Mubuntu bwihuse bwo guhuza imiyoboro ya none, ubwihindurize bwurubuga rwaho (LANS) yashyizeho inzira yibisubizo bishya kugirango yubahirize ibikenewe mu buryo bukura. Igisubizo kimwe nkicyo gihagaze ni umuyoboro wakarere, cyangwa VLAN. Iyi ngingo isize ibintu byimitsi, intego yabo, ibyiza, ingero zishyirwa mubikorwa, ibikorwa byiza, hamwe nuruhare rukomeye bagira muguhuza ibyifuzo remezo byambere byibikorwa byurusobe.
I. Gusobanukirwa Vlans n'intego zabo
Imiyoboro yakarere yakarere, cyangwa Vlans, Ongera usobanure igitekerezo gakondo cya lins mumenyekanisha urwego rwimiryango yabo ituma imiyoboro yabo yiyongera, guhinduka, noroheje. Vlans mubyukuri byegeranye ibikoresho cyangwa imiyoboro iganira nkaho igice cyumutimbe umwe, mugihe mubyukuri, bibaho mumihanda imwe cyangwa myinshi. Ibi bice bitandukanijwe nicyatsi bisigaye binyuze mu biraro, router, cyangwa guhinduranya, kwemerera ingamba zumutekano no kugabanuka kwuburakari.
Ibisobanuro bya tekiniki byo ku gice cya VLAN birimo kwigunga kwabatse. Iyi kwigunga ikemura ibibazo bisanzwe biboneka muri lins gakondo, nko gutangaza no gukemura ibibazo. Vlans ikora nk "kugongana," kugabanya ibyangiritse byo kugongana no kunoza umutungo. Iyi mikorere yongerewe ya Vlans igera kumutekano wamakuru no kugabana yumvikana, aho Vlans ishobora guhurizwa hashingiwe kumashami, amakipe yumushinga, cyangwa ihame ryumushinga.
II. Kuki ukoresha Vlans
Amashyirahamwe yunguka cyane mu nyungu za VLAN. Vlans itanga ibiciro byihuse, nkuko ibikorwa byakorewe muri Vlans bivuga binyuze muri VLAN, kugabanya kwishingikiriza kuri router, cyane cyane mu itumanaho ryimbere muri VLAN. Ibi biha imbaraga ibigo kugirango bacunge neza amakuru yiyongereye, bigabanya umuyoboro rusange.
Ubwiyongere bwiyongereye muburyo bwo guhuza nurutonde niyindi mpamvu ikomeye yo gukoresha Vlans. Bashobora gushyirwaho kandi bashinzwe ukurikije ibyambu, protocole, cyangwa ibipimo bya subnet, bituma imiryango ihindura Vlans no guhindura imikino ikenewe. Byongeye kandi, Vlans igabanya imbaraga zubutegetsi bahita igabanya uburyo bwo kubona amatsinda yumukoresha wagenwe, gukora umuyoboro hamwe ninganda z'umutekano zikora neza.
III. Ingero zo gushyira mu bikorwa VLAN
Mubihe byisi, imishinga ifite umwanya munini wibiro hamwe namakipe ya SIZACY akuramo inyungu zifatika zo kwinjiza Vlans. Ubworoherane bujyanye no kugena Vlans biteza imbere ishyirwa mu bikorwa rya kamere zikora imishinga ihuriweho kandi iteza imbere ubufatanye hagati y'amashami atandukanye. Kurugero, amakipe ahirere mu kwamamaza, kugurisha, no gusesengura ubucuruzi birashobora gufatanya neza mugihe wahawe VLAN imwe, nubwo haba ahantu hagenewe Vlan zitandukanye cyangwa inyubako zitandukanye. Nubwo hari ibisubizo bikomeye byatanzwe na Vlans, ni ngombwa ko uzirikana ibibazo bishobora kuba bibi, nka VLANC Mismatches, kugirango ishyirwa mu bikorwa ry'iyi miyoboro ishyirwa mu bikorwa mu buryo butandukanye.
IV. Imikorere myiza no kubungabunga
Iboneza neza vlan ni umwanya wo gukoresha ubushobozi bwabo bwose. Inyungu zo gutandukanya VLAN zituma imiyoboro yihuta kandi ifite umutekano, ikemura ibibazo byo guhuza n'imiterere yo gushimangira ibisabwa. Abatanga serivisi (MSPS) bagira uruhare rukomeye mu gukora neza VaLan gufata neza, gukurikirana ibikoresho, no gukora ibikorwa bikomeje.
| Ibikorwa 10 byiza | Ibisobanuro |
| Koresha Vlans to Traffic traffic | Mburabuzi, ibikoresho bya Network bivuga mu bwisanzure, wifotoza. Vlans ikemura ibi mugushiramo traffic, ifatira itumanaho kubikoresho biri muri VLAN imwe. |
| Kora Ubuyobozi butandukanye Vlan | Gushiraho ubuyobozi bwa Vlan Stramlines umutekano wumuyoboro. Kwigunga biremeza ko ibibazo biri mu micungire Vlan bidahindura umuyoboro mugari. |
| Shinga aderesi ip ip yo gucunga VLAN | Aderesi ya IP ihagaze ikingira uruhare runini mubikoresho no gucunga urusobe. Kwirinda DHCP kugirango ubuyobozi VLAN buremeza gukemura ibibazo bihamye, koroshya ubuyobozi bwurusobe. Gukoresha amatsinda atandukanye kuri buri Vlan atezimbere kwigunga kwumuhanda, kugabanya ibyago byo kugera kubatemewe. |
| Koresha umwanya wa IP wenyine | Kuzamura umutekano, ubuyobozi Vlan Inyungu ziva mumwanya wa IP yihariye, kubatera kuhobye. Gukoresha imiyoborere itandukanye kubikoresho bitandukanye byibikoresho byemeza uburyo bwo gucunga imiyoboro. |
| Ntukoreshe DHCP ku micungire Vlan | Imirongo isobanutse ya DHCP ku buyobozi Vlan ni ingenzi ku mutekano. Kwishingikiriza gusa kuri aderesi ya IP ihagaze birinda kwinjira bitemewe, bigatuma itoroshye kubateye kugendera kumurongo. |
| Ibibanza bitekanye kandi bihagarike serivisi zitakenewe | Ibyambu bidakoreshwa byerekana ibyago byumutekano, utumira kugera. Guhagarika ibyambu bidakoreshwa hamwe na serivisi zitari ngombwa zigabanya ibitero, gushimangira umutekano. Uburyo buteye imbere bukubiyemo gukurikirana no gusuzuma serivisi zikora. |
| Gushyira mu bikorwa 802.1x Kwemeza Vlan | 802.1X ongeraho umutekano winyongera ukwemerera gusa ibikoresho byemejwe kugera kubuyobozi Vlan. Iki gipimo kirindaga ibikoresho bikomeye, birinda guhungabanya ibishobora guterwa no kugera kuburenganzira. |
| Gushoboza umutekano wibibanza ku micungire Vlan | Nkuko amanota yo murwego rwohejuru, ibikoresho mu micungire Vlan bisaba umutekano ukomeye. Umutekano mu byambu, washyizweho kugirango wemereke gusa aderesi ya Mac gusa, ni uburyo bwiza. Ibi, byahujwe ningamba zumutekano zimeze nkurutonde rwo kugenzura (ACLS) na firewalls, kuzamura umutekano muri rusange. |
| Hagarika CDP ku micungire Vlan | Mugihe CISCO yo kuvumbura protocole (CDP) imiyoborere ya sida, itangiza ingaruka zumutekano. Guhagarika CDP ku buyobozi vlan kugabanya izi ngaruka, gukumira uburyo butemewe kandi bushobora guhura n'amakuru yunvikana. |
| Kugena ACL kuri ubuyobozi vlan svi | Urutonde rwo kugenzura (ACLS) Kubuyobozi Vlan Guhindura Imigaragarire (SVI) Kubuza kugera kubakoresha na sisitemu byemewe. Mu kwerekana aderesi ya IP yemerewe kandi indere, iyi myitozo ikomeza umutekano wurusobe, gukumira ibikorwa bitemewe kubuyobozi bwubuyobozi. |
Mu gusoza, Vlans yagaragaye nkigisubizo gikomeye, icira imipaka ya lans gakondo. Ubushobozi bwabo bwo kumenyera imiterere yimiyoboro ihindagurika, hamwe nibyiza byo kwiyongera kwimikorere, guhinduka, no kugabanya imbaraga zubuyobozi, bituma Vlans ntangarugero mu nyungu za none. Nk'imiryango ikomeje gukura, Vlans itanga uburyo bukomeye kandi bunoze bwo kuzuza ibibazo bikomeye by'ibikorwa remezo by'iki gihe.
Igihe cyohereza: Ukuboza-14-2023
