Chiyambi
Kusonkhanitsa ndi Kusanthula Magalimoto pa Network ndiyo njira yothandiza kwambiri yopezera zizindikiro ndi magawo a machitidwe a ogwiritsa ntchito pa netiweki. Ndi kusintha kosalekeza kwa magwiridwe antchito a Q center Q, kusonkhanitsa ndi kusanthula magalimoto pa netiweki kwakhala gawo lofunika kwambiri pa zomangamanga za malo osungira deta. Kuchokera ku ntchito zomwe makampani amagwiritsa ntchito pakadali pano, kusonkhanitsa magalimoto pa netiweki kumachitika makamaka ndi zida za netiweki zothandizira galasi la magalimoto odutsa. Kusonkhanitsa magalimoto kuyenera kukhazikitsa kufalikira kwathunthu, netiweki yosonkhanitsa magalimoto yoyenera komanso yothandiza, kusonkhanitsa magalimoto kotereku kungathandize kukonza zizindikiro za magwiridwe antchito a netiweki ndi bizinesi ndikuchepetsa mwayi wolephera.
Netiweki yosonkhanitsira magalimoto imatha kuonedwa ngati netiweki yodziyimira payokha yopangidwa ndi zida zosonkhanitsira magalimoto ndipo imayikidwa limodzi ndi netiweki yopanga. Imasonkhanitsa kuchuluka kwa magalimoto pa chipangizo chilichonse cha netiweki ndikusonkhanitsa kuchuluka kwa magalimoto pazida malinga ndi madera ndi zomangamanga. Imagwiritsa ntchito alamu yosinthira magalimoto mu zida zopezera magalimoto kuti ikwaniritse liwiro lonse la deta ya zigawo 2-4 zosefera zokhazikika, kuchotsa mapaketi obwerezabwereza, kudula mapaketi ndi ntchito zina zapamwamba, kenako imatumiza deta ku dongosolo lililonse losanthula magalimoto. Netiweki yosonkhanitsa magalimoto imatha kutumiza molondola deta yeniyeni ku chipangizo chilichonse malinga ndi zofunikira za deta ya dongosolo lililonse, ndikuthetsa vuto lakuti deta yachikhalidwe yagalasi singathe kusefedwa ndikutumizidwa, zomwe zimawononga magwiridwe antchito a maswichi a netiweki. Nthawi yomweyo, injini yosefera magalimoto ndi kusinthana kwa netiweki yosonkhanitsa magalimoto imazindikira kusefera ndi kutumiza deta mochedwa komanso mwachangu kwambiri, kuonetsetsa kuti deta yosonkhanitsidwa ndi netiweki yosonkhanitsa magalimoto ili bwino, ndipo imapereka maziko abwino a data pazida zowunikira magalimoto pambuyo pake.
Pofuna kuchepetsa kukhudzidwa kwa ulalo woyambirira, kopi ya magalimoto oyambilira nthawi zambiri imapezeka pogwiritsa ntchito kugawa kwa beam, SPAN kapena TAP.
Kupopera kwa Network Yopanda Mphamvu (Kugawa kwa Kuwala)
Njira yogwiritsira ntchito kugawanitsa kuwala kuti mupeze kopi ya magalimoto imafuna thandizo la chipangizo chogawanitsa kuwala. Chogawanitsa kuwala ndi chipangizo chopanda kuwala chomwe chingathe kugawanso mphamvu ya chizindikiro cha kuwala mogwirizana ndi gawo lofunikira. Chogawanitsa chimatha kugawa kuwala kuchokera pa 1 mpaka 2,1 mpaka 4 ndi 1 kupita ku njira zingapo. Pofuna kuchepetsa kukhudzidwa kwa ulalo woyambirira, malo osungira deta nthawi zambiri amagwiritsa ntchito chiŵerengero chogawanitsa kuwala cha 80:20, 70:30, momwe gawo la 70,80 la chizindikiro cha kuwala limatumizidwa ku ulalo woyambirira. Pakadali pano, zogawanitsa kuwala zimagwiritsidwa ntchito kwambiri mu kusanthula magwiridwe antchito a netiweki (NPM/APM), dongosolo lowunikira, kusanthula khalidwe la ogwiritsa ntchito, kuzindikira kulowerera kwa netiweki ndi zochitika zina.
Ubwino:
1. Chipangizo chodalirika kwambiri, chopanda kuwala;
2. Siligwiritsa ntchito doko losinthira, zida zodziyimira pawokha, zotsatira zake zitha kukhala kukulitsa kwabwino;
3. Palibe chifukwa chosinthira kasinthidwe ka switch, palibe kukhudza zida zina;
4. Kusonkhanitsa magalimoto onse, palibe kusefa mapaketi osinthira, kuphatikiza mapaketi olakwika, ndi zina zotero.
Zoyipa:
1. Kufunika kwa kudula maukonde mosavuta, pulagi ya ulusi wolumikizira msana ndi cholumikizira cholumikizira kuwala, kudzachepetsa mphamvu ya kuwala ya maulalo ena a msana.
SPAN (Galasi Lolowera)
SPAN ndi chinthu chomwe chimabwera ndi switch yokha, kotero imangofunika kukonzedwa pa switch. Komabe, ntchitoyi idzakhudza momwe switch imagwirira ntchito ndikupangitsa kuti paketi itayike deta ikadzaza kwambiri.
Ubwino:
1. Sikofunikira kuwonjezera zida zina, sinthani switch kuti iwonjezere doko lofanana la kubwerezabwereza kwa chithunzi
Zoyipa:
1. Gwiritsani ntchito doko losinthira
2. Ma switch ayenera kukonzedwa, zomwe zimaphatikizapo mgwirizano wogwirizana ndi opanga ena, zomwe zimawonjezera chiopsezo cha kulephera kwa netiweki.
3. Kubwerezabwereza kwa magalimoto pagalasi kumakhudza momwe ma doko ndi ma switch amagwirira ntchito.
TAP Yogwira Ntchito (TAP Aggregator)
Network TAP ndi chipangizo chakunja cha netiweki chomwe chimalola kuwonetsera ma port ndikupanga kopi ya magalimoto kuti agwiritsidwe ntchito ndi zida zosiyanasiyana zowunikira. Zipangizozi zimayikidwa pamalo omwe ali munjira ya netiweki omwe amafunika kuwonedwa, ndipo zimakopera mapaketi a IP a data ndikutumiza ku chida chowunikira netiweki. Kusankha malo olowera pa chipangizo cha Network TAP kumadalira cholinga cha kuchuluka kwa magalimoto pa netiweki - zifukwa zosonkhanitsira deta, kuyang'anira kusanthula ndi kuchedwa, kuzindikira kulowerera, ndi zina zotero. Zipangizo za Network TAP zimatha kusonkhanitsa ndikuwonetsa mitsinje ya data pamlingo wa 1G mpaka 100G.
Zipangizozi zimapeza kuchuluka kwa anthu popanda chipangizo cha netiweki cha TAP kusintha kayendedwe ka paketi mwanjira iliyonse, mosasamala kanthu za kuchuluka kwa anthu omwe ali ndi deta. Izi zikutanthauza kuti kuchuluka kwa anthu omwe ali ndi deta sikumayang'aniridwa ndi kujambulidwa kwa ma port, zomwe ndizofunikira kwambiri kuti deta ikhale yolondola ikatumizidwa ku zida zachitetezo ndi kusanthula.
Zimaonetsetsa kuti zipangizo zolumikizirana ndi netiweki zimayang'anira makope a magalimoto kuti zipangizo za netiweki za TAP zizichita ngati owonera. Mukapereka kopi ya deta yanu ku zipangizo zilizonse zolumikizidwa, mumapeza kuwonekera kwathunthu pamalo a netiweki. Ngati chipangizo cha netiweki cha TAP kapena chipangizo chowunikira chalephera, mukudziwa kuti magalimoto sadzakhudzidwa, ndikuwonetsetsa kuti makina ogwiritsira ntchito amakhala otetezeka komanso opezeka.
Nthawi yomweyo, imakhala chandamale chachikulu cha zida za TAP zapaintaneti. Kupeza mapaketi nthawi zonse kumatha kuperekedwa popanda kusokoneza kuchuluka kwa magalimoto mu netiweki, ndipo njira zowonekera izi zitha kuthana ndi milandu yapamwamba kwambiri. Zofunikira zowunikira zida kuyambira ma firewall a m'badwo wotsatira mpaka kuteteza kutayikira kwa deta, kuwunika magwiridwe antchito a pulogalamu, SIEM, kufufuza kwa digito, IPS, IDS ndi zina zambiri, zimakakamiza zida za TAP zapaintaneti kuti zisinthe.
Kuwonjezera pa kupereka kopi yonse ya kuchuluka kwa magalimoto ndi kusunga kupezeka, zipangizo za TAP zingapereke zotsatirazi.
1. Sefani Mapaketi Kuti Muwonjezere Kuyang'anira Ma Network
Kungoti chipangizo cha Network TAP chingapange kopi ya paketi 100% nthawi ina sizikutanthauza kuti chida chilichonse chowunikira ndi chitetezo chiyenera kuwona zonse. Kutumiza anthu ku zida zonse zowunikira ndi chitetezo cha netiweki nthawi yeniyeni kumangobweretsa kuyitanitsa mopitirira muyeso, zomwe zingawononge magwiridwe antchito a zida ndi netiweki panthawiyo.
Kuyika chipangizo choyenera cha Network TAP kungathandize kusefa mapaketi akamatumizidwa ku chida chowunikira, kugawa deta yoyenera ku chida choyenera. Zitsanzo za zida zotere ndi monga njira zodziwira kulowerera (IDS), Kupewa kutayika kwa deta (DLP), zidziwitso zachitetezo ndi kasamalidwe ka zochitika (SIEM), kusanthula kwa forensic, ndi zina zambiri.
2. Maulalo Ophatikizana a Network Yogwira Mtima
Pamene zofunikira pa Network Monitoring and Security zikuchulukirachulukira, mainjiniya a network ayenera kupeza njira zogwiritsira ntchito ndalama zomwe zilipo za IT kuti akwaniritse ntchito zambiri. Koma nthawi ina, simungathe kupitiriza kuwonjezera zida zatsopano pa stack ndikuwonjezera zovuta za network yanu. Ndikofunikira kugwiritsa ntchito bwino zida zowunikira ndi chitetezo.
Zipangizo za Network TAP zingathandize pophatikiza kuchuluka kwa magalimoto apaintaneti, opita kummawa ndi kumadzulo, kuti apereke mapaketi kuzipangizo zolumikizidwa kudzera pa doko limodzi. Kugwiritsa ntchito zida zowonera mwanjira imeneyi kudzachepetsa kuchuluka kwa zida zowunikira zomwe zimafunikira. Pamene kuchuluka kwa magalimoto a data aku East-West kukupitilira kukula m'malo osungira deta komanso pakati pa malo osungira deta, kufunikira kwa zida za network TAP ndikofunikira kuti zisunge mawonekedwe a mayendedwe onse azinthu pazambiri zambiri.
Nkhani yofanana nayo ingakhale yosangalatsa, chonde pitani apa:Kodi Mungajambule Bwanji Magulu a Anthu pa Network? Network Tap vs Port Mirror
Nthawi yotumizira: Okutobala-24-2024
