Network Packet Broker (NPB) inochinja senge networking mudziyo inokura kubva pamidziyo inotakurika kuenda ku1U uye 2U unit makesi kune hombe makesi uye mabhodhi masisitimu.Kusiyana neshanduko, iyo NPB haichinji traffic inoyerera kuburikidza nayo chero nzira kunze kwekunge yakarairwa zvakajeka.NPB inogona kugashira traffic pane imwe kana anopfuura mainterfaces, kuita mamwe mabasa akafanotsanangurwa pane iyo traffic, uye wozoiburitsa kune imwe kana anopfuura mainterface.
Aya anowanzo kunzi chero-kune-chero, akawanda-kune-chero, uye chero-kune-akawanda mamepu echiteshi.Mabasa anogona kuitwa anosiyana kubva nyore, sekuendesa mberi kana kurasa traffic, kune yakaoma, sekusefa ruzivo pamusoro peiyo 5 kuti uone imwe chikamu.Interfaces paNPB inogona kuve yemhangura tambo yekubatanidza, asi inowanzova SFP/SFP + uye QSFP mafuremu, ayo anobvumira vashandisi kushandisa akasiyana midhiya uye bandwidth kumhanya.NPB's feature set yakavakirwa pamusimboti wekuwedzera kugona kwetiweki zvishandiso, kunyanya kutarisa, kuongorora, uye kuchengetedza maturusi.
Ndeapi mabasa anopihwa neNetwork Packet Broker?
Kugona kweNPB kwakawanda uye kunogona kusiyana zvichienderana nerudzi uye modhi yechishandiso, kunyangwe chero mumiriri wepasuru akakodzera munyu wake anoda kuve nepakati seti yekugona.Yakawanda NPB (yakajairika NPB) inoshanda paOSI layer 2 kusvika 4.
Kazhinji, iwe unogona kuwana zvinotevera maficha paNPB yeL2-4: traffic (kana chaiyo zvikamu zvayo) redirection, traffic kusefa, traffic replication, protocol stripping, packet slicing (truncation), kutanga kana kumisa akasiyana network tunnel protocol, uye kuyera kuyera kune traffic.Sezvinotarisirwa, L2-4's NPB inogona kusefa VLAN, MPLS mavara, MAC kero (mabviro uye chinangwa), IP kero (mabviro uye chinangwa), TCP uye UDP ports (mabviro uye chinangwa), uye kunyange TCP mireza, pamwe neICMP, SCTP, uye ARP traffic.Ichi hachisi chinhu chinofanirwa kushandiswa, asi chinopa zano rekuti NPB inoshanda sei pamatanho 2 kuburikidza ne4 inogona kupatsanura uye kuona traffic subset.Chinhu chakakosha chinodiwa kuti vatengi vatarise muNPB isiri-kuvharira backplane.
Network packet Broker inofanirwa kukwanisa kusangana neiyo yakazara traffic traffic yechiteshi chega chega pane mudziyo.Mune chassis system, iyo yekubatanidza neiyo backplane inofanirwawo kukwanisa kusangana yakazara traffic traffic yemamodule akabatana.Kana iyo NPB ikadonhedza pakiti, zvishandiso izvi hazvizove nekunzwisisa kwakazara kwetiweki.
Kunyangwe iyo yakawanda yeNPB yakavakirwa paASIC kana FPGA, nekuda kwechokwadi chekuita kwepakeji kugadzirisa, iwe unowana akawanda akabatanidzwa kana maCPU anogamuchirwa (kuburikidza nemamodule).Iyo Mylinking™ Network Packet Brokers(NPB) yakavakirwa paASIC mhinduro.Ichi chinowanzova chinhu chinopa inochinjika kugadzirisa uye saka haigone kuitwa chete muhardware.Izvi zvinosanganisira kudonhedza packet, timestamps, SSL/TLS decryption, keyword search, uye nguva dzose kutsvaga kutaura.Zvakakosha kuziva kuti kushanda kwayo kunoenderana neCPU performance.(Semuenzaniso, tsvakiridzo dzenguva dzose dzepatani imwe chete dzinogona kuburitsa mhedzisiro dzakasiyana-siyana zvichienderana nerudzi rwetraffic, mwero wekuenzanisa, uye bandwidth), saka hazvisi nyore kuziva kusati kwaitwa chaiko.
Kana CPU-inotsamira maficha akagoneswa, anove chinhu chinodzikamisa mukuita kwese kweNPB.Kuuya kwecpus uye programmable switching chips, seCavium Xpliant, Barefoot Tofino uye Innovium Teralynx, zvakare yakagadzira hwaro hwekuwedzera kweseti yekugona kune inotevera-chizvarwa network packet agents, Aya mayuniti anoshanda anogona kubata traffic pamusoro peL4 (inowanzo kutaurwa nezvayo. seL7 packet agents).Pakati pezvinhu zvepamusoro zvakataurwa pamusoro apa, keyword uye nguva dzose kutsvaga kutsvaga mienzaniso yakanaka yechizvarwa chinotevera.Iko kugona kutsvaga packet payloads kunopa mikana yekusefa traffic pachikamu uye mazinga ekushandisa, uye inopa kutonga kwakaringana pamusoro petiweki inoshanduka kupfuura iyo L2-4.
Network Packet Broker inopinda sei mune zvivakwa?
Iyo NPB inogona kuiswa mune network network nenzira mbiri dzakasiyana:
1- Inline
2- Kunze-kwe-bhendi.
Imwe neimwe nzira ine zvakanakira nezvayakaipira uye inogonesa kufambisa traffic nenzira dzisingagone kuitwa nedzimwe nzira.Iyo inline network packet broker ine chaiyo-nguva network traffic inodarika mudziyo ichienda kwainoenda.Izvi zvinopa mukana wekunyengedza traffic munguva chaiyo.Semuenzaniso, pakuwedzera, kugadzirisa, kana kudzima tag eVLAN kana kushandura kero dzeIP kwaunoenda, traffic inokopwa kune yechipiri link.Senzira yemukati, NPB inogona zvakare kupa redundancy kune mamwe maturusi emukati, senge IDS, IPS, kana firewall.NPB inogona kutarisa mamiriro ezvishandiso zvakadaro uye zvine simba kudzoreredza nzira kune inopisa yekumira kana ikatadza.
Inopa kuchinjika kukuru mukugadzirisa traffic uye kudzokororwa kune akawanda ekutarisa uye kuchengetedza zvishandiso pasina kukanganisa chaiyo-nguva network.Inopawo kusati kwamboitika kuoneka kwetiweki uye inova nechokwadi chekuti zvishandiso zvese zvinogashira kopi yetraffic inodiwa kubata nemazvo mabasa avo.Izvo hazvingove nechokwadi chekuti yako yekutarisa, chengetedzo, uye yekuongorora maturusi anowana traffic yavanoda, asiwo kuti network yako yakachengeteka.Iyo zvakare inovimbisa kuti chishandiso hachidye zviwanikwa pane zvisingadiwe traffic.Zvichida network yako analyzer haidi kurekodha backup traffic nekuti inotora yakakosha dhisiki nzvimbo panguva yekuchengetedza.Izvi zvinhu zviri nyore kusefa kunze kweanalyzer uku uchichengetedza ese mamwe traffic kune chishandiso.Zvichida une subnet yose yaunoda kuchengeta yakavanzwa kubva kune imwe nzira;zvakare, izvi zvinobviswa nyore pane yakasarudzwa goho port.Muchokwadi, imwe NPB inogona kugadzirisa mamwe matraffic link inline uchigadzira imwe kunze-kwe-bhendi traffic.
Nguva yekutumira: Kurume-09-2022
