Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch ML-NPB-M2000
Module hla dhau: 8 * 10G SFP + & 4 * 100GE, Saib xyuas module: 16 * 10GE SFP + & 4 * 100GE, Max 2.4Tbps
1-Txheej txheem cej luam
Nrog rau kev loj hlob sai ntawm Is Taws Nem, kev hem thawj ntawm kev ruaj ntseg ntawm cov ntaub ntawv hauv network tau dhau los ua qhov hnyav dua, yog li ntau yam kev siv tiv thaiv kev ruaj ntseg ntawm cov ntaub ntawv tau siv ntau dua thiab dav dua. Txawm hais tias nws yog cov khoom siv tswj kev nkag mus (firewall) lossis hom kev tiv thaiv tshiab xws li kev tiv thaiv kev nkag mus (IPS), Unified threat management platform (UTM), Anti-denial service attack system (Anti-DDoS), Anti-spam Gateway, Unified DPI Traffic Identification and Control System, thiab ntau yam khoom siv ruaj ntseg tau xa tawm ua ntu zus hauv cov nodes tseem ceeb ntawm network, kev siv txoj cai ruaj ntseg ntawm cov ntaub ntawv sib xws los txheeb xyuas thiab daws cov tsheb khiav raug cai / tsis raug cai. Tib lub sijhawm, txawm li cas los xij, lub network computer yuav tsim kev ncua sij hawm loj lossis txawm tias kev cuam tshuam network yog tias tsis ua tiav, kev saib xyuas, kev hloov kho tshiab, kev hloov khoom siv thiab lwm yam hauv ib puag ncig kev siv network tsim khoom siv tau zoo heev, cov neeg siv tsis tuaj yeem sawv ntsug nws.
ML-NPB-M2000 Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch tau tshawb fawb thiab tsim los siv rau kev xa tawm ntau hom khoom siv kev ruaj ntseg serial thaum muab kev ntseeg siab rau network.
Los ntawm kev siv Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch:
●Cov neeg siv tuaj yeem yooj yim teeb tsa/rho tawm cov khoom siv tiv thaiv kev ruaj ntseg yam tsis cuam tshuam lossis cuam tshuam rau lub network uas twb muaj lawm;
● Nws muaj lub peev xwm nrhiav kev noj qab haus huv ntse los saib xyuas qhov xwm txheej ua haujlwm ntawm cov khoom siv ruaj ntseg txuas nrog tam sim ntawd. Thaum lub cuab yeej ruaj ntseg txuas nrog ua haujlwm tsis zoo, lub cuab yeej tiv thaiv yuav hla mus rau qhov chaw sib txuas lus hauv network.
●Cov thev naus laus zis tiv thaiv kev tsheb khiav uas xaiv tau siv tau los siv cov khoom siv ruaj ntseg tshwj xeeb los ntxuav kev tsheb khiav, cov khoom siv tshuaj xyuas kev siv encryption, thiab lwm yam. Nws ua tau zoo rau kev tiv thaiv kev nkag mus rau hauv kab rau cov hom kev tsheb khiav tshwj xeeb, txo cov khoom siv ua haujlwm ntawm cov khoom siv hauv kab.
● Cov thev naus laus zis tiv thaiv kev thauj khoom sib npaug tuaj yeem siv los xa cov khoom siv ruaj ntseg hauv kab hauv cov pawg kom ua tau raws li qhov xav tau ntawm kev tiv thaiv kev ruaj ntseg hauv kab hauv qab qhov chaw muaj kev kub ntxhov siab.
●Nws muaj peev xwm ua haujlwm nrog SSL proxy, ua tau raws li qhov yuav tsum tau saib xyuas thiab tshuaj xyuas ntawm cov khoom siv tiv thaiv kev ruaj ntseg rau cov ntsiab lus ntawm cov ntaub ntawv yooj yim.
● Nws muaj cov peev xwm ua cov ntaub ntawv yooj yim xws li kev rov ua cov ntaub ntawv, kev sib sau ua ke, kev lim dej, thiab kev sau npe, nrog rau cov peev xwm ua cov ntaub ntawv siab heev xws li kev tshem tawm cov ntaub ntawv, kev npog, kev txheeb xyuas cov txheej txheem thov, thiab kev tsim cov ntaub ntawv.
2-Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch Advanced Features thiab Technologies
Mylinking™ "SpecFlow" Hom Kev Tiv Thaiv thiab "FullLink" Hom Kev Tiv Thaiv Technology
Mylinking™ Kev Tiv Thaiv Kev Hloov Pauv Sai Sai
Mylinking™ “LinkSafeSwitch” thev naus laus zis
Mylinking™ "WebService" Kev Siv Tshuab Dynamic Policy Forwarding/Teeb Meem
Mylinking™ Kev Tshawb Fawb Txog Lub Plawv Ntsws Ntse
Mylinking™ Kev Siv Tshuab Heartbeat Packets Uas Txhais Tau
Mylinking™ Kev Siv Tshuab Sib Npaug Ntau Qhov Txuas
Mylinking™ Kev Siv Tshuab Faib Tsheb Txawj Ntse
Mylinking™ Kev Siv Tshuab Dynamic Load Balanceing
Mylinking™ Kev Tswj Xyuas Kev Nyob Deb (HTTP/WEB, TELNET/SSH, "EasyConfig/AdvanceConfig" Yam Ntxwv)
3-Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch Configuration Guide
Raws li pom hauv daim duab saum toj no, tag nrho chav tsev muaj plaub qhov modular:
Cov qhov SLOT1, SLOT2, SLOT3, thiab SLOT4 module tuaj yeem siv tau rau BYPASS tiv thaiv chaw nres nkoj modules lossis MONITOR chaw nres nkoj modules nrog cov nqi sib txawv thiab cov lej chaw nres nkoj. Los ntawm kev hloov cov qauv sib txawv ntawm cov modules, nws muaj peev xwm txhawb nqa BYPASS tiv thaiv rau ntau qhov txuas 10G / 40G / 100G, nrog rau kev xa cov khoom siv saib xyuas Inline Bypass rau ntau qhov txuas 10G / 40G / 100G.
Lus Cim: Ob qho tib si BYPASS module thiab MONITOR module txhawb nqa kev sib pauv kub.
3.1-Daim Ntawv Teev Cov Qauv Module
| Qauv Khoom | Ua haujlwm tau zooPcov arameters |
| Chassis | |
| ML-NPB-M2000-CHS/AC | 2U tus qauv 19-nti rackmount; siv hluav taws xob ntau tshaj 300W; modular BYPASS protector main unit; 4 module slots; 1 * RS232 Console interface, 1 * 10/100/1000M RJ45 interface nrog kev tswj hwm network sab nraud; dual fais fab mov AC-220V; |
| NT-BYPASS-M2000-CHS/DC | 2U tus qauv 19-nti rackmount; siv hluav taws xob ntau tshaj 300W; modular BYPASS protector main unit; 4 module slots; 1 * RS232 Console interface, 1 * 10/100/1000M RJ45 interface nrog kev tswj hwm network sab nraud; ob lub zog muab DC-48V; |
| BYPASSModule | |
| INL-I8XM8X(LM/SM) | Txhawb 4-txoj kev 10GE (sib xws nrog 1G) txuas serial kev sib txuas tiv thaiv, nrog rau tag nrho ntawm 8 * 10GE interfaces; txhawb 8 * 10G SFP + saib xyuas chaw nres nkoj (tsis suav nrog optical modules). |
| INL-I4HM2H (LM/SM) | Txhawb 2-txoj kev 100GE (40GE sib xws) txuas serial tiv thaiv, nrog rau tag nrho ntawm 4 * 100GE interfaces; txhawb 2 * 100GE QSFP28 saib xyuas chaw nres nkoj (tsis suav nrog optical modules). |
| SAIB XYUAS Module | |
| MON-M16X | 16 * 10GE SFP + saib xyuas chaw nres nkoj (tsis suav nrog cov khoom siv kho qhov muag); |
| MON-M16X-CN98 | 16 * 10GE SFP + saib xyuas chaw nres nkoj (optical module tsis suav nrog); nruab nrog lub cav ua haujlwm siab heev, txhawb nqa cov haujlwm ua haujlwm siab heev xws li bypass SSL decryption, SSL proxy, thiab traffic deduplication; |
| MON-M4H | 4 * 100GE QSFP28 saib xyuas chaw nres nkoj (cov modules kho qhov muag tsis suav nrog); |
| MON-M4H-CN98 | 4 * 100GE QSFP28 saib xyuas chaw nres nkoj (cov modules kho qhov muag tsis suav nrog); nruab nrog lub cav ua haujlwm siab heev, txhawb nqa cov haujlwm ua haujlwm siab heev xws li bypass SSL decryption, SSL proxy, thiab traffic deduplication; |
3.2-Cov Cai Xaiv Module
Raws li cov kev sib txuas sib txawv thiab cov kev cai ntawm kev siv cov khoom siv saib xyuas, koj tuaj yeem xaiv cov qauv sib txawv kom tau raws li koj qhov xav tau ib puag ncig tiag tiag; thov ua raws li cov cai no thaum xaiv:
1) Lub rooj sib dhos chassis yog ib qho khoom tseem ceeb thiab yuav tsum tau xaiv ua ntej xaiv lwm cov modules. Thov xaiv txoj kev muab hluav taws xob (AC / DC) raws li koj xav tau.
2) Lub tshuab txhawb nqa siab tshaj plaws 4 qhov module; koj tsis tuaj yeem xaiv ntau lub modules dua li tus lej ntawm cov qhov rau kev teeb tsa. Raws li kev sib xyaw ua ke ntawm cov qauv module sib txawv, lub tshuab tuaj yeem txhawb nqa kev tiv thaiv serial rau txog li 16 10GE / GE txuas lossis 8 100GE / 40GE txuas.
4-Kev Txawj Ntse ntawm Kev Ua Haujlwm Tsheb
4.1-Kev Xa Mus Rau Hauv Kab
Kev Tiv Thaiv Kab Tsheb Tshwj Xeeb
Nws txhawb nqaHauv kab(serial)hom kev tiv thaiv rau cov hom tsheb khiav tshwj xeeb hauv ib qhokab hauv kabtxuas.Toxa mus rau qee hom kev thauj mus los uas tus neeg siv tau teev tseg rau ntawmkab hauv kabtxuas mus rau qhovHauv kab Skev ruaj ntseglub cuab yeejrau kev ua tiav, thiab cov tsheb khiav tas mus li raug xa mus ncaj qha yam tsis tau ntws los ntawmHauv kab Skev ruaj ntseglub cuab yeej. Tib lub sijhawm ntawd,itua qhov kev saib xyuas tiag tiag ntawm lub xeev khiav ntawmHauv kab Skev ruaj ntseglub cuab yeejThaum pom qhov xwm txheej ua haujlwm tsis zoo ntawm txoj kev thauj mus los,ityuav raug hla dhau ntawm txoj kev xa xov xwm tsis siv neeg kom ntseeg tau tias kev pabcuam network txuas ntxiv mus.
Kev Tiv Thaiv Kab Tsheb Tag Nrho
Nws txhawb nqaHauv kab(serial)hom kev tiv thaiv rau txhua hom tsheb khiav hauv txhua qhovkab hauv kabtxuas.Toxa tag nrho cov tsheb khiav hauvkab hauv kabtxuas mus rau qhovHauv kab Skev ruaj ntseglub cuab yeejrau kev ua tiav, thiab saib xyuas qhov xwm txheej khiav ntawm Inline Securitylub cuab yeejnyob rau hauv lub sijhawm tiag tiag. Thaum pom qhov xwm txheej tsis zoo ntawm kev thauj mus los,ityuav raug hla dhau ntawm txoj kev xa xov xwm tsis siv neeg kom ntseeg tau tias kev pabcuam network txuas ntxiv mus.
Kev Sib Npaug Thauj Khoom
Nws muaj peev xwm sib npaug ntawm kev thauj khoom ntse. Thaum ua tiav kev ua haujlwm ntawm ib qho xwbHauv kab Skev ruaj ntseglub cuab yeejtsis txaus los daws qhov teeb meem ntawdkab hauv kabtxuas kev sib txuas lus, nws tuaj yeem faib cov tsheb khiavkab hauv kabtxuas cov tsheb khiav mus rau N Monitor interfaces los ntawm kev teeb tsa pawg sib npaug ntawm qhov hnyav. Raws li MAC, IP cov ntaub ntawv, tus lej chaw nres nkoj, protocol thiab lwm yam ntaub ntawv,itua cov Hash algorithm load balancing uas xaiv tau, yog li ntawdkab hauv kabcov tsheb khiav sib txuas tau faib sib npaug zos rau ntau tuskab hauv kabkev ruaj ntsegcuab yeejs rau kev ua haujlwm ua pawg, uas ua kom zoo dua qhov kev ua tiav tag nrho ntawmkab hauv kabkev ruaj ntsegcuab yeejs. Yuav kom hloov kho tau raws li qhov xav tau ntawm cov xwm txheej ntawm kev siv bandwidth siab thiab cov tsheb khiav loj.
Kev Tshawb Pom Pob Khoom Plawv
Nws txhawb nqaTxthiabRxcov pob ntawv nrhiav lub plawv dhia los ntawm qhov uplink thiab downlink ntawm kev sib txuaskab hauv kabcov khoom siv ruaj ntseg, thiab ntes tau covcov cuab yeej inlinexwm txheej ua haujlwm thiab seb cov txheej txheem ua haujlwm tsheb khiav puas yog ib txwm muaj. Lub plawv dhia ob txoj kevpob ntawvkev tshawb nrhiav mechanism tuaj yeem qhia meej dua qhov xwm txheej ua haujlwm tam sim no ntawmkab hauv kabkev ruaj ntseglub cuab yeej, thiab ua kom zoo dua qub kom ntseeg tau tias lub network ua haujlwm li qub.
Nws tuaj yeem kho qhov kev hloov pauv ntawm lub plawv dhia ntawm txhua yamkab hauv kabcov khoom siv ruaj ntseg, xws li lub plawv dhiaTxlub sijhawm sib nrug, lub sijhawm rov ua dua siab tshaj plaws ntawm lub plawv dhia, lub plawv dhiaTxkev taw qhia, thiab lwm yam. Nws tuaj yeem ntes thiab txiav txim siab qhov xwm txheej txhaum ntawmkab hauv kabcov khoom siv ruaj ntseg hauv lub sijhawm, thiab paub txog kev hloov pauv sai ntawm kev tiv thaiv kev sib txuas.
Cov pob ntawv nrhiav lub plawv dhia yog cov qauv Ethernet txheej 2. Thaum hom choj txheej 2 pob tshab (xws li IPS / FW) raug xa mus, cov txheej 2 Ethernet thav ntawv yuav raug xa mus ib txwm yam tsis muaj kev thaiv lossis poob. Tib lub sijhawm, nws kuj tseem tuaj yeem txhawb nqa cov pob ntawv nrhiav lub plawv dhia Ethernet txheej 2, txheej 3 thiab txheej 4 kom hloov kho rau qee qhov tshwj xeebkab hauv kabcov khoom siv ruaj ntseg feem ntau tsis tuaj yeem xa cov duab Ethernet txheej 2 ib txwm muaj.
Raws li cov txheej txheem saum toj no, cov neeg siv tuaj yeem paub txog qhov cuam tshuam ntawm kev kuaj mob ntawm cov khoom siv ruaj ntseg txuas nrog, yog li nws tuaj yeem ua kom cov kev pabcuam ruaj ntseg ua haujlwm tau zoo dua.
Kev Hloov Pauv Los Ntawm Txoj Kev
Nws txhawb nqa kev bypass tsawg heevkev hloov pauvqeeb (<8ms), thiab cov neeg siv tsis tshua hnov qhov cuam tshuam rau lub network thaum lub cuab yeej ua bypasskev hloov pauvTib lub sijhawm, cov cuab yeej siv hluav taws xob tshwj xeeb rau kev hloov pauv tuaj yeem ua kom ntseeg tau tias qhov txuas ntawm qhov txuas tseem ceeb tsis cuam tshuam thaum lub sijhawm bypass.kev hloov pauvCov thev naus laus zis no yuav ua kom ntseeg tau tias txoj kev hla muskev hloov pauvmuaj kev nyab xeeb dua, thiab yuav tsis ua rau txheej 2 / Txheej 3 topology protocol ntawm cov kev sib txuas tiv thaiv rov suav dua thiab sib sau ua ke, kom txo qhov cuam tshuam rau tus neeg siv network thaum lub sijhawmkev hloov pauv.
Kev Thaiv Tsheb
Thaum lub cuab yeej ruaj ntseg pom cov kev sib txuas tsis raug cai lossis tsis zoo hauv cov tsheb khiav thiab xav tau thaiv lawv raws sijhawm, lub cuab yeej tuaj yeem cuam tshuam txhua lub pob ntawv teev tseg hauv cov tsheb khiav nce / nqis ntawmkab hauv kabtxuas raws li cov xwm txheej lim dej sib phim tuple kom ntseeg tau tias kev ua haujlwm zoo ntawm cov kev pabcuam network.
Daim iav tsheb
Ntxiv rau kev tiv thaiv kev tsheb khiav ntawm qhov txuas inline thiab Inline Security device (xws li IPS, WAF), txhua qhov kev tsheb khiav SPAN mirrored kuj tseem tuaj yeem tso tawm rau SPAN kev ruaj ntseg saib xyuas system (xws li IDS, APT), kom ua tau raws li qhov yuav tsum tau xa tawm ntawm SPAN kev saib xyuas cov ntaub ntawv tsheb khiav lossis kev kuaj tsheb khiav thiab kev txheeb xyuas.
SSL Proxy
Los ntawm SSL proxy function, lub pob ntawv encrypted thawj zaug raug decrypted thiab xa mus rau inline security protection system, thiab tom qab ntawd cov ntaub ntawv decrypted raug rov qab los thiab xa rov qab mus rau qhov txuas thawj, yog li muab cov ntaub ntawv decrypted rau inline security protection system yam tsis cuam tshuam rau kev xa cov ntaub ntawv encrypted ntawm qhov txuas thawj zaug ntawm tus neeg siv, thiab paub txog kev saib xyuas thiab kev tshuaj xyuas cov ntaub ntawv encrypted los ntawm lub system tshuaj xyuas.
4.2-Kev Xa Mus Rau SPAN
Kev Rov Ua Dua ntawm Kev Sib Txuas Lus Hauv Network
Nws txhawb nqaHauv kab(serial)hom kev tiv thaiv rau cov hom tsheb khiav tshwj xeeb hauv ib qhokab hauv kabtxuas.Toxa mus rau qee hom kev thauj mus los uas tus neeg siv tau teev tseg rau ntawmkab hauv kabtxuas mus rau qhovHauv kab Skev ruaj ntseglub cuab yeejrau kev ua tiav, thiab cov tsheb khiav tas mus li raug xa mus ncaj qha yam tsis tau ntws los ntawmHauv kab Skev ruaj ntseglub cuab yeej. Tib lub sijhawm ntawd,itua qhov kev saib xyuas tiag tiag ntawm lub xeev khiav ntawmHauv kab Skev ruaj ntseglub cuab yeejThaum pom qhov xwm txheej ua haujlwm tsis zoo ntawm txoj kev thauj mus los,ityuav raug hla dhau ntawm txoj kev xa xov xwm tsis siv neeg kom ntseeg tau tias kev pabcuam network txuas ntxiv mus.
Kev Sib Sau Ua Ke ntawm Network Traffic
Cov tsheb khiav nkag thawj zaug thiab cov tsheb khiav ua ntej tuaj yeem theej mus rau N channel teeb liab raws li 1 channel teeb liab lossis theej mus rau M channel teeb liab tom qab N channel teeb liab sib sau ua ke ntawm GE, 10GE, 40G thiab 100G kab ceev xa mus, uas daws tau qhov xav tau ntawm kev xa ntau dua ob lub cuab yeej mloog ntau lub qhov rooj hauv lub network tib lub sijhawm.
Kev Faib Tawm/Kev Xa Mus Rau Lwm Tus Cov Ntaub Ntawv
Faib cov metdata uas tuaj txog kom raug thiab muab pov tseg lossis xa cov kev pabcuam ntaub ntawv sib txawv mus rau ntau qhov interface outputs raws li tus neeg siv cov cai uas tau teev tseg ua ntej.
Kev Lim Cov Ntaub Ntawv Pob Khoom
Cov ntaub ntawv nkagtsheb khiavtuaj yeem raug cais tawm kom raug, thiab cov kev pabcuam ntaub ntawv sib txawv tuaj yeem yog cov cai whitelist lossis blacklist, thiab ntau qhov interface outputs tuaj yeem raug pov tseg lossis xa mus. Nws txhawb nqa kev sib xyaw ua ke raws li Ethernet hom, vlan tag, IP tsib-tuple,TCPtus cim qhia, cov yam ntxwv ntawm pob ntawv thiab lwm yam kom ua tau raws li qhov xav tau ntawm ntau yam khoom siv kev ruaj ntseg hauv network, kev tshuaj xyuas cov txheej txheem, kev tshuaj xyuas cov teeb liab, thiab lwm yam kev saib xyuas tsheb khiav.
Kev Sib Npaug Thauj Khoom
Qhov kev sib npaug ntawm qhov kev xaiv Hash algorithm tuaj yeem ua tiav raws li cov yam ntxwv sab hauv thiab sab nraud ntawm L2-L4 kom ntseeg tau tias kev sib tham ntawm cov ntaub ntawv ntws tau txais los ntawmSPANcov cuab yeej saib xyuas. Thaum lub xeev txuas hloov pauv, cov tswv cuab ntawm pawg chaw nres nkoj tawm tuaj yeem tawm (txuas DOWN) lossis koom nrog (txuas UP) tau yooj ywm, thiab pawg tawm tuaj yeem faib cov tsheb khiav rov qab kom ntseeg tau tias qhov sib npaug ntawm cov tsheb khiav tawm ntawm qhov chaw nres nkoj.
VLAN cim npe
VLAN Tsis Muaj Cim
VLAN Hloov Lawm
Txhawb kev sib phim ntawm txhua qhov chaw tseem ceeb hauv 128 bytes thawj zaug ntawm pob ntawv. Tus neeg siv tuaj yeem kho qhov offset tus nqi thiab qhov ntev thiab cov ntsiab lus ntawm qhov chaw tseem ceeb, thiab txiav txim siab txoj cai tso zis tsheb raws li tus neeg siv teeb tsa.
Lub Sijhawm Luam Ntawv
Txhawb nqa rau synchronize lub NTP server kom kho lub sijhawm thiab sau cov lus rau hauv pob ntawv hauv daim ntawv ntawm lub sijhawm sib piv nrog lub cim timestamp ntawm qhov kawg ntawm lub thav duab, nrog qhov tseeb ntawm nanoseconds.
Kev Tshem Tawm Qhov Av
Txhawb nqa VxLAN, VLAN, GRE, GTP, MPLS, IPIP header stripped nyob rau hauv lub pob ntaub ntawv thawj thiab xa cov zis.
Kev Txiav Cov Ntaub Ntawv/Packet Slicing
Nws txhawb nqadaim ntawv pob ntawvkev siv cov ntaub ntawv qub raws li txoj cai ntawm kev nkag mus rau hauv thiab qhov tso zis interface (64, 96, 128, 160, 192, 224, 256, 288, 320, 384, 512, 640, 768, 896, 960 bytes yog xaiv tau), thiab txoj cai tso zis ntawm kev khiav tsheb tuaj yeem siv tau raws li tus neeg siv teeb tsa.
Kev Txheeb Xyuas Cov Txheej Txheem Tunneling
Txhawb nqa kev txheeb xyuas ntau yam kev cai tunneling xws li GTP / GRE / VxLAN / PPTP / L2TP / PPPOE / IPIP. Raws li tus neeg siv teeb tsa, txoj kev tso zis tsheb khiav tuaj yeem siv tau raws li txheej sab hauv lossis txheej sab nraud ntawm qhov av.
Qhov Tseem Ceeb ntawm Kev Xa Pob Ntawv Mus Rau Lwm Tus
Nws txhawb nqa qhov kev txhais ntawm qhov tseem ceeb ntawm cov ntaub ntawv pob ntawv raws li qhov tseem ceeb ntawm qhov kev pabcuam ntawm qhov chaw nres nkoj nkag, thiab cov pob ntawv tseem ceeb raug xa mus rau qhov tso zis. Tom qab cov pob ntawv tseem ceeb raug xa mus, lwm cov pob ntawv nruab nrab thiab qis raug xa mus. Tsis txhob muaj kev ceeb toom ntawm lub kaw lus tshuaj xyuas los ntawm cov ntaub ntawv tseem ceeb ploj lawm.
Kev Ceeb Toom Txawv Txawv
Nws txhawb nqa lub tswb ceeb toom saib xyuas lub sijhawm tiag tiag thiab cov ntaub ntawv ceeb toom keeb kwm ntawm cov qauv tsheb khiav interface raws li qhov chaw teeb tsa. Nws txhawb nqa lub tswb ceeb toom saib xyuas lub sijhawm tiag tiag thiab cov ntaub ntawv ceeb toom keeb kwm raws li qhov xwm txheej kev noj qab haus huv ntawm cov khoom siv kho vajtse (cpu, nco, kub, kiv cua, fais fab mov, thiab lwm yam).
Interface Kub Thaub Qab
Nws txhawb nqa qhov kev teeb tsa input interface 1 + 1 primary / standby, output interface 1 + 1 primary / standby, thiab load balancing group N + 1 primary / standby configuration kom ua tiav kev ntseeg siab hauv cov txheej txheem ntawm kev khiav tsheb los ntawm input mus rau output.
Kev Ntsuas Microburst ntawm Tsheb
Nws tuaj yeem ntes tau lub sijhawm tshwm sim, lub sijhawm ntev npaum li cas thiab qhov nrawm ntawm kev sib tsoo ntawm cov tsheb khiav hauv lub sijhawm tiag tiag, thiab muab cov ntaub ntawv khaws cia keeb kwm, uas muab cov txheej txheem ntsuas thiab pom tau thiab lub hauv paus rau kev ua haujlwm thiab kev saib xyuas kev daws teeb meem thiab kev tshawb pom pob khoom poob.
Kev Tiv Thaiv Kev Sib Txuas Lus
Nws txhawb nqa kev tshawb pom thiab kev tiv thaiv ntawm qhov txuas nce / nqis oscillation xwm txheej ntawm txhua qhov interface, yog li kom tsis txhob poob ntawm cov ntaub ntawv nkag thiab tawm los ntawm kev sib txuas ntau zaus ntawm cov interfaces, thiab txhim kho kev ruaj khov ntawm kev sau tsheb thiab kev xa mus.
Qhov Tso Tawm Encapsulation Qhov
Nws txhawb nqa ERSPAN2, GRE, VXLAN, NVGRE hom qhov av encapsulation ntawm txhua qhov kev thauj mus los thiab cov zis kom ua tau raws li cov kev cai ntawm kev xa cov tsheb thauj mus los mus rau qhov chaw taws teeb xyuas.
Kev Txiav Txim Siab ntawm Pob Khoom Qhov Av
Nws txhawb nqa qhov kev ua haujlwm xaus lus ntawm qhov tunnel. Qhov kev ua haujlwm no tso cai rau kev teeb tsa IP chaw nyob / lub ntsej muag thiab MAC chaw nyob ntawm qhov chaw nkag mus rau hauv tsheb. Nws ua rau muaj kev xa ncaj qha ntawm cov tsheb uas yuav tsum tau sau rau hauv lub network neeg siv los ntawm cov txheej txheem encapsulation tunnel xws li GRE, GTP, thiab VXLAN mus rau qhov chaw sau khoom ntawm lub cuab yeej.
Kev Txhais Lus SSL ntawm SPAN
Txhawb kev thauj khoom daim ntawv pov thawj SSL decryption sib xws. Tom qab decrypting cov ntaub ntawv HTTPS encrypted rau cov tsheb khiav tshwj xeeb, nws yuav raug xa mus rau qhov back-end saib xyuas thiab tshuaj xyuas cov txheej txheem raws li qhov xav tau. Txhawb TLS1.0, TLS1.2 thiab SSL3.0
Kev Tshem Tawm Cov Ntaub Ntawv/Pob Ntawv
Kev txhawb nqa qhov chaw nres nkoj lossis qib txoj cai txheeb cais kom sib piv ntau cov ntaub ntawv sau thiab rov ua dua ntawm tib lub pob ntaub ntawv ntawm lub sijhawm teev tseg. Cov neeg siv tuaj yeem xaiv cov cim pob sib txawv (dst.ip, src.port, dst.port, tcp.seq, tcp.ack, dst.mac, src.mac, vlan.id)
Kev Tiv Thaiv Hnub Tim
Txhawb kev txheeb xyuas raws li txoj cai los hloov txhua qhov chaw tseem ceeb hauv cov ntaub ntawv raw kom ua tiav lub hom phiaj ntawm kev tiv thaiv cov ntaub ntawv rhiab heev. Raws li kev teeb tsa ntawm tus neeg siv, txoj cai tso zis tsheb khiav tuaj yeem siv tau.
Txheeb xyuas cov txheej txheem APP
Nws txhawb kev txheeb xyuas, tso tawm thiab pov tseg ntawm Cov Txheej Txheem Txheej Txheem raws li DNS / URL sib phim hom. DPI feature tsev qiv ntawv tuaj yeem koom ua ke los lees paub, tso tawm thiab pov tseg tsawg kawg 1800 hom ntawm daim ntawv thov protocol nta (xws li suab thiab video, kev ua si, instant messaging, database, email, P2P, thiab lwm yam), thiab DPI feature tsev qiv ntawv tuaj yeem hloov kho thiab hloov kho tshiab. Yog tias muaj kev xav tau tshwj xeeb, kev txhim kho theem nrab kuj tuaj yeem ua tiav.
Kev Tshem Tawm Cov Ntaub Ntawv Los Ntawm Cov Neeg Siv Pob Ntawv
Nws txhawb nqa qhov kev ua haujlwm ntawm tus kheej txhais cov pob ntawv unencapsulation, uas tuaj yeem strip cov encapsulation teb thiab cov ntsiab lus ntawm txhua qhov chaw ntawm thawj 128 bytes ntawm pob ntawv thiab tso tawm nws.
Kev Tsim Kho Tsheb
Tib lub sijhawm, cov thev naus laus zis tsim cov tsheb khiav tau siv rau hauv qhov interface tso zis los tso tawm cov ntaub ntawv ntws mus rau lub cuab yeej tshuaj xyuas, uas daws tau qhov teeb meem poob pob ntawv los ntawm micro-burst thiab zam kev ceeb toom tsis zoo los ntawm kev poob tsheb hauv lub kaw lus tshuaj xyuas.
Kev Sib Txuas Lus Lo Lus Tseem Ceeb ntawm Pob Khoom
Tom qab txhua yam ntsiab lus hauv qhov payload ntawm lub pob ntawv raug phim thiab ntaus, lub pob ntawv lossis kev sib tham cuam tshuam raug xa mus thiab tso tawm lossis pov tseg kom ua tau raws li qhov yuav tsum tau ua ntej ntawm cov ntaub ntawv tsheb khiav tshwj xeeb.
Kev Tshem Tawm Qhov Av
Nws txhawb nqa cov zis ntawm VXLAN, MPLS, GRE, SRV6, FABRICPATCH, GENEVE thiab lwm cov headers pob ntawv hauv cov ntaub ntawv thawj pob ntawv tom qab stripping.
Kev Txuas Ntev Ntev
Raws li tus neeg siv xav tau, txhua qhov kev sib tham tuaj yeem xa mus thiab tso tawm raws li tus lej ntawm cov bytes xa mus thiab tus lej ntawm cov pob ntawv xa mus, thiab cov kev sib tham tom ntej tuaj yeem pov tseg, kom ua tau raws li qhov yuav tsum tau ua ntawm lub kaw lus tshuaj xyuas tom qab hauv qee qhov xwm txheej tshwj xeeb, uas tsuas yog xav tau ib feem ntawm cov tsheb khiav ntawm cov kev sib tham, txo qhov siab ntawm kev tshuaj xyuas tsheb khiav thiab txhim kho kev ua haujlwm ntawm lub kaw lus tshuaj xyuas.
Kev Tshawb Fawb Txog Kev Thauj Mus Los
Nws txhawb nqa cov ntaub ntawv txheeb cais ntawm cov khoom ntawm txhua qhov kev nkag mus rau hauv interface, thiab tuaj yeem tso saib nws qhov loj me ntawm kev sib txawv ntawm kev sib txawv, qhov loj me/feem pua ntawm kev sib txawv TOPN ntawm IP chaw nyob, qhov loj me/feem pua ntawm kev sib txawv TOPN ntawm pawg txheej txheem thov, qhov loj me/feem pua ntawm kev sib txawv TOPN ntawm lub npe txheej txheem thov thiab cov ntaub ntawv sib tham ntawm kev sib txawv hauv daim ntawv ntawm cov duab kos hauv lub sijhawm tiag tiag, thiab muab cov txiaj ntsig ntawm kev txheeb cais mus rau cov ntaub ntawv hauv zos. Yog li, cov neeg siv tuaj yeem nkag siab meej dua txog cov qauv sib xyaw ntawm txhua qhov kev sib txawv uas tau sau, thiab muab cov ntaub ntawv txhawb nqa ncaj qha tshaj plaws rau kev kho cov tswv yim kev sib txawv thiab kev hloov pauv ntawm kev lag luam.
Kev Pom Kev Tsheb - Kev Tshawb Fawb Txog Cov Ntaub Ntawv Yooj Yim
Lub module tshuaj xyuas yooj yim ntawm kev ua haujlwm pom kev tsheb khiav tuaj yeem qhia cov ntaub ntawv yooj yim ntawm cov ntaub ntawv tsheb khiav uas tau ntes, xws li suav pob ntawv, kev faib pob ntawv unicast / multicast / broadcast, tus lej sib txuas, kev faib cov txheej txheem pob ntawv, thiab qhov loj ntawm tsheb khiav uas tau ntes.
Kev Pom Kev Tsheb - Kev Tshawb Fawb Txog DPI
Lub module tsom xam tob ntawm DPI ntawm qhov kev ua haujlwm pom kev tsheb khiav tuaj yeem ua qhov kev tsom xam tob ntawm cov ntaub ntawv tsheb khiav uas tau ntes los ntawm ntau qhov kev xam pom, thiab nthuav tawm cov ntaub ntawv ntxaws ntxaws hauv daim ntawv ntawm cov duab thiab cov lus.
Kev Pom Kev Tsheb - Kev Tshawb Fawb Txog Feem Pua ntawm Tsheb
● Kev tshuaj xyuas qhov sib piv ntawm cov txheej txheem kev thauj mus los: xws li TCP, UDP, ICMP, IGMP, ARP thiab lwm yam kev faib ua feem ntawm pob ntawv thiab cov ntaub ntawv tsheb khiav thiab daim duab qhia lub ncuav mog qab zib
● Kev tshuaj xyuas qhov sib piv ntawm IP traffic: xws li cov ntaub ntawv traffic uas tsim los ntawm cov chaw nyob IP sib txawv, IP-raws li traffic ranking TOP N thiab bar chart display
● Kev tshuaj xyuas qhov sib piv ntawm daim ntawv thov DPI: xws li HTTP, QQ, FTP thiab lwm yam kev cai thov, tus naj npawb ntawm cov bytes, kev faib tawm ntawm kev sib txuas lus thiab daim duab qhia ncuav mog qab zib
Kev Pom Kev Tsheb - Kev Tshawb Fawb Txog Lub Sijhawm Tsheb
Raws li cov xwm txheej lim dej sib txawv, xws li IP, chaw nres nkoj, txheej txheem thauj mus los, txheej txheem thov thiab lwm yam ntsiab lus tshwj xeeb, cov ntaub ntawv tam sim no ntawm lub hom phiaj ntes tsheb tuaj yeem raug soj ntsuam thiab nthuav tawm raws li lub sijhawm kuaj, thiab qhov loj me thiab qhov sib txawv ntawm tsheb tuaj yeem nug tau los ntawm kev txav lub sijhawm slider thiab kev ntsuas qhov ntsuas, thiab qhov tseeb tuaj yeem ncav cuag txog 1 millisecond.
Kev Pom Kev Tsheb - Kev Tshawb Fawb Txog Cov Ntaub Ntawv
Raws li cov xwm txheej lim sib txawv, xws li ID ntws, IP, chaw nres nkoj, txheej txheem thauj mus los, txheej txheem thov thiab lwm cov ntsiab lus tshwj xeeb, cov ntaub ntawv tsheb khiav tam sim no tuaj yeem tshuaj xyuas thiab suav raws li hom kev sib tham, uas yog, kev nthuav qhia cov ntaub ntawv ntws ntawm kev sib tham, suav nrog cov ntaub ntawv tsib-tuple ntawm txhua qhov ntws, hom kev nqa daim ntawv thov, tus lej thiab bytes ntawm kev xa pob ntawv, thiab cov ntaub ntawv ntws cuam tshuam. Thiab muaj qhov tso saib qeb duas raws li cov ntaub ntawv saum toj no. Raws li cov ntaub ntawv no, cov neeg siv tuaj yeem yooj yim xaiv cov hom tsheb khiav uas lawv xav tau, uas muab lub hauv paus ncaj qha rau cov neeg siv los tsim cov cai xa tsheb mus rau lwm qhov.
Kev Pom Kev Tsheb - Kev Tshawb Fawb Txog Pob Khoom
Raws li cov qauv lim dej sib txawv, xws li ID pob ntawv, IP, chaw nres nkoj, cov txheej txheem thauj mus los, cov txheej txheem thov thiab lwm yam ntsiab lus tshwj xeeb, cov ntaub ntawv tsheb khiav uas ntes tau tuaj yeem muab nrog kev nthuav qhia kev tshuaj xyuas qib ib pob ntawv, suav nrog:
● Kev tshuaj xyuas lub sijhawm sau cov ntaub ntawv
● Kev tshuaj xyuas cov ntaub ntawv tseem ceeb ntawm cov pob ntawv, xws li sip, dip, smac, dmac, protocol, flag, TTL, qhov ntev ntawm cov lus, cov xwm txheej tseem ceeb
● Kev tshuaj xyuas txoj kev xa pob ntawv thiab kev tso saib cov duab kos, xws li: lub sijhawm xa mus, kev ncua sijhawm xa mus, hom kev xa mus (routing, switching, firewall, load balancing, NAT)
● Cov ntaub ntawv qhia txog pob khoom thiab cov qauv qhia ntxaws ntxaws
● Kev tshuaj xyuas tus naj npawb ntawm cov pob khoom rov ua dua
Kev Pom Kev Tsheb - Kev Tshawb Fawb Txog Qhov Txhaum Cai
Lub module tshuaj xyuas qhov txhaum ntawm qhov kev ua haujlwm pom kev tsheb khiav tuaj yeem muab qhov chaw tshuaj xyuas qhov txhaum sib txawv rau cov ntaub ntawv tsheb khiav uas tau ntes, suav nrog:
● Kev txheeb xyuas qhov tsis zoo li qub, xws li: cov txiaj ntsig ntawm kev tshuaj xyuas kev pabcuam hauv network, cov txiaj ntsig ntawm kev tshuaj xyuas qhov xwm txheej tsis zoo li qub, cov txheej txheem hauv network raws li kev tshuaj xyuas tus cwj pwm (xws li tus lej ntawm cov khoom siv routing, cov khoom siv NAT, cov khoom siv firewall, cov khoom siv sib npaug ntawm cov khoom siv uas tau xa los ntawm cov ntaub ntawv xa mus)
● Kev tshuaj xyuas qhov ua tsis tiav ntawm theem ntawm cov lus qhia, xws li cov hom xwm txheej tsis zoo (kev sib txuas tsis lees txais / kev sib txuas tsis teb / kev sib txuas tsis xa cov ntaub ntawv / kev sib txuas ib nrab qhib / kev sib tham tsis tuaj yeem ncav cuag, thiab lwm yam), ● Kev tshuaj xyuas qhov ua tsis tiav ntawm theem pob, xws li: hom xwm txheej tsis zoo (qhov yuam kev checksum pob /TTL 0 / qhov yuam kev tsis tuaj yeem ncav cuag / qhov yuam kev checksum FCS, thiab lwm yam), kev piav qhia ntxaws txog cov ntaub ntawv tsis zoo, thiab cov ntsiab lus ntawm cov ntaub ntawv ntws.
● Kev tshuaj xyuas qhov teeb meem kev ruaj ntseg, xws li: hom xwm txheej tsis zoo (DDOS tawm tsam/firewall thaiv/ARP tawm tsam/UDP dej nyab/SYN FLOOD, thiab lwm yam), piav qhia txog cov ntaub ntawv tsis zoo, thiab cov ntsiab lus ntawm cov ntaub ntawv ntws
● Kev tshuaj xyuas qhov teeb meem ntawm lub network, xws li: hom xwm txheej tsis zoo (kev hloov voj voog/kev teeb tsa voj voog/kev mus tsis tau/kev cuam tshuam kev sib txuas, thiab lwm yam), kev piav qhia txog cov ntaub ntawv tsis zoo, thiab cov ntsiab lus ntawm kev ntws cov ntaub ntawv cuam tshuam
5-Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch Cov Lus Qhia Tshwj Xeeb
| ML-NPB-M2000 xyoo Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch Cov Lus Qhia Txog Kev Ua Haujlwm | ||||
| Kev sib txuas lus hauv network | Qhov module | 4 qhov chaw BYPASS lossis MONITOR module | ||
| Tus naj npawb ntawm cov kev sib txuas hauv kab | Txhawb kev tiv thaiv rau txog li 16 1G/10G optical links lossis 8 40G/100G optical links. | |||
| Saib xyuas kev saib xyuas interface | Txhawb nqa qhov siab tshaj plaws ntawm 64 * 1G / 10GE kev saib xyuas interfaces lossis 16 * 40G / 100G kev saib xyuas interfaces. | |||
| Kev tswj hwm sab nraud ntawm cov qhab nia | 1 * 10/100 / 1000M Ethernet chaw nres nkoj; | |||
| Hom kev xa tawm | Kev xa tawm hauv kab | Kev txhawb nqa | ||
| Kev xa tawm SPAN | Kev txhawb nqa | |||
| Cov Haujlwm ntawm Lub System | Hom kev xa tawm hauv kab | Kev tiv thaiv kev sib txuas ntawm cov dej ntws tshwj xeeb | Kev txhawb nqa | |
| Kev tiv thaiv txhua qhov kev ntws series | Kev txhawb nqa | |||
| Kev sib npaug ntawm qhov hnyav | Kev txhawb nqa | |||
| Kev kuaj pom lub plawv dhia | Kev txhawb nqa | |||
| Kev hloov pauv BYPASS | Kev txhawb nqa | |||
| Kev thaiv tsheb | Kev txhawb nqa | |||
| Kev sib piv ntawm txoj kev khiav tsheb | Kev txhawb nqa | |||
| SSL Proxy | Kev txhawb nqa | |||
| Hom kev xa tawm SPAN | Kev ua cov ntaub ntawv khiav tsheb yooj yim | Kev rov ua dua/kev sib sau ua ke/kev faib tawm ntawm cov tsheb khiav | Kev txhawb nqa | |
| Kev sib npaug ntawm qhov hnyav | Kev txhawb nqa | |||
| Kev lim tsheb raws li IP/protocol/port 5-tuple identifier | Kev txhawb nqa | |||
| Kev cim npe VLAN / kev hloov kho / kev rho tawm | Kev txhawb nqa | |||
| Kev luam lub sijhawm | Kev txhawb nqa | |||
| Kev tshem tawm qhov av encapsulation | Kev txhawb nqa | |||
| Kev Txiav Cov Ntaub Ntawv | Kev txhawb nqa | |||
| Kev Txheeb Xyuas Cov Txheej Txheem Tunneling | Kev txhawb nqa | |||
| Qhov tseem ceeb ntawm kev xa pob ntawv mus rau lwm qhov | Kev txhawb nqa | |||
| Kev ceeb toom tsis zoo li qub | Kev txhawb nqa | |||
| Interface kub standby | Kev txhawb nqa | |||
| Kev ntsuas qhov tawg me me | Kev txhawb nqa | |||
| Kev tiv thaiv kev sib txhuam ntawm qhov sib txuas | Kev txhawb nqa | |||
| Qhov Tso Tawm Encapsulation Qhov | Kev txhawb nqa | |||
| Kev xaus ntawm pob khoom qhov av | Kev txhawb nqa | |||
| Kev ua tiav cov tsheb khiav ceev heev | Tsis Txhob Siv SSL Decryption | Kev txhawb nqa | ||
| Kev rho tawm cov ntaub ntawv ntau dhau | Kev txhawb nqa | |||
| Kev npog cov ntaub ntawv | Kev txhawb nqa | |||
| Kev txheeb xyuas cov txheej txheem ntawm daim ntawv thov | Kev txhawb nqa | |||
| Kev txiav tawm raws li kev cai | Kev txhawb nqa | |||
| Kev ua kom dej ntws zoo | Kev txhawb nqa | |||
| Kev sib phim lo lus tseem ceeb | Kev txhawb nqa | |||
| Kev tshem tawm qhov av encapsulation | Kev txhawb nqa | |||
| Kev tshem tawm kev sib txuas ntev | Kev txhawb nqa | |||
| Kev soj ntsuam ntawm cov khoom ntws | Kev txhawb nqa | |||
| Kev kuaj mob thiab kev saib xyuas | Kev saib xyuas tiag tiag | Kev txhawb nqa | ||
| Cov lus nug txog keeb kwm ntawm txoj kev khiav tsheb | Kev txhawb nqa | |||
| Kev ntes tsheb khiav | Kev txhawb nqa | |||
| Kev kuaj pom kev tsheb khiav | Kev Tshawb Fawb Tseem Ceeb | Txhawb kev tso saib cov ntaub ntawv txheeb cais raws li cov ntaub ntawv yooj yim xws li suav pob ntawv, faib hom pob ntawv, suav kev sib txuas lus, thiab faib cov txheej txheem pob ntawv. | ||
| Kev Tshawb Fawb Txog DPI | Nws txhawb kev tshuaj xyuas qhov sib piv ntawm cov txheej txheem txheej thauj mus los, qhov sib piv ntawm unicast, broadcast thiab multicast, qhov sib piv ntawm IP traffic, thiab qhov sib piv ntawm DPI daim ntawv thov. Nws txhawb kev tshuaj xyuas thiab kev nthuav qhia cov ntsiab lus ntawm cov ntaub ntawv raws li lub sijhawm kuaj thiab qhov ntim ntawm cov ntaub ntawv. Nws txhawb kev tshuaj xyuas cov ntaub ntawv thiab cov txheeb cais raws li cov kwj dej sib tham. | |||
| Kev Tshawb Fawb Txog Qhov Txhaum Cai | Txhawb kev tshuaj xyuas qhov txhaum thiab qhov chaw siv cov ntaub ntawv tsheb khiav los ntawm ntau qhov kev xam pom, suav nrog: kev tshuaj xyuas tus cwj pwm xa pob ntawv, kev tshuaj xyuas qhov txhaum ntawm cov ntaub ntawv ntws, kev tshuaj xyuas qhov txhaum ntawm cov ntaub ntawv pob ntawv, kev tshuaj xyuas qhov txhaum ntsig txog kev ruaj ntseg, thiab kev tshuaj xyuas qhov txhaum ntsig txog network. | |||
| Muaj peev xwm ua tiav | 2.4Tbps | |||
| Tswj | Kev Tswj Xyuas Network CONSOLE | Kev txhawb nqa | ||
| Kev Tswj Xyuas Network IP/WEB | Kev txhawb nqa | |||
| Kev tswj hwm network SNMP | Kev txhawb nqa | |||
| Kev tswj hwm network TELNET/SSH | Kev txhawb nqa | |||
| SYSLOG protocol | Kev txhawb nqa | |||
| RADIUS lossis TADACS + kev lees paub kev tso cai hauv nruab nrab | Kev txhawb nqa | |||
| Kev ua haujlwm txheeb xyuas tus neeg siv | Kev lees paub lub npe neeg siv thiab tus password | |||
| Hluav taws xob | Qhov ntsuas hluav taws xob | AC-220V/DC-48V [Xaiv tau] | ||
| Lub zog zaus ntsuas | AC-50HZ | |||
| Tam sim no cov tswv yim ntsuas | AC-3A / DC-10A | |||
| Lub zog ua haujlwm tau ntsuas | Siab tshaj plaws 300W | |||
| Ib puag ncig | Kub ua haujlwm | 0-50℃ | ||
| Qhov kub cia khoom | -20-70 ℃ | |||
| Kev ua haujlwm av noo | 10% -95%, tsis-condensing | |||
| Kev Teeb tsa Tus Neeg Siv | Kev teeb tsa console | RS232 interface, 115200, 8, N, 1 | ||
| Kev lees paub tus password | Skev txhawb nqa | |||
| Qhov Loj ntawm Khib | Qhov chaw khib (U) | 2U 444mm * 88mm * 670mm | ||
6-Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch Application
6.1LubRyog ntawmKab Skev ruaj ntsegEcov khoom siv (IPS / FW)
Cov hauv qab no yog ib qho IPS (Intrusion Prevention System), FW (Firewall) hom kev xa tawm, IPS / FW raug xa mus rau cov khoom siv network (routers, switches, thiab lwm yam) ntawm cov tsheb khiav los ntawm kev siv cov kev kuaj xyuas kev ruaj ntseg, raws li txoj cai kev ruaj ntseg sib xws los txiav txim siab qhov kev tso tawm lossis thaiv cov tsheb khiav sib xws, kom ua tiav cov txiaj ntsig ntawm kev tiv thaiv kev ruaj ntseg.
Cov hauv qab no yog ib qho IPS (Intrusion Prevention System), FW (Firewall) hom kev xa tawm, IPS / FW raug xa mus rau cov khoom siv network (routers, switches, thiab lwm yam) ntawm cov tsheb khiav los ntawm kev siv cov kev kuaj xyuas kev ruaj ntseg, raws li txoj cai kev ruaj ntseg sib xws los txiav txim siab qhov kev tso tawm lossis thaiv cov tsheb khiav sib xws, kom ua tiav cov txiaj ntsig ntawm kev tiv thaiv kev ruaj ntseg.
6.2 Kev Tiv Thaiv Cov Khoom Siv Inline Link Series
Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch raug xa mus ua ntu zus ntawm cov khoom siv network (routers, switches, thiab lwm yam), thiab cov ntaub ntawv ntws ntawm cov khoom siv network tsis coj mus rau IPS / FW ncaj qha lawm, "Smart Inline Bypass Switch" mus rau IPS / FW, thaum IPS / FW vim muaj kev thauj khoom ntau dhau, kev sib tsoo, kev hloov kho software, kev hloov kho txoj cai thiab lwm yam xwm txheej ntawm kev ua tsis tiav, "Smart Inline Bypass Switch" los ntawm kev tshawb pom cov lus qhia ntawm lub plawv dhia ntse Lub luag haujlwm ntawm kev tshawb pom raws sijhawm, thiab yog li hla lub cuab yeej ua tsis tiav, yam tsis cuam tshuam rau lub hauv paus ntawm lub network, cov khoom siv network ceev ceev txuas ncaj qha los tiv thaiv lub network sib txuas lus ib txwm; thaum IPS / FW ua tsis tiav rov qab, tab sis kuj los ntawm kev tshawb pom cov pob ntawv ntawm lub plawv dhia ntse Kev tshawb pom ntawm kev tshawb pom raws sijhawm ntawm lub luag haujlwm, qhov txuas thawj zaug los rov qab kho qhov kev ruaj ntseg ntawm kev kuaj xyuas kev ruaj ntseg ntawm lub network.
Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch muaj lub zog ntse nrhiav cov lus qhia txog lub plawv dhia, tus neeg siv tuaj yeem kho lub sijhawm lub plawv dhia thiab tus lej siab tshaj plaws ntawm kev sim dua, los ntawm kev hloov kho cov lus qhia txog lub plawv dhia ntawm IPS / FW rau kev kuaj mob, xws li xa cov lus kuaj lub plawv dhia mus rau qhov chaw nres nkoj upstream / downstream ntawm IPS / FW, thiab tom qab ntawd tau txais los ntawm qhov chaw nres nkoj upstream / downstream ntawm IPS / FW, thiab txiav txim siab seb IPS / FW puas ua haujlwm ib txwm los ntawm kev xa thiab txais cov lus qhia txog lub plawv dhia.
6.3 Txoj Cai "SpecFlow" InlineKev Ruaj NtsegKev Tiv Thaiv Series
Thaum lub cuab yeej network ruaj ntseg tsuas yog xav tau kev daws teeb meem tshwj xeeb hauv kev tiv thaiv kev ruaj ntseg series, los ntawm Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch traffic per-processing function, los ntawm txoj cai tshuaj xyuas traffic los txuas lub cuab yeej ruaj ntseg inline "Concerned" traffic raug xa rov qab ncaj qha mus rau qhov txuas network, thiab "concerned traffic section" yog traction rau lub cuab yeej kev nyab xeeb hauv-kab los ua kev kuaj xyuas kev nyab xeeb. Qhov no yuav tsis tsuas yog tswj hwm kev siv ib txwm ntawm kev ua haujlwm nrhiav kev nyab xeeb ntawm lub cuab yeej kev nyab xeeb, tab sis kuj txo qhov tsis zoo ntawm cov khoom siv kev nyab xeeb los daws qhov kev ntxhov siab; tib lub sijhawm, "Smart Inline Bypass Switch" tuaj yeem ntes tau qhov xwm txheej ua haujlwm ntawm lub cuab yeej kev nyab xeeb hauv lub sijhawm tiag tiag. Lub cuab yeej kev nyab xeeb ua haujlwm tsis zoo hla cov ntaub ntawv tsheb khiav ncaj qha kom tsis txhob cuam tshuam kev pabcuam network.
Lub Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch tuaj yeem txheeb xyuas cov tsheb khiav raws li L2-L4 txheej header identifier, xws li VLAN tag, qhov chaw nyob MAC / qhov chaw nyob, qhov chaw nyob IP, hom pob IP, qhov chaw nres nkoj protocol txheej thauj mus los, protocol header key tag, thiab lwm yam. Ntau yam kev sib phim ua ke tuaj yeem txhais tau yooj yim los txhais cov hom tsheb khiav tshwj xeeb uas txaus siab rau ib lub cuab yeej ruaj ntseg tshwj xeeb thiab tuaj yeem siv dav rau kev xa cov cuab yeej tshuaj xyuas kev ruaj ntseg tshwj xeeb (RDP, SSH, database auditing, thiab lwm yam).
6.4Load sib npaugKev Ruaj Ntseg Hauv KabKev Tiv Thaiv Series
Lub Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch tau muab tso rau hauv series ntawm cov khoom siv network (routers, switches, thiab lwm yam). Thaum ib qho kev ua haujlwm IPS / FW tsis txaus los daws qhov teeb meem ntawm network link traffic, Lub luag haujlwm sib npaug ntawm cov tsheb khiav ntawm tus tiv thaiv, "bundling" ntawm ntau IPS / FW cluster processing network link traffic, tuaj yeem txo qhov kev nyuaj siab ntawm IPS / FW processing, txhim kho kev ua haujlwm tag nrho kom tau raws li qhov bandwidth siab ntawm qhov chaw xa tawm.
Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch muaj lub zog ua haujlwm sib npaug zoo, raws li lub thav duab VLAN tag, MAC cov ntaub ntawv, IP cov ntaub ntawv, tus lej chaw nres nkoj, protocol thiab lwm yam ntaub ntawv ntawm Hash load balancing faib ntawm cov tsheb khiav kom ntseeg tau tias txhua IPS / FW tau txais cov ntaub ntawv ntws Session integrity.
6.5Ntau-seriesCov Khoom Siv Hauv Kab FqisTkev sib cav sib cegPkev tiv thaiv(Hloov pauvLub cevKev Txuas Serial rauKev xav txogKev Sib Txuas Ua Ke)
Hauv qee qhov txuas tseem ceeb (xws li cov chaw muag khoom hauv Is Taws Nem, qhov txuas sib pauv hauv thaj chaw server) qhov chaw feem ntau yog vim muaj kev xav tau ntawm cov yam ntxwv kev ruaj ntseg thiab kev xa tawm ntawm ntau yam khoom siv kuaj kev ruaj ntseg hauv kab (xws li firewall, cov khoom siv tawm tsam DDOS, WEB daim ntawv thov firewall, cov khoom siv tiv thaiv kev nkag mus, thiab lwm yam), ntau yam khoom siv kuaj kev ruaj ntseg tib lub sijhawm ua ke ntawm qhov txuas kom nce qhov txuas ntawm ib qho chaw tsis ua haujlwm, txo qhov kev ntseeg siab tag nrho ntawm lub network. Thiab hauv cov khoom siv kev ruaj ntseg uas tau hais los saum toj no hauv online, kev hloov kho khoom siv, kev hloov khoom siv thiab lwm yam kev ua haujlwm, yuav ua rau lub network cuam tshuam kev pabcuam ntev thiab kev txiav txim siab loj dua kom ua tiav kev ua tiav ntawm cov haujlwm zoo li no.
Los ntawm kev siv Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch ua ke, hom kev siv ntau yam khoom siv ruaj ntseg txuas ua ke ntawm tib qhov txuas tuaj yeem hloov pauv los ntawm "Physical Serial Connection Mode" mus rau "Physical Parallel Connection but Logical Serial Connection Mode". Qhov no ua rau txo qhov chaw ntawm ib qho tsis ua haujlwm ntawm qhov txuas serial thiab txhim kho kev ntseeg tau ntawm qhov txuas. Tib lub sijhawm, Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch tuaj yeem coj cov tsheb khiav txuas raws li qhov xav tau, ua tiav tib qho txiaj ntsig kev ua haujlwm ruaj ntseg ntawm cov tsheb khiav ib yam li hom kev txuas serial thawj.
Ntau tshaj ib lub cuab yeej Inline Security tib lub sijhawm hauv daim duab qhia txog kev xa tawm series:
Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch Deployment Diagram:
(Hloov Pysical Serial Connection mus rau Logical Parallel Connection)
6.6Raws li qhovDTxoj Cai Lij Choj ntawmTraffic InlineSkev ruaj ntsegDkev tshawb nrhiavPkev tiv thaiv
Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch, lwm qhov xwm txheej ntawm daim ntawv thov siab heev yog raws li txoj cai tswjfwm kev ruaj ntseg ntawm kev thauj mus los, kev xa tawm ntawm txoj kev raws li qhia hauv qab no:
Piv txwv li, siv cov khoom siv kuaj kev ruaj ntseg "Anti-DDoS attack protection and detection", los ntawm kev siv "Smart Bypass Switch" thiab tom qab ntawd siv cov khoom siv tiv thaiv DDOS thiab tom qab ntawd txuas nrog "Smart Bypass Switch", thiab thaum muaj kev tawm tsam, "Smart Bypass Switch" ib txwm muaj, cov ntaub ntawv xa mus rau "Anti-DDOS attack protection device" yuav raug xa mus rau "Smart Bypass switch" thiab xa mus rau "Smart Bypass switch" los ntawm kev siv dynamic policy delivery interface. Tom qab muaj kev tawm tsam, "Bypass Switch" yuav hloov kho cov ntaub ntawv "traffic traction dynamic" tom qab tau txais cov cai dynamic policy pool thiab tam sim ntawd cov cai yuav raug xa mus rau "anti-DDoS attack protection and detection" kom ua haujlwm tau zoo.
Daim ntawv thov raws li "Smart Bypass Switch" yooj yim dua rau kev siv dua li kev txhaj tshuaj BGP ib txwm muaj lossis lwm txoj kev rub tsheb, thiab ib puag ncig tsis tshua vam khom lub network thiab kev ntseeg siab dua.
"Smart Bypass Switch" muaj cov yam ntxwv hauv qab no los txhawb kev tiv thaiv kev ruaj ntseg ntawm txoj cai dynamic:
1. "Smart Bypass Switch" los muab sab nraud cov cai raws li WEBSERIVCE interface, kev sib koom ua ke yooj yim nrog cov khoom siv kev ruaj ntseg thib peb.
2. "Smart Bypass Switch" raws li cov khoom siv kho vajtse ntshiab ASIC chip xa mus txog 100Gbps xaim-ceev pob ntawv yam tsis thaiv kev xa mus rau lwm qhov, thiab "kev thauj mus los dynamic rule library" tsis hais tus lej.
3. "Smart Bypass Switch" ua-nyob rau hauv kev ua haujlwm BYPASS, txawm tias tus tiv thaiv nws tus kheej tsis ua haujlwm, kuj tuaj yeem hla dhau qhov txuas thawj zaug tam sim ntawd, tsis cuam tshuam rau qhov txuas thawj ntawm kev sib txuas lus ib txwm muaj.
6.7Kev Sib Tham Txog Tsheb Thauj Mus Los Hauv Kabrau Kev Ruaj Ntseg Sab Nraud (Inline + SPAN)
Lub Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch feem ntau yog siv rau hauv lub network IT lossis lub network huab kom muab kev tiv thaiv hauv kab rau WAF/IPS cov khoom siv thiab qhov txuas qub. Cov neeg siv kuj tseem yuav muaj cov kev cai ntxiv rau kev sim, kev txheeb xyuas, lossis kev xa cov khoom siv saib xyuas bypass, uas yuav tsum tau txais cov ntaub ntawv tsheb khiav ntawm qhov txuas no.
Yog li ntawd, siv lub luag haujlwm mirroring ntawm Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch, qhov kev thauj mus los ntawm inline serial link tuaj yeem mirrored los ntawm qhov chaw nres nkoj saib xyuas, raws li pom hauv daim duab hauv qab no:
Daim duab hauv qab no qhia txog qhov xwm txheej ntawm kev siv txuas ntxiv ntawm cov tsheb khiav hauv kab thiab cov tsheb khiav hauv qhov chaw nres nkoj uas tau hloov pauv. Qhov no tso cai rau kev tiv thaiv cov tsheb khiav hauv kab yam tsis raug cuam tshuam los ntawm cov tsheb khiav hauv qhov chaw nres nkoj uas tau hloov pauv. Lub kaw lus tshuaj xyuas IDS tuaj yeem tau txais ob qho tib si cov tsheb khiav hauv kab thiab cov tsheb khiav hauv qhov chaw nres nkoj uas tau hloov pauv tib lub sijhawm. Txoj kev xa tawm tau pom hauv daim duab hauv qab no:
6.8Kev Tshem Tawm Cov Ntaub Ntawv/Pob NtawvDaim Ntawv Thov
Raws li tau pom hauv cov qauv kev xa daim ntawv thov saum toj no, txhawm rau kom ntseeg tau tias cov ntaub ntawv qub tau sau raws tag nrho qhov txuas, qee cov ntaub ntawv zoo sib xws yuav raug sau ntau zaus hauv ib txoj kev. Qhov no ua rau muaj kev ceeb toom cuav thiab kev xa rov qab ntau ntxiv hauv lub kaw lus backend, ua rau kev ua haujlwm ntawm lub kaw lus tshuaj xyuas ntau ntxiv thiab cuam tshuam rau qhov tseeb thiab kev ua haujlwm ntawm kev tshuaj xyuas. Raws li kev daws teeb meem, ua ntej, cov ntaub ntawv rov ua dua uas tau rho tawm hauv cov nodes ntes sib txawv. Tsuas yog ib pob ntaub ntawv raug xa mus rau backend NPM network kev ua tau zoo kev tshuaj xyuas system thiab APM daim ntawv thov kev ua tau zoo kev tshuaj xyuas system, yog li txuag kev ua tau zoo ntawm lub kaw lus tshuaj xyuas thiab txhim kho kev ua haujlwm zoo thiab qhov tseeb ntawm kev tshuaj xyuas.
6.9Cov ntaub ntawv/Pob ntawvVLAN Taggkev uaDaim Ntawv Thov
Hauv ib puag ncig network uas pom hauv daim duab saum toj no, cov kev daws teeb meem no siv los cim cov ntaub ntawv raw los ntawm ntau yam khoom siv network thiab cov nodes txuas. Thaum muaj tsheb khiav tsis zoo lossis cov ntaub ntawv pob tshwm sim hauv network, cov khoom siv tshuaj xyuas backend tuaj yeem nrhiav tau qhov chaw ntawm cov ntaub ntawv tsis zoo sai thiab raug los ntawm kev taug qab rov qab raws li cov ntawv cim cov ntaub ntawv.
6.10 Kev Sib Txuas Lus Hauv NetworkKev Teem Caij Sib Koom Ua KeDaim Ntawv Thov
Hauv ib puag ncig network uas tau qhia hauv daim duab saum toj no, ntau cov ntaub ntawv txuas 10GE, 25GE, 40GE thiab 100GE tau muab tso rau hauv Mylinking™ Network Packet Broker ntxiv rau Inline Bypass Switch siv kev faib tawm optical lossis daim iav port. Tom qab ntawd, kev lim dej thiab kev faib cov tsheb khiav tau siv los tso tawm cov ntaub ntawv kev pabcuam sib txawv mus rau ntau yam backend out-of-band network saib xyuas thiab cov khoom siv ruaj ntseg. Thaum cov teeb meem ntawm cov pob khoom network lossis kev hloov pauv ntawm cov tsheb khiav tsis zoo xav tau kev cuam tshuam tes, kev ntes cov pob khoom tiag tiag thiab kev tshuaj xyuas cov pob khoom qub tuaj yeem ua tiav tam sim ntawd los pab cov neeg siv tshuaj xyuas sai thiab nrhiav qhov txhaum.
6.11Kev Sib Txuas LusKev Tshawb Fawb Txog Kev Pom Kev ntawm Cov Ntaub Ntawv TshebDaim Ntawv Thov
Nws tuaj yeem nthuav tawm txhua cov ntaub ntawv uas tau ntes thiab ntes tau hauv ntau qhov ntau thiab ntau qhov kev xav los ntawm kev siv cov duab thiab cov ntawv sib tham sib uas yooj yim siv, suav nrog cov qauv sib xyaw ua ke ntawm cov tsheb khiav, kev faib cov txheej txheem thov, kev faib cov tsheb khiav ntawm txhua lub network nodes, txoj kev xa cov ntaub ntawv, kev tshawb pom qhov xwm txheej tsis zoo, qhov chaw tseeb ntawm cov khoom sib txuas / txuas tsis zoo, cov xwm txheej sib cuam tshuam ntawm cov lus, kev txhim kho tsheb khiav thiab lwm yam rau kev saib xyuas thiab kev txheeb xyuas, yog li tsim kom muaj kev sau cov ntaub ntawv thiab kev ruaj ntseg platform rau cov tes hauj lwm lag luam.
Pawg khoom
-
Mylinking™ Network Packet Broker (NPB) ML-NPB-5690
-
Mylinking™ Network Packet Broker (NPB) ML-NPB-5410+
-
Mylinking™ Network Packet Broker (NPB) ML-NPB-54...
-
Mylinking™ Network Packet Broker (NPB) ML-NPB-3440L
-
Mylinking™ Network Packet Broker (NPB) ML-NPB-2410
-
Mylinking™ Network Packet Broker (NPB) ML-NPB-4810L
