Qhov sib txawv tseem ceeb ntawm kev ntes cov pob khoom siv Network TAP thiab SPAN chaw nres nkoj.
Port Mirroring(tseem hu ua SPAN)
Network Kais(tseem hu ua Replication Tap, Aggregation Tap, Active Tap, Copper Kais, Ethernet Kais, thiab lwm yam)TAP (Terminal Access Point)yog ib tug passive hardware ntaus ntawv, uas yuav passively ntes tsheb nyob rau hauv ib tug network. Nws yog feem ntau siv los saib xyuas cov tsheb khiav ntawm ob lub ntsiab lus hauv lub network. Yog tias lub network ntawm ob lub ntsiab lus no muaj lub cev muaj zog, lub network TAP yuav yog txoj hauv kev zoo tshaj plaws los ntes cov tsheb.
Ua ntej piav qhia qhov sib txawv ntawm ob txoj kev daws teeb meem (Port Mirror thiab Network Tap), nws yog ib qho tseem ceeb kom nkag siab tias Ethernet ua haujlwm li cas. Ntawm 100Mbit thiab siab dua, cov tswv tsev feem ntau hais lus puv npo, txhais tau tias ib tus tswv tuaj yeem xa (Tx) thiab tau txais (Rx) ib txhij. Qhov no txhais tau hais tias ntawm 100 Mbit cable txuas nrog ib tus tswv tsev, tag nrho cov nyiaj tau los ntawm lub network uas ib tus tswv tuaj yeem xa / tau txais (Tx / Rx)) yog 2 × 100 Mbit = 200 Mbit.
Chaw nres nkoj mirroring yog active packet replication, uas txhais tau hais tias lub network ntaus ntawv yog lub cev lub luag hauj lwm rau luam cov pob ntawv mus rau mirrored chaw nres nkoj.
Capturing Traffic: TAP vs SPAN
Thaum saib xyuas kev sib txuas hauv network, yog tias koj tsis xav ua haujlwm txhawb nqa ncaj qha thaum tus neeg siv tab tom ua haujlwm, koj muaj ob txoj hauv kev tseem ceeb. Hauv kab lus hauv qab no, peb yuav muab cov ntsiab lus ntawm TAP (Test Access Point) thiab SPAN (Switch Port Analyzer). Rau kev tsom xam tob dua, cov kws tshuaj ntsuam xyuas pob ntawv Timo'Neill muaj ob peb tsab xov xwm ntawm lovemytool.com uas nkag mus rau hauv cov ncauj lus kom ntxaws, tab sis ntawm no, peb yuav ua ntau txoj hauv kev.
SPAN
Chaw nres nkoj mirroring yog ib txoj hauv kev los saib xyuas cov tsheb khiav hauv lub network los ntawm kev xa ib daim qauv ntawm txhua lub pob khoom nkag los thiab / lossis tawm ntawm ib lossis ntau qhov chaw nres nkoj (lossis VLans) ntawm kev hloov mus rau lwm qhov chaw nres nkoj txuas nrog lub network tsheb txheeb xyuas. Spans feem ntau siv hauv cov tshuab yooj yim los saib xyuas ntau qhov chaw ib txhij. Tus naj npawb ntawm cov kev sib txuas hauv network nws tuaj yeem saib xyuas nyob ntawm qhov chaw SPAN raug teeb tsa txheeb ze rau cov khoom siv hauv cov ntaub ntawv. Tej zaum koj yuav pom qhov koj tab tom nrhiav, tab sis nws yooj yim los nrhiav koj tus kheej nrog cov ntaub ntawv ntau dhau. Piv txwv li, nws muaj peev xwm nrhiav tau ntau daim ntawv theej ntawm tib cov ntaub ntawv hla tag nrho VLAN. Qhov no ua rau kev daws teeb meem LAN nyuaj dua, thiab tseem cuam tshuam qhov nrawm ntawm kev hloov cpus lossis cuam tshuam rau Ethernet los ntawm kev tso chaw nrhiav pom. Qhov tseeb, qhov ntau dua, qhov ntau dua nws yuav poob pob ntawv. Piv nrog rau cov kais dej, cov spans tuaj yeem tswj tau nyob deb, uas txhais tau hais tias lub sijhawm tsawg dua yog siv los hloov cov kev teeb tsa, tab sis cov engineers network tseem xav tau.
SPAN cov chaw nres nkoj tsis yog ib qho kev siv thev naus laus zis, raws li qee qhov kev thov, vim tias lawv tuaj yeem muaj lwm yam cuam tshuam rau kev sib txuas hauv network, suav nrog:
- Lub sijhawm hloov pauv kev sib cuam tshuam
- Muab cov pob ntawv pov tseg vim kev saib ntau dhau
- Cov pob ntawv puas raug poob yam tsis muaj ntawv ceeb toom, cuam tshuam kev tshuaj xyuas
Yog li ntawd, SPAN cov chaw nres nkoj yog qhov tsim nyog rau cov xwm txheej uas cov pob ntawv poob qis tsis cuam tshuam rau kev tsom xam, lossis qhov twg tus nqi raug txiav txim siab.
THOV
Hauv qhov sib piv, cov kais dej yuav tsum siv nyiaj ntawm cov khoom siv ua ntej, tab sis lawv tsis tas yuav teeb tsa ntau. Tseeb tiag, txij li lawv yog passive, lawv tuaj yeem txuas thiab txiav tawm ntawm lub network yam tsis muaj kev cuam tshuam rau nws. Cov kais dej yog cov cuab yeej kho vajtse uas muab txoj hauv kev nkag mus rau cov ntaub ntawv ntws los ntawm lub khoos phis tawj network thiab feem ntau siv rau kev ruaj ntseg network thiab kev saib xyuas kev ua haujlwm. Kev saib xyuas tsheb yog hu ua "pass-through" tsheb thiab qhov chaw nres nkoj siv rau kev saib xyuas yog hu ua "monitoring port". Txhawm rau soj ntsuam lub network kom meej meej, cov kais dej tuaj yeem muab tso rau ntawm routers thiab keyboards.
Vim tias TAP tsis cuam tshuam cov pob ntawv, nws tuaj yeem pom tau tias yog txoj hauv kev tsis txaus ntseeg los saib cov tsheb khiav hauv network.
Muaj peb hom kev daws teeb meem TAP:
- Network splitter (1: 1)
- Tag Nrho TAP (ntau: 1)
- Regeneration TAP (1: ntau)
TAP rov ua dua cov tsheb mus rau ib qho kev soj ntsuam xyuas ib leeg, lossis rau cov khoom siv hluav taws xob sib txuas sib txuas, thiab ua haujlwm rau ntau yam (feem ntau ntau) QOS cov cuab yeej ntsuas, cov cuab yeej saib xyuas network, thiab cov cuab yeej cuab tam network xws li wireshark.
Tsis tas li ntawd, TAP hom sib txawv nyob ntawm seb hom cable, suav nrog fiber ntau TAP thiab gigabit tooj liab TAP, ob qho tib si ua haujlwm tseem ceeb tib yam los ntawm kev xa tawm ib feem ntawm lub teeb liab mus rau lub network tsheb analyzer, thaum tus qauv tseem ceeb txuas mus ntxiv yam tsis muaj kev cuam tshuam. Rau cov fiber ntau TAP, nws yog faib cov nqaj hauv ob, thaum nyob rau hauv cov tooj liab cable system, nws yog replicate lub teeb liab hluav taws xob.
Sib piv TAP thiab SPAN
Ua ntej, qhov chaw nres nkoj SPAN tsis haum rau tag nrho-duplex 1G txuas, thiab txawm tias qis dua nws lub peev xwm siab tshaj plaws, nws sai sai poob cov pob ntawv vim tias nws yog overburdened, lossis tsuas yog vim qhov hloov pauv tseem ceeb tshaj li niaj hnub chaw nres nkoj-rau-chaw nres nkoj hnub dhau SPAN chaw nres nkoj cov ntaub ntawv. Tsis zoo li cov kais dej hauv lub network, SPAN cov chaw nres nkoj lim tawm cov txheej txheem ntawm lub cev tsis raug, ua rau qee hom kev tshuaj xyuas nyuaj, thiab raws li peb tau pom, qhov tsis raug nce lub sij hawm thiab hloov thav duab tuaj yeem ua rau lwm yam teeb meem. Ntawm qhov tod tes, TAP tuaj yeem ua haujlwm puv-duplex 1G txuas.
TAP tseem tuaj yeem ua tiav pob ntawv ntes thiab ua qhov kev soj ntsuam pob ntawv tob rau cov txheej txheem, ua txhaum cai, nkag mus, thiab lwm yam. Yog li, TAP cov ntaub ntawv tuaj yeem siv los ua pov thawj hauv tsev hais plaub, qhov SPAN chaw nres nkoj cov ntaub ntawv tsis tuaj yeem.
Kev ruaj ntseg yog lwm qhov uas muaj qhov sib txawv ntawm ob txoj kev. SPAN chaw nres nkoj feem ntau yog teeb tsa rau kev sib txuas lus ib leeg, tab sis lawv tuaj yeem tau txais kev sib txuas lus hauv qee kis, ua rau muaj qhov tsis zoo. Hauv qhov sib piv, TAP tsis muaj chaw nyob thiab tsis muaj qhov chaw nyob IP, yog li nws tsis tuaj yeem raug nyiag.
SPAN chaw nres nkoj feem ntau tsis dhau VLAN cov cim npe, uas tuaj yeem ua rau nws nyuaj rau kev kuaj xyuas VLAN tsis ua haujlwm, tab sis cov kais dej tsis tuaj yeem pom tag nrho VLAN network ib zaug. Yog tias tsis siv cov kais dej sib sau ua ke, TAP yuav tsis muab tib txoj kab rau ob txoj kab, tab sis yuav tsum tau saib xyuas nrog kev tshawb pom ntau dhau. Muaj cov kais dej sib sau ua ke, xws li Booster rau Profitap, uas sib sau yim 10/100/1G ports hauv 1G-10G tso zis.
Booster tuaj yeem nkag mus rau pob ntawv los ntawm kev ntxig VLAN cim npe. Ua li no, cov ntaub ntawv chaw nres nkoj ntawm txhua pob ntawv yuav raug xa mus rau lub ntsuas ntsuas.
SPAN chaw nres nkoj tseem yog ib qho cuab yeej uas cov thawj coj hauv lub network yuav siv, tab sis yog tias kev nkag mus tau nrawm thiab txhim khu kev qha rau tag nrho cov ntaub ntawv network tseem ceeb, TAP yog qhov kev xaiv zoo dua. Thaum txiav txim siab seb yuav coj mus rau qhov twg, SPAN cov chaw nres nkoj yog qhov tsim nyog rau cov tes hauj lwm uas muaj kev siv tsawg, vim tias cov pob ntawv poob tsis cuam tshuam rau kev tshuaj ntsuam lossis yog xaiv tau nyob rau hauv rooj plaub uas tus nqi muaj kev txhawj xeeb. Txawm li cas los xij, ntawm cov tes hauj lwm uas muaj tsheb khiav ntau, TAP lub peev xwm, kev ruaj ntseg, thiab kev ntseeg siab yuav muab tag nrho kev pom rau hauv kev khiav tsheb hauv koj lub network yam tsis muaj kev ntshai ntawm pob ntawv poob lossis lim tawm cov txheej txheem ntawm lub cev yuam kev.
○ Pom tau tag nrho
○ Rov ua dua txhua txoj kev tsheb (txhua pob ntawv ntawm txhua qhov ntau thiab tsawg)
○ Passive, tsis cuam tshuam (tsis hloov cov ntaub ntawv)
○ Hauv koob, tsis muaj qhov hloov pauv tau siv los rov ua cov tsheb khiav tag nrho hauv cov hlua khi yooj yim (plug thiab ua si)
○ Tsis muaj kev cuam tshuam rau cov neeg nyiag nkas (tsis pom, cais cov cuab yeej saib xyuas los ntawm lub network, tsis muaj IP / MAC chaw nyob)
○ Scalable
○ Haum rau txhua qhov xwm txheej
○ Kev pom ib nrab
○ Tsis txhob luam tawm tag nrho cov tsheb (tso qee qhov ntau thiab tsawg thiab hom pob ntawv)
○ Tsis-passive (hloov lub sijhawm pob ntawv, nce latency)
○ Siv hloov chaw nres nkoj (txhua qhov chaw nres nkoj SPAN siv lub chaw hloov chaw)
○ Tsis muaj peev xwm tswj tau qhov kev sib txuas lus puv puv (pob ntawv poob thaum muaj ntau dhau, kuj tuaj yeem cuam tshuam nrog kev hloov pauv thawj zaug)
○ Engineers yuav tsum tau teeb tsa
○ Tsis muaj kev nyab xeeb (Kev saib xyuas yog ib feem ntawm lub network, muaj teeb meem kev nyab xeeb)
○ Tsis scalable
○ Ua tau tsuas yog nyob rau qee qhov xwm txheej
Tej zaum koj yuav nthuav cov kab lus hais txog: Yuav ua li cas ntes Network Traffic? Network Kais vs Port Mirror
Post lub sij hawm: Jun-09-2025
