SPAN, RSPAN, na ERSPAN ni uburyo bukoreshwa mu guhuza abantu kugira ngo hamenyekane kandi hakurikiranwe uburyo bwo gusesengura amakuru. Dore incamake ya buri kimwe muri ibyo:
SPAN (Switched Port Analyzer)
Intego: Ikoreshwa mu kwerekana urujya n'uruza rw'abantu bava kuri za port cyangwa VLAN runaka kuri switch ijya ku yindi port kugira ngo igenzurwe.
Ikoreshwa: Ni byiza cyane mu gusesengura urujya n'uruza rw'abantu mu gace runaka kuri switch imwe. Urujya n'uruza rw'abantu rugaragarira ku cyambu cyabugenewe aho umusesenguzi w'umuyoboro w'itumanaho ashobora kugifata.
RSPANI (Iyo Kure)
Intego: Yongera ubushobozi bwa SPAN mu gusimbuza inshuro nyinshi kuri network.
Ikoreshwa: Yemerera kugenzura urujya n'uruza rw'abantu kuva kuri switch imwe ujya ku yindi unyuze kuri trunk link. Ifasha mu bihe aho igikoresho cyo kugenzura kiri kuri switch itandukanye.
ERSPAN (Iyohereza SPAN iri kure)
Intego: Ihuza RSPAN na GRE (Generic Routing Encapsulation) kugira ngo ishyiremo urujya n'uruza rw'abantu bareba.
Ikoreshwa: Yemerera gukurikirana urujya n'uruza rw'abantu ku miyoboro inyuramo. Ibi ni ingirakamaro mu miterere y'urujya n'uruza aho urujya n'uruza rw'abantu rugomba gufatwa mu bice bitandukanye.
Switch port Analyzer (SPAN) ni sisitemu ikora neza kandi ikora neza yo kugenzura traffic. Iyobora cyangwa igereranya traffic ziva kuri port cyangwa VLAN zijya kuri port. Ibi rimwe na rimwe byitwa session monitoring. SPAN ikoreshwa mu gukemura ibibazo byo guhuza no kubara imikoreshereze n'imikorere ya network, n'ibindi byinshi. Hari ubwoko butatu bwa SPAN bushyigikirwa ku bicuruzwa bya Cisco…
a. SPAN cyangwa SPAN yo mu gace utuyemo.
b. SPAN yo kure (RSPAN).
c. SPAN yo kure ifatanye (ERSPAN).
Kumenya: "Umuhuzabikorwa wa Mylinking™ Network Packet ufite SPAN, RSPAN na ERSPAN."
Indorerwamo ya SPAN / traffic mirroring / port mirroring ikoreshwa mu bikorwa byinshi, harimo bimwe muri byo hano hepfo.
- Gushyira mu bikorwa IDS/IPS mu buryo bw'ubusambanyi.
- Ibisubizo byo gufata amajwi ya VOIP.
- Impamvu zo kubahiriza amategeko y'umutekano zo kugenzura no gusesengura urujya n'uruza rw'abantu.
- Gukemura ibibazo byo guhuza, kugenzura urujya n'uruza rw'abantu.
Uko ubwoko bwa SPAN bukora kose, isoko ya SPAN ishobora kuba ubwoko ubwo aribwo bwose bwa port ni ukuvuga port ya routed, port ya switch ifatika, port yo kwinjira, trunk, VLAN (port zose zikora zigenzurwa na switch), EtherChannel (yaba port cyangwa port yose ya port-channel) nibindi. Menya ko port yashyiriweho SPAN destination NTISHOBORA kuba igice cya SPAN source VLAN.
Ibiganiro bya SPAN bishyigikira igenzura ry’urujya n’uruza rw’abantu (ingress SPAN), urujya n’uruza rw’abantu (egress SPAN), cyangwa urujya n’uruza rw’abantu runyura mu byerekezo byombi.
- Ingress SPAN (RX) ikoporora urujya n'uruza rw'abantu rwakiriwe n'ibyambu byaturutseho na VLAN bijya ku cyambu cyo kujyaho. SPAN ikoporora urujya n'uruza rw'abantu mbere y'uko hahindurwa (urugero mbere y'uko hakorwa filter ya VACL cyangwa ACL, QoS cyangwa policing yo kwinjira cyangwa gusohoka).
- Egress SPAN (TX) ikora kopi y'inzira zoherezwa ziturutse ku byambu byaturutseho na VLAN zijya ku cyambu cyagenewe ikigo. Ibikorwa byose bijyanye no kuyungurura cyangwa guhindura hakoreshejwe VACL cyangwa ACL filter, QoS cyangwa ingamba zo kugenzura ingress cyangwa egress bifatwa mbere yuko switch yohereza imodoka kuri cyambu cyagenewe ikigo cya SPAN.
- Iyo ijambo ry'ingenzi ryombi rikoreshejwe, SPAN ikoporora urujya n'uruza rw'itumanaho rwakiriwe kandi rwoherezwa na ports source na VLAN kuri port destination.
- SPAN/RSPAN ubusanzwe yirengagiza amafuremu ya CDP, STP BPDU, VTP, DTP na PAgP. Ariko ubwo bwoko bw'inzira bushobora koherezwa iyo itegeko rya encapsulation replicate ryashyizweho.
SPAN cyangwa SPAN yo mu gace
SPAN igereranya urujya n'uruza rw'abantu kuva kuri interineti imwe cyangwa nyinshi kuri switch kugera kuri interineti imwe cyangwa nyinshi kuri switch imwe; bityo SPAN izwi cyane nka LOCAL SPAN.
Amabwiriza cyangwa amabwiriza kuri SPAN yo mu gace:
- Imbuga zombi za Layer 2 switched na Layer 3 ports zishobora gushyirwaho nk'imbuga zo gushakiraho cyangwa iziganaho.
- Isoko ishobora kuba umuyoboro umwe cyangwa myinshi cyangwa VLAN, ariko ntabwo ari uruvange rw'ibi.
- Imbuga z'amakuru ni imbuga zemewe zivanze n'izitari imbuga z'amakuru.
- Imbuga zigera kuri 64 za SPAN zishobora gushyirwaho hifashishijwe switch.
- Iyo dushyizeho posita yo kugeraho, imiterere yayo ya mbere irasubirwamo. Iyo imiterere ya SPAN ikuweho, imiterere ya mbere kuri iyo posita irasubizwa.
- Iyo ushyizeho umurongo w’aho ugana, umurongo uvanwa muri EtherChannel bundle iyo ari yo yose niba ari igice cyayo. Iyo ari umurongo w’aho ugana, imiterere ya SPAN destination irenga imiterere ya umurongo w’aho ugana.
- Imbuga zo kugeraho ntizishyigikira umutekano w'ibyambu, kwemeza 802.1x, cyangwa VLAN zihariye.
- Umuyoboro ushobora gukora nk'umuyoboro ujyamo mu gihe cy'isomo rimwe rya SPAN gusa.
- Umuyoboro ntushobora gushyirwaho nk'umuyoboro w'aho ugana niba ari umuyoboro w'isoko ry'igihe gito cyangwa igice cya VLAN y'aho uherereye.
- Imiyoboro ya Port channel (EtherChannel) ishobora gushyirwaho nk'aho ari source ports ariko ntabwo ari aho SPAN igarukira.
- Icyerekezo cy'umuhanda ni "byombi" ubusanzwe ku masoko ya SPAN.
- Ibikoresho byo kugenzura ntibijya byitabira mu buryo bwa "span-tree instance". Ntibishobora gushyigikira DTP, CDP n'ibindi. SPAN yo mu gace irimo BPDU mu muhanda ugenzurwa, bityo BPDU iyo ari yo yose igaragara ku cyambu cyo kugenzura irakopwa iva kuri source port. Bityo ntuzigere uhuza switch na SPAN nk'iyi kuko ishobora gutera urujya n'uruza rw'umuyoboro. Ibikoresho bya AI bizanoza imikorere myiza, kandiAI itagaragaraserivisi ishobora kunoza ireme ry'ibikoresho bya AI.
- Iyo VLAN yashyizweho nk'isoko ya SPAN (izwi cyane nka VSPAN) hamwe n'amahitamo yo kwinjira no gusohoka, ohereza paki ebyiri uvuye kuri pour source gusa iyo paki zihinduwe muri VLAN imwe. Kopi imwe y'ipaki iva kuri pour l'ingress kuri pour l'ingress, naho kopi y'iyi paki iva kuri pour l'engress.
- VSPAN igenzura gusa urujya n'uruza rw'abantu rusohoka cyangwa rwinjira mu byambu bya Layer 2 muri VLAN.
SPANI yo kure (RSPANI)
Remote SPAN (RSPAN) isa na SPAN, ariko ishyigikira aho ifatira amakuru, aho ifatira amakuru, n'aho ifatira amakuru ku buryo butandukanye, butanga uburyo bwo kugenzura itumanaho rya kure riturutse ku buryo butandukanye bukwirakwizwa ku buryo butandukanye kandi bugatuma ibikoresho byo gufata amakuru bishyirwa hamwe. Buri gice cya RSPAN gitwara traffic ya SPAN ku buryo bwihariye bwa RSPAN VLAN mu buryo bwose bwitabira. Iyi VLAN ishyirwa ku zindi switch, bigatuma traffic ya RSPAN itwarwa mu buryo butandukanye kandi igashyikirizwa station yo gufata amakuru. RSPAN igizwe n'igihe cyo gufatira amakuru cya RSPAN, RSPAN VLAN, n'igihe cyo gufatira amakuru cya RSPAN.
Amabwiriza cyangwa amabwiriza kuri RSPAN:
- VLAN yihariye igomba gushyirwaho kugira ngo igere kuri SPAN izanyura mu ma switch yo hagati binyuze mu ma trunk links yerekeza ku cyambu cyo kugeraho.
- Ishobora gukora ubwoko bumwe bw'isoko - nibura umuyoboro umwe cyangwa nibura VLAN imwe ariko ntishobora kuba imvange.
- Aho gahunda izabera ni RSPAN VLAN aho kuba port imwe muri switch, bityo port zose muri RSPAN VLAN zizahabwa urubuga rugaragara.
- Gushyiraho VLAN iyo ari yo yose nk'uburyo bwa RSPAN VLAN igihe cyose ibikoresho byose byitabiriye umuyoboro bishyigikira imiterere ya RSPAN VLAN, kandi bigakoresha RSPAN VLAN imwe kuri buri cyiciro cya RSPAN
- VTP ishobora gukwirakwiza imiterere ya VLAN ifite inomero kuva kuri 1 kugeza kuri 1024 nka RSPAN VLANs, igomba gushyiraho VLAN zifite inomero iri hejuru ya 1024 nka RSPAN VLANs ku bikoresho byose bya interineti, ibya interineti, n'ibya interineti.
- Kwiga aderesi za MAC byahagaritswe muri RSPAN VLAN.
SPAN yo kure ifatanye (ERSPAN)
Encapsulated remote SPAN (ERSPAN) itanga uburyo bwo gukwirakwiza amakuru (GRE) ku bantu bose bafashwe kandi ikemerera kwaguka muri Layer 3 domains.
ERSPAN niUmucuruzi wa Ciscokandi iboneka gusa kuri platform za Catalyst 6500, 7600, Nexus, na ASR 1000 kugeza ubu. ASR 1000 ishyigikira isoko rya ERSPAN (gukurikirana) gusa kuri Fast Ethernet, Gigabit Ethernet, na port-channel interfaces.
Amabwiriza cyangwa amabwiriza kuri ERSPAN:
- Imyitozo ya ERSPAN ntabwo ikoporora ERSPAN GRE-encapsulated traffic iva kuri source ports. Buri myitozo ya ERSPAN ishobora kugira ports cyangwa VLAN nk'isoko, ariko ntabwo byombi.
- Uko ingano ya MTU yaba imeze kose, ERSPAN ikora paki za Layer 3 zishobora kuba ndende nka bytes 9.202. Urujya n'uruza rwa ERSPAN rushobora kugabanywa n'uburyo ubwo aribwo bwose bwo gukoresha interineti bukoresha MTU ifite ingano ntoya kurusha bytes 9.202.
- ERSPAN ntishyigikira gucikamo ibice bya paki. Igice cya "ntugacemo ibice" kiri mu mutwe wa IP wa paki za ERSPAN. Ibiganiro byo kugera kuri ERSPAN ntibishobora kongera guteranya paki za ERSPAN zacitsemo ibice.
- ERSPAN ID itandukanya traffic ya ERSPAN igera kuri aderesi ya IP imwe iturutse ku maseminari atandukanye ya ERSPAN; ERSPAN ID yashyizweho igomba guhura n'ibikoresho byayo n'ibyo igenewe.
- Ku bijyanye n'aho urubuga ruherereye cyangwa VLAN y'aho urubuga ruherereye, ERSPAN ishobora kugenzura uko urubuga rwinjira, rusohoka, cyangwa uko urubuga rwinjira n'urusohoka. Mu buryo busanzwe, ERSPAN igenzura uko urubuga rwinjira, harimo n'amashusho menshi na Bridge Protocol Data Unit (BPDU).
- Interface ya Tunnel ishyigikiwe nk'aho ari source ports zo gukoresha ERSPAN source session ni GRE, IPinIP, SVTI, IPv6, IPv6 over IP tunnel, Multipoint GRE (mGRE) na Secure Virtual Tunnel Interfaces (SVTI).
- Uburyo bwa VLAN bwo kuyungurura ntibukora mu gihe cyo kugenzura ERSPAN kuri interineti za WAN.
- ERSPAN kuri Cisco ASR 1000 Series Routers ishyigikira gusa Layer 3 interfaces. Ethernet interfaces ntishyigikirwa kuri ERSPAN iyo ishyizweho nk'Layer 2 interfaces.
- Iyo session yashyizweho binyuze muri ERSPAN configuration CLI, indangamuntu y'isession n'ubwoko bw'isession ntibishobora guhinduka. Kugira ngo ubihindure, ugomba kubanza gukoresha uburyo bwa no bw'itegeko ryo kuyishyiraho kugira ngo ukureho session hanyuma wongere ushyireho session.
- Cisco IOS XE Release 3.4S:- Gukurikirana paki za tunnel zitarinzwe na IPsec bishyigikirwa kuri IPv6 na IPv6 binyuze kuri IP tunnel interfaces gusa kuri ERSPAN source sessions, ntabwo ari kuri ERSPAN destination sessions.
- Cisco IOS XE Release 3.5S, inkunga yongeweho kuri ubu bwoko bwa WAN interfaces nk'aho ari source ports kuri source session: Serial (T1/E1, T3/E3, DS0), Packet over SONET (POS) (OC3, OC12) na Multilink PPP (amagambo y'ingenzi ya multilink, pos, na serial yongeweho ku itegeko rya source interface).
Gukoresha ERSPAN nk'ahantu hasanzwe hakoreshwa SPAN:
Kugira ngo dukoreshe ERSPAN mu kugenzura urujya n'uruza rw'abantu binyuze kuri port imwe cyangwa nyinshi cyangwa VLAN mu gikoresho kimwe, tugomba gushyiraho isoko rya ERSPAN n'ibiganiro byo kugera kuri ERSPAN mu gikoresho kimwe, urujya n'uruza rw'amakuru rubera muri router, bisa n'ibyo muri SPAN yo mu gace.
Ibintu bikurikira birakurikizwa mu gihe ukoresha ERSPAN nka SPAN yo mu gace utuyemo:
- Ibiganiro byombi bifite ERSPAN ID imwe.
- Ibiganiro byombi bifite aderesi ya IP imwe. Iyi aderesi ya IP ni aderesi ya IP ya routers; ni ukuvuga aderesi ya IP ya loopback cyangwa aderesi ya IP yashyizweho kuri port iyo ari yo yose.
| (config)# monitor session 10 ubwoko bwa erspan-source |
| (config-mon-erspan-src)# source interface Gig0/0/0 |
| (config-mon-erspan-src)# aho ugana |
| (config-mon-erspan-src-dst)# aderesi ya ip 10.10.10.1 |
| (config-mon-erspan-src-dst)# aderesi ya ip y'umwimerere 10.10.10.1 |
| (config-mon-erspan-src-dst)# erspan-id 100 |
Igihe cyo kohereza: Kanama-28-2024
