Qhov sib txawv tseem ceeb ntawm kev ntes cov pob ntawv siv Network TAP thiab SPAN ports.
Kev Mirroring Chaw Nres Nkoj(kuj tseem hu ua SPAN)
Network Tap(tseem hu ua Replication Tap, Aggregation Tap, Active Tap, Copper Tap, Ethernet Tap, thiab lwm yam)TAP (Qhov Chaw Nkag Mus Rau Lub Rooj Sib Tham)yog ib qho khoom siv kho vajtse uas tsis siv neeg kiag li, uas tuaj yeem ntes cov tsheb khiav hauv lub network yam tsis siv neeg. Nws feem ntau siv los saib xyuas cov tsheb khiav ntawm ob lub ntsiab lus hauv lub network. Yog tias lub network ntawm ob lub ntsiab lus no muaj ib txoj hlua fais fab, lub network TAP yuav yog txoj hauv kev zoo tshaj plaws los ntes cov tsheb khiav.
Ua ntej piav qhia txog qhov sib txawv ntawm ob qho kev daws teeb meem (Port Mirror thiab Network Tap), nws yog ib qho tseem ceeb kom nkag siab tias Ethernet ua haujlwm li cas. Ntawm 100Mbit thiab siab dua, cov tswv tsev feem ntau hais lus hauv full duplex, txhais tau tias ib tus tswv tsev tuaj yeem xa (Tx) thiab tau txais (Rx) tib lub sijhawm. Qhov no txhais tau tias ntawm 100 Mbit cable txuas nrog ib tus tswv tsev, tag nrho cov tsheb khiav hauv network uas ib tus tswv tsev tuaj yeem xa / txais (Tx / Rx)) yog 2 × 100 Mbit = 200 Mbit.
Qhov Port mirroring yog qhov active packet replication, uas txhais tau tias lub network device yog lub luag haujlwm rau kev theej cov packet mus rau qhov mirrored port.
Kev ntes tsheb khiav: TAP vs SPAN
Thaum saib xyuas cov tsheb khiav hauv network, yog tias koj tsis xav ua haujlwm txhawb nqa ncaj qha thaum tus neeg siv tab tom ua cov nyiaj them poob haujlwm, koj muaj ob txoj kev xaiv tseem ceeb. Hauv tsab xov xwm tom ntej, peb yuav muab ib qho kev piav qhia txog TAP (Test Access Point) thiab SPAN (Switch Port Analyzer). Yog xav paub ntxiv txog kev tshuaj xyuas pob ntawv, tus kws tshaj lij Timo'Neill muaj ntau tsab xov xwm ntawm lovemytool.com uas piav qhia txog ntau yam, tab sis ntawm no, peb yuav siv txoj hauv kev dav dua.
SPAN
Kev tsom iav chaw nres nkoj yog ib txoj kev los saib xyuas cov tsheb khiav hauv network los ntawm kev xa ib daim qauv ntawm txhua lub pob khoom nkag thiab / lossis tawm los ntawm ib lossis ntau lub pob khoom (lossis VLans) ntawm lub hloov mus rau lwm lub pob khoom txuas nrog lub tshuab tshuaj xyuas tsheb khiav hauv network. Cov spans feem ntau siv rau hauv cov kab ke yooj yim dua los saib xyuas ntau qhov chaw tib lub sijhawm. Tus lej tseeb ntawm kev xa xov hauv network uas nws tuaj yeem saib xyuas nyob ntawm qhov chaw uas SPAN tau teeb tsa piv rau cov khoom siv hauv chaw khaws ntaub ntawv. Tej zaum koj yuav pom qhov koj tab tom nrhiav, tab sis nws yooj yim nrhiav koj tus kheej nrog cov ntaub ntawv ntau dhau. Piv txwv li, nws muaj peev xwm nrhiav tau ntau daim qauv ntawm cov ntaub ntawv tib yam thoob plaws tag nrho VLAN. Qhov no ua rau LAN daws teeb meem nyuaj dua, thiab tseem cuam tshuam rau qhov ceev ntawm lub hloov pauv cpus lossis cuam tshuam rau Ethernet los ntawm kev tshawb pom qhov chaw. Yeej, qhov ntau dua spans, qhov ntau dua nws yuav poob cov pob khoom. Piv rau cov kais, spans tuaj yeem tswj hwm deb, uas txhais tau tias siv sijhawm tsawg dua los hloov cov kev teeb tsa, tab sis cov kws ua haujlwm hauv network tseem xav tau.
Cov chaw nres nkoj SPAN tsis yog ib qho thev naus laus zis passive, raws li qee qhov kev thov, vim tias lawv tuaj yeem muaj lwm yam kev ntsuas tau ntawm cov tsheb khiav hauv network, suav nrog:
- Lub sijhawm los hloov pauv kev sib cuam tshuam ntawm tus ncej
- Tso cov pob khoom pov tseg vim yog kev tshawb nrhiav ntau dhau
- Cov pob khoom puas tsuaj raug tso tseg yam tsis tau ceeb toom, cuam tshuam kev tshuaj xyuas
Yog li ntawd, SPAN chaw nres nkoj zoo dua rau cov xwm txheej uas kev poob cov pob ntawv tsis cuam tshuam rau kev tshuaj xyuas, lossis qhov twg tus nqi raug txiav txim siab.
KAW
Qhov sib txawv, cov kais dej yuav tsum siv nyiaj rau cov khoom siv kho vajtse ua ntej, tab sis lawv tsis tas yuav teeb tsa ntau. Tseeb tiag, vim tias lawv yog passive, lawv tuaj yeem txuas thiab txiav tawm ntawm lub network yam tsis cuam tshuam rau nws. Cov kais dej yog cov khoom siv kho vajtse uas muab txoj hauv kev los nkag mus rau cov ntaub ntawv ntws los ntawm lub network computer thiab feem ntau siv rau kev ruaj ntseg ntawm lub network thiab kev saib xyuas kev ua haujlwm. Cov tsheb khiav uas tau saib xyuas hu ua "pass-through" traffic thiab qhov chaw nres nkoj siv rau kev saib xyuas hu ua "monitoring port". Txhawm rau kom pom tseeb dua, cov kais dej tuaj yeem tso rau ntawm cov routers thiab cov switches.
Vim tias TAP tsis cuam tshuam rau cov pob ntawv, nws tuaj yeem pom tau tias yog ib txoj hauv kev tsis siv neeg los saib cov tsheb khiav hauv network.
Muaj peb hom kev daws teeb meem TAP:
- Lub network splitter (1: 1)
- Aggregate TAP (ntau : 1)
- Kev Tsim Kho Dua Tshiab TAP (1: ntau)
TAP rov ua cov tsheb khiav mus rau ib qho cuab yeej saib xyuas passive, lossis rau lub cuab yeej relay network packet high-density, thiab ua haujlwm rau ntau yam (feem ntau ntau) QOS testing tools, network monitoring tools, thiab network sniffer tools xws li wireshark.
Ntxiv mus, cov hom TAP sib txawv nyob ntawm hom cable, suav nrog fiber TAP thiab gigabit tooj liab TAP, ob qho tib si ua haujlwm zoo ib yam los ntawm kev xa ib feem ntawm lub teeb liab mus rau lub network traffic analyzer, thaum lub qauv tseem ceeb txuas ntxiv xa mus yam tsis muaj kev cuam tshuam. Rau fiber TAP, nws yog faib lub teeb liab ua ob, thaum nyob rau hauv lub kaw lus tooj liab cable, nws yog rov ua dua lub teeb liab hluav taws xob.
Kev sib piv ntawm TAP thiab SPAN
Ua ntej, qhov chaw nres nkoj SPAN tsis haum rau qhov txuas puv-duplex 1G, thiab txawm tias thaum qis dua nws lub peev xwm siab tshaj plaws, nws sai sai tso cov pob ntawv vim nws tau overburdened, lossis tsuas yog vim tias qhov hloov pauv qhov tseem ceeb rau hnub chaw nres nkoj-rau-chaw nres nkoj dhau ntawm cov ntaub ntawv chaw nres nkoj SPAN. Tsis zoo li cov kais network, SPAN chaw nres nkoj lim tawm cov yuam kev txheej txheem lub cev, ua rau qee hom kev tshuaj xyuas nyuaj dua, thiab raws li peb tau pom, lub sijhawm nce tsis raug thiab cov thav duab hloov pauv tuaj yeem ua rau muaj teeb meem lwm yam. Ntawm qhov tod tes, TAP tuaj yeem ua haujlwm puv-duplex 1G txuas.
TAP kuj tseem tuaj yeem ua tiav kev ntes cov pob ntawv tag nrho thiab ua qhov kev tshuaj xyuas pob ntawv tob rau cov txheej txheem, kev ua txhaum cai, kev nkag mus rau hauv, thiab lwm yam. Yog li, cov ntaub ntawv TAP tuaj yeem siv ua pov thawj hauv tsev hais plaub, thaum cov ntaub ntawv chaw nres nkoj SPAN tsis tuaj yeem siv tau.
Kev ruaj ntseg yog lwm qhov uas muaj qhov sib txawv ntawm ob txoj kev. SPAN cov chaw nres nkoj feem ntau yog teeb tsa rau kev sib txuas lus ib txoj kev, tab sis lawv kuj tuaj yeem tau txais kev sib txuas lus hauv qee kis, ua rau muaj qhov tsis zoo loj heev. Qhov sib txawv, TAP tsis tuaj yeem hais txog thiab tsis muaj chaw nyob IP, yog li nws tsis tuaj yeem raug hacked.
Feem ntau cov chaw nres nkoj SPAN tsis dhau VLAN cim npe, uas ua rau nws nyuaj rau nrhiav pom VLAN qhov tsis ua haujlwm, tab sis cov kais dej tsis tuaj yeem pom tag nrho VLAN network ib zaug. Yog tias cov kais dej sib sau ua ke tsis siv, TAP yuav tsis muab tib txoj kab rau ob txoj kev, tab sis yuav tsum ceev faj nrog kev tshawb pom overage. Muaj cov kais dej sib sau ua ke, xws li Booster rau Profitap, uas sib sau ua ke yim 10/100 / 1G chaw nres nkoj hauv 1G-10G tso zis.
Lub Booster muaj peev xwm nkag mus rau cov pob ntawv los ntawm kev ntxig cov cim npe VLAN. Ua li no, cov ntaub ntawv qhov chaw nres nkoj ntawm txhua pob ntawv yuav raug xa mus rau lub tshuab ntsuas.
Cov chaw nres nkoj SPAN tseem yog ib qho cuab yeej uas cov thawj coj hauv network yuav siv, tab sis yog tias qhov ceev thiab kev nkag mus rau txhua cov ntaub ntawv hauv network yog qhov tseem ceeb, TAP yog qhov kev xaiv zoo dua. Thaum txiav txim siab seb yuav siv txoj hauv kev twg, cov chaw nres nkoj SPAN zoo dua rau cov tes hauj lwm uas siv tsawg, vim tias cov pob ntawv ploj tsis cuam tshuam rau kev tshuaj xyuas lossis yog xaiv tau hauv cov xwm txheej uas tus nqi yog qhov txhawj xeeb. Txawm li cas los xij, ntawm cov tes hauj lwm uas muaj tsheb khiav ntau, TAP lub peev xwm, kev ruaj ntseg, thiab kev ntseeg tau yuav muab kev pom tag nrho rau hauv cov tsheb khiav ntawm koj lub network yam tsis ntshai ntawm kev poob pob ntawv lossis lim tawm cov teeb meem ntawm lub cev.
○ Pom tseeb tag nrho
○ Rov ua dua txhua qhov kev thauj mus los (txhua pob ntawv ntawm txhua qhov loj me thiab hom)
○ Tsis cuam tshuam, tsis cuam tshuam (tsis hloov cov ntaub ntawv)
○ Hauv series, tsis muaj qhov chaw nres nkoj hloov pauv siv los rov ua cov tsheb khiav puv-duplex hauv cov harnesses Teeb tsa yooj yim (plug thiab ua si)
○ Tsis muaj kev phom sij rau cov neeg nyiag khoom (tsis pom, lub cuab yeej saib xyuas cais tawm ntawm lub network, tsis muaj chaw nyob IP/MAC)
○ Muaj peev xwm nthuav dav tau
○ Haum rau txhua qhov xwm txheej
○ Pom tau ib nrab
○ Tsis theej tag nrho cov tsheb khiav (tso qee qhov loj me thiab hom pob ntawv)
○ Tsis yog-passive (hloov lub sijhawm pob ntawv, ua rau latency nce ntxiv)
○ Siv qhov chaw nres nkoj hloov (txhua qhov chaw nres nkoj SPAN siv qhov chaw nres nkoj hloov)
○ Tsis tuaj yeem tswj kev sib txuas lus puv-duplex (cov pob ntawv poob thaum overloaded, kuj tseem yuav cuam tshuam rau kev ua haujlwm ntawm lub switch thawj)
○ Cov kws ua haujlwm yuav tsum teeb tsa
○ Tsis Muaj Kev Nyab Xeeb (Lub kaw lus saib xyuas yog ib feem ntawm lub network, tej zaum yuav muaj teeb meem kev ruaj ntseg)
○ Tsis tuaj yeem nthuav dav
○ Ua tau tsuas yog nyob rau hauv qee qhov xwm txheej xwb
Tej zaum koj yuav nyiam tsab xov xwm cuam tshuam: Yuav ua li cas ntes Network Traffic? Network Tap vs Port Mirror
Lub sijhawm tshaj tawm: Lub Rau Hli-09-2025
