Export to PDFDifferences
This shows you the differences between two versions of the page.
|
amres_cbp_wiki:amres_bpd_104 [2012/04/03 11:15] ivke |
amres_cbp_wiki:amres_bpd_104 [2012/04/03 11:32] (current) ivke |
||
|---|---|---|---|
| Line 7: | Line 7: | ||
| ^Kategorija dokumenta/Category | Preporuka/Recommendation | | ^Kategorija dokumenta/Category | Preporuka/Recommendation | | ||
| ^Naslov originala ^ **Preporuke za analizu mrežnog saobraćaja pomoću Netflow protokola** | | ^Naslov originala ^ **Preporuke za analizu mrežnog saobraćaja pomoću Netflow protokola** | | ||
| - | ^Originalna verzija/datum | Revizija 1 (dokumenta od 24. oktobara 2009.)/ 2. februar 2011. | | + | ^Originalna verzija/datum | Revizija 1 (dokumenta od 14. oktobara 2011.)/ 3. april 2012. | |
| ^Originalna verzija dokumenta na srpskom jeziku | {{:amres_cbp_wiki:bpd_srpski_preporuke_za_analizu_mreznog_saobracaja_pomocu_netflow_protokola.pdf|PDF}}| | ^Originalna verzija dokumenta na srpskom jeziku | {{:amres_cbp_wiki:bpd_srpski_preporuke_za_analizu_mreznog_saobracaja_pomocu_netflow_protokola.pdf|PDF}}| | ||
| ^Title ^**Recommendations for Network Traffic Analysis Using the NetFlow Protocol** | | ^Title ^**Recommendations for Network Traffic Analysis Using the NetFlow Protocol** | | ||
| - | ^Version/date |Revision 1 (of the document dated 24 October 2009)/ 2 February 2011 | | + | ^Version/date |Revision 1 (of the document dated 14 October 2011)/ 3 April 2012 | |
| - | ^English version | {{:amres_cbp_wiki:geantcampus_gn3-na3-t4-abpd104.pdf|}}| | + | ^English version | {{:amres_cbp_wiki:geantcampus_gn3-na3-t4-abpd104.pdf|PDF}}| |
| ^ ||^ | ^ ||^ | ||
| ===== Rezime ====== | ===== Rezime ====== | ||
| + | Cilj ovog dokumenta je da predstavi postupke koji se koriste za analizu saobraćaja u mreži, čime se postiže jasan uvid u strukturu saobraćaja i efikasno otkrivanje eventualnih problema i anomalija. | ||
| + | Prvo su predstavljene tehnologije za analizu mrežnog saobraćaja, kao i njihove prednosti i mane. Zatim su detaljno obrađene preporuke za analizu mrežnog saobraćaja zasnovanu na statistici prikupljenoj preko NetFlow protokola. Preporuke obuhvataju primere ispravnog konfigurisanja NetFlow protokola na mrežnim uređajima kao i primere indirektnog korišćenja NetFlow protokola u situacijama kada ga mrežni uređaji ne podržavaju. | ||
| + | Dokument obuhvata i pregled korišćenja ICmyNet.Flow sistema za analizu NetFlow statistike, koji se koristi kao jedan od Network Management sistema ne samo u Akademskoj mreži Srbije već i u drugim NREN ovima. | ||
| - | Cilj dokumenta je da pruži uvid u osnovne NMS aktivnosti, zajedno s preporukama za administratore kampus i/ili lokalnih mreža koji planiraju da primene NMS alat unutar svojih mreža. | ||
| - | |||
| - | Dokument počinje razmatranjem topologije mreže. Promene u topologiji su predložene u skladu sa idejom da bi većina NMS aktivnosti trebalo da se odvijaju kroz menadžment segment mreže. Dve alternative su razmatrane. Menadžment mreža i produkciona mreža mogu biti fizički odvojene mreže (out-band management segment) ili mogu da dele istu fiziču infrastrukturu (VLAN segment mreže). | ||
| - | |||
| - | Dokument identifikuje najmanje tri komponente koje bi trebalo da budu pokrivene Network Managament System-om. To su upravljanje konfiguracijama i upravljanje logovima, uz već prepoznatu Network Monitoring komponentu koja se impementira upotrebnom nekog od NMS softverskih paketa. | ||
| - | |||
| - | Dokument ukratko opisuje načešće korištene portokole za upravljanje i njihovu upotrebu u različitim okruženjima i na različitim tipovima uređaja u mreži (tj. mrežni uređaji, serveri, UPS uređaji, A/C), uz uslov da ne ugrožavaju sigurost mreže. | ||
| ===== Summary ====== | ===== Summary ====== | ||
| - | The purpose of this document is to provide an insight into basic NMS (Network Management System) activities, along with recommendations for administrators of campus and/or local networks intending to apply the NMS tools within their networks. | + | This document presents the procedures used for network traffic analysis, which provide a clear overview of the |
| - | + | structure of traffic and enable the efficient detection of potential problems and irregularities. | |
| - | The document begins with a discussion of network topology. Changes in topology are recommended based on the idea that a majority of NMS activities should be conducted through the management segment of the network. The discussion focuses on two alternatives: the management network and the production network may either be separated physically (out-band management segment) or they may share the same physical infrastructure (the VLAN segment of the network). | + | The document first presents the technologies applied in network traffic analysis, including their advantages and |
| - | + | shortcomings. It then turns to detailed recommendations for traffic analysis based on statistics obtained through | |
| - | The document further identifies the three components that should, as a minimum, be covered by a Network Management System. They are the configuration management and log management, along with the already recognised Network Monitoring component implemented using one of the NMS software packages. | + | the NetFlow protocol. The recommendations include examples of the correct configuration of the NetFlow |
| - | + | protocol on network devices, as well as examples of the indirect implementation of the NetFlow protocol in | |
| - | Finally, the document briefly describes the most frequently used management protocols and their application in different environments and on different types of devices within a network (such as network devices, servers, UPS devices and A/C), provided they do not jeopardise the security of the network. | + | situations where network devices do not support it. |
| + | The document also includes an overview of the implementation of the ICmyNet.Flow system for analysing the | ||
| + | NetFlow statistics, which is used as a Network Management System in the Academic Network of Serbia and in | ||
| + | other NRENs. | ||
