma epulo, ndi magwero apamsewu.
~Kuzindikirika kwa Anomaly: Mwa kusanthula deta, netflow amatha kuzindikira anomalies monga magwiridwe antchito a bandwidth, kuphatikizika kwa netiweki, kapena njira zachilendo.
~ Kusanthula chitetezo: Netflow ikhoza kugwiritsidwa ntchito kudziwa ndikufufuza zochitika zachitetezo, monga zidagawika kukana-ntchito (DDOS) kapena kuyesa kosagwiritsidwa ntchito.
Matembenukidwe a Netfrow: Netflow wasintha pakapita nthawi, ndipo mitundu yosiyanasiyana yatulutsidwa. Matembenuzidwe ena odziwika amaphatikiza nefflow v5, Netflow v9, komanso netflow. Mtundu uliwonse umayambitsa zowonjezera ndi kuthekera kwinanso.
IPFix:
IPFX ndi chiyani?
Muyezo wa Ietf womwe udatuluka m'ma 2000s, zotulukapo za intaneti za intaneti (ipfix) ndizofanana kwambiri ndi nefflow. M'malo mwake, Netflow V9 idakhala ngati maziko a ipfix. Kusiyana kwakukulu pakati pa awiriwa ndi Iphix ndi muyezo wotseguka, ndipo amathandizidwa ndi ogulitsa ambiri ogwirira ntchito pa intaneti kupatula Cisco. Kupatula minda yowonjezera yowonjezereka yowonjezeredwa ku IPFIX, mapangidwe ake amakhala ofanana. M'malo mwake, Iphix nthawi zina amatanthauza kuti "Netflow v10".
Chifukwa chofanana ndi zofananira ndi nefflow, ipfix imakuthandizani pakati pa njira zowunikira Network komanso zida zamaneti.
IPFIX (pa intaneti protocol floocal exprocal) ndi protocol yotseguka yomwe ili ndi ntchito ya Internet Internet (Ietf). Zimakhazikitsidwa pa mtundu wa netflow mtundu 9 chofanizira ndipo chimapereka mtundu wokhazikika wotumiza zojambula zotuluka pamagawo a network.
IPFIX imamanga pa malingaliro a netflow ndikuwakulitsa kuti apereke kusinthasintha komanso kagulu ka ogulitsa ogulitsa osiyanasiyana ndi zida. Zimayambitsa lingaliro la ma tempelations, kulola kuti pakhale tanthauzo lamphamvu kwa kapangidwe kamene kamakhala. Izi zimathandizira kuphatikizika kwa minda yamachitidwe, kumathandizira ma protocols atsopano, ndi zowonjezera.
Mawonekedwe a IPFIX:
~ Njira Yodzipangira: IPFIX imagwiritsa ntchito ma temlalates kuti afotokozere kapangidwe kake ndi zomwe zili ndi zojambulajambula, kupereka kusinthasintha kogwirira ntchito madongosolo osiyanasiyana a data ndi zidziwitso za protocol.
~ Kulolerana: IPfix ndiofanana, kuonetsetsa kuti mukuwunika mosasinthasintha pamaneti osiyanasiyana.
~ Chithandizo cha IPV6: IPFIX imathandizira IPV6, ndikupangitsa kuti ikhale yoyenera kuwunikira ndi kusanthula magalimoto mu IPV6 network.
~Chitetezo cholimbikitsidwa: IPFIX imaphatikizapo malo otetezera monga chitetezo chosungira (TLS) kusinthidwa (TLS) kusinthidwa ndi umphumphu wa Maumenzene kuti muteteze chinsinsi ndi kukhulupirika kwa data yoyenda.
Iphix imathandizidwa kwambiri ndi zida zingapo za ma netrating zida za netrit, ndikupangitsa kuti ikhale yosalongosoka komanso yosankhika bwino kwambiri komanso yokhazikitsidwa kwambiri poyang'anira ma netiweki.
Ndiye, pali kusiyana kotani pakati pa nefflow ndi iPfix?
Yankho losavuta ndi loti netflow ndi protocol protocol yoyambirira ya 1996 ndi iPfix ndi mthupi lake lovomerezedwa m'bale.
Njira zonse ziwiri zimakwaniritsa cholinga chomwecho: ogwiritsa ntchito matratcher atchera ndi oyang'anira kuti atole ndi kusanthula ma netiweki a IP. Cisco adapanga netflow kuti zisinthidwe zake ndi ma robirates ake zitha kulowetsa chidziwitso ichi. Popeza ulamuliro wa Cisco Grar, Netflow mwachangu adayamba kukhala muyezo wa De-Fatdo Standard Kusanthula kwa magalimoto pa intaneti. Komabe, opikisana nawo akampani omwe adazindikira kuti pogwiritsa ntchito protocol yoyang'anira yomwe adawonera sanali lingaliro labwino ndipo chifukwa chake
IPFIX imatengera mtundu wa Netflow Pakadali pano, ma protocol awiriwo ndi ofanana ndipo ngakhale kuti netflow ikadali yowonjezera kwambiri (ngakhale si zonse) ndizogwirizana ndi muyezo wa iPfix.
Nayi tebulo mwachidule kusiyana pakati pa Netflow ndi IPFIX:
| Palaleni | Nettflow | IPfix |
|---|---|---|
| Chiyambi | Tekinoloje yodziwika bwino yopangidwa ndi Cisco | Protecal-Startocol yochokera ku Netflow mtundu 9 |
| Kupilira | Ukadaulo wapadera wa Cisco | Tsegulani odziwika ndi Ietf mu RFC 7011 |
| Kusinthasintha | Matembenuzidwe osinthika okhala ndi zina | Kusinthasintha kwakukulu ndi kuphatikizika kwa ogulitsa |
| Mtundu wa data | Mapaketi okhazikika | Njira yosinthira ma tepi ojambula |
| Chithandizo cha template | Osathandizidwa | Ma terlates amphamvu osinthika |
| Kuthandizira kwa Ogulitsa | Makanema a Cisco | Broturfice kudutsa ogulitsa ma rading |
| Kuthetsa | Kuchepa Kwamisonkhano | Kuphatikizidwa kwa minda yamachitidwe ndi magwiridwe antchito |
| Protocol Kusiyana | Kusiyanasiyana kwa Cisco | Kuthandizira kwa IPV6, Zowonjezera Zojambula |
| Chitetezo | Chitetezo chochepa | Chitetezo cha Kuyendetsa (TLS) Kusankhidwa, Umphumphu wa Mauthenga |
Kuwunika kwa netiwekindiye zosonkhanitsa, kusanthula, ndi kuwunikira magalimoto oyenda pa intaneti kapena gawo la network. Zolinga zimatha kusiyanasiyana kuchokera pamavuto okhudzana ndi mavuto kuti akonzekere m'tsogolo. Kuwunikira koyenda ndi pickets kuthekera kumakhala kothandiza pakuzindikiritsa chitetezo komanso kufikitsa.
Kuyang'anira zoyenda kumaperekanso magulu a ma network ndi lingaliro labwino la ma network chikugwira ntchito, kugwiritsa ntchito mabotolo, mabotolo omwe angakhale owopseza, komanso ochulukirapo. Pali miyezo yosiyanasiyana yosiyanasiyana ndi mafomu ambiri omwe amagwiritsidwa ntchito powunikira ma netiweki, kuphatikiza nefflow, sflow, ndi ma protocol from extracy kutumiza kunja (iffix). Iliyonse imagwira ntchito mosiyana pang'ono, koma zonse ndizosiyana ndi port micket ndi kuyang'ana papa paketi posonyeza kuti sagwira zomwe zili padoko lililonse kapena kusintha. Komabe, kuwunika poyenda kumapereka chidziwitso chochulukirapo kuposa snomp, chomwe nthawi zambiri chimakhala ndi ziwerengero zokulirapo ngati paketi yonse ndi bandwidth.
Zida zoyenda pa intaneti poyerekeza
| Kaonekedwe | Netflow v5 | Netflow v9 | sflow | IPfix |
| Lotseguka kapena wolowerera | Proverietary | Proverietary | Tsegula | Tsegula |
| Sampled kapena Kuyenda Kutengera | Makamaka ndikuyenda; Makina a Sampled alipo | Makamaka ndikuyenda; Makina a Sampled alipo | Msamalidwa | Makamaka ndikuyenda; Makina a Sampled alipo |
| Zambiri zomwe zidagwidwa | Metadata ndi zowerengera, kuphatikiza ma ntchentche osinthidwa, zowerengera zowoneka bwino ndi zotero | Metadata ndi zowerengera, kuphatikiza ma ntchentche osinthidwa, zowerengera zowoneka bwino ndi zotero | Malizitsani mapaketi a packet, ndalama zochepa packet | Metadata ndi zowerengera, kuphatikiza ma ntchentche osinthidwa, zowerengera zowoneka bwino ndi zotero |
| Ingress / egress kuwunikira | Ingress kokha | Ingress ndi zoyipa | Ingress ndi zoyipa | Ingress ndi zoyipa |
| IPV6 / VLAN / MPL | No | Inde | Inde | Inde |
Post Nthawi: Mar-18-2024
