Professional Documents
Culture Documents
3 1 Kinh Nghiem Van Hanh NOC
3 1 Kinh Nghiem Van Hanh NOC
3 1 Kinh Nghiem Van Hanh NOC
H Ni, 01/2008
vo/ra trn Router, switch layer 3 (s dng cng c thu thp thng tin trn thit b nh Netflow trn thit b Router, SW Layer 3 ca Cisco, ca Juniper)
Gim st lu thng vo/ra (theo % bng thng ng truyn) pht hin cc cuc tn cng lm nghn mng do Virus hoc do Hacker (biu hin: thng chim vi trm % bng thng thc t) T ng gi e-Mail cnh bo n cc qun tr vin khi kt ni b t, hoc bng thng qu ti. M phng % s dng bng thng cho tng kt ni bng hnh nh trc quan Cho php hin th thng tin v bng thng s dng ca tng giao din mng (interfaces) theo gi, ngy, thng, qu, nm.
NGHIN CU
Trin khai ci t, cu hnh v chy th nghim cc bn th nghim (Demo, Evaluation) cc phn mm phn tch, gim st, qun tr mng thng mi nh NetFlow Analyzer, Solarwinds hoc HP OpenView tm hiu tnh nng, c ch lm vic v c nh gi, so snh vi cc phn mm ngun m v u, nhc im ca chng. Cc phn mm thng mi thng d vn hnh, qun tr nhng nhc im l t tin, hay li khim khuyt v l mc tiu ca hacker v khi nng cp phi mt nhiu kinh ph. Tham gia cc ti nghin cu cp c s, cp B
NGHIN CU
Thit lp Firewall/IDS (s dng thit b cng hoc phn mm m ngun m: Firewall-IP Table, IDS-Snort) bo v tn cng mng t bn ngoi, bo v vng DMZ/ServerFarm cho cc my ch Xy dng Firewall cc b trn tng my ch ng dng, dch v theo c ch Self-Defence ng ht cc cng khng cn thit, ch m cng dch v tht cn thit Thng xuyn cp nht phn mm, cc bn v li trn my ch v my trm
o to k s
o to trong nc: tham gia cc kha o to c bn v qun tr mng Nu NOC c iu kin th gi i o to cc chng ch chuyn mn (cc chng ch MCSE ca MS, CCNA, CCNP, CCIE ca Cisco, ...) Gi cn b tham gia cc kha o to ti nc ngoi: tham gia cc kha o to ngn hn, tp trung chuyn su vo tng vn : nh tuyn (tnh, ng) c bn, nh tuyn (tnh, ng) nng cao, DNS c bn, DNS nng cao, Multicast, Network Security,
o to k s
T o to Ngi bit nhiu hng dn ngi bit t Tinh thn t tm hiu chuyn su l chnh S dng cc phn mm gi lp, my tnh PC th nghim, m phng (thit lp m hnh mng, xy dng Router mm, cu hnh nh tuyn dng phn mm m phng Router nh DYMAMIPS, DYNAGEN, RouterSIM) Thng xuyn t chc Seminar chuyn mn theo nh k (1-2 tun/ln) Trao i kinh nghim k thut vi cc NOC khc
nh tuyn (Routing)
Thit lp h thng nh tuyn IP ng vi TEIN2 NOC (Hongkong) s dng giao thc BGP Thit lp h thng nh tuyn IP ng vi mt s thnh vin trong VinaREN s dng giao thc nh tuyn OSPF Thit lp h thng nh tuyn IP ng vi trong ni b mng HBKHN vi NOC-VN.
nh tuyn (Routing)
u im ca nh tuyn ng: Tn dng c c ch tm ng thng minh, ti u Gim thiu cng sc ca qun tr mng khi vic thng xuyn cp nht bng nh tuyn khi c s thay i tuyn ng t mng bn ngoi Thun tin cho ngi dng: khng phi thay i Gateway nhng vn c th truy cp c mng Internet hoc TEIN2 m khng cn thay i g trong cu hnh thng s mng
nh tuyn (Routing)
Cng c PING o thi gian RTT (Round Trip Time) ca gi tin t ngun n ch xem c ln khng (thng i theo ng TEIN2 th RTT ch mt khong vi chc ms, nu i theo Internet thng mi trc tip/gin tip n cc Website quc t thng phi mt 170ms tr ln). Cng c o bng thng cn d, sn sng cho truyn d liu (nh PathLoader, netperf, iperf, )
Nu mng c nhiu kt ni Internet (Leasedlines, ADSLs) th nn s dng b cn bng ti chia ti cho cc ng truyn ra Internet, ti u c bng thng v kim sot c cht lng dch v (t QoS theo mc u tin theo i tng s dng hoc dch v, a ch IP, )
C cc thit b lu in, n nh in p tng tui th ca thit b, my tnh Phng my ch, thit b mng, PC phi c iu ha m bo tui th thit b c cao.
Phi hp vi i tc, ISP hoc B cng an khi cn thit phi x l cc vi phm v an ninh mng m bo thng tin lin lc Giao cho ngi lu thng tin v ti nguyn c cp pht tra cu khi cn Lu a ch lin h trao i k thut vi cc NOCs v Cng ty vin thng khi cn thit (nh s c t ng truyn, gin on mng, ) Trao i trn cc din n IT, Network Security, OpenSource