Diagnostics ntawm kev sib txuas network ntawm EDGE virtual router

Qee zaum, teeb meem yuav tshwm sim thaum teeb tsa lub router virtual. Piv txwv li, qhov chaw nres nkoj xa mus (NAT) tsis ua haujlwm thiab / lossis muaj teeb meem hauv kev teeb tsa Firewall cov cai lawv tus kheej. Los yog koj tsuas yog yuav tsum tau txais cov cav ntawm lub router, tshawb xyuas cov haujlwm ntawm cov channel, thiab ua qhov kev kuaj xyuas network. Huab muab kev pabcuam Cloud4Y piav qhia qhov no ua tiav li cas.

Ua haujlwm nrog lub router virtual

Ua ntej tshaj plaws, peb yuav tsum teeb tsa kev nkag mus rau lub router virtual - EDGE. Txhawm rau ua qhov no, peb nkag mus rau nws cov kev pabcuam thiab mus rau qhov tsim nyog tab - EDGE Chaw. Nyob ntawd peb qhib SSH Status, teeb tus password, thiab nco ntsoov khaws cov kev hloov pauv.

Yog tias peb siv cov cai nruj Firewall, thaum txhua yam raug txwv los ntawm lub neej ntawd, peb ntxiv cov cai uas tso cai rau kev sib txuas rau router nws tus kheej ntawm SSH chaw nres nkoj:

Tom qab ntawd peb txuas nrog txhua tus neeg siv SSH, piv txwv li PuTTY, thiab mus rau lub console.

Hauv console, cov lus txib tau dhau los rau peb, cov npe uas tuaj yeem pom siv:
daim ntawv teev

Cov lus txib twg yuav pab tau peb? Nov yog ib daim ntawv teev cov txiaj ntsig zoo tshaj plaws:

• qhia interface - yuav tso saib cov interfaces muaj thiab cov chaw nyob IP ntsia ntawm lawv
• qhia cav - yuav qhia router cav
• qhia log ua raws - yuav pab koj saib lub cav hauv lub sijhawm nrog kev hloov tshiab tas li. Txhua txoj cai, tsis yog NAT lossis Firewall, muaj qhov kev xaiv nkag nkag, thaum qhib, cov xwm txheej yuav raug kaw hauv lub cav, uas yuav tso cai rau kev kuaj mob.
• qhia flowtable - yuav qhia tag nrho cov lus ntawm kev sib txuas tsim thiab lawv cov kev txwv
  Piv Txwv:1: tcp 6 21599 ESTABLISHED src=9Х.107.69.ХХХ dst=178.170.172.XXX sport=59365 dport=22 pkts=293 bytes=22496 src=178.170.172.ХХХ dst=91.107.69.173 sport=22 dport=59365 pkts=206 bytes=83569 [ASSURED] mark=0 rid=133427 use=1
• qhia flowtable topN 10 - tso cai rau koj los tso saib cov kab uas xav tau, hauv qhov piv txwv no 10
• qhia flowtable topN 10 txheeb-los ntawm pkts - yuav pab txheeb cov kev sib txuas los ntawm cov pob ntawv los ntawm qhov tsawg tshaj plaws mus rau qhov loj tshaj plaws
• qhia flowtable topN 10 txheeb-bytes - yuav pab txheeb cov kev sib txuas los ntawm cov lej ntawm cov bytes pauv ntawm qhov tsawg tshaj plaws mus rau qhov loj tshaj plaws
• qhia flowtable txoj cai-id ID topN 10 - yuav pab qhia kev sib txuas los ntawm txoj cai ID
• qhia flowtable flowspec SPEC - rau kev xaiv yooj yim ntawm kev sib txuas, qhov twg SPEC - teeb tsa cov kev cai lim dej tsim nyog, piv txwv li proto=tcp:srcip=9Х.107.69.ХХХ:kev ua si = 59365, rau kev xaiv siv TCP raws tu qauv thiab qhov chaw nyob IP 9Х.107.69. XX los ntawm sender chaw nres nkoj 59365
  Piv Txwv:> show flowtable flowspec proto=tcp:srcip=90.107.69.171:sport=59365
1: tcp 6 21599 ESTABLISHED src=9Х.107.69.XX dst=178.170.172.xxx sport=59365 dport=22 pkts=1659 bytes=135488 src=178.170.172.xxx dst=xx.107.69.xxx sport=22 dport=59365 pkts=1193 bytes=210361 [ASSURED] mark=0 rid=133427 use=1
Total flows: 1
• qhia pob ntawv poob - yuav tso cai rau koj saib cov txheeb cais ntawm pob khoom
• qhia firewall ntws - Qhia firewall packet counters nrog rau pob ntawv ntws.

Peb tseem tuaj yeem siv cov cuab yeej kuaj xyuas hauv network ncaj qha los ntawm EDGE router:

• ping ip WORD
• ping ip lo lus loj SIZE suav COUNT nofrag - ping qhia qhov loj ntawm cov ntaub ntawv xa tuaj thiab cov lej ntawm cov tshev, thiab tseem txwv tsis pub fragmentation ntawm cov pob ntawv loj.
• traceroute ip WORD

Ib ntus ntawm kev kuaj xyuas Firewall ua haujlwm ntawm Edge

1. Tua tawm qhia firewall thiab saib cov kev cai lim lim tau teeb tsa hauv cov lus usr_rules
2. Peb saib ntawm POSTROUTIN saw thiab tswj cov naj npawb ntawm cov pob ntawv poob siv DROP teb. Yog tias muaj teeb meem nrog asymmetric routing, peb yuav sau qhov nce ntawm qhov tseem ceeb.
   Cia peb ua cov kev kuaj xyuas ntxiv:
   • Ping yuav ua hauj lwm nyob rau hauv ib qho kev taw qhia thiab tsis nyob rau hauv lub opposite direction
   • ping yuav ua haujlwm, tab sis TCP ntu yuav tsis raug tsim.
3. Peb saib cov ntaub ntawv tawm ntawm IP chaw nyob - ua ipset
4. Pab kom nkag rau hauv txoj cai firewall hauv Edge cov kev pabcuam
5. Peb saib cov xwm txheej hauv lub cav - qhia log ua raws
6. Peb tshawb xyuas kev sib txuas siv qhov yuav tsum tau rule_id - qhia flowtable rule_id
7. Nrog kev pab los ntawm qhia flowstats Peb sib piv cov tam sim no ntsia tam sim no Flow Entries kev sib txuas nrog qhov siab tshaj plaws tau tso cai (Tag nrho Flow Capacity) hauv kev teeb tsa tam sim no. Muaj kev teeb tsa thiab kev txwv tuaj yeem pom hauv VMware NSX Edge. Yog tias koj txaus siab, kuv tuaj yeem tham txog qhov no hauv tsab xov xwm tom ntej.

Dab tsi ntxiv koj tuaj yeem nyeem ntawm blog? Cloud4Y

→ CRISPR-tiv thaiv kab mob tsim "cov chaw nyob" los tiv thaiv genomes los ntawm DNA-nkaum enzymes
→ Lub txhab nyiaj poob li cas?
→ The Great Snowflake Theory
→ Internet ntawm balloons
→ Pentesters nyob rau pem hauv ntej ntawm cybersecurity

Subscribe rau peb Telegram-channel yog li koj tsis nco cov lus tom ntej! Peb sau tsis pub ntau tshaj ob zaug hauv ib lub lim tiam thiab tsuas yog ua lag luam xwb. Peb ceeb toom koj tias kev pib ua haujlwm tuaj yeem tau txais RUB 1. los ntawm Cloud000Y. Cov xwm txheej thiab daim ntawv thov rau cov neeg nyiam tuaj yeem pom ntawm peb lub vev xaib: bit.ly/2sj6dPK

Tau qhov twg los: www.hab.com