《crossbeam的管理模式》由会员分享,可在线阅读,更多相关《crossbeam的管理模式(42页珍藏版)》请在金锄头文库上搜索。
1、XOS-Principles of Operation-Crossbeam的管理模式OutlinenOverviewnBasic ConfigurationnHigh AvailabilitynFlow ProcessingnApplicationsnSystem Monitoring (2)CPM sends back a scheduling vector to NPM every second.All data sent via the Control PlaneFlow ProcessingFlow rulesA flow rule is associated with a speci
2、fic VAP Group.Multiple flow rules may be created for each VAP Group. Flow rules prioritypromiscuous mode (IDS)Flow ProcessingFlow Processing with NATThanks to the normalization process the return flow will hit the same VAP as the inbound flow.However, if a VAP modifies the IP header info (i.e. NAT),
3、 the return traffic received by the NPM has no AFT entry matching IP addresses.Flow ProcessingRecalssify-natThe reclassify-nat command that is applied on the circuit where the nated flow is generated forces the NPM to treat all flows as if they are originating from the VAP.1.Including those modified
4、 by the application (i.e. NAT)2.Nated outbound flows are classified on egress3.An AFT entry is then created forcing the return traffic to match the flow.OutlinenOverviewnBasic ConfigurationnHigh AvailabilitynFlow ProcessingnApplicationsnSystem Monitoring & TroubleshootingnMultiple ApplicationsnSyste
5、m MaintenanceApplicationsAS the Sub-system Disk is on the CPM, the CPM is responsible for installing applications onto the VAP.Each APM in a X series chassis can be equipped with a local disk, where temporary can be stored.For some applications (Anti-Virus, Proxy, etc) you might need to have a SWAP
6、space enabled, to increase the Application performances. Swap files are stored in the local disk.OutlinenOverviewnBasic ConfigurationnHigh AvailabilitynFlow ProcessingnApplicationsnSystem Monitoring & TroubleshootingnMultiple ApplicationsnSystem MaintenanceSystem Monitoring & TroubleshootingSwatch A
7、 Linux tool to monitor XOS system state and network I/OSystem Monitoring & TroubleshootingTroubleshooting using TCPdumpTCPdump is a packet analyzer, similar to snoop on a Sun Solaris box. Running TCPdump without any options will dump all packets on all interfaces. This is usually not a good idea esp
8、ecially on a production system.OutlinenOverviewnBasic ConfigurationnHigh AvailabilitynFlow ProcessingnApplicationsnSystem Monitoring & TroubleshootingnMultiple ApplicationsnSystem MaintenanceMultiple ApplicationsSerialization: Traffic flows through one application to another. (proxy applications) Pa
9、rallelization: Traffic flows to two or more applications simultaneously. (IDS applications) Traffic Splitting: Traffic stream is split between multiple application based on flow rule specifications. (Transparent web proxy)OutlinenOverviewnBasic ConfigurationnHigh AvailabilitynFlow ProcessingnApplicationsnSystem Monitoring & TroubleshootingnMultiple ApplicationsnSystem MaintenanceSystem MaintenanceRecovery XOS Upgrade Rollback Firmware UpgradeComments1.What else managements should we need? 2.What else situations should we pay attention to?
