Sawubona, Habr! Ekuqaleni kukaJulayi, iSolarwinds yamemezela ukukhululwa — 2020.2. Enye yezinto ezintsha ezikumojula ye-Network Traffic Analyzer (NTA) ukusekelwa kokubona ithrafikhi ye-IPFIX evela ku-VMware VDS.
Ukuhlaziya ithrafikhi endaweni yokushintsha okubonakalayo kubalulekile ukuqonda ukusatshalaliswa komthwalo kungqalasizinda ebonakalayo. Ngokuhlaziya ithrafikhi, ungakwazi futhi ukubona ukufuduka kwemishini ebonakalayo. Kulesi sihloko sizokhuluma ngezilungiselelo zokuthekelisa ze-IPFIX ohlangothini lwe-VMware switch ebonakalayo kanye namakhono e-Solarwinds okusebenza nayo. Futhi ekugcineni kwe-athikili kuzoba nesixhumanisi sedemo ye-inthanethi ye-Solarwinds (ukufinyelela ngaphandle kokubhalisa futhi lokhu akusona isifanekiso sokukhuluma). Imininingwane ngaphansi kokusikwa.
Ukubona kahle ithrafikhi evela ku-VDS, okokuqala udinga ukulungisa uxhumano ngokusebenzisa isixhumi esibonakalayo se-vCenter, bese uhlaziya ithrafikhi futhi ubonise amaphuzu okushintshaniswa kwethrafikhi atholwe kuma-hypervisors. Ngokuzithandela, ukushintshwa kungalungiselelwa ukuthola wonke amarekhodi e-IPFIX kusuka ekhelini le-IP elilodwa eliboshelwe ku-VDS, kodwa ezimweni eziningi kuba nolwazi kakhulu ukubona idatha ekhishwe kuthrafikhi etholwe ku-hypervisor ngayinye. Ithrafikhi ezayo izomela ukuxhumana okuvela noma ukuya emishinini ebonakalayo etholakala kuma-hypervisors.
Enye inketho yokumisa etholakalayo ukuthumela kuphela imifudlana yedatha yangaphakathi. Le nketho ayifaki ukugeleza okucutshungulwa kuswishi yangaphandle futhi ivimbela amarekhodi ethrafikhi ayimpinda ukuze axhumeke noma asuke ku-VDS. Kodwa kuwusizo kakhulu ukukhubaza le nketho nokuqapha konke ukusakaza okubonakalayo ku-VDS.
Ilungiselela ithrafikhi kusuka ku-VDS
Ake siqale ngokwengeza isibonelo se-vCenter ku-Solarwinds. I-NTA izobe isiba nolwazi mayelana nokucushwa kwenkundla ye-virtualization.
Yiya kumenyu ethi "Phatha Amanodi", bese "Izilungiselelo" bese ukhetha okuthi "Engeza I-Node". Ngemva kwalokho, udinga ukufaka ikheli le-IP noma i-FQDN yesibonelo se-vCenter bese ukhetha “izinhlangano ze-VMware, Hyper-V, noma i-Nutanix” njengendlela yokuvota.
Iya engxoxweni ethi Engeza Umsingathi, engeza imininingwane yesibonelo se-vCenter futhi uzihlole ukuze uqedele ukusetha.
Isibonelo se-vCenter sizokwenza inhlolovo yokuqala isikhathi esithile, ngokuvamile imizuzu eyi-10-20. Udinga ukulinda ukuqedwa, bese unika amandla ukuthekelisa kwe-IPFIX ku-VDS.
Ngemva kokusetha ukuqapha kwe-vCenter nokuthola idatha yokusungula ekucushweni kwenkundla yokwenza izinto ezibonakalayo, sizovumela ukuthunyelwa kwamarekhodi e-IPFIX kushintsho. Indlela eshesha kakhulu yokwenza lokhu ngokusebenzisa iklayenti le-vSphere. Asiye kuthebhu ethi "Networking", khetha i-VDS bese kuthebhu ethi "Lungisa" sizothola izilungiselelo zamanje ze-NetFlow. I-VMware isebenzisa igama elithi "NetFlow" ukuze ibhekisele ekuthunyelweni kokusakaza, kodwa umthetho olandelwayo wangempela osetshenziswayo yi-IPFIX.
Ukuze unike amandla ukuthekelisa okugelezayo, khetha "Izilungiselelo" kumenyu ethi "Izenzo" phezulu bese uzulazulela kokuthi "Hlela i-NetFlow".
Kuleli bhokisi lengxoxo, faka ikheli le-IP lomqoqi okuphinde kube yisibonelo se-Orion. Ngokuzenzakalelayo, i-port 2055 ivamise ukusetshenziswa. Sincoma ukuthi ushiye inkambu ethi “Shintsha Ikheli Le-IP” ingenalutho, okuzophumela ekusakazeni kwamarekhodi atholwe ngokuqondile kuma-hypervisors. Lokhu kuzonikeza ukuguquguquka kokuhlunga okwengeziwe kokusakaza kwedatha kusuka kuma-hypervisors.
Shiya inkambu ethi "Inqubo yokugeleza kwangaphakathi kuphela" ivaliwe, ezokuvumela ukuthi ubone konke ukuxhumana: kokubili kwangaphakathi nangaphandle.
Uma usunike amandla ukuthunyelwa kokusakaza kwe-VDS, uzodinga futhi ukuyivumela amaqembu echweba asabalalisiwe ofuna ukuthola kuwo idatha. Indlela elula yokwenza lokhu ukuchofoza kwesokudla kubha yokuzulazula ye-VDS bese ukhetha u-"Distributed Port Group" bese "Phatha Amaqembu Embobo Esabalalisiwe".
Ibhokisi lengxoxo lizovuleka lapho udinga ukuhlola ibhokisi elithi "Ukuqapha" bese uchofoza "Okulandelayo".
Esinyathelweni esilandelayo, ungakhetha amaqembu embobo athize noma wonke.
Esinyathelweni esilandelayo, shintsha i-NetFlow iye kokuthi “Kunikwe amandla”.
Uma ukuthunyelwa kokusakaza kunikwe amandla ku-VDS nasemaqenjini embobo asabalalisiwe, uzobona ukusakaza okungenayo kwama-hypervisors kuqala ukugeleza kusenzakalo se-NTA.
Ama-Hypervisors angabonwa kuhlu lwemithombo yedatha egelezayo ekhasini elithi Phatha Imithombo Egelezayo ku-NTA. Shintshela ku-"Nodes".
Ungabona imiphumela yokusetha . Naka ukuthi kungenzeka uwele ezingeni le-node, izinga lephrothokholi yokuxhumana, njll.
Ukuhlanganiswa namanye amamojula we-Solarwinds kusixhumi esibonakalayo esisodwa kukuvumela ukuthi wenze uphenyo ezicini ezahlukahlukene: bona ukuthi yibaphi abasebenzisi abangene emshinini obonakalayo, ukusebenza kweseva. , nezinhlelo zokusebenza ezikuyo, bona amadivayisi enethiwekhi ahlobene nokunye okuningi. Isibonelo, uma ingqalasizinda yenethiwekhi yakho isebenzisa iphrothokholi ye-NBAR2, i-Solarwinds NTA ingabona ngempumelelo ithrafikhi evela , noma .
Inhloso eyinhloko ye-athikili ukukhombisa ukuthi kulula ukusetha ukuqapha e-Solarwinds kanye nokuphelela kwedatha eqoqiwe. KwaSolarwinds unethuba lokubona isithombe esigcwele ngokwenzekayo. Uma ufuna isethulo sesixazululo noma uhlole yonke into ngokwakho, shiya isicelo kokuthi noma shayela.
Ku-Habré siphinde sibe nendatshana mayelana .
Bhalisela yethu .
Source: www.habr.com