ICisco Secure Network Analytics Virtual Edition Appliance
isixazululo se-software-based analytics yenethiwekhi. Inikeza eziphambili
ukuqapha nokuhlaziya izici zethrafikhi yenethiwekhi. Lokhu
umhlahlandlela wokufaka uzokusiza ukuthi ufake futhi ulungiselele i-
isisetshenziswa sokuqinisekisa ukusebenza kahle nokusebenza kahle.

Imiyalo yokusetshenziswa komkhiqizo

Izindlela Zokufaka

ICisco Secure Network Analytics Virtual Edition Appliance can
ifakwe kusetshenziswa amapulatifomu e-VMware noma e-KVM. Khetha
indlela yokufaka efanele esekelwe endaweni okuyo.

Ukuhambisana

Qinisekisa ukuthi isistimu yakho ihlangabezana nezidingo zokusebenzisana ze
usebenzisa i-Cisco Secure Network Analytics Virtual Edition
Izinto zikagesi. Hlola izimfuneko zesistimu ezinikezwe i-Cisco ukuze
qinisekisa inqubo yokufaka ebushelelezi.

Ilanda iSoftware

Ngaphambi kokuqala ukufakwa, qiniseka ukulanda ifayela
isofthiwe edingekayo files kusuka kuCisco Software Central. Ngena ngemvume ku-
portal bese ulanda ukufakwa files ye-Virtual Edition
Izinto zikagesi.

Izidingo zokucushwa

Phakathi nenqubo yokufaka, uzodinga ukumisa
izilungiselelo ezahlukahlukene zokuqinisekisa ukuxhumana nokusebenza okufanele
zomshini. Lezi zilungiselelo zihlanganisa:

Ukucushwa kwe-firewall
Vula izimbobo namaphrothokholi
Ukulungiselelwa kwenethiwekhi kokuxhumana kwe-inter-Data Node
Ukuqapha ukucushwa kokuhlaziywa kwethrafikhi

Ifaka I-Virtual Appliance

Ukufaka i-Cisco Secure Network Analytics Virtual Edition
Isisetshenziswa sikagesi, landela lezi zinyathelo:

Ngena ngemvume endaweni yakho ye-virtualization (VMware vCenter noma
KVM).

Lungiselela izilungiselelo zenethiwekhi ezidingekayo, njenge-LAN engayodwa
kwezokuxhumana ze-inter-Data Node.
Landa ukufakwa kwe-Virtual Edition filekusuka kuCisco
I-Software Central.

Landela imiyalelo yokufaka enikezwe i-Cisco yakho
inkundla ethile ye-virtualization (VMware noma i-KVM).
Lungiselela izilungiselelo zohlelo lokusebenza ngesikhathi sokufakwa
inqubo, okuhlanganisa igama lomsingathi, igama lesizinda, iseva ye-NTP, nesikhathi
indawo.

Qedela ukufakwa futhi uqinisekise ukusebenza kwe-
I-Virtual Edition Appliance.

FAQ

Q: Yiziphi izidingo zesistimu zokuqhuba i-Cisco
Vikela Isisetshenziswa Esibonakalayo Se-Network Analytics?

A: Izidingo zesistimu ziyahlukahluka ngokuya nge-virtualization
ipulatifomu esetshenzisiwe. Sicela ubheke umhlahlandlela wokuhambisana ohlinzekwe ngu
Cisco ngezidingo ezinemininingwane yesistimu.

Q: Ngingalanda kanjani ukufakwa files okwe-Virtual
Isisetshenziswa se-Edishini?

A: Ukulanda ukufakwa files, ngena ngemvume ku-Cisco Software
Central usebenzisa imininingwane ye-akhawunti yakho ye-Cisco. Zulazulela ku-
isigaba somkhiqizo esifanele bese ulanda i-Virtual Edition
ukufakwa files.

Q: Yiziphi izilungiselelo zenethiwekhi ezidingekayo ku-inter-Data Node
ezokuxhumana?

A: Ngokuya ngeplatifomu yakho ye-virtualization, uzodinga
lungiselela i-vSphere Standard Switch noma i-vSphere Distributed
Shintsha ukuze unike amandla ukuxhumana phakathi kwamaNode edatha. Sicela ubhekisele ku
umhlahlandlela wokufaka ukuze uthole imiyalelo enemininingwane.

View Fullscreen

I-Cisco Secure Network Analytics
I-Virtual Edition Umhlahlandlela Wokufaka Izinto 7.4.2

Okuqukethwe

Isingeniso

Kuphelileview

Izilaleli

Ukufaka Izinto zikagesi kanye nokulungisa uhlelo lwakho

Ulwazi Oluhlobene

Amagama

Izifinyezo

Vikela i-Network Analytics ngaphandle kweSitolo Sedatha

Vikela i-Network Analytics ngeSitolo Sedatha

Imibuzo

Isitoreji Sesitolo Sedatha Nokubekezelela Amaphutha

I-Telemetry Storage Example

Izidingo Zokuthunyelwa Okujwayelekile

Izindlela Zokufaka

Ukuhambisana

Izidingo ezijwayelekile zazo zonke izinto zikagesi

VMware

I-KVM

Ilanda iSoftware

I-TLS

Izicelo zesithathu

Iziphequluli

Igama Lokusingatha

Igama Lesizinda

Iseva ye-NTP

Indawo Yesikhathi

Izidingo Ezijwayelekile Zokusebenza (ngaphandle kweSitolo Sedatha)

Izidingo Zokuthunyelwa Komphathi kanye Nomqoqi Ogelezayo

-2-

Izidingo Zokusetshenziswa Kwesitolo Sedatha

Izidingo zikagesi (ngeSitolo Sedatha)

Izidingo Zokuthunyelwa Komphathi kanye Nomqoqi Ogelezayo

Izidingo Zokusetshenziswa KweNodi Yedatha

Ukuthunyelwa Kwenodi Yedatha Eningi

I-Hardware Metrics esekelwayo (izibalo zinikwe amandla)

I-Hardware Metrics esekelwe (ngaphandle kokuhlaziywa okuvunyelwe)

Ukuthunyelwa KweNodi Yedatha Eyodwa

Izidingo zokucushwa kweNodi Yedatha

I-Networking kanye nokushintsha okucatshangelwayo

I-Virtual Switch Example

Ukucatshangelwa Kokubekwa Kwesitolo Sedatha

Izidingo Zokusetshenziswa Kwezibalo

Izidingo Zensiza

Izibalo zezilungiselelo ze-CPU

I-Virtual Edition yomphathi

Umphathi

I-Flow Collector Virtual Edition

I-Flow Collector ngaphandle kweSitolo Sedatha

I-Flow Collector eneSitolo Sedatha

I-Virtual Node Edition yedatha

Isitolo Sedatha NgeNodi Yedatha Ebonakalayo Eyodwa

Isitolo Sedatha esinamaNode angu-3 wedatha ebonakalayo

I-Flow Sensor Virtual Edition

Izimo zenethiwekhi ye-Flow Sensor Virtual Edition

I-Flow Sensor Virtual Edition Traffic

I-UDP Director Virtual Edition

Ibala Ukugeleza Ngesekhondi (Ongakukhetha)

Ibala Ukugeleza Ngesekhondi Ngesilondolozi Somqoqi Ogelezayo (Ukuthunyelwa ngaphandle

Isitolo Sedatha)

-3-

Ibala Ukugeleza Ngesekhondi Ngesitoreji seNodi Yedatha

1. Ilungiselela I-Firewall Yakho Yezokuxhumana

Vula Izimbobo (Zonke Izinto zikagesi)

Izimbobo Ezivuliwe Ezengeziwe Zezinombolo Zedatha

Amachweba Wokuxhumana kanye Nezinqubo

Izimbobo Ezivuliwe Ezengeziwe zeSitolo Sedatha

Izimbobo Zokuxhumana Ongazikhethela

Vikela Ukuthunyelwa Kwezibalo Zenethiwekhi Example

Vikela Ukuthunyelwa Kwezibalo Zenethiwekhi ngeSitolo Sedatha Example

2. Ilanda Ukufakwa Kwe-Virtual Edition Files

Ukufakwa Files

1. Ngena ngemvume ku-Cisco Software Central

2. Landa Files

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)

Kuphelileview

Ngaphambi kokuthi Uqale

Ukufaka I-Virtual Appliance Esebenzisa i-vCenter (ISO)

AmaNode Edatha

Izinzwa zokugeleza

Zonke Ezinye Izisetshenziswa

1. Ukulungiselela i-LAN Eyodwa Yokuxhumana KwamaNodi Aphakathi Kwedatha

Ilungiselela Ukushintsha Okujwayelekile kwe-vSphere

Ilungiselela i-vSphere Distributed Switch

2. Ilungiselela inzwa yokugeleza ukuze igade ithrafikhi

Ukuqapha ithrafikhi yangaphandle nge-PCI Pass-Through

Ukuqapha i-vSwitch Ngabasingathi Abaningi

Izidingo zokucushwa

Ukwengamela i-vSwitch Ngosokhaya Oyedwa

Izidingo zokucushwa

Lungiselela Iqembu Lembobo libe Imodi Yokuziphatha Okuxekethile

-4-

3. Ukufaka I-Virtual Appliance

4. Ukuchaza Izimbobo Ezengeziwe Zokuqapha (Izinzwa Ezigelezayo kuphela)

3b. Ukufaka I-Virtual Appliance kuseva ye-ESXi Stand-Alone (ISO)

Kuphelileview

Ngaphambi kokuthi Uqale

Ukufaka I-Virtual Appliance kuseva ye-ESXi Stand-Alone (ISO)

Inqubo Iphelileview

AmaNode Edatha

1. Ukungena ngemvume ku-VMware Web Iklayenti

2. Ukuqalisa kusuka ku-ISO

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)

Kuphelileview

Ngaphambi kokuthi Uqale

Ukufaka i-Virtual Appliance ku-KVM Host (ISO)

Inqubo Iphelileview

Ilungiselela i-LAN Eyodwa Yezindawo Zedatha

1. Ukufaka I-Virtual Appliance Kusokhaya we-KVM

Ukuqapha ithrafikhi

Izidingo zokucushwa

Ukufaka i-Virtual Appliance kumsingathi we-KVM

2. Ukwengeza i-NIC (Inodi Yedatha, Inzwa Egelezayo) kanye Nokuqapha Kwembobo Engcolile

Vula i-vSwitch (Izinzwa zokugeleza Kuphela)

4. Ilungiselela Uhlelo Lwakho Oluvikelekile Lwezibalo Zenethiwekhi

Izidingo Zokucushwa Kwesistimu

I-SNA Ithintana Nosekelo

Shintsha Umlando

-5-

Isingeniso
Isingeniso
Kuphelileview
Sebenzisa lo mhlahlandlela ukuze ufake izinto zikagesi ezilandelayo ze-Cisco Secure Network Analytics (ngaphambilini ezaziyi-Stealthwatch) ye-Virtual Edition:
l I-Cisco Secure Network Analytics Manager (eyayiyi-Stealthwatch Management Console) I-Virtual Edition
l Cisco Secure Network Analytics Data Store Virtual Edition l Cisco Secure Network Analytics Flow Collector Virtual Edition l Cisco Secure Network Analytics Flow Sensor Virtual Edition l Cisco Secure Network Analytics UDP Director Virtual Edition
Izilaleli
Izithameli ezihlosiwe zalo mhlahlandlela zihlanganisa abalawuli benethiwekhi nabanye abasebenzi abanomthwalo wemfanelo wokufaka nokulungisa imikhiqizo ye-Secure Network Analytics. Uma ulungiselela izinto zikagesi ezibonakalayo, sicabanga ukuthi unolwazi oluyisisekelo nge-VMware noma i-KVM. Uma ukhetha ukusebenza nesifaki esiphrofeshinali, sicela uxhumane ne-Cisco Partner yangakini noma i-Cisco Support.
Ukufaka Izinto zikagesi kanye nokulungisa uhlelo lwakho
Sicela uqaphele ukugeleza komsebenzi kukonke kokufaka nokulungisa I-Secure Network Analytics.
1. Faka Izinto zikagesi: Faka izinto zikagesi zeSecure Network Analytics Virtual Edition usebenzisa lo mhlahlandlela wokufaka. Ukuze ufake izinto zikagesi zehadiwe (ezibonakalayo), landela imiyalelo eku-x2xx Series Ukufakwa Umhlahlandlela Wokufakwa Kwezinto Zezingxenyekazi zekhompuyutha noma umhlahlandlela wokufakwa kwe-x3xx Series Hardware.
2. Lungiselela I-Secure Network Analytics: Ngemva kokufaka ihadiwe nezinto zikagesi ezibonakalayo, usulungele ukulungisa I-Secure Network Analytics ibe isistimu ephethwe. Landela imiyalelo ekuMhlahlandlela Wokucushwa Kwesistimu Ye-Secure Network Analytics v7.4.2.
Ulwazi Oluhlobene
Ukuze uthole ulwazi olwengeziwe mayelana ne-Secure Network Analytics, bheka izinsiza ezilandelayo:

-6-

Isingeniso

l Ngaphezuview: https://www.cisco.com/c/en/us/products/security/stealthwatch/index.html
l Umhlahlandlela Wokuklama Isitolo Sedatha: https://www.cisco.com/c/dam/en/us/products/collateral/security/stealthwatch/st ealthwatch-data-store-guide.pdf
Amagama
Lo mhlahlandlela usebenzisa igama elithi “insiza” kunoma yimuphi umkhiqizo we-Secure Network Analytics, okuhlanganisa imikhiqizo ebonakalayo efana ne-Flow Sensor Virtual Edition (VE).
“Iqoqo” iqembu lakho lezinto zikagesi ze-Secure Network Analytics eziphethwe Umphathi.
Izifinyezo
Izifinyezo ezilandelayo zingavela kulo mhlahlandlela:

Izifinyezo Incazelo

I-DNS

Isistimu Yegama Lesizinda (Isevisi noma Iseva)

I-dvPort

Imbobo ebonakalayo esabalalisiwe

ESX

Iseva yebhizinisi X

I-Gigabyte

I-IDS

Uhlelo Lokuthola Ukungena

IPS

Uhlelo Lokuvimbela Ukungena

ISO

Inhlangano Yamazinga Amazwe Ngamazwe

Ukwaziswa kwesimanje

I-KVM

Umshini Obonakalayo Osuselwe ku-Kernel

MTU

Iyunithi yokudlulisa ephezulu

I-NTP

Iphrothokholi Yesikhathi Senethiwekhi

I-Terabyte

-7-

Izifinyezo Incazelo

UUID

Isihlonzi Esiyingqayizivele Ngokujwayelekile

I-VDS

vNetwork Distributed Switch

I-VLAN

Inethiwekhi Yendawo Ebonakalayo

Umshini Obonakalayo

Isingeniso

-8-

Vikela i-Network Analytics ngaphandle kweSitolo Sedatha
Vikela i-Network Analytics ngaphandle kweSitolo Sedatha
Ekusetshenzisweni Kwezibalo Zenethiwekhi Evikelekile ngaphandle Kwesitolo Sedatha, Iqoqo Eligelezayo elilodwa noma ngaphezulu lingenisa futhi likhiphe idatha, lihlaziye, futhi libike idatha nemiphumela ngokuqondile kuMphathi. Ukuze kuxazululwe imibuzo ethunyelwe umsebenzisi, okuhlanganisa amagrafu namashadi, Umphathi ubuza wonke ama-Flow Collectors aphethwe. Umqoqi ngamunye ogelezayo ubuyisela imiphumela efanayo kuMphathi. Umphathi uhlanganisa ulwazi kumasethi emiphumela ahlukene, bese ekhiqiza igrafu noma ishadi elibonisa imiphumela. Kulokhu kuthunyelwa, i-Flow Collector ngayinye igcina idatha kusizindalwazi sendawo. Bheka umdwebo olandelayo we-example.

-9-

Vikela i-Network Analytics ngeSitolo Sedatha
Vikela i-Network Analytics ngeSitolo Sedatha
Ekusetshenzisweni Kwezibalo Zenethiwekhi Evikelekile ngeSitolo Sedatha, iqoqo leSitolo Sedatha lihlala phakathi koMphathi wakho nabaqoqi abagelezayo. Iqoqo Lokugeleza Okulodwa noma ngaphezulu lingenisa futhi likhiphe ukugeleza, lihlaziye, futhi libike idatha nemiphumela ngokuqondile eSitolo Sedatha, iyisabalalise cishe ngokulinganayo kuwo wonke AmaNodi Edatha. I-Data Store isiza ukugcinwa kwedatha, igcina yonke ithrafikhi yakho kuleyo ndawo emaphakathi esikhundleni sokusabalala kuma-Flow Collectors amaningi, futhi inikeza umthamo omkhulu wokulondoloza kune-Flow Collectors eminingi. Bheka umdwebo olandelayo we-example.

Isitolo Sedatha sihlinzeka ngenqolobane emaphakathi yokugcina i-telemetry yenethiwekhi yakho, eqoqwe abaqoqi bakho abagelezayo. ISitolo Sedatha sakhiwe iqoqo LamaNodi Edatha, ngalinye liqukethe ingxenye yedatha yakho, nesipele sedatha ehlukile YeNodi Yedatha. Ngenxa yokuthi yonke idatha yakho ikusizindalwazi esisodwa esimaphakathi, esikhundleni sokusabalala kuma-Flow Collectors amaningi, Umphathi wakho angakwazi ukubuyisa imiphumela yombuzo Esitolo Sedatha ngokushesha okukhulu kunalokho uma ebebuza zonke iziqoqi zakho zokugeleza ngokuhlukana. Iqoqo leSitolo Sedatha liyahlinzeka

- 10 -

Vikela i-Network Analytics ngeSitolo Sedatha
ukubekezelela amaphutha okuthuthukisiwe, impendulo yemibuzo ethuthukisiwe, kanye negrafu esheshayo nenani leshadi.
Imibuzo
Ukuze kuxazululwe imibuzo ethunyelwe umsebenzisi, okuhlanganisa amagrafu namashadi, Umphathi ubuza Isitolo Sedatha. Isitolo Sedatha sithola imiphumela efanayo kumakholomu ahambisana nombuzo, bese sibuyisela imigqa efanayo bese sibuyisela imiphumela yemibuzo kuMphathi. Umphathi ukhiqiza igrafu noma ishadi ngaphandle kokudinga ukuhlanganisa amasethi amaningi wemiphumela evela kubaqoqi abaningi bokugeleza. Lokhu kunciphisa izindleko zokubuza, uma kuqhathaniswa nokubuza ama-Flow Collectors amaningi, futhi kuthuthukisa ukusebenza kombuzo.
Isitoreji Sesitolo Sedatha Nokubekezelela Amaphutha
Isitolo Sedatha siqoqa idatha evela kubaqoqi abagelezayo futhi sisabalalisa ngokulinganayo kuwo wonke amaNode Edatha ngaphakathi kweqoqo. I-Data Node ngayinye, ngaphezu kokugcina ingxenye ye-telemetry yakho iyonke, iphinde igcine isipele se-telemetry yenye i-Data Node. Ukugcina idatha ngale ndlela:
l helps with load balancing l distributes processing across each node l ensures all data ingested into the Data Store has a backup for fault tolerance l allows for increasing the number of Data Nodes to improve overall storage and
ukusebenza kombuzo
Uma i-Data Store yakho inama-Data Node angu-3 noma ngaphezulu, futhi i-Data Node iyehla, inqobo nje uma i-Data Node equkethe isipele sayo isatholakala, futhi okungenani uhhafu yenani lakho eliphelele lama-Data Node usaphakama, iSitolo Sedatha sisonke. ihlala phezulu. Lokhu kukuvumela ukuba ube nesikhathi sokulungisa uxhumo oluwile noma ihadiwe engalungile. Ngemva kokufaka esikhundleni seNodi Yedatha engalungile, ISitolo Sedatha sibuyisela idatha yaleyo nodi kusipele esivele sikhona esigcinwe endaweni Yedatha eseduze, futhi sakha isipele sedatha kuleyo Nodi Yedatha.

- 11 -

Vikela i-Network Analytics ngeSitolo Sedatha
I-Telemetry Storage Example
Bheka umdwebo olandelayo we-exampindlela ama-3 Data Nodes agcina ngayo i-telemetry:

- 12 -

Izidingo Zokuthunyelwa Okujwayelekile

Izidingo Zokuthunyelwa Okujwayelekile
Ngaphambi kokuthi uqale, review lo mhlahlandlela ukuze uqonde inqubo kanye nokulungiselela, isikhathi, nezisetshenziswa ozozidinga ukuze uhlele ukufakwa.
Izindlela Zokufaka
Ungasebenzisa imvelo ye-VMware noma i-KVM (Umshini Obonakalayo Osuselwa ku-Kernel) ukuze ufake umshini obonakalayo.
Ngaphambi kokuthi uqale ukufakwa, phindaview ulwazi Lokuhambelana Nezimfuneko Zensiza eziboniswe ezigabeni ezilandelayo.

Indlela

Imiyalelo yokufaka (ukuze ibhekisele)

Ukufakwa File

Imininingwane

I-VMware vCenter

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)

Ifaka i-virtual yakho

ISO

sebenzisa i-VMware

vCenter.

Iseva ye-VMware ESXi Stand-Alone

3b. Ukufaka I-Virtual Appliance Kuseva ye-ESXi StandAlone (ISO)

Ifaka i-virtual yakho

ISO

izinto zikagesi ku-ESXi

iseva yokusingatha ezimele yodwa.

I-KVM kanye ne-Virtual Machine Manager

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)

Ifaka i-virtual yakho

ISO

Imishini esebenzisa i-KVM kanye

Umphathi Womshini Obonakalayo.

- 13 -

Izidingo Zokuthunyelwa Okujwayelekile

Ukuhambisana
Kungakhathaliseki ukuthi uhlela ukufaka izinto zakho zikagesi ezibonakalayo endaweni ye-VMware noma i-KVM (Umshini Obonakalayo Osekelwe ku-Kernel), qiniseka ukuthi uyaphindaview ulwazi olulandelayo lokuhambisana:
Izidingo ezijwayelekile zazo zonke izinto zikagesi

Incazelo Yesidingo

Izinsiza Ezinikezelwe

Zonke izinto zikagesi zidinga ukunikezwa kwezinsiza ezizinikele futhi azikwazi ukwabelwa ezinye izinto ezisetshenziswayo noma ababungazi.

Akukho Ukufuduka Okubukhoma

Izinto zikagesi aziyisekeli i-vMotion ngenxa yamathuba enkohlakalo.

I-adaptha yenethiwekhi

Zonke izinto ezisetshenziswayo zidinga okungenani i-adaptha yenethiwekhi engu-1.
Izinzwa Ezigelezayo zingalungiselelwa ngama-adaptha engeziwe ukuze kusekelwe okuphumayo okwengeziwe.
Ama-Data Node adinga i-adaptha yesibili yenethiwekhi ukuze uxhumane namanye ama-Data Node njengengxenye Yesitolo Sedatha.

Isilawuli Sesitoreji

Lapho ulungisa i-ISO ku-VMware, khetha uhlobo lwesilawuli se-LSI Logic SAS SCSI.

Ukunikezwa Kwesitoreji

Yabela Ukunikezwa Kwesitoreji Esivilaphayo Esinqunyelwe Esiqinile lapho kuthunyelwa izinto ezisetshenziswayo ezibonakalayo.

VMware
l Ukuhambisana: VMware 7.0 noma 8.0.
l Uhlelo Olusebenzayo: I-Debian 11 64-bit
l I-adaptha Yenethiwekhi: Uhlobo lwe-adaptha ye-VMXNET3 luyanconywa ukuze lusebenze kahle kakhulu.
l ISO Deployment: Secure Network Analytics v7.4.2 iyahambisana VMware 7.0 kanye 8.0. Asisekeli i-VMware 6.0, 6.5 ,noma i-6.7 ene-Secure Network Analytics v7.4.x. Ukuze uthole ulwazi olwengeziwe, bheka imibhalo ye-VMware ye-vSphere 6.0, 6.5, kanye no-6.7 Ukuphela Kosekelo Olujwayelekile.

- 14 -

Izidingo Zokuthunyelwa Okujwayelekile
l Ukufuduka bukhoma: Asisekeli umsingathi ukuthi asingathe ukufuduka bukhoma (ngokwesiboneloample, nge-vMotion).
l Izifinyezo: Izifinyezo zomshini ezibonakalayo azisekelwa.
Ungafaki Amathuluzi e-VMware kusisetshenziswa esibonakalayo se-Secure Network Analytics ngoba sizobhala inguqulo yangokwezifiso esivele ifakiwe. Ukwenza kanjalo kungenza into esetshenziswayo ebonakalayo ingasebenzi futhi idinga ukufakwa kabusha.
I-KVM
l Ukuhambisana: Ungasebenzisa noma yikuphi ukusatshalaliswa kwe-Linux okuhambisanayo. l Izinguqulo Zokusingatha I-KVM: Kunezindlela eziningana ezisetshenziselwa ukufaka umshini obonakalayo
umsingathi we-KVM. Sihlole i-KVM futhi saqinisekisa ukusebenza sisebenzisa lezi zingxenye ezilandelayo:
l libvirt 2.10 – 7.1.0 l qemu-KVM 2.6.1 – 5.2.0 l Vula vSwitch 2.6.x – 2.15.x**** l Linux Kernel 4.4.x, kanye ne-5.10.xl Isistimu Esebenzayo: Debian 11 64 - kancane. l I-Virtualization Host: Ngezidingo ezincane nokusebenza okuhle kakhulu, review ingxenye Yezimfuneko Zensiza futhi ubone ishidi lokucaciswa kwezingxenyekazi zekhompuyutha ku-Cisco.com.
Ukusebenza kwesistimu kunqunywa indawo yokusingatha. Ukusebenza kwakho kungase kuhluke.
Ilanda iSoftware
Sebenzisa i-Cisco Software Central ukuze ulande ukufakwa kwezinto ezibonakalayo (VE). files, iziqephu, kanye nokuvuselelwa kwesoftware files. Ngena ngemvume ku-akhawunti yakho ye-Cisco Smart ku-https://software.cisco.com noma uthinte umlawuli wakho. Bheka 2. Ukulanda Ukufakwa Kwe-Virtual Edition Files ukuze uthole imiyalelo.
I-TLS
I-Security Network Analytics idinga i-v1.2.

- 15 -

Izidingo Zokuthunyelwa Okujwayelekile
Izicelo zesithathu
I-Secure Network Analytics ayikusekeli ukufaka izinhlelo zokusebenza zezinkampani zangaphandle ezintweni zikagesi.
Iziphequluli
l Iziphequluli Ezivumelanayo: I-Secure Network Analytics isekela inguqulo yakamuva ye-Chrome, Firefox, ne-Edge.
l I-Microsoft Edge: Kungase kube khona a file umkhawulo kasayizi nge-Microsoft Edge. Asincomi ukusebenzisa iMicrosoft Edge ukufaka i-ISO ye-Virtual Edition files.
Igama Lokusingatha
Igama lomsingathi elihlukile liyadingeka entweni ngayinye. Asikwazi ukumisa into esetshenziswayo enegama lomsingathi njengenye into. Futhi, qiniseka ukuthi igama ngalinye likasokhaya wezinto zikagesi lihlangabezana nezimfuneko ezijwayelekile ze-inthanethi zabasingathi be-inthanethi.
Igama Lesizinda
Igama lesizinda elifaneleke ngokugcwele liyadingeka kumshini ngamunye. Asikwazi ukufaka into esebenza ngesizinda esingenalutho.
Iseva ye-NTP
l Ukucushwa: Kudingeka okungenani iseva engu-1 ye-NTP kumshini ngamunye. l I-NTP Eyinkinga: Susa iseva ye-130.126.24.53 NTP uma isohlwini lwakho lwe
amaseva. Le seva yaziwa njengeyinkinga futhi ayisasekelwa ohlwini lwethu oluzenzakalelayo lwamaseva e-NTP.
Indawo Yesikhathi
Zonke izinto zikagesi ze-Secure Network Analytics zisebenzisa i-Coordinated Universal Time (UTC).
l I-Virtual Host Server: Qiniseka ukuthi iseva yakho ye-virtual host isethwe ngesikhathi esifanele.
Qiniseka ukuthi ukusetha isikhathi kuseva yomsingathi obonakalayo (lapho uzobe ufaka khona izinto ezisetshenziswayo ezibonakalayo) kumiswe ngesikhathi esifanele. Uma kungenjalo, izinto zikagesi zingase zingakwazi ukuqalisa.

- 16 -

Izidingo Zokuthunyelwa Okujwayelekile

Izidingo Ezijwayelekile Zokusebenza (ngaphandle kweSitolo Sedatha)
Uma ufaka i-Secure Network Analytics ngaphandle kweSitolo Sedatha, faka izinto zikagesi ezilandelayo:

I-Flow Manager ye-UDP yoMqondisi we-Flow Sensor

Isidingo l Ubuncane bomphathi ongu-1 l Ubuncane bomqoqi ogelezayo o-1
Akuphoqelekile Ongakukhetha

Ukwenza kabushaview izimfuneko zokufakwa kwezinto zikagesi ze-Secure Network Analytics ngeSitolo Sedatha, bheka Izidingo Zokusetshenziswa Kwesitolo Sedatha.
Izidingo Zokuthunyelwa Komphathi kanye Nomqoqi Ogelezayo
Kumphathi ngamunye kanye ne-Flow Collector oyithumelayo, yabela ikheli lasesizindeni se-inthanethi elishintshekayo embobeni yokuphatha ye-eth0.

- 17 -

Izidingo Zokusetshenziswa Kwesitolo Sedatha

Izidingo Zokusetshenziswa Kwesitolo Sedatha
Ukuze usebenzise i-Secure Network Analytics ngeSitolo Sedatha, phindaview izidingo ezilandelayo kanye nezincomo zokuthunyelwa kwakho.
Izidingo zikagesi (ngeSitolo Sedatha)
Ithebula elilandelayo linikeza i-overview ngezinto zikagesi ezidingekayo ukuze kusetshenziswe i-Secure Network Analytics ngeSitolo Sedatha.

Isidingo sikagesi

Umphathi

l Ubuncane bomphathi ongu-1

Isitolo Sedatha

l Ubuncane bezindawo zedatha ezi-1 noma ezi-3
l Amasethi engeziwe Ama-Data Node angu-3 ukuze kwandiswe iSitolo Sedatha, inani eliphakeme lama-Data Node angu-36
l Ukukhipha ama-Data Node ama-2 kuphela kuqoqo akusekelwe.

Flow Collector

l Ubuncane bokuqoqa Ukugeleza okungu-1

Inzwa Yokugeleza Ngokuzithandela

Izidingo Zokuthunyelwa Komphathi kanye Nomqoqi Ogelezayo
Kumphathi ngamunye kanye ne-Flow Collector oyithumelayo, yabela ikheli lasesizindeni se-inthanethi elishintshekayo embobeni yokuphatha ye-eth0.
Izidingo Zokusetshenziswa KweNodi Yedatha
ISitolo Sedatha ngasinye sakhiwe AmaNode Edatha.
l I-Virtual Edition: Uma ulanda i-virtual Data Store, ungaphakela 1, 3, noma ngaphezulu i-Data Nodes Virtual Edition (ngamasethi angu-3).
l Izingxenyekazi zekhompuyutha: Ungakwazi futhi ukufaka i-hardware Data Nodes. I-DN 6300 Data Store inikeza i-chassis yehadiwe ye-Data Node eyodwa.

Qiniseka ukuthi ama-Data Node wonke ayihadiwe noma yonke i-Virtual Edition. Izingxenyekazi zekhompuyutha ezixutshwayo kanye namaNodi eDatha angasekelwa futhi ihadiwe kufanele isuke esizukulwaneni sehadiwe efanayo (yonke i-DS 6200 noma yonke i-DN 6300).

- 18 -

Izidingo Zokusetshenziswa Kwesitolo Sedatha
Ukuthunyelwa Kwenodi Yedatha Eningi
Ukuthunyelwa kweNodi Yedatha eminingi kunikeza imiphumela ephezulu yokusebenza. Qaphela okulandelayo:
l Amasethi Amathathu: AmaNode Edatha angahlanganiswa njengengxenye Yesitolo Sedatha yakho ngamasethi angu-3, kusukela kwabuncane obungu-3 ukuya kwangama-36 aphezulu. Ukukhipha AmaNode Edatha angu-2 kuphela kuqoqo akusekelwe.
l Zonke Izingxenyekazi zekhompuyutha noma Zonke I-Virtual: Qiniseka ukuthi I-Data Node yakho yonke ihadiwe (yesizukulwane esifanayo) noma yonke i-Virtual Edition. Ukuxutshwa kwezingxenyekazi zekhompuyutha kanye namaNodi eDatha abonakalayo noma ukuhlanganisa i-Data Store 6200 ne-Data Node 6300 Data Node akusekelwe.
l Idatha Node Profile Usayizi: Uma usebenzisa i-Virtual Edition Data Node, qiniseka ukuthi wonke ayafanafile usayizi ukuze babe ne-RAM, CPU, nesikhala sediski esifanayo. Ukuze uthole imininingwane, bheka i-Data Node Virtual Edition esigabeni Sezimfuneko Zensiza.

- 19 -

Izidingo Zokusetshenziswa Kwesitolo Sedatha

I-Hardware Metrics esekelwayo (izibalo zinikwe amandla)

Inombolo Yama-Nodes Ageleza Ngesibili Abasingathi Abangaphakathi Abahlukile

600,000

1.3 million

3 nangaphezulu

600,000

1.3 million

3 nangaphezulu

850,000

700,000

Lezi zincomo zibheka i-telemetry kuphela. Ukusebenza kwakho kungase kwehluke kuye ngezinto ezengeziwe, okuhlanganisa ukubala komsingathi, ukusetshenziswa kwenzwa egelezayo, i-traffic profiles, nezinye izici zenethiwekhi. Xhumana Nosekelo lwe-Cisco ukuze uthole usizo ngosayizi.
I-Hardware Metrics esekelwe (ngaphandle kokuhlaziywa okuvunyelwe)

Inombolo yamaNodes 1 3 nangaphezulu

Igeleza Ngomzuzwana Kufika esigidini esi-1 Kufike ezigidini ezi-3

Abasingathi Abangaphakathi Abahlukile Bafika Ezigidini Ezingama-33 Kufikela Ezigidini Ezingama-33

Lezi zinombolo zenziwa ezindaweni zethu zokuhlola kusetshenziswa idatha yekhasimende emaphakathi enabasingathi abahlukile abayizigidi ezingu-1.3. Kunezici ezimbalwa ezingase zibe nomthelela ekusebenzeni kwakho okuthile, njengenombolo yabasingathi, usayizi wokugeleza omaphakathi, nokuningi. Xhumana Nosekelo lwe-Cisco ukuze uthole usizo ngosayizi.
Ukuthunyelwa KweNodi Yedatha Eyodwa
Uma ukhetha ukusebenzisa i-Data Node eyodwa (1):
l Abaqoqi Abagelezayo: Kusekelwe inani eliphakeme labaqoqi bokugeleza okungu-4. l Ukwengeza AmaNode Edatha: Uma usebenzisa i-Data Node eyodwa kuphela, ungangeza ama-Data Node kuwo
ukuthunyelwa kwakho esikhathini esizayo. Bheka ku-Multi-Data Node Deployment ukuze uthole imininingwane.

- 20 -

Izidingo Zokusetshenziswa Kwesitolo Sedatha

Okwamanje, Isitolo Sedatha asikusekeli ukuthunyelwa kwe-Spare Data Node njengokushintshwa okuzenzakalelayo uma i-Data Node eyinhloko yehla. Xhumana Nosekelo lwe-Cisco ukuze uthole isiqondiso.
Izidingo zokucushwa kweNodi Yedatha
Ukuze usebenzise Isitolo Sedatha, yabela okulandelayo kuNodi Yedatha ngayinye. Ulwazi olulungiselelayo luzolungiselelwa Ekusetheni Isikhathi Sokuqala kusetshenziswa Umhlahlandlela Wokucushwa Kwesistimu.
l Ikheli lasesizindeni se-inthanethi elishintshayo (eth0): Okokuphatha, ukungeniswa, kanye nokuxhumana okunemibuzo ngemishini yakho ye-Secure Network Analytics.
l I-Inter-Data Node Communications: Lungiselela ikheli le-IP elingathutheki ukusuka ku-169.254.42.0/24 CIDR block ngaphakathi kwe-LAN yangasese noma i-VLAN ezosetshenziselwa ukuxhumana kwe-interData Node.
Ukuze uthole ukusebenza okuthuthukisiwe kwe-output, xhuma isiteshi sembobo esiqukethe i-eth2 ne-eth3 Qinisekisa ukuthi I-Data Node ngayinye ingakwazi ukufinyelela yonke enye I-Data Node ngokusebenzisa iswishi ebonakalayo noma inethiwekhi engayodwa. Njengengxenye Yesitolo Sedatha, AmaNodi wakho Wedatha ayaxhumana phakathi naphakathi kwamanye.
l Uxhumano Lwenethiwekhi: Udinga ukuxhumana kwenethiwekhi okubili, okukodwa kokuphatha, okokungenisa, nokuxhumana okubuzayo, kanye nokukodwa kokuxhumana kwe-inter-Data Node.
I-Networking kanye nokushintsha okucatshangelwayo
Ithebula elilandelayo linikeza i-overview ngokucabangela ukunethiwekha nokushintsha ukuze kusetshenziswe i-Secure Network Analytics ngeSitolo Sedatha.

Ukucatshangelwa Kwenethiwekhi
I-Inter-Data Node Communications

Incazelo
l Lungiselela i-LAN engayodwa ngeswishi ebonakalayo ukuze amaNodes eDatha akwazi ukuxhumana.
l Misa ukubambezeleka okunconyiwe kokuya nokubuya (RTT) okungaphansi kwama-microsecond angu-200 phakathi naphakathi kwamaNodes eDatha

- 21 -

Izidingo Zokusetshenziswa Kwesitolo Sedatha

Ukushintsha kweNodi Yedatha
Vikela I-Network Analytics Appliance Communications

l Gcina iwashi linyakazisa ngomzuzwana ongu-1 noma ngaphansi phakathi naphakathi kwamaNode akho eDatha.
l Sungula ukuphuma okunconyiwe okungu-6.4Gbps noma ngaphezulu (uxhumano oluyi-10 Gbps olugcwele olushintshwayo lwe-duplex) phakathi naphakathi kwamaNode akho edatha.
l Ama-Data Node adinga eyawo I-Layer 2 VLAN ukuze ivumele ukuxhumana kwe-interData Node. I-Virtual Data Node ingaxhunywa kunethiwekhi engayodwa, kuye ngokuthi uwapha kanjani ama-Data Nodes VE.
l Umphathi kanye nabaqoqi abagelezayo kufanele bakwazi ukufinyelela wonke amaNode eDatha
l Ama-Data Node kumele akwazi ukufinyelela kuMphathi, bonke abaqoqi abagelezayo, kanye neNodi Yedatha ngayinye

Okwamanje, Isitolo Sedatha asikusekeli ukuthunyelwa kwe-Spare Data Node njengokushintshwa okuzenzakalelayo uma i-Data Node eyinhloko yehla. Sicela uthinte i-Cisco Support ukuze uthole isiqondiso.

- 22 -

Izidingo Zokusetshenziswa Kwesitolo Sedatha
I-Virtual Switch Example
Ukuze unike amandla ukuxhumana kwe-inter-Data Node phezu kwe-eth1, lungiselela ukushintshwa okubonakalayo nge-LAN engayodwa noma i-VLAN yokuxhumana kwe-inter-Data Node. Nikeza ukushintshwa okubonakalayo ekuxhumaneni kwe-inter-Data Node. Futhi lungiselela i-LAN yomphakathi noma i-VLAN yokuxhumana kwe-Data Nodes eth0 Nomphathi kanye nabaqoqi abagelezayo. Bheka umdwebo olandelayo we-example:

Iqoqo Lesitolo Sedatha lidinga ukushaya kwenhliziyo okuqhubekayo phakathi kwamanodi ngaphakathi kwe-VLAN ehlukanisiwe. Ngaphandle kwalokhu kushaya kwenhliziyo, AmaNode Edatha angase abe ungaxhunyiwe ku-inthanethi, okwandisa ubungozi bokwehla kweSitolo Sedatha.
Xhumana ne-Cisco Professional Services ukuze uthole usizo lokuhlela ukuthunyelwa kwakho.
Ukucatshangelwa Kokubekwa Kwesitolo Sedatha
Beka i-Data Node ngayinye ukuze ikwazi ukuxhumana nabo bonke Abaqoqi bakho Abagelezayo, Umphathi wakho, nayo yonke enye I-Data Node. Ukuze usebenze kahle kakhulu, hlanganisa ama-Data Node kanye Neziqoqi Ezigelezayo ukuze unciphise ukubambezeleka kokuxhumana, futhi uhlanganise AmaNode Edatha kanye Nomphathi ukuze imibuzo isebenze kahle.
l I-Firewall: Sincoma kakhulu ukuthi ufake i-Data Node ngaphakathi kohlelo lwakho lokuvikela, njengangaphakathi kwe-NOC.

- 23 -

Izidingo Zokusetshenziswa Kwesitolo Sedatha
l I-Physical Host/Hypervisor: Ukuze kube lula ukumisa, sebenzisa yonke i-Virtual Nodes yakho Yedatha kumsingathi ofanayo ongokoqobo/hypervisor, ukuze wenze kube lula ukucushwa kwe-inter-Data Node phezu kwe-LAN engayodwa.
l Amandla: Uma Isitolo Sedatha siyehla ngenxa yokuphelelwa amandla noma ukwehluleka kwezingxenyekazi zekhompyutha, uba sengozini enkulu yokonakaliswa kwedatha nokulahleka kwedatha. Faka ama-Data Node wakho ucabanga nge-uptime njalo.
Uma i-Data Node iphelelwa amandla kungalindelekile, futhi uqalisa kabusha into esetshenziswayo, isibonelo sesizindalwazi kuleyo Node Yedatha singase singaqali kabusha ngokuzenzakalelayo. Bheka Kumhlahlandlela Wokucushwa Kwesistimu ukuze uxazulule izinkinga futhi uqale kabusha isizindalwazi mathupha.
Izidingo Zokusetshenziswa Kwezibalo
I-Secure Network Analytics isebenzisa imodeli yebhizinisi eguqukayo ukuze ilandelele isimo senethiwekhi yakho. Ngomongo we-Secure Network Analytics, ibhizinisi into engalandelelwa ngokuhamba kwesikhathi, njengomsingathi noma indawo yokugcina kunethiwekhi yakho. Amamodeli ebhizinisi anamandla aqoqa ulwazi olumayelana namabhizinisi ngokusekelwe kuthrafikhi eyidluliselayo nemisebenzi eyenzayo kunethiwekhi yakho. Ukuze uthole ulwazi olwengeziwe, bheka i-Analytics: Ukutholwa, Izaziso, kanye Nomhlahlandlela Wokuqaphela. Ukuze unike amandla i-Analytics, ukusetshenziswa kwakho kufanele kulungiselelwe
l ekusetshenzisweni kwe-Virtual noma I-Hardware Data Store enanoma iyiphi inombolo yabaqoqi be-Flow.
l enesizinda esingu-1 kuphela Sesitolo Sedatha Se-Network Analytics Evikelekile.

- 24 -

Izidingo Zensiza
Izidingo Zensiza
Lesi sigaba sihlinzeka ngezidingo zensiza zezinto zikagesi ezibonakalayo. Sebenzisa amathebula anikezwe kulesi sigaba ukuze urekhode izilungiselelo ozodinga ukuthi uzifake futhi ulungiselele izinto zikagesi ze-Secure Network Analytics Virtual Edition.
l I-Virtual Edition yoMphathi l I-Glow Collector Virtual Edition l I-Virtual Node Yedatha I-Virtual Edition l I-Flow Sensor Edition Virtual l Umqondisi We-UDP Ushicilelo Olungokoqobo l Ukubala Ukugeleza Ngesekhondi (Ongakukhetha)
Qiniseka ukuthi ugodla izinsiza ezidingekayo zesistimu yakho. Lesi sinyathelo sibalulekile ekusebenzeni kwesistimu.
Uma ukhetha ukusebenzisa izinto zikagesi ze-Cisco Secure Network Analytics ngaphandle kwezinsiza ezidingekayo, uthatha isibopho sokuqapha eduze ukusetshenziswa kwesisetshenziswa sakho nokwandisa izinsiza njengoba kudingeka ukuze uqinisekise impilo efanele kanye nomsebenzi wokuphakelwa.

- 25 -

Izidingo Zensiza
Izithenjwa zegigabhayithi noma ze-GB kumathebula alandelayo zichazwa kanje: Iyunithi yolwazi elingana no-2 ephakanyiswe emandleni angama-30, noma amabhayithi angu-1,073,741,824.
Izibalo zezilungiselelo ze-CPU
Ukuze uthole ukusebenza okuphezulu lapho ubeka ama-CPU kubasingathi be-EXSi, qinisekisa ukuthi kuzilungiselelo zakho ze-CPU, ukulungiselelwa kokubhuka kwe-CPU kusebenzisa lesi sibalo esilandelayo:
* = Ungathola imvamisa eyinhloko (Uhlobo Lomprosesa) we-CPU yakho ngaphansi kwesigaba esithi “Imininingwane Yomsingathi” se-hypervisor yakho. Ku-exampfuthi ngezansi, ungaphindaphinda ama-CPU angu-8 ngefrikhwensi eyinhloko, kulesi simo engu-2,400MHz (noma 2.4 GHz). Lokhu kukunikeza inombolo engu-19200 MHz, ozoyisebenzisela ukubhuka kwakho imvamisa.

Ukuze uthole ulwazi olwengeziwe, bheka ku-3b. Ukufaka I-Virtual Appliance Kuseva ye-ESXi StandAlone (ISO).

- 26 -

Izidingo Zensiza

I-Virtual Edition yomphathi
Ukuze unqume ubuncane bokwabiwa kwensiza Yohlelo Olungokoqobo Lomphathi, nquma inani labasebenzisi ngesikhathi esisodwa okulindeleke ukuthi bangene kuMphathi. Bheka ezicacisweni ezilandelayo ukuze unqume ukwabiwa kwensiza yakho:
Umphathi

Abasebenzisi Kanyekanye*

Ama-CPU Agciniwe Adingekayo

kuze kufike ku-9

ngaphezu kwe-10

Inkumbulo Egciniwe Edingekayo
40 GB
70 GB

Isitoreji Esincane Esidingekayo
200 GB
480 GB

Ukugeleza Ngaphakathi ngakunye

okwesibili

Ababungazi

Kufika ku-100,000
Ngaphezu kwama-100,000

100,000 250,000

*Abasebenzisi abafanayo bafaka imibiko ehleliwe kanye nabantu abasebenzisa iklayenti Lomphathi ngesikhathi esisodwa.

- 27 -

Izidingo Zensiza

I-Flow Collector Virtual Edition
Ukuze unqume izidingo zakho zensiza ze-Flow Collector Virtual Edition, qiniseka ukuthi ubala ukugeleza ngesekhondi ngalinye okulindeleke kunethiwekhi kanye nenani labathekelisi nabasingathi okulindeleke ukuthi iqaphe. Bheka esigabeni sokubala sokugeleza kwesesibili ukuze uthole imininingwane.
Futhi, ubuncane besikhala sokulondoloza singase sikhule ngokusekelwe ekubaleni kwakho kwe-FPS kanye nezidingo zakho zokugcinwa.
Ngenxa yokuthi Ama-Data Node angaphakathi kweSitolo Sedatha azogcina ukugeleza esikhundleni sama-Flow Collectors, qiniseka ukuthi ubhekisela ezicacisweni zokuthunyelwa kwakho okuhleliwe (ngaphandle kweSitolo Sedatha noma Isitolo Sedatha).
I-Flow Collector ngaphandle kweSitolo Sedatha

Igeleza ngesekhondi

Ama-CPU Agciniwe Adingekayo

Inkumbulo Egciniwe Edingekayo

Kudingeka Ubuncane Bedatha Yesitoreji Sezinsuku ezingu-30

Izixhumi ezibonakalayo

Abathekelisa

Ababungazi Bangaphakathi

Kufika ku-10,000

24 GB

600 GB

Kufika ku-65535

Kuze kufike ku-1024 25,000

Kufika ku-30,000

32 GB

900 GB

Kufika ku-65535

Kuze kufike ku-1024 100,000

Kufika ku-60,000

64 GB

1.8 TB

Kufika ku-65535

Kuze kufike ku-2048 250,000

Kufika ku-120,000

128 GB

3.6 TB

Kufika ku-65535

Kufika ku-4096

ngaphezu kwe-250,000

- 28 -

Izidingo Zensiza

I-Flow Collector eneSitolo Sedatha

Igeleza ngesekhondi

Ama-CPU Agciniwe Adingekayo

Inkumbulo Egciniwe Edingekayo

Isitoreji Esincane Esidingekayo

Izixhumi ezibonakalayo

Abathekelisa

Ababungazi Bangaphakathi

Kufika ku-10,000

24 GB

200 GB

Kufika ku-65535

Kuze kufike ku-1024 25,000

Kufika ku-30,000

32 GB

200 GB

Kufika ku-65535

Kuze kufike ku-1024 50,000

Kufika ku-60,000

64 GB

200 GB

Kufika ku-65535

Kuze kufike ku-2048 100,000

Kufika ku-120,000

128 GB

200 GB

Kufika ku-65535

Kuze kufike ku-4096 250,000

- 29 -

Izidingo Zensiza

I-Virtual Node Edition yedatha
Review ulwazi olulandelayo ukuze kubalwe izidingo zensiza zoHlelo Olubonakalayo LweNodi Yedatha.
l Bala Ukugeleza Ngesekhondi: Thola ukugeleza ngesekhondi okulindeleke kunethiwekhi. Bheka esigabeni sokubala sokugeleza kwesesibili ukuze uthole imininingwane.
l Inombolo YamaNodi Edatha: Ungakwazi ukusebenzisa i-Data Node noma ama-Data Node angu-1 noma ngaphezulu (ngamasethi angu-3). Ukuze uthole imininingwane, bheka Izidingo Zokusebenza (ngeSitolo Sedatha).
Ngokusekelwe ekubalweni kwakho kwe-Flows Per Second, bheka izicaciso ezilandelayo ukuze unqume izidingo zakho zensiza:
Isitolo Sedatha NgeNodi Yedatha Ebonakalayo Eyodwa

Igeleza ngesekhondi

Ama-CPU Agciniwe Adingekayo

Kuze kufike ku-30,000 6

Kuze kufike ku-60,000 6

Kufika ku-120,000

Kufika ku-225,000

Inkumbulo Egciniwe Edingekayo 32 GB 32 GB
32 GB
64 GB

Isitoreji Esidingekayo Esiyisisekelo SeNode Yedatha Eyodwa Yezinsuku ezingu-30 Zokugcinwa 2.25 TB 4.5 TB
9 TB
18 TB

- 30 -

Izidingo Zensiza

Isitolo Sedatha esinamaNode angu-3 wedatha ebonakalayo

Igeleza ngesekhondi

Ama-CPU Agciniwe Adingekayo

Inkumbulo Egciniwe Edingekayo

Isitoreji Esidingekayo Esiyisisekelo seNodi Yedatha ngayinye Izinsuku ezingama-30 Zokugcinwa

Isitoreji Esidingekayo Esincane Sesitolo Sedatha YeNodi Yedatha engu-3 Sezinsuku Ezingama-30 Zokugcinwa

Kufika ku-30,000

32 GB

1.5 TB ngeNodi Yedatha

4.5 TB isamba seSitolo Sedatha

Kufika ku-60,000

32 GB

3 TB ngeNode Yedatha 9 TB isiyonke yeSitolo Sedatha

Kufika ku-120,000

32 GB

6 TB ngeNodi Yedatha

18 TB isamba seSitolo Sedatha

Kufika ku-220,000

64 GB

10 TB ngeNode Yedatha*

30 TB isamba seSitolo Sedatha*

Kufika ku-500,000

64 GB

15 TB ngeNode Yedatha*

45 TB isamba seSitolo Sedatha*

* Esikalini ukulungiselelwa kweSitolo Sedatha kusetshenziswa ukuze kuncishiswe ukukhula komugqa we-telemetry

- 31 -

Izidingo Zensiza

I-Flow Sensor Virtual Edition
Lesi sigaba sichaza i-Flow Sensor Virtual Edition.
l Inqolobane: Ikholomu Yosayizi Wenqolobane Egelezayo ibonisa inani eliphezulu lokugeleza okusebenzayo lelo Inzwa Egelezayo engakwazi ukulicubungula ngesikhathi esifanayo. Inqolobane ilungisa nenani lememori egodliwe, futhi ukugeleza kuyasuswa njalo ngemizuzwana engama-60. Sebenzisa usayizi wenqolobane yokugeleza ukuze ubale inani lememori elidingekayo ngenani lethrafikhi eligadwayo.
l Izidingo: Indawo okuyo ingase idinge izinsiza ezengeziwe kuye ngenani lezinto eziguquguqukayo, njengosayizi wephakethe omaphakathi, izinga lokuqhuma, nezinye izimo zenethiwekhi nezokusingatha.

Amachweba aqapha ama-NIC

Ama-CPU Agciniwe Adingekayo

Inkumbulo Egciniwe Edingekayo

Isitoreji Sedatha Esidingekayo

1 x 1 Gbps 2

4 GB

75 GB

Ukukhipha Okulinganiselwe

Inqolobane Yokugeleza
Usayizi (inombolo enkulu yokugeleza okuhambisanayo)

850 Mbps

32,766

1,850 Mbps

2 x 1 Gbps 4

8 GB

75 GB

Ukusebenzelana okulungiselelwe njengokudlula kwe-PCI (ithobela i-igb/ixgbe noma ithobela i-e1000e)

65,537

3,700 Mbps

4 x 1 Gbps 8

16 GB

75 GB

Ukusebenzelana kulungiselelwe njengokudlula kwe-PCI

131,073

- 32 -

Izidingo Zensiza

Amachweba aqapha ama-NIC

Ama-CPU Agciniwe Adingekayo

Inkumbulo Egciniwe Edingekayo

Isitoreji Sedatha Esidingekayo

Ukukhipha Okulinganiselwe

Inqolobane Yokugeleza
Usayizi (inombolo enkulu yokugeleza okuhambisanayo)

(ihambisana ne-igb/ixgbe noma i-e1000e iyahambisana)

8 Gbps

1 x 10 Gbps* 12

24 GB

75 GB

Ukusebenzelana okulungiselelwe njengokudlula kwe-PCI (iyahambisana ne-Intel ixgbe/i40e)

~512,000

16 Gbps

2 x 10 Gbps* 22

40 GB

75 GB

Ukusebenzelana okulungiselelwe njengokudlula kwe-PCI (iyahambisana ne-Intel ixgbe/i40e)

~1,000,000

*Ngokuphuma kwe-Gbps engu-10, lungiselela wonke ama-CPU esokhethi elingu-1. Ku-10 Gbps NIC ngayinye eyengeziwe, engeza ama-vCPU angu-10 no-16 GB we-RAM.
Ongakukhetha: I-10G NIC eyodwa noma ngaphezulu ingasetshenziswa kumsingathi we-VM ongokoqobo.

- 33 -

Izidingo Zensiza

Izimo zenethiwekhi ye-Flow Sensor Virtual Edition
Ngaphambi kokufaka i-Flow Sensor Virtual Edition, qiniseka ukuthi uyalwazi uhlobo lwendawo yenethiwekhi onayo. Lo mhlahlandlela uhlanganisa zonke izinhlobo zezindawo zenethiwekhi ezingaqashwa i-Flow Sensor Virtual Edition.
Ukuhambisana: I-Secure Network Analytics isekela imvelo ye-VDS, kodwa ayisekeli i-VMware Distributed Resource Scheduler (VM-DRS).
I-Virtual Network Environments: I-Flow Sensor Virtual Edition iqapha izinhlobo ezilandelayo zezindawo zenethiwekhi ebonakalayo:
l Inethiwekhi ene-virtual local area network (VLAN) trunking l Discrete VLANs lapho i-VLAN eyodwa noma amaningi enqatshelwe ukuthi anamathisele iphakethe
amadivaysi okuqapha (isibample, ngenxa yenqubomgomo yendawo) l Ama-VLAN ayimfihlo l Abasingathi be-Hypervisor kunama-VLAN
I-Flow Sensor Virtual Edition Traffic
I-Flow Sensor izocubungula ithrafikhi ngama-Ethertypes alandelayo:

Ethertype 0x8000 0x86dd 0x8909 0x8100 0x88a8 0x9100 0x9200 0x9300 0x8847 0x8848

I-Protocol Normal IPv4 Normal IPv6 SXP VLAN
I-VLAN QnQ
I-MLPS unicast MLPS multicast

- 34 -

Izidingo Zensiza

I-Flow Sensor ilondoloza ilebula yezinga eliphezulu le-MPLS noma i-VLAN ID futhi iyithumele ngaphandle. Idlula amanye amalebula lapho icubungula amaphakethe.
I-UDP Director Virtual Edition
I-UDP Director Virtual Edition idinga ukuthi umshini obonakalayo uhlangabezane nokucaciswa okulandelayo. Futhi, ubuncane besikhala sokulondoloza singase sikhule ngokusekelwe ekubaleni kwakho kwe-FPS kanye nezidingo zakho zokugcinwa.

Kudingeka I-CPU Egciniwe

Inkumbulo Egciniwe Edingekayo

Isitoreji Sedatha Esincane

Isilinganiso esiphezulu se-FPS

4 GB

75 GB

10,000

- 35 -

Izidingo Zensiza
Ibala Ukugeleza Ngesekhondi (Ongakukhetha)
Uma ufuna ukubala izidingo zakho zensiza ngokususela enanini lesitoreji elehlukile kunaleso esisinikeze ezigabeni ezedlule, ungasebenzisa izibalo zokugeleza ngomzuzwana (i-FPS) eziboniswe lapha.
Ibala Ukugeleza Ngesekhondi Ngesilondolozi Somqoqi Ogelezayo (Ukusetshenziswa Ngaphandle Kwesitolo Sedatha)
Uma uphakela i-Flow Collector (NetFlow) ngaphandle kweSitolo Sedatha, bala isabelo sesitoreji ngendlela elandelayo: [(isilinganiso sansuku zonke se-FPS/1,000) x 1.6 x izinsuku] l Thola isilinganiso sakho sansuku zonke se-FPS l Hlukanisa le nombolo ngo-1,000 FPS l Phindaphinda lokhu inombolo ngo-1.6 GB wesitoreji yenani lokugcina losuku olulodwa l Phindaphinda le nombolo ngenani lezinsuku ofuna ukugcina ukugeleza kuzo zonke
isitoreji ku-Flow Collector
Okwesiboneloample, uma isistimu yakho:
Ngine-FPS eyisilinganiso sansuku zonke esingu-50,000 l ngizogcina ukugeleza kwezinsuku ezingama-30, ngibale Umqoqi ngamunye Ogelezayo kanje:
[(50,000/1,000) x 1.6 x 30] = 7200 GB (7.2 TB)
l isilinganiso sansuku zonke se-FPS = 50,000 l 50,000 isilinganiso sansuku zonke se-FPS / 1,000= 50 l 50 x 1.6 GB = 80 GB yenani lokugcina losuku olulodwa l 80 GB x 30 I-Flow Collector ngayinye = 7200 GB I-Flow Collector ngayinye
Ibala Ukugeleza Ngesekhondi Ngesitoreji seNodi Yedatha
Uma usebenzisa i-Virtual Edition Yesitolo Sedatha ene-3 Data Nodes Virtual Edition, sincoma ukuthi kwiNodi Yedatha ngayinye, ubale isabelo sesitoreji kanje:
[[(isilinganiso sansuku zonke se-FPS/1,000) x 1.6 x izinsuku] / inombolo Yezindawo Zedatha
l Thola isilinganiso sakho sansuku zonke se-FPS l Hlukanisa le nombolo ngo-1,000 FPS l Phindaphinda le nombolo ngo-1.6 GB wendawo yokubeka ngenani losuku olulodwa

- 36 -

Izidingo Zensiza
l Phindaphinda le nombolo ngenani lezinsuku ofuna ukugcina ukugeleza kwesamba sesitoreji Sesitolo Sedatha
l Hlukanisa le nombolo ngenani lama-Data Node ku-Data Store yakho ukuze igcinwe ngeNode Yedatha
Okwesiboneloample, uma isistimu yakho: l ine-FPS eyisilinganiso sansuku zonke engu-50,000 l izogcina ukugeleza kwezinsuku ezingu-90, futhi l une-3 Data Node
bala INodi Yedatha ngale ndlela elandelayo: [(50,000/1,000) x 1.6 x 90] / 3 = 2400 GB (2.4 TB) ngeNodi Yedatha
l isilinganiso sansuku zonke se-FPS = 50,000 l 50,000 isilinganiso sansuku zonke se-FPS / 1,000 = 50 l 50 x 1.6 GB = 80 GB yenani lokugcina losuku olulodwa l 80 GB x 90 izinsuku Isitolo Sedatha = 7200 GB Isitolo Sedatha l 7200 GB / 3 Idatha Amanodi = 2400 GB (2.4 TB) ngeNodi Yedatha

- 37 -

1. Ilungiselela I-Firewall Yakho Yezokuxhumana
1. Ilungiselela I-Firewall Yakho Yezokuxhumana
Ukuze izinto zikagesi zixhumane kahle, kufanele ulungiselele inethiwekhi ukuze izibhulamlilo noma izinhlu zokulawula ukufinyelela zingavimbeli ukuxhumana okudingekayo. Sebenzisa ulwazi olunikezwe kulesi sigaba ukuze ulungiselele inethiwekhi yakho ukuze izinto zikagesi zikwazi ukuxhumana ngenethiwekhi.
Vula Izimbobo (Zonke Izinto zikagesi)
Xhumana nomlawuli wenethiwekhi yakho ukuze uqinisekise ukuthi izimbobo ezilandelayo zivuliwe futhi zinokufinyelela okungavinjelwe ezintweni zakho zikagesi (Abaphathi, Abaqoqi Okugelezayo, AmaNode Edatha, Izinzwa Ezigelezayo, nabaqondisi be-UDP):
l TCP 22 l TCP 25 l TCP 389 l TCP 443 l TCP 2393 l TCP 8910 l UDP 53 l UDP 123 l UDP 161 l UDP 162 l UDP 389 l UDP 514l UDP 2055l UDP 6343l XNUMX DPXNUMX
Izimbobo Ezivuliwe Ezengeziwe Zezinombolo Zedatha
Ukwengeza, uma usebenzisa ama-Data Nodes kunethiwekhi yakho, qinisekisa ukuthi izimbobo ezilandelayo zivuliwe futhi zinokufinyelela okungakhawulelwe:
l TCP 5433 l TCP 5444 l TCP 9450

- 38 -

1. Ilungiselela I-Firewall Yakho Yezokuxhumana

Amachweba Wokuxhumana kanye Nezinqubo
Ithebula elilandelayo libonisa ukuthi izimbobo zisetshenziswa kanjani ku-Secure Network Analytics:

Kusuka ku-(Client) Admin User PC Zonke izinto zikagesi

Ku (Iseva) Zonke izinto zikagesi Umthombo wesikhathi wenethiwekhi

Umphathi Wemibhalo Esebenzayo

Cisco ISE

Umphathi

Cisco ISE

Umphathi

Imithombo yelogi yangaphandle

Umphathi

Flow Collector

Umphathi

Umqondisi we-UDP

Umphathi

Umqondisi we-UDP

I-Flow Collector (sFlow)

Umqondisi we-UDP

I-Flow Collector (NetFlow)

Umqondisi we-UDP

Amasistimu okuphatha imicimbi yenkampani yangaphandle

I-Flow Sensor

Umphathi

I-Flow Sensor

I-Flow Collector (NetFlow)

I-NetFlow Exporters Flow Collector (NetFlow)

I-sFlow Exporters Flow Collector (sFlow)

Umphathi

Umqondisi we-UDP

Umphathi

Cisco ISE

Imbobo TCP/443 UDP/123 TCP/389, UDP/389 TCP/443 TCP/8910
UDP/514
TCP/443 TCP/443 UDP/6343* UDP/2055*
UDP/514
TCP/443 UDP/2055 UDP/2055* UDP/6343* TCP/443 TCP/443

Iphrothokholi ye-HTTPS NTP
I-LDAP
I-HTTPS XMPP
I-SYSLOG
I-HTTPS HTTPS sFlow NetFlow
I-SYSLOG
I-HTTPS NetFlow NetFlow sFlow HTTPS HTTPS

- 39 -

1. Ilungiselela I-Firewall Yakho Yezokuxhumana

Kusuka ku (Iklayenti) Imenenja Yemenenja Imenenja Imenenja Imenenja Imenenja Imenenja Imenenja yePC yomsebenzisi

Ku (Iseva) I-Cisco ISE DNS Iqoqo Lokugeleza Lokugeleza Kwenzwa Kwabathumela kwamanye amazwe I-LDAP CRL Yamaphuzu Okusabalalisa Amaphuzu We-OCSP

I-Port TCP/8910 UDP/53 TCP/443 TCP/443 UDP/161 TCP/636 TCP/80 TCP/80 TCP/443

Iphrothokholi XMPP DNS HTTPS HTTPS SNMP TLS HTTP OCSP HTTPS

*Le imbobo ezenzakalelayo, kodwa noma iyiphi imbobo ye-UDP ingalungiselelwa kumthumeli.

- 40 -

1. Ilungiselela I-Firewall Yakho Yezokuxhumana

Izimbobo Ezivuliwe Ezengeziwe zeSitolo Sedatha
Okulandelayo kuklelisa izimbobo zokuxhumana okufanele zivulwe ku-firewall yakho ukuze kusetshenziswe Isitolo Sedatha.

# Ukusuka (Iklayenti) Kuya (Iseva)

Itheku

Iphrothokholi noma Inhloso

1 Umphathi

Ama-Flow Collectors kanye nama-Data Node

22 / TCP

I-SSH, edingekayo ukuze kuqaliswe isizindalwazi seSitolo Sedatha

1 AmaNodi wedatha

wonke amanye amaNode eDatha

22 / TCP

I-SSH, edingekayo ukuze kuqaliswe imininingwane egciniwe yeSitolo Sedatha kanye nemisebenzi yokuphatha egciniwe

Umphathi, Abaqoqi be-Flow 2, kanye neseva ye-NTP
AmaNode Edatha

123/UDP

I-NTP, edingekayo ngokuvumelanisa isikhathi

2 iseva ye-NTP

Umphathi, Abaqoqi Abagelezayo, namaNodi wedatha

123/UDP

I-NTP, edingekayo ngokuvumelanisa isikhathi

3 Umphathi

Ama-Flow Collectors kanye nama-Data Node

443 / TCP

I-HTTPS, iyadingeka ekuxhumaneni okuphephile phakathi kwezinto zikagesi

3 Umphathi Wokuqoqwa Okugelezayo

443 / TCP

I-HTTPS, iyadingeka ekuxhumaneni okuphephile phakathi kwezinto zikagesi

3 AmaNodi wedatha

Umphathi

443 / TCP

I-HTTPS, iyadingeka ekuxhumaneni okuphephile phakathi kwezinto zikagesi

I-NetFlow Exporters

Abaqoqi Abagelezayo - NetFlow

2055/UDP

Ukufakwa kwe-NetFlow

5 AmaNodi wedatha

wonke amanye amaNode eDatha

4803 / TCP

isevisi yemiyalezo ye-inter-Data Node

6 Inombolo yedatha

wonke amanye amaDatha

4803/UDP inter-Data Node imiyalezo

- 41 -

1. Ilungiselela I-Firewall Yakho Yezokuxhumana

Ama-Nodes

isevisi

7 AmaNodi wedatha

wonke amanye amaNode eDatha

4804/UDP

isevisi yemiyalezo ye-inter-Data Node

Umphathi, Abaqoqi be-Flow 8, kanye namaNodi wedatha
AmaNode Edatha

5433/TCP Vertica iklayenti uxhumano

9 Inombolo yedatha

yonke enye i-Data Node

5433/UDP

Ukuqapha isevisi yemiyalezo ye-Vertica

I-sFlow Exporters

I-Flow Collector (sFlow)

11 AmaNodi wedatha

wonke amanye amaNode eDatha

6343/UDP sFlow ukungenisa

6543/UDP

isevisi yemiyalezo ye-inter-Data Node

Izimbobo Zokuxhumana Ongazikhethela
Ithebula elilandelayo elokucushwa kokuzikhethela okunqunywa izidingo zakho zenethiwekhi:

Kusuka (Iklayenti) Kuya (Iseva)

Itheku

Iphrothokholi

Zonke izinto zikagesi User PC

I-TCP/22 SSH

Umphathi

Izinhlelo zokuphatha imicimbi yeqembu lesithathu UDP/3 SNMP-trap

Umphathi

Amasistimu okuphatha imicimbi yenkampani yangaphandle UDP/3 SYSLOG

Umphathi

Isango le-imeyili

I-TCP/25 SMTP

Umphathi

Okuphakelayo Okusongelayo

I-TCP/443 SSL

I-PC yomsebenzisi

Zonke izinto zikagesi

I-TCP/22 SSH

- 42 -

1. Ilungiselela I-Firewall Yakho Yezokuxhumana
Vikela Ukuthunyelwa Kwezibalo Zenethiwekhi Example
Umdwebo olandelayo ubonisa ukuxhumana okuhlukahlukene okusetshenziswe i-Secure Network Analytics. Amanye alawa machweba angokuzithandela.

- 43 -

1. Ilungiselela I-Firewall Yakho Yezokuxhumana
Vikela Ukuthunyelwa Kwezibalo Zenethiwekhi ngeSitolo Sedatha Example
Njengoba kuboniswe esibalweni esingezansi, ungakwazi ukuphakela ngobuchule izinto zikagesi ze-Secure Network Analytics ukuze unikeze ukumbozwa okuphelele kwamasegimenti angukhiye wenethiwekhi kuyo yonke inethiwekhi, kungaba kunethiwekhi yangaphakathi, kumjikelezo, noma ku-DMZ.

- 44 -

2. Ilanda Ukufakwa Kwe-Virtual Edition Files

2. Ilanda Ukufakwa Kwe-Virtual Edition Files
Sebenzisa le miyalo elandelayo ukulanda i-ISO files yokufaka umshini wakho obonakalayo.
Ukufakwa Files

Umshini Obonakalayo 3a. I-VMware vCenter

Ukufakwa Komshini File

Imininingwane

ISO

Ukufaka izinto zakho zikagesi ezibonakalayo usebenzisa i-VMware vCenter.

3b. Iseva ye-VMware ESXi Stand-Alone

ISO

3c. I-KVM kanye ne-Virtual Machine Manager

ISO

Ukufaka izinto zakho zikagesi ezibonakalayo kuseva ebamba yodwa ye-ESXi.
Ukufaka izinto zakho zikagesi ezibonakalayo usebenzisa i-KVM kanye ne-Virtual Machine Manager.

1. Ngena ngemvume ku-Cisco Software Central
1. Ngena ngemvume ku-Cisco Software Central kokuthi https://software.cisco.com. 2. Esigabeni esithi Landa bese uphatha > Landa futhi uthuthukise, khetha okuthi Finyelela
okulandwayo. 3. Skrolela phansi uze ubone indawo ethi Khetha Umkhiqizo. 4. Ungakwazi ukufinyelela Secure Network Analytics files ngezindlela ezimbili:

l Sesha Ngegama: Thayipha Izibalo Zenethiwekhi Ezivikelekile kunkambu ethi Khetha Umkhiqizo. Cindezela u-Enter.
l Sesha ngeMenu: Chofoza Phequlula Konke. Khetha Ezokuphepha > Ukubonakala Kwenethiwekhi Nokwehlukaniswa > Vikela Izibalo (Iwashi Le-Stealth).

- 45 -

2. Ilanda Ukufakwa Kwe-Virtual Edition Files
2. Landa Files
1. Khetha uhlobo lukagesi. l Vikela I-Network Analytics Umphathi Obonakalayo l Vikela I-Network Analytics Flow Collector l Vikela Inethiwekhi I-Virtual Flow Sensor l Secure Network Analytics Virtual Umqondisi we-UDP l Secure Network Analytics Virtual Data Store
2. Khetha Isofthiwe Yesistimu Yokuhlaziya Inethiwekhi. 3. Kukholomu Ekhishiwe Kwakamuva, khetha 7.4.2 (noma inguqulo engu-7.4.x oyiyo
iyafaka). 4. Landa: Thola ukufakwa kwe-ISO file. Chofoza isithonjana sokulanda noma Engeza ekalishini
isithonjana. 5. Phinda le miyalelo ukuze ulande i files kuhlobo ngalunye lukagesi.

- 46 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
Kuphelileview
Sebenzisa le miyalelo elandelayo ukuze ufake izinto zakho zikagesi ezibonakalayo usebenzisa i-VMware vCenter. Ukuze usebenzise enye indlela, bheka okulandelayo:
l Iseva Ezimele Ye-VMware ESXi: Sebenzisa i-3b. Ukufaka I-Virtual Appliance Kuseva ye-ESXi Stand-Alone (ISO).
l KVM: Sebenzisa i-3c. Ukufaka i-Virtual Appliance kumsingathi we-KVM (ISO).
I-Secure Network Analytics v7.4.2 ihambisana ne-VMware 7.0 noma i-8.0. Asisekeli i-VMware 6.0, 6.5 ,noma i-6.7 ene-Secure Network Analytics v7.4.x. Ukuze uthole ulwazi olwengeziwe, bheka imibhalo ye-VMware ye-vSphere 6.0, 6.5, kanye no-6.7 Ukuphela Kosekelo Olujwayelekile.
Ngaphambi kokuthi Uqale
Ngaphambi kokuba uqale ukufaka, qedela lezi zinqubo ezilandelayo zokulungiselela:
1. Ukuhambisana: Review izidingo zokuhambisana kokuthi Ukuhambisana. 2. Izidingo Zensiza: Review ingxenye Yezimfuneko Zensiza ukuze
nquma izabelo ezidingekayo zomshini. Ungasebenzisa iphuli yezinsiza noma enye indlela ukwaba izinsiza. 3. I-Firewall: Lungiselela i-firewall yakho yezokuxhumana. Bheka 1. Ukulungiselela I-Firewall Yakho Yezokuxhumana. 4. Files: Landa isisetshenziswa sikagesi se-ISO files. Bheka 2. Ukulanda Ukufakwa Kwe-Virtual Edition Files ukuze uthole imiyalelo. 5. Isikhathi: Qinisekisa isikhathi esisethwe kumsingathi we-hypervisor endaweni yakho ye-VMware (lapho uzobe ufaka khona into esetshenziswayo ebonakalayo) sibonisa isikhathi esifanele. Uma kungenjalo, izinto zikagesi ezibonakalayo zingase zingakwazi ukuqalisa.
Ungafaki umshini ophathekayo ongathenjwa noma obonakalayo kuqoqo/isistimu efanayo njengezinto zikagesi ze-Secure Network Analytics.
Ungafaki Amathuluzi e-VMware kusisetshenziswa esibonakalayo se-Secure Network Analytics ngoba sizobhala inguqulo yangokwezifiso esivele ifakiwe. Ukwenza kanjalo kungenza into esetshenziswayo ebonakalayo ingasebenzi futhi idinga ukufakwa kabusha.

- 47 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
Ukufaka I-Virtual Appliance Esebenzisa i-vCenter (ISO)
Uma une-VMware vCenter (noma efanayo), sebenzisa le miyalo elandelayo ukufaka umshini obonakalayo usebenzisa i-ISO. Uma usebenzisa ama-Data Node noma Izinzwa Ezigelezayo, qiniseka ukuthi ugcwalisa zonke izinqubo ezidingekayo.
AmaNode Edatha
Qedela izinqubo ezilandelayo:
1. Ukulungiselela i-LAN Eyodwa Yokuxhumana KwamaNodi Aphakathi Kwedatha. 3. Ukufaka I-Virtual Appliance. Uma ufaka i-virtual ye-Data Node, udinga futhi ukufaka ama-adaptha enethiwekhi amabili.
Izinzwa zokugeleza
Qedela izinqubo ezilandelayo:
2. Ukulungisa Inzwa Egelezayo ukuze Kuqaphe Ukuhamba Kwethrafikhi 3. Ukufaka Isisetshenziswa Esibonakalayo 4. Ukuchaza Izimbobo Ezengeziwe Zokuqapha (Izinzwa Ezigelezayo kuphela)
Zonke Ezinye Izisetshenziswa
Uma into esetshenziswayo kungeyona i-Data Node noma i-Flow Sensor, qedela le nqubo elandelayo:
3. Ukufaka I-Virtual Appliance
Amanye amamenyu nezithombe zingahluka kulwazi oluboniswe lapha. Sicela ubheke umhlahlandlela wakho we-VMware ngemininingwane ehlobene nesoftware.

- 48 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
1. Ukulungiselela i-LAN Eyodwa Yokuxhumana KwamaNodi Aphakathi Kwedatha
Uma usebenzisa i-Virtual Nodes Virtual Edition kunethiwekhi yakho, lungiselela i-LAN engayodwa ngoshintsho olubonakalayo ukuze amaNodes eDatha akwazi ukuxhumana wodwa nge-eth1 ekuxhumaneni kwe-inter-Data Node. Kunezinketho ezimbili zokumisa amaswishi:
l Ilungiselela Ukushintsha Okujwayelekile kwe-vSphere
l Ilungiselela I-vSphere Distributed Switch
Ilungiselela Ukushintsha Okujwayelekile kwe-vSphere
1. Ngena endaweni yakho yokusingatha i-VMware. 2. Landela i-VMware Dala i-vSphere Standard Switch imibhalo ye
ilungiselela i-vSphere Standard Switch. Qaphela ukuthi esinyathelweni sesi-4, uzofuna ukukhetha i-Virtual Machine Port Group ukuze uthole inketho yokushintsha okujwayelekile. 3. Iya kokuthi 3. Ukufaka I-Virtual Appliance.
Ilungiselela i-vSphere Distributed Switch
1. Ngena endaweni yakho yokusingatha i-VMware. 2. Landela i-VMware Dala idokhumenti ye-vSphere Distributed Switch ye
ilungiselela I-vSphere Distributed Switch. Qaphela ukuthi ngenani lama-uplink esinyathelweni sesi-5a, kunesidingo sokungenani kokuxhumanisa oku-1, nokho akudingekile ukulungisa i-uplink ngaphandle kokuthi usabalalisa amanodi kubabuthi abaningi. Uma udinga ukusabalalisa ama-node kubo bonke ababungazi abaningi, xhumana nosekelo lwe-Cisco ukuze uthole usizo. 3. Iya kokuthi 3. Ukufaka I-Virtual Appliance.
2. Ilungiselela inzwa yokugeleza ukuze igade ithrafikhi
I-Flow Sensor Virtual Edition inamandla okunikeza ukubonakala ezindaweni ze-VMware, ikhiqiza idatha yokugeleza yezindawo ezingavunyelwe ukugeleza. Njengomshini wokusebenza obonakalayo ofakwe ngaphakathi komsingathi ngamunye we-hypervisor, i-Flow Sensor Virtual Edition ithwebula nje ozimele be-Ethernet kusuka kumsingathi we-vSwitch, futhi ibheka futhi idale amarekhodi okugeleza aqukethe izibalo zeseshini ezibalulekile eziphathelene namapheya ezingxoxo, izilinganiso zebhithi, namazinga ephakethe.
Uzodinga ukufaka Inzwa Egelezayo kumsingathi ngamunye ngaphakathi kwendawo ofuna ukuyiqapha.
Sebenzisa imiyalo elandelayo ukuze ulungiselele i-Flow Sensor Virtual Edition ukuze ugade ithrafikhi ku-vSwitch kanje:

- 49 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
l Ukuqapha i-vSwitch Ngabasingathi Abaningi l Ukuqapha i-vSwitch Ngosokhaya Oyedwa
Ukuqapha ithrafikhi yangaphandle nge-PCI Pass-Through
Ungaphinda ulungiselele i-Flow Sensor Virtual Edition yakho ukuze igadwe ngokuqondile inethiwekhi usebenzisa i-PCI pass-through ethobelayo.
l Izidingo: i-igb/ixgbe iyahambisana noma i-e1000e ethobela i-PCI yokudlula. l Ulwazi Lwensiza: Bheka Kuhlelo Olubonakalayo Lwenzwa Egelezayo. l Ukuhlanganisa: Bheka 1. Ukulungiselela I-Firewall Yakho Yezokuxhumana. l Imiyalelo: Ukwengeza izixhumanisi zenethiwekhi ye-PCI kuHlelo Olubonakalayo Lwenzwa Egelezayo, bheka
kumadokhumenti akho e-VMware.

- 50 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
Ukuqapha i-vSwitch Ngabasingathi Abaningi
Sebenzisa imiyalelo ekulesi sigaba ukuze usebenzise i-Flow Sensor Virtual Edition ukuze ugade ithrafikhi ku-vSwitch Esatshalalisiwe ehlanganisa abasingathi abaningi be-VM noma amaqoqo. Lesi sigaba sisebenza kuphela kumanethiwekhi e-VDS. Uma inethiwekhi yakho isendaweni okungeyona eye-VDS, hamba kokuthi Ukuqapha i-vSwitch Ngosokhaya Oyedwa.
Izidingo zokucushwa
Uzodinga ukufaka Inzwa Egelezayo kumsingathi ngamunye ngaphakathi kwendawo ofuna ukuyiqapha. Lokhu kulungiselelwa kunezidingo ezilandelayo: l Imbobo Ebonakalayo Esabalalisiwe (i-dvPort): Engeza iqembu le-dvPort elinezilungiselelo ezilungile ze-VLAN ze-VDS ngayinye ezoqapha i-Flow Sensor Virtual Edition. Uma i-Flow Sensor Virtual Edition iqapha kokubili ithrafikhi ye-VLAN nengeyona eye-VLAN kunethiwekhi, udinga ukudala amaqembu amabili e-dvPort, elilodwa lohlobo ngalunye. l Isihlonzi se-VLAN: Uma indawo okuyo isebenzisa i-VLAN (ngaphandle kwe-VLAN trunking noma i-VLAN yangasese), udinga isihlonzi se-VLAN ukuze uqedele le nqubo. l Imodi Yokuziphatha Okuxekethile: Inikwe amandla. l Imbobo Engcolile: Ilungiselelwe ku-vSwitch. Qedela lezi zinyathelo ezilandelayo ukuze ulungise inethiwekhi usebenzisa i-VDS: 1. Chofoza uphawu Lwenethiwekhi.
2. Esihlahleni se-Networking, chofoza kwesokudla i-VDS. 3. Khetha Iqembu Lembobo Esatshalaliswa > Iqembu Lembobo Entsha Esatshalalisiwe.

- 51 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
4. Sebenzisa ibhokisi lengxoxo le-New Distributed Port Group ukuze ulungiselele iqembu lembobo, kuhlanganise nokucaciswa kwezinyathelo ezilandelayo.
5. Khetha Igama Nendawo: Enkambini Yegama, faka igama ukuze uhlonze leli qembu le-dvPort.
6. Lungiselela Izilungiselelo: Kunkambu Yenombolo Yezimbobo, faka inombolo ye-Flow Sensor Virtual Editions kuqoqo lakho labasingathi.

7. Chofoza uhlu lokudonsela phansi lohlobo lwe-VLAN.
l Uma indawo okuyo ingasebenzisi i-VLAN, khetha Akukho. l Uma indawo yakho isebenzisa i-VLAN, khetha uhlobo lwe-VLAN. Ilungiselele njenge
kuyalandela:

I-VLAN

Uhlobo lwe-VLAN

Imininingwane Enkambini ye-VLAN ID, faka inombolo

- 52 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)

I-VLAN Trunking Private VLAN

(phakathi kuka-1 no-4094) okufana nesihlonzi.
Emkhakheni we-VLAN trunk range, faka u-0-4094 ukuze ugade yonke ithrafikhi ye-VLAN.
Khetha Okungazinzile ohlwini lokudonsela phansi.

8. Isilungele Ukuqedwa: Review izilungiselelo zokumisa. Chofoza okuthi Qeda. 9. Esihlahleni seNethiwekhi, chofoza kwesokudla iqembu elisha le-dvPort. Khetha Hlela Izilungiselelo. 10. Khetha Ezokuphepha. 11. Chofoza uhlu lokudonsela phansi lweModi Yokuziphatha Okuxekethile. Khetha Yamukela.

12. Chofoza okuthi KULUNGILE ukuvala ibhokisi lengxoxo. 13. Ingabe i-Flow Sensor Virtual Edition iqapha kokubili inethiwekhi ye-VLAN nengeyona eye-VLAN
traffic?
l Uma kunjalo, phinda izinyathelo kulesi sigaba Ukuqapha i-vSwitch Ngabasingathi Abaningi.
l Uma cha, qhubekela esinyathelweni esilandelayo.
14. Ingabe ikhona enye i-VDS endaweni ye-VMware ezoqapha i-Flow Sensor Virtual Edition?
l Uma kunjalo, phinda izinyathelo kulesi sigaba Ukuqapha i-vSwitch Ngabasingathi Abaningi ku-VDS elandelayo.
15. Iya kokuthi 3. Ukufaka I-Virtual Appliance.

- 53 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
Ukwengamela i-vSwitch Ngosokhaya Oyedwa
Sebenzisa imiyalelo ekulesi sigaba ukuze usebenzise i-Flow Sensor Virtual Edition ukuze ugade ithrafikhi ku-vSwitch ngomsingathi oyedwa.
Lesi sigaba sisebenza kuphela kumanethiwekhi okungewona awe-VDS. Uma inethiwekhi yakho isebenzisa i-VDS, hamba kokuthi Ukuqapha i-vSwitch Ngabasingathi Abaningi.
Izidingo zokucushwa
Lokhu kulungiselelwa kunalezi zidingo ezilandelayo: l Iqembu Lembobo Yokuziphatha Okuxekethile: Engeza iqembu lembobo yokuziphatha okuxekethile kuswishi ngayinye ebonakalayo ezoqashwa yi-Flow Sensor Virtual Edition. l Imodi Yokuziphatha Okuxekethile: Inikwe amandla. l Imbobo Engcolile: Ilungiselelwe ku-vSwitch.
Lungiselela Iqembu Lembobo libe Imodi Yokuziphatha Okuxekethile
Sebenzisa le miyalelo elandelayo ukuze wengeze iqembu lembobo, noma uhlele iqembu lembobo, futhi ulimise kokuthi Okungazinzile.
1. Ngena ngemvume ku-VMware ESXi host yakho imvelo. 2. Chofoza Inethiwekhi.

3. Khetha ithebhu yamaqembu e-Port. 4. Ungakha iqembu elisha lembobo noma uhlele iqembu lembobo.
© 2023 Cisco Systems, Inc. kanye/noma amanxusa ayo. Wonke Amalungelo Agodliwe.

- 54 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)

l Dala Iqembu Lechweba: Chofoza okuthi Faka iqembu lembobo. l Hlela Iqembu Lechweba: Khetha iqembu lembobo. Chofoza Hlela izilungiselelo.
5. Sebenzisa ibhokisi lengxoxo ukuze ulungiselele iqembu lembobo. Lungiselela i-VLAN ID noma i-VLAN Trunking:

Uhlobo lwe-VLAN I-VLAN ID VLAN Trunking

Imininingwane
Sebenzisa i-VLAN ID ukuze ucacise i-VLAN eyodwa. Kunkambu ye-VLAN ID, faka inombolo (phakathi kuka-1 no-4094) efana nesihlonzi.
Sebenzisa i-VLAN Trunking ukuqapha yonke ithrafikhi ye-VLAN. Ububanzi buzenzekela ku-0-4095.

6. Chofoza umcibisholo Wokuvikela.

7. Imodi Yokuziphatha Okuxekethile: Khetha okuthi Yamukela.

- 55 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
8. Ingabe i-Flow Sensor Virtual Edition izoqapha enye inkinobho ebonakalayo kule ndawo ye-VMware?
Uma kunjalo, buyela emuva kokuthi 2. Ilungiselela inzwa yokugeleza ukuze igade ithrafikhi, bese uphinda zonke izinyathelo zeswishi elandelayo ebonakalayo.
9. Iya kokuthi 3. Ukufaka I-Virtual Appliance

- 56 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
3. Ukufaka I-Virtual Appliance
Sebenzisa le miyalelo elandelayo ukuze ufake into esetshenziswayo ebonakalayo kumsingathi wakho we-hypervisor futhi uchaze ukuphathwa kwezinto ezibonakalayo nezimbobo zokuqapha.
Amanye amamenyu nezithombe zingahluka kulwazi oluboniswe lapha. Sicela ubheke umhlahlandlela wakho we-VMware ngemininingwane ehlobene nesoftware.
1. Ngena ngemvume ku-VMware yakho Web Iklayenti. 2. Thola isofthiwe yezinto zikagesi ezibonakalayo file (ISO) oyilande ku-Cisco
I-Software Central. 3. Yenza i-ISO itholakale ku-vCenter. Unezinketho ezilandelayo:
l Layisha i-ISO kudatha ye-vCenter. l Faka i-ISO kumtapo wolwazi wokuqukethwe. l Gcina i-ISO endaweni yangakini yokusebenzela, futhi ulungiselele ukuthunyelwa kokuthi
ireferensi ukuthi file. Bona imibhalo ye-VMware ukuze uthole ulwazi olwengeziwe. 4. Ku-vCenter UI, khetha u-Imenu > Abasingathi namaCluster. 5. Kufasitelana lokuzulazula, chofoza kwesokudla iqoqo noma usokhaya bese ukhetha Umshini Obonakalayo Omusha... ukuze ufinyelele Iwizadi Yomshini Omusha Obonakalayo. 6. Kusuka kokuthi Khetha iwindi lohlobo lwendalo, khetha Dala umshini omusha we-virtual, bese uchofoza Okulandelayo.

- 57 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
7. Kusuka ethi Khetha igama nefolda iwindi, faka igama lomshini obonakalayo, khetha indawo yomshini we-virtual, bese uchofoza Okulandelayo.
8. Kusuka kokuthi Khetha iwindi lensiza yekhompyutha, khetha iqoqo, umsingathi, iphuli yezinsiza, noma i-vApp lapho uzothumela khona into esetshenziswayo, bese uchofoza Okulandelayo.

9. Kusuka ewindini elithi Khetha isitoreji, khetha Inqubomgomo Yesitoreji se-VM ekudonseleni phansi, bese ukhetha indawo yokugcina, bese uchofoza Okulandelayo.

- 58 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)

10. Kusuka efasiteleni elithi Khetha ukuhambisana, khetha inguqulo yomshini obonakalayo kokuthi Ihambisana nokudonsela phansi, ngokusekelwe enguqulweni yakho yamanje ye-ESXi. Okwesiboneloample, isithombe-skrini esilandelayo sibonisa i-ESXi 7.0 futhi kamuva ngoba i-ESXi 7.0 isetshenzisiwe. Chofoza Okulandelayo.

11. Kusikrini esithi Khetha i-OS yesivakashi, khetha I-Linux Guest OS Family kanye ne-Debian GNU/Linux 11 (64-bit) Guest OS Version. Chofoza Okulandelayo.

- 59 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
12. Kusukela efasiteleni le-Enza ngendlela oyifisayo ihadiwe, lungiselela ihadiwe ebonakalayo. Bheka Izimfuneko Zensiza ukuze uthole izincomo ezithile zohlobo lwesisetshenziswa sakho. Lesi sinyathelo sibalulekile ekusebenzeni kwesistimu. Uma ukhetha ukusebenzisa izinto zikagesi ze-Cisco Secure Network Analytics ngaphandle kwezinsiza ezidingekayo, uthatha isibopho sokuqapha eduze ukusetshenziswa kwesisetshenziswa sakho nokwandisa izinsiza njengoba kudingeka ukuze uqinisekise impilo efanele kanye nomsebenzi wokuphakelwa.

- 60 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)

Ngokungeziwe kuzimfuneko zensiza, qiniseka ukuthi izilungiselelo ezilandelayo zikhethiwe:
l Chofoza i-New Hard disk ukuze wandise izinketho zokumisa. Khetha Thick Provision Lazy Zeroed kusukela kokudonsela phansi kweDisk Provisioning.
l Chofoza isilawuli esisha se-SCSI ukuze unwebe izinketho zokumisa. Khetha i-LSI Logic SAS kokudonsela phansi kohlobo lokushintsha. Uma ungakhethi i-LSI Logic SAS, isisetshenziswa sakho esibonakalayo singase sehluleke ukusebenzisa kahle.
l Esikhaleni seDrayivu Entsha ye-CD/DVD, khetha indawo ye-ISO ngokusekelwe lapho ugcine khona i-ISO. Chofoza IDrayivu Entsha ye-CD/DVD ukuze unwebe izinketho zokumisa. Hlola okuthi Xhuma Kumandla Avuliwe.
l Uma into esetshenziswayo iyinzwa yokugeleza, futhi ulungiselela ukudlula okungu-10 Gbps ku-NIC, chofoza i-CPU ukuze unwebe izinketho zokumisa. Lungiselela wonke ama-Cores ngesokhethi ukuze wonke ama-CPU abe esokhethini elilodwa.
13. Ama-Data Node: Uma usebenzisa into esebenzayo ye-Data Node, yengeza ne-adaptha yesibili yenethiwekhi.
Chofoza okuthi Engeza Idivayisi Entsha, bese ukhetha I-adaptha Yenethiwekhi bese uqinisekisa ukuthi Uhlobo Lwe-adaptha yi-VMXNET3.

- 61 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
l Nge-adaptha yenethiwekhi yokuqala, khetha iswishi ezovumela i-Virtual Node Edition yeDatha ukuthi ixhumane kunethiwekhi yomphakathi nezinye izinto zikagesi.
l Kweyesibili i-adaptha yenethiwekhi, khetha iswishi oyidalile ku-1. Ukulungisa I-Isolated LAN yokuxhumana kwe-inter-Data Node Communications okuzovumela i-Virtual Edition ye-Data Node ukuthi ixhumane kunethiwekhi yangasese namanye amaNode eDatha.
Qinisekisa ukuthi uwabela kahle ama-adaptha enethiwekhi kanye nokushintsha okubonakalayo kwayo yonke iNodi Yedatha ekusetshenzisweni kwakho njengoba uphakela i-Data Node ngayinye.

- 62 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
14. Ukusuka kokuthi Ukulungele ukuqedela iwindi, kabushaview izilungiselelo zakho, bese uchofoza okuthi Qeda.

15. Ukuthunyelwa kuqala uma uchofoza isithonjana sokuvula amandla. Gada inqubekelaphambili yokuthunyelwa esigabeni Semisebenzi Yakamuva. Qiniseka ukuthi ukuthunyelwa kuqediwe futhi kuboniswe esihlahleni se-Inventory ngaphambi kokuya ezinyathelweni ezilandelayo.
16. Izinyathelo Ezilandelayo:
l Izinzwa Ezigelezayo: Uma into esetshenziswayo iyinzwa Egelezayo futhi izobe iqapha ukushintshwa okubonakalayo okungaphezu kweyodwa endaweni ye-VMware, noma i-VDS engaphezu kweyodwa kuqoqo, qhubeka nesigaba 4 esilandelayo. Ukuchaza Izimbobo Ezengeziwe Zokuqapha (Izinzwa Ezigelezayo kuphela) .
l Zonke Ezinye Izinto: Phinda zonke izinqubo ezikulesi sigaba 3. Ukufaka Umshini Osebenza Kagesi Obonakalayo ukuze kusetshenziswe omunye umshini obonakalayo.
17. Uma usuqedile ukufaka zonke izinto ezisetshenziswayo ezibonakalayo kusistimu yakho, hamba kokuthi 4. Ukulungiselela Uhlelo Lwakho Oluvikelekile Lwezibalo Zenethiwekhi.

- 63 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
4. Ukuchaza Izimbobo Ezengeziwe Zokuqapha (Izinzwa Ezigelezayo kuphela)
Le nqubo iyadingeka uma i-Flow Sensor Virtual Edition izobe iqapha ukushintshwa okubonakalayo okungaphezu kweyodwa endaweni ye-VMware noma i-VDS engaphezu kweyodwa kuqoqo.
Uma lokhu kungekona ukucushwa kokuqapha Kwenzwa yakho Egelezayo, awudingi ukuqedela le nqubo. Ukuze ungeze izimbobo zokuqapha i-Flow Sensor Virtual Edition, qedela lezi zinyathelo ezilandelayo: 1. Esihlahleni Sokusungula, chofoza kwesokudla I-Flow Sensor Virtual Edition. Khetha Hlela izilungiselelo.

2. Sebenzisa ibhokisi lengxoxo elithi Hlela Izilungiselelo ukuze ulungiselele izilungiselelo ezishiwo ezilandelayo. 3. Chofoza Engeza Idivayisi Entsha. Khetha i-adaptha yenethiwekhi.

- 64 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
4. Thola i-adaptha yenethiwekhi entsha. Chofoza umcibisholo ukuze unwebe imenyu, futhi ulungiselele okulandelayo: l Inethiwekhi Entsha: Khetha iqembu lembobo elingabelwe elingabelwe. l Uhlobo Lwe-adaptha: Khetha i-VMXNET 3. l Isimo: Hlola ibhokisi elithi Xhuma kokuthi Power On.

- 65 -

3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO)
5. Ngemva kabushaviewuma ubheka izilungiselelo, chofoza u-OK. 6. Phinda le nqubo ukuze wengeze enye i-adaptha ye-Ethernet njengoba kudingeka. 7. Izinyathelo Ezilandelayo:
l Izinzwa Ezigelezayo: Ukuze ulungiselele enye inzwa yokugeleza, hamba kokuthi 2. Ilungiselela inzwa yokugeleza ukuze igade ithrafikhi.
l Zonke Ezinye Izinto: Phinda zonke izinqubo ezikulesi sigaba 3. Ukufaka Umshini Osebenza Kagesi Obonakalayo ukuze kusetshenziswe omunye umshini obonakalayo.
l Uma usuqedile ukufaka zonke izinto ezisetshenziswayo ezibonakalayo ohlelweni lwakho, hamba kokuthi 4. Ukulungisa Uhlelo Lwakho Oluvikelekile Lwezibalo Zenethiwekhi.

- 66 -

3b. Ukufaka I-Virtual Appliance kuseva ye-ESXi Stand-Alone (ISO)
3b. Ukufaka I-Virtual Appliance kuseva ye-ESXi Stand-Alone (ISO)
Kuphelileview
Sebenzisa le miyalelo elandelayo ukuze ufake izinto zakho zikagesi ezibonakalayo usebenzisa indawo ye-VMware eneseva ezimele yodwa ye-ESXi.
I-Secure Network Analytics v7.4.2 ihambisana ne-VMware v7.0 noma i-8.0. Asisekeli i-VMware v6.0, v6.5, noma i-v6.7 ene-Secure Network Analytics v7.4.x. Ukuze uthole ulwazi olwengeziwe, bheka imibhalo ye-VMware ye-vSphere 6.0, 6.5, kanye no-6.7 Ukuphela Kosekelo Olujwayelekile.
Ukuze usebenzise enye indlela, bheka okulandelayo:
l VMware vCenter: Sebenzisa 3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO) .
l KVM: Sebenzisa i-3c. Ukufaka i-Virtual Appliance kumsingathi we-KVM (ISO).
Ngaphambi kokuthi Uqale
Ngaphambi kokuba uqale ukufaka, qedela lezi zinqubo ezilandelayo zokulungiselela:
1. Ukuhambisana: Review izidingo zokuhambisana kokuthi Ukuhambisana. 2. Izidingo Zensiza: Review ingxenye Yezimfuneko Zensiza ukuze
nquma izabelo ezidingekayo zomshini. Ungasebenzisa iphuli yezinsiza noma enye indlela ukwaba izinsiza. 3. I-Firewall: Lungiselela i-firewall yakho yezokuxhumana. Bheka 1. Ukulungiselela I-Firewall Yakho Yezokuxhumana. 4. Files: Landa isisetshenziswa sikagesi se-ISO files. Bheka 2. Ukulanda Ukufakwa Kwe-Virtual Edition Files ukuze uthole imiyalelo. 5. Isikhathi: Qinisekisa isikhathi esisethwe kumsingathi we-hypervisor endaweni yakho ye-VMware (lapho uzobe ufaka khona into esetshenziswayo ebonakalayo) sibonisa isikhathi esifanele. Uma kungenjalo, izinto zikagesi ezibonakalayo zingase zingakwazi ukuqalisa.
Ungafaki umshini ophathekayo ongathenjwa noma obonakalayo kuqoqo/isistimu efanayo njengezinto zikagesi ze-Secure Network Analytics.

- 67 -

3b. Ukufaka I-Virtual Appliance kuseva ye-ESXi Stand-Alone (ISO)
Ungafaki Amathuluzi e-VMware kusisetshenziswa esibonakalayo se-Secure Network Analytics ngoba sizobhala inguqulo yangokwezifiso esivele ifakiwe. Ukwenza kanjalo kungenza into esetshenziswayo ebonakalayo ingasebenzi futhi idinga ukufakwa kabusha.
Ukufaka I-Virtual Appliance kuseva ye-ESXi Stand-Alone (ISO)
Sebenzisa le miyalelo elandelayo ukuze ufake izinto zakho zikagesi ezibonakalayo usebenzisa indawo ye-VMware eneseva ezimele yodwa ye-ESXi.
Inqubo Iphelileview
Ukufaka into esetshenziswayo ebonakalayo kubandakanya ukuqedela izinqubo ezilandelayo, ezivezwe kulesi sahluko:
1. Ukungena ngemvume ku-VMware Web Iklayenti
2. Ukuqalisa kusuka ku-ISO
AmaNode Edatha
Uma usebenzisa ama-Data Node, landela imiyalelo esesigabeni sangaphambilini.
1. Ukungena ngemvume ku-VMware Web Iklayenti
Amanye amamenyu nezithombe zingahluka kulwazi oluboniswe lapha. Sicela ubheke umhlahlandlela wakho we-VMware ngemininingwane ehlobene nesoftware.
1. Ngena ngemvume ku-VMware Web Iklayenti. 2. Chofoza okuthi Dala/Bhalisa Umshini Obonakalayo. 3. Sebenzisa ibhokisi lengxoxo Lomshini Omusha Obonakalayo ukuze ulungiselele into esetshenziswayo njengoba kucacisiwe ku
izinyathelo ezilandelayo. 4. Khetha Uhlobo Lokudala: Khetha Dala Umshini Obonakalayo Omusha.

- 68 -

3b. Ukufaka I-Virtual Appliance kuseva ye-ESXi Stand-Alone (ISO)

5. Khetha I-OS Yegama Nesivakashi: Faka noma khetha okulandelayo: l Igama: Faka igama lezinto ezisetshenziswayo ukuze ukwazi ukuzibona kalula. l Ukuvumelana: Khetha inguqulo oyisebenzisayo (v7.0 noma 8.0). l Umndeni we-OS yesivakashi: Linux. l Inguqulo ye-Guest OS: Khetha i-Debian GNU/Linux 11 64-bit.
6. Khetha Isitoreji: Khetha isitolo sedatha esifinyelelekayo. Review Izidingo Zensiza ukuqinisekisa ukuthi unesikhala esanele.

- 69 -

3b. Ukufaka I-Virtual Appliance kuseva ye-ESXi Stand-Alone (ISO)
Review Izidingo Zensiza ukuze kwabiwe izinsiza ezanele. Lesi sinyathelo sibalulekile ekusebenzeni kwesistimu.
Uma ukhetha ukusebenzisa izinto zikagesi ze-Cisco Secure Network Analytics ngaphandle kwezinsiza ezidingekayo, uthatha isibopho sokuqapha eduze ukusetshenziswa kwesisetshenziswa sakho nokwandisa izinsiza njengoba kudingeka ukuze uqinisekise impilo efanele kanye nomsebenzi wokuphakelwa.
7. Enza ngendlela oyifisayo Izilungiselelo: Faka noma khetha izidingo zakho zikagesi (bheka Izimfuneko Zensiza ukuze uthole imininingwane).
Qiniseka ukuthi ukhetha okulandelayo:
l I-SCSI Controller: LSI Logic SAS l I-adaptha Yenethiwekhi: Qinisekisa ikheli lokuphatha lezinto ezisetshenziswayo. l I-Hard Disk: I-Thick Provisioning Lazy Zeroed
Uma into esetshenziswayo iyinzwa yokugeleza, ungachofoza okuthi Engeza i-adaptha yenethiwekhi ukuze wengeze okunye ukuphathwa noma isixhumi esibonakalayo sezinzwa. Uma into esetshenziswayo iyinzwa yokugeleza, futhi ulungiselela ukudlula okungu-10 Gbps ku-NIC, chofoza i-CPU ukuze unwebe izinketho zokumisa. Lungiselela wonke ama-CPU esokhethi eyodwa. Uma into esetshenziswayo iyiNodi Yedatha, engeza esinye isixhumi esibonakalayo senethiwekhi ukuze uvumele ukuxhumana kwe-interData Node. Chofoza Engeza i-adaptha yenethiwekhi.
l Nge-adaptha yenethiwekhi yokuqala, khetha iswishi ezovumela i-Virtual Node Edition yeDatha ukuthi ixhumane kunethiwekhi yomphakathi nezinye izinto zikagesi.
l Kweyesibili i-adaptha yenethiwekhi, khetha iswishi oyidalile ku-1. Ukulungisa I-Isolated LAN yokuxhumana kwe-inter-Data Node Communications okuzovumela i-Virtual Edition ye-Data Node ukuthi ixhumane kunethiwekhi yangasese namanye amaNode eDatha.

- 70 -

3b. Ukufaka I-Virtual Appliance kuseva ye-ESXi Stand-Alone (ISO)

8. Chofoza umcibisholo eduze kwe-adaptha Yenethiwekhi. 9. Ngohlobo lwe-adaptha, khetha i-VMXnet3.
Nakuba i-Cisco isekela ukusetshenziswa kwe-E1000 (1G dvSwitch), 1G PCI-passthrough, kanye ne-VMXNET 3 interfaces, i-Cisco incoma ngokuqinile ukuthi usebenzise isixhumi esibonakalayo se-VMXNET3 njengoba kufakazelwe ukunikeza ukusebenza kwenethiwekhi okungcono kakhulu kwemishini ebonakalayo ye-Cisco.
10. Review izilungiselelo zakho zokumisa futhi uqinisekise ukuthi zilungile.
11. Chofoza okuthi Qeda. Kudalwa isiqukathi somshini obonakalayo.
2. Ukuqalisa kusuka ku-ISO
1. Vula ikhonsoli ye-VMware. 2. Xhuma i-ISO emshinini omusha we-virtual. Bheka kumhlahlandlela we-VMware ukuze uthole imininingwane. 3. Qalisa umshini we-virtual kusuka ku-ISO. Isebenzisa isifaki bese iqalisa kabusha ngokuzenzakalelayo. 4. Uma ukufakwa nokuqalisa kabusha sekuqediwe, uzobona umyalo wokungena.

- 71 -

3b. Ukufaka I-Virtual Appliance kuseva ye-ESXi Stand-Alone (ISO)

5. Nqamula i-ISO emshinini wokubuka. 6. Phinda zonke izinqubo ku-3b. Ukufaka i-Virtual Appliance ku-ESXi
Iseva Ezimele Zodwa (ISO) yohlelo lokusebenza olulandelayo. 7. Izinzwa zokugeleza: Uma into esebenza njengenzwa yokugeleza, qedela ukusetha usebenzisa eyedlule.
izingxenye zaleli bhukwana:
l 2. Ukulungisa inzwa yokugeleza ukuze ugade ithrafikhi (sebenzisa Ukuqapha i-vSwitch Ngosokhaya Oyedwa)
l Uma Inzwa Egelezayo izobe iqapha amaswishi angaphezu kweyodwa ebonakalayo endaweni ye-VMware, noma i-VDS engaphezu kweyodwa kuqoqo, iya kokuthi 4. Ukuchaza Izimbobo Ezengeziwe Zokuqapha (Izinzwa Ezigelezayo kuphela).
8. Uma usuqedile ukufaka zonke izinto ezisetshenziswayo ezibonakalayo kusistimu yakho, hamba kokuthi 4. Ukulungisa Uhlelo Lwakho Oluvikelekile Lwezibalo Zenethiwekhi.

- 72 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
Kuphelileview
Sebenzisa le miyalelo elandelayo ukuze ufake izinto zakho zikagesi ezibonakalayo usebenzisa i-KVM kanye ne-Virtual Machine Manager. Ukuze usebenzise enye indlela, bheka okulandelayo:
l VMware vCenter: Sebenzisa 3a. Ukufaka i-Virtual Appliance usebenzisa i-VMware vCenter (ISO) .
l Iseva Ezimele Ye-VMware ESXi: Sebenzisa i-3b. Ukufaka I-Virtual Appliance Kuseva ye-ESXi Stand-Alone (ISO).
I-Linux KVM ihloliwe futhi yaqinisekiswa ezinguqulweni eziningi ze-KVM host. Bheka ku-KVM ukuze uthole uhlu olunemininingwane yezingxenye ze-KVM esizihlolile futhi saqinisekisa izinguqulo ze-Secure Network Analytics 7.3.1 nangaphezulu.
Ngaphambi kokuthi Uqale
Ngaphambi kokuthi uqale ukufaka, qiniseka ukuthi ugcwalise lezi zinqubo ezilandelayo:
1. Ukuhambisana: Review izidingo zokuhambisana kokuthi Ukuhambisana. 2. Izidingo Zensiza: Review ingxenye Yezimfuneko Zensiza ukuze
nquma izabelo ezidingekayo zomshini. Ungasebenzisa iphuli yezinsiza noma enye indlela ukwaba izinsiza. 3. I-Firewall: Lungiselela i-firewall yakho yezokuxhumana. Bheka 1. Ukulungiselela I-Firewall Yakho Yezokuxhumana. 4. Files: Landa isisetshenziswa sikagesi se-ISO files bese uwakopishela kufolda kumsingathi we-KVM. Sisebenzisa ifolda elandelayo ku-example enikeziwe kulesi sigaba: var/lib/libvirt/image. Bheka 2. Ukulanda Ukufakwa Kwe-Virtual Edition Files ukuze uthole imiyalelo. 5. Isikhathi: Qinisekisa isikhathi esisethwe kumsingathi we-hypervisor endaweni yakho ye-VMware (lapho uzobe ufaka khona into esetshenziswayo ebonakalayo) sibonisa isikhathi esifanele. Uma kungenjalo, izinto zikagesi ezibonakalayo zingase zingakwazi ukuqalisa.
Ungafaki umshini ophathekayo ongathenjwa noma obonakalayo kuqoqo/isistimu efanayo njengezinto zikagesi ze-Secure Network Analytics.

- 73 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
Uma unomsingathi we-KVM, sebenzisa le miyalelo elandelayo ukuze ufake umshini obonakalayo usebenzisa i-ISO.
Inqubo Iphelileview
Ukufaka into esetshenziswayo ebonakalayo kubandakanya ukuqedela izinqubo ezilandelayo, ezivezwe kulesi sahluko:
Ilungiselela i-LAN Eyodwa Yezindawo Zedatha
1. Ukufaka I-Virtual Appliance Kusokhaya we-KVM
2. Ukwengeza i-NIC (Inodi Yedatha, Inzwa Egelezayo) kanye Nokuqapha Kwembobo Engcolile ku-vSwitch Evuliwe (Izinzwa Ezigeleza Kuphela)
Ilungiselela i-LAN Eyodwa Yezindawo Zedatha
Uma usebenzisa i-Virtual Nodes Virtual Edition kunethiwekhi yakho, lungiselela i-LAN engayodwa ngeswishi ebonakalayo ukuze amaNodi eDatha akwazi ukuxhumana wodwa nge-eth1 ekuxhumaneni kwe-inter-Data Node. Bona imibhalo yeswishi yakho ukuze uthole ulwazi olwengeziwe ekudaleni i-LAN engayodwa.
1. Ukufaka I-Virtual Appliance Kusokhaya we-KVM
Kunezindlela ezimbalwa zokufaka umshini obonakalayo kumsingathi we-KVM usebenzisa i-ISO file. Izinyathelo ezilandelayo zinikeza i-ex eyodwaample yokufaka Umphathi obonakalayo ngethuluzi le-GUI elibizwa ngokuthi Umphathi Womshini Obonakalayo osebenza ebhokisini le-Ubuntu. Ungasebenzisa noma yikuphi ukusatshalaliswa kwe-Linux okuhambisanayo. Ukuze uthole imininingwane yokuhambisana, bheka Ukuhambisana.
Ukuqapha ithrafikhi
I-Flow Sensor Virtual Edition inamandla okunikeza ukubonakala ezindaweni ze-KVM, ikhiqiza idatha yokugeleza yezindawo ezingavunyelwe ukugeleza. Njengomshini wokusebenza obonakalayo ofakwe ngaphakathi komsingathi ngamunye we-KVM, i-Flow Sensor Virtual Edition ithwebula nje ozimele be-Ethernet kuthrafikhi eyibonayo futhi idale amarekhodi agelezayo aqukethe izibalo zeseshini ezibalulekile eziphathelene namapheya ezingxoxo, izilinganiso zebhithi, namazinga ephakethe.
Izidingo zokucushwa
Lokhu kulungiselelwa kunezidingo ezilandelayo:
l Imodi Yokuziphatha Okuxekethile: Inikwe amandla. l Imbobo Engcolile: Ilungiselelwe i-vSwitch evuliwe.

- 74 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
Sincoma ukuthi usebenzise i-virt-manager 2.2.1 ukuze ufake into esetshenziswayo ebonakalayo kumsingathi we-KVM.
Ukufaka i-Virtual Appliance kumsingathi we-KVM
Ukuze ufake into esetshenziswayo ebonakalayo, futhi unike amandla i-Flow Sensor Virtual Edition ukuze igade ithrafikhi, qedela lezi zinyathelo ezilandelayo:
1. Sebenzisa Isiphathi Somshini Obonakalayo ukuze uxhume Kusokhaya we-KVM futhi ulungiselele umshini njengoba kuchazwe ezinyathelweni ezilandelayo.
2. Chofoza File > Umshini Omusha Obonakalayo.
3. Khetha i-QEMU/KVM ukuze uxhumeke, bese ukhetha Imidiya yokufaka yasendaweni (isithombe se-ISO noma i-CDROM). Chofoza Phambili.

4. Chofoza Phequlula ukuze ukhethe isithombe sikagesi.
© 2023 Cisco Systems, Inc. kanye/noma amanxusa ayo. Wonke Amalungelo Agodliwe.

- 75 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
5. Khetha i-ISO file. Chofoza okuthi Khetha Ivolumu. Qinisekisa i-ISO file ifinyeleleka Umsingathi we-KVM.
6. Susa ukukhetha ibhokisi elithi “Thola ngokuzenzakalelayo kumidiya/umthombo” wokufaka. Ngaphansi kokuthi Khetha uhlobo lwesistimu yokusebenza nenguqulo, qala ukuthayipha okuthi “Debian” bese ukhetha inketho ye-Debian 11 (debian 11) evelayo. Chofoza Phambili.

- 76 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
7. Nyusa Inkumbulo (RAM) nama-CPU enanini eliboniswe esigabeni Sezimfuneko Zensiza. Review Izidingo Zensiza ukuze kwabiwe izinsiza ezanele. Lesi sinyathelo sibalulekile ekusebenzeni kwesistimu. Uma ukhetha ukusebenzisa izinto zikagesi ze-Cisco Secure Network Analytics ngaphandle kwezinsiza ezidingekayo, uthatha isibopho sokuqapha eduze ukusetshenziswa kwesisetshenziswa sakho nokwandisa izinsiza njengoba kudingeka ukuze uqinisekise impilo efanele kanye nomsebenzi wokuphakelwa.

- 77 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
8. Khetha Dala isithombe sediski somshini we-virtual. 9. Faka inani lokulondoloza idatha elikhonjiswe kumshini osebenza kusisetshenziswa
Isigaba sezidingo. Chofoza Phambili.

Review Izidingo Zensiza ukuze kwabiwe izinsiza ezanele. Lesi sinyathelo sibalulekile ekusebenzeni kwesistimu.
Uma ukhetha ukusebenzisa izinto zikagesi ze-Cisco Secure Network Analytics ngaphandle kwezinsiza ezidingekayo, uthatha isibopho sokuqapha eduze ukusetshenziswa kwesisetshenziswa sakho nokwandisa izinsiza njengoba kudingeka ukuze uqinisekise impilo efanele kanye nomsebenzi wokuphakelwa.
10. Nikeza Igama lomshini we-virtual. Leli kuzoba igama eliboniswayo, ngakho-ke sebenzisa igama elizokusiza ukulithola kamuva.
11. Hlola ibhokisi elithi Yenza ngokwezifiso ngaphambi kokufaka ibhokisi lokuhlola. 12. Ebhokisini lokudonsela phansi lokukhetha Inethiwekhi, khetha inethiwekhi esebenzayo kanye nembobo
iqembu lokufakwa.
Ama-Data Node: Uma lena kuyi-Data Node, khetha inethiwekhi neqembu le-port elizovumela i-Data Node ukuthi ixhumane kunethiwekhi yomphakathi nezinye izinto zikagesi.

- 78 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
13. Chofoza okuthi Qeda. Imenyu yokumisa iyavuleka.

- 79 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
14. Efasiteleni lokuhamba, khetha i-NIC. 15. Ngaphansi kwe-Virtual Network Interface, khetha u-e1000 kubhokisi lokudonsela phansi lemodeli Yedivayisi.
Chofoza okuthi Faka.

16. Chofoza i-VirtIO Disk 1. 17. Ohlwini lokudonsela phansi Izinketho Ezithuthukisiwe, khetha i-SCSI kokudonsela phansi kwebhasi leDiski.
ibhokisi. Chofoza okuthi Faka. 18. Ingabe udinga ukwengeza i-NICS eyengeziwe yokuqapha izimbobo ku-Flow Sensor Virtual
Uhlelo, noma ukunika amandla ukuxhumana kwe-Inter-Data Node ku-Data Node VE?
l Uma kunjalo, yiya kokuthi 2. Yengeza i-NIC (Inodi Yedatha, Inzwa Egelezayo) kanye Nokuqapha Kwembobo Engcolile ku-vSwitch evuliwe (Izinzwa Ezigelezayo Kuphela).
l Uma cha, yiya esinyathelweni esilandelayo.
19. Chofoza okuthi Qala Ukufaka. 20. Iya kokuthi 4. Ilungiselela Uhlelo Lwakho Oluvikelekile Lwezibalo Zenethiwekhi.

- 80 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
2. Ukwengeza i-NIC (Inodi Yedatha, Inzwa Egelezayo) kanye Nokuqapha Kwembobo Engcolile ku-vSwitch Evuliwe (Izinzwa Ezigeleza Kuphela)
Ukwengeza ama-NIC engeziwe wezimbobo zokuqapha ze-Flow Sensor Virtual Edition noma i-Data Node Virtual Edition futhi ukuze uqedele ukufakwa, qedela lezi zinyathelo ezilandelayo:
1. Kumenyu yokucushwa, chofoza okuthi Engeza izingxenyekazi zekhompuyutha. Ibhokisi lengxoxo le-Engeza I-Virtual Hardware Lengxoxo liyaboniswa.

2. Efasiteleni elingakwesokunxele lokuzulazula, chofoza Inethiwekhi.
Uma lena kuyiNodi Yedatha, khetha inethiwekhi neqembu lembobo elizovumela i-Data Node ukuthi ixhumane kunethiwekhi yomphakathi nezinye izinto zikagesi.

- 81 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
3. Izinzwa Ezigelezayo: Uma lokhu kuyinzwa yokugeleza, chofoza uhlu lokudonsela phansi lwe-Portgroup ukuze ukhethe iqembu lembobo elingaziphathi kahle elingabelwe ofuna ukuliqapha. Chofoza uhlu lokudonsela phansi lwemodeli yedivayisi ukuze ukhethe i-e1000. AmaNodi Edatha: Uma lena kuyiNodi Yedatha, khetha umthombo wenethiwekhi ozovumela ukuxhumana kwe-interData Node ku-LAN engayodwa, usebenzisa ukumisa okudalwe Ekulungiseni I-Isolated I-LAN Yezindawo Zedatha.

- 82 -

3c. Ukufaka i-Virtual Appliance ku-KVM Host (ISO)
4. Chofoza okuthi Qeda. 5. Uma udinga ukwengeza enye imbobo yokuqapha, phinda le miyalo. 6. Ngemva kokwengeza zonke izimbobo zokuqapha, chofoza okuthi Qala Ukufaka.

- 83 -

4. Ilungiselela Uhlelo Lwakho Oluvikelekile Lwezibalo Zenethiwekhi

4. Ilungiselela Uhlelo Lwakho Oluvikelekile Lwezibalo Zenethiwekhi
Uma usuqedile ukufaka izinto zakho zikagesi ze-Virtual Edition kanye/noma izinto zehadiwe, usukulungele ukulungisa i-Secure Network Analytics ibe isistimu ephethwe.
Ukuze ulungiselele i-Secure Network Analytics, landela imiyalelo ekumhlahlandlela Wokucushwa Kwesistimu Ye-Secure Network Analytics v7.4.2. Lesi sinyathelo sibalulekile ekucushweni okuyimpumelelo nokuxhumana kohlelo lwakho.
Qiniseka ukuthi ulungisa izinto zakho zikagesi ngendlela ecaciswe Kumhlahlandlela Wokucushwa Kwesistimu.
Izidingo Zokucushwa Kwesistimu
Qiniseka ukuthi unokufinyelela kukhonsoli kagesi ngokusebenzisa umsingathi we-hypervisor (umsingathi womshini obonakalayo). Sebenzisa ithebula elilandelayo ukuze ulungiselele imininingwane edingekayo yesisetshenziswa ngasinye.

Isidingo sokumisa

Imininingwane

Izinto zikagesi

Ikheli le-IP

Nikeza ikheli le-IP elishintshekayo embobeni yokuphatha ye-eth0.

I-Netmask

Isango

Igama Lokusingatha

Igama lomsingathi elihlukile liyadingeka entweni ngayinye. Asikwazi ukumisa into esetshenziswayo enegama lomsingathi njengenye into. Futhi, qiniseka ukuthi igama ngalinye likasokhaya wezinto zikagesi lihlangabezana nezimfuneko ezijwayelekile ze-inthanethi zabasingathi be-inthanethi.

Igama Lesizinda

Igama lesizinda elifaneleke ngokugcwele liyadingeka kumshini ngamunye. Asikwazi ukufaka into esebenza ngesizinda esingenalutho.

- 84 -

4. Ilungiselela Uhlelo Lwakho Oluvikelekile Lwezibalo Zenethiwekhi

Amaseva e-DNS

Iseva ye-DNS yangaphakathi yokulungiswa kwegama

Amaseva e-NTP

Iseva yesikhathi sangaphakathi yokuvumelanisa phakathi kwamaseva. Kudingeka okungenani iseva engu-1 ye-NTP kumshini ngamunye.
Susa iseva ye-130.126.24.53 NTP uma isohlwini lwakho lwamaseva. Le seva yaziwa njengeyinkinga futhi ayisasekelwa ohlwini lwethu oluzenzakalelayo lwamaseva e-NTP.

Iseva Yokudlulisa Imeyili

Iseva yemeyili ye-SMTP ukuthumela izexwayiso nezaziso

I-Flow Collector Export Port

Kudingeka kubaqoqi abagelezayo kuphela. Okuzenzakalelayo kwe-NetFlow: 2055

Ikheli lasesizindeni se-inthanethi elingahambiseki ngaphakathi kwe-LAN yangasese noma i-VLAN (yokuxhumana kwe-inter-Data Node)

Iyadingeka KumaNode Edatha kuphela.
l I-Hardware eth2 noma ibhondi ye-eth2 ne-eth3. Ukudala isiteshi sembobo esiboshiwe se-LACP eth2/eth3 esifinyelela ku-20G kunika amandla ukuxhumana okusheshayo phakathi naphakathi kwamaNode eDatha, nokwengezwa okusheshayo kweNodi Yedatha noma ukumiselela Isitolo Sedatha. Qaphela ukuthi i-LACP port bonding ukuphela kwendlela yokuhlanganisa etholakalayo kuma-hardware Data Node.
l I-Virtual eth1
Ikheli lasesizindeni se-inthanethi: Ungasebenzisa ikheli le-IP elinikeziwe noma ufake inani elihlangabezana nezimfuneko ezilandelayo zokuxhumana phakathi kwe-Data Node.
l Ikheli lasesizindeni se-inthanethi elingahambiseki lisuka ku-169.254.42.0/24 CIDR block,

- 85 -

4. Ilungiselela Uhlelo Lwakho Oluvikelekile Lwezibalo Zenethiwekhi

phakathi kuka-169.254.42.2 no-169.254.42.254.
l Octets Okuqala Abathathu: 169.254.42
l I-subnet: /24
l Ukulandelana: Ukuze kube lula ukulungisa, khetha amakheli e-IP alandelanayo (afana nokuthi 169.254.42.10, 169.254.42.11, kanye 169.254.42.12).

eth0 Imbobo yokuxhuma yehadiwe

I-Netmask: I-Netmask inekhodi eqinile ukuze ithi 255.255.255.0 futhi ayikwazi ukushintshwa.
Iyadingeka ku-Secure Network Analytics nge-hardware ye-Data Store kuphela:
l Umphathi l Umqoqi Wokugeleza l AmaNodi Wedatha
eth0 Izinketho Zembobo Yokuxhuma Izingxenyekazi Zekhompyutha:
I-SFP+:

- 86 -

I-SNA Ithintana Nosekelo
I-SNA Ithintana Nosekelo
Uma udinga ukwesekwa kwezobuchwepheshe, sicela wenze okukodwa kwalokhu okulandelayo: l Xhumana ne-Cisco Partner yangakini l Xhumana ne-Cisco Support l Ukuvula icala ngo- web: http://www.cisco.com/c/en/us/support/index.html l Ukuvula icala nge-imeyili: tac@cisco.com l Ngosekelo lwefoni: 1-800-553-2447 (US) l Ngezinombolo zosekelo zomhlaba wonke: https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html

- 87 -

Ulwazi Lwelungelo Lobunikazi
I-Cisco kanye nelogo ye-Cisco yizimpawu zokuthengisa noma izimpawu zokuthengisa ezibhalisiwe ze-Cisco kanye/noma izinhlaka zayo e-US nakwamanye amazwe. Kuya view uhlu lwezimpawu zokuthengisa ze-Cisco, hamba kulokhu URL: https://www.cisco.com/go/trademarks. Izimpawu zokuthengisa zezinkampani zangaphandle ezishiwo ziyimpahla yabanikazi bazo. Ukusetshenziswa kwegama elithi uzakwethu akusho ubudlelwano bokusebenzisana phakathi kweCisco nanoma iyiphi enye inkampani. (1721R)
© 2023 Cisco Systems, Inc. kanye/noma amanxusa ayo. Wonke Amalungelo Agodliwe.

Shintsha Umlando

Inguqulo Yedokhumenti

Usuku Lokushicilela

Incazelo

1_0

Februwari 27, 2023

Uhlobo lokuqala.

1_1

Mashi 27, 2023

Kubuyekezwe ithebula leZimbobo Zokuxhumana kanye Nezinqubo.

1_2

Mashi 27, 2023

Kulungiswe iphutha.

Izincazelo ezithuthukisiwe zosekelo lwe-VMware. Kususiwe

1_3

Ephreli 20, 2023

Ithebula elithi “I-Hardware Metrics Esekelwayo” njengoba leli liwumhlahlandlela obonakalayo. Izincazelo ezithuthukisiwe zenguqulo yomsingathi we-KVM

ukusekela.

1_4

Agasti 15, 2023

Kushintshwe inothi lensiza yememori ukusuka ku-GB ukuya ku-GiB.

1_5

Ephreli 27, 2023

Kungezwe ukusekelwa kwe-VMware 8.0. Izincomo Zokuthunyelwa Ezibuyekeziwe.

Amadokhumenti / Izinsiza

I-CISCO 742 Secure Network Analytics [pdf] Umhlahlandlela wokufaka
742 Secure Network Analytics, 742, Secure Network Analytics, Network Analytics, Analytics

Izithenjwa

Imaniwali yosebenzisayo

742 Vikela Izibalo Zenethiwekhi

Ulwazi Lomkhiqizo

Imininingwane

Isingeniso

Imiyalo yokusetshenziswa komkhiqizo

Izindlela Zokufaka

Ukuhambisana

Ilanda iSoftware

Izidingo zokucushwa

Ifaka I-Virtual Appliance

FAQ

Q: Yiziphi izidingo zesistimu zokuqhuba i-Cisco
Vikela Isisetshenziswa Esibonakalayo Se-Network Analytics?

Q: Ngingalanda kanjani ukufakwa files okwe-Virtual
Isisetshenziswa se-Edishini?

Q: Yiziphi izilungiselelo zenethiwekhi ezidingekayo ku-inter-Data Node
ezokuxhumana?

Amadokhumenti / Izinsiza

Izithenjwa

Shiya amazwana

Khansela impendulo

742 Vikela Izibalo Zenethiwekhi

Ulwazi Lomkhiqizo

Imininingwane

Isingeniso

Imiyalo yokusetshenziswa komkhiqizo

Izindlela Zokufaka

Ukuhambisana

Ilanda iSoftware

Izidingo zokucushwa

Ifaka I-Virtual Appliance

FAQ

Q: Yiziphi izidingo zesistimu zokuqhuba i-Cisco Vikela Isisetshenziswa Esibonakalayo Se-Network Analytics?

Q: Ngingalanda kanjani ukufakwa files okwe-Virtual Isisetshenziswa se-Edishini?

Q: Yiziphi izilungiselelo zenethiwekhi ezidingekayo ku-inter-Data Node ezokuxhumana?

Amadokhumenti / Izinsiza

Izithenjwa

Okuthunyelwe Okuhlobene

Shiya amazwana

Khansela impendulo

Q: Yiziphi izidingo zesistimu zokuqhuba i-Cisco
Vikela Isisetshenziswa Esibonakalayo Se-Network Analytics?

Q: Ngingalanda kanjani ukufakwa files okwe-Virtual
Isisetshenziswa se-Edishini?

Q: Yiziphi izilungiselelo zenethiwekhi ezidingekayo ku-inter-Data Node
ezokuxhumana?