He hangarau a NetFlow me IPFIX e whakamahia ana mō te aroturuki me te tātari i te rere o te whatunga. Ka whakaratohia e rāua he tirohanga ki ngā tauira o te haere o te whatunga, hei āwhina i te arotau i te mahi, te rapurongoā, me te tātari haumarutanga.
Rerenga Kupenga:
He aha te NetFlow?
Rerenga Kupengako te otinga aroturuki rere taketake, i whakawhanakehia tuatahitia e Cisco i te mutunga o te tekau tau atu i 1990. He maha ngā putanga rerekē kei reira, engari ko te nuinga o ngā whakatinanatanga e ahu mai ana i te NetFlow v5, i te NetFlow v9 rānei. Ahakoa he rerekē ngā āheinga o ia putanga, he rite tonu te mahi taketake:
Tuatahi, ka hopukina e te pouara, te pana, te pareārai ahi, tētahi atu momo taputapu rānei ngā mōhiohio e pā ana ki ngā "rerenga" whatunga – he huinga mōkihi e rite ana ki te huinga āhuatanga rite tonu pērā i te wāhitau pūtake me te wāhitau ūnga, te pūtake, me te tauranga ūnga, me te momo kawa. I muri i te moe o te rere, i te roanga rānei o te wā kua tautuhia, ka kaweake e te taputapu ngā rekoata rere ki tētahi hinonga e mōhiotia ana ko te "kaikohikohi rere".
Hei whakamutunga, mā te "kaitātari rere" e whakamārama aua tuhinga, e whakarato ana i ngā māramatanga i roto i te ahua o ngā whakaaturanga, ngā tatauranga, me ngā pūrongo hītori me te wā-tūturu taipitopito. I roto i te mahi, he maha ngā wā ka noho ko ngā kaikohi me ngā kaitātari hei mea kotahi, he maha ngā wā ka honoa hei otinga aroturuki mahi whatunga nui ake.
Ka whakahaerehia a NetFlow i runga i te pūtake āhua. Ina whakapā atu tētahi mīhini kiritaki ki tētahi tūmau, ka tīmata a NetFlow ki te hopu me te whakakotahi i ngā raraunga raraunga mai i te rerenga. Kia mutu te wātū, ka kaweake a NetFlow i tētahi rekoata katoa ki te kaikohi.
Ahakoa e whakamahia whānuitia ana, he maha ngā herenga o NetFlow v5. He pumau ngā āpure e kaweakehia ana, ka tautokona te aroturukitanga i te huarahi whakauru anake, ā, kāore e tautokona ngā hangarau hou pēnei i te IPv6, MPLS, me te VXLAN. Ko NetFlow v9, e kiia ana ko Flexible NetFlow (FNF), e whakatika ana i ētahi o ēnei herenga, e āhei ai ngā kaiwhakamahi ki te hanga tauira ritenga me te tāpiri tautoko mō ngā hangarau hou.
He maha ngā kaihoko kei a rātou anō ā rātou ake whakatinanatanga motuhake o NetFlow, pērā i a jFlow mai i Juniper me NetStream mai i Huawei. Ahakoa he rerekē te whirihoranga, he maha ngā wā ka puta mai i ēnei whakatinanatanga ngā rekoata rere e hototahi ana ki ngā kaikohi me ngā kaitātari NetFlow.
Ngā Āhuatanga Matua o NetFlow:
~ Raraunga RereKa whakaputa a NetFlow i ngā tuhinga rere e whakauru ana i ngā taipitopito pēnei i ngā wāhitau IP pūtake me te wāhitau IP ūnga, ngā tauranga, ngā tohu wā, te maha o ngā mōkihi me ngā paita, me ngā momo kawa.
~ Te Aroturukitanga o te WakaMā NetFlow ka kitea ngā tauira o te hokohoko whatunga, ā, ka taea e ngā kaiwhakahaere te tautuhi i ngā tono matua, ngā pūwāhi mutunga, me ngā pūtake hokohoko.
~Te Kitenga i ngā Āhuatanga Kāore i te TikaMā te tātari i ngā raraunga rere, ka taea e NetFlow te kite i ngā āhuatanga rerekē pēnei i te whakamahinga nui rawa o te whānui o te whatunga, te pupūtanga o te whatunga, ngā tauira waka rerekē rānei.
~ Tātari HaumarutangaKa taea te whakamahi i te NetFlow hei kimi me te tirotiro i ngā aituā haumarutanga, pērā i ngā whakaekenga whakakore-ratonga tohatoha (DDoS) me ngā nganatanga urunga kore whakamanatanga.
Ngā Putanga NetFlowKua whanake haere a NetFlow i roto i ngā wā, ā, kua tukuna ngā putanga rerekē. Ko ētahi o ngā putanga rongonui ko NetFlow v5, NetFlow v9, me Flexible NetFlow. Kei ia putanga ngā whakapainga me ngā āheinga tāpiri.
IPFIX:
He aha te IPFIX?
He paerewa IETF i puta mai i ngā tau tōmua o te tau 2000, ko te Internet Protocol Flow Information Export (IPFIX) he tino rite ki a NetFlow. Inaa, ko NetFlow v9 te pūtake mō te IPFIX. Ko te rerekētanga matua i waenga i ngā mea e rua ko te IPFIX he paerewa tuwhera, ā, e tautokona ana e te maha o ngā kaihoko whatunga, haunga a Cisco. Haunga ētahi atu āpure i tāpirihia ki te IPFIX, he tata rite tonu ngā whakatakotoranga. Inaa, i ētahi wā ka kiia a IPFIX ko "NetFlow v10".
Nā te mea he rite tonu ki a NetFlow, he whānui te tautoko a IPFIX i waenga i ngā otinga aroturuki whatunga me ngā taputapu whatunga.
Ko te IPFIX (Internet Protocol Flow Information Export) he kawa paerewa tuwhera i whakawhanakehia e te Internet Engineering Task Force (IETF). E hangai ana ki te whakatakotoranga NetFlow Version 9, ā, e whakarato ana i tētahi hōputu paerewa mō te kaweake i ngā rekoata rere mai i ngā taputapu whatunga.
Ka hangaia e IPFIX ngā ariā o NetFlow, ā, ka whakawhānui ake i aua ariā kia nui ake te ngāwari me te mahi tahi puta noa i ngā kaihoko me ngā taputapu rerekē. Ka whakauruhia te ariā o ngā tauira, ka taea ai te whakamārama hihiri o te hanganga me te ihirangi o ngā rekoata rere. Mā tēnei ka taea te whakauru i ngā āpure ritenga, te tautoko mō ngā kawa hou, me te whakawhānui ake.
Ngā Āhuatanga Matua o IPFIX:
~ Huarahi e hangai ana ki te tauiraKa whakamahi a IPFIX i ngā tauira hei tautuhi i te hanganga me te ihirangi o ngā rekoata rere, e tuku ana i te ngāwari ki te whakauru i ngā mara raraunga rerekē me ngā mōhiohio motuhake ki te kawa.
~ Te Mahi NgātahiHe paerewa tuwhera te IPFIX, e whakarite ana i ngā āheinga aroturuki rere ōrite puta noa i ngā kaihoko me ngā taputapu whatunga rerekē.
~ Tautoko IPv6E tautoko ana a IPFIX i te IPv6, ā, he pai mō te aroturuki me te tātari i ngā waka i roto i ngā whatunga IPv6.
~Haumarutanga WhakareiKei roto i te IPFIX ngā āhuatanga haumarutanga pēnei i te whakamunatanga o te Haumarutanga Paparanga Waka (TLS) me ngā tirotiro pono o ngā karere hei tiaki i te muna me te pono o ngā raraunga rere i te wā e tukuna ana.
E tautokona whānuitia ana a IPFIX e ngā kaihoko taputapu whatunga maha, ā, he mea whiriwhiri whānuitia tēnei mō te aroturuki i te rere o te whatunga, kāore hoki e hiahiatia ana e te kaihoko.
Nā, he aha te rerekētanga i waenga i a NetFlow me IPFIX?
Ko te whakautu māmā ko NetFlow he kawa motuhake a Cisco i whakaurua mai i te tau 1996 pea, ā, ko IPFIX tōna teina i whakaaetia e te whakahaere paerewa.
He rite tonu te kaupapa o ngā kawa e rua: te āhei i ngā kaihangarau whatunga me ngā kaiwhakahaere ki te kohikohi me te tātari i ngā rerenga waka IP taumata whatunga. I whakawhanakehia e Cisco a NetFlow kia taea ai e āna pana me āna pouara te whakaputa i ēnei mōhiohio whai hua. I te mana o ngā taputapu Cisco, i tere tonu te noho a NetFlow hei paerewa mō te tātari waka whatunga. Heoi, i kite ngā kaiwhakataetae ahumahi ehara i te mea pai te whakamahi i tētahi kawa motuhake e whakahaerehia ana e tōna hoa whakataetae matua, nō reira i ārahi te IETF i tētahi ngana ki te whakapūmau i tētahi kawa tuwhera mō te tātari waka, arā, ko IPFIX.
Ko te IPFIX i ahu mai i te NetFlow putanga 9, ā, i whakaurua tuatahitia i te tau 2005 pea, engari i roa te wā i mua i te whakaurunga o te umanga. I tēnei wā, he rite tonu ngā kawa e rua, ā, ahakoa he whānui tonu te kupu NetFlow, ko te nuinga o ngā whakatinanatanga (ahakoa ehara i te katoa) e hototahi ana ki te paerewa IPFIX.
Anei tētahi ripanga e whakarāpopoto ana i ngā rerekētanga i waenga i a NetFlow me IPFIX:
| Āhuatanga | Rerenga Kupenga | IPFIX |
|---|---|---|
| Takenga mai | Hangarau motuhake i whakawhanakehia e Cisco | He kawa paerewa-ahumahi e hangai ana ki te NetFlow Putanga 9 |
| Whakapūmautanga | Hangarau motuhake ki a Cisco | Paerewa tuwhera i tautuhia e IETF i roto i te RFC 7011 |
| Ngāwari | Ngā putanga kua whanaketia me ngā āhuatanga motuhake | He nui ake te ngāwari me te mahi tahi puta noa i ngā kaihoko |
| Hōputu Raraunga | Ngā mōkihi rahi-pūmau | Huarahi e hangai ana ki te tauira mō ngā whakatakotoranga rekoata rere e taea te whakarite |
| Tautoko Tauira | Kāore i tautokona | Ngā tauira hihiri mō te whakaurunga āpure ngāwari |
| Tautoko Kaihoko | Ngā taputapu Cisco te nuinga | Tautoko whānui puta noa i ngā kaihoko whatunga |
| Te Whakawhanuitanga | Whakaritenga iti | Te whakaurunga o ngā āpure ritenga me ngā raraunga motuhake ki te tono |
| Ngā Rerekētanga o te Kawa | Ngā rerekētanga motuhake ki a Cisco | Tautoko IPv6 taketake, kōwhiringa rekoata rere whakarei ake |
| Ngā Āhuatanga Haumarutanga | Ngā āhuatanga haumarutanga iti | Te whakamunatanga o te Haumarutanga Papa Kawe (TLS), te pono o te karere |
Aroturuki Rere Whatungako te kohikohi, te tātari, me te aroturuki i ngā waka e whakawhiti ana i tētahi whatunga, i tētahi wāhanga whatunga rānei. Tērā pea ka rerekē ngā whāinga mai i te rapurongoā i ngā take hononga ki te whakamahere i te tohatoha whānui o te whānui ā muri ake nei. Ka whai hua anō hoki te aroturukitanga rere me te tauira mōkihi ki te tautuhi me te whakatika i ngā take haumarutanga.
Mā te aroturuki rere ka kitea e ngā rōpū whatunga he whakaaro pai mō te whakahaere o te whatunga, ka kitea hoki te whakamahinga whānui, te whakamahinga o ngā tono, ngā arai pea, ngā āhuatanga rerekē e tohu ana i ngā tūmomo mōrearea haumarutanga, me ētahi atu. He maha ngā paerewa me ngā whakatakotoranga rerekē e whakamahia ana i roto i te aroturuki rere whatunga, tae atu ki a NetFlow, sFlow, me te Internet Protocol Flow Information Export (IPFIX). He rerekē te mahi a ia mea, engari he rerekē katoa i te whakaata tauranga me te tirotiro hohonu mōkihi nā te mea kāore e hopukina ngā ihirangi o ia mōkihi e whiti ana i runga i te tauranga, i roto rānei i te pana. Heoi, he nui ake ngā mōhiohio e whakaratohia ana e te aroturuki rere i te SNMP, e herea ana ki ngā tatauranga whānui pēnei i te whakamahinga whānui o te mōkihi me te whānui o te whānui.
Ngā Utauta Rere Whatunga i Whakatauritea
| Āhuatanga | NetFlow v5 | NetFlow v9 | sFlow | IPFIX |
| Tuwhera, Whaiaro rānei | Mana motuhake | Mana motuhake | Tuwhera | Tuwhera |
| I Tauirahia, i Rere rānei | E rere ana te nuinga; Kei te wātea te Aratau Tauira | E rere ana te nuinga; Kei te wātea te Aratau Tauira | I tauirahia | E rere ana te nuinga; Kei te wātea te Aratau Tauira |
| Ngā Mōhiohio i Hopukina | Ngā raraunga matua me ngā mōhiohio tatauranga, tae atu ki ngā paita i whakawhitia, ngā kaute atanga me ērā atu mea | Ngā raraunga matua me ngā mōhiohio tatauranga, tae atu ki ngā paita i whakawhitia, ngā kaute atanga me ērā atu mea | Ngā Pane Pākete Katoa, Ngā Utu Pākete Wāhanga | Ngā raraunga matua me ngā mōhiohio tatauranga, tae atu ki ngā paita i whakawhitia, ngā kaute atanga me ērā atu mea |
| Aroturukitanga Tomokanga/Putanga | Te Whakauru Anake | Te Tomokanga me te Putanga | Te Tomokanga me te Putanga | Te Tomokanga me te Putanga |
| Tautoko IPv6/VLAN/MPLS | No | Āe | Āe | Āe |
Wā tuku: Maehe-18-2024
