Musiyano mukuru uripo pakati pekutora mapaketi uchishandisa Network TAP uye SPAN ports.
Kuona Magirazi ePort(inozivikanwawo seSPAN)
Tap yeNetiweki(inozivikanwawo seReplication Tap, Aggregation Tap, Active Tap, Copper Tap, Ethernet Tap, nezvimwewo)TAP (Nzvimbo Yekupinda Yechiteshi)mudziyo wehardware usingashande zvachose, unogona kubata traffic panetwork usingashande. Unoshandiswa zvakanyanya kutarisa traffic iri pakati penzvimbo mbiri munetwork. Kana network iri pakati penzvimbo mbiri idzi iine waya chaiyo, network TAP ingave ndiyo nzira yakanakisa yekubata traffic.
Usati watsanangura mutsauko uripo pakati pemhinduro mbiri idzi (Port Mirror neNetwork Tap), zvakakosha kuti unzwisise mashandiro anoita Ethernet. Pa 100Mbit zvichikwira, mahost anowanzo taura mu duplex yakazara, zvichireva kuti host imwe chete inogona kutumira (Tx) nekugamuchira (Rx) panguva imwe chete. Izvi zvinoreva kuti pa 100 Mbit cable yakabatana nehost imwe chete, huwandu hwese hwe network traffic iyo host imwe chete inogona kutumira/kugamuchira (Tx/Rx)) i2 × 100 Mbit = 200 Mbit.
Kuenzanisa kwePort (Port mirroring) i active packet replication, zvinoreva kuti network device ndiyo ine basa rekukopa packet kuenda kumirrored port.
Kubata Traffic: TAP vs SPAN
Pakutarisa traffic ye network, kana usingade kushandisa rutsigiro zvakananga apo mushandisi ari kugadzirisa kutengeserana, une sarudzo mbiri huru. Munyaya inotevera, tichapa pfupiso ye TAP (Test Access Point) uye SPAN (Switch Port Analyzer). Kuti uwane ongororo yakadzama, nyanzvi yekuongorora mapaketi Timo'Neill ane zvinyorwa zvakati wandei pa lovemytool.com zvinotsanangura zvakadzama, asi pano, tichatora nzira yakajairika.
SPAN
Kutarisa ma "port mirroring" inzira yekutarisa traffic ye network nekutumira kopi ye "packet" yega yega inopinda uye/kana inobuda kubva kune imwe kana kupfuura ports (kana VLans) ye switch kuenda kune imwe port yakabatana ne network traffic analyzer. Ma "spans" anowanzo shandiswa mumasystem ari nyore kutarisa masayiti akawanda panguva imwe chete. Huwandu chaihwo hwe network transmissions hwainokwanisa kutarisa hunoenderana nekuti SPAN yakaiswa kupi zvichienzaniswa ne data center equipment. Ungangowana zvauri kutsvaga, asi zviri nyore kuzviwana uine data rakawandisa. Semuenzaniso, zvinokwanisika kuwana makopi akawanda edata rimwe chete muVLAN yese. Izvi zvinoita kuti LAN troubleshooting ive yakaoma, uye inokanganisawo kumhanya kwe switch cpus kana kukanganisa Ethernet kuburikidza ne placement detection. Chaizvoizvo, ma "spans" akawanda, mukana wekurasikirwa nemapaketi wakanyanya. Zvichienzaniswa nema "taps", ma "spans" anogona kutarisirwa ari kure, zvinoreva kuti nguva shoma inopedzerwa ichichinja ma configurations, asi mainjiniya e network achiri kudiwa.
Maports eSPAN haasi tekinoroji isingaiti basa, sezvinotaurwa nevamwe, nekuti anogona kuva nemimwe migumisiro inoyerwa pa network traffic, kusanganisira:
- Nguva yekuchinja kudyidzana kwefuremu
- Kudonhedza mapaketi nekuda kwekutsvaga kwakawandisa
- Mapaketi akaora anodonhedzwa pasina chiziviso, zvichikanganisa ongororo
Saka, maSPAN ports akakodzera zvikuru mumamiriro ezvinhu apo kudonhedza mapaketi hakukanganisi ongororo, kana kuti mutengo unotariswa.
TAPA
Kusiyana neizvi, matepi anofanira kushandisa mari pakutenga hardware pakutanga, asi haadi zvakawanda zvekugadzirisa. Zvechokwadi, sezvo asingashande, anogona kubatanidzwa uye kubviswa panetwork pasina kuikanganisa. Matepi zvishandiso zvehardware zvinopa nzira yekuwana data rinoyerera kuburikidza nenetwork yekombuta uye zvinowanzo shandiswa pakuchengetedza network uye kuongorora mashandiro. Traffic inotariswa inonzi "pass-through" traffic uye port inoshandiswa pakutarisa inonzi "monitoring port". Kuti unyatsoongorora network zvakajeka, matepi anogona kuiswa pakati pema routers nema switch.
Nekuti TAP haikanganisi mapaketi, inogona kuonekwa senzira isina kupindirana yekuona traffic yenetiweki.
Kune mhando nhatu dzemhinduro dzeTAP:
- Chipatsanura chenetiweki (1: 1)
- Aggregate TAP (yakawanda: 1)
- Kudzokorodza TAP (1: yakawanda)
TAP inotevedzera traffic kuenda kune imwe chete passive monitoring tool, kana kune high-density network packet relay device, uye inoshandisa maturusi akawanda (anowanzova akawanda) ekuyedza QOS, maturusi ekutarisa network, uye maturusi enetwork sniffer akadai se wireshark.
Pamusoro pezvo, mhando dzeTAP dzinosiyana zvichienderana nerudzi rwetambo, kusanganisira fiber TAP ne gigabit copper TAP, dzese dzichishanda nenzira imwechete nekuburitsa chikamu chechiratidzo kune network traffic analyzer, nepo modhi huru ichiramba ichitumira pasina kukanganiswa. Kune fiber TAP, inofanira kupatsanura beam nepakati, ukuwo iri mu copper cable system, inofanira kutevedzera chiratidzo chemagetsi.
Kuenzanisa TAP neSPAN
Chekutanga, SPAN port haina kukodzera 1G link yakazara-duplex, uye kunyangwe iri pasi pesimba rayo guru, inokurumidza kudonhedza mapaketi nekuti yakawandisa, kana kungoti switch inoisa pamberi mazuva e port-to-port pane data re SPAN port. Kusiyana nematap e network, SPAN ports inosefa zvikanganiso zve physical layer, zvichiita kuti mamwe marudzi ekuongorora ave akaoma, uye sezvataona, nguva dzisina kunaka dzekuwedzera uye ma frames akachinjwa zvinogona kukonzera mamwe matambudziko. Kune rumwe rutivi, TAP inogona kushandisa 1G link yakazara-duplex.
TAP inogonawo kutora mapaketi zvakakwana uye kuongorora mapaketi zvakadzama kuti ione kana paine maprotocol, kutyorwa kwemitemo, kupindira, nezvimwewo. Saka, data reTAP rinogona kushandiswa seuchapupu kudare, nepo data reSPAN port risingakwanise.
Kuchengetedzwa chimwe chinhu chine musiyano pakati penzira mbiri idzi. Maport eSPAN anowanzo gadzirirwa kutaurirana kwenzira imwe chete, asi anogonawo kugamuchira kutaurirana mune dzimwe nguva, zvichikonzera matambudziko akakomba. Kusiyana neizvi, TAP haigone kubatwa uye haina kero yeIP, saka haigone kubiwa.
Maport eSPAN haawanzo pfuura maVLAN tag, izvo zvinogona kuita kuti zviome kuona kukundikana kweVLAN, asi matape haagone kuona network yese yeVLAN panguva imwe chete. Kana matape akaunganidzwa akasashandiswa, TAP haizopa trace yakafanana kune ese machannel, asi kungwarira kunofanirwa kuitwa nekuona kuwanda kwehuwandu hwema "overage". Kune ma "aggregate taps", akadai seBooster for Profitepap, anobatanidza maports masere e10/100/1G mu "output" ye1G-10G.
Booster inokwanisa kuisa mapaketi nekuisa maVLAN tags. Nenzira iyi, ruzivo rwenzvimbo yekubva kwepaketi yega yega ruchatumirwa kune analyzer.
Maport eSPAN achiri chishandiso chichashandiswa nevatariri venetwork, asi kana kukurumidza uye kugona kuwana data rese renetwork kwakakosha, TAP ndiyo sarudzo iri nani. Pakusarudza nzira yekutora, maport eSPAN akakodzera network dzisina kushandiswa zvakanyanya, sezvo mapaketi akarasika asingakanganisi ongororo kana kuti haadi kana paine dambudziko remutengo. Zvisinei, pamanetwork ane traffic yakawanda, kugona kweTAP, kuchengetedzeka, uye kuvimbika kuchapa kuoneka kwakazara kwetraffic pane network yako pasina kutya kurasikirwa nemapaketi kana kusefa zvikanganiso zve physical layer.
○ Zvinoonekwa zvizere
○ Dzokorora traffic yese (mapaketi ese ehukuru hwese nemarudzi ese)
○ Hazvichinji, hazvipindiri (hazvichinji data)
○ Munhevedzano, hapana ma switch ports anoshandiswa kutevedzera traffic yakazara-duplex muma harnesses. Kugadzirisa kuri nyore (plug and play)
○ Hazvina njodzi yekubatwa nematsotsi (mudziyo wekutarisa usingaonekwe, wakaparadzaniswa ne network, hapana kero ye IP/MAC)
○ Inokwenenzverwa
○ Yakakodzera chero mamiriro ezvinhu
○ Kuonekwa zvishoma
○ Kusakopa traffic yese (kusiya saizi dzakasiyana uye mhando dzemapaketi)
○ Kusaita zvinhu (kuchinja nguva yepaketi, kuwedzera nguva yekunonoka)
○ Shandisa switch port (SPAN port yega yega inoshandisa switch port)
○ Kutadza kubata kutaurirana kwakazara ne duplex (mapaketi anodonhedzwa kana akawandisa, anogonawo kukanganisa mashandiro e switch yekutanga)
○ Mainjiniya anofanirwa kugadzirisa
○ Hazvina kuchengetedzeka (Sisitimu yekutarisa chikamu chenetwork, matambudziko ekuchengetedza anogona kuitika)
○ Hazvigoneke kukura
○ Zvinogoneka chete kana paine mamwe mamiriro ezvinhu
Ungave uchifarira chinyorwa chine chekuita nacho: Ungatora sei vanhu vari paNetwork Tap vs Port Mirror?
Nguva yekutumira: Chikumi-09-2025
