Molo, Habr! Ekuqaleni kukaJulayi, iSolarwinds ibhengeze ukukhululwa - 2020.2. Enye yezinto ezintsha kwimodyuli ye-Network Traffic Analyzer (NTA) yinkxaso yokuqaphela i-IPFIX traffic esuka kwiVMware VDS.
Ukuhlalutya i-traffic kwindawo yokutshintsha okubonakalayo kubalulekile ukuqonda ukuhanjiswa komthwalo kwiziseko ezingundoqo. Ngokuhlalutya itrafikhi, unokuphinda ubone ukufuduka koomatshini benyani. Kweli nqaku siza kuthetha malunga nezicwangciso zokuthumela ngaphandle kwe-IPFIX kwicala le-VMware switch ebonakalayo kunye nobuchule beSolarwinds ekusebenzeni nayo. Kwaye ekupheleni kwenqaku kuya kuba nekhonkco kwi-demo ye-intanethi ye-Solarwinds (ukufikelela ngaphandle kokubhalisa kwaye oku akusiyo intetho). Iinkcukacha phantsi kokusikwa.
Ukuqaphela ngokuchanekileyo i-traffic evela kwi-VDS, kufuneka uqale uqwalasele umdibaniso ngokusebenzisa i-vCenter interface, kwaye emva koko uhlalutye i-traffic kwaye ubonise amanqaku otshintshiselwano lwendlela efunyenwe kwi-hypervisors. Ngokhetho, ukutshintshwa kunokulungiswa ukufumana zonke iirekhodi ze-IPFIX ukusuka kwidilesi enye ye-IP ebophelelwe kwi-VDS, kodwa kwiimeko ezininzi kunolwazi ngakumbi ukubona idatha ekhutshwe kwi-traffic efunyenwe kwi-hypervisor nganye. I-traffic engena izakumela uqhagamshelo olusuka okanye ukuya koomatshini abakwi-hypervisors.
Olunye ukhetho loqwalaselo olukhoyo kukuthumela ngaphandle kuphela imijelo yedatha yangaphakathi. Olu khetho alubandakanyi uqukuqelo olusetyenzwa kutshintsho olubonakalayo lwangaphandle kwaye lunqanda iirekhodi zetrafikhi eziphindwe kabini zoqhagamshelo ukuya nokusuka kwi-VDS. Kodwa kuluncedo kakhulu ukukhubaza olu khetho kwaye ubeke iliso kuyo yonke imijelo ebonakalayo kwi-VDS.
Ukuqwalasela itrafikhi esuka kwiVDS
Masiqale ngokongeza umzekelo we-vCenter kwiSolarwinds. I-NTA iya kuba nolwazi malunga nokucwangciswa kweqonga le-virtualization.
Yiya kwimenyu ethi "Lawula iiNodes", emva koko "Useto" kwaye ukhethe "Yongeza iNode". Emva koko, kufuneka ufake idilesi ye-IP okanye i-FQDN yomzekelo we-vCenter kwaye ukhethe "i-VMware, i-Hyper-V, okanye i-Nutanix entities" njengendlela yokuvota.
Yiya kwincoko yababini yomamkeli, yongeza imizekelo yevCenter kwaye uyivavanye ukugqiba ukuseta.
Umzekelo we-vCenter uya kwenza uvoto lokuqala kangangexesha elithile, ngokwesiqhelo imizuzu eli-10 ukuya kwengama-20. Kufuneka ulinde ukugqitywa, kwaye emva koko uvumele i-IPFIX ukuthumela ngaphandle kwi-VDS.
Emva kokumisela i-vCenter esweni kunye nokufumana idatha ye-inventory kwi-virtualization platform configuration, siya kwenza ukuba ukuthunyelwa ngaphandle kweerekhodi ze-IPFIX kwi-switch. Eyona ndlela ikhawulezayo yokwenza oku kungomxhasi we-vSphere. Makhe siye kwi-"Networking" ithebhu, khetha i-VDS kwaye kwi-"Lungisa" ithebhu siya kufumana useto lwangoku lwe-NetFlow. I-VMware isebenzisa igama elithi "NetFlow" ukubhekisa kuthunyelo ngaphandle, kodwa eyona ndlela yomthetho esetyenziswayo yi IPFIX.
Ukuvumela ukuthumela ngaphandle, khetha u-"Settings" kwimenyu ethi "Actions" phezulu kwaye ujonge ku-"Hlela iNetFlow".
Kule bhokisi yencoko yababini, ngenisa idilesi ye-IP yomqokeleli okwangumzekelo weOrion. Ngokungagqibekanga, i-port 2055 idla ngokusetyenziswa.Sincoma ukushiya indawo ethi "Tshintsha idilesi ye-IP" ingenanto, eya kubangela ukuba iirekhodi zomlambo ezifunyenwe ngokukodwa kwi-hypervisors. Oku kuya kunika ukuguquguquka kokucoca okuqhubekayo komlambo wedatha ukusuka kwi-hypervisors.
Shiya "Inkqubo yokuhamba kwangaphakathi kuphela" insimu ivaliwe, eya kukuvumela ukuba ubone lonke unxibelelwano: ngaphakathi nangaphandle.
Nje ukuba uvumele ukuthunyelwa ngaphandle kwe-VDS, kuya kufuneka kwakhona ukuba uyenzele amaqela ezibuko asasazwe apho ufuna ukufumana idatha. Eyona ndlela ilula yokwenza oku kukucofa-ekunene kwibar yokukhangela ye-VDS kwaye ukhethe "Iqela leZibuko ezisasazwayo" kwaye emva koko "Lawula amaQela eZibuko ezisasazwayo".
Ibhokisi yencoko yababini iya kuvula apho kufuneka ukhangele ibhokisi yokukhangela "Ukubeka iliso" kwaye ucofe "Okulandelayo".
Kwinqanaba elilandelayo, ungakhetha athile okanye onke amaqela ezibuko.
Kwinqanaba elilandelayo, tshintshela i-NetFlow ku-"Enabled".
Xa ukuthunyelwa ngaphandle komlambo kuvuliwe kwi-VDS kunye namaqela ezibuko asasaziweyo, uya kubona amangeno omlambo we-hypervisors aqala ukuhamba kumzekelo we-NTA.
I-Hypervisors inokubonwa kuluhlu lwemithombo yedatha yokuhamba kwi-Lawula iMithombo yokuPhuma iphepha kwi-NTA. Tshintshela kwi "Nodes".
Ungazibona iziphumo zokuseta . Nika ingqalelo ithuba lokuwa phantsi kwinqanaba le-node, inqanaba leprotocol yonxibelelwano, njl.
Ukudityaniswa nezinye iimodyuli zeSolarwinds kujongano olunye kukuvumela ukuba wenze uphando kwimiba eyahlukeneyo: bona ukuba ngabaphi abasebenzisi abangene kumatshini wenyani, ukusebenza kweseva. , kunye nezicelo kuyo, bona izixhobo zothungelwano ezinxulumeneyo nokunye okuninzi. Umzekelo, ukuba isiseko senethiwekhi yakho sisebenzisa iprotocol ye-NBAR2, iSolarwinds NTA inokubona ngempumelelo i-traffic evela , okanye .
Injongo ephambili yenqaku kukubonisa ukukhululeka kokubeka iliso kwi-Solarwinds kunye nokuzaliswa kwedatha eqokelelweyo. E-Solarwinds unethuba lokubona umfanekiso opheleleyo wento eyenzekayo. Ukuba ufuna umboniso wesisombululo okanye ujonge yonke into ngokwakho, shiya isicelo okanye ukufowuna.
KuHabrΓ© sikwanalo nenqaku malunga .
Bhalisela yethu .
umthombo: www.habr.com