Kana iyo Intrussion Kuongororwa System (IDS) Chishandiso chinoiswa, chidimbu chegirazi pane ruzivo rwepamhepo rwepamhepo hazvina kukwana (semuenzaniso, chikamu chimwe chete chinotenderwa, uye chiteshi chegirazi chakagarwa nemimwe michina).
Panguva ino, apo isu tisingawedzere akawanda madhiri emadono, tinogona kushandisa iyo network replication, Aggregation uye yekuendesa mudziyo kugovera iyo yakaenzana yegirazi kune yedu dhata.
Chii chinonzi network tap?
Zvimwe wakatanga kunzwa zita rekuti tap switch. Tinya (Terminal Access Point), zvakare inozivikanwa seNPB (Network Packet Broker), kana tap Aggregator?
Iyo CORE basa reTap ndeyekumisikidza pakati pegirazi rechiteshi pane yekugadzira network uye ongororo yekuongorora. Iyo tapu inounganidza iyo yakarongedzwa kana yakaparadzaniswa traffic kubva kune imwe kana kudarika zvigadzirwa network network uye kugovera iyo traffic kune imwe kana imwe data yekuongorora data.
Yakajairika network tap network deployment mamiriro
Network Tap ine zvinyorwa zviri pachena, zvakadai:
Independent Hardware
Tinya chidimbu chakaparadzana cheHardware izvo hazvikanganise mutoro pane zviripo network network, ndechimwe chakanakira pamusoro pechiteshi chegirazi.
Switch?
Network tap?
Network yakajeka
Mushure mekunge iyo tap yakabatana ne network, zvimwe zvishandiso zvese pane network hazvina kukanganiswa. Kwavari, iyo tap inoonekera semhepo, uye midziyo yekutarisa yakabatana neyekuti iyo inoongororwa kune network kune yakazara.
Tinya zvakangoita kunge chiteshi chinorema pane switch. Saka nei kuturura tapu rakaparadzana? Ngatitarisei mamwe mimwe misiyano pakati petiweki tap uye network portunganidzwa ichitendeuka.
Mutsauko 1: Network Tap iri nyore kugadzirisa pane port creating
Port Greening inoda kugadzirirwa pane switch. Kana iyo yekutarisa inoda kugadziridzwa, switch inoda kuwirirwazve zvese. Nekudaro, iyo tap chete inoda kugadziridzwa iyo yakumbirwa, iyo haina kukanganisa pane zviripo network network.
Mutsauko 2.
Port Carline pane switch inotsamwisa kuita kweiyo switch uye inokanganisa kugona kwekuchinja. Kunyanya, kana switch yakabatana neeti network inoteedzana seyenyaya, kukudzana kwekutumira kweti network yakakanganisika zvakanyanya. Tinya ishandare yakazvimirira uye haina kugadzirisa basa rekuita nekuda kwemigwagwa yemigwagwa. Naizvozvo, hazvina kuita chekuita nemutoro wemidziyo iripo network, iyo ine zvakanakira zvikuru pamusoro pechiteshi.
Mutsauko 3: Network Tap inopa yakawanda yakazara traffic traffic pane port zvinorehwa kudzokorora
Girazi rekodhi harigone kuve nechokwadi kuti zvese traffic zvinogona kuwanikwa nekuti chichinja pachayo chinosunungura mamwe macacket kana madiki madiki matema. Nekudaro, iyo tap inovimbisa kutendeka kwedata nekuti izere "replication" kuimba yemuviri.
Mutsauko 4: Iko kunonoka kwekutumira kweTap iri diki pane iyo yePort Carleting
Pane mamwe mimwe-mhedziso switches inogona kuunza latency kana ichitevedzera traffic kuyerera madhiri, pamwe kana uchitevedzera 10 / 100m ports ku giga ethernet dofts.
Kunyangwe izvi zvichiratidzwa zvakanyanya, tinotenda kuti iwo ekupedzisira maviri anoongorora haanetsi rutsigiro rwehunyanzvi hwekutsigira.
Saka, mune mamiriro api mazhinji, isu tinofanirwa kushandisa turm yekugovera network traffic? Zviri nyore, kana iwe uine zvinotevera zvinodiwa, ipapo iyo teti network ndiyo sarudzo yako yakanaka.
Network Tapa Technologies
Teerera kune zviri pamusoro, inzwa iyo tap network shoce chaiyo mashiripiti chishandiso, iyo iripo musika yakajairwa tap inoshandisa iyo yekugadzira mapoka ezvikamu zvitatu:
FPGA
- Kunyanya kushanda
- Zvakaoma kukudziridza
- mutengo wakakwira
Mams
- inoshanduka uye nyore
- zvine mwero zvekuvandudza kuoma
- Mainstream Vendors Rmi uye Cavium akamira kukura uye akatadza gare gare
Asic
- Kunyanya kushanda
- Kuwedzeredza basa rekusimudzira kwakaoma, kunyanya nekuda kwekukanganiswa kweiyo chip iri pachayo
- Iyo interface uye yakatsanangurwa inogumira neiyo chip pachayo, inokonzeresa mukuwedzera kwekuwedzera kuita
Naizvozvo, iyo yakanyanya dentity uye yakakwira kumhanya network network inoonekwa mumusika ine imba yakawanda yekuvandudzwa mukuchinjika mukushandiswa zvinoshanda. Tinya Network Sunters inoshandiswa protocol kutendeuka, kuunganidzwa kwedata, dhata yekuchera, data girazi, uye traffic traffic. Mhando huru dzakajairika dzePort inosanganisira 100G, 40G, 10G, GE, etc. Yazvino network Tap Sunter inonyanya kushandiswa mune ese-Etten Network nharaunda.
Kutumira Nguva: May-25-2022
