Mawu Oyamba
Network Traffic Collection and Analysis ndiyo njira yabwino kwambiri yopezera zizindikiro zoyambira za ogwiritsa ntchito pa netiweki ndi magawo. Ndi kuwongolera kosalekeza kwa data center Q ntchito ndi kukonza, kusonkhanitsa ndi kusanthula magalimoto pamaneti kwakhala gawo lofunikira kwambiri pakukhazikitsa deta. Kuchokera pamagwiritsidwe apano amakampani, kusonkhanitsa magalimoto pamaneti kumazindikirika kwambiri ndi zida zapaintaneti zomwe zimathandizira pagalasi lamagalimoto. Kutolera magalimoto kuyenera kukhazikitsa njira yolumikizirana, yololera komanso yogwira ntchito yosonkhanitsira magalimoto, kusonkhanitsa magalimoto koteroko kungathandize kukhathamiritsa ma network ndi mabizinesi omwe amawonetsa magwiridwe antchito ndikuchepetsa mwayi wolephera.
Maukonde osonkhanitsira magalimoto amatha kuwonedwa ngati netiweki yodziyimira yokha yopangidwa ndi zida zosonkhanitsira magalimoto ndikuyikidwa molingana ndi netiweki yopanga. Imasonkhanitsa kuchuluka kwazithunzi za chipangizo chilichonse cha netiweki ndikuphatikiza kuchuluka kwazithunzi molingana ndi madera ndi zomangamanga. Imagwiritsa ntchito alamu yosinthira magalimoto pazida zopezera magalimoto kuti izindikire liwiro la mzere wonse wa data pa magawo 2-4 a kusefa kokhazikika, kuchotsa mapaketi obwereza, mapaketi odulira ndi ntchito zina zapamwamba, kenako ndikutumiza zomwezo ku traffic iliyonse. kusanthula dongosolo. Magalimoto osonkhanitsira maukonde amatha kutumiza deta yeniyeni ku chipangizo chilichonse malinga ndi zofunikira za dongosolo lililonse, ndikuthana ndi vuto lomwe data yagalasi yachikhalidwe silingasefedwe ndikutumizidwa, yomwe imadya magwiridwe antchito a masiwichi apaintaneti. Nthawi yomweyo, kusefa kwa magalimoto ndi injini yosinthira magalimoto osonkhanitsira magalimoto amazindikira kusefa ndi kutumiza kwa data ndikuchedwa pang'ono komanso kuthamanga kwambiri, kumatsimikizira mtundu wa data yomwe imasonkhanitsidwa ndi netiweki yosonkhanitsira magalimoto, ndipo imapereka maziko abwino a data. zida zowunikira magalimoto.
Pofuna kuchepetsa kukhudzidwa kwa ulalo woyambirira, kope lamayendedwe oyambilira nthawi zambiri limapezeka pogawa mitengo, SPAN kapena TAP.
Passive Network Tap (Optical Splitter)
Njira yogwiritsira ntchito kupatukana kopepuka kuti mupeze kopi yamagalimoto imafuna kuthandizidwa ndi chipangizo chophatikizira chopepuka. Chowotcha chowala ndi chipangizo chopanda kuwala chomwe chimatha kugawanso mphamvu yamphamvu ya chizindikiro cha kuwala molingana ndi gawo lofunikira. The splitter imatha kugawa kuwala kuchokera ku 1 mpaka 2,1 mpaka 4 ndi 1 kupita kumayendedwe angapo. Pofuna kuchepetsa zotsatira pa ulalo wapachiyambi, malo opangira deta nthawi zambiri amatenga chiŵerengero chogawanika cha 80:20, 70:30, chomwe 70,80 gawo la chizindikiro cha kuwala chimatumizidwa ku chiyanjano choyambirira. Pakadali pano, optical splitters amagwiritsidwa ntchito kwambiri pakuwunika magwiridwe antchito a netiweki (NPM/APM), kachitidwe kakawuniwuni, kusanthula kwamakhalidwe a ogwiritsa ntchito, kuzindikira kwapaintaneti ndi zochitika zina.
Ubwino:
1. Kudalirika kwakukulu, chipangizo chosawoneka bwino;
2. Sakhala pa doko lophimba, zipangizo palokha, wotsatira akhoza kukhala wabwino kukula;
3. Palibe chifukwa chosinthira masinthidwe osinthira, osakhudzidwa ndi zida zina;
4. Kutolereratu kwa magalimoto, osasefera paketi yosinthira, kuphatikiza mapaketi olakwika, ndi zina.
Zoyipa:
1. Kufunika kophweka kwa netiweki cutover, pulagi yam'mbuyo yolumikizira CHIKWANGWANI ndikuyimba ku chowotcha chowoneka bwino, kumachepetsa mphamvu yamaso ya maulalo ena amsana.
SPAN(Port Mirror)
SPAN ndi gawo lomwe limabwera ndi chosinthira chokha, chifukwa chake chimangofunika kukhazikitsidwa pa switch. Komabe, ntchitoyi idzakhudza momwe chosinthiracho chimagwirira ntchito ndikupangitsa kutayika kwa paketi data ikadzaza.
Ubwino:
1. Sikoyenera kuwonjezera zida zowonjezera, sinthani chosinthira kuti muwonjezere doko lofananira lofananirako
Zoyipa:
1. Khalani pa switch port
2. Zosintha ziyenera kukonzedwa, zomwe zimaphatikizapo kugwirizanitsa pamodzi ndi opanga chipani chachitatu, kuonjezera chiopsezo cha kulephera kwa intaneti.
3. Kubwereza kwa magalimoto a galasi kumakhala ndi zotsatira pa doko ndi kusintha kwa ntchito.
Active Network TAP (TAP Aggregator)
Network TAP ndi chipangizo chakunja chapaintaneti chomwe chimathandizira kuyang'ana pa doko ndikupanga kope la magalimoto kuti ligwiritsidwe ntchito ndi zida zosiyanasiyana zowunikira. Zidazi zimayambitsidwa pamalo ochezera pa intaneti zomwe ziyenera kuwonedwa, ndipo zimakopera mapaketi a IP a data ndikuzitumiza ku chida chowunikira maukonde. Kusankhidwa kwa malo olowera chipangizo cha Network TAP kumadalira kuyang'ana kwa magalimoto apamsewu -zifukwa zosonkhanitsira deta, kuyang'anira chizolowezi cha kusanthula ndi kuchedwa, kuzindikira kolowera, ndi zina zotero. Zida za Network TAP zimatha kusonkhanitsa ndikuwonetsa mitsinje ya deta pa 1G mlingo mpaka 100G.
Zidazi zimapeza magalimoto popanda chipangizo cha TAP cha netiweki chomwe chikusintha kuyenda kwa paketi mwanjira iliyonse, mosasamala kanthu za kuchuluka kwa magalimoto. Izi zikutanthauza kuti kuchuluka kwa magalimoto pamaneti sikungoyang'aniridwa ndi kuyang'anira doko, zomwe ndizofunikira kuti musunge kukhulupirika kwa deta mukamayendetsa ku zida zachitetezo ndi kusanthula.
Imawonetsetsa kuti zida zapaintaneti zotumphukira zimayang'anira makope amgalimoto kuti zida za TAP za netiweki zikhale ngati owonera. Mwa kudyetsa kopi ya data yanu pazida zilizonse / zonse zolumikizidwa, mumatha kuwoneka bwino pamaneti. Kukachitika kuti chipangizo cha TAP cha intaneti kapena chipangizo chowunikira chikulephera, mukudziwa kuti magalimoto sangakhudzidwe, kuonetsetsa kuti makina ogwiritsira ntchito amakhala otetezeka komanso opezeka.
Nthawi yomweyo, imakhala chandamale cha zida zonse za network TAP. Kufikira pamapaketi kutha kuperekedwa nthawi zonse popanda kusokoneza kuchuluka kwa magalimoto pamanetiweki, ndipo mayankho owoneka bwinowa amathanso kuthana ndi milandu yapamwamba kwambiri. Zofunikira pakuwunika kwa zida kuyambira m'badwo wotsatira zowotcha moto mpaka chitetezo cha kutayikira kwa data, kuyang'anira magwiridwe antchito, SIEM, digito forensics, IPS, IDS ndi zina zambiri, kukakamiza zida za TAP za network kuti zisinthe.
Kuphatikiza pa kupereka kope lathunthu la magalimoto ndi kusunga kupezeka, zipangizo za TAP zingapereke zotsatirazi.
1. Zosefera Zosefera Kuti Mulimbitse Magwiridwe Antchito Owunika Ma Network
Chifukwa chakuti chipangizo cha Network TAP chikhoza kupanga 100% kopi ya paketi nthawi ina sizikutanthauza kuti chida chilichonse chowunikira ndi chitetezo chiyenera kuwona chinthu chonsecho. Kusakaza magalimoto ku zida zonse zowunikira ndi chitetezo pamaneti munthawi yeniyeni kumangopangitsa kuti pakhale kuchulukirachulukira, motero kuvulaza magwiridwe antchito ndi maukonde panjira.
Kuyika chipangizo choyenera cha Network TAP kungathandize kuthandizira mapaketi osefa pamene akutumizidwa ku chida chowunikira, kugawa deta yoyenera ku chida choyenera. Zitsanzo za zida zoterezi zikuphatikizapo Intrusion Detection systems (IDS), Data Loss Prevention (DLP), Security information and event management (SIEM), forensic analysis, ndi zina zambiri.
2. Malumikizidwe a Aggregate for Networking Moyenera
Pamene zofunikira za Network Monitoring and Security zikuchulukirachulukira, akatswiri opanga maukonde ayenera kupeza njira zogwiritsira ntchito ndalama zomwe zilipo kale za IT kuti akwaniritse ntchito zambiri. Koma nthawi ina, simungapitilize kuwonjezera zida zatsopano pamndandanda ndikuwonjezera zovuta za netiweki yanu. Ndikofunikira kukulitsa kugwiritsa ntchito zida zowunikira komanso chitetezo.
Zipangizo za Network TAP zitha kuthandiza pophatikiza kuchuluka kwa magalimoto pamanetiweki, kum'mawa ndi kumadzulo, kuti apereke mapaketi kuzida zolumikizidwa kudzera padoko limodzi. Kuyika zida zowonera motere kumachepetsa kuchuluka kwa zida zowunikira zomwe zimafunikira. Pamene magalimoto a East-West akuchulukirachulukira m'malo opangira ma data komanso pakati pa malo opangira ma data, kufunikira kwa zida za TAP za netiweki ndikofunikira kuti zisunge mawonekedwe amayendedwe amtundu uliwonse kudutsa ma data ambiri.
Nkhani yofananira yomwe mungasangalale nayo, chonde pitani apa:Momwe mungajambulire Network Traffic? Network Tap vs Port Mirror
Nthawi yotumiza: Oct-24-2024
