Kuti uongorore traffic yenetwork, zvakakosha kutumira network packet kuNTOP/NPROBE kana Out-of-band Network Security and Monitoring Tools. Pane mhinduro mbiri dzedambudziko iri:
Kuona Magirazi ePort(inozivikanwawo seSPAN)
Kubata Netiweki(inozivikanwawo seReplication Tap, Aggregation Tap, Active Tap, Copper Tap, Ethernet Tap, nezvimwewo)
Usati watsanangura mutsauko uripo pakati pemhinduro mbiri idzi (Port Mirror neNetwork Tap), zvakakosha kuti unzwisise mashandiro anoita Ethernet. Pa 100Mbit zvichikwira, mahost anowanzo taura mu duplex yakazara, zvichireva kuti host imwe chete inogona kutumira (Tx) nekugamuchira (Rx) panguva imwe chete. Izvi zvinoreva kuti pa 100 Mbit cable yakabatana nehost imwe chete, huwandu hwese hwe network traffic iyo host imwe chete inogona kutumira/kugamuchira (Tx/Rx)) i2 × 100 Mbit = 200 Mbit.
Kuenzanisa kwePort (Port mirroring) i active packet replication, zvinoreva kuti network device ndiyo ine basa rekukopa packet kuenda kumirrored port.
Izvi zvinoreva kuti mudziyo unofanirwa kuita basa iri uchishandisa chimwe chinhu (senge CPU), uye nzira dzese dzekufambisa dzichadzokororwa kune imwe port. Sezvambotaurwa, muA full duplex link, izvi zvinoreva kuti
A -> B na B -> A
Huwandu hweA hahuzopfuure kumhanya kwenetwork pasati paitika kurasikirwa kwepaketi. Izvi zvinodaro nekuti hapana nzvimbo yekukopa mapaketi. Zvinoitika kuti kukopa maport mirroring inzira yakanaka sezvo inogona kuitwa nemaswitch akawanda (asi kwete ese), nekuti maswitch mazhinji ane dambudziko rekurasikirwa nemapaketi, kana ukatarisa link ine mutoro unodarika 50%, kana kukopa maports paport inokurumidza (semuenzaniso, kukopa maports e100 Mbit paport ye1 Gbit). Tisingatauri kuti kukopa maports packet kunogona kuda kuchinjana maswitch resources, izvo zvinogona kurodha mudziyo uye kukonzera kuti mashandiro ekuchinjana aderere. Ziva kuti unogona kubatanidza 1 port kune imwe port, kana 1 VLAN kune imwe port, asi kazhinji haugone kukopa maports akawanda ku1. (Saka sezvo packet mirror) isipo.
Network TAP (Nzvimbo Yekupinda Munzvimbo Yekupedzisira)mudziyo wehardware usingashande zvachose, unogona kubata traffic panetwork usingashande. Unoshandiswa zvakanyanya kutarisa traffic iri pakati penzvimbo mbiri munetwork. Kana network iri pakati penzvimbo mbiri idzi iine waya chaiyo, network TAP ingave ndiyo nzira yakanakisa yekubata traffic.
Network TAP ine maports matatu: A port, B port, uye monitor port. Kuti uise pombi pakati pemapoinzi A neB, network cable iri pakati pepoinzi A nepoinzi B inotsiviwa netambo mbiri, imwe ichienda kuTAP's A port, imwe ichienda kuTAP's B port. TAP inopfuura nemota dzese dziri pakati pemapoinzi maviri enetwork, saka dzichiri kubatana. TAP inokopawo traffic kune monitor port yayo, zvichiita kuti mudziyo wekuongorora uteerere.
MaTAP eNetwork anowanzo shandiswa nemidziyo yekutarisa nekuunganidza data yakaita seAPS. MaTAP anogona kushandiswawo mumapurogiramu ekuchengetedza nekuti haavharidzike, haaonekwe panetwork, anogona kubata network dzine duplex uye dzisingagovaniswe, uye anowanzo pfuura nepakati petraffic kunyangwe pombi ikarega kushanda kana kurasikirwa nemagetsi.
Sezvo maNetwork Taps ports asingagamuchire asi achitumira chete, switch yacho haizive kuti ndiani ari kuseri kwemaports. Mugumisiro wacho ndewekuti inotepfenyura mapaketi kumaports ese. Saka, kana ukabatanidza mudziyo wako wekutarisa kuswitch, mudziyo wakadaro uchagamuchira mapaketi ese. Cherechedza kuti nzira iyi inoshanda kana mudziyo wekutarisa usingatumire chero packet kuswitch; zvikasadaro, switch ichafungidzira kuti mapaketi akatapurwa haasi emudziyo wakadaro. Kuti uite izvozvo, unogona kushandisa tambo yenetwork yausina kubatanidza waya dzeTX, kana kushandisa network interface isina IP (uye isina DHCP) isingatumire mapaketi zvachose. Chekupedzisira cherechedza kuti kana uchida kushandisa tap kuti usarasike mapaketi, saka usabatanidza ma directions kana kushandisa switch apo ma directions akatapurwa anononoka (semuenzaniso 100 Mbit) kupfuura merge port (semuenzaniso 1 Gbit).
Saka, Ungabata Sei Vanhu Vari Kufamba NepaNetwork? Network Taps vs Switch Ports Mirror
1- Kugadzirisa kuri nyore: Network Tap > Port Mirror
2- Kupesvedzera Kwekushanda Kwenetiweki: Kubata Netiweki < Chionioni Chechiteshi
3- Kubata, Kukopa, Kuunganidza, Kugona Kutumira: Kubata Network > Port Mirror
4- Kunonoka kwekutumira Traffic: Network Tap < Port Mirror
5- Kugona Kugadzirisa Traffic: Network Tap > Port Mirror
Nguva yekutumira: Kurume-30-2022
