Intangiriro
Urusobe rwumuvuduko numubare wuzuye wibipapuro unyura kumurongo wigihe mugihe cyibice, nicyo gipimo fatizo cyo gupima umutwaro wumuyoboro no kohereza imikorere. Gukurikirana imiyoboro yumuhanda nugufata amakuru rusange yamakuru yohereza imiyoboro hamwe nibarurishamibare, kandi amakuru yumuhanda wafashwe ni ugufata imiyoboro ya IP.
Hamwe no kwagura amakuru yikigo Q igipimo cyurusobe, sisitemu yo gusaba irarushijeho kuba myinshi, imiterere y'urusobe irarushijeho kuba ingorabahizi, serivisi z'urusobe ku bisabwa ku mutungo w'urusobe ni byinshi kandi biri hejuru, ibikorwa byo guhungabanya umutekano w'urusobe ni byinshi kandi byinshi, imikorere no kwita ku bisabwa binonosoye bikomeje kunozwa, gukusanya imiyoboro y'urusobe no gusesengura byabaye uburyo bw'isesengura ry'ingirakamaro mu bikorwa remezo by'ikigo. Binyuze mu isesengura ryimbitse ry’urugendo rw’urusobe, abayobozi b'urusobe barashobora kwihutisha aho biherereye, gusesengura amakuru ya porogaramu, guhuza imiterere y'urusobe, imikorere ya sisitemu no kugenzura umutekano mu buryo bwimbitse, no kwihutisha aho amakosa ari. Ikusanyamakuru ryumuhanda nishingiro rya sisitemu yo gusesengura ibinyabiziga. Urusobe rwuzuye, rushyira mu gaciro kandi rushimishije rwo gufata urujya n'uruza rufasha kunoza imikorere yo gufata traffic traffic, kuyungurura no gusesengura, guhuza ibikenewe byo gusesengura ibinyabiziga biturutse mu mpande zitandukanye, guhuza ibipimo byerekana imikorere nubucuruzi, no kunoza uburambe bwabakoresha no kunyurwa.
Ni ngombwa cyane kwiga uburyo nibikoresho byurugendo rwumuhanda ufata kugirango wumve neza kandi ukoreshe urusobe, kugenzura neza no gusesengura urusobe.
Agaciro k'urusobe rw'umuhanda wo gukusanya / Gufata
Kubikorwa bya data center no kuyitaho, binyuze mugushiraho urubuga ruhuriweho rwo gufata traffic traffic, hamwe nurwego rwo kugenzura no gusesengura birashobora kunoza cyane imikorere no kubungabunga no gucunga neza urwego rwubucuruzi.
1.
2.
3. Kunoza imikorere yo gukemura amakosa. Mugutanga amakuru ahuriweho kumurongo, kugenzura porogaramu, kugenzura umutekano hamwe nizindi mbuga, birashobora gukuraho ukudahuza hamwe na asimmetrie yamakuru yakusanyirijwe hamwe nuburyo bwambere bwo gukurikirana, kunoza imikorere yo gukemura ibibazo byihutirwa byose, guhita umenya ikibazo, gusubukura ubucuruzi, no kuzamura urwego rwo gukomeza ubucuruzi.
Gutondekanya Urusobe rwumuhanda wo gukusanya / Gufata
Gufata imiyoboro yumuyoboro ahanini ni ugukurikirana no gusesengura ibiranga nimpinduka zamakuru ya mudasobwa ya mudasobwa kugirango tumenye ibiranga urujya n'uruza rwose. Ukurikije amasoko atandukanye yumuvuduko wurusobe, urujya n'uruza rwigabanyijemo ibice byumuyoboro wumuyoboro, imiyoboro ya IP iherezo-iherezo, urujya n'uruza rwa serivisi zihariye hamwe nurujya n'uruza rwuzuye rwa serivisi zabakoresha.
1. Umuyoboro wa Node Umuyoboro
Urusobe rwumuyoboro wa porte rwerekeza kumibare yamakuru yamakuru yinjira kandi asohoka kumurongo wa node igikoresho. Harimo umubare wamakuru yamapaki, umubare wa bytes, gukwirakwiza ingano yipaki, gutakaza paki nandi makuru atiga imibare.
2. Imodoka ya IP iherezo-iherezo
Imodoka ya IP-iherezo-iherezo yerekeza kumurongo urwego ruva aho rugana! Imibare ya paki. Ugereranije numuyoboro wa port port traffic, traffic-iherezo-iherezo rya IP ikubiyemo amakuru menshi. Binyuze mu isesengura ryabyo, dushobora kumenya umuyoboro ugana abakoresha mukoresha imiyoboro, nurufatiro rukomeye rwo gusesengura imiyoboro, igenamigambi, igishushanyo mbonera.
3. Urujya n'uruza rwa serivisi
Serivisi ya traffic traffic ikubiyemo amakuru ajyanye nibyambu bya kane (TCP day layer) hiyongereyeho IP-iherezo-iherezo. Biragaragara, ikubiyemo amakuru yerekeye ubwoko bwa serivisi zishobora gukoreshwa mu gusesengura birambuye.
4. Kuzuza abakoresha amakuru yuzuye yubucuruzi
Serivise yuzuye yumukoresha amakuru yimodoka ningirakamaro cyane kubisesengura ryumutekano, imikorere nibindi bintu. Gufata amakuru yuzuye ya serivise yumukoresha bisaba ubushobozi bukomeye bwo gufata hamwe nububiko bukomeye bwo kubika disiki nubushobozi. Kurugero, gufata amakuru yinjira mububiko bwa hackers birashobora guhagarika ibyaha bimwe cyangwa kubona ibimenyetso byingenzi.
Uburyo busanzwe bwo gukusanya traffic traffic / Gufata
Ukurikije ibiranga nuburyo bwo gutunganya imiyoboro yumuhanda, gufata imodoka birashobora kugabanywamo ibyiciro bikurikira: gukusanya igice no gukusanya byuzuye, gukusanya ibikorwa no gukusanya pasiporo, gukusanya hamwe no gukwirakwiza icyegeranyo, gukusanya ibyuma no gukusanya software, nibindi.
Ikoranabuhanga ryo gukusanya ibinyabiziga bikubiyemo cyane cyane ikoranabuhanga ryo kugenzura rishingiye ku ndorerwamo y’umuhanda, tekinoroji yo kugenzura ishingiye ku gufata igihe nyacyo, tekinoroji yo kugenzura ishingiye kuri SNMP / RMON, hamwe n’ikoranabuhanga ryo kugenzura rishingiye kuri protocole y’isesengura ry’umuhanda nka NetiowsFlow. Muri byo, tekinoroji yo kugenzura ishingiye ku ndorerwamo y’umuhanda ikubiyemo uburyo bwa TAP nuburyo bwo kugabura bushingiye ku byuma bikora iperereza.
1. Bishingiye ku Gukurikirana Indorerwamo Yumuhanda
Ihame rya tekinoroji yo kugenzura imiyoboro ishingiye ku ndorerwamo yuzuye ni ukugera kuri kopi itagira igihombo no gukusanya amashusho y’urusobe binyuze mu ndorerwamo yicyambu cyibikoresho byurusobe nka switch cyangwa ibikoresho byongeweho nka optique ya optique na probe ya neti. Igenzura ryurusobe rwose rugomba kwemeza gahunda yagabanijwe, kohereza iperereza muri buri murongo, hanyuma ugakusanya amakuru yubushakashatsi bwose ukoresheje seriveri yinyuma nububikoshingiro, no gukora isesengura ryumuhanda na raporo ndende ya neti yose. Ugereranije nubundi buryo bwo gukusanya ibinyabiziga, ikintu cyingenzi kiranga ishusho yumuhanda ni uko ishobora gutanga amakuru akomeye ya porogaramu.
2. Bishingiye ku Gihe Cyukuri cyo Gufata Igenzura
Bishingiye ku gihe nyacyo cyo gupakira isesengura rya tekinoroji, itanga cyane cyane isesengura ryamakuru rirambuye kuva kurwego rwumubiri kugeza kurwego rusaba, rwibanda ku isesengura rya protocole. Ifata ibice byimbere mugihe gito cyo gusesengura, kandi akenshi ikoreshwa mugutahura isuzuma ryihuse nigisubizo cyibikorwa byurusobe namakosa. Ifite inenge zikurikira: ntishobora gufata paki zifite traffic nini nigihe kinini, kandi ntishobora gusesengura inzira yimodoka yabakoresha.
3. Gukurikirana Ikoranabuhanga rishingiye kuri SNMP / RMON
Gukurikirana ibinyabiziga bishingiye kuri protokole ya SNMP / RMON ikusanya ibintu bimwe na bimwe bijyanye nibikoresho byihariye namakuru yumuhanda binyuze mumashanyarazi MIB. Harimo: umubare winjiza bytes, umubare winjiza udasakaye, umubare winjiza wapakiye, umubare wibikoresho byinjira, umubare winjiza wapakiye, umubare wibisohoka bitamenyekanye, umubare wibisohoka bitamenyekanye, umubare wibisohoka byasohotse, umubare wibisohoka byapakiye, umubare wibikoresho bikoreshwa muburyo bwo kubona ibikoresho. Ariko, ikubiyemo gusa ibyingenzi byingenzi nkumubare wa bytes numubare wapaki, bidakwiriye gukurikiranwa mumihanda igoye.
4. Ikoreshwa rya Netflow rishingiye ku ikoranabuhanga
Ukurikije igenzura ryumuhanda wa Nethow, amakuru yumuhanda yatanzwe yaguwe kugeza ku mubare wa bytes hamwe nudupaki dushingiye kuri tuple eshanu (aderesi ya IP, aho IP igana, icyambu cyaturutse, icyambu, icyerekezo cya protocole), ishobora gutandukanya urujya n'uruza kuri buri muyoboro wumvikana. Uburyo bwo gukurikirana bufite imikorere ihanitse yo gukusanya amakuru, ariko ntishobora gusesengura amakuru yimiterere yumubiri hamwe namakuru ahuza amakuru, kandi ikeneye gukoresha ibikoresho bimwe na bimwe. Mubisanzwe bikenera guhuza imikorere itandukanye kubikoresho byurusobe.
Igihe cyo kohereza: Ukwakira-17-2024
