ọdịnaya zoo
1 ADVANTECH Router App Net Flow Pfix
2 Ozi ngwaahịa
3 Ntuziaka ojiji
4 Eji akara
5 Changelog
6 Nkọwa nke modul
7 Nhazi
8 Ozi
9 Ntuziaka ojiji
10 Nkwekọrịta NJ igwe
11 Akwụkwọ ndị emetụtara
12 Akwụkwọ / akụrụngwa
12.1 Ntụaka
13 Ozi ndị metụtara

ADVANTECH-LOGO

ADVANTECH Router App Net Flow Pfix

ADVANTECH-Router-App-NetFlow-Pfix-ngwaahịa

Ozi ngwaahịa

Nkọwapụta

  • Onye nrụpụta: Advantech Czech sro
  • adreesị: Sokolska 71, 562 04 Usti nad Orlici, Czech Republic
  • Akwụkwọ Nọmba: APP-0085-EN
  • Ndozigharị Ụbọchị: Ọktoba 19, 2023

Nkọwa nke modul

  • NetFlow/IPFIX modul bụ ngwa rawụta nke Advantech Czech s.r.o mepụtara. Agụnyeghị ya na firmware rawụta ọkọlọtọ na achọrọ ka ebugo ya iche.
  • Emebere modul ahụ maka nyochaa okporo ụzọ netwọkụ. Ọ na-arụ ọrụ site na ịnakọta ozi okporo ụzọ IP site na iji nyocha arụnyere na ndị na-anya ụgbọ ala NetFlow.
  • A na-edobe ozi a n'aka onye nchịkọta NetFlow na onye nyocha maka nyocha ọzọ.

Web Interface

Ozugbo arụnyere modul, ị nwere ike ịnweta ya web interface site na ịpị aha modul na ibe ngwa Router nke rawụta gị web interface. Nke web interface nwere menu nwere ngalaba dị iche iche:

Nhazi

Ngalaba nhazi na-enye gị ohere ịhazi ntọala dị iche iche nke ngwa rawụta NetFlow/IPFIX. Iji nweta ntọala nhazi, pịa ihe "Global" na isi menu nke modul web interface. Ihe ndị a na-ahazi gụnyere:

  • Kwado nyocha: Nhọrọ a na-amalite ịnyefe ozi NetFlow n'aka onye na-anakọta anya (ma ọ bụrụ na akọwapụtara ya) ma ọ bụ nye onye nchịkọta mpaghara (ọ bụrụ na enyere ya aka).
  • Usoro: Nhọrọ a na-enye gị ohere ịhọrọ protocol a ga-eji maka ntinye ozi NetFlow. Ị nwere ike ịhọrọ site na NetFlow v5, NetFlow v9, ma ọ bụ IPFIX (NetFlow v10).
  • NJ igwe: Nhọrọ a na-enye gị ohere ịtọ ID ngalaba nleba anya (maka IPFIX), NJ isi mmalite (maka NetFlow v9), ma ọ bụ NJ Engine (maka NetFlow v5). Nke a na-enyere onye na-anakọta aka ịmata ọdịiche dị n'etiti ọtụtụ ndị na-ebupụ. Maka ozi ndị ọzọ, rụtụ aka na ngalaba na Interoperability ID Engine.

Ozi

Ngalaba ozi na-enye nkọwa gbasara modul na ikikere ya. Ị nwere ike ịnweta ngalaba a site na ịpị ihe "Ozi" na isi menu nke modul web interface.

Ntuziaka ojiji

Ozi anakọtara

  • NetFlow/IPFIX modul na-anakọta ozi okporo ụzọ IP site na nyocha nke rawụta. Nke a gụnyere nkọwa dị ka isi mmalite na adreesị IP, ọnụ ọgụgụ ngwugwu, ọnụọgụ byte, na ozi protocol.

Iweghachite ozi echekwara

  • Iji nwetaghachi ozi echekwara, ịkwesịrị ịnweta onye nchịkọta NetFlow na onye nyocha nke modul na-enyefe data ahụ. Onye nchịkọta na onye nyocha ga-enye ngwá ọrụ na akụkọ maka nyocha na ịhụ anya ozi anakọtara.

Nkwekọrịta NJ igwe

  • Ntọala NJ engine dị na nhazi ahụ na-enye gị ohere ịkọwapụta ihe nchọpụta pụrụ iche maka onye na-ebupụ gị. Nke a bara uru mgbe ị nwere ọtụtụ ndị mbupụ na-eziga data na otu onye nchịkọta.
  • Site na ịtọ NJ Njin dị iche iche, onye nchịkọta nwere ike ịmata ọdịiche dị n'etiti data natara n'aka ndị na-ebupụ dị iche iche.

Ọpụpụ okporo ụzọ

  • Modul ahụ enyeghị ozi akọwapụtara gbasara oge nkwụsị okporo ụzọ. Biko rụtụ aka na akwụkwọ ndị metụtara ya ma ọ bụ kpọtụrụ Advantech Czech s.r.o. maka nkọwa ndị ọzọ.

Akwụkwọ ndị emetụtara

  • Maka ozi ndị ọzọ na ntuziaka zuru ezu, biko rụtụ aka na akwụkwọ ndị a:
  • Akwụkwọ ntuziaka nhazi
  • Akwụkwọ ndị ọzọ metụtara nke Advantech Czech s.r.o.

FAQ

Ajụjụ: Onye na-emepụta NetFlow/IPFIX?

  • A: Onye rụpụtara NetFlow/IPFIX bụ Advantech Czech s.r.o.

Ajụjụ: Gịnị bụ nzube nke NetFlow/IPFIX?

  • A: Emebere NetFlow/IPFIX maka nyochaa okporo ụzọ netwọkụ site na ịnakọta ozi okporo ụzọ IP sitere na ndị na-anya ụgbọ mmiri NetFlow na-enyefe ya na onye nchịkọta NetFlow na onye nyocha.

Ajụjụ: Kedu ka m ga-esi nweta ntọala nhazi nke modul?

  • A: Iji nweta ntọala nhazi, pịa ihe "Global" na isi menu nke modul web interface.

Ajụjụ: Kedu ihe eji eme ntọala Njin?

  • A: Ntọala NJ engine na-enye gị ohere ịkọwapụta ihe nchọpụta pụrụ iche maka onye na-ebupụ gị, na-enyere onye nchịkọta aka ịmata ọdịiche dị n'etiti ọtụtụ ndị na-ebupụ.
  • © 2023 Advantech Czech sro Ọ nweghị akụkụ nke akwụkwọ a enwere ike ibipụta ma ọ bụ bufee n'ụdị ọ bụla ma ọ bụ n'ụzọ ọ bụla, eletrọnịkị ma ọ bụ igwe eji arụ ọrụ, gụnyere foto, ndekọ, ma ọ bụ nchekwa ozi ọ bụla na usoro iweghachi na-enweghị nkwenye ederede.
  • Ozi dị na akwụkwọ ntuziaka a nwere ike ịgbanwe n'enweghị ọkwa, ọ naghị anọchi anya ntinye aka na akụkụ nke Advantech.
  • Advantech Czech sro agaghị akwụ ụgwọ maka mmebi mberede ma ọ bụ nke ga-esi na ngwa ngwa, arụmọrụ, ma ọ bụ ojiji nke akwụkwọ ntuziaka a.
  • Aha ika niile ejiri n'akwụkwọ ntuziaka a bụ ụghalaahịa edenyere n'akwụkwọ ikikere nke ndị nwe ha. Iji ụghalaahịa ma ọ bụ aha ndị ọzọ dị n'akwụkwọ a bụ naanị maka ebumnuche na ọ bụghịkwa nkwado nke onye ji ụghalaahịa.

Eji akara

  • ADVANTECH-Router-App-NetFlow-Pfix-FIG-1Ihe egwu - Ozi gbasara nchekwa onye ọrụ ma ọ bụ mmebi nke rawụta.
  • ADVANTECH-Router-App-NetFlow-Pfix-FIG-2Nlebara anya - Nsogbu ndị nwere ike ibili n'ọnọdụ ụfọdụ.
  • ADVANTECH-Router-App-NetFlow-Pfix-FIG-3Ozi - Ndụmọdụ bara uru ma ọ bụ ozi nke mmasị pụrụ iche.
  • ADVANTECH-Router-App-NetFlow-Pfix-FIG-4Example – Ọpụpụample nke ọrụ, iwu ma ọ bụ edemede.

Changelog

NetFlow/IPFIX Changelog

  • v1.0.0 (2020-04-15)
    • Ntọhapụ mbụ.
  • v1.1.0 (2020-10-01)
    • CSS na koodu HTML emelitere iji dakọtara firmware 6.2.0+.

Nkọwa nke modul

  • Ngwa rawụta NetFlow/IPFIX adịghị na ọkọlọtọ rawụta firmware. A kọwara mbulite ngwa rawụta a n'akwụkwọ ntuziaka nhazi (lee akwụkwọ emetụtara Isi isi).
  • NetFlow/IPFIX ngwa rawụta kpebisiri ike maka nyochaa okporo ụzọ netwọkụ. Ndị na-anya ụgbọ mmiri NetFlow nyere aka nwere nyocha nke na-anakọta ozi okporo ụzọ IP wee nyefee ha n'aka onye nchịkọta NetFlow na nyocha.

Ngwa router a nwere:

  • NetFlow nyocha nke nwere ike nyefee ozi n'aka onye na-anakọta netwọkụ na onye nyocha, e. g. nke httsp://www.paessler.com/prtg.
  • Onye nchịkọta NetFlow na-echekwa ozi anakọtara na a file. Ọ nwekwara ike ịnweta ma chekwaa okporo ụzọ NetFlow site na ngwaọrụ ndị ọzọ.ADVANTECH-Router-App-NetFlow-Pfix-FIG-5

Web Interface

  • Ozugbo echichi nke modul ahụ zuru, enwere ike ịkpọ GUI nke modul ahụ site na ịpị aha modul na ibe ngwa Router nke rawụta. web interface.
  • Akụkụ aka ekpe nke GUI a nwere menu nwere ngalaba nchịkọta nhọrọ yana ngalaba menu ozi.
  • Ngalaba menu nhazi nwere naanị ihe nloghachi, nke na-atụgharị azụ na modul web peeji nke rawụta web ibe nhazi. E gosipụtara isi menu nke GUI modul na eserese 2.ADVANTECH-Router-App-NetFlow-Pfix-FIG-6

Nhazi

Gburugburu ụwa

  • Enwere ike ịhazi ntọala ngwa rawụta NetFlow/IPFIX niile site na ịpị ihe Global dị na isi menu nke modul. web interface. Nfefeview nke configurable ihe nyere n'okpuru.ADVANTECH-Router-App-NetFlow-Pfix-FIG-7
Ihe Nkọwa
Kwado nyocha Malite iwekọta ozi NetFlow na onye nchịkọta ihe dịpụrụ adịpụ (mgbe akọwapụtara), ma ọ bụ nye onye mkpokọta mpaghara (mgbe enyere ya).
Protocol Protocol ga-eji: NetFlow v5, Netflow v9, IPFIX (Net- Flow v10)
NJ igwe NJ ngalaba nleba anya (na IPFIX, Id Id na NetFlow v9, ma ọ bụ Id Engine na NetFlow v5) uru. Nke a nwere ike inyere onye na-anakọta gị aka ịmata ọdịiche dị n'etiti ọtụtụ ndị mbupụ. Hụkwa ngalaba na Interoperability ID Engine.
Ihe Nkọwa
Sampler (Efu): nyefee ọ bụla hụrụ eruba; deterministic: nyefee ọ bụla N-th hụrụ eruba; random: họrọ enweghị usoro otu n'ime N na-asọ; hash: họrọ hash-enweghị usoro otu n'ime N na-asọ.
SampỌnụ ego leer Uru nke N.
Ọnwụ okporo ụzọ adịghị arụ ọrụ Nyefee ọsọ mgbe ọ naghị arụ ọrụ maka sekọnd 15. Uru izizi bụ 15.
Ọgbụgbọ okporo ụzọ na-arụ ọrụ Nyefee ọsọ mgbe ọ na-arụ ọrụ maka 1800 sekọnd (nkeji 30). Uru ndabara bụ 1800. Leekwa ngalaba na nkwụsị okporo ụzọ.
Onye nchịkọta anya Adreesị IP nke onye na-anakọta ma ọ bụ onye nyocha NetFlow, ebe a ga-enyefe ozi okporo ụzọ NetFlow anakọtara. Port bụ nhọrọ, ndabara 2055. Detination nwere ike ịnwe a rikoma kewapụrụ ndepụta nke otutu adreesị IP (na ọdụ ụgbọ mmiri) ka enyo NetFlow na abụọ ma ọ bụ karịa ndị nchịkọta/nyocha.
Kwado onye nchịkọta mpaghara Malite ịnata ozi NetFlow site na nyocha mpaghara (mgbe enyere ya aka) ma ọ bụ site na nyocha dịpụrụ adịpụ.
Ogologo oge nchekwa Na-akọwapụta nkeji oge n'ime sekọnd iji tụgharịa files. Uru ndabara bụ 300s (nkeji ise).
Mmebi nchekwa Na-edozi oge ndụ kachasị maka files na ndekọ. Uru nke 0 na-ewepụ oke ogologo ndụ.
Ọnụọgụ SNMP ihu ụlọ ahịa Lelee na-echekwa SNMP index nke ntinye/mpụta interface (% in, %out) na mgbakwunye na usoro ozi ọkọlọtọ, lee n'okpuru.
Chekwaa adreesị IP Hop na-esote Lelee iji chekwaa adreesị IP nke okporo ụzọ ọpụpụ na-esote (% nh).
Ụlọ ahịa na-ebupụ adreesị IP Lelee ka ịchekwaa adreesị IP nke rawụta mbupụ (% ra).
NJ Njin na-ebupụ ụlọ ahịa Lelee ka ịchekwaa NJ Njin nke rawụta mbupụ (% Eng).
Oge nnabata nke ụgbọ mmiri nke ụlọ ahịa Lelee iji chekwaa ogeamp mgbe enwetara ozi eruba (%tr).

Tebụl 1: Nkọwa ihe nhazi

Ozi

ikikere na-achịkọta ikikere Open-Source Software (OSS) nke modul a na-ejiADVANTECH-Router-App-NetFlow-Pfix-FIG-8

Ntuziaka ojiji

Ekwesighi izipu data NetFlow na WAN, belụsọ na ejiri VPN. Enweghị ezoro ezo ma ọ bụ kpuchie data ahụ, yabụ onye na-enyeghị ikike nwere ike ịbanye na view ozi.

Ozi anakọtara

Ọkọlọtọ ozi ndị a na-eziga mgbe niile site na nyocha ma ndị nnakọta na-echekwa ya:

  • Oge kacha ntaamp mgbe ahụrụ okporo ụzọ mbụ (% ts) na nke ikpeazụ hụrụ (% te), na-eji elekere nyocha
  • Ọnụọgụ bytes (% byt) na ngwugwu (% pkt)
  • A na-eji protocol (% pr)
  • TOS (%tos)
  • Ọkọlọtọ TCP (% flg)
  • Adreesị IP isi mmalite (% sa, % sap) na ọdụ ụgbọ mmiri (% sp)
  • Adreesị IP ebe ebe (% da, %dap) na ọdụ ụgbọ mmiri (%dp)
  • Ụdị ICMP (%it)

A na-ezigakwa ihe ndị a, mana echekwara naanị mgbe a rịọrọ ya (lee nhazi n'elu):

  • Ndekọ SNMP nke interface ntinye/mpụta (% in, %out)
  • Adreesị IP nke okporo ụzọ ọpụpụ na-esote (% nh)
  • Adreesị IP (% ra) na NJ Njin (% eng) nke rawụta mbupụ (nyocha)
  • Oge kacha ntaamp mgbe enwetara ozi eruba (%tr), na-eji elekere nke onye na-anakọta
  • Uru dị na brackets (% xx) na-egosi usoro a ga-eji nfdump gosi uru a (lee isiakwụkwọ na-esote).

Iweghachite ozi echekwara

  • A na-echekwa data na /tmp/netflow/nfcapd.yyyymmddHHMM, ebe yyyymmddHHMM bụ oge okike. Akwụkwọ ndekọ aha gụnyekwara .nfstat file, nke a na-eji nyochaa oge njedebe.
  • Agbanwela ihe a file. Iji hazie ngafe, jiri GUI nchịkwa.
  • Nke fileEnwere ike ịgụ s site na iji iwu nfdump. nfdump [nhọrọ] [nyochaa]

Gosi ngwugwu UDP zitere site na 192.168.88.100:

  • nfdump -r nfcapd.202006011625 'proto udp na src ip 192.168.88.100'
    • Gosipụta ihe niile na-eru n'etiti 16:25 na 17:25, na-achịkọta usoro ụzọ ụzọ (-B):
  • nfdump -R /tmp/netflow/nfcapd.202006011625:nfcapd.202006011725 -B
    • Gosipụta Ụdị/ID Engine, adreesị isi iyi+ọdụ ụgbọ mmiri na adreesị ebe njedebe+ maka ihe niile na-asọ:
  • nfdump -r /tmp/netflow/nfcapd.202006011625 -o "fmt:% eng% sap% dap"

Nkwekọrịta NJ igwe

  • Netflow v5 na-akọwapụta ihe nchọpụta 8-bit abụọ: Ụdị Engine na NJ Engine. Nyocha na ndị na-anya ụgbọ elu Advantech na-eziga naanị NJ Engine (0..255). Ụdị Engine ga-abụ efu (0) mgbe niile. N'ihi ya, a ga-anata ọsọ nke ezitere na NJ ID = 513 (0x201) dị ka Ụdị Engine/ID = 0/1.ADVANTECH-Router-App-NetFlow-Pfix-FIG-9
  • Netflow v9 na-akọwapụta otu njirimara 32-bit. Nyocha na ndị na-anya ụgbọ elu Advantech nwere ike izipu nọmba 32-bit ọ bụla, ka ndị nrụpụta ndị ọzọ (dịka Cisco) kewara ihe nchọpụta ahụ n'ime bytes abụọ echekwara, sochiri Ụdị Engine na NJ. Onye nnata na-agbaso otu ụzọ ahụ.
  • N'ihi ya, a ga-anata ọsọ nke ezitere na NJ ID = 513 (0x201) dị ka Ụdị Engine/ID = 2/1.ADVANTECH-Router-App-NetFlow-Pfix-FIG-10
  • IPFIX na-akọwapụta otu njirimara 32-bit. Nyocha na ndị njem Advantech nwere ike izipu nọmba 32-bit ọ bụla, mana onye na-anakọta mpaghara anaghị echekwa uru a. N'ihi ya, a ga-anata ọsọ ọ bụla dị ka Ụdị Engine/ID = 0/0.ADVANTECH-Router-App-NetFlow-Pfix-FIG-11
  • Nkwanye: Ọ bụrụ na ịchọrọ ịchekwa NJ NJ n'ime onye na-anakọta mpaghara, lelee NJ Njikere Mbupụ Ahịa na nhazi, jiri NJ NJ <256 ma zere iji ụkpụrụ IPFIX.
  • Ọpụpụ okporo ụzọ
  • Ihe nyocha ahụ na-ebupụ mmiri niile, ya bụ ngwugwu niile jikọtara ọnụ. Ọ bụrụ na a hụghị ngwugwu ọ bụla maka oge enyere (Oge nkwụsị okporo ụzọ na-adịghị arụ ọrụ), a na-ahụta ọsọ ahụ dị ka nke zuru oke yana nyocha na-ezigara onye nchịkọta ozi okporo ụzọ.
  • Ozi gbasara a file Nfefe ga-esi otú a pụta na onye na-achịkọta mgbe emechara nnyefe ahụ, nke nwere ike iwe oge dị ukwuu. Ọ bụrụ na nnyefe ahụ na-arụ ọrụ ogologo oge (Oge nkwụsị okporo ụzọ na-arụ ọrụ) ọ ga-apụta dị ka ọtụtụ mmiri dị mkpụmkpụ.
  • Maka exampna, na a 30 nkeji na-arụsi ọrụ ike okporo ụzọ oge, a 45 nkeji nkwurịta okwu ga-egosi dị ka abụọ aga: otu 30 min na otu 15 min.

Ọpụpụ okporo ụzọ

  • Ihe nyocha ahụ na-ebupụ mmiri niile, ya bụ ngwugwu niile jikọtara ọnụ. Ọ bụrụ na a hụghị ngwugwu ọ bụla maka oge enyere (Oge nkwụsị okporo ụzọ na-adịghị arụ ọrụ), a na-ahụta ọsọ ahụ dị ka nke zuru oke yana nyocha na-ezigara onye nchịkọta ozi okporo ụzọ.
  • Ozi gbasara a file Nfefe ga-esi otú a pụta na onye na-achịkọta mgbe emechara nnyefe ahụ, nke nwere ike iwe oge dị ukwuu. Ọ bụrụ na nnyefe ahụ na-arụ ọrụ ogologo oge (Oge nkwụsị okporo ụzọ na-arụ ọrụ) ọ ga-apụta dị ka ọtụtụ mmiri dị mkpụmkpụ. Maka exampna, na a 30 nkeji na-arụsi ọrụ ike okporo ụzọ oge, a 45 nkeji nkwurịta okwu ga-egosi dị ka abụọ aga: otu 30 min na otu 15 min.ADVANTECH-Router-App-NetFlow-Pfix-FIG-12

Akwụkwọ ndị emetụtara

  • Ị nwere ike nweta akwụkwọ ndị metụtara ngwaahịa na Portal Engineering na adreesị icr.advantech.cz.
  • Iji nweta ntuziaka mmalite ngwa ngwa nke rawụta gị, akwụkwọ ntuziaka onye ọrụ, ntuziaka nhazi, ma ọ bụ firmware gaa na ibe ụdịdị Router, chọta ụdị achọrọ, wee gbanwee gaa na taabụ akwụkwọ ntuziaka ma ọ bụ Firmware, n'otu n'otu.
  • Ngwa nrụnye na akwụkwọ ntuziaka dị na ibe ngwa Router.
  • Maka akwụkwọ mmepe, gaa na ibe DevZone.

Akwụkwọ / akụrụngwa

ADVANTECH Router App Net Flow Pfix [pdf] Ntuziaka onye ọrụ
Ngwa ntanetị ngwa ngwa ngwa Pfix, ngwa Net Flow Pfix, Net Flow Pfix, Flow Pfix, Pfix

Ntụaka

Ozi ndị metụtara

Hapụ ikwu

Agaghị ebipụta adreesị ozi-e gị. Akara mpaghara achọrọ akara *