ProHoster > Blog > Utongi > 3. Enterprise network design pane Extreme switches

3. Enterprise network design pane Extreme switches

3. Enterprise network design pane Extreme switches

Masikati akanaka, shamwari! Nhasi ndichaenderera mberi nechirongwa chakatsaurirwa Extreme switches chinyorwa che Enterprise network dhizaini.

Muchikamu chino ndichaedza kuita muchidimbu sezvinobvira:

  • tsanangura modular maitiro kune network dhizaini Etnterprise
  • funga nezvemhando dzekuvakwa kweimwe yeanonyanya kukosha modules yebhizinesi network - iyo backbone network (IP-campus)
  • tsanangura zvakanakira uye zvakaipira zvesarudzo zvedundancy yeakakosha network node
  • uchishandisa abstract muenzaniso kugadzira / kugadzirisa diki Enterprise network
  • sarudza Kunyanya kuchinjika kushandisa network yakagadzirwa
  • shanda nefibers uye IP kero

Ichi chinyorwa chichanyanya kufarira kune mainjiniya etiweki uye bhizinesi network manejimendi avo vachangotanga nzira yavo sevanetiweki, pane kune mainjiniya ane ruzivo akashanda kwemakore akawanda munharembozha kana makambani makuru ane geographically akagoverwa network.

Chero zvazvingava, avo vanofarira vanogamuchirwa kuti vaverenge.

Modular nzira yekugadzira network

Ini ndichatanga chinyorwa changu neinozivikanwa modular maitiro kune network dhizaini, iyo inokutendera iwe kuunganidza pikicha kubva kunetiweki zvidimbu kuita 1 mufananidzo wakazara.

Chekutanga, zvishoma zvekubvisa - ini ndinowanzo fungidzira nzira iyi seyoom pa geo-mepu, kana mukufungidzira kwekutanga nyika inoonekwa, mune yechipiri matunhu, mune yechitatu maguta, nezvimwe.

Semuenzaniso, ngatitarisei zvinotevera:

  • 1st approximation - iyo yese bhizinesi network seti yematanho akasiyana:
    • backbone network kana kambasi
    • muganhu wenhanho
    • telecom operator level
    • nzvimbo dziri kure

  • 2nd approximation - imwe neimwe yeaya mazinga anotsanangurwa mumamodule akasiyana
    • Iyo backbone network kana campus ine:
      • 3- kana 2-level module inotsanangura bhizinesi network nematanho ayo - kuwana, kugovera uye / kana musimboti.
      • module inotsanangura nzvimbo yekugadzirisa data (chaizvoizvo chikamu cheseva chezvivakwa)

    • muganhu wenhanho unosanganisira:
      • internet yekubatanidza module
      • WAN uye MAN modules, ayo ane basa rekubatanidza zvinhu zvebhizinesi zvakagoverwa munzvimbo
      • module yekuvaka VPN tunnels uye Remote-Access yekuwana
      • Kazhinji, mabhizinesi madiki mazhinji ane akati wandei emamodule aya, kana kunyangwe ese, akasanganiswa kuita rimwe

    • provider level:
      • Iyi nhanho inosanganisira kubatanidza "kune nyika yekunze" - rima optical fibers (fiber leasing kubva kune vashandi), nzira dzekukurukurirana (Ethernet, G.703, nezvimwewo), kuwana Indaneti.

    • Remote level:
      • Kazhinji, aya matavi ebhizinesi akagoverwa mukati meguta, dunhu, nyika, kana kunyange kondinendi.
      • Iyi zone inogona zvakare kusanganisira yekuchengetera data data iyo inodzokorora basa reiyo huru.
      • uye zvechokwadi, teleworkers (nzvimbo dzebasa dziri kure) dziri kuwana mukurumbira munguva pfupi yapfuura.

  • 3rd approximation - yega yega module yakakamurwa kuita madiki module kana mazinga. Semuenzaniso, mune campus network:
    • Iyo 3-tier network yakakamurwa kuita:
      • access level
      • danho rekugovera
      • core level

    • Mune zvimwe zviitiko zvakaoma, iyo data data inogona kukamurwa kuita:
      • 2- kana 3-level network chikamu
      • server chikamu

    Ini ndichaedza kuratidza zvese zviri pamusoro mumufananidzo wakareruka unotevera:

    3. Enterprise network design pane Extreme switches

    Sezvauri kuona kubva pamufananidzo uri pamusoro, iyo modular nzira inobatsira kudonongodza uye kuronga iwo mufananidzo wakazara muzvikamu zvinokwanisa kushanda nazvo.

    Muchikamu chino, ini ndichatarisa paCampus Enterprise level uye ndoitsanangura zvakadzama.

    Mhando dzeIP-CAMPUS network

    Pandakashandira mupi uye kunyanya gare gare - pandakashanda semusanganisi, ndakasangana ne "kukura" kwakasiyana kwema network emutengi. Hazvisi pasina kuti ini ndinoshandisa izwi rekukura, nekuti pane kazhinji zviitiko apo network yetiweki inokura nekukura kwekambani pachayo, uye izvi ndezvechokwadi, zvakasikwa.

    Mukambani diki iri mukati mechivako chimwe chete, iyo bhizinesi network inogona kunge iine 1 chete bhodha router inoshanda sefirewall, akati wandei ma switch, uye akati wandei maseva.

    Ini ndinodaidza network yakadai seti "single-tier" network - haina zvachose yakajeka musimboti wetiweki nhanho, iyo yekugovera nhanho inochinjirwa kune yemuganhu router (ine firewall, VPN uye pamwe mabasa eproxy), uye maswiti ekuwana anoshandira ese macomputer evashandi nemaseva.

    3. Enterprise network design pane Extreme switches

    Panyaya yekukura kwebhizinesi - kuwedzera kwehuwandu hwevashandi, masevhisi uye maseva, zvinowanzodiwa kuti:

    • wedzera huwandu hwekuchinja munetiweki uye kuwana ports
    • kuwedzera server simba
    • kurwisa nhepfenyuro - shandisa network segmentation uye nzira pakati pezvikamu
    • kurwisa kutadza kwenetiweki kunokonzeresa nguva yevashandi, sezvo izvi zvinosanganisira mari yekuwedzera kune manejimendi (mushandi haaite, muhoro unobhadharwa, asi basa harina kuitwa)
    • mukugadzirisa kutadza, funga nezve kutsigira akakosha network node - ma routers, switch, maseva nemasevhisi.
    • simbisa kuchengetedzwa kwemitemo, sezvo njodzi dzekutengesa dzinogona kumuka uye zvakare - kune yakanyanya kugadzikana network kushanda

    Zvose izvi zvinotungamirira kune chokwadi chokuti injiniya (network administrator) nokukurumidza kana kuti gare gare anofunga nezvekugadzirwa kwakarurama kwetiweki uye anouya kune 2-level model.

    Iyi modhi yatonyatso kusiyanisa nhanho mbiri - nhanho yekuwana uye danho rekugovera, rinova iro danho repakati (rakadonha-musimboti).

    Iyo yakasanganiswa kugovera uye core layer inoita zvinotevera mabasa:

    • aggregates links kubva pakuwana switch
    • inosuma network segment routing - kune vakawanda vashandisi nemidziyo zvekuti ivo havakwane mune imwechete / 24 network, uye kana vakadaro, madutu ekutepfenyura anokonzera kukanganisa nguva dzose (kunyanya kana vashandisi vakavabatsira nekugadzira zvishwe)
    • inopa kutaurirana pakati pepedyo switch zvikamu (kuburikidza nekukurumidza zvinongedzo)
    • inopa kutaurirana pakati pevashandisi nemidziyo yavo uye sevha purazi, iyo panguva ino zvakare inotanga kugoverwa muchikamu chakasiyana chetiweki - iyo data data.
    • inotanga kupa, pamwe chete nekuchinja kwekuwana, kune imwe dhigirii kana imwe, iyo yekuchengetedza mutemo iyo bhizinesi rinotanga kugadzira panguva ino. Iyo kambani inokura, njodzi dzekutengesa dzinokurawo (pano ndinoreva kwete chete zvigadziro pane zvakavanzika zvekutengesa, kusiyanisa kwemitemo yekuwana, nezvimwewo, asiwo pane yekutanga network uye yevashandi downtime).

    Nekudaro, iyo network nekukurumidza kana gare gare inokura kuita 2-tier modhi:

    3. Enterprise network design pane Extreme switches

    Iyi modhi inounza zvakakosha zvinodiwa kune ese ekupinda-level switch, ayo anounganidza zvinongedzo kubva kune vashandisi uye network zvishandiso (madhindi, nzvimbo dzekuwana, VoIP zvishandiso, IP mafoni, IP kamera, nezvimwewo), uye yekugovera uye yepakati-level switch.

    Maswiti ekupinda anofanirwa kuve akangwara uye anokwanisa kusangana netiweki kuita, kuchengetedza uye kuchinjika zvinodiwa uye inofanirwa:

    • kuve nemhando dzakasiyana dzekuwana zviteshi uye trunk ports - zviri nani nekugona kuchengetedza kukura kwetraffic, pamwe nehuwandu hwezviteshi.
    • vane kukwana kwekuchinja simba uye bandwidth
    • Iva neiyo inodiwa yekuchengetedza mashandiro ayo anogutsa yazvino chengetedzo mutemo (uye zvine hungwaru, kukura kwezvimwe zvinodiwa)
    • kuve nekwaniso yekugonesa zvakaoma-kusvika-kusvika-kusvika-netiweki zvishandiso nekugona kudzoreredza kure kure kuburikidza nemagetsi emagetsi (PoE, PoE +)
    • kwanisa kuchengeta yako wega magetsi kuti uishandise munzvimbo dzinodiwa
    • vane (kana zvichibvira) imwe mukana wekukura mukushanda - muenzaniso wakajairika kana shanduko yekuwana inozopedzisira yashanduka kuita yekugovera switch

    Nekudaro, ma switch ekugovera anofanirwa kuzadzisa zvinotevera zvinodiwa:

    • zvese maererano ne trunk downlink ports kuenda kunopinda switch, uye yakanangana nevezera kuchinjika kwevavakidzani kugovera switch (uye gare gare, zvinogoneka uplink interfaces yakananga kupakati)
    • muL2 uye L3 inoshanda zvikamu
    • maererano nekuchengetedza kushanda
    • maererano nekuvimbisa kukanganisa kushivirira (redundancy, clustering uye simba rekupa redundancy)
    • maererano nekuona kuchinjika mukuenzanisa kwetraffic
    • kuva (kana zvichibvira) imwe mukana wekukura kwekuita (shanduko nekufamba kwenguva yechishandiso chekubatanidza kuita musimboti)
    • Mune zvimwe zviitiko, zvingave zvakakodzera kushandisa PoE, PoE + zviteshi pakugovera switch.

    Uye zvakare kune zvimwe: kana manejimendi akateedzera mutemo wekukura nekusimudzirwa kwebhizinesi, network icharamba ichikura mune ramangwana - bhizinesi rinogona kutanga kuhaya zvivakwa zvakavakidzana, kuvaka zvivakwa zvaro kana kutora vakwikwidzi vadiki, nekudaro kuwedzera huwandu hwemabasa kune vashandi. Panguva imwecheteyo, network inokurawo, inoda:

    • Kupa vashandi nzvimbo dzekushandira - maswiti matsva ekuwana ane machiteshi anodiwa
    • kuvapo kwekuchinja kutsva kwekugovera maaggregating links kubva pakuwana switch
    • kuvakwa kwezvitsva uye zvechizvino-zvino zvemitsetse yekutaurirana iripo

    Nekuda kweizvozvo, traffic inowedzera nekuda kwezvikonzero zvinotevera:

    • nekuda kwekuwedzera kwekuwana zviteshi uye, saizvozvo, vashandisi ve network
    • nekuda kwekuwedzera kwetraffic yeakabatana subsystems anosarudza bhizinesi network sekutakura kwavo - nhare, chengetedzo, engineering masisitimu, nezvimwe.
    • nekuda kwekuunzwa kwemamwe masevhisi - sezvo vashandi vachikura, madhipatimendi matsva anoonekwa anoda chaiyo software
    • Data center computing simba riri kuwedzera kuzadzisa zvivakwa uye zvinodiwa zvekushandisa
    • Izvo zvinodikanwa zvekuchengetedza kune network uye ruzivo zviri kukura - yakakurumbira CIA triad (joke), asi zvakakomba, CIA - Confidentiality, Kuvimbika uye Kuwanikwa:
      • Panyaya iyi, zvimwe zvinodiwa zvekutadza kushivirira uye kuregererwa zvinoonekwa pamazinga akakosha etiweki - kugovera uye nzvimbo dzedata
      • zvakare, kune kuwedzera kwemotokari nekuda kwekuiswa kwemaitiro matsva ekuchengetedza - semuenzaniso, RKVI, nezvimwewo.

    Nokukurumidza kana kuti gare gare, kukura kwetraffic, masevhisi uye nhamba yevashandisi zvinotungamira kune kudikanwa kwekushandisa imwe network layer - musimboti uchaita yakakwirira-kumhanya switching / routing yemapaketi uchishandisa yakakwirira-kumhanya kukurukurirana zvinongedzo.

    Panguva ino, bhizinesi rinogona kuenda kune 3-tier network modhi:

    3. Enterprise network design pane Extreme switches

    Sezvinoonekwa mumufananidzo uri pamusoro, network yakadai ine nhanho yepakati iyo inounganidza yakakwira-kumhanya zvinongedzo kubva pakugovera switch. Saka, ma core switch anewo zvinodiwa zve:

    • interface bandwidth - 1GE, 2.5GE, 10GE, 40GE, 100GE
    • Kushandura simba uye kutumira mberi
    • interface mhando - 1000BASE-T, SFP, SFP+, QSFP, QSFP+
    • iyo nhamba uye seti yema interfaces
    • redundancy sarudzo (stacking, clustering, control board redundancy (inoenderana nemodular switch), simba rekupa redundancy, nezvimwewo)
    • functionality

    Pane iyi nhanho yetiweki, kugadziridzwa kwayo kwehunyanzvi kunonyatso kudiwa:

    • redundancy yemanodhi uye core link (zvakanyanya, zvakanyanya, zvinodikanwa kwazvo)
    • redundancy ye node uye zvinongedzo zvekugovera nhanho yekubatanidza (zvinoenderana nekukosha)
    • redundancy yekutaurirana zvinongedzo pakati pekuwana switch uye danho rekugovera (kana zvichidikanwa)
    • kuunzwa kwema dynamic routing protocol
    • traffic kuenzanisa zvese mukati uye pakugovera uye mazinga ekuwana (kana zvichidikanwa)
    • kushandiswa kwemamwe masevhisi - zvese zvekufambisa uye zvekuchengetedza masevhisi (kana zvichidikanwa)

    pamwe nemutemo, kutsanangura iyo network yekuchengetedza mutemo webhizinesi, iyo inozadzisa iyo general chengetedzo mutemo maererano ne:

    • zvinodiwa pakuita uye kugadzirisa mamwe mabasa ekuchengetedza pakuwana uye kugovera switch
    • zvinodiwa pakuwana, kutarisa uye manejimendi emidziyo yetiweki (mapuroteni ekure, network zvikamu zvinotenderwa manejimendi, marongero ematanda, nezvimwewo)
    • kuchengetedza zvinodiwa
    • zvinodiwa pakugadzirwa kweiyo shoma inodiwa spare parts kit

    Muchikamu chino, ndakatsanangura muchidimbu shanduko yetiweki uye bhizinesi kubva kune akati wandei switch uye vashandi gumi nevaviri kusvika gumi nemaviri (uye pamwe mazana ekuchinja) uye mazana akati wandei (kana kunyange zviuru) zvevashandi vanoshanda zvakananga mubhizinesi network (uye kune zvakare madhipatimendi ekugadzira uye mainjiniya network).
    Zvakajeka kuti muchokwadi "chishamiso" chakadaro uye kukurumidza kukura kwebhizinesi hakuitiki.
    Zvinowanzotora makore kuti bhizinesi netiweki zvikure kubva padanho rekutanga kusvika padanho rechitatu randiri kutsanangura.

    Sei ndiri kunyora aya matruisms ese? Nekuti ini ndinoda kutaura pano izwi rakadai seROI - kudzoka-pa-investment (kudzoka / kudzoreredzwa kwekudyara) uye funga iro divi rayo iro rinobata zvakananga kusarudzwa kwetiweki michina.

    Pakusarudza midziyo, network mainjiniya uye mamaneja avo vanowanzo sarudza midziyo inoenderana nezvinhu zviviri - mutengo wazvino wemidziyo uye hushoma hwehunyanzvi hwekuita huri kudiwa pari zvino kugadzirisa rimwe basa kana mabasa (ini ndichataura nezve kutenga midziyo yekuchengetedza gare gare).

    Panguva imwecheteyo, mikana yekuwedzera "kukura" kwemichina haisati yaonekwa. Kana mamiriro ezvinhu akaitika kana iyo michina yazvipedza pachayo maererano nekushanda kana kuita, ipapo midziyo ine simba uye inoshanda inotengwa, uye yekare inopihwa kune imba yekuchengetera kana kune imwe nzvimbo pane network maererano neiyo musimboti we "kuitira kuti imire" (nenzira, ichi zvakare chikonzero chekuonekwa kweiyo zoo huru yemidziyo uye kutengwa kweboka rehurongwa hweruzivo hunoshanda nayo).

    Nekudaro, pachinzvimbo chekutenga mamwe marezinesi ekuwedzera kushanda uye kuita, izvo zvakachipa zvakanyanya pane zvitsva, zvinoshanda zvakanyanya, iwe unofanirwa kutenga Hardware nyowani uye kuwedzeredza nekuda kwezvikonzero zvinotevera:

    • network inowanzokura zvishoma nezvishoma uye kuwedzera kwekushanda, kana kuita kwetiweki yako switch kunogona kukwana kwenguva yakareba.
    • Haisi chakavanzika kuti michina kubva kune vatengesi vekunze yakasungirirwa kune imwe nyika mari (dollar kana euro). Kutaura chokwadi, kukura kwedhora kana euro (kana periodic mini-devaluation yeRuble, zvichienderana nekutarisa kwaunoita) kunotungamirira kukuti dhora makore gumi apfuura uye dhora ikozvino zvinhu zvakasiyana zvachose kubva pakuona kweRuble.

    Kupfupisa zvese zviri pamusoro, ndinoda kuona kuti kutenga zvishandiso zvenetiweki zvine mashandiro akawandisa izvozvi zvinogona kutungamira mukuchengetedza mune ramangwana.
    Pano ini ndinofunga mutengo wekutenga michina mumamiriro ekudyara mune yangu network uye zvivakwa.

    Nekudaro, vatengesi vazhinji (kwete chete Yakanyanya) vanoomerera kune yekubhadhara-se-iwe-kukura musimboti, vachiisa pasi boka rekushanda uye mikana yekuwedzera interface kuita mumidziyo, iyo inozoitwa nekutenga marezinesi akasiyana. Ivo zvakare vanopa modular switch ine huwandu hwakasiyana hwekutarisa uye processor makadhi, uye kugona kuramba vachiwedzera zvese nhamba yavo uye kuita.

    Redundancy yemanode akakosha

    Muchikamu chino chechinyorwa, ndinoda kutsanangura muchidimbu misimboti yekudzokororwa kweakakosha network node se core switch, data data, kana kugovera. Uye ini ndinoda kutanga nekufunga nezve akajairwa marudzi edundancy - stacking uye clustering.

    Imwe neimwe nzira ine zvayakanakira nezvayakaipira, izvo zvandinoda kutaura nezvazvo.

    Pazasi pane tafura yepfupiso inofananidza nzira mbiri:

    3. Enterprise network design pane Extreme switches

    • vatungamiri - sezvinoonekwa kubva patafura, mune izvi kurongedza kune mukana sezvo kubva kune manejimendi yekuona murwi wemaswiti akati wandei anomiririrwa neimwe switch ine nhamba huru yemadoko. Panzvimbo pekutonga, semuenzaniso, 8 dzakasiyana switch panguva yekubatanidza, iwe unogona kubata imwe chete panguva yekuisa.
    • chinhambwe - pari zvino, kutaura chaiko, mukana wekubatanidza hausi pachena, sezvo matekinoroji ekuisa machinjiro kuburikidza ne stacking ports kana maviri-chinangwa madoko akaonekwa (semuenzaniso, SummitStack-V yeExtreme, VSS yeCisco, nezvimwewo), iyo zvakare inoenderana nemhando dzema transceivers. Pano, mukana unopiwa kuunganidza zvichienderana nemusimboti wekuti kana ukaisa, pane zvingasarudzwa zvinoda kushandisa nguva dzose stacking ports, iyo inowanzobatanidzwa netambo dzakakosha dzehurefu hushoma - 0.5, 1, 1.5, 3 kana 5 mamita.
    • software update - pano tinoona kuti kuunganidza kune mukana pane kurongedza uye pfungwa yacho inotevera - paunenge uchivandudza shanduro yepurogiramu yezvigadzirwa ne stacking, unovandudza software pane master switch, iyo inobva yatora basa rekuisa software itsva pane inomira-nhengo switches ye stack. Kune rumwe rutivi, izvi zvinoita kuti basa rako rive nyore, asi kuvandudza software kunowanzoda hardware reboot yemidziyo, iyo inotungamirira ku reboot yese stack uye nokudaro kuputsa mukushanda kwayo uye mabasa ose akasungirirwa kwairi kwenguva = reboot nguva. Kazhinji, izvi zvinonyanya kukosha kune yakakosha uye data data. Nekubatanidza - une midziyo miviri yakasununguka kubva kune imwe neimwe, paunogona kugadzirisa software yacho sequentially imwe neimwe. Muchiitiko ichi, kukanganisa mumasevhisi kunogona kudziviswa.
    • configuration settings - pano iyo mukana ndeyechokwadi nekurongedza, nekuti mune iyo manejimendi iwe unongoda kugadzirisa marongero echishandiso chimwe uye faira yayo yekumisikidza. Mukubatanidza, nhamba yemafaira ekugadzirisa ichave yakaenzana nenhamba yemasumbu.
    • kukanganisa kushivirira - apa matekinoroji ese ari maviri anenge akaenzana, asi kuunganidza kuchiri nemukana mudiki. Chikonzero cheizvi ndeichi chinotevera - kana tikafunga nezve stack kubva pakuona kwekuita maitiro nemaprotocol, tichaona zvinotevera:
      • kune master switch pane ese makuru maitiro uye maprotocol ari kushanda (semuenzaniso, iyo dynamic routing protocol - OSPF)
      • kune dzimwe shanduko-switch switch, pairi maitiro makuru anodiwa ekushanda mustack uye sevhisi traffic inopfuura nemavari ari kushanda.
      • Kana tenzi switch ikatadza, iyo inotevera yepamusoro-soro switch yevaranda inoona kutadza kwatenzi
      • inozvitanga seshe uye inotanga maitiro ese anga achimhanya pane tenzi (kusanganisira OSPF protocol yatiri kuona)
      • pashure imwe nguva muitiro kutanga (kazhinji chaizvo pfupi), OSPF protocol pachayo anotanga kushanda
      • saka, OSPF achashanda zvishoma nokukurumidza kana kukundikana mumwe nodes panguva clustering pane panguva stacking (nokuda nguva inodiwa kutanga uye initialize maitiro uye protocols pamusoro akaturikidzana nhapwa chinja). Kunyangwe ini ndichifanira kucherechedza kuti maprotocol emazuva ano ekurongedza uye ma switch anoshanda nekukurumidza, kazhinji nguva yekufamba kwetraffic panguva yekuchinjisa stack inotora isingasviki sekondi imwe, asi zvakadaro nemazita ekuunganidza anokunda mune iyi parameter.

    • kuomarara - sezvinogona kuonekwa kubva patafura, stacking inokunda maererano nekuoma. Ichi ndicho chikonzero chakananga che "management" uye "settings configuration" zvinhu. Node imwe chete inotora nguva shoma kugadzirisa uye kubata. Zvakare, kana uchibatanidza, zvinowanzodikanwa kugadzirisa mamwe maprotocol enzira kana gedhi redundancy protocol - VRRP, HSRP, nevamwe.
    • kutsiva mayunitsi - pano stacking ine mukana wakajeka. Kazhinji, kutsiva switch mune stack, zvinodikanwa kuita mashoma anodiwa zvigadziriso zvemidziyo, semuenzaniso:
      • gadziridza software yeshanduko nyowani kune vhezheni ye stack software (uye izvi zvinogona kuitwa nekukasira kana wagamuchira switch mune yakasara zvikamu kit)
      • gadzira mashoma ekutanga mirairo yekuisa (uye kune mamwe marudzi ekuchinja kunyangwe izvi zvingasave zvichidikanwa)
      • bvisa yakakundikana stack switch uye batanidza imwe itsva
      • batanidza magetsi uye chigamba tambo

    • elasticity - Ini ndinoiona seimwe yeakanyanya paramita. Kazhinji, elasticity chimiro chakaoma, icho chinoreva pfuma yechinhu chinoshandura pasi pesimba remutoro uye kudzokera kuchimiro chayo chepakutanga mushure mekunyangarika kwayo. Sezvineiwo, pakuunganidza ichave yakakwira kunyangwe uchifunga zvibodzwa zve4: 3 muhunhu mukufarira kurongedza. Zvose zvinoenderana nechinhu chemunhu. Ehe, hongu, usashamiswe - kusimba kweiyo stacking paramita sekutonga kwakabatana, kumisikidzwa kwezvigadziriso uye kurerutswa kuomarara ndiko uko kushaya simba kwekurongedza kunorara kana chinhu chemunhu chapinda.

    Mubasa rangu muIT, ndakasangana nemamiriro ezvinhu akawanda (uye, kutaura chokwadi, ndakatoita chikanganiso chimwe chete ini pachangu, kunyanya pakutanga) apo, pakugadzira stack, mainjiniya angaita chikanganiso chekuisa murairo kana kugonesa/kudzima feature pamudziyo, zvichikonzera kuti stack yese iparare uye zvinoda kutangazve nemaoko. Zvakakosha kutaura nezvevateveri vePutty app ye Windows (oh, kukopa uku kwekudzvanya kurudyi).

    Muchokwadi, matekinoroji ese ari maviri akanaka (kunyanya achienzaniswa neasina kudzokororwa) uye imwe neimwe ine simba rayo uye kushaya simba, asi kune yepakati nhanho uye kune yakaremerwa data data, ndingadai ndichiri kuda kushandisa clustering.

    Kunyangwe aya ari maonero angu chete. Mazhinji mainjiniya ehunyanzvi anga aine hunyanzvi mukutsigirwa kwetiweki kwemakore mazhinji anogona kushandisa zvakaenzana matekinoroji - zvese zvinoenderana neruzivo uye hunhu.

    Pamusoro peiyo tekinoroji yekumisikidza uye kudzokororwa kwenetiweki node, kune zvakare misimboti yakajairwa yekudzokororwa kwezvikamu zvetiweki node pachayo uye kubatana pakati pemanodhi:

    Nekudzokororwa mukati me network node ndinoreva:

    • akawandisa magetsi ekushandisa - kuisa maviri emagetsi emagetsi anoteedzera mumwe nemumwe (uye pamwe akabatana kune yekutanga magetsi emagetsi chikamu) anogona kuita kuti hupenyu hwako huve nyore.
    • redundancy yemabhodhi ekudzora - anonyanya hukama ne modular switch, ayo anopa kubatanidzwa kweanoverengeka duplicate control board.
    • interface kadhi redundancy - inoshandawo zvakanyanya kune modular switch.

    Redundancy yekubatanidza / malink inonzwisiswa zvakanyanya sekuvepo kweduplicate tambo nzira (kana redhiyo zvinongedzo kana nzvimbo dzakavhurika) ne:

    • akagoverwa kuburikidza akasiyana-siyana tambo shafts uye nzira mukati mechivako
    • kugoverwa kwenzvimbo pamusoro penzvimbo pamwero we2 kana kupfuura zvivakwa, guta, dunhu kana nyika (iyo inonzi volumetric mhete)

    Mune ino kesi, kana uchigadzira backup yekutaurirana malink, zvinodikanwa kutevedzera akati wandei kurudziro yemidziyo:

    • kana kuri kudzokororwa kwemakadhi ekubatanidza emodular switch, kana pamberi pechitubu, zvinodikanwa kugovera zvinongedzo pakati pemayuniti - makadhi ekubatanidza mune yemodular switch uye switch mune iyo stack.
    • Zvinokurudzirwa kushandisa link aggregation protocols (LACP, MLT, PAgP, nezvimwewo) kubatanidza zvinongedzo mumapoka uye kuenzanisa mutoro pakati pavo.
    • shandisa ma routers anotsigira ECMP (Equal-Cost-Multi-Path) maprotocol - kana, kana uchiendesa mapaketi akati wandei munzira imwe chete, mapaketi aya haapfuuri nenzira imwe chete yakanakisa (uye interface), asi anogovaniswa munzira dzinoverengeka dzakanakisa (uye akati wandei mainterface), ayo anotemerwa nekuenzana kwema metrics eiyo routing protocol, iyo inozoita yekuzadza tafura.

    Uye zvino, sezvakavimbiswa, ini ndichatsanangura nyaya chaiyo kubva pakuita kwangu uye musimboti wekuchengetedza pakuchengetedza node dzakakosha, zvakaitika makore akati wandei apfuura:

    • Imwe kambani, ini ndichaidaidza kuti X, yaive neyakajairika 3-tier network modhi:
      • ine multiple cores
      • akawanda gumi nemaviri aggregations
      • zviuru zvinoverengeka kuwana switch
      • nemakumi akati wandei ezviuru zvevashandisi

    • network yakavakwa zvakanyanya kuoma:
      • iine boka remasimba ekufambisa mapuroteni uye mapuroteni - OSPF, MP-BGP, MPLS, PIM, IGMP, IPv6, nezvimwe.
      • boka remasevhisi - Internet kuwana, L2 uye L3 VPN, VoIP, IPTV, mitsara yakatsaurirwa, nezvimwe.

    • asi pakanga paine bhodhoro mu network - iyo bhodha router, iyo yakabatanidza mabasa eBGP bhodha router uye yakamisa mamwe masevhisi.
    • Hongu, inodhura zvakanyanya sebapiro rendege (mamiriyoni akawanda rubles)
    • Hongu, panguva iyoyo yaive imwe yemidziyo yepamusoro mumutsara weiyo inonyanya kuzivikanwa network mutengesi
    • Ehe, yaifanira kuve yakavimbika kwazvo - ine yakanakisa MTBF chiyero
    • Hongu, yaive nemagetsi mana emagetsi, akaunganidzwa zvinoenderana nechirongwa che4x2 uye akabatana kubva kuUEPS dzakasiyana uye zvekushandisa.

    Asi zvose izvi hazvina kuchinja chokwadi chokuti akanga ari imwe pfungwa yekukundikana mune network.

    Uye rimwe zuva, kure nekushamisa kwandiri uye nevandinoshanda navo, router iyi yakasiya mweya (gare gare takaona kuti pane imwe mhando yekutadza pamutsetse wemagetsi kuburikidza neUEPS, izvo zvakakonzera kukundikana panguva imwe chete yemagetsi maviri, uye panguva imwe chete, chimwe chezvishandiso chakapisa RP module yerouter uye kadhi rekushandisa, iro rakabatana kune yakajairika data bhazi remudziyo).

    Isu takanga tisina chero mabhodhi ekuchengetedza - RP uye makadhi ekubatanidza, asi isu takanga tine kondirakiti yekutsiva michina kana zvikamu zvayo neimwe yevabatsiri pasi pechirongwa cheNBD.

    Nehurombo, panguva iyoyo vanobatana vaingove nekadhi rekushandisa mustock, asi pasina RP board, yakasvika mazuva mashoma gare gare (3 mazuva gare gare).

    Nekuda kweizvozvo, kuvepo kwechinhu chimwe chekutadza munetiweki (kunyangwe nekontrakiti yekutsigira uye kutsiva kwemidziyo) kwakaguma nemutengo unotevera wemari:

    • mugove wemasevhisi ekambani, ane hukama kana akabatana nemuganhu uyu, angangoita 60-70%
    • sezvayakaverengerwa gare gare, purofiti yezuva nezuva yaive ye900 zviuru rubles (inenge) panguva iyoyo.
    • saka, mukati memazuva matatu ekuderera, zvichireva, purofiti muhuwandu hwe3 miriyoni 1 zviuru rubles kusvika 620 miriyoni 1 zviuru rubles zvakarasika.

    Ehe, kurasikirwa kwemambure kwaive kudiki, sezvo muripo wevazhinji vashandisi wakadzoserwa kwete muchimiro chemari, asi semasevhisi, asi akange achiripo:

    • chikamu chemuripo wevashandisi vemakambani
    • yakawedzera mari yevashandi vekambani vakashanda mazuva ese 3-4 musimba rakazara - nguva yakawandisa, mashifiti ehusiku, mashifiti akawedzera, nezvimwe.
    • mukurumbira kurasikirwa, izvo zvakare zvisina kukosha
    • uye zvinonyanya kukosha - mitsipa yevose manejimendi nevashandi, pamwe nevatengi

    Nekuda kweizvozvo, mutemo wekambani wakagadziridzwa:

    • akaramba chibvumirano chekutsiva pasi peNBD mamiriro
    • akasiya chibvumirano chebasa chenguva dzose
    • ndakatenga duplicate router inokosha 1-1.3 miriyoni rubles kutsigira 90% yekushanda kweiyo huru.

    Mushure mezvo, kutenga mimwe michina uye kutsigira michina mikuru kwakatibvumira kuyera mutoro kune ekunze zvinongedzo, traffic uye vashandisi pakati pavo, uye yakapa muganho wekuchengetedza kambani mune ramangwana tsaona.

    Enterprise Network Dhizaini Muenzaniso

    Muchikamu chino chechinyorwa ini ndichaedza kudonongodza pfungwa huru mukuverenga iyo bhizinesi backbone network. Ini handizokuremedzei neiyo yese PPDIOO (Gadzirira-Kuronga-Gadzira-Implement-Operate-Optimize) nzira, asi inongoburitsa mapoinzi ayo makuru:

    • Kugadzirira/Kugadzirira - iwe unofanirwa kusarudza nemanejimendi ako nezve network yemazuva ano zvinangwa zvauri kuda kuzadzisa - kuwedzera kukanganisa kushivirira, kuita masevhisi matsva kana matekinoroji. Ini ndichasvetuka kutsanangura zvipimo - zvehunyanzvi uye zvesangano pano, sezvo ndichifungidzira kuti iwe uri mushandi wesangano uye une chengetedzo yakakura yenguva yekuzvikunda. Ini ndichadzokera kune musoro webhajeti pazasi.
    • Planning/Плания - pano iwe uchafanirwa kuvaka tsananguro yakazara yetiweki yako yazvino (kana iwe usati wazviziva), i.e. tsanangura network sezvairi ikozvino:
      • huwandu uye rudzi rwemidziyo
      • nhamba nemhando dzezviteshi
      • nzira dzetambo dziripo uye zvirongwa zvekuchinja mukati uye pakati pezvivakwa
      • zvirongwa zvekupa magetsi
      • L2 uye L3 kutaura
      • gadzira mamepu eWi-Fi network ane nzvimbo dzekuwana uye zvinodzora
      • tsanangura server yako purazi
      • Zvinokurudzirwa kutsanangura ese masevhisi ako uye kubatana kuri pakati pawo
      • Kana iwe wakatoita mutemo wekuchengetedza network uye network yekuwana control policy mune imwe fomu kana imwe, iva nechokwadi chekuzvifunga kana uchigadzira.
      • Ini ndichakurumidza kuona kuti danho rechipiri, muchidimbu, ibhuku rakazara retiweki, kutanga kubva kumagetsi emagetsi uye zvirongwa zvemagetsi, uye kupera nemasevhisi (zvikumbiro uye zviteshi zvavo). Danho iri rinonyanya kushanda nesimba uye dzimwe nguva rinofinha. Kana iwe kana akakutangira asina kuchengeta zvinyorwa kana kunyange yekutanga yekutarisa system, saka yave nguva yekufunga nezvazvo. Iyo network inowanzo chinja nekufamba kwenguva pane imwe kumhanya kana imwe, uye kungochengeta zvinyorwa-zvino-zvino kana sisitimu yekutarisa inogona kukubatsira kuronda mamiriro ayo uye kufambisa manejimendi ayo. Asi izvi zvinotoshanda kune danho rekushanda.

    • Kugadzira/Kugadzira - wakashongedzerwa neruzivo rwakazara rwetiweki yako, yakawanikwa mune yapfuura nhanho, iwe unozogara pasi wofunga nezve maitiro ekusimudzira network yako. Pazasi ini ndichaedza kuratidza diki muenzaniso wetiweki kuverenga.

    Ini pachangu, ndakanyora runyoro rudiki rwekutanga data randichashandisa pakuverenga nekugadzira network yekutsigira.

    Ngatifungidzirei danho Rokugadzirira serondedzero yezvatiinazvo uye zvatiri kuronga kuita:

    • kune bhizinesi rakakura rine huwandu hwenzvimbo dzebasa, dzinenge 700-800 zvidimbu (pano ndinoreva avo vashandi vanoda kuwana kune network yebhizinesi)
    • Kune zvivakwa zvakati wandei zvakaparadzana mukati menzvimbo yebhizinesi:
    • Zvivakwa zvikuru:
      • nhamba yezvivako - 2 pcs.
      • Nhamba yepasi muchivako - 7
      • nhamba ye telecommunication makabati pauriri mune imwe chivako - 3 (yakazara 21) pcs.
      • nhamba yevashandi muchivako =~ 250 vanhu

    • Dzimwe dzimba:
      • nhamba yezvivako - 10 pcs.
      • nhamba yepasi muchivako / workshop - 2 pcs.
      • Nhamba yemakabati ekufonera muchivako - 3 pcs.
      • nhamba yevashandi muchivako =~ 20 vanhu

    • Iyo yazvino nhanho yetiweki musimboti (nenzira, yakajairika chirongwa chandakasangana nacho kanopfuura kamwe mune imwe fomu kana imwe uye mukuumbwa kwechiteshi) inoratidzwa:
      • 2 L2 switch:
        • 1Gb RJ-45 zviteshi - 24 pcs.
        • 1Gb SFP zviteshi - 4 pcs
      • 1st L2 switch:
        • 1Gb SFP zviteshi - 24 pcs
      • core topology - mhete
      • peer-to-peer links pakati pema switch anogoneswa uchishandisa optical fibers
      • ma switch anowanikwa mumakamuri madiki maseva ane makabati
    • Chiyero chekugovera chazvino:
      • yakasanganiswa neiyo network yepakati nhanho maererano neaggregating links kubva pakuwana switch
      • L3 kero inotamirwa kumuganho router uye/kana firewall
    • Chiyero chekupinda parizvino:
      • L2 inochinja ine 16 x 100 Mb RJ-45 yekupinda zviteshi uye 2 Gigabit uplink combo RJ-45/SFP ports
      • maswichi ari mumakabati ari pasi
      • kuwana switch topology:
        • nyeredzi (hub-and-spoke) ine core/distribution switch iri pakati
        • danda/akataura ibazi rekuchinja pauriri - 3 pcs muketani
      • kune masiwichi ekupinda asingatarisirwe
      • switch mu9 mamwe makesi akabatana kuburikidza nemedia converters (Optical signal kune magetsi masign converters)
    • Ikozvino cable infrastructure:
      • Cabling system pakati pezvivakwa:
        • pane tambo ye optical pakati pezvivakwa zvikuru zviviri zvine huwandu hwe2 fibers
        • pane 1 optical tambo pakati peimwe yezvivakwa zvekuwedzera (painoiswa core switch) uye chimwe nechimwe chezvivakwa zvikuru zvine huwandu hwe8 fibers imwe neimwe.
        • pane 1 optical tambo pakati pemamwe akavharirwa uye enclosures ane akaiswa core switch ane huwandu hwe4 fibers (kugovera kwavo kunoratidzwa mumufananidzo uri pazasi)
        • faibha mhando mumatambo ese is single mode/SMF
        • 2-fiber single-modhi SFP transceivers inoshandiswa
        • mamwe tambo anogumiswa pa optical distribution frames (ODF) mumakamuri akaparadzana (cross-rooms/server rooms), uye mamwe tambo anogumirwa pafloor-level control rooms.

      • Cabling system mukati mezvivakwa:
        • Iko kune yakasanganiswa cabling chimiro pakati pemakamuri esevha uye ekutanga makabati ari pasi:
        • tambo dzemhangura Cat5e - 10 pcs (kana 100 pair cables)
        • fiber optic multimode / MMF tambo ye 4 kana 8 fibers - 1 pc.
        • 4-fiber multimode / MMF fiber optic tambo pakati pepasi makabati
        • Cat5e tambo dzemhangura pakati pemakabati epasi uye nzvimbo dzekuwana
      • Nzvimbo yedata iripo:
        • kune maseva akati wandei, semuenzaniso 6 zvidimbu
        • yaisanganisira 1Gb ports mune yepakati switch muchivako chekutanga chikuru
        • Ese mabhizinesi maapplication anoendeswa kune maseva
      • L2, L3 kero uye nzira:
        • Kune akati wandei maVLAN mune network - 2,3 pachivakwa
        • maseva akagoverwa kune yakaparadzana / 24 network
        • kune zvinodiwa zvemukati, grey kirasi B network inoshandiswa, iyo inosanganisirwa muhuwandu - 172.16.0.0/16
        • L3 kero dzinogumiswa pamuganho router uye/kana firewall
        • static routing inoshandiswa
      • mamwe mashoko:
        • runhare:
          • Nharembozha yechinyakare uchishandisa yekare-chimiro dhijitari PBX (kwete IP-PBX) yakaiswa muzvivakwa uye mamwe mayuniti.
          • zvakakosha kupa nhare kune zvivakwa zvitsva, pasina mari yekuisa inodhura tambo yemhangura tambo dzeimwe chiyero uye kuvaka yakapetwa SCS yekufonera mukati mezvivakwa.
          • Nekufamba kwenguva, zvakarongwa kuita IP telephony mubhizinesi rese, kuisanganisa neCRM masisitimu uye kuendesa vashandi vese kwairi.
        • Port capacity:
          • Izvo zvinodiwa kuti uongorore huwandu hwazvino hwema trunk ports uye madoko ekupinda, uye kuchengetedza angangoita 25-30% yezvido zvenguva yemberi.
          • ongorora kukwana kweiyo ikozvino throughput yekuwana ports uye trunk links
          • inopa kuvepo kwePoE/PoE + yekuwana madoko emidziyo kubva padyo masisitimu - vhidhiyo yekutarisa uye runhare.
        • vhidhiyo kuongorora:
          • Izvo zvakarongwa kushandisa iyo bhizinesi network seyekufambisa yevhidhiyo yekutarisa network
          • Izvo zvinodikanwa kupa PoE ports yeCCTV kamera
        • wireless systems:
          • Mune ramangwana, zvakarongwa kuita isina waya yekuvaka kwevashandi kufamba
          • Izvo zvinodikanwa kupa PoE ports yenzvimbo dzekuwana
        • bhajeti, mazuva ekupedzisira uye zvinodiwa zvemidziyo:
          • shandisa zvakanyanya midziyo yako iripo
          • paunenge uchigadzira network, funga nezve mukana wekuwedzera network network yeN makore ari mberi
          • Paunenge uchigadzira network, funga nezverutsigiro rwezvese zvinokwanisika kuchengetedza mabasa - heino runyoro rwekushanda, kutanga kubva pachiteshi chekuchengetedza uye kupera nekusimbisa uye mvumo yevashandisi kuburikidza ne802.1x.
          • kusvika pamwero wakakura unogoneka, chengetedza yakakosha network node yekukosha kwekutanga - musimboti uye data data, uye ipa mukana wekuchengeta manodhi ekukosha kwechipiri - nzvimbo dzekugovera.
          • bhajeti repurojekiti rinofanira kupa mari inotevedzana mumatanho akati wandei
          • bhajeti yemari - pano bhizinesi rega rega rinozvisarudzira, rinotungamirwa neayo zviratidzo zvemari
          • mazwi - mune yakanyanya kunaka kesi, hapazove nemashoko akajeka, sezvo ichi chiri chirongwa chemukati chekambani, chinoitwa nevashandi vayo, kana ivo vachave vakasununguka - semuenzaniso, 1 gore (kana kupfuura). Mumamiriro ezvinhu akaipisisa - inogona kubva pamwedzi mitatu kusvika kumwedzi mitanhatu.
        • gadzirisa nyaya dzazvino network:
          • kurasikirwa kwepakiti
          • Nyaya dzeDHCP pane mamwe kana mashoma akangwara ekuwana maswichi ane chekuita nekushandiswa kweSTP protocol mhuri kurwisa zvishwe pazviteshi zvekupinda.
          • bvisa kuvapo kweDHCP server interface mune yega yega mushandi VLAN
          • kubuda kwekuchinjisa zvishwe zvine chekuita nekusatenderwa activation kweanogadziriswa/asina kudzora switch mumahofisi uye kubatana kwemarudzi ese emidziyo kwavari.
          • list inoramba ichienderera mberi...

        Nhanho yeKuronga - kuratidza mamiriro etiweki yako yazvino, sezvandatonyora, zvinoenderana nekuwanikwa kwemhando yekutarisa system uye dhigirii rezvinyorwa zvayo. Padanho iri, iwe uchafanirwa:

        • nyatso cheka network iripo kuti uwedzere ongororo
        • unganidza data kubva kumidziyo:
          • traffic pane trunk ports
          • zvikanganiso pazviteshi
          • CPU mutoro uye ndangariro kushandiswa pane switch uye routers
          • tsanangura L2-L3 zvirongwa neVLANs uye IP kero
        • simudza madhayagiramu enzira yetambo:
          • fiber-optic diagrams uye optical cross-connection wiring diagrams
          • copper cable kugovera zvirongwa pakati pemakamuri evhavha uye pasi
          • copper cable kugovera zvirongwa pakati pepasi nemahofisi
          • tarisa kuvapo kwemaoptical cross uye patch panels mumakamuri evhavha uye makabati
        • tarisa magetsi emagetsi emagetsi muvhavha uye pasi makabati
        • tarisa kuvapo kweUPS nemabhatiri pane dzakakosha node
        • ongorora data rese

        Kubva pane data kubva padanho rekugadzirira, ini ndakauya neakaomesesa ane musoro dhizaini:

        3. Enterprise network design pane Extreme switches

        Tevere, uchitevera modular nzira, zvinodikanwa kuona mazinga uye ma module ebhizinesi:

        3. Enterprise network design pane Extreme switches

        Ini handisi kuzobata paEdge mune ino chinyorwa, asi ndicharangarira muchidimbu mafundo ega ega eCampus module:

        • Kupinda - padanho rino kunofanirwa kuve nechokwadi:
          • nhamba inodiwa yezviteshi kuti vashandisi vasvike kunetiweki
          • kuita mitemo yekuchengetedza - kusefa traffic uye maprotocol
          • Broadcast domain compression uye network segmentation uchishandisa VLANs
          • Kuitwa kweakaparadzana maVLAN ezwi traffic
          • QoS rutsigiro
          • rutsigiro rwePoE yekuwana ports
          • IP multicast rutsigiro
          • kukanganisa kushivirira kweuplinks pamwe chete neyekugovera layer (inodiwa)
        • Kugovera - padanho rino zvinotevera zvinofanirwa kuve nechokwadi:
          • nhamba inodiwa yezviteshi zvekubatanidza maswiti ekupinda
          • kuunganidzwa uye kuwanda kwekuwana switch link
          • IP nzira
          • packet filtering
          • QoS rutsigiro
          • kukanganisa kushivirira pane chinongedzo, hardware uye simba rekupa nhanho (inodikanwa kwazvo)
        • Iyo yakakosha inofanira kupa:
          • high speed switching uye packet routing
          • nhamba inodiwa yezviteshi zvekubatanidza kugovera switch
          • Tsigiro yeIP routing uye inochinja maitirwo mapuroteni ane nekukurumidza network convergence
          • QoS rutsigiro
          • kuchengetedzwa kwekuchengetedza kuchengetedza kuwana michina uye kutonga ndege
          • Hardware uye magetsi ekupa kukanganisa kushivirira (zvinosungirwa)
        • Data center - network layer yeiyi module inofanirwa kupa:
          • high speed communication links
          • nhamba inodiwa yezviteshi zvekubatanidza maseva
          • redundancy yekutaurirana inobatanidza zvese pakati pemaseva uye data center switch, uye pakati pe data center switch uye network core (inodiwa)
          • midziyo uye magetsi ekuchengetedza (inodiwa)
          • QoS rutsigiro

        Tevere isu tinofanirwa kuverenga madoko edu uye maratidziro ekutaurirana uye kuona zvinodiwa.
        Kupinda Level - Port Calculation Tafura

        Saka, takagamuchira data pamusoro pekugoverwa kwezvikepe zvekusvika nezvivakwa. Zvino isu tinofanirwa kuongorora iyo yekuwana level zvinodiwa uye makomendi uye kutsanangura sarudzo sarudzo.
        Kupinda Level - Zvinodiwa uye Solution Sarudzo

        Tevere, isu tichaverengera madoko uye ekutaurirana zvinongedzo kune anotevera mazinga:

        Distribution level

        Core level

        Data center level

        Pakuverenga takawana zvinotevera:

        • access level - 24- uye 48-port yekupinda switch inodiwa, zviri nani ne 1Gb yekuwana ports uye ine Optical uplink SFP ports ine PoE rutsigiro uye kushanda kwakakura:
          • pamwe chete ivo vachapa 504 yekuwana zviteshi, izvo mumusimboti zvichavhara zvinodiwa zvezviteshi zvemahara kana sarudzo yaitwa yekushandisa 2 ports per workstation - IP runhare uye data port.
          • Zvinogoneka kushandisa imwe 48-port switch ine PoE mashandiro pauriri hwega hwega, ichipa madoko ekupinda kune zvinodiwa:
            • reserve - ingangoita 102 spare ports (22%) pane zvivakwa zvikuru. Kune mamwe zvivako zvishoma zvishoma - 25%.
            • CVV
            • wireless network
        • danho rekugovera - switch ine seti yeSFP ports kubva ku12 kusvika ku48 ports ine angangoita 2 SFP + ports, ine kugona kurongedza uye yakawedzera mashandiro, pamwe nekuvapo kwesimba rekushandisa rinodiwa.
        • core level - machinjo anomhanya-mhanya ane gumi nemaviri kusvika makumi maviri nemana SFP/SFP+ zviteshi zvine tsigiro yezvose zviri zviviri kuturika uye kubatanidza nerutsigiro rweMC-LAG inodiwa. Ini ndinofanira kucherechedza kuti zvinogoneka zvakare kushandisa maturusi ekufambisa ekuenzanisa traffic. Zvizvarwa zvichangoburwa zveL12 switch uye marouters anotsigira ECMP netraffic kuenzanisa pamusoro penzira ina kana kupfuura ine metric yakafanana.
        • data center level - chinja ne8 kusvika 24 SFP/SFP+ ports ine tsigiro yezvose zviri zviviri stacking uye kubatanidza neMC-LAG tsigiro inodiwa.

        Chinangwa chetiweki chirongwa chakazowanikwa wakadaro

        Kusarudza Kunyanya Kuchinja Kwekuita Project

        Zvakanaka, tauya kune chinhu chikuru - iyo nguva yekusarudza ma switch ekuita kweprojekiti yedu. Aya anotevera Akanyanya switch akakodzera kune inokonzeresa chinangwa chirongwa:

        terama
        The model
        Zviteshi
        tsananguro

        core
        x620-16x-Base*

        x670-G2-48x-4q-Base*
        16 x 10GE SFP+
         
         
         
        48x10GE SFP+ uye 4x40GE QSFP+
        Kune zvakakosha zve kernel:

        • high speed links
        • Yepamusoro nzira uye kuchengetedza kushanda
        • magetsi ekuchengetedza magetsi nemamwe magetsi ekuwedzera
        • tsigiro ye stacking uye kubatanidza

        Iyo x620 yakatevedzana switch ichaita basa kune zvishoma zvinodiwa.
        Kuti uwedzere zvinodiwa pahuwandu hwezviteshi uye kushanda kwakakura, zvakakodzera kufunga nezve x670-G2 akatevedzana switch.

        Data center

        x620-16x-Base*

        x590-24x-1q-2c*

        x670-G2-48x-4q-Base*

        16 x 10GE SFP+
         
         
         
        24x10GE SFP, 1xQSFP+, 2xQSFP28
         
         
        48x10GE SFP+ uye 4x40GE QSFP+

        Kune zvakakosha zvinodiwa zve data center:

        • high speed links
        • magetsi ekuchengetedza magetsi nemamwe magetsi ekuwedzera
        • tsigiro ye stacking uye kubatanidza

        Iyo x620 yakatevedzana switch ichaita basa kune zvishoma zvinodiwa.
        Kana pane zvakawedzerwa zvinodiwa pahuwandu hwezviteshi uye kushanda kwakakura, zvakakodzera kufunga nezve x670-G2 uye x590-24x-1q-2c akatevedzana switch.

        kugovera

        X460-G2-24x-10GE4-Base*

        X460-G2-48x-10GE4-Base*

        24x1GE SFP, 8x1000 RJ-45, 4x10GE SFP+
         
         
         
        48x1GE SFP, 4x10GE SFP+

        Nezve zvinodikanwa zvekugovera:

        • nhamba inodiwa ye optical ports
        • magetsi ekuchengetedza magetsi nemamwe magetsi ekuwedzera
        • tsigiro ye stacking uye kubatanidza
        • inodiwa L3 kushanda

        Iwo x460-G2 akatevedzana switch akanakira. Kuvepo kweasina simba emagetsi ane kugona kuwedzera uye kuwedzera 10G, CX (ye stacking) uye QSFP + zviteshi zvinoita kuti ive yakanaka switch yekugovera layer ine madoko kusvika ku1 Gb.

        kupinda

        X440-G2-24p-10GE4*

        X440-G2-24t-10GE4*

        X440-G2-48t-10GE4*

        X440-G2-48p-10GE4*

        24x1000BASE-T(4 x SFP combo), 4x10GE SFP+ (PoE bhajeti 380 W)
         
        24x1000BASE-T(4 x SFP combo), 4x10GE SFP+
         
         
        24x1000BASE-T (4 x SFP combo), 4x10GE SFP+ combo ports
         
        48x1000BASE-T(4 x SFP combo), 4x10GE SFP+ combo ports (PoE bhajeti 740 W)

        Zvekuwana zvinodiwa:

        • nhamba inodiwa yekuwana zviteshi
        • PoE/PoE+ rutsigiro
        • kushanda uye kugona kwekuwedzera kwechiteshi
        • imwe bhonasi muchimiro cherutsigiro rwekuisa 10Gb ports "kunze kwebhokisi"

        Ini ndinokurudzira kuterera kune iyi mutsara maererano nekushanduka kwayo maererano nechiteshi, kuita uye kushanda.

        * iyo yakatarwa yeakasarudzwa switch inogona kuwanikwa muchinyorwa chekutanga chenhevedzano - Zvakanyanya Kuchinja Ongororo

        Ndinogona kupedzisa chinyorwa pano, asi ndinoda kuratidza zvinhu zviviri zvekuwedzera izvo chero mainjiniya achasangana nazvo pakugadzira kana kusimudzira network yavo:

        • shanda netambo nzira - fibers uye mitsara yemhangura
        • IP addressing

        Kushanda nefibers

        Pamusoro apa ndapa target scheme iyo inofanirwa kusvika. Nekuita kwayo, nhamba inotevera yekubatanidza yemidziyo inodiwa:

        nhamba yezvibatanidza zvekutaurirana

        Sezvinoonekwa kubva patafura, huwandu hushoma hwefibers hunodiwa kuti uve nechokwadi chekutadza kushivirira kwemazinga etiweki (core module, data center uye kugovera muzvivakwa zviviri) zvidimbu gumi.

        Padanho rekuita network, takaona kuti tambo pakati pezvivakwa ine 8 fiber chete. Chii chekuita mumamiriro ezvinhu aya?

        Ndichakupa mamwe mhinduro:

        • danho rekutanga rakajeka nderokushandisa tambo dzakasara mutambo pakati pekuvaka 1 - kuvaka 1 uye kuvaka 1 - kuvaka 2 (sezvinogona kuonekwa kubva patafura, 2 chete ye8 fibers mutambo imwe neimwe inoshandiswa). Kuti uite izvi, zvakakwana kuisa optical cross-connects pakati pe-cross-connects mukuvaka 1 uye, kana zvichidiwa, shandisa SFP modules ine reserve ye optical budget.
        • danho rechipiri nderekushandisa tekinoroji yeCWDM - kuwanda kwemutakuri wavelengths mukati mefiber imwe chete. Iyi tekinoroji yakachipa zvakanyanya kupfuura yeDMD uye iri nyore kuita. Izvo zvinodikanwa zvinonyanya kumhando ye optical fibers uye SFP/SFP + transceivers yehumwe hurefu uye bhajeti. Sezvandakataura muchinyorwa chakapfuura - kugona kwema switch kuti azive echitatu-bato transceivers anogona kurerutsa zvakanyanya hupenyu hwedu uye kuderedza mutengo wemari yekuvakwa kwemamwe tambo dzemaziso.
        • Danho rechitatu nderekutarisa mukana wekuwedzera huwandu hwefiber nekuisa mamwe tambo dzemaziso.

        Tevere tinotarisa huwandu hwefiber pakati pezvivakwa zvine akaiswa kugovera switch uye zvimwe zvivakwa 2-10. Pano, zvakare, hazvisi zvese zvakajeka:

        • Chekutanga, hapana mafiibhi akakwana ekushandisa chirongwa chedu chatiri kutarisisa - 2 mafiber pane imwe neimwe switch (sezvatinorangarira, tine tambo dzine 4 OB pachiitiko chimwe nechimwe)
        • chechipiri, kunyange kana pane nhamba yakakwana yefibers pakati pezvivako, MMF fibers inoshandiswa mukati mezvivako, izvo zvisingatibvumiri kuti tingobatanidza SMF neMMF fibers (Ndiri kutaura pamusoro pezvinhambwe pakati pezvivako zvinopfuura 300-400 mamita)

        Mumamiriro ezvinhu akadaro, zvinotevera zvinogona kutariswa:

        • Kupa imwe neimwe SMF switch ine fiber:
          • Kana chinhambwe chichibvumira, unogona kuwedzera mamwe tambo refu dzechigamba pakati pema switch. Pane imwe nguva, taishandisa zvigamba tambo 30-50 m kureba.
          • rara zvakachipa yakaderera-inogonesa Optical SMF tambo pakati pemakabati
          • senzira yekupedzisira, shandisa akasiyana SMF-MMF anoshandura
        • Kuti uderedze huwandu hwefiber inoshandiswa pakati pezvivakwa, unogona:
          • shandisa iyo stacking mashandiro e x440-G2 yekuwana switch - paunenge uchishandisa 1 SMF faibha kune imwe neimwe switch pasi, iyo inobvumira kushandisa 6 fibers uye madoko padivi rega rega pane 3 fiber uye madoko.
          • shandisa 2 fibers kubatanidza shanduko yekutanga mubazi uye yekupedzisira. Aggregate zvinongedzo pamupendero wekuwana switch uye shandisa STP protocol mumhete inoguma.

        IP addressing

        Pano ini ndichapa fungidziro yekuverenga kero yechirongwa chedu.

        Parizvino tine akati wandei kirasi B network - 172.16.0.0/16. Pakuverenga iyo IP kero nzvimbo, ini ndinotungamirwa neanotevera kufunga:

        • Iyo 4 bits yechipiri octet ichamiririra zvivako - 172.16.0.0/12.
        • Octet 3 icharatidza nhamba yepasi muchivako.
        • 3 octets = 255 ichagoverwa kune-point-to-point links yemidziyo uye control network.
        • imwe manejimendi VLAN pauriri hwekugadzirisa switch.
        • mumwe mushandisi VLAN pane switch (24 ports paavhareji).
        • imwe Voice VLAN per switch (24 ports paavhareji).
        • imwe VLAN yevhidhiyo yekuongorora system pauriri.
        • imwe VLAN yeWi-Fi zvishandiso pauriri.

        Ndine matafura aitaridzika seizvi:
        network 172.16.0.0/14
        network 172.20.0.0/14

        Mune tafura iri pamusoro, ini ndakapa fungidziro yekugovera network nezvivakwa uye pasi kune rumwe rutivi, uye network (mushandisi, manejimendi uye sevhisi) kune rimwe divi.

        Kutaura zvazviri, kusarudza grey network 172.16.0.0/12 haisi iyo yakanyanya kunaka, sezvo ichititadzisa muhuwandu hwemambure (kubva pa16 kusvika 31) yezvivakwa, uye kunewo mahofisi ari kure anodawo kucheka zvivharo zvetiweki, zvichida imwe nzira yakanakisisa ingave iri kushandisa 10.0.0.0/8 ye 172.16.0.0 / 12 network, kana 10.0.0.0. semuenzaniso, kune zvinodiwa sevhisi uye maseva) uye 8/XNUMX (yevashandisi network).

        Kazhinji, nzira yekugovera IP network ndeye modular uye zvinodikanwa kutevedzera mitemo yekupfupisa subnets mune imwe pfupiso network pamatanho ekugovera, pamwe nekumucheto ma routers mumapazi ari kure. Izvi zvinoitwa nokuda kwezvikonzero zvakawanda:

        • kuderedza matafura ekufambisa pane routers
        • kuderedza sevhisi traffic yemaprotocol ekufambisa (ese marudzi ese ekuvandudza meseji, kana nested subnets asipo)
        • kurerutsa manejimendi nekuvandudza kuverenga kweL3 network

        Kunyangwe zvakakosha kucherechedza maererano nemapoinzi maviri ekutanga kuti huwandu hwemarouter emazuva ano hwakanyanya kupfuura aya e2-15 makore apfuura uye hunovabvumira kuve nematafura makuru ekufambisa mu RAM yavo, uye chiyero chemutengo uye bandwidth yenzira dzekutaurirana yadzikira zvichienzaniswa nemitengo yenguva dzekushandiswa kwakapararira kweE20/T1 (G.1) inoyerera.

        mhedziso

        Shamwari, mune ino chinyorwa ndakaedza kutaurira muchidimbu sezvinobvira nezvemisimboti yekutanga yekugadzira campus network. Ehe, pakanga paine zvinhu zvakawanda, uye izvi zviri kunyangwe hazvo ndisina kubata pamisoro yakadai se:

        • kurongeka kwemuganho webhizinesi (uye iyi inyaya yakaparadzana ine yayo switch, miganhu, firewall, IPS/IDS masisitimu, DMZ, VPN nezvimwe zvinhu)
        • Wi-Fi network sangano
        • Sangano reVoIP network
        • data center sangano
        • chengetedzo (uye iyi zvakare inyika yakaparadzana, iyo maererano nehuwandu uye zvinodiwa haisi yakaderera kune dhizaini yeakachena network network, uye dzimwe nguva inoipfuura)
        • magetsi enjiniya
        • rondedzero inoenderera ichienderera

        Muchokwadi, kugadzira uye kuvaka bhizinesi network ibasa rinorwadza rinoda nguva yakawanda uye zviwanikwa.

        Asi ndinovimba chinyorwa changu chichakubatsira iwe kuongorora uye kunzwisisa padanho rekutanga maitiro ekuita basa iri.

        Izvi zviri kure nechinyorwa chekupedzisira pa Zvakanyanya Networks, saka ramba wakatarisa (teregiramu, Facebook, VK, TS Solution Blog)!

Source: www.habr.com

Tenga inovimbika yekutambira kwemasaiti ane DDoS dziviriro, VPS VDS maseva 🔥 Tenga webhusaiti yakavimbika ine dziviriro yeDDoS, maseva eVPS VDS | ProHoster