Yakadzika Packet Kuongorora (DPI)Icho chitengero chinoshandiswa mune network packet broker (NPBS) kuongorora uye kuongorora zvirimo mumaketi network pane iyo granular level. Izvo zvinosanganisira kuongorora iyo payload, misoro, uye imwe ruzivo rweprotocol-chaiyo mukati maPaketi kuti uwane ruzivo rwakadzama kuita network traffic.
DPI inoenda kuongororwa zviri nyore uye inopa kunzwisisa kwakadzama kwedata kuyerera kuburikidza network. Inotendera kuongororwa kwakadzama kweiyo fomu yekunyora denderedzwa protocol, yakadai seHTTP, FTP, SMTP, VOIP, kana vhidhiyo kuisirwa protocols. Nekuongorora zvirimo chaizvo mukati memapaketi, DPI inogona kuona uye kuona zvimisikidzo, protocol, kana kunyange chaiyo data maitiro.
Pamusoro pekuongororwa kwehutano hweHierarchical kero, dzichienda kero, nzvimbo dzezviratidzo, uye protocol minyiridzo, DPI inowedzera kuongororwa kwekushandisa kuti uone zvikumbiro zvakasiyana siyana nezviri mukati. Kana iyo 1P Packet, TCP data kuyerera kuburikidza neBandwidth Management Symboliti
DPP inoshanda sei?
Tsvina yemoto kazhinji inoshaya simba rekugadzirisa kuti uite zvakakwana-nguva yekutarisa pamavhoriyamu hombe yemigwagwa. Semunhu tekinoroji inofambira mberi, DPI inogona kushandiswa kuita zvinhu zvakaomarara kutarisa kuti utarise misoro uye data. Kazhinji, firewalls ine intrusion yekuona system inowanzo shandisa DPI. Munyika iyo ruzivo rwedhijitari rwakatarisana, chidimbu chose chejira redhijitari chinounzwa pamusoro peInternet mumapaketi madiki. Izvi zvinosanganisira email, mameseji anotumirwa kuburikidza neapp, mawebhusaiti akashanyirwa, kutaura kwevhidhiyo, uye zvimwe. Pamusoro peiyo chaiyo data, aya mapaketi anosanganisira metadata anozivisa nzvimbo yemotokari, zvemukati, kuenda, uye rumwe ruzivo rwakakosha. NePaketi Kuchengetedzeka Kanzuru, Dhata inogona kuenderera mberi inotariswa uye yakakwanisa kuona kuti inotumirwa kunzvimbo chaiyo. Asi kuti uve nechokwadi chekuchengetedzeka kwenyama, tsika yechinyakare yekucheka iri kure nekukwana. Dzimwe dzenzira huru dzekuongorora kwepakeji dzakadzika muNetwork Management yakanyorwa pazasi:
Kufananidza Mode / Siginecha
Packet imwe neimwe inotariswa mutambo kupokana nedatabhesi yeiyo inozivikanwa network kurwiswa neiyo firewall neIntrusion Scution System (IDs) Kugona. Ids inotsvaga yezvinyorwa zvinozivikanwa zvakaringana uye zvinoremadza traffic kana mapatani akaipa anowanikwa. Iko kukanganisa kweiyo siginecha yekufananidza mutemo ndeyekuti inongoshanda kumasaini ayo anovandudzwa kazhinji. Uye zvakare, iyi tekinoroji inogona kungodzivirira kubva pakutyisidzirwa dzinozivikanwa kana kurwiswa.
Protocol kusarudzika
Sezvo iyo protocol yakasarudzika nzira isingabvumire data rese risingaenderane nedatabhesi Panzvimbo iyoyo, inotora chirevo chekuramba kurambwa. Nenyaya dzeProtocol, Firewalls Sarudza kuti ndeipi traffic inofanirwa kubvumidzwa uye kuchengetedza network kubva kusingazivikanwe kutyisidzira.
Intrusion Kudzivirira System (IPS)
IPS Solutions inogona kuvhara kutapurirana kwemapaketi anokuvadza kubva pane zvavakaita, nekudaro kumisa kufungidzirwa kurwiswa munguva chaiyo. Izvi zvinoreva kuti kana packet ichimiririra njodzi inozivikanwa yekuchengetedza, Ips ichapa mukana wekuvhara network network yakavakirwa pane yakatsanangurwa seti yemitemo. Imwe nzira yekushomeka kweIPS ndiko kudiwa kwekugara uchivandudza cyber kutyisidzira database ine ruzivo nezvekutyisidzira kutsva, uye mukana wezvinhu zvenhema. Asi njodzi iyi inogona kuderedzwa nekugadzira maitiro ekuchengetedza uye tsika yakakodzera baseline yemifambiro yemijista, uye nguva nenguva yekuongorora yambiro uye yakataurwa zviitiko kuti zviwedzere kuongorora uye nekuchenjerera.
1- Iyo DPI (Yakadzika Packet Kuongorora) mune network packet broker
Iyo "yakadzika" idanho uye yakajairika packet yekuongorora, "Ongororo yeRiercol, inowedzera kuongororwa kwechiitiko,
1) Kuongorora kwekushandisa - Network traffic kuongororwa kuongororwa, kuongorora kwekuita, uye kuyerera kuongororwa
2) Ongororo yekushandisa - Mushandisi weboka remuviri, kuongororwa kwekuongorora, kuongorora kwetrental, maitiro ekuongorora, nezvimwe.
3) Network element kuongororwa - kuongororwa zvichibva pane zvematunhu hunhu (guta, dunhu, mugwagwa, nezvimwewo chiteshi
4) Traffic Control - P2P Speed kudzikisira, qos vimbiso, bandwidth vimbiso, network richa optimization, nezvimwe.
5) Chengetedzo Chivimbo - DDOS Kurwiswa, Data Broadcast Dutu, Kudzivirira Kwevirwo Hwakaipa Kurwiswa, nezvimwe.
2- General Kugadziriswa kweNetwork Zvikumbiro
Nhasi pane zvisingaverengeki zvinoshandiswa paInternet, asi izvo zvakajairika zvekushandisa zvinogona kuve zvinopera.
Sekuziva kwangu, kambani yakanakisa yeApp yeapp is Huawei, iyo inoti kuziva zviuru zvina. Kuongorora kweProtocol ndiyo yekutanga manyoro emakambani mazhinji emadziro (Huawei, ZTE, kutsigira kuzadzikiswa kwemamwe ma modules, kucherechedzwa kwakakwana kwekuita uye kuvimbika kwezvigadzirwa. Mukuenzanisa Malware Kuzivikanwa Kubva pane network traffic maitiro, sezvandiri kuita izvozvi, chiratidzo chakarurama uye chakawandisa chekuzivisa zvakanyanyisa kukosha. Kunze kweiyo network traffic yezvinhu zvakajairika kubva kuComputer's Export traffic, iyo yakasara traffic ichaverengera chikamu chidiki, icho chiri nani kune malware qualissis uye alarm.
Zvichibva pane zvakaitika kwandiri, zviripo zvinoshandiswa zvinoshandiswa zvinoshandiswa zvinogadziriswa zvinoenderana nemabasa avo:
PS: Maererano nekunzwisisa kwega kwekusarudzika kwekushandisa, iwe une chero mazano akanaka anogamuchirwa kuti usiye meseji yemharidzo
1). E-mail
2). Vhidhiyo
3). Mitambo
4). Hofisi OA Kirasi
5). Software yekuvandudza
6). Mari (bhangi, alipay)
7). Masheya
8). Kutaurirana Kwemagariro (Im Software)
9). Brow browing (pamwe zvirinani kuzivikanwa neURLs)
10). Dhawunirodha Zvishandiso (Web disk, P2P Download, BT Yakabatana)
Zvadaro, sei DPI (Yakadzika Packet Ongororo) inoshanda muNPB:
1). Packet kubatwa: Iyo NPB inobata network traffic kubva kune dzakasiyana siyana masosi, senge switches, ma routers, kana matipi. Inogashira mapaketi inoyerera kuburikidza network.
2). Packet parsing: Iwo mapaketi akabatwa anodzvanywa neNPB yekubvisa akasiyana siyana protocol zvikamu uye yakabatana data. Maitiro aya ekurongedza anobatsira kuona zvikamu zvakasiyana mukati memapaketi, akadai saEthernet Heals, IP Misoro, eg, TCP kana UDP), uye UDP) protocol.
3). Kuongororwa kuongororwa: neDPI, iyo NPB inopfuura pamusoro pekuongororwa uye inotarisa pane iyo payload, kusanganisira iyo chaiyo data mukati memapaketi. Iyo inoongorora iyo yekubhadhara yemukati mune-yakadzika, zvisinei neiyo application kana protocol yakashandiswa, kubvisa ruzivo rwakakodzera.
4). Protocol chitupa: Dpi anogonesa iyo NPB yekuziva iyo chaiyo protocol uye application ichishandiswa mukati mereti traffic. Inogona kuona uye kuverenga protocols seHTTP, FTP, SMTP, DNS, VOIP, kana vhidhiyo kuisirwa protocol.
5). Zvemukati Kuongorora: Dpi inobvumira iyo npb kuti iongorore zvirimo mumaketi manhamba ezvinyorwa, masaini, kana mazwi akakosha. Izvi zvinogonesa kuwanikwa kwekutyisidzirwa network, sekuti malware, mavairasi, anopinda mhedzisiro, kana zviitiko zvinofungidzirwa. DPI inogona zvakare kushandiswa kune zvemukati kusefa, inosimbisa mitezo yemietwork, kana kuziva kutevedzera data kutevedza.
6). Metadata Exction: Munguva yeDPI, iyo NPB inobvisa yakakodzera metadata kubva kumapaketi. Izvi zvinogona kusanganisira ruzivo rwakadai seinobva uye kuenda kuIP kero, nhamba dzePort, chikamu cheMidi, transaction data, kana chero humwe hunhu hwakakodzera.
7). Traffic kufambisa kana kusefa. Izvo zvinogona zvakare kuisa mutemo wekuputira kuraswa kana kudzoreredza mapaketi anoenderana nezvinozivikanwa zvemukati kana mapatani.
Kutumira Nguva: Jun-25-2023
