ProHoster > Ibhulogi > Ulawulo > Uluthatha njani ulawulo lweziseko zonxibelelwano zakho. Isahluko sesibini. Ukucoca kunye nokuBhalwa

Uluthatha njani ulawulo lweziseko zonxibelelwano zakho. Isahluko sesibini. Ukucoca kunye nokuBhalwa

Eli nqaku lelesibini kungcelele lwamanqaku athi “Uluthatha Njani Ulawulo Lweziseko Zokusebenza Zenethiwekhi Yakho.” Imixholo yawo onke amanqaku kuthotho kunye namakhonkco anokufunyanwa apha.

Uluthatha njani ulawulo lweziseko zonxibelelwano zakho. Isahluko sesibini. Ukucoca kunye nokuBhalwa

Injongo yethu kweli nqanaba kukuzisa ucwangco kumaxwebhu kunye noqwalaselo.
Ekupheleni kwale nkqubo, kufuneka ube nesethi eyimfuneko yamaxwebhu kunye nenethiwekhi eqwalaselwe ngokuhambelana nabo.

Ngoku asiyi kuthetha ngophicotho lokhuseleko - oku kuya kuba ngumxholo wecandelo lesithathu.

Ubunzima bokugqiba umsebenzi owabelwe kweli nqanaba, ngokuqinisekileyo, kuyahluka kakhulu kwinkampani ukuya kwinkampani.

Imeko efanelekileyo xa

  • inethiwekhi yakho yenziwe ngokuhambelana neprojekthi kwaye uneseti epheleleyo yamaxwebhu
  • yenziwe kwinkampani yakho utshintsho ulawulo kunye nenkqubo yolawulo yenethiwekhi
  • Ngokuhambelana nale nkqubo, unamaxwebhu (kubandakanya yonke imizobo efunekayo) enika ulwazi olupheleleyo malunga nemeko yangoku yemicimbi.

Kule meko, umsebenzi wakho ulula kakhulu. Kufuneka ufunde amaxwebhu kwaye uphonononge zonke iinguqu ezenziweyo.

Kwimeko embi kakhulu, uya kuba nayo

  • uthungelwano oludalwe ngaphandle kweprojekthi, ngaphandle kwesicwangciso, ngaphandle kokuvunywa, ziinjineli ezingenalo inqanaba elaneleyo lemfundo,
  • kunye nesiphithiphithi, utshintsho olungabhalwanga, kunye "nenkunkuma" eninzi kunye nezisombululo ezingaphantsi

Kucacile ukuba imeko yakho kwindawo ethile phakathi, kodwa ngelishwa, kulo mlinganiso ongcono - kubi kakhulu, kukho amathuba aphezulu okuba uya kuba kufuphi nesiphelo esibi kakhulu.

Kule meko, uya kufuna kwakhona ukukwazi ukufunda iingqondo, kuba kuya kufuneka ufunde ukuqonda oko "abayili" bafuna ukwenza, ukubuyisela ingqiqo yabo, ukugqiba oko kwakungagqitywanga kwaye ususe "inkunkuma".
Kwaye, ngokuqinisekileyo, kuya kufuneka ulungise iimpazamo zabo, utshintshe (kweli nqanaba ngokuncinci kangangoko kunokwenzeka) uyilo kunye nokutshintsha okanye wenze kwakhona izicwangciso.

Eli nqaku alitsho ukuba liphelele. Apha ndiza kuchaza kuphela imigaqo jikelele kwaye ndigxininise kwiingxaki eziqhelekileyo ezimele zisonjululwe.

Iseti yamaxwebhu

Masiqale ngomzekelo.

Ngezantsi kukho amaxwebhu enziwe ngokwesiko kwiCisco Systems ngexesha loyilo.

CR – IiMfuno zoMthengi, iimfuno zabaxumi (iinkcukacha zobugcisa).
Yenziwe ngokudibeneyo kunye nomthengi kwaye imisela iimfuno zenethiwekhi.

I-HLD -Uyilo lweNqanaba eliPhezulu, uyilo oluphezulu olusekelwe kwiimfuno zenethiwekhi (CR). Uxwebhu luchaza kwaye luthethelela izigqibo zoyilo ezithathiweyo (i-topology, iiprothokholi, ukhetho lwe-hardware,...). I-HLD ayiqulathanga iinkcukacha zoyilo, ezifana nojongano kunye needilesi ze-IP ezisetyenzisiweyo. Kwakhona, uqwalaselo oluthile lwehardware aluxoxwa apha. Endaweni yoko, olu xwebhu lujolise ekuchazeni imiba yoyilo oluphambili kulawulo lobugcisa bomthengi.

LLD -Uyilo lweNqanaba eliPhantsi, uyilo olusezantsi olusekelwe kuyilo oluphezulu (HLD).
Kufuneka iqulethe zonke iinkcukacha eziyimfuneko ukuphumeza iprojekthi, njengolwazi malunga nendlela yokudibanisa kunye nokuqwalasela izixhobo. Esi sisikhokelo esipheleleyo sokuphumeza uyilo. Olu xwebhu kufuneka lunike ulwazi olwaneleyo ukuze luphunyezwe nangabasebenzi abangaqeqeshwanga kangako.

Into ethile, umzekelo, iidilesi ze-IP, amanani AS, iskim sokutshintsha okubonakalayo (i-cabling), “inokukhutshelwa ngaphandle” kumaxwebhu ahlukeneyo, I-ID yeRhafu (ISicwangciso sokuPhunyezwa kweNetwork).

Ukwakhiwa kwenethiwekhi kuqala emva kokudalwa kwala maxwebhu kwaye kwenzeka ngokuhambelana ngokungqongqo kunye nabo kwaye emva koko kuhlolwe ngumthengi (uvavanyo) ukuthotyelwa koyilo.

Ewe kunjalo, abadibanisi abahlukeneyo, abathengi abahlukeneyo, kunye namazwe ahlukeneyo anokuba neemfuno ezahlukeneyo zamaxwebhu eprojekthi. Kodwa ndingathanda ukunqanda izinto ezisesikweni kwaye ndiwuthathele ingqalelo umba ngokufaneleka kwawo. Eli nqanaba alikho malunga noyilo, kodwa malunga nokubeka izinto ngolungelelwano, kwaye sifuna isethi eyaneleyo yamaxwebhu (imizobo, iitafile, iinkcazo ...) ukugqiba imisebenzi yethu.

Kwaye ngokombono wam, kukho ubuncinci obuncinci, ngaphandle kokuba akunakwenzeka ukulawula ngokufanelekileyo inethiwekhi.

La ngamaxwebhu alandelayo:

  • Idayagram (log) yokutshintsha komzimba (ikheyibhuli)
  • Idayagram yenethiwekhi okanye imizobo enolwazi oluyimfuneko lwe-L2/L3

Umzobo wokutshintsha ngokomzimba

Kwezinye iinkampani ezincinci, umsebenzi onxulumene nofakelo lwezixhobo kunye nokutshintsha ngokomzimba (i-cabling) luxanduva lweenjineli zenethiwekhi.

Kule meko, ingxaki isonjululwe ngokuyinxenye ngale ndlela ilandelayo.

  • sebenzisa inkcazo kujongano ukuchaza into edityaniswe kuyo
  • Ukucima ngolawulo zonke izixhobo zenethiwekhi ezingadityaniswanga

Oku kuya kukunika ithuba, nokuba kukho ingxaki ngekhonkco (xa i-cdp okanye i-lldp ingasebenzi kolu jongano), ukujonga ngokukhawuleza ukuba yintoni eqhagamshelwe kweli zibuko.
Ungabona ngokulula ukuba yeyiphi izibuko ehleliyo kwaye yeyiphi esimahla, eyimfuneko ekucwangciseni uqhagamshelo lwezixhobo zenethiwekhi entsha, iiseva okanye iindawo zokusebenza.

Kodwa kucacile ukuba ukuba ulahlekelwa ukufikelela kwisixhobo, uya kulahlekelwa ukufikelela kolu lwazi. Ukongeza, ngale ndlela awuyi kukwazi ukurekhoda ulwazi olubalulekileyo njengoluhlobo luni lwesixhobo, luhlobo luni lokusetyenziswa kwamandla, mangaphi amazibuko, yeyiphi i-rack ekuyo, zeziphi iipaneli zepatch apho kwaye phi (kweyiphi i-rack / ipatch panel ) zidibene . Ngoko ke, amaxwebhu ongezelelweyo (kungekhona nje iinkcazo kwisixhobo) aseluncedo kakhulu.

Olona khetho lufanelekileyo kukusebenzisa izicelo eziyilelwe ukusebenza ngolu hlobo lolwazi. Kodwa unokuzikhawulela kwiitafile ezilula (umzekelo, kwi-Excel) okanye ubonise ulwazi olubona luyimfuneko kwi-L1/L2 diagrams.

Kubalulekile!

Injineli yenethiwekhi, ngokuqinisekileyo, inokwazi kakuhle ubuqhetseba kunye nemigangatho ye-SCS, iintlobo zeeracks, iintlobo zombane ongenakuphazamiseka, yintoni i-aisle ebandayo kunye neshushu, indlela yokwenza isiseko esifanelekileyo ... yazi i-physics yamasuntswana asisiseko okanye i-C ++. Kodwa umntu kufuneka aqonde ukuba yonke le asiyondawo yakhe yolwazi.

Ke ngoko, kuyinto entle ukuba namasebe azinikeleyo okanye abantu abazinikeleyo ukusombulula iingxaki ezinxulumene nokufakela, uqhagamshelo, ukugcinwa kwezixhobo, kunye nokutshintsha ngokomzimba. Ngokuqhelekileyo kumaziko eenkcukacha ezi ziinjineli zeziko ledatha, kwaye kwiofisi yidesika yoncedo.

Ukuba ulwahlulo olunjalo lubonelelwe kwinkampani yakho, ke imiba yokungena ngokutshintsha ngokwasemzimbeni ayingomsebenzi wakho, kwaye unokuzikhawulela kuphela kwinkcazo kujongano kunye nokuvalwa kolawulo lwamazibuko angasetyenziswanga.

Imizobo yothungelwano

Akukho ndlela yendalo yonke yokuzoba imizobo.

Eyona nto ibaluleke kakhulu kukuba imizobo kufuneka ibonelele ngokuqonda indlela i-traffic eya kuhamba ngayo, ngeziphi izinto ezinengqiqo kunye nezomzimba zenethiwekhi yakho.

Ngezinto eziphathekayo sithetha

  • izixhobo ezisebenzayo
  • ujongano/iizibuko zezixhobo ezisebenzayo

Ngaphantsi kwengqiqo -

  • izixhobo ezinengqiqo (N7K VDC, Palo Alto VSYS, ...)
  • I-VRF
  • IiVilan
  • ujongano olungaphantsi
  • itonela
  • imimandla
  • ...

Kwakhona, ukuba inethiwekhi yakho ayiyosiseko ngokupheleleyo, iya kubandakanya amacandelo ahlukeneyo.
Ngokomzekelo

  • iziko ledatha
  • intanethi
  • WAN
  • ukufikelela kude
  • ofisi LAN
  • DMZ
  • ...

Kububulumko ukuba nemizobo eliqela enika yomibini umfanekiso omkhulu (indlela ehamba ngayo itrafikhi phakathi kwawo onke la macandelo) kunye nengcaciso eneenkcukacha yecandelo ngalinye.

Ekubeni kuthungelwano lwanamhlanje kunokubakho ezininzi iileya ezinengqiqo, mhlawumbi yindlela efanelekileyo (kodwa ayiyomfuneko) ukwenza iisekethe ezahlukeneyo kwiileya ezahlukeneyo, umzekelo, kwimeko yendlela yokwaleka oku kunokuba yimijikelezo elandelayo:

  • liweyo
  • I-L1/L2 yangaphantsi
  • I-L3 yangaphantsi

Ngokuqinisekileyo, umzobo obaluleke kakhulu, ngaphandle kokuba akunakwenzeka ukuqonda ingcamango yoyilo lwakho, ngumzobo wokuhamba.

Iskimu sokuhamba

Ubuncinci, lo mzobo kufuneka ubonise

  • zeziphi iiprothokholi zomzila ezisetyenziswayo kwaye phi
  • ulwazi olusisiseko malunga noseto lwendlela yeprotocol (indawo/inombolo ye-AS/i-id yomzila/...)
  • kweziphi izixhobo unikezelo ngokutsha lwenzeka?
  • apho ukuhluzwa kunye nokudibanisa indlela kwenzeka
  • ulwazi lwendlela engagqibekanga

Kwakhona, inkqubo ye-L2 (OSI) ihlala iluncedo.

Inkqubo ye-L2 (OSI)

Lo mzobo unokubonisa olu lwazi lulandelayo:

  • yintoni VLANs
  • zeziphi izibuko ezingamazibuko
  • apho amazibuko adityaniswe kwi-ether-channel (ijelo lezibuko), ijelo lezibuko lenyani
  • zeziphi iiprothokholi ze-STP ezisetyenziswayo kwaye kweziphi izixhobo
  • izicwangciso ze-STP ezisisiseko: ingcambu / i-backup yengcambu, iindleko ze-STP, i-port kuqala
  • useto olongezelelweyo lwe-STP: I-BPDU igada/isihluzi, unogada weengcambu...

Iimpazamo zoyilo oluqhelekileyo

Umzekelo wendlela embi yokwakha inethiwekhi.

Masithathe umzekelo olula wokwakha i-LAN yeofisi elula.

Ukuba namava okufundisa nge-telecom kubafundi, ndingatsho ukuba phantse nawuphi na umfundi phakathi kwisiqingatha sonyaka wesibini unolwazi oluyimfuneko (njengenxalenye yekhosi endiyifundisileyo) ukuseka i-ofisi yeLAN elula.

Yintoni enzima malunga nokudibanisa utshintsho komnye nomnye, ukuseta ii-VLANs, i-SVI ​​interfaces (kwimeko yokutshintsha kwe-L3) kunye nokuseta umzila we-static?

Yonke into iya kusebenza.

Kodwa kwangaxeshanye, imibuzo enxulumene ne

  • ukhuseleko
  • ugcino
  • ukukalwa kwenethiwekhi
  • imveliso
  • imveliso
  • ukuthembeka
  • ...

Ngamaxesha ngamaxesha ndiva ingxelo yokuba i-LAN yeofisi yinto elula kakhulu kwaye ndihlala ndiyiva le nto kwiinjineli (kunye nabaphathi) abenza yonke into ngaphandle kwamanethiwekhi, kwaye bathetha oku ngokuzithemba ukuba akumangalisi ukuba i-LAN iya kuba. ezenziwe ngabantu abanolwazi olungonelanga kwaye ziya kwenziwa malunga neempazamo ezifanayo endiya kuzichaza apha ngezantsi.

I-L1 eqhelekileyo (OSI) Iimpazamo zoYilo

  • Ukuba, nangona kunjalo, unoxanduva lwe-SCS, ngoko ke elinye lawona malungelo angathandekiyo onokuthi uwafumane kukungakhathali kunye nokutshintsha okungacingelwanga kakuhle.

Ndingaphinda ndihlele njengohlobo lweempazamo ze-L1 ezinxulumene nemithombo yezixhobo ezisetyenzisiweyo, umzekelo,

  • I-bandwidth enganelanga
  • I-TCAM enganelanga kwisixhobo (okanye ukusetyenziswa kwayo ngokungafanelekanga)
  • ukusebenza okungonelanga (kaninzi kuhambelana neendonga zomlilo)

I-L2 eqhelekileyo (OSI) Iimpazamo zoYilo

Rhoqo, xa kungekho kuqondwa kakuhle kwendlela i-STP esebenza ngayo kunye nokuba zeziphi iingxaki ezinokuthi izisa nayo, iiswitshi ziqhagamshelwe ngesiphithiphithi, ngoseto olungagqibekanga, ngaphandle kohlengahlengiso olongezelelweyo lwe-STP.

Ngenxa yoko, sisoloko sinezinto ezilandelayo

  • Idayamitha yenethiwekhi ye-STP enkulu, enokukhokelela kwizaqhwithi zokusasaza
  • Ingcambu ye-STP iya kumiselwa ngokungenamkhethe (ngokusekwe kwidilesi ye-mac) kwaye umendo wetrafikhi uya kuba sezantsi
  • amazibuko aqhagamshelwe kumanginginya awasayi kuqwalaselwa njengowomphetho (portfast), nto leyo eya kukhokelela ekubalweni kwakhona kwe-STP xa uvula/ucima izikhululo zokuphela.
  • uthungelwano aluyi kwahlulwa kwinqanaba le-L1/L2, ngenxa yoko iingxaki ngalo naluphi na utshintsho (umzekelo, ukugqithiswa kwamandla) kuya kukhokelela ekubalweni kwakhona kwe-STP topology kunye nokumisa i-traffic kuzo zonke ii-VLAN kuzo zonke iiswitshi (kubandakanywa enye ebalulekileyo ngokwembono yecandelo lenkonzo eqhubekayo)

Imizekelo yeempazamo kuyilo lwe-L3 (OSI).

Iimpazamo ezimbalwa eziqhelekileyo zabasebenzisi benethiwekhi abaqalayo:

  • Ukusetyenziswa rhoqo (okanye ukusetyenziswa kuphela) kwendlela engatshintshiyo
  • usetyenziso lweprothokholi yomzila onganeno kuyilo olunikiweyo
  • ulwahlulo lomnatha olungenangqiqo
  • usetyenziso oluphantsi lwesithuba sedilesi, olungavumeli udibaniso lwendlela
  • akukho ndlela yogcino
  • akukho bhukisho lwesango elimiselweyo
  • umzila ongalungelelanisiweyo xa kusakhiwa kwakhona iindlela (kunokuba yingozi kwimeko ye-NAT/PAT, iindonga zomlilo)
  • iingxaki nge-MTU
  • xa iindlela ziphinda zakhiwa, itrafikhi idlula kwezinye iindawo zokhuseleko okanye ezinye iifirewall, nto leyo ekhokelela ekuwisweni kwesi sithuthi.
  • i-topology embi

Iikhrayitheriya zokuvavanya umgangatho woyilo

Xa sithetha malunga nokulunga/ukungafezeki, kufuneka siqonde ngokwembono yeyiphi ikhrayitheriya esinokuyivavanya oku. Apha, ngokwembono yam, zezona zibalulekileyo (kodwa ayizizo zonke) iinqobo zokugweba (kunye nengcaciso ngokunxulumene neendlela zokuziphatha):

  • scalability
    Umzekelo, uthatha isigqibo sokongeza elinye iziko ledatha. Kulula kangakanani ukwenza oko?
  • lula ukusetyenziswa (ukulawula)
    Lulula kwaye lukhuselekile kangakanani utshintsho lokusebenza, olufana nokwazisa igridi entsha okanye iindlela zokucoca?
  • ukufumaneka
    Yeyiphi ipesenti yexesha apho inkqubo yakho ibonelela ngenqanaba lenkonzo elifunekayo?
  • ukhuseleko
    Ikhuseleke kangakanani idatha egqithisiweyo?
  • ixabiso

Utshintsho

Umgaqo osisiseko kweli nqanaba unokubonakaliswa ngefomula ethi “musa ukulimaza.”
Ngoko ke, nangona ungavumelani ngokupheleleyo noyilo kunye nokuphunyezwa okukhethiweyo (uqwalaselo), akusoloko kucetyiswa ukuba wenze utshintsho. Indlela efanelekileyo kukubeka zonke iingxaki ezichongiweyo ngokweeparamitha ezimbini:

  • ingalungiswa njani le ngxaki
  • ungakanani umngcipheko awuthweleyo?

Okokuqala, kuyimfuneko ukuphelisa oko kunciphisa okwangoku inqanaba lenkonzo enikezelwa ngaphantsi kwenqanaba elamkelekileyo, umzekelo, iingxaki ezikhokelela ekulahlekeni kwepakethi. Emva koko lungisa okona kulula kwaye kukhuselekile ukulungisa ekunciphiseni ulandelelwano lobunzima bomngcipheko (ukusuka kuyilo lomngcipheko ophezulu okanye imiba yoqwalaselo ukuya kumngcipheko ophantsi).

Ukufuna ukwenza izinto ngendlela egqibeleleyo kweli nqanaba kunokuba yingozi. Zisa uyilo kwindawo eyanelisayo kwaye ungqamanise ubumbeko lwenethiwekhi ngokufanelekileyo.

umthombo: www.habr.com

Yongeza izimvo