Igenamiterere rya TCP
Iyo dushakisha kurubuga, twohereza imeri, cyangwa dukina umukino wo kumurongo, akenshi ntidutekereza kubyerekeranye numuyoboro uhuza inyuma. Nyamara, izi ntambwe zisa nkinto zituma itumanaho rihamye hagati yacu na seriveri. Imwe muntambwe zingenzi ni TCP ihuza, kandi intandaro yibi ni inzira-eshatu zo guhana.
Iyi ngingo izaganira ku ihame, inzira n'akamaro ko gufatana mu nzira eshatu. Intambwe ku yindi, tuzasobanura impamvu inzira-eshatu zo gufatana urunana zikenewe, uburyo butuma ihuza rihuza kandi ryizewe, ndetse ningirakamaro muburyo bwo kohereza amakuru. Hamwe no gusobanukirwa byimbitse uburyo butatu bwo guhana intoki, tuzarushaho gusobanukirwa nuburyo bwibanze bwitumanaho ryurusobe no kureba neza kwizerwa rya TCP.
TCP Inzira-eshatu Inzira yo Guhana hamwe ninzibacyuho ya Leta
TCP ni porotokoro yo gutwara abantu, isaba gushiraho mbere yo kohereza amakuru. Iyi gahunda yo gushiraho ihuza ikorwa ninzira eshatu.
Reka dusuzume neza paki za TCP zoherejwe muri buri murongo.
Mu ntangiriro, byombi umukiriya na seriveri BAFunze. Ubwa mbere, seriveri yunvikana cyane ku cyambu kandi iri muri leta YUMVE, bivuze ko seriveri igomba gutangira. Ibikurikira, umukiriya yiteguye gutangira kwinjira kururubuga. Birakenewe gushiraho ihuza na seriveri. Imiterere ya paki yambere ihuza niyi ikurikira:
Iyo umukiriya atangije ihuza, itanga numero yambere ikurikiranye (umukiriya_isn) ikayishyira mumwanya wa "Urutonde rukurikirana" kumutwe wa TCP. Mugihe kimwe, umukiriya ashyiraho ibendera rya SYN kuri 1 kugirango yerekane ko paki isohoka ari paketi SYN. Umukiriya yerekana ko yifuza gushiraho ihuza na seriveri yohereza paketi ya mbere ya SYN kuri seriveri. Iyi paki ntabwo ikubiyemo amakuru yimikorere (ni ukuvuga amakuru yoherejwe). Kuri iyi ngingo, imiterere yumukiriya irangwa nka SYN-SENT.
Iyo seriveri yakiriye paki ya SYN kumukiriya, ihita itangiza numero yayo yuruhererekane (seriveri_isn) hanyuma igashyira iyo mibare mumwanya wa "Serial numero" yumutwe wa TCP. Ibikurikira, seriveri yinjira mubakiriya_isn + 1 mumwanya wa "Gushimira numero" hanyuma igashyiraho bits ya SYN na ACK kuri 1. Hanyuma, seriveri yohereza paki kubakiriya, idafite amakuru-yamakuru (kandi nta makuru ya seriveri) kohereza). Muri iki gihe, seriveri iri muri SYN-RCVD.
Umukiriya amaze kwakira paki kuva muri seriveri, igomba gukora optimizasi ikurikira kugirango isubize paki yanyuma yo gusubiza: Icya mbere, umukiriya ashyiraho ACK biti ya TCP umutwe wumutwe wo gusubiza kuri 1; Icya kabiri, umukiriya yinjiza agaciro seriveri_isn + 1 mumwanya wa "Emeza igisubizo"; Hanyuma, umukiriya yohereza paki kuri seriveri. Iyi paki irashobora gutwara amakuru kuva kubakiriya kugeza kuri seriveri. Iyo ibikorwa birangiye, umukiriya azinjira muri leta YISHYIZWEHO.
Seriveri imaze kwakira paki yo gusubiza kubakiriya, nayo ihinduka kuri leta YISHYIZWEHO.
Nkuko mubibona mubikorwa byavuzwe haruguru, mugihe ukora ukuboko kwinzira eshatu, ukuboko kwa gatatu kwemererwa gutwara amakuru, ariko ukuboko kwambere kwambere ntabwo. Iki nikibazo gikunze kubazwa mubazwa. Iyo inzira-eshatu zuzuye zuzuye, impande zombi zinjira muri leta YISHYIZWEHO, byerekana ko ihuriro ryashyizweho neza, icyo gihe umukiriya na seriveri bashobora gutangira kohereza amakuru kuri mugenzi we.
Kuki guhana ibiganza bitatu? Ntabwo ari kabiri, inshuro enye?
Igisubizo rusange ni, "Kuberako ukuboko kwinzira eshatu byemeza ubushobozi bwo kwakira no kohereza." Igisubizo nukuri, ariko nimpamvu yo hejuru gusa, ntabwo ishyira imbere impamvu nyamukuru. Mubikurikira, nzasesengura impamvu zitera ukuboko inshuro eshatu uhereye kubintu bitatu kugirango turusheho gusobanukirwa niki kibazo.
Guhana ukuboko kwinzira eshatu birashobora kwirinda neza gutangira guhuza amateka yasubiwemo (impamvu nyamukuru)
Guhana ukuboko kwinzira eshatu byemeza ko impande zombi zabonye numero yambere yizewe.
Guhana ukuboko kwinzira eshatu birinda guta umutungo.
Impamvu ya 1: Irinde Kwigana Amateka Yinjira
Muri make, impamvu nyamukuru yo guhana ukuboko kwinzira eshatu nukwirinda urujijo rwatewe no gutangiza duplicate ya kera. Mubintu bigoye byurusobe rwibidukikije, ihererekanyamakuru ryamakuru ntirishobora koherezwa aho ryakiriye hakurikijwe igihe cyagenwe, kandi paki zishaje zishobora kugera aho zerekeza mbere kubera ubwinshi bwurusobe nizindi mpamvu. Kugira ngo wirinde ibi, TCP ikoresha uburyo butatu bwo guhana ukuboko kugirango ushireho isano.
Mugihe umukiriya yohereje ama SYN menshi yo gushiraho paki zikurikiranye, mubihe nkurusobe rwumuyoboro, ibi bikurikira bishobora kubaho:
1- Ibipapuro bishaje bya SYN bigera kuri seriveri mbere yububiko bwa SYN buheruka.
2- Seriveri izasubiza paketi SYN + ACK kubakiriya nyuma yo kwakira paki ya SYN ishaje.
3- Iyo umukiriya yakiriye paki ya SYN + ACK, igena ko ihuriro ari ihuriro ryamateka (nimero ikurikirana yarangiye cyangwa igihe cyateganijwe) ukurikije imiterere yacyo, hanyuma ikohereza paki ya RST kuri seriveri kugirango ikureho ihuza.
Hamwe no gufatana mu ntoki ebyiri, nta buryo bwo kumenya niba isano iriho ari ihuriro ryamateka. Guhana ukuboko kwinzira eshatu byemerera umukiriya kumenya niba ihuza ryubu ari ihuriro ryamateka ukurikije imiterere iyo ryiteguye kohereza paki ya gatatu:
1- Niba ari ihuriro ryamateka (numero ikurikiranye yarangiye cyangwa igihe cyarenze), paki yoherejwe no guhana ukuboko kwa gatatu ni paki ya RST kugirango ikureho amateka.
2- Niba atari ihuriro ryamateka, paki yoherejwe kunshuro ya gatatu ni paki ya ACK, kandi impande zombi zitumanaho zishyiraho neza ihuza.
Kubwibyo, impamvu nyamukuru ituma TCP ikoresha uburyo butatu bwo guhana ukuboko ni uko itangiza ihuza kugirango ikumire amateka.
Impamvu ya 2: Guhuza imibare yambere ikurikiranye yimpande zombi
Impande zombi za protocole ya TCP igomba gukomeza umubare wikurikiranya, nikintu cyingenzi kugirango wizere kohereza neza. Imibare ikurikirana igira uruhare runini muguhuza TCP. Bakora ibi bikurikira:
Uwakiriye arashobora gukuraho amakuru yigana kandi akemeza ko amakuru ari ukuri.
Uwakiriye arashobora kwakira paki murutonde rwumubare ukurikirana kugirango umenye neza amakuru.
Numero y'uruhererekane irashobora kumenya paki yamakuru yakiriwe nundi muburanyi, igafasha kohereza amakuru yizewe.
Kubwibyo, iyo ushyizeho TCP ihuza, umukiriya yohereje paki ya SYN numero yambere ikurikiranye kandi isaba seriveri gusubiza hamwe na paki ya ACK yerekana ko yakiriye neza paketi ya SYN. Hanyuma, seriveri yohereje paketi ya SYN hamwe numero yambere ikurikiranye kubakiriya hanyuma igategereza ko umukiriya asubiza, rimwe na rimwe, kugirango yemeze ko imibare yambere ikurikiranye neza.
Nubwo gufatana mu nzira enye nabyo birashoboka guhuza byimazeyo imibare yambere ikurikiranye yimpande zombi, intambwe ya kabiri nagatatu zirashobora guhuzwa mukuntambwe imwe, bikavamo guhana inzira eshatu. Nyamara, guhana ibiganza byombi birashobora kwemeza gusa ko umubare wambere wikurikiranya ryishyaka ryakiriwe neza nundi muburanyi, ariko nta cyemeza ko umubare wambere wuruhererekane rwimpande zombi ushobora kwemezwa. Kubwibyo, inzira-eshatu zo guhana ni amahitamo meza yo gufata kugirango tumenye neza kandi kwizerwa rya TCP.
Impamvu ya 3: Irinde gusesagura umutungo
Niba hari "ukuboko-ukuboko kabiri" gusa, mugihe umukiriya SYN icyifuzo cyahagaritswe murusobe, umukiriya ntashobora kwakira paki ya ACK yoherejwe na seriveri, SYN rero izanga. Ariko, kubera ko nta ntoki ya gatatu ihari, seriveri ntishobora kumenya niba umukiriya yakiriye ACK icyemezo cyo gushiraho ihuriro. Kubwibyo, seriveri irashobora gusa gushiraho gushiraho nyuma yo kwakira buri cyifuzo cya SYN. Ibi biganisha kuri ibi bikurikira:
Guta imyanda: Niba icyifuzo cya SYN cyumukiriya cyahagaritswe, bigatuma habaho kohereza inshuro nyinshi za SYN paki, seriveri izashyiraho imiyoboro myinshi itemewe nyuma yo kwakira icyifuzo. Ibi biganisha ku guta bidakenewe ibikoresho bya seriveri.
Kugumana ubutumwa: Kubera kubura ukuboko kwa gatatu, seriveri ntaburyo bwo kumenya niba umukiriya yakiriye neza icyemezo cya ACK kugirango ashyireho isano. Nkigisubizo, niba ubutumwa bugumye mumurongo, umukiriya azakomeza kohereza SYN ibyifuzo inshuro nyinshi, bigatuma seriveri ihora ishyiraho imiyoboro mishya. Ibi bizongera urusobe rwumuvuduko no gutinda kandi bigira ingaruka mbi kumikorere rusange.
Kubwibyo, kugirango tumenye neza kandi kwizerwa ryumuyoboro uhuza, TCP ikoresha ukuboko kwinzira eshatu kugirango dushyire hamwe kugirango twirinde ko ibyo bibazo bibaho.
Incamake
UwitekaUmuyoboro wumuyoboroIshyirahamwe rya TCP rikorwa hamwe nuburyo butatu bwo guhana ukuboko. Mugihe cyinzira-eshatu zo guhana, umukiriya abanza kohereza paki ifite ibendera rya SYN kuri seriveri, byerekana ko ishaka gushiraho. Nyuma yo kwakira icyifuzo cyumukiriya, seriveri isubiza paki ifite amabendera ya SYN na ACK kumukiriya, byerekana ko icyifuzo cyo guhuza cyemewe, kandi cyohereza numero yacyo yambere. Hanyuma, umukiriya asubiza hamwe ibendera rya ACK kuri seriveri kugirango yerekane ko ihuriro ryashyizweho neza. Rero, amashyaka yombi ari muri leta YASHYIZWEHO kandi arashobora gutangira kohereza amakuru kuri mugenzi we.
Muri rusange, inzira-eshatu zo guhana intoki kugirango TCP ihuze yashizweho kugirango habeho guhuza umutekano no kwizerwa, kwirinda urujijo no guta umutungo hejuru y’amateka, kandi urebe ko impande zombi zishobora kwakira no kohereza amakuru.
Igihe cyo kohereza: Mutarama-08-2025
