Mukugadzirwa kwenetwork yemazuva ano, VLAN (Virtual Local Area Network) neVXLAN (Virtual Extended Local Area Network) ndidzo nzira mbiri dzinonyanya kushandiswa pakugadzira network. Dzinogona kuita sedzakafanana, asi pane musiyano mukuru.
VLAN (Network yeNzvimbo yeMunharaunda yeVirtual)
VLAN ipfupiso yeVirtual Local Area Network (Virtual local area network). Iyi inzira inoparadzanisa zvishandiso zvepanyama muLAN kuita ma subnet akawanda zvichienderana nehukama hwe logical. VLAN yakagadzirirwa pa network switches kuti ipatsanure zvishandiso zve network mumapoka akasiyana e logical. Kunyangwe zvishandiso izvi zvingave zviri munzvimbo dzakasiyana, VLAN inovabvumira kuti vave ve network imwe chete, zvichiita kuti vagone kuchinjika uye kuparadzaniswa.
Chinhu chikuru che tekinoroji yeVLAN chiri mukupatsanurwa kwema switch ports. Maswitch anotarisira traffic zvichibva paVLAN ID (VLAN identifier). MaVLAN ids anotangira pa1 kusvika pa4095 uye anowanzova ma binary digits gumi nemaviri (kureva, range kubva pa0 kusvika pa4095), zvinoreva kuti switch inogona kutsigira kusvika ku4,096 VLans.
Kufamba kwebasa
○ Kuzivikanwa kweVLAN: Kana paketi ikapinda muswitch, switch inosarudza kuti paketi inofanira kutumirwa kuVLAN ipi zvichibva paruzivo rweVLAN ID mupaketi. Kazhinji, protocol yeIEEE 802.1Q inoshandiswa kuisa VLAN tag pa data frame.
○ VLAN Broadcast Domain: VLAN yega yega inzvimbo yekushambadzira yakazvimirira. Kunyangwe kana maVLan akawanda ari pa switch imwechete, nhepfenyuro dzawo dzakaparadzana, zvichideredza traffic isingakoshi.
○ Kutumira Data: Swichi iyi inotumira data packet kuchiteshi chakakodzera zvichienderana nematagi akasiyana eVLAN. Kana zvishandiso zviri pakati peVLans dzakasiyana zvichida kutaurirana, zvinofanirwa kutumirwa kuburikidza nemidziyo yechikamu chechitatu, senge marouter.
Ngatitii une kambani ine madhipatimendi akasiyana-siyana, rimwe nerimwe richishandisa VLAN yakasiyana. Nekuchinja uku, unogona kupatsanura zvishandiso zvese mudhipatimendi rezvemari kuita VLAN 10, izvo zviri mudhipatimendi rekutengesa kuita VLAN 20, uye izvo zviri mudhipatimendi rehunyanzvi kuita VLAN 30. Nenzira iyi, network iri pakati pemadhipatimendi inoparadzaniswa zvachose.
Zvakanakira
○ Kuchengetedzwa Kwakavandudzwa: VLAN inogona kudzivirira zvinobudirira kupinda zvisina mvumo pakati peVLans dzakasiyana nekukamura masevhisi akasiyana kuita network dzakasiyana.
○ Kutarisira Kufamba Kwemambure: Nekupa maVLan, madutu ekutepfenyura anogona kudzivirirwa uye network inogona kushanda zvakanaka. Mapaketi ekutepfenyura achangoparadzirwa mukati meVLAN, zvichideredza kushandiswa kwebandwidth.
○ Kuchinjika Kwenetiweki: VLAN inogona kupatsanura netiweki zvichienderana nezvinodiwa nebhizinesi. Semuenzaniso, zvishandiso mudhipatimendi rezvemari zvinogona kupihwa kune VLAN imwechete kunyangwe zviri panzvimbo dzakasiyana.
Miganhu
○ Kukwanisa Kukura Kushoma: Sezvo maVLan achivimba nemaswichi echinyakare uye achitsigira maVLan anosvika 4096, izvi zvinogona kuva dambudziko kune network hombe kana nzvimbo dzakakura dzevirtualized.
○ Dambudziko rekubatana kweCross-domain: VLAN inetwork yemuno, kutaurirana kweCross-VLAN kunofanirwa kuitwa kuburikidza neswitch ye three layer kana router, izvo zvinogona kuwedzera kuoma kwenetwork.
Mamiriro Ekushandisa
○ Kuzviparadzanisa uye Kuchengetedzwa muMambure eMabhizinesi: MaVLan anoshandiswa zvakanyanya mumambure emakambani, kunyanya mumasangano makuru kana munzvimbo dzakasiyana-siyana dzemadhipatimendi. Kuchengetedzeka uye kutonga kwenetwork kunogona kuvimbiswa nekukamura madhipatimendi akasiyana kana masisitimu ebhizinesi kuburikidza neVLAN. Semuenzaniso, dhipatimendi rezvemari rinowanzo kuve muVLAN yakasiyana nedhipatimendi reR&D kudzivirira kupinda pasina mvumo.
○ Deredza Dutu reNhepfenyuro: VLAN inobatsira kuderedza traffic yenhepfenyuro. Kazhinji, mapaketi enhepfenyuro anoparadzirwa munetwork yese, asi muVLAN, traffic yenhepfenyuro inongopararira muVLAN chete, izvo zvinoderedza mutoro wenetwork unokonzerwa nedutu renhepfenyuro.
○ Network yeNzvimbo Dzemunharaunda Diki kana Pakati Nepakati: Kune mamwe mabhizinesi madiki nepakati, VLAN inopa nzira iri nyore uye inoshanda yekuvaka network yakaparadzana zvine musoro, zvichiita kuti manejimendi yenetwork ive nyore kuchinja.
VXLAN (Network yeNzvimbo Yenharaunda Yakatambanudzwa Yechokwadi)
VXLAN (Virtual Extensible LAN) tekinoroji itsva yakakurudzirwa kugadzirisa zvipingamupinyi zveVLAN yechinyakare munzvimbo huru yedata uye munzvimbo ye virtualization. Inoshandisa tekinoroji ye encapsulation kutamisa mapaketi edata e layer 2 (L2) kuburikidza ne network iripo yeLayer 3 (L3), iyo inoputsa muganho we scalability weVLAN.
Kuburikidza nehunyanzvi hwekugadzira tunneling uye nzira yekuvhara data, VXLAN "inoputira" mapaketi edata ekutanga echikamu chechipiri mumapaketi edata eIP echikamu chechitatu, kuitira kuti mapaketi edata agone kutumirwa muIP network iripo. Chinhu chikuru cheVXLAN chiri munzira yayo yekuvhara data uye isina kuvharwa data, kureva kuti, frame yedata yeL2 yechinyakare inovharwa neprotocol yeUDP uye inotumirwa kuburikidza neIP network.
Kufamba kwebasa
○ VXLAN Header Encapsulation: Mukushandiswa kweVXLAN, paketi yega yega ine layer 2 ichavharwa sepaketi yeUDP. VXLAN encapsulation inosanganisira: VXLAN network identifier (VNI), UDP header, IP header nedzimwe ruzivo.
○ Tunnel Terminal (VTEP): VXLAN inoshandisa tekinoroji yekutakura zvinhu uye mapaketi anovharwa uye haana kuvharwa kuburikidza nemidziyo miviri yeVTEP. VTEP, VXLAN Tunnel Endpoint, ibhiriji rinobatanidza VLAN neVXLAN. VTEP inovhara mapaketi eL2 anogamuchirwa semapaketi eVXLAN uye inoatumira kunzvimbo yeVTEP, iyo inobvisa mapaketi akaiswa mumapaketi epakutanga eL2.
○ Maitiro eVXLAN ekubatanidza musoro weVXLAN papaketi yedata yekutanga, paketi yedata ichaendeswa kune yaunoda kuenda VTEP kuburikidza neIP network. Yaunoda kuenda VTEP inobvisa macapsules epaketi uye yotumira kune anogamuchira akakodzera zvichibva paruzivo rweVNI.
Zvakanakira
○ Inokwanisika Kukura: VXLAN inotsigira maNetworks emagetsi anosvika mamiriyoni gumi nematanhatu (VNI), anopfuura maIDent aVLAN e4096, zvichiita kuti ive yakakodzera nzvimbo dzedata dzakakura nenzvimbo dzegore.
○ Rutsigiro rweCross-data Center: VXLAN inogona kuwedzera network yevirtual pakati penzvimbo dzakawanda dzedata munzvimbo dzakasiyana dzenzvimbo, ichiputsa zvipingamupinyi zveVLAN yechinyakare, uye yakakodzera nzvimbo dzemazuva ano dze cloud computing uye virtualization.
○ Nyoresa Network yeData Center: Kuburikidza neVXLAN, zvishandiso zvehardware zvinobva kuvagadziri vakasiyana zvinogona kushanda pamwe chete, kutsigira nzvimbo dzinogara vanhu vakawanda, uye kurerutsa dhizaini yenetwork yedata centers hombe.
Miganhu
○ Kuoma Kwakanyanya: Magadzirirwo eVXLAN akaomarara, anosanganisira kuvharwa kwemugero, magadzirirwo eVTEP, nezvimwewo, izvo zvinoda rutsigiro rwekuwedzera rwehunyanzvi uye zvinowedzera kuoma kwekushanda nekugadzirisa.
○ Kunonoka Kwema network: Nekuda kwekuwedzera kwekugadzirisa kunodiwa nemaitiro ekuvhara nekuburitsa ma network, VXLAN inogona kuunza kunonoka kwe network, kunyangwe kunonoka uku kuchiwanzova kudiki, asi kuchiri kufanira kucherechedzwa munzvimbo dzinoda kushanda zvakanyanya.
Mamiriro Ekushandisa VXLAN
○ Kushandiswa kweData Center Network Virtualization: VXLAN inoshandiswa zvakanyanya munzvimbo huru dzedata. Maseva ari munzvimbo yedata anowanzo shandisa tekinoroji ye virtualization, VXLAN inogona kubatsira kugadzira network chaiyo pakati pemaseva akasiyana epanyama, kudzivirira kuganhurirwa kweVLAN mukukura.
○ Nzvimbo yeMutengi weMutengi weMutengi: Mugore reveruzhinji kana rakavanzika, VXLAN inogona kupa network yakazvimirira yemutengi wega wega uye kuziva network yemutengi wega wega kuburikidza neVNI. Hunhu uhwu hweVXLAN hwakakodzera cloud computing yemazuva ano nenzvimbo dzemutengi weMu ...
○ Kukura Kwemambure Munzvimbo DzeData: VXLAN inonyanya kukodzera mamiriro ezvinhu apo mambure edhijitari anofanirwa kuiswa munzvimbo dzakasiyana dzedata kana nzvimbo. Nekuti VXLAN inoshandisa mambure eIP pakuvhara, inokwanisa nyore nyore kuparadzira nzvimbo dzakasiyana dzedata nenzvimbo dzenzvimbo kuti iwedzere network yedhijitari pasi rose.
VLAN vs VxLAN
VLAN neVXLAN matekinoroji ese ari maviri enetwork virtualization, asi akakodzera mamiriro akasiyana ekushandisa. VLAN yakakodzera kune network diki kana yepakati, uye inogona kupa network yakazvimiririra uye kuchengetedzeka. Simba rayo riri mukureruka kwayo, nyore kwayo kugadzirisa, uye rutsigiro rwakakura.
VXLAN tekinoroji yakagadzirirwa kugadzirisa kudiwa kwekuwedzera network yakakura munzvimbo dzemazuva ano dzedata nenzvimbo dzemakombiyuta egore. Simba reVXLAN riri mukukwanisa kwayo kutsigira mamiriyoni emanetwork evirtual, zvichiita kuti ive yakakodzera kuisa manetwork evirtualized munzvimbo dzedata. Inopfuura nekuganhurira kweVLAN mukukura, uye yakakodzera dhizaini yenetwork yakaoma.
Kunyangwe zita reVXLAN richiratidzika kunge protocol yekuwedzera yeVLAN, kutaura zvazviri, VXLAN yave yakasiyana zvikuru neVLAN nekugona kwayo kuvaka maturu echokwadi. Misiyano mikuru pakati pavo ndeiyi inotevera:
Chinhu | VLAN | VXLAN |
|---|---|---|
| Zvakajairika | IEEE 802.1Q | RFC 7348 (IETF) |
| Rutivi | Chikamu chechipiri (Data Link) | Dura rechipiri pamusoro peDura rechitatu (L2oL3) |
| Kuvharwa kwemukati | Musoro weEthernet we802.1Q | MAC-in-UDP (yakavharirwa muIP) |
| Saizi yeID | 12-bit (0-4095 VLANs) | 24-bit (mamiriyoni 16.7 eVNIs) |
| Kukwanisa kukura | Zvishoma (4094 maVLAN anoshandiswa) | Inokura zvakanyanya (inotsigira makore evanogara vakawanda) |
| Kubata Nhepfenyuro | Mafashamo echinyakare (mukati meVLAN) | Inoshandisa IP multicast kana head-end replication |
| Pamusoro | Yakaderera (4-byte VLAN tag) | Yakakwira (~50 bytes: UDP + IP + VXLAN headers) |
| Kuparadzaniswa Kwemotokari | Ehe (paVLAN) | Ehe (pamusana peVNI) |
| Kugadzira migwagwa | Hapana tunneling (yakatsetseka L2) | Inoshandisa VTEPs (VXLAN Tunnel Endpoints) |
| Nyaya Dzekushandisa | MaLAN madiki/epakati, network dzemabhizinesi | Nzvimbo dzedata regore, SDN, VMware NSX, Cisco ACI |
| Kuvimba neMuti Unopararira (STP) | Ehe (kudzivirira marobhoti) | Kwete (inoshandisa Layer 3 routing, inodzivirira matambudziko eSTP) |
| Rutsigiro rweHardware | Inotsigirwa pa switch dzese | Inoda maswichi/maNIC anokwanisa kushandiswa neVXLAN (kana software VTEPs) |
| Rutsigiro rweKufamba | Yakaganhurirwa (mukati menzvimbo imwechete yeL2) | Zvirinani (maVM anogona kufamba nepakati pema subnet) |
Chii chingaitwe neMylinking™ Network Packet Broker paNetwork Virtual Technology?
VLAN Yakanyorwa, VLAN Isina kutaurwa, VLAN Yakatsiviwa:
Yakatsigira kuenzaniswa kwechero key field mumabyte ekutanga zana nemakumi maviri nemasere epakeji. Mushandisi anogona kugadzirisa kukosha kwe offset uye kureba kwekey field uye zviri mukati, uye kusarudza mutemo wekubuda kwetraffic zvichienderana nemagadzirirwo emushandisi.
Kubvisa Tunnel Encapsulation:
Yakatsigira VxLAN, VLAN, GRE, GTP, MPLS, IPIP header yakabviswa mupaketi yedata yekutanga ndokutumirwa.
Kuzivikanwa kweProtocol yeTunneling
Inotsigirwa inoona otomatiki mapuroteni akasiyana-siyana ekugadzira tunnel akadai seGTP / GRE / PPTP / L2TP / PPPOE/IPIP. Zvichienderana nemagadzirirwo emushandisi, nzira yekuburitsa traffic inogona kushandiswa zvichienderana nechikamu chemukati kana chekunze chetunnel.
Unogona kutarisa pano kuti uwane rumwe ruzivo nezvenyaya dzakabatanaMutengesi weNetwork Packet.
Nguva yekutumira: Chikumi-25-2025
