Isingeniso
I-Network Traffic yinani eliphelele lamaphakethe adlula kusixhumanisi senethiwekhi ngesikhathi seyunithi, okuyinkomba eyisisekelo yokukala umthwalo wenethiwekhi nokusebenza kokudlulisa. Ukuqapha ithrafikhi yenethiwekhi kuwukuthwebula idatha iyonke yamaphakethe okudlulisa inethiwekhi nezibalo, kanti ukuthwebula idatha yethrafikhi yenethiwekhi kuwukuthwebula amaphakethe edatha ye-IP yenethiwekhi.
Ngokwandiswa kwesilinganiso senethiwekhi yesikhungo sedatha i-Q, uhlelo lokusebenza luya luningi kakhulu, isakhiwo senethiwekhi siya ngokuya siyinkimbinkimbi, izinsizakalo zenethiwekhi ezidingweni zezinsiza zenethiwekhi ziphakeme kakhulu, izinsongo zokuphepha kwenethiwekhi ziya ngokuya zikhula, ukusebenza nokugcinwa kwezidingo ezilungisiwe kuyaqhubeka nokuthuthuka, ukuqoqwa nokuhlaziywa kwethrafikhi yenethiwekhi sekuyindlela yokuhlaziya ebalulekile yengqalasizinda yesikhungo sedatha. Ngokuhlaziywa okujulile kwethrafikhi yenethiwekhi, abaphathi benethiwekhi bangasheshisa indawo yamaphutha, bahlaziye idatha yesicelo, balungise isakhiwo senethiwekhi, ukusebenza kwesistimu kanye nokulawula ukuphepha ngendlela enembile, futhi basheshise indawo yamaphutha. Ukuqoqwa kwethrafikhi yenethiwekhi kuyisisekelo sohlelo lokuhlaziya ithrafikhi. Inethiwekhi yokubamba ithrafikhi ephelele, enengqondo futhi ephumelelayo iyasiza ekuthuthukiseni ukusebenza kahle kokubamba, ukuhlunga nokuhlaziya ithrafikhi yenethiwekhi, ukuhlangabezana nezidingo zokuhlaziywa kwethrafikhi kusuka ezinhlangothini ezahlukene, ukwenza ngcono izinkomba zokusebenza kwenethiwekhi nezebhizinisi, kanye nokuthuthukisa ulwazi lomsebenzisi kanye nokwaneliseka.
Kubaluleke kakhulu ukutadisha izindlela namathuluzi okuthola ithrafikhi yenethiwekhi ukuze kuqondwe futhi kusetshenziswe inethiwekhi ngempumelelo, kuqashwe futhi kuhlaziywe ngokunembile inethiwekhi.
Inani Lokuqoqwa/Ukuthwebula Ithrafikhi Yenethiwekhi
Ngokusebenza nokugcinwa kwesikhungo sedatha, ngokusungulwa kwepulatifomu yokubamba ithrafikhi yenethiwekhi ehlanganisiwe, kuhlanganiswe nepulatifomu yokuqapha nokuhlaziya kungathuthukisa kakhulu ukuphathwa kokusebenza nokugcinwa kanye nezinga lokuphathwa kokuqhubeka kwebhizinisi.
1. Nikeza Umthombo Wedatha Yokuqapha Nokuhlaziya: Ithrafikhi yokuxhumana kwebhizinisi engqalasizinda yenethiwekhi etholwe ngokubamba ithrafikhi yenethiwekhi inganikeza umthombo wedatha odingekayo wokuqapha inethiwekhi, ukuqapha ukuphepha, idatha enkulu, ukuhlaziywa kokuziphatha kwamakhasimende, ukuhlaziywa kanye nokwenza ngcono izidingo zesu lokufinyelela, zonke izinhlobo zamapulatifomu okuhlaziya okubonakalayo, kanye nokuhlaziywa kwezindleko, ukwandiswa kohlelo lokusebenza kanye nokufuduka.
2. Ikhono Lokulandelela Ubufakazi Bokuphutha Eliphelele: ngokuthwebula ithrafikhi yenethiwekhi, ingakwazi ukuhlaziya emuva kanye nokuxilongwa kwamaphutha kwedatha yomlando, inikeze ukwesekwa kwedatha yomlando yokuthuthukiswa, iminyango yezicelo kanye neyebhizinisi, futhi ixazulule ngokuphelele inkinga yokubamba ubufakazi okunzima, ukusebenza kahle okuphansi kanye nokuphikwa.
3. Thuthukisa Ukusebenza Kahle Kokuphathwa Kwamaphutha. Ngokuhlinzeka ngomthombo wedatha ohlangene wenethiwekhi, ukuqapha izinhlelo zokusebenza, ukuqapha ukuphepha kanye nezinye izinkundla, kungasusa ukungahambisani kanye nokungalingani kolwazi oluqoqwe yizinkundla zokuqala zokuqapha, kuthuthukise ukusebenza kahle kokusingatha zonke izinhlobo zezimo eziphuthumayo, kusheshe kutholakale inkinga, kuqalwe kabusha ibhizinisi, futhi kuthuthukiswe izinga lokuqhubeka kwebhizinisi.
Ukuhlukaniswa Kokuqoqwa/Ukuthwebula Ithrafikhi Yenethiwekhi
Ukuthwebula ithrafikhi yenethiwekhi ngokuyinhloko kuhloswe ukuqapha nokuhlaziya izici nezinguquko zokugeleza kwedatha yenethiwekhi yekhompyutha ukuze kuqondwe izici zethrafikhi yenethiwekhi yonke. Ngokusho kwemithombo ehlukene yethrafikhi yenethiwekhi, ithrafikhi yenethiwekhi ihlukaniswe ngethrafikhi yembobo yenethiwekhi, ithrafikhi ye-IP kusukela ekuqaleni kuya ekugcineni, ithrafikhi yesevisi yezinsizakalo ezithile kanye nethrafikhi yedatha yesevisi yomsebenzisi ephelele.
1. Ithrafikhi Yezimbobo Ze-Network Node
Ithrafikhi ye-node yenethiwekhi ibhekisela kuzibalo zolwazi zamaphakethe angenayo naphumayo e-node yedivayisi ye-node yenethiwekhi. Ihlanganisa inani lamaphakethe edatha, inani lama-byte, ukusatshalaliswa kosayizi wephakethe, ukulahleka kwamaphakethe kanye nolunye ulwazi lwezibalo olungeyona eyokufunda.
2. Ithrafikhi ye-IP kusukela ekuqaleni kuze kube sekupheleni
Ithrafikhi ye-IP kusukela ekuqaleni kuze kube sekupheleni ibhekisela kungqimba lwenethiwekhi kusukela emthonjeni kuya endaweni oya kuyo! Izibalo zamaphakethe e-P. Uma kuqhathaniswa nethrafikhi ye-node yenethiwekhi, ithrafikhi ye-IP kusukela ekuqaleni kuze kube sekupheleni iqukethe ulwazi oluningi kakhulu. Ngokuhlaziya kwayo, singayazi inethiwekhi yendawo abasebenzisi abakunethiwekhi abayifinyelelayo, okuyisisekelo esibalulekile sokuhlaziywa kwenethiwekhi, ukuhlela, ukuklama kanye nokwenza ngcono.
3. Ithrafikhi Yezingqimba Zesevisi
Ithrafikhi yesendlalelo sesevisi iqukethe ulwazi mayelana namachweba esendlalelo sesine (isendlalelo sosuku lwe-TCP) ngaphezu kwethrafikhi ye-IP kusukela ekuqaleni kuya ekugcineni. Ngokusobala, iqukethe ulwazi mayelana nezinhlobo zezinsizakalo zohlelo lokusebenza ezingasetshenziswa ekuhlaziyeni okuningiliziwe.
4. Ithrafikhi Yedatha Yebhizinisi Lomsebenzisi Ephelele
Ithrafikhi ephelele yedatha yesevisi yomsebenzisi isebenza kahle kakhulu ekuhlaziyweni kokuphepha, ukusebenza kanye nezinye izici. Ukuthwebula idatha ephelele yesevisi yomsebenzisi kudinga ikhono lokuthwebula elinamandla kakhulu kanye nesivinini esikhulu kakhulu sokugcina i-hard disk kanye nomthamo. Isibonelo, ukuthwebula amaphakethe edatha angenayo abaduni kungamisa ubugebengu obuthile noma kuthole ubufakazi obubalulekile.
Indlela Ejwayelekile Yokuqoqwa/Ukuthwebula Ithrafikhi Yenethiwekhi
Ngokwezici kanye nezindlela zokucubungula zokubamba ithrafikhi yenethiwekhi, ukubamba ithrafikhi kungahlukaniswa ngezigaba ezilandelayo: ukuqoqwa okungaphelele kanye nokuqoqwa okuphelele, ukuqoqwa okusebenzayo kanye nokuqoqwa okungasebenzi, ukuqoqwa okuhlanganisiwe kanye nokuqoqwa okusatshalaliswa, ukuqoqwa kwehadiwe kanye nokuqoqwa kwesofthiwe, njll. Ngokuthuthuka kokuqoqwa kwethrafikhi, ezinye izindlela zokuqoqa ithrafikhi ezisebenzayo nezisebenzayo ziye zakhiqizwa ngokusekelwe emibonweni yokuhlukaniswa engenhla.
Ubuchwepheshe bokuqoqwa kwethrafikhi yenethiwekhi buhlanganisa kakhulu ubuchwepheshe bokuqapha obusekelwe esibukweni sethrafikhi, ubuchwepheshe bokuqapha obusekelwe ekuthathweni kwephakethe ngesikhathi sangempela, ubuchwepheshe bokuqapha obusekelwe ku-SNMP/RMON, kanye nobuchwepheshe bokuqapha obusekelwe kuphrothokholi yokuhlaziya ithrafikhi yenethiwekhi njenge-NetiowsFlow. Phakathi kwazo, ubuchwepheshe bokuqapha obusekelwe esibukweni sethrafikhi buhlanganisa indlela ye-TAP ebonakalayo kanye nendlela esatshalaliswa ngokusekelwe kuprobe yehadiwe.
1. Ngokusekelwe ekuqapheni izibuko zethrafikhi
Umgomo wobuchwepheshe bokuqapha ithrafikhi yenethiwekhi osekelwe esibukweni esigcwele ukufeza ukuqoqwa kwezithombe nokukopishwa okungenakulahlekelwa kwethrafikhi yenethiwekhi ngesibuko se-port semishini yenethiwekhi efana namaswishi noma imishini eyengeziwe njenge-optical splitter kanye ne-network probe. Ukuqapha inethiwekhi yonke kudinga ukusebenzisa uhlelo olusatshalaliswe, kufakwe i-probe kusixhumanisi ngasinye, bese kuqoqwa idatha yazo zonke i-probe ngeseva yangemuva kanye nedathabheyisi, futhi kwenziwe ukuhlaziywa kwethrafikhi kanye nombiko wesikhathi eside wenethiwekhi yonke. Uma kuqhathaniswa nezinye izindlela zokuqoqa ithrafikhi, isici esibaluleke kakhulu sokuqoqwa kwesithombe sethrafikhi ukuthi singanikeza ulwazi olucebile lwesendlalelo sohlelo lokusebenza.
2. Ngokusekelwe ekuqaphelweni kokuthwebula iphakethe ngesikhathi sangempela
Ngokusekelwe kubuchwepheshe bokuhlaziya ukubamba amaphakethe ngesikhathi sangempela, ihlinzeka kakhulu ngokuhlaziywa kwedatha okuningiliziwe kusukela kungqimba ebonakalayo kuya kungqimba yohlelo lokusebenza, igxile ekuhlaziyweni kwephrothokholi. Ibamba amaphakethe esibonakalayo ngesikhathi esifushane sokuhlaziywa, futhi ivame ukusetshenziselwa ukuqaphela ukuxilongwa okusheshayo kanye nesixazululo sokusebenza kwenethiwekhi kanye nephutha. Inamaphutha alandelayo: ayikwazi ukubamba amaphakethe anethrafikhi enkulu nesikhathi eside, futhi ayikwazi ukuhlaziya ukuthambekela kwethrafikhi yabasebenzisi.
3. Ubuchwepheshe bokuqapha obusekelwe ku-SNMP/RMON
Ukuqapha ithrafikhi okusekelwe kuphrothokholi ye-SNMP/RMON kuqoqa ezinye izinto ezihlobene nemishini ethile kanye nolwazi lwethrafikhi ngedivayisi yenethiwekhi i-MIB. Kufaka phakathi: inani lama-byte okufaka, inani lama-packet angasakazwanga, inani lama-packet okusakaza okufakayo, inani lokwehla kwama-packet okufakayo, inani lamaphutha e-packet okufakayo, inani lama-packet okufaka angaziwa okufakayo, inani lama-packet okukhiphayo, inani lama-packet angasakazwanga okukhiphayo, inani lama-packet okusakaza okukhiphayo, inani lokwehla kwama-packet okukhiphayo, inani lamaphutha e-packet okukhiphayo, njll. Njengoba ama-router amaningi manje esekela i-SNMP ejwayelekile, inzuzo yale ndlela ukuthi akukho mishini eyengeziwe yokuthola idatha edingekayo. Kodwa-ke, ifaka kuphela okuqukethwe okuyisisekelo njengenani lama-byte kanye nenani lama-packet, okungafaneleki ukuqapha ithrafikhi okuyinkimbinkimbi.
4. Ubuchwepheshe Bokuqapha Ithrafikhi Obusekelwe ku-Netflow
Ngokusekelwe ekuqapheni ithrafikhi kweNethow, ulwazi lwethrafikhi olunikeziwe lunwetshwa lube yinani lama-byte namaphakethe ngokusekelwe kuzibalo ze-five-tuple (ikheli le-IP lomthombo, ikheli le-IP lomthombo, i-port yomthombo, i-port yomthombo, inombolo yephrothokholi), ezingahlukanisa ukugeleza kwesiteshi ngasinye esinengqondo. Indlela yokuqapha inokusebenza kahle kakhulu kokuqoqwa kolwazi, kodwa ayikwazi ukuhlaziya ulwazi lwesendlalelo esingokoqobo kanye nesendlalelo sesixhumanisi sedatha, futhi idinga ukusebenzisa ezinye izinsiza zomzila. Ngokuvamile idinga ukunamathisela imojuli yomsebenzi ehlukile emishinini yenethiwekhi.
Isikhathi sokuthunyelwe: Okthoba-17-2024
