Isingeniso
I-Network Traffic iyisamba senani lamaphakethe adlula kusixhumanisi senethiwekhi ngesikhathi seyunithi, okuyinkomba eyisisekelo yokukala umthwalo wenethiwekhi nokusebenza kokudlulisela. Ukuqapha ithrafikhi yenethiwekhi wukuthwebula idatha iyonke yamaphakethe okudluliselwa kwenethiwekhi nezibalo, futhi ukuthwebula idatha yethrafikhi yenethiwekhi kuwukuthwebula amaphakethe edatha yenethiwekhi ye-IP.
Ngokunwetshwa kwesikali senethiwekhi yesikhungo sedatha Q, uhlelo lohlelo lokusebenza luningi kakhulu, ukwakheka kwenethiwekhi kuya ngokuya kuyinkimbinkimbi, izinsizakalo zenethiwekhi ezidingweni zezinsiza zenethiwekhi ziphezulu kakhulu, izinsongo zokuphepha zenethiwekhi ziya ngokuya zikhula. , ukusebenza nokugcinwa kwezidingo ezicolisisiwe kuyaqhubeka nokuba ngcono, ukuqoqwa kwethrafikhi yenethiwekhi nokuhlaziywa sekuyindlela yokuhlaziya ebaluleke kakhulu yengqalasizinda yesikhungo sedatha. Ngokuhlaziywa okujulile kwethrafikhi yenethiwekhi, abaphathi benethiwekhi bangasheshisa indawo enephutha, bahlaziye idatha yohlelo lokusebenza, bathuthukise ukwakheka kwenethiwekhi, ukusebenza kwesistimu nokulawula ukuphepha ngendlela enembile, futhi basheshise indawo enephutha. Ukuqoqwa kwethrafikhi yenethiwekhi kuyisisekelo sohlelo lokuhlaziywa kwethrafikhi. Inethiwekhi ebanzi, enengqondo futhi ephumelelayo yokubamba i-traffic iyasiza ekuthuthukiseni ukusebenza kahle kokuthwebula kwethrafikhi yenethiwekhi, ukuhlunga nokuhlaziya, ukuhlangabezana nezidingo zokuhlaziywa kwethrafikhi kusuka kuma-engeli ahlukene, ukwandisa inethiwekhi nokusebenza kwezinkomba zebhizinisi, nokuthuthukisa ulwazi lomsebenzisi nokwaneliseka.
Kubaluleke kakhulu ukutadisha izindlela namathuluzi wokuthunjwa kwethrafikhi yenethiwekhi ukuze uqonde ngokuphumelelayo nokusebenzisa inethiwekhi, ukuqapha ngokunembile nokuhlaziya inethiwekhi.
Inani Lokuqoqwa Kwethrafikhi Yenethiwekhi/Ukuthwebula
Ngokusebenza nokugcinwa kwesikhungo sedatha, ngokusungulwa kwenkundla yokuthwebula inethiwekhi yenethiwekhi ehlangene, kuhlanganiswe nenkundla yokuqapha nokuhlaziya kungathuthukisa kakhulu ukusebenza nokuphathwa kokugcinwa kanye nezinga lokuphatha ukuqhubeka kwebhizinisi.
1. Nikeza Umthombo Wedatha Wokuqapha Nokuhlaziya: Ithrafikhi yokusebenzisana kwebhizinisi nengqalasizinda yenethiwekhi etholwe ukuthwebula kwethrafikhi yenethiwekhi inganikeza umthombo wedatha odingekayo wokuqapha inethiwekhi, ukuqapha ukuphepha, idatha enkulu, ukuhlaziywa kokuziphatha kwekhasimende, ukuhlaziywa kwezidingo zesu lokufinyelela nokwenza kahle, zonke izinhlobo zamapulatifomu okuhlaziya okubukwayo, kanye nokuhlaziywa kwezindleko, ukunwetshwa kwesicelo kanye nokufuduka.
2. Ikhono Eliphelele Lokulandela Ubufakazi Bephutha: ngokusebenzisa ukuthunjwa kwethrafikhi yenethiwekhi, ingakwazi ukubona ukuhlaziya emuva kanye nokuxilongwa kwephutha kwedatha yomlando, inikeze ukusekelwa kwedatha yomlando yokuthuthukiswa, isicelo kanye neminyango yebhizinisi, futhi ixazulule ngokuphelele inkinga yokubamba ubufakazi obunzima, ukusebenza kahle okuphansi kanye ngisho nokuphika.
3. Thuthukisa Ukusebenza Kahle Kokuphatha Amaphutha. Ngokuhlinzeka ngomthombo wedatha obumbene wenethiwekhi, ukuqapha kohlelo lokusebenza, ukuqapha ukuphepha nezinye izinkundla, kungaqeda ukungahambisani nokulingana kolwazi oluqoqwe amapulatifomu okuqala okuqapha, kuthuthukise ukusebenza kahle kokusingatha zonke izinhlobo zezimo eziphuthumayo, kusheshe kutholwe inkinga, kuqalise kabusha. ibhizinisi, futhi uthuthukise izinga lokuqhubeka kwebhizinisi.
Ukuhlelwa Kweqoqo Lethrafikhi Yenethiwekhi/Ukuthwebula
Ukuthwebula ithrafikhi yenethiwekhi ikakhulukazi ukuqapha nokuhlaziya izici nezinguquko zokugeleza kwedatha yenethiwekhi yekhompyutha ukuze kubambe izici zethrafikhi zayo yonke inethiwekhi. Ngokusho kwemithombo ehlukene yethrafikhi yenethiwekhi, ithrafikhi yenethiwekhi ihlukaniswe ngethrafikhi ye-port node yenethiwekhi, ithrafikhi ye-IP yokuphela-kuya-ekupheleni, ithrafikhi yesevisi yezinsizakalo ezithile kanye nethrafikhi yedatha yesevisi yomsebenzisi ephelele.
1. I-Network Node Port Traffic
I-traffic yembobo yenodi yenethiwekhi isho izibalo zolwazi zamaphakethe angenayo naphumayo embobeni yedivayisi yenodi yenethiwekhi. Kuhlanganisa inombolo yamaphakethe edatha, inombolo yamabhayithi, ukusatshalaliswa kosayizi wephakethe, ukulahlekelwa kwephakethe nolunye ulwazi lwezibalo olungafundi.
2. I-IP Traffic yokuphela kuya ekupheleni
Ithrafikhi ye-IP yokuphela ukuya ekupheleni isho isendlalelo senethiwekhi ukusuka emthonjeni kuya endaweni! Izibalo zamaphakethe we-P. Uma kuqhathaniswa nethrafikhi yembobo yenodi yenethiwekhi, ithrafikhi ye-IP yokuphela ukuya ekupheleni iqukethe ulwazi oluningi. Ngokuyihlaziya, singakwazi ukwazi inethiwekhi yendawo abasebenzisi abafinyelela kuyo inethiwekhi, okuyisisekelo esibalulekile sokuhlaziya inethiwekhi, ukuhlela, ukuklama kanye nokwenza kahle.
3. I-Traffic Yesendlalelo Sesevisi
Ithrafikhi yesendlalelo sesevisi iqukethe ulwazi mayelana nezimbobo zesendlalelo sesine (i-TCP day layer) ngaphezu kwethrafikhi ye-IP yokuphela ukuya ekupheleni. Ngokusobala, iqukethe ulwazi mayelana nezinhlobo zezinsizakalo zohlelo lokusebenza ezingasetshenziselwa ukuhlaziya okuningiliziwe.
4. Qedela I-Traffic Yedatha Yebhizinisi Lomsebenzisi
Ithrafikhi yedatha yesevisi yomsebenzisi ephelele iphumelela kakhulu ekuhlaziyeni ukuphepha, ukusebenza nezinye izici. Ukuthwebula idatha yesevisi yomsebenzisi ephelele kudinga ikhono lokuthwebula eliqine kakhulu kanye nesivinini esikhulu sokugcina idiski enzima nomthamo. Isibonelo, ukuthwebula amaphakethe edatha angenayo ezigebengu ze-inthanethi kungamisa ubugebengu obuthile noma kuthole ubufakazi obubalulekile.
Indlela Ejwayelekile Yokuqoqwa Kwethrafikhi Yenethiwekhi/Ukuthwebula
Ngokwezici nezindlela zokucubungula zokuthunjwa kwethrafikhi yenethiwekhi, ukuthunjwa kwethrafikhi kungahlukaniswa ngezigaba ezilandelayo: iqoqo eliyingxenye kanye neqoqo eliphelele, iqoqo elisebenzayo kanye neqoqo le-passive, iqoqo eliphakathi nendawo kanye neqoqo elisabalalisiwe, ukuqoqwa kwehadiwe kanye nokuqoqwa kwesoftware, njll. ukuthuthukiswa kokuqoqwa kwethrafikhi, ezinye izindlela zokuqoqwa kwethrafikhi ezisebenzayo nezisebenzayo seziye zakhiqizwa ngokusekelwe emibonweni yokuhlukanisa engenhla.
Ubuchwepheshe bokuqoqwa kwethrafikhi yenethiwekhi ikakhulukazi buhlanganisa ubuchwepheshe bokuqapha obusekelwe esibukweni sethrafikhi, ubuchwepheshe bokuqapha obusekelwe ekuthathweni kwephakethe lesikhathi sangempela, ubuchwepheshe bokuqapha obusekelwe ku-SNMP/RMON, kanye nobuchwepheshe bokuqapha obusekelwe kuphrothokholi yokuhlaziywa kwethrafikhi yenethiwekhi njenge-NetiowsFlow. Phakathi kwazo, ubuchwepheshe bokuqapha obusekelwe esibukweni sethrafikhi buhlanganisa indlela ye-TAP ebonakalayo kanye nendlela yokusabalalisa ngokusekelwe ku-hardware probe.
1. Ngokusekelwe ku-Traffic Mirror Monitoring
Isimiso sobuchwepheshe bokuqapha ithrafikhi yenethiwekhi esekelwe esibukweni esigcwele ukuzuza ikhophi engalahleki kanye nokuqoqwa kwesithombe sethrafikhi yenethiwekhi ngokusebenzisa isibuko sechweba sezinto zenethiwekhi ezifana nokushintsha noma izinto ezengeziwe ezifana ne-optical splitter kanye ne-network probe. Ukuqapha kwayo yonke inethiwekhi kudinga ukusebenzisa uhlelo olusabalalisiwe, kuthunyelwa uphenyo kusixhumanisi ngasinye, bese kuqoqwa idatha yawo wonke ama-probe ngeseva yangemuva kanye nesizindalwazi, nokwenza ukuhlaziya kwethrafikhi kanye nombiko wesikhathi eside wayo yonke inethiwekhi. Uma kuqhathaniswa nezinye izindlela zokuqoqa ithrafikhi, isici esibaluleke kakhulu sokuqoqwa kwezithombe zethrafikhi ukuthi ingahlinzeka ngolwazi olunothile lwesendlalelo sohlelo lokusebenza.
2. Ngokusekelwe ku-Real-time Packet Capture Monitoring
Ngokusekelwe kubuchwepheshe bokuhlaziya ukuthwebula iphakethe lesikhathi sangempela, ngokuyinhloko ihlinzeka ngokuhlaziywa kwedatha enemininingwane kusukela kusendlalelo esibonakalayo kuya kwesendlalelo sohlelo lokusebenza, okugxile ekuhlaziyweni kwephrothokholi. Ithwebula amaphakethe esixhumi esibonakalayo ngesikhathi esifushane ukuze ihlaziywe, futhi ivame ukusetshenziselwa ukubona ukuxilonga okusheshayo kanye nesixazululo sokusebenza kwenethiwekhi kanye nephutha. Inamaphutha alandelayo: ayikwazi ukuthwebula amaphakethe anethrafikhi enkulu nesikhathi eside, futhi ayikwazi ukuhlaziya inkambiso yethrafikhi yabasebenzisi.
3. I-Monitoring Technology esekelwe ku-SNMP/RMON
Ukuqapha ithrafikhi okusekelwe kuphrothokholi ye-SNMP/RMON kuqoqa okuhlukile okuhlobene nezisetshenziswa ezithile nolwazi lwethrafikhi ngedivayisi yenethiwekhi ye-MIB. Kufaka phakathi: inani lamabhayithi okokufaka, inani lamaphakethe angasakazwanga, inani lamaphakethe okusakaza okokufaka, inani lehlayo lephakethe lokufaka, inani lamaphutha ephakethe lokufaka, inani lamaphakethe ephrothokholi angaziwa, inani lamaphakethe okukhiphayo, inani lokungakhiqizi. -amaphakethe okusakaza, inani lamaphakethe okusakaza okukhiphayo, inombolo yokwehla kwephakethe lokukhipha, inani lamaphutha wephakethe lokukhipha, njll. Njengoba ama-routers amaningi manje esekela i-SNMP evamile, inzuzo yale ndlela ukuthi akukho mishini eyengeziwe yokuthola idatha edingekayo. Kodwa-ke, ihlanganisa kuphela okuqukethwe okuyisisekelo njengenani lamabhayithi kanye nenani lamaphakethe, okungafanelekile ukuqapha kwethrafikhi okuyinkimbinkimbi.
4. I-Netflow-based Traffic Monitoring Technology
Ngokusekelwe ekuqashweni kwethrafikhi kwe-Nethow, ulwazi lwethrafikhi olunikeziwe lunwetshwa enanini lamabhayithi namaphakethe ngokusekelwe kuzibalo ezinhlanu (ikheli le-IP lomthombo, ikheli le-IP okuyiwa kulo, imbobo yomthombo, imbobo okuyiwa kuyo, inombolo yephrothokholi) izibalo, ezingahlukanisa ukugeleza kusiteshi ngasinye esinengqondo. Indlela yokuqapha inekhono eliphezulu lokuqoqwa kolwazi, kodwa ayikwazi ukuhlaziya ulwazi lwesendlalelo esibonakalayo nesendlalelo sesixhumanisi sedatha, futhi idinga ukusebenzisa ezinye izinsiza zomzila. Ngokuvamile idinga ukunamathisela imojula yokusebenza ehlukile kumpahla yenethiwekhi.
Isikhathi sokuthumela: Oct-17-2024
