Span, Rspan, uye Erspan mataurirwo anoshandiswa mukushamwaridzana kubata uye kutarisa traffic yekuongorora. Heano kuongorora muchidimbu chimwe nechimwe:
Span (switched port analyzer)
Chinangwa: Inoshandiswa kugirazi traffic kubva kune yakatarwa madoko kana mavlans pane chinongedzo kune chimwe chiteshi chekutarisa.
Shandisa kesi: Yakanakira kuongororwa kwenzvimbo yemuno pane imwechete switch. Traffic inoremerwa kune yakasarudzwa chiteshi apo iyo Network ACTONGER inogona kuitora.
RSPAN (REMENTE SUNTON)
Chinangwa: Kunowedzera mapoinzi ekugona kukwira akawanda switches mune network.
Shandisa kesi: Inobvumira kuongorora kwetraffic kubva kune imwe switch kune imwe pamusoro pe trunk link. Inobatsira yezviitiko uko mudziyo wekutarisa uri pane imwe switch yakasiyana.
Erspan (encapsuated kure kure span)
Chinangwa: Inosanganisa RSPAN neGRE (generic routing encapsilation) kuti ishandise iyo yemukati yemukati traffic.
Shandisa kesi: inobvumira kuongorora kwemigwagwa yekufamba-famba miteji. Izvi zvinobatsira mune dzakajairwa network madhiri kuti traffic inoda kubatwa pamusoro pezvikamu zvakasiyana.
Switch port analyzer (span) ndeyekunyorera, yakakwira maitiro ekuita traffic yekutarisa system. Iyo inotungamira kana magirazi traffic kubva pachiteshi chekodhi kana vlan kune chiteshi chekuenda. Izvi dzimwe nguva zvinotaurwa nezvematanho ekutarisa. Span inoshandiswa kune dambudziko rekutsiura pamwe nekuverenga nyaya uye kuverenga shanduko network uye kuita, pakati pevamwe vazhinji. Kune matatu marudzi emapani anotsigirwa pane zvigadzirwa zveCISCO ...
a. Span kana yemunharaunda.
b. Remote Span (RSPAN).
c. Encapsilated kure kure span (ERSPAN).
Kuziva: "MyLinking ™ network packet broker ine span, RSPAN uye ERSPAN MAHARA"
Span / traffic kufambisa / port corming inoshandiswa kune zvakawanda zvinangwa, pazasi zvinosanganisira zvimwe.
- Kuita Ids / IPS mune yePublicoous Mode.
- VOIP kufona kurekodha mhinduro.
- Chengetedzo conciance zvikonzero zvekutarisa uye kuongorora traffic.
- Kugadzirisa matambudziko ekubatanidza nyaya, kutarisa traffic.
Pasinei neyekuita span mhando, sosi yemhando inogona kuve chero rudzi rwechiteshi chechiteshi, chirahwe chemuviri, vlan.
Span Nguva dzekutsigira iyo yekutarisa yegress traffic (Ingress traffic), egress traffic (egress span), kana traffic inoyerera munzira mbiri.
- Ingress Span (RX) makopi emigwagwa yakagamuchirwa neiyo sosi yezviratidzo uye mavhendi kune iyo nzvimbo yekuenda. Mapfupi anoteedzera traffic isati yatanga chero kugadziridzwa (semuenzaniso pamberi peizvi vacl kana acl filter, Qos kana ingress kana egs politha).
- egress span (TX) makopi traffic inoendeswa kubva kune sosi yezviratidzo uye mavheni kune iyo nzvimbo yekuenda. Zvese zvakakodzera kusefa kana kuchinjika neVIL kana ACL filter, Qos kana Ingress kana Einter Collection Zviito zvinotorwa pamberi pekutenderera kuTraffiti kuenda kuPROP
- Kana iyo ishoko repasi rinogona kushandiswa, makopi ekupfeka iyo network network yakagamuchirwa uye inoendeswa neiyo sosi yezviteshi uye mavhendi kune iyo nzvimbo yekuenda.
- Span / Rspan kazhinji inofuratira CDP, StP BPDU, VTP, DTP uye Pagp Mafiramu. Nekudaro idzi mhando dzemigwagwa dzinogona kutumirwa kana iyo yekushomeka kudzokorora kuraira kunogadziriswa.
Span kana Local Span
Spar magirazi traffic kubva kune imwe kana yakawanda interface pane iyo switch kune imwe kana zvimwe zviperenji pane imwechete switch; Saka mapopoma anonyanya kutaurwa seyenguva yemunharaunda.
Nhungamiro kana kurambidzwa kuNzvimbo Yenzvimbo:
- zvese zviri zviviri zviviri zvimedu zvimedu zvezvimedu uye layer 3 zvidhori zvinogona kugadzirirwa seSosi kana kuti zvimiti zvendinosvika.
- Iyo sosi inogona kuve imwe kana madonhwe kana madoko kana vlan, asi kwete musanganiswa weizvi.
- Trunk Zviteshi ndezvechokwadi sosi yezvirango zvakasanganiswa neisiri-trunk sosi yezviteshi.
- kusvika pamakumi matanhatu nemakumi matanhatu ekutora madhiri anogona kugadziriswa pane switch.
- Kana isu tichigadzirisa chiteshi chekuenda, iko kwekutanga kwekugadziriswa kwakanyoreswa. Kana iyo span yekugadziriswa ikabviswa, iyo yekutanga kugadziriswa pane icho chiteshi kwadzorerwa.
- Kana uchikweretesa chiteshi chekuenda, chiteshi chabviswa kubva kune chero etherchannel bundle kana yaive chikamu cheimwe. Dai yaive chiteshi chakakunguruswa, iyo yekuenda kuSpence inogadziriswa inodururwa yakawedzera kugadzirwa kwechiteshi.
- Kuenda Makumbo haatsigiri chiteshi chengetedzo, 802.1X kusimbisa, kana mavheti akavanzika.
-Chiteshi chinogona kuita seicho chechiteshi chega chega chega chikamu.
- Chikamu hachina kukwanisa kugadzirirwa seyakaenda chiteshi kana chiri chiteshi chechiteshi chechikamu kana chikamu cheSosi VLAN.
- Port Channel Interfaces (etherchannel) inogona kugadzirirwa seSosi yezviteshi asi kwete chiteshi chekuenda kwepaki.
- Traffic kutungamira iri "zvese" nekuita default yerino sosi.
- Kuenda kuDarts Usamboita chikamu mune yekutanga-muti chiitiko. Haikwanise kutsigira DTP, CDP etc. Local Span Inosanganisira BPDus Traffic traffic, saka chero BPDUS inoonekwa pachiteshi chekuenda kunotevedzerwa kubva pachiteshi chekodhi. Nekudaro usambosanganisa switch kune urwu rudzi rwepakapuro sezvinogona kukonzera nzvimbo yetiweki. Ai zvishandiso zvichavandudza kushanda kwebasa, uyeUndedTectable Aisevhisi inogona kuvandudza kunaka kweAi zvishandiso.
- Kana VLAN yakagadzirirwa seSpan Source Imwe kopi yePaketi ndeye kubva kuIgress traffic pane INGRess port, uye imwe kopi yePaketi iri kubva kuECHA yeI EMBLE PORT COMT.
- VSPan monitor chete traffic chete inosiya kana kupinda pasi 2 zviteshi mune vlan.
Remote Span (RSPAN)
Remote Span (RSPAN) yakafanana neSpan, Imwe neimwe yeRSPAN inotakura iyo traffic traffic pamusoro pemushandisi-yakataurwa yakatsanangurwa RSRAN VLAN mune ese anotora chikamu switch. Iyi vlan inobva yatorwa kune mamwe majira, kubvumira iyo RSPAN SEATT Traffic kuti utakure kuyambuka akawanda switch uye yakaunzwa kunzvimbo yekuenda kune yekuenda. RSAPAN ine yeRSPAN Source chikamu, RSPAN VLAN, uye RSPAN DENTEND SECTION SECTION.
Nhungamiro kana kurambidzwa kuRspan:
- Iyo chaiyo vlan inofanira kugadzirirwa kuenda kuSpreet kuenda iyo inofamba ichipfuura nepakati switch kuburikidza ne trunk inobatanidza kuDziviriro yePREND.
- Inogona kugadzira zvakafanana sosi yemhando - kana imwe chiteshi kana imwe vlan asi haigone kuve musanganiswa.
-Kusvika kwekusangana kweSangano iri RSPAN VLANLO PAMWE PAKUSHURE PAKUTI Shandura, saka zvese zviteshi muRSPAN VLANI GADZIRA ISANGANO YEMAHARA.
- Gadzirira chero vlan seRSPAN VLANS All selcing Tript Actions Tsigiro Yekutsigira Kugadziriswa kweRSPan Vlans.
- VTP inogona kuparadzanisa kurongwa kweVlans kuverenga
- Mac kero yekufunda yakaremara muRSPAN VLAN.
Encapsilated kure kure span (ERSPAN)
Encapsilated kure kure span (ERSPAN) inounza generic routing encapsilation (gre) kune ese akatapwa traffic uye anobvumira kuti awedzerwe kuyambuka matunhu matatu.
Erspan ndeyeCisco ProprietaryFeature uye inowanikwa chete kuCatalyst 6500, 7600, Nexus, uye Asr 1000 mapuratifomu kusvika parizvino. Iyo ASR 1000 inotsigira Erspan Source (yekutarisa) chete pane nekukurumidza Ethernet, Gigabit Ethernet, uye Port-Channel Interfairs.
Nhungamiro kana kurambidzwa kuErspan:
- Erspan sosi yezvinyorwa hazvireve erspan gru-yakawedzera traffic kubva kune sosi yezviteshi. Imwe neimwe yeErspan Source chikamu inogona kuve nezviratidzo kana mavhendi sezvakaita manhamba, asi kwete ese ari maviri.
- Pasinei ne chero yakagadzirirwa mru size, erspan inogadzira layer 3 mapaketi anogona kunge ari kureba kusvika 9,202 mabhetesi. Erspan traffic inogona kudonhedzwa ne chero interface mune network iyo inosimbisa iyo mtu saizi diki pane 9,202 mabhetesi.
- Erspan haitsigire mapaketi ekupatsanura. Iyo "usarumbidze" zvishoma yakaiswa muIP musoro weErspan mapaketi. Erspan yekuenda nguva dzinogona kusasanganisa zvakakamurwa mackets erspan.
- Iyo ERSPAN ID inosiyanisa iyo ERSP Traic Traffic kune imwechete yekuenda IP kero kubva kune dzakasiyana siyana dzakasiyana dzeErspan sourime zvikamu; Yakagadzirirwa ERSPAN ID inofanirwa kuenderana neinobva uye kushanduka midziyo.
- Kuti uwane chiteshi chekodhi kana sosi vlan, iyo ERSPAN inogona kutarisa ingress, egress, kana ese ari maviri anondress uye e egress traffic. Nekusarudzika, maErspan monitor vese traffic, kusanganisira multicast uye Bridge protocol data unit (BPDU) mafiramu.
- Tunnel Interface inotsigirwa seSosi yezvirongwa zveErspan sosi iri greas
- Iyo filter vlana sarudzo haisi kushanda mune yerspan yekutarisa chikamu pane wan interfaces.
- ERSPAN ON CISCO ASR 1000 Series REuters inotsigira chete layer 3 inongori. Ethernet Interfaces haina kutsigirwa paErspan kana yakarongedzwa seyakagadzika 2 inopinda.
- Kana chikamu chakagadzirirwa kuburikidza neErspan kuronga cli, iyo musangano ID uye mhando yemusangano haigone kuchinjwa. Kuti uvachinje, iwe unofanirwa kutanga washandisa fomu isina kuraira kuti ubvise chikamu uye wobva wadzorerazve chikamu.
- Cisco iOS XE kuburitsa 3.4S: - Kuongorora kweiyo isina-IPSEC-yakachengetedzwa mackets inotsigirwa neIPV6 uye IPV6 pamusoro peIp tunner
- Cisco iOS XE kuburitsa 3.5s, rutsigiro rwakawedzerwa kune anotevera marudzi eWanters seSiset (T3 / E3 / E3 / E3 / E3 / E3 / E3 /
Uchishandisa Erspan seMunharaunda Span:
Kuti ushandise ERSPAN kuongorora traffic kuburikidza neyekuita kana marefu kana masheti akafanana, kuyerera kwedata kunoitika mukati meiyo router, iyo yakafanana neyekuti mune yemunharaunda.
Zvinhu zvinotevera zvinoshanda uchishandisa erspan seyunivhesiti yemunharaunda:
- Zvikamu zvese zviri zviviri zvine iyo yakafanana ERSPAN ID.
- Zvikamu zvese zviri zviviri zvine iyo IP kero yakafanana. Iyi IP kero ndeye ma routers nako IP kero; Ndokunge, iyo loopback IP kero kana iyo IP kero yakarongedzwa pane chero chiteshi.
| . |
| (config-mon-erspan-src) # sosi interface gig0 / 0/0 |
| (config-mon-erspan-src) # kuenda |
| (config-mon-erspan-src-dst) # IP kero 10.10.10.1 |
| (config-mon-erspan-src-dst) # mavambo IP kero 10.10.10.1 |
| (config-mon-erspan-src-dst) # erspan-id 100 |
Kutumira Nguva: Aug-28-2024
