Esikhathini esisheshayo sendawo yokuxhumana esheshayo yenethiwekhi yanamuhla, ukuvela kwamanethiwekhi wendawo (ama-lans) kuveze indlela yezixazululo ezintsha zokuhlangabezana nobunzima bezidingo zenhlangano. Isixazululo esisodwa esinjalo esivelayo yinethiwekhi yendawo yendawo, noma i-vlan. Le ndatshana idlulela ezinhlotsheni zeVlans, inhloso yazo, izinzuzo, izibonelo zokuqalisa, imikhuba emihle kakhulu, neqhaza elibalulekile abalidlalayo ekuvumelaniseni izidingo zengqalasizinda zenethiwekhi.
I. Ukuqonda amaVlans nezinhloso zawo
Amanethiwekhi endawo endawo, noma ama-VLANS, ahlele kabusha umqondo wendabuko we-LANS ngokungenisa isendlalelo esibonakalayo enika amandla amanethiwekhi awo akhuphukile, ukuguquguquka, kanye nokuxaka. Ama-Vlans empeleni aqoqa amadivaysi noma ama-node wenethiwekhi axhumana nangokuthi ingxenye ye-LAN eyodwa, ngenkathi eqinisweni, akhona endaweni eyodwa noma eziningana ze-LAN. Lezi zingxenye zihlukaniswe nalo lonke i-LAN ngamabhuloho, ama-routers, noma ukushintshwa, okuvumela izindlela zokuphepha ezikhuphukile kanye nokwehliswa kwenethiwekhi yenethiwekhi.
Ukuchazwa kwezobuchwepheshe kwezingxenye zeVlan kubandakanya ukwahlukaniswa kwabo kwi-LAN ebanzi. Le makheli yokuhlukaniswa nezinkinga ezijwayelekile ezitholakala kuma-lans endabuko, njengezinkinga zokusakaza nokushayisana. IVlans isebenza njenge- "Collonion Domain," inciphisa izehlakalo zokushayisana nokwenza kahle izinsiza zenethiwekhi. Lokhu kusebenza okuthuthukisiwe kwama-VLANns kufinyelela ekuvikelekeni kwedatha nokuhlukaniswa okunengqondo, lapho ama-Vlans angahlelwa khona ngokususelwa eminyangweni, amaqembu ephrojekthi, noma yimuphi omunye umthetho wenhlangano onengqondo.
II. Kungani usebenzise amaVlans
Izinhlangano ezizuza kakhulu ezinhlekeleleni zokusetshenziswa kwe-vlan. AmaVlan ahlinzeka ngemali ebikaze imali, njengoba ama-Workstations ngaphakathi kwamaVlan axhumana ngokushintshwa kwe-VLAN, ukunciphisa ukuthembela kuma-routers, ikakhulukazi ukuxhumana kwangaphakathi ngaphakathi kwe-vlan. Lokhu kunika amandla amaVlans ekwazi ukuphatha kahle imithwalo yedatha eyengeziwe, ukunciphisa i-latency yenethiwekhi yonke.
Ukuguquguquka okwengeziwe ekucushweni kwenethiwekhi kungenye isizathu esinamandla sokusebenzisa amaVlans. Zingamiswa futhi zinikezwe ngokusekelwe ethekwini, e-Protocol, noma imigomo ye-subnet, evumela izinhlangano ukuthi ziguqule amaVlans futhi zishintshe ama-design wenethiwekhi njengoba kudingeka. Ngaphezu kwalokho, amaVlan anciphisa imizamo yokuphatha ngokunciphisa ngokuzenzakalelayo ukufinyelela kwamaqembu abasebenzisi athile, okwenza ukumiswa kwenethiwekhi kanye nezinyathelo zokuphepha zisebenza kahle.
III. Izibonelo Zokusetshenziswa kweVlan
Ezimweni zomhlaba wangempela, amabhizinisi anezikhala ezibanzi zehhovisi namaqembu amakhulu athola izinzuzo ezinkulu kusuka ekuhlanganiseni amaVlans. Ukulula okuhambisana nokumisa amaVlans kuthuthukisa ukwenziwa komthungo kwamaphrojekthi asebenza ngokuwela nokubambisana phakathi kweminyango ehlukene. Isibonelo, amaqembu abhekele ukumaketha, ukuthengisa, kanye nokuhlaziywa kwebhizinisi angabambisana kahle lapho anikezwa i-Vlan efanayo, noma ngabe izindawo zawo ezibonakalayo zibeka phansi phansi noma izakhiwo ezahlukene. Ngaphandle kwezixazululo ezinamandla ezinikezwa amaVlans, kubalulekile ukukhumbula izinselelo ezingaba khona, ezinjenge-VLAN mismatches, ukuqinisekisa ukuqaliswa okusebenzayo kwalawa manethiwekhi ahlukahlukene wenhlangano.
IV. Imikhuba emihle kakhulu nokulungiswa
Ukucushwa okufanele kwe-vlan kubaluleke kakhulu ukuhlanganisa amandla abo aphelele. Izinzuzo ze-LeverAging Vlan Segmentation ziqinisekisa ngokushesha nangamanethiwekhi apheke ngokwengeziwe, ekhuluma ngesidingo sokuvumelanisa nezidingo zenethiwekhi. Abahlinzeki bensizakalo ephethwe (ama-MSPs) badlala indima ebalulekile ekwenzeni ukulungiswa kweVlan, ukuqashelwa ukusatshalaliswa kwedivayisi, kanye nokuqinisekisa ukusebenza kwenethiwekhi okuqhubekayo.
| 10 imikhuba emihle kakhulu | Ukuqonda |
| Sebenzisa amaVlans kuya engxenyeni yethrafikhi | Ngokuzenzakalelayo, amadivaysi enethiwekhi axhumana ngokukhululeka, abeke engcupheni yezokuphepha. Ama-Vlans abhekana nalokhu ngokuhlukanisa ithrafikhi, efaka ukuxhumana kumadivayisi ngaphakathi kwe-vlan efanayo. |
| Dala i-vlan yokuphatha ehlukile | Ukusungula ukuphepha kwenethiwekhi okuzinikele kwe-Vlan. Ukuhlukaniswa kuqinisekisa ukuthi izingqinamba ngaphakathi kwabaphathi Vlan azithinti inethiwekhi ebanzi. |
| Nikeza amakheli we-IP ama-static we-Managet Vlan | Amakheli we-Static IP adlala indima ebaluleke kakhulu ekuhlonzeni kwedivayisi kanye nokuphathwa kwenethiwekhi. Ukugwema i-DHCP ye-vlan yokuphatha iqinisekisa ukubhekana nokuphathwa kwenethiwekhi, ukwenza lula ukuphathwa kwenethiwekhi. Ukusetshenziswa kwe-subnets ehlukile ye-vlan ngayinye kuthuthukisa ukwehlukaniswa komgwaqo, ukunciphisa ingozi yokufinyelela okungagunyaziwe. |
| Sebenzisa isikhala sekheli le-IP yangasese ye-Managet Vlan | Ukuthuthukisa ukuphepha, izinzuzo ze-vlan zokuphatha ezivela endaweni eyimfihlo yekheli le-IP, kugcizelela abahlaseli. Ukusebenzisa amaVlans abaphathi abahlukanisayo ngezinhlobo ezahlukahlukene zedivayisi kuqinisekisa indlela ehlelekile nehlelekile yokuphathwa kwenethiwekhi. |
| Musa ukusebenzisa i-DHCP ku-vlan labaphathi | Ukuqondisa okucacile kwe-DHCP ku-Managet Vlan kubalulekile ukuphepha. Ukuthembela kuphela kumakheli we-tulip we-IP kuvimbela ukufinyelela okungagunyaziwe, okwenza kube yinselele kubahlaseli ukuthi bangenele inethiwekhi. |
| Vikela amachweba angenakusetshenziswa futhi akhubaze izinsizakalo ezingadingekile | Amachweba angasetshenziswanga aveza ubungozi obungaba khona bokuphepha, okumema ukufinyelela okungagunyaziwe. Ikhubaza amachweba angasetshenziswanga kanye nezinsizakalo ezingadingekile zehlisa ama-veector wokuhlasela, ukuqinisa ukuphepha kwenethiwekhi. Indlela esebenzayo ifaka ukuqapha okuqhubekayo nokuhlola izinsizakalo ezisebenzayo. |
| Sebenzisa ubuqiniso be-802.1x ku-vlan labaphathi | Ukufakazelwa ubuqiniso kwe-802.1x kunezela isendlalelo esengeziwe sokuphepha ngokuvumela kuphela amadivaysi aqinisekisiwe ukufinyelela kwi-VLAN yokuphatha. Lokhu kulinganisa ukuvikela amadivaysi enethiwekhi abucayi, ukuvimbela ukuphazamiseka okubangelwa okubangelwa ukufinyelela okungagunyaziwe. |
| Nika amandla ukuphepha echwebeni ku-vlan labaphathi | Njengamaphoyinti wokufinyelela ezingeni eliphezulu, amadivaysi ekuphathweni kwe-vlan afuna ukuphepha okuqinile. Ukuphepha ethekwini, kulungiselelwe ukuvumela amakheli e-Mac kuphela agunyaziwe, kuyindlela ephumelelayo. Lokhu, kuhlangene nezinyathelo ezengeziwe zokuphepha njengohlu lokulawula ukufinyelela (ACLS) kanye nama-Firewall, kuthuthukisa ukuphepha kwenethiwekhi okuphelele. |
| Khubaza i-CDP ku-Managet Vlan | Ngenkathi ukuphathwa kwenethiwekhi ye-Cisco (CDP) I-AIDS Network Management, yethula ubungozi bokuphepha. Ikhubaza i-CDP ekuphathweni kwe-vlan kunciphisa lezi zingozi, ukuvikela ukufinyelela okungagunyaziwe kanye nokuvezwa okungaba khona kwemininingwane yenethiwekhi ebucayi. |
| Lungiselela i-ACL ekuphathweni kwe-Vlan SVI | Uhlu Lokulawula Ukufinyelela (ACLS) ku-Management Vlan switch Virtual interface (SVI) likhawulela ukufinyelela kwabasebenzisi nezinhlelo ezigunyaziwe. Ngokuchaza amakheli avunyelwe we-IP kanye nemibhalo engezansi, lo mkhuba uqinisa ukuphepha kwenethiwekhi, ukuvikela ukufinyelela okungagunyaziwe kwimisebenzi yokuphatha ebalulekile. |
Ekuphetheni, amaVlan aqhamuke njengesixazululo esinamandla, enqoba ukulinganiselwa kwezindawo zendabuko. Amandla abo okuzivumelanisa nokuvela kweNethiwekhi yeNethiwekhi, ehambisana nezinzuzo zokusebenza okwengeziwe, ukuvumelana nezimo, kanye nemizamo yokuphatha encishisiwe, yenza amaVlans asemqoka ekuxhumaneni kwanamuhla. Njengoba izinhlangano ziyaqhubeka nokukhula, amaVlan ahlinzeka ngezindlela ezilinganayo nezisebenzayo zokuhlangabezana nezinselelo ezishukumisayo zengqalasizinda yenethiwekhi yesimanje.
Isikhathi Sokuthumela: Dec-14-2023
