Bypass TAP (izwi kandi nka bypass switch) itanga uburyo bwo kwinjira mu buryo butekanye ku bikoresho by’umutekano nka IPS na next-generation firewalls (NGFWS). Bypass switch ishyirwa hagati y’ibikoresho by’umuyoboro n’imbere y’ibikoresho by’umutekano w’umuyoboro kugira ngo hatangwe ahantu hizewe hagati y’umuyoboro n’urwego rw’umutekano. Itanga ubufasha bwuzuye ku miyoboro n’ibikoresho by’umutekano kugira ngo hirindwe ibyago byo gucika kw’umuyoboro.
Igisubizo 1 1 Umurongo wo Guhuza Urubuga rwa Interineti (Guhindura Guhuza) - Igenga
Porogaramu:
Bypass Network Tap (Bypass Switch) ihuza ibikoresho bibiri by'umuyoboro binyuze kuri Link ports hanyuma igahuza na seriveri y'undi muntu binyuze kuri Device ports.
Imbarutso ya Bypass Network Tap (Bypass Switch) ishyirwa kuri Ping, yohereza ubusabe bwa Ping bukurikiranye kuri seriveri. Iyo seriveri ihagaritse gusubiza pings, Bypass Network Tap (Bypass Switch) yinjira mu buryo bwa bypass.
Iyo seriveri itangiye kongera gusubiza, Bypass Network Tap (Bypass Switch) isubira kuri throughput mode.
Iyi porogaramu ishobora gukora gusa binyuze muri ICMP (Ping). Nta paki z'umutima zikoreshwa mu kugenzura isano iri hagati ya seriveri na Bypass Network Tap (Bypass Switch).
Umuhuza wa paki y'umuyoboro wa 2 + Umuhuza wa paki y'umuyoboro wa Bypass (Bypass Switch)
Umuhuza wa Pake y'Umuyoboro (NPB) + Gukoresha Kohereza Urubuga (Guhindura Kohereza) -- Imiterere isanzwe
Porogaramu:
Iyi "Bypass Network Tap" (Bypass Switch) ihuza ibikoresho bibiri by'umuyoboro binyuze kuri Link ports no kuri Network Packet Broker (NPB) binyuze kuri Device ports. Seriveri y'umuntu wa gatatu ihuza na Network Packet Broker (NPB) ikoresheje insinga 2 za 1G z'umuringa. Network Packet Broker (NPB) yohereza amapaki y'umutima kuri seriveri binyuze kuri port #1 kandi ishaka kongera kuyakira kuri port #2.
Imbarutso ya Bypass Network Tap (Bypass Switch) ishyirwa kuri REST, naho Network Packet Broker (NPB) ikoresha porogaramu ya bypass.
Urujya n'uruza rw'abantu mu buryo bwo kunyuramo:
Igikoresho cya 1 ↔ Guhindura/Gukanda ↔ NPB ↔ Seriveri ↔ NPB ↔ Guhindura/Gukanda ↔ Igikoresho cya 2
Umuhuza wa Pake y'Umuyoboro (NPB) + Gucisha kuri interineti Tap (Guhindura kuri interineti) -- Gucisha kuri porogaramu
Ibisobanuro bya Porogaramu Bypass:
Iyo Network Packet Broker (NPB) itabonye pakiti z'umutima, izafasha porogaramu kudakoresha porogaramu.
Imiterere ya Network Packet Broker (NPB) ihinduka mu buryo bwikora kugira ngo yohereze abantu binjira kuri Bypass Network Tap (Bypass Switch), bityo yongera gushyira abantu mu murongo uhoraho kandi hatagira igihombo kinini cya paki.
Bypass Network Tap (Bypass Switch) ntabwo ikeneye gusubiza na gato kuko inzira zose zinyuramo zikorwa na Network Packet Broker (NPB).
Urujya n'uruza rw'abantu muri porogaramu zinyura mu nzira:
Igikoresho cya 1 ↔ Guhindura/Gukanda ↔ NPB ↔ Guhindura/Gukanda ↔ Igikoresho cya 2
Umuhuza w'amapake y'umuyoboro (NPB) + Gucisha kuri interineti (Bypass Network Tap) -- Gucisha kuri mudasobwa
Ibisobanuro bya Hardware Bypass:
Mu gihe Network Packet Broker (NPB) yananiwe cyangwa isano iri hagati ya Network Packet Broker (NPB) na Bypass Network Tap (Bypass Switch) ikavanwaho, Bypass Network Tap (Bypass Switch) ihinduka kugira ngo ikomeze gukora mu buryo bwa nyabwo.
Iyo Bypass Network Tap (Bypass Switch) igiye muri bypass mode, Network Packet Broker (NPB) na seriveri yo hanze birarengerwa kandi ntibibona urujya n'uruza rw'abantu kugeza igihe Bypass Network Tap (Bypass Switch) isubiye muri throughput mode.
Uburyo bwo gufunga butangira iyo Bypass Network Tap (Bypass Switch) itagihujwe n'amashanyarazi.
Urujya n'uruza rw'ibikoresho bitari kuri interineti:
Igikoresho cya 1 ↔ Guhindura/Gukanda kuri Bypass ↔ Igikoresho cya 2
Igisubizo cya 3: Gufunga imiyoboro ibiri ya Bypass Network (Bypass Switches) kuri buri ihuriro
Amabwiriza yo gushyiraho:
Muri iyi gahunda, umurongo umwe w'umuringa w'ibikoresho 2 bihujwe na seriveri izwi unyuranywa na Bypass Network Taps ebyiri (Bypass Switches). Akamaro k'ibi kuruta igisubizo cya bypass 1 ni uko iyo umurongo wa network packet broker (NPB) uhungabanye, seriveri iba ikiri igice cy'umurongo ugaragara.
Uburyo bwo gucishamo umurongo (Bypass Network Taps) 2 * kuri buri huza - Porogaramu Bypass
Ibisobanuro bya Porogaramu Bypass:
Iyo Network Packet Broker (NPB) itabonye paki z'umutima, izafasha porogaramu kudakoresha porogaramu. Bypass Network Tap (Bypass Switch) ntabwo ikeneye kugira icyo ikora na gato kuko inzira zose zo kudakoresha zikorwa na Network Packet Broker (NPB).
Urujya n'uruza rw'abantu muri porogaramu:
Igikoresho cya 1 ↔ Bypass Switch/Kanda 1 ↔ Network Packet Broker (NPB) ↔ Bypass Switch/Kanda 2 ↔ Igikoresho cya 2
Uburyo bwo gufunga umurongo (Bypass Switches) 2 * kuri buri huza - Hardware Bypass
Ibisobanuro bya Hardware Bypass:
Mu gihe Network Packet Broker (NPB) yananiwe cyangwa isano iri hagati ya Bypass Network Tap (Bypass Switch) na Network Packet Broker (NPB) ikavanyweho, Bypass Network Taps (Bypass Switches) zombi zihindurwa muri bypass mode kugira ngo zikomeze gukora active link.
Bitandukanye n'uburyo bwo gushyiraho "1 Bypass kuri buri link", seriveri iracyari muri link ikora.
Urujya n'uruza rw'ibikoresho bitari kuri interineti:
Igikoresho cya 1 ↔ Guhindura/Gukanda 1 ↔Seriveri ↔ Guhindura/Gukanda 2 ↔ Igikoresho cya 2
Igisubizo cya 4: Udukingirizo tubiri twa Bypass Network (Bypass Switches) twashyizweho kuri buri huza riri ku mbuga zombi.
Amabwiriza yo gushyiraho:
Ubusa: Abahuza ba Network Packet babiri (NPBs) bashobora gukoreshwa mu guhuza imbuga ebyiri zitandukanye hejuru y’umuyoboro wa GRE aho guhuza Network Packet Broker umwe (NPB). Mu gihe seriveri ihuza imbuga zombi yananiwe, izanyura kuri seriveri n’urujya n’uruza rw’abantu rushobora gukwirakwizwa binyuze muri GRE tunnel ya Network Packet Broker (NPB) (nk’uko bigaragara ku mashusho ari hepfo).
Igihe cyo kohereza: Werurwe-06-2023
