Chishandiso chinonyanya kujairika chekutarisa network uye kugadzirisa dambudziko nhasi kuchinjisa chigaro chekuongorora (span), zvakare inozivikanwa sechiteshi chegirazi. Inotendera kuti titarise network traffic mune bypass kunze kweBand mode pasina kubatanidza network yemigwagwa, uye inosanganisira snififer, kana mamwe marudzi ekuongorora network.
Zvimwe zvinoshandiswa ndezvekuti:
• Dambudziko Network matambudziko nekutsvaga kudzora / data mafiramu;
• Ongorora latency uye jitter nekutarisa mapaketi vhidhiyo;
• Ongorora latency nekuongorora mashandiro emhando yepamusoro;
• ona anomalies nekutarisa network traffic.
Traffic traffic inogona kuvezwa kune mamwe madimikira pane imwe nzvimbo yeSosi yeSosi, kana kure kure kune mamwe midziyo yetiweki iri padhuze neyechivanhu chechipiri (RSPAN).
Nhasi tiri kuenda kuzotaura nezve kure kure neInternet traffic traffic Uku ndiko kuwedzerwa kwespano kuti ishandise kure.
Basic Reperation Nheyo dzeErspan
Kutanga, ngatitarisei zvinhu zvaErspan:
• Kopi yePaketi kubva kune iyo Source Port inotumirwa kune iyo yekuenda server yeparsing kuburikidza generic routing encapsions (gakara). Nzvimbo yemuviri yeseva haina kurambidzwa.
• nerubatsiro rwemushandisi wakatsanangurwa
• rutsigiro ratidziro yekuenzanisira;
• Inotsigira Packet Interceception kureba (Packet inokweretesa), kuderedza kudzvinyirira pane iyo chinangwa server.
Nezvinhu izvi, iwe unogona kuona kuti nei Erspan chishandiso chakakosha chekutarisa manhamba emukati mataundi ematare nhasi.
Mabasa makuru aErspan anogona kupfupikiswa mune zviviri zvikamu:
• Sangano kuoneka: Shandisa ERSPAN kuunganidza zvese zvakagadzirwa tcp uye kure kure kurangarira Memory (RDMA) Zvikamu zveServer-End Server Kuratidzwa;
• Network Dateshooting: Kubata network traffic yekuongorora zvisina mhosva apo dambudziko network rinoitika.
Kuti uite izvi, iyo Source Network Chishandiso inoda kuseya traffic kune iyo mushandisi kubva kuRwizi rwe data Uyezve, gonesa iyo yekugamuchira mudziyo wekubvisa uye kudzoreredza zvakazara kutarisisa kwekutanga kutevedzerwa traffic.
Iyo yekugamuchira mudziyo inogona kuve imwe server inotsigira kuderedza kuderera kwemackets.
Iyo ERSPANTY TYPE uye Package Fommenye kuongorora
Erspan mapaketi anokandirwa uchishandisa gakisi uye inotumirwa kune chero IP inokwanisika kuenda pamusoro peEthnet. Erspan parizvino inonyanya kushandiswa pane IPV4 Networks, uye Tsigiro yeIPv6 ichave inodikanwa mune ramangwana.
Kune iyo general encapsation chimiro cheErsapn, zvinotevera igirazi paPaketi yekubatwa yeiyo mackets:
Iyo ERSPACOL yakawedzera kwenguva yakareba, uye nekuwedzera kwekugona kwayo, shanduro dzinoverengeka dzakaumbwa, inonzi "mhando dzespan". Mhando dzakasiyana dzine mikana yakasiyana yemusoro mafomu.
Izvo zvinotsanangurwa mune yekutanga vhezheni yeiyo Erspan Header:
Uye zvakare, iyo protocol mhando shamba mune iyo Greeer zvakare inoratidza iyo yemukati ERSPANT mhando. Iyo protocol Type munda 0x88be inoratidza erspan Type II, uye 0x22eb ichiratidza erspan mhando III.
1. Nyora i
Iyo ERSPAN FRAMY YEMADZIMAI I INECAPUTESILATES IP uye gakanaka zvakananga pamusoro pemusoro wegirazi rekutanga girazi. Iyi yekuwedzera inowedzera 38 mabhureki pamusoro peiyo yekutanga frame: 14 (Mac) + 20 (IP) + 4 (GRE). Kubatsira kweiyi fomati ndeyekuti ine chekuita nemusoro wechikuru uye inoderedza mutengo wekutapurirana. Nekudaro, nekuti inoisa gred
Iyo Greeer Header fomati yemhando ini iri seinotevera:
2. Type II
Mune Type II, iyo C, R, k, s, s, mireza, uye vhezheni yeminda mumusoro wemaira ndege dzese 0 kunze kweiyo snder. Naizvozvo, iyo sequence nhamba yenhamba inoratidzwa mumusoro weGreer yeType II. Ndokunge, Type II inogona kuve nechokwadi chekugamuchira groke makirket, kuitira kuti huwandu hukuru hwekubuda-kubva-kuronga gakisi mackets haakwanise kurongedzwa nekuda kwesettive network.
Iyo Greeer Header fomati yemhando II iri seinotevera:
Uye zvakare, iyo ERSPANT TYPE II FATEM FOMU inowedzera 8-byte Erspan Header pakati peGreer Health uye yekutanga Mirrud Frame.
Iyo ERSPAN Header fomati yeType II iri seinotevera:
Pakupedzisira, pakarepo kutevera iyo yekutanga mufananidzo chimiro, ndiyo standard 4-byte ethernet cyclic redundancy mutarise (CRC) kodhi.
Zvakakosha kucherechedza kuti mukushandiswa, girazi regirazi harina iyo FCS yendima yeiyo yekutanga chimiro, panzvimbo pekwadi yeCRC yakadzokororwa zvichienderana neiyo ERSPAN. Izvi zvinoreva kuti mudziyo wekugamuchira haugone kuratidza iyo crc kurongeka kweiyo yekutanga chimiro, uye isu tinogona chete kufunga kuti mapuranga asina kuvhurwa asina kugadzirwa.
3. Nyora III
Type III inosvitsa huwandu hwakakura uye hunoshanduka hwekunyora musoro kuyanana kuyananisa uye kusiyana network network Izvi zviitiko zvinoda kuziva ese ma parameter egirazi regirazi uye sanganisira izvo zvisiri zviripo muzvikamu zvekutanga pachayo.
Iyo ERSPANT Type III Composite Header Inosanganisira Inosungirwa 12-Byte Heller uye Inosarudza 8-Byte Platform-chaiyo subheder.
Iyo ERSPAN Header form form formy yeIII iri seinotevera:
Zvekare, mushure mekunge girazi rekutanga remugirazi iri 4-byte crc.
Sezvazvinogona kuoneka kubva kune yemusoro wenyaya yemhando yechitatu, kuwedzera kuti udzorere ver, VLAN, Cos, minda yeMinda yeType yeTy, akawanda akakosha minda inowedzerwa, senge:
• BSE: Inoshandiswa kuratidza kutendeka kwetoro yezvirema zve data zvinotakurwa kuburikidza neErspan. 00 is a grame yakanaka, 11 is a yakaipa chimiro, 01 ipfupi, 11 ifari yakakura;
• Timestamp: inotumirwa kubva kuwachi yewardware yakawirirana nenguva yehurongwa. Iyi inonzi 32-bit munda inotsigira kanenge zana mazino emakiromita egirini yekutenderera;
• Rudzi rwemhando (P) uye Rudzi rweMhando (ft): Iyo yekutanga inoshandiswa kutsanangura kuti Erspan Carrories emaficha (PDU FRAMES)
• HW ID: Yakasarudzika Identifier yeiyo erspan injini mukati mehurongwa;
• Gra (timestamp granularity): inotsanangura granularity yeiyo timestamp. Semuenzaniso, 00B inomiririra 100 microsecond granularity, 01b 100 Nanosecond granulity, 10b ieee granularity
• Platf id vs. Platform chaiyo info: Platf chaiyo info minda ine mafomu akasiyana uye zviri mukati mazviri zvichienderana neiyo platf ID kukosha.
Izvo zvinofanirwa kucherechedzwa kuti misana yakasiyana-siyana inotsigirwa pamusoro inogona kushandiswa mune yenguva dzose magetsi ekushandisa, kunyange kurema mafuremu kana bpdu mapepa ekutanga, nepo yekutanga trunk package uye VLAN ID. Uye zvakare, kiyi timestampation ruzivo uye mamwe minda yeruzivo inogona kuwedzerwa kune yega yega elspan chimiro panguva yekurema.
Nezvemusoro wenyaya yemusoro wenyaya, tinogona kuwana ongororo yakanatswa yeNetwork traffic traffic, tobva roverera ACL iri muErspan maitiro kuti tifanane network traffic isu tiri kufarira.
Erspan Inoshandisa Rdma Session Kuonekwa
Ngatitorei muenzaniso wekushandisa Erspan tekinoroji kuti ndiwane RDMA CHIKAMU CHEMAENGA MUCHINYANYA SCENRIOSI:
Rdma. Iyo inoshandiswa zvakanyanya mu data hombe uye high-performance yakagoverwa kuchengetedza zviitiko.
Rocev2: RDMA pamusoro peEtherged Ethernet vhezheni 2. Iyo Rdma data inokatyamadzwa mune iyo UDP musoro. Iyo yekuenda port nhamba ndeye 4791.
Kushanda Kwezuva Nezuva uye Kugadziriswa kweRDMA kunoda kuunganidza data rakawanda, iyo inoshandiswa kuunganidza zuva nezuva mapoinzi emvura emvura uye nearlms, pamwe nehwaro hwekuwana matambudziko asina kujairika. Yakasanganiswa neErspan, data rakakura rinogona kubatwa nekukurumidza kuti uwane microsecond yekutumira data yemhando uye protocol yekudyidzana mamiriro ekuchinja chip. Kuburikidza ne data nhamba uye kuongororwa, rdma end-kusvika-kuguma kwekutumira kwemhando yekuongororwa uye kufungidzira kunogona kuwanikwa.
Kuti tiwane RDAM Chikamu chekuona, isu tinoda Erspan kufananidza mazwi eRDMA KUSVIRA PASRAONS PAMUSORO PENYAYA, uye isu tinofanirwa kushandisa nyanzvi yakawedzerwa rondedzero.
Nyanzvi-level yakawedzera runyorwa runotenderana netsanangudzo yemunda:
Iyo UDF ine minda mashanu: UDF Keyword, base munda, gadziri munda, kukosha munda, uye mask munda. YAKABVUNZWA NEZVINHU ZVINOGONESESA ZVINOGONESESA ZVESANGANO, YEMAHARA YEMAHARA UDFS inogona kushandiswa. Imwe udf inogona kufananidza yakakwira miviri yemabheneketi.
• Udf Keyword: Udf1 ... Udf8 ine masere mazwi akakosha eUDF ACCHING Domain
• Base munda: inozivisa chinzvimbo chekutanga cheUDF inofananidza munda. Zvinotevera
L4_header (inoshanda kune rg-s6520-64cq)
L5_header (ye rg-s6510-48vs8cq)
• Offset: Inoratidza iyo offset yakavakirwa pamunda wetsiva. Kukosha kwacho kubva pa0 kusvika ku126
• Kukosha kweMunda: Kuenzanisa kukosha. Inogona kushandiswa pamwe chete nemunda weMask kuti ugadzirise kukosha kwakananga kuti uenzane. Iyo inoshanda zvishoma ndeye maviri mabheti
• Mask munda: Mask, Inoshanda zvishoma mabhureki maviri
.
Iwo maviri kiyi mapaketi akabatana neRDMA Session Status's Congenicion Section Packet (CNP) uye Kubvumidzwa Kwakaipa (NAK):
Iyo yekutanga inogadzirwa neRDMA RDIVER mushure mekugamuchira iyo ECN meseji inotumirwa ne switch (apo iyo Eute Buffer ichisvika chikumbaridzo), iyo ine ruzivo nezve kuyerera kana qp inokonzeresa. Iyo yekupedzisira inoshandiswa kuratidza iyo rdma kutapurirana ine packet kurasikirwa kwemhinduro.
Ngatitarisei nzira yekufananidza aya maviri mameseji uchishandisa iyo nyanzvi yakawedzerwa zvinyorwa:
Nyanzvi yekuwana-rondedzero yakawedzerwa RDMA
bvumidza udp chero chero chero chero e eq 4791Udf 1 l4_header 8 0x8100 0xff00(Kufananidza rg-s6520-64cq)
bvumidza udp chero chero chero chero e eq 4791Udf 1 l5_header 0 0x8100 0xff00(Kufananidza RG-S6510-48VS8CQ)
Nyanzvi yekuwana-rondedzero yakawedzerwa RDMA
bvumidza udp chero chero chero chero e eq 4791Udf 1 l4_header 8 0x1100 0xff00 udf 2 l4_header 20 0x6000 0xff00(Kufananidza rg-s6520-64cq)
bvumidza udp chero chero chero chero e eq 4791Udf 1 l5_header 0 0x1100 0xff00 udf 2 l5_header 12 0x6000 0xff00(Kufananidza rg-s6510-48vs8cq)
Sedanho rekupedzisira, iwe unogona kuona chikamu cheRDMA nekukwira runyorwa rwekuwedzera runyorwa mune yakakodzera yerspan maitiro.
Nyora mune yekupedzisira
Erspan ndeimwe yezvisikwa zvisingabvumirwe muzvishandiso zvemazuva ano hombe yedatha yeNetworks, inowedzera kuomarara traffic traffic, uye inowedzera kusarudzika network yekugadzirisa network uye zvinodiwa zvekugadzirisa.
Nemagiriji inowedzera yeO & M ongororo, tekinoroji yakadai seNetConf, restconf, uye GRPC inozivikanwa pakati o & m vadzidzi mune network otomatiki o & m. Uchishandisa GRPC seyakapetwa protocol yekutumira kumashure girazi traffic zvakare ine zvakawanda zvakanakira. Semuenzaniso, based on httkocol, 2 protocol, inogona kutsigira kusundira kusundira mashini pasi peiyo kubatana. NaProtobuf Encoding, saizi yeruzivo inoderedzwa nehafu ichienzaniswa neiyo json chimiro, ichiita kutapurirana data nekukurumidza uye zvinobudirira. Chimbofungidzira, kana iwe ukashandisa Erspan kuRirl Forth Forhoini yeRefu uye wozovatumira kune yekuongorora server paGRPC, ichavandudza kwazvo kugona uye nekubudirira kweNet otomatiki kushanda uye kugadzirisa?
Kutumira Nguva: May-10-2022
