As the network grows and the number of machines to be managed increases, fault diagnosis and network analysis have become a heavy workload for network administrators such as Enterprise Networks and Internet cafes. It is also important for administrators to know how to use the network at ordinary times and quickly identify network faults, such as worms, in the case of network faults. What information does HiPER's network management and monitoring function provide to administrators?
The following uses HiPER routing gateway of Shanghai aitai Technology Co., Ltd. as an example to describe how to perform network management and network monitoring.
I. Traffic Management
First, you can view the number of bytes input and output by each LAN port, WAN port, and DMZ port, the number of broadcast packets, and the average rate of traffic in each direction through system status> port statistics, BPS and PPS indicate that the WAN port input is equivalent to the download traffic. When the network traffic is normal, the LAN port out should be close to the WAN port in, the in of the LAN port is close to that of the WAN port. From this figure, you can easily understand the current network traffic status.
Ii. Statistical functions
You can use the "Internet monitoring" User statistical table to figure out how many devices are online. The user statistics table shows the relationship between IP addresses and MAC addresses of user machines connected to HiPER, and the number of packages that the user has received and sent since the launch, if a user downloads a large number of packages, the user may download a large number of packages or initiate other attacks. This reminds the Administrator to pay attention.
Iii. attack warning
If a user in the LAN has an attack or uses multi-threaded software, the number of connections occupied by the HiPER can be seen, including the total number of connections and the current number of connections. If the number of connections on some machines exceeds the limit is large, most of the users have DoS attacks. If the number of connections fails, it indicates that the number of NAT connections required for the entire network has exceeded the number of system connections. There are two possible reasons: too many attacks. If there is no attack, this indicates that the performance of the machine is no longer applicable and a better device needs to be replaced.
Iv. Fault Diagnosis
The most important thing is that, if the network traffic is high, there are many conflicts in the Ethernet, or the attack is similar to the "blster" type, in the past, we had to rely on some advanced packet capture software or hardware to find faults, and the cost of such fault locating software or hardware equipment was relatively high, in the network where a vswitch is used, the image port of the vswitch must be used. Many companies use more than one vswitch, which is inconvenient. Now, on the HiPER of the egress router, we can view the behavior of each user through the Management Interface, such as whether the user is using the WWW Service or chatting through MSN. At the same time, we can also view some abnormal behaviors, such as a machine constantly sending broadcast packets out, or its target address is a multicast address.
If many machines are managed, you can enter the object to be queried through the query interface of the HiPER management software, which can be the address of the internal network or the server address of the external network.
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
