I-Network Packet Broker (NPB) iyidivayisi yenethiwekhi efana neswishi ehluka ngobukhulu kusukela kumadivayisi aphathekayo kuya kuma-unit cases angu-1U kanye no-2U kuya kuma-cases amakhulu kanye nezinhlelo zamabhodi. Ngokungafani neswishi, i-NPB ayishintshi ithrafikhi egeleza kuyo nganoma iyiphi indlela ngaphandle kokuthi iqondiswe ngokucacile. I-NPB ingamukela ithrafikhi ku-interface eyodwa noma ngaphezulu, yenze imisebenzi ethile echazwe kusengaphambili kuleyo thrafikhi, bese iyikhipha ku-interface eyodwa noma ngaphezulu.
Lokhu kuvame ukubizwa ngokuthi amamephu echweba anoma yikuphi, amaningi kuya kunoma yikuphi, kanye nawanoma yikuphi. Imisebenzi engenziwa isukela kokulula, njengokudlulisa noma ukulahla ithrafikhi, kuya kokuyinkimbinkimbi, njengokuhlunga ulwazi olungaphezulu kwesendlalelo sesi-5 ukuze kutholakale iseshini ethile. Ama-interface ku-NPB angaba ukuxhumana kwekhebula lethusi, kodwa ngokuvamile amafreyimu e-SFP/SFP + kanye ne-QSFP, avumela abasebenzisi ukuthi basebenzise isivinini semidiya kanye ne-bandwidth ehlukahlukene. Isethi yezici ze-NPB yakhelwe phezu komgomo wokukhulisa ukusebenza kahle kwemishini yenethiwekhi, ikakhulukazi ukuqapha, ukuhlaziya, kanye namathuluzi okuphepha.
Yimiphi imisebenzi enikezwa yi-Network Packet Broker?
Amakhono e-NPB maningi futhi angahluka kuye ngohlobo kanye nemodeli yedivayisi, yize noma yimuphi umenzeli wephakheji ofanele ukunakekela kwakhe uzofuna ukuba nesethi yamakhono ayisisekelo. Iningi le-NPB (i-NPB evame kakhulu) lisebenza ezingqimbeni ze-OSI 2 kuya ku-4.
Ngokuvamile, ungathola izici ezilandelayo ku-NPB ye-L2-4: ukuqondisa kabusha ithrafikhi (noma izingxenye zayo ezithile), ukuhlunga ithrafikhi, ukuphindaphindwa kwethrafikhi, ukuhlubula iphrothokholi, ukunqunywa kwephakethe (ukunqunywa), ukuqala noma ukuqeda amaphrothokholi ahlukahlukene e-network tunnel, kanye nokulinganisela umthwalo wethrafikhi. Njengoba kulindelekile, i-NPB ye-L2-4 ingahlunga amalebula e-VLAN, e-MPLS, amakheli e-MAC (umthombo kanye nethagethi), amakheli e-IP (umthombo kanye nethagethi), amachweba e-TCP kanye ne-UDP (umthombo kanye nethagethi), ngisho namafulegi e-TCP, kanye nethrafikhi ye-ICMP, SCTP, kanye ne-ARP. Lokhu akusona neze isici okufanele sisetshenziswe, kodwa kunalokho kunikeza umbono wokuthi i-NPB esebenza ezingqimbeni 2 kuya ku-4 ingahlukanisa futhi ihlonze ama-subset ethrafikhi. Imfuneko ebalulekile amakhasimende okufanele ayibheke ku-NPB i-backplane engavimbi.
I-Network packet Broker idinga ukukwazi ukuhlangabezana nokugeleza kwethrafikhi okugcwele kwechweba ngalinye kudivayisi. Kuhlelo lwe-chassis, ukuxhumana ne-backplane kumele futhi kukwazi ukuhlangabezana nomthwalo wethrafikhi ogcwele wamamojula axhunyiwe. Uma i-NPB ilahla iphakethe, la mathuluzi ngeke abe nokuqonda okuphelele kwenethiwekhi.
Nakuba iningi le-NPB lisekelwe ku-ASIC noma i-FPGA, ngenxa yokuqiniseka kokusebenza kokucubungula amaphakethe, uzothola ukuhlanganiswa okuningi noma ama-CPU amukelekayo (ngamamojula). Ama-Mylinking™ Network Packet Brokers (NPB) asekelwe kusisombululo se-ASIC. Lokhu ngokuvamile kuyisici esihlinzeka ngokucubungula okuguquguqukayo ngakho-ke ngeke kwenziwe kuphela kwihadiwe. Lokhu kufaka phakathi ukukhishwa kwamaphakethe, izitembu zesikhathi, ukuqedwa kokubethela kwe-SSL/TLS, ukusesha amagama angukhiye, kanye nokusesha okuvamile kokubonakaliswa. Kubalulekile ukuqaphela ukuthi ukusebenza kwayo kuncike ekusebenzeni kwe-CPU. (Isibonelo, ukusesha okuvamile kokubonakaliswa kwephethini efanayo kungaveza imiphumela yokusebenza ehlukene kakhulu kuye ngohlobo lwethrafikhi, izinga lokufanisa, kanye nomkhawulokudonsa), ngakho-ke akulula ukunquma ngaphambi kokusetshenziswa kwangempela.
Uma izici ezincike ku-CPU zivuliwe, ziba yisici esivimbelayo ekusebenzeni okuphelele kwe-NPB. Ukufika kwama-cpus nama-chip okushintsha ahleliwe, njenge-Cavium Xpliant, i-Barefoot Tofino kanye ne-Innovium Teralynx, nakho kwakha isisekelo sesethi yamakhono anwetshiwe ama-ejenti ephakethe lenethiwekhi yesizukulwane esilandelayo, Lawa mayunithi asebenzayo angaphatha ithrafikhi engaphezu kwe-L4 (evame ukubizwa ngokuthi ama-ejenti ephakethe le-L7). Phakathi kwezici ezithuthukisiwe okukhulunywe ngazo ngenhla, ukusesha amagama angukhiye kanye nokuvezwa okuvamile kuyizibonelo ezinhle zamakhono esizukulwane esilandelayo. Ikhono lokusesha imithwalo yephakethe linikeza amathuba okuhlunga ithrafikhi emazingeni eseshini kanye nohlelo lokusebenza, futhi linikeza ukulawula okuhle kunethiwekhi eguqukayo kune-L2-4.
I-Network Packet Broker ingena kanjani engqalasizinda?
I-NPB ingafakwa kwingqalasizinda yenethiwekhi ngezindlela ezimbili ezahlukene:
1- Okusemgqeni
2- Ngaphandle kwebhendi.
Indlela ngayinye inezinzuzo kanye nokungalungi futhi ivumela ukuphathwa kwethrafikhi ngezindlela ezinye izindlela ezingenakukwazi ukuzisebenzisa. Umthengisi wepakethe yenethiwekhi esemgqeni unethrafikhi yenethiwekhi yesikhathi sangempela edlula kudivayisi endleleni eya endaweni yayo. Lokhu kunikeza ithuba lokuphatha ithrafikhi ngesikhathi sangempela. Isibonelo, uma ungeza, ulungisa, noma ususa amathegi e-VLAN noma ushintsha amakheli e-IP okuya kuwo, ithrafikhi ikopishwa kusixhumanisi sesibili. Njengendlela esemgqeni, i-NPB inganikeza futhi ukuphindaphinda kwamanye amathuluzi asemgqeni, njenge-IDS, i-IPS, noma ama-firewall. I-NPB ingaqapha isimo samadivayisi anjalo futhi iqondise kabusha ithrafikhi ngokuguquguqukayo ku-hot standby uma kwenzeka ukwehluleka.
Inikeza ukuguquguquka okukhulu endleleni ithrafikhi ecutshungulwa futhi ikopishwa ngayo kumadivayisi amaningi okuqapha nokuphepha ngaphandle kokuthinta inethiwekhi yesikhathi sangempela. Iphinde inikeze ukubonakala kwenethiwekhi okungakaze kubonwe ngaphambili futhi iqinisekisa ukuthi wonke amadivayisi athola ikhophi yethrafikhi edingekayo ukuze aphathe kahle imisebenzi yawo. Ayigcini nje ngokuqinisekisa ukuthi amathuluzi akho okuqapha, okuphepha, kanye nokuhlaziya athola ithrafikhi ayidingayo, kodwa futhi nokuthi inethiwekhi yakho iphephile. Iphinde iqinisekise ukuthi idivayisi ayisebenzisi izinsiza kuthrafikhi engafuneki. Mhlawumbe i-network analyzer yakho ayidingi ukuqopha ithrafikhi eyisipele ngoba ithatha isikhala sediski esibalulekile ngesikhathi sokwenza isipele. Lezi zinto zihlungwa kalula ku-analyzer ngenkathi igcina yonke enye ithrafikhi yethuluzi. Mhlawumbe une-subnet yonke ofuna ukuyigcina ifihliwe kolunye uhlelo; futhi, lokhu kususwa kalula echwebeni lokukhipha elikhethiwe. Eqinisweni, i-NPB eyodwa ingacubungula ezinye izixhumanisi zethrafikhi ngaphakathi ngenkathi icubungula enye ithrafikhi engaphandle kwebhendi.
Isikhathi sokuthunyelwe: Mashi-09-2022
