Mune yemazuva ano network architecture, VLAN (Virtual Local Area Network) uye VXLAN (Virtual Extended Local Area Network) ndiwo maviri akajairika network virtualization tekinoroji. Vanogona kunge vakafanana, asi pane chaizvo akati wandei akasiyana akakosha.
VLAN (Virtual Local Area Network)
VLAN iVirtual Local Area Network (Virtual local area network) chidimbu. Iyo inyanzvi inopatsanura midziyo yemuviri muLAN kuita akati wandei ma subnets zvichienderana nehukama hune musoro. VLAN inogadziriswa panetiweki switch kuti igovane network zvishandiso mumapoka akasiyana ane musoro. Kunyangwe hazvo michina iyi inogona kunge iri munzvimbo dzakasiyana, VLAN inovagonesa kuti vakwanise kuve venetiweki imwechete, ichigonesa kuchinjika manejimendi uye kuzviparadzanisa nevamwe.
Iyo yakakosha yeVLAN tekinoroji iri mukugovaniswa kwekuchinja madoko. Shanduko dzinogadzirisa traffic zvichibva paVLAN ID (VLAN identifier). VLAN ids inotangira pa1 kusvika 4095 uye inowanzoita gumi nembiri madhijitari (kureva, iyo 0 kusvika 4095), zvinoreva kuti switch inogona kutsigira kusvika 4,096 VLans.
Workflow
○ VLAN Identification: Kana pakiti ichipinda muchinja, switch inosarudza kuti VLAN pakiti inofanira kuendeswa kune ipi zvichienderana neruzivo rweVLAN ID mupaketi. Kazhinji, iyo IEEE 802.1Q protocol inoshandiswa kuVLAN tag data data.
○ VLAN Broadcast Domain: VLAN yega yega inzvimbo yakazvimirira yekutepfenyura. Kunyangwe akawanda maVLans ari pakuchinja kumwe chete kwemuviri, kutepfenyura kwavo kwakaparadzaniswa kubva kune mumwe nemumwe, kudzikisa zvisina basa kutepfenyura traffic.
○ Kuendesa Data: Iyo switch inoendesa mberi iyo data packet kune inoenderana chiteshi zvinoenderana neakasiyana VLAN tag. Kana michina iri pakati peVLans yakasiyana ichida kutaurirana, inofanira kuendeswa mberi kuburikidza nemidziyo yechitatu, yakadai sema routers.
Ngatiti iwe une kambani ine madhipatimendi akawanda, rimwe nerimwe rinoshandisa VLAN yakasiyana. Nekuchinja, unogona kupatsanura zvigadziriso zvese mudhipatimendi rezvemari muVLAN 10, iyo iri mudhipatimendi rekutengesa muVLAN 20, uye iyo iri mudhipatimendi rehunyanzvi muVLAN 30. Nenzira iyi, network pakati pemadhipatimendi yakaparadzaniswa zvachose.
Zvakanakira
○ Kuchengetedzwa Kwakavandudzwa: VLAN inogona kunyatso kudzivirira kupinda kusingatenderwe pakati peVLans dzakasiyana nekugovanisa masevhisi akasiyana mumatiweki akasiyana.
○ Network Traffic Management: Nekugovera VLans, madutu ekutepfenyura anogona kudzivirirwa uye network inogona kunyatsoshanda. Mapaketi ekutepfenyura anozongoparidzirwa mukati meVLAN, kuderedza kushandiswa kwebandwidth.
○ Network Flexibility: VLAN inogona kugovanisa network zvinoenderana nezvinodiwa nebhizinesi. Semuenzaniso, midziyo mudhipatimendi rezvemari inogona kupihwa kune imwechete VLAN kunyangwe iri pauriri hwakasiyana.
Kuganhurirwa
○ Yakaganhurirwa Scalability: Sezvo VLans vachivimba neshanduko yechinyakare uye nerutsigiro kusvika ku4096 VLans, izvi zvinogona kuve bhodhoro remanetiweki akakura kana hukuru hwakakura hwakaonekwa nharaunda.
○ Cross-domain Connection Dambudziko: VLAN inetiweki yemuno, kuyambuka-VLAN kutaurirana kunoda kuitwa kuburikidza neatatu layer switch kana router, izvo zvinogona kuwedzera kuoma kwetiweki.
Application Scenario
○ Kuzviparadzanisa nevamwe uye Chengetedzo muBhizinesi Networks: VLans inoshandiswa zvakanyanya mumabhizinesi network, kunyanya mumasangano makuru kana nharaunda dzakayambuka dhipatimendi. Kuchengetedzwa uye kuwanika kwekutonga kwetiweki kunogona kuvimbiswa nekugovanisa madhipatimendi akasiyana kana masisitimu ebhizinesi kuburikidza neVLAN. Semuyenzaniso, bazi rezvemari rinowanzova mune imwe VLAN yakasiyana kubva kudhipatimendi reR&D kudzivirira kupinda zvisina mvumo.
○ Deredza Broadcast Dutu: VLAN inobatsira kudzikamisa kutepfenyura traffic. Kazhinji, mapaketi ekutepfenyura achapararira mukati mesetiweki, asi munharaunda yeVLAN, nhepfenyuro yekutepfenyura inongopararira mukati meVLAN, iyo inoderedza zvinobudirira mutoro wetiweki unokonzerwa nedutu rekutepfenyura.
○ Madiki kana epakati-kati-yeNzvimbo Yenzvimbo Network: Kune mamwe madiki uye epakati bhizinesi, VLAN inopa iri nyore uye inoshanda nzira yekuvaka ine musoro yakasarudzika network, zvichiita kuti manetiweki manejimendi ave nyore nyore.
VXLAN (Virtual Extended Local Area Network)
VXLAN (Virtual Extensible LAN) tekinoroji nyowani yakarongwa kugadzirisa zvisingakwanisi zvechinyakare VLAN munzvimbo yakakura yedata uye nharaunda yekuona. Inoshandisa encapsulation tekinoroji kuendesa layer 2 (L2) data packet kuburikidza neiyo iripo Layer 3 (L3) network, iyo inotyora kuburikidza ne scalability kudzikiswa kweVLAN.
Kuburikidza netunneling tekinoroji uye encapsulation mechanism, VXLAN "inoputira" iyo yepakutanga layer 2 data packets mu layer 3 IP data packets, kuitira kuti data packet inogona kufambiswa mune iripo IP network. Nheyo yeVXLAN iri mune yayo encapsulation uye unencapsulation mechanism, kureva, iyo yechinyakare L2 data furemu yakavharidzirwa neUDP protocol uye inofambiswa kuburikidza neIP network.
Workflow
○ VXLAN Header Encapsulation: Mukuitwa kweVXLAN, yega yega 2 pakiti ichaiswa senge UDP packet. VXLAN encapsulation inosanganisira: VXLAN network identifier (VNI), UDP musoro, IP musoro uye rumwe ruzivo.
○ Tunnel Terminal (VTEP) : VXLAN inoshandisa tekinoroji yekumisikidza uye mapaketi akavharirwa uye asina kuvharwa kuburikidza nembiri yemidziyo yeVTEP. VTEP, VXLAN Tunnel Endpoint, ndiro bhiriji rinobatanidza VLAN neVXLAN. Iyo VTEP inovhara iyo yakagashirwa L2 mapaketi seVXLAN mapaketi uye inoatumira kunzvimbo yekuenda VTEP, iyo inozoburitsa iyo yakavharirwa mapaketi mumapaketi ekutanga eL2.
○ Encapsulation Maitiro eVXLAN: Mushure mekuisa iyo VXLAN musoro kune yekutanga data packet, data packet rinozoendeswa kunzvimbo yekuenda VTEP kuburikidza neIP network. Iyo yekuenda VTEP inobvisa pakiti uye inoendesa kune iyo chaiyo inogamuchira zvichienderana neVNI ruzivo.
Zvakanakira
○ Scalable: VXLAN inotsigira anosvika 16 miriyoni virtual Networks (VNI), zvakanyanya kudarika VLAN's 4096 zviziviso, zvichiita kuti ive yakanakira nzvimbo huru dzedata uye makore nharaunda.
○ Cross-data Center Tsigiro: VXLAN inogona kuwedzera iyo chaiyo network pakati peakawanda data nzvimbo munzvimbo dzakasiyana dzenzvimbo, ichityora zvipimo zvechinyakare VLAN, uye inokodzera yemazuva ano makore computing uye virtualization nharaunda.
○ Nyoresa Data Center Network: Kuburikidza neVXLAN, zvishandiso zvehardware kubva kune vakasiyana vagadziri zvinogona kudyidzana, kutsigira akawanda-anoroja nharaunda, uye kurerutsa dhizaini yetiweki yenzvimbo dzakakura dzedata.
Kuganhurirwa
○ High Complexity: Kumisikidzwa kweVXLAN kwakaoma, kusanganisa tunnel encapsulation, VTEP kumisikidzwa, nezvimwewo, izvo zvinoda imwe hunyanzvi hwekutsigira stack uye inowedzera kuoma kwekushanda nekugadzirisa.
○ Network Latency: Nekuda kwekuwedzera kugadziridzwa kunodiwa nemaitiro ekuputira uye unencapsulation, VXLAN inogona kuunza imwe network latency, kunyangwe iyi latency ichiwanzo diki, asi ichiri kuda kucherechedzwa munzvimbo dzepamusoro dzinoda kuita.
VXLAN Application Scenario
○ Data Center Network Virtualization: VXLAN inoshandiswa zvakanyanya munzvimbo dzakakura dzedata. Masevha ari munzvimbo yedata anowanzo shandisa virtualization tekinoroji, VXLAN inogona kubatsira kugadzira chaiyo network pakati pemasevha emuviri akasiyana, kudzivirira kudzikiswa kweVLAN mu scalability.
○ Multi-rentant Cloud Environment: Mune yeruzhinji kana yakavanzika gore, VXLAN inogona kupa yakazvimirira virtual network kune yega yega roja uye kuona yega yega yega network neVNI. Ichi chimiro cheVXLAN chakanyatso kuenderana neazvino makore computing uye akawanda-anoroja nharaunda.
○ Network Scaling Across Data Centers: VXLAN inonyanya kukodzera mamiriro apo chaiwo network inoda kuiswa munzvimbo dzakawanda dzedata kana geographies. Nekuti VXLAN inoshandisa IP network ye encapsulation, inokwanisa kutenderera zviri nyore nzvimbo dzakasiyana dzedata uye nzvimbo dzenzvimbo kuti iwane chaiyo network yekuwedzera pamwero wepasi rose.
VLAN vs VxLAN
VLAN neVXLAN ese ari maviri network virtualization tekinoroji, asi akakodzera kune akasiyana mashandisirwo mamiriro. VLAN yakakodzera kune diki kana yepakati chiyero network nharaunda, uye inogona kupa basic network yekuzviparadzanisa uye chengetedzo. Simba rayo riri mukureruka kwayo, kureruka kwekugadzirisa, uye kutsigirwa kwakakura.
VXLAN tekinoroji yakagadzirirwa kurarama nekudiwa kwekuwedzera kwetiweki yakakura munzvimbo dzemazuva ano dzedata uye cloud computing environments. Simba reVXLAN riri mukugona kwayo kutsigira mamirioni emadhizaini, zvichiita kuti ive yakakodzera kuendesa virtualized network munzvimbo dzese data. Iyo inotyora nepakati pekudzikira kweVLAN mu scalability, uye yakakodzera kune yakanyanya kuoma network dhizaini.
Kunyangwe zita reVXLAN richiita senge iprotocol yekuwedzera yeVLAN, kutaura zvazviri, VXLAN yakatosiyana zvakanyanya neVLAN nekugona kwayo kuvaka matanoro chaiwo. Misiyano mikuru pakati pavo ndeiyi inotevera:
Feature | VLAN | VXLAN |
|---|---|---|
| Standard | IEEE 802.1Q | RFC 7348 (IETF) |
| Layer | Layer 2 (Data Link) | Layer 2 pamusoro peLayer 3 (L2oL3) |
| Encapsulation | 802.1Q Ethernet musoro | MAC-mu-UDP (yakafukidzwa muIP) |
| ID saizi | 12-bit (0-4095 VLANs) | 24-bit (16.7 miriyoni VNIs) |
| Scalability | Yakaganhurirwa (4094 inoshandiswa VLANs) | Yakanyanya scalable (inotsigira akawanda-anoroja makore) |
| Broadcast Kubata | Mafashamo echinyakare (mukati meVLAN) | Inoshandisa IP multicast kana musoro-kuguma kudzokorora |
| Overhead | Yakaderera (4-byte VLAN tag) | Yakakwirira (~ 50 bytes: UDP + IP + VXLAN misoro) |
| Traffic Isolation | Hongu (paVLAN) | Hongu (paVNI) |
| Tunneling | Hapana tunneling (flat L2) | Inoshandisa VTEPs (VXLAN Tunnel Endpoints) |
| Shandisa Nyaya | Madiki / epakati maLAN, bhizinesi network | Cloud data centers, SDN, VMware NSX, Cisco ACI |
| Kutenderera Muti (STP) Dependency | Hongu (kudzivirira zvishwe) | Kwete (inoshandisa Layer 3 routing, inodzivirira STP nyaya) |
| Hardware Tsigiro | Inotsigirwa pane zvese switch | Inoda VXLAN-inokwanisa switch/NICs (kana software VTEPs) |
| Mobility Support | Yakaganhurirwa (mukati meiyo L2 domain) | Zvirinani (VMs inogona kufamba muma subnets) |
Chii chingaitwa neMylinking ™ Network Packet Broker kune Network Virtual Technology?
VLAN Tagged, VLAN Isina Kuiswa, VLAN Yakatsiviwa:
Yakatsigira kufananidzwa kwechero kiyi ndima mune yekutanga 128 bytes yepakiti. Mushandisi anogona kugadzirisa kukosha kwekubvisa uye kiyi yemunda kureba uye zvirimo, uye kuona iyo traffic yekubuda mutemo zvinoenderana nemushandisi kumisikidzwa.
Tunnel Encapsulation Stripping:
Yakatsigira iyo VxLAN, VLAN, GRE, GTP, MPLS, IPIP musoro wakabviswa mupaketi yedata rekutanga uye kuendeswa mberi.
Tunneling Protocol Identification
Inotsigirwa otomatiki inozivisa akasiyana tunneling mapuroteni akadai seGTP / GRE / PPTP / L2TP / PPPOE/IPIP. Zvinoenderana nekugadziriswa kwemushandisi, iyo traffic yekubuda zano inogona kuitwa zvinoenderana nemukati kana yekunze layer yemugero.
Unogona kutarisa pano kuti uwane rumwe ruzivo nezve yakabatanaNetwork Packet Broker.
Nguva yekutumira: Jun-25-2025
