Intangiriro
Urusobe rwumuvuduko numubare wuzuye wibipapuro unyura kumurongo wigihe mugihe cyibice, nicyo gipimo fatizo cyo gupima umutwaro wumuyoboro no kohereza imikorere. Gukurikirana imiyoboro yumuhanda nugufata amakuru rusange yamakuru yohereza imiyoboro hamwe nibarurishamibare, kandi amakuru yumuhanda wafashwe nugufata imiyoboro yamakuru ya IP.
Hamwe no kwaguka kwamakuru yikigo Q igipimo cyurusobe, sisitemu yo gusaba irarushijeho kuba myinshi, imiterere y'urusobe irarushijeho kuba ingorabahizi, serivise y'urusobekerane rw'umutungo w'urusobe ibisabwa ni byinshi kandi biri hejuru, iterabwoba ry'umutekano w'urusobe ni byinshi kandi byinshi , imikorere no kubungabunga ibisabwa binonosoye bikomeje kunozwa, gukusanya imiyoboro yumuhanda no gusesengura byabaye uburyo bwisesengura ryingenzi ryibikorwa remezo byikigo. Binyuze mu isesengura ryimbitse ry’urugendo rw’urusobe, abayobozi b'urusobe barashobora kwihutisha aho biherereye, gusesengura amakuru ya porogaramu, guhuza imiterere y'urusobe, imikorere ya sisitemu no kugenzura umutekano mu buryo bwimbitse, no kwihutisha aho amakosa ari. Ikusanyamakuru ryumuhanda nishingiro rya sisitemu yo gusesengura ibinyabiziga. Urusobe rwuzuye, rushyira mu gaciro kandi rushimishije rwo gufata urujya n'uruza rufasha kunoza imikorere yo gufata traffic traffic, kuyungurura no gusesengura, guhuza ibikenewe byo gusesengura ibinyabiziga biturutse mu mpande zitandukanye, guhuza ibipimo byerekana imikorere nubucuruzi, no kunoza uburambe bwabakoresha no kunyurwa.
Ni ngombwa cyane kwiga uburyo nibikoresho byurugendo rwumuhanda ufata kugirango wumve neza kandi ukoreshe urusobe, kugenzura neza no gusesengura urusobe.
Agaciro k'urusobe rw'umuhanda wo gukusanya / Gufata
Kubikorwa bya data center no kuyitaho, binyuze mugushiraho urubuga ruhuriweho rwo gufata traffic traffic, hamwe nurwego rwo gukurikirana no gusesengura birashobora kunoza cyane imikorere no gufata neza no gucunga neza urwego rwubucuruzi.
1. ubwoko bwose bwo gusesengura amashusho, kimwe no gusesengura ibiciro, kwagura porogaramu no kwimuka.
2. ndetse no guhakana.
3. Kunoza imikorere yo gukemura amakosa. Mugutanga amakuru ahuriweho kumurongo, kugenzura porogaramu, kugenzura umutekano nizindi mbuga, birashobora gukuraho ukudahuza hamwe na asimmetrie yamakuru yakusanyirijwe hamwe na progaramu yambere yo kugenzura, kunoza imikorere yo gukemura ibibazo byihutirwa, kumenya vuba ikibazo, gukomeza ubucuruzi, no kuzamura urwego rwo gukomeza ubucuruzi.
Gutondekanya Urusobe rwumuhanda wo gukusanya / Gufata
Gufata imiyoboro yumuyoboro ahanini ni ugukurikirana no gusesengura ibiranga nimpinduka zamakuru ya mudasobwa ya mudasobwa kugirango tumenye ibiranga urujya n'uruza rwose. Ukurikije amasoko atandukanye yumuvuduko wurusobe, urujya n'uruza rwigabanyijemo ibice byumuyoboro wumuyoboro, imiyoboro ya IP iherezo-iherezo, urujya n'uruza rwa serivisi zihariye hamwe nurujya n'uruza rwuzuye rwa serivisi zabakoresha.
1. Umuyoboro wa Node Umuyoboro
Urusobe rwumuyoboro wa porte rwerekeza kumibare yamakuru yamakuru yinjira kandi asohoka kumurongo wa node igikoresho. Harimo umubare wamakuru yamapaki, umubare wa bytes, gukwirakwiza ingano yipaki, gutakaza paki nandi makuru atiga imibare.
2. Imodoka ya IP iherezo-iherezo
Imodoka ya IP-iherezo-iherezo yerekeza kumurongo urwego ruva aho rugana! Imibare ya paki. Ugereranije numuyoboro wa port port traffic, traffic-iherezo-iherezo rya IP ikubiyemo amakuru menshi. Binyuze mu isesengura ryabyo, dushobora kumenya umuyoboro ugana abakoresha mukoresha imiyoboro, nurufatiro rukomeye rwo gusesengura imiyoboro, igenamigambi, igishushanyo mbonera.
3. Urujya n'uruza rwa serivisi
Serivisi ya traffic traffic ikubiyemo amakuru ajyanye nibyambu bya kane (TCP day layer) hiyongereyeho IP-iherezo-iherezo. Biragaragara, ikubiyemo amakuru yerekeye ubwoko bwa serivisi zishobora gukoreshwa mu gusesengura birambuye.
4. Kuzuza abakoresha amakuru yuzuye yubucuruzi
Serivise yuzuye yumukoresha amakuru yimodoka ningirakamaro cyane kubisesengura ryumutekano, imikorere nibindi bintu. Gufata amakuru yuzuye ya serivise yumukoresha bisaba ubushobozi bukomeye bwo gufata hamwe nububiko bukomeye bwo kubika disiki nubushobozi. Kurugero, gufata paki zamakuru zinjira za hackers birashobora guhagarika ibyaha bimwe cyangwa kubona ibimenyetso byingenzi.
Uburyo busanzwe bwo gukusanya traffic traffic / Gufata
Ukurikije ibiranga nuburyo bwo gutunganya imiyoboro yumuhanda, gufata traffic birashobora kugabanywamo ibyiciro bikurikira: gukusanya igice no gukusanya byuzuye, gukusanya ibikorwa hamwe no gukusanya pasiporo, gukusanya hamwe no gukwirakwiza icyegeranyo, gukusanya ibyuma no gukusanya software, nibindi hamwe na iterambere ryikusanyamakuru, uburyo bunoze kandi bufatika bwo gukusanya ibinyabiziga byakozwe hashingiwe kubitekerezo byavuzwe haruguru.
Ikoranabuhanga ryo gukusanya ibinyabiziga bikubiyemo cyane cyane ikoranabuhanga ryo kugenzura rishingiye ku ndorerwamo y’umuhanda, tekinoroji yo kugenzura ishingiye ku gufata igihe nyacyo, tekinoroji yo kugenzura ishingiye kuri SNMP / RMON, hamwe n’ikoranabuhanga ryo kugenzura rishingiye kuri protocole y’isesengura ry’umuhanda nka NetiowsFlow. Muri byo, tekinoroji yo kugenzura ishingiye ku ndorerwamo y’umuhanda ikubiyemo uburyo bwa TAP nuburyo bwo kugabura bushingiye ku byuma bikora iperereza.
1. Bishingiye ku Gukurikirana Indorerwamo Yumuhanda
Ihame rya tekinoroji yo kugenzura imiyoboro ishingiye ku ndorerwamo yuzuye ni ukugera kuri kopi itagira igihombo no gukusanya amashusho y’urusobe binyuze mu ndorerwamo yicyambu cyibikoresho byurusobe nka switch cyangwa ibikoresho byongeweho nka optique ya optique na probe ya neti. Igenzura ryurusobe rwose rugomba kwemeza gahunda yagabanijwe, kohereza iperereza muri buri murongo, hanyuma ugakusanya amakuru yubushakashatsi bwose ukoresheje seriveri yinyuma nububikoshingiro, no gukora isesengura ryumuhanda na raporo ndende ya neti yose. Ugereranije nubundi buryo bwo gukusanya ibinyabiziga, ikintu cyingenzi kiranga ishusho yumuhanda ni uko ishobora gutanga amakuru akomeye ya porogaramu.
2. Bishingiye ku Gihe Cyukuri cyo Gufata Igenzura
Bishingiye ku gihe nyacyo cyo gupakira isesengura rya tekinoroji, itanga cyane cyane isesengura ryamakuru rirambuye kuva kurwego rwumubiri kugeza kurwego rusaba, rwibanda ku isesengura rya protocole. Ifata ibice byimbere mugihe gito cyo gusesengura, kandi akenshi ikoreshwa mugutahura isuzuma ryihuse nigisubizo cyibikorwa byurusobe namakosa. Ifite inenge zikurikira: ntishobora gufata paki zifite traffic nini nigihe kinini, kandi ntishobora gusesengura inzira yimodoka yabakoresha.
3. Gukurikirana Ikoranabuhanga rishingiye kuri SNMP / RMON
Gukurikirana ibinyabiziga bishingiye kuri protokole ya SNMP / RMON ikusanya ibintu bimwe na bimwe bijyanye nibikoresho byihariye namakuru yumuhanda binyuze mumashanyarazi MIB. Harimo: umubare winjiza bytes, umubare winjiza udasakaye, umubare winjiza wapakiye, umubare winjiza wapakiye ibitonyanga, umubare wamakosa yinjizwamo, umubare winjiza utazwi protocole, umubare wibisohoka, umubare wibisohoka non -Ibipapuro byerekana amakuru, umubare wibisohoka byapakiwe, umubare wibisohoka bipakurura ibitonyanga, umubare wibisohoka bipfunyika amakosa, nibindi. Kubera ko ubu router nyinshi ubu zishyigikira SNMP isanzwe, ibyiza byubu buryo nuko ntakindi gikoresho cyo gushaka amakuru gikenewe. Ariko, ikubiyemo gusa ibyingenzi byingenzi nkumubare wa bytes numubare wapaki, bidakwiriye gukurikiranwa mumihanda igoye.
4. Ikoreshwa rya Netflow rishingiye ku ikoranabuhanga
Ukurikije igenzura ryumuhanda wa Nethow, amakuru yumuhanda yatanzwe yaguwe kugeza kumubare wa bytes hamwe nudupaki dushingiye kuri tuple eshanu (aderesi ya IP, aho IP igana, icyambu, icyambu, icyerekezo cya protocole) imibare, ishobora gutandukanya gutembera kuri buri muyoboro wumvikana. Uburyo bwo gukurikirana bufite imikorere ihanitse yo gukusanya amakuru, ariko ntishobora gusesengura amakuru yimiterere yumubiri hamwe namakuru ahuza amakuru, kandi ikeneye gukoresha ibikoresho bimwe na bimwe. Mubisanzwe bikenera guhuza imikorere itandukanye kubikoresho byurusobe.
Igihe cyo kohereza: Ukwakira-17-2024
