Kupera kwekutanga uye kutanga kwemwedzi wechipiri wechirimo 2019 kwakave kwakaoma uye kwakaratidzwa nemadonhwe makuru akati wandei mumasevhisi eT. Pakati pezvinocherechedzwa: zviitiko zviviri zvakakomba muCloudFlare zvivakwa (yekutanga - nemaoko akatsveyama uye hunhu hwekusava nehanya kune BGP kune mamwe maISPs kubva kuUSA; chechipiri - nekuiswa kwakakombama kweCF ivo pachavo, iyo yakabata munhu wese aishandisa CF. , uye aya akawanda anocherechedzwa masevhisi) uye kusagadzikana kushanda kweiyo Facebook CDN zvivakwa (zvakakanganisa zvese zvigadzirwa zveFB, kusanganisira Instagram neWhatsApp). Isu taifanirawo kubatikana mukugovera, kunyangwe kubuda kwedu kwaive kushoma pakatarisana nepasirese. Mumwe munhu atotanga kudhonza zvikopokopo nhema uye "changamire" kurangana, saka tiri kuburitsa ruzhinji post mortem yechiitiko chedu.
03.07.2019, 16: 05
Matambudziko ane zviwanikwa akatanga kurekodhwa, zvakafanana nekuparara kwemukati network yekubatanidza. Vasati vanyatsoongorora zvese, vakatanga kukanganisa pakuita kwechiteshi chekunze chakananga kuDataLine, zvakava pachena kuti dambudziko raive remukati mekupinda muInternet (NAT), zvekuti vakamisa musangano weBGP. kuenda kuDataLine.
03.07.2019, 16: 35
Zvakava pachena kuti michina inopa kushandura kero yetiweki uye kuwana kubva kune saiti yenzvimbo network kuenda kuInternet (NAT) yakanga yakundikana. Kuedza kudzoreredza midziyo hakuna kutungamira kune chero chinhu, kutsvaga kwedzimwe sarudzo dzekuronga yekubatanidza kwakatanga kusati kwawana mhinduro kubva kuhunyanzvi hwekutsigirwa, sezvo kubva pane zvakaitika, izvi zvingangove zvisina kubatsira.
Dambudziko rakati wedzeredzei nenyaya yekuti mudziyo uyu wakamisawo kubatana kwevatengi veVPN vashandi, uye basa rekudzoreredza kure rakava rakaoma kuita.
03.07.2019, 16: 40
Takaedza kumutsiridza yaimbovepo backup NAT scheme yakamboshanda zvakanaka kare. Asi zvakava pachena kuti huwandu hwekugadziridza network hwakaita kuti chirongwa ichi chisashande zvachose, sezvo kudzoreredza kwacho kwaigona, zvakanyanya, kusashanda, kana, zvakanyanya, kuputsa izvo zvave kushanda.
Takatanga kushanda pane akati wandei mazano ekuendesa traffic kune seti yevatsva ma routers anoshandira musana, asi iwo aiita seasingashande nekuda kwekusiyana kwekugoverwa kwenzira mune yepakati network.
03.07.2019, 17: 05
Panguva imwecheteyo, dambudziko rakaonekwa mumazita ekugadzirisa zita pamaseva ezita, izvo zvakakonzera kukanganisa mukugadzirisa magumo mumashandisirwo, uye vakatanga kukurumidza kuzadza mafaira evaenzi nemarekodhi emabasa akakosha.
03.07.2019, 17: 27
Kushanda kwaHabr kwakaganhurirwa kwakadzorerwa.
03.07.2019, 17: 43
Asi pakupedzisira, mhinduro yakachengeteka yakawanikwa yekuronga traffic kuburikidza neimwe yebhodha routers, iyo yakakurumidza kuiswa. Kubatana kweInternet kwadzoreredzwa.
Pamaminetsi mashoma akatevera, zviziviso zvakawanda zvakabva kumasisitimu ekutarisisa nezve kudzoreredzwa kwemashandiro evamiriri vevatariri, asi mamwe masevhisi akave asingashande nekuti magadzirirwo emazita pamaseva ezita (dns) akatyorwa.
03.07.2019, 17: 52
NS yakatangazve uye cache yakabviswa. Kugadzirisa kwadzorerwa.
03.07.2019, 17: 55
Masevhisi ese akatanga kushanda kunze kweMK, Freelansim neToaster.
03.07.2019, 18: 02
MK naFreelansim vakatanga kushanda.
03.07.2019, 18: 07
Dzosa musangano weBGP usina mhosva neDataLine.
03.07.2019, 18: 25
Vakatanga kunyora matambudziko ane zviwanikwa, izvo zvakakonzerwa nekushandurwa kwekero yekunze kwedziva reNAT uye kusavapo kwayo muacl yehuwandu hwemashumiro, iyo yakakurumidza kugadziriswa. Toaster yakatanga kushanda ipapo.
03.07.2019, 20: 30
Takaona zvikanganiso zvine chekuita neTeregiramu bots. Zvakazoitika kuti vakakanganwa kunyoresa kero yekunze mune akati wandei acl (proxy server), iyo yakagadziriswa nekukurumidza.
zvakawanikwa
- Midziyo, iyo yakambodyara kusava nechokwadi pamusoro pekukodzera kwayo, yakakundikana. Paive nehurongwa hwekuibvisa kubva kubasa, sezvo yaikanganisa kuvandudzwa kwetiweki uye iine matambudziko ekuenderana, asi panguva imwechete yakaita basa rakakosha, ndosaka chero kutsiva kwaive kwakaoma nehunyanzvi pasina kukanganisa masevhisi. Iye zvino unogona kuenderera mberi.
- Nyaya yeDNS inogona kudzivirirwa nekuvaswededza pedyo nenetiweki yemusana mutsva kunze kwenetiweki yeNAT uye vachiri nekubatana kwakazara kunetiweki yegrey pasina kududzira (ndiro raive hurongwa pamberi pechiitiko).
- Iwe haufanirwe kushandisa mazita emazita paunenge uchiunganidza masumbu eRDBMS, sezvo iko nyore kushandura pachena kero yeIP haina kunyanya kudikanwa, sezvo manipulations akadaro achiri kuda kuvakazve cluster. Sarudzo iyi yakarairwa nezvikonzero zvenhoroondo uye, chekutanga, nekujeka kwemagumo nemazita muRDBMS zvigadziriso. Kazhinji, musungo wekirasi.
- Muchidimbu, maekisesaizi anofananidzwa ne "sovereignization yeRunet" yakaitwa; pane chimwe chinhu chekufunga nezvacho maererano nekusimbisa kugona kwekuzvimiririra kupona.
Source: www.habr.com