{"id":479,"date":"2021-06-24T19:34:54","date_gmt":"2021-06-24T11:34:54","guid":{"rendered":"https:\/\/choson.lifenet.com.tw\/?p=479"},"modified":"2021-06-24T19:34:54","modified_gmt":"2021-06-24T11:34:54","slug":"%e5%b8%b8%e8%a6%8b%e7%9a%84%e9%9a%a7%e9%81%93%e5%8d%94%e8%ad%b0common-tunneling-protocols","status":"publish","type":"post","link":"https:\/\/choson.lifenet.com.tw\/?p=479","title":{"rendered":"\u5e38\u898b\u7684\u96a7\u9053\u5354\u8b70(Common Tunneling Protocols)"},"content":{"rendered":"\n

\u5e38\u898b\u7684\u96a7\u9053\u5354\u8b70
\u4ee5\u4e0b\u662f\u5e38\u898b\u7684\u96a7\u9053\u5354\u8b70\uff1a
. GRE\uff08\u5354\u8b70 47\uff09\uff1a\u901a\u7528\u8def\u7531\u5c01\u88dd
. SSTP\uff08TCP \u7aef\u53e3 443\uff09\uff1a\u5b89\u5168\u5957\u63a5\u5b57\u96a7\u9053\u5354\u8b70
. IPSec\uff08\u5354\u8b70 50\/ESP\u548c 51\/AH\uff09\uff1a\u4e92\u806f\u7db2\u5354\u8b70\u5b89\u5168
. L2TP\uff08\u5354\u8b70 115\uff09\uff1a\u7b2c 2 \u5c64\u96a7\u9053\u5354\u8b70
. VXLAN\uff08UDP \u7aef\u53e3 4789\uff09\uff1a\u865b\u64ec\u53ef\u64f4\u5c55\u5c40\u57df\u7db2
\u5c01\u88dd\u5b89\u5168\u8ca0\u8f09 (ESP)
\u5c01\u88dd\u5b89\u5168\u8ca0\u8f09 (ESP)\uff0cIP \u5354\u8b70\u7de8\u865f 50\uff0c\u662f IPsec \u5354\u8b70\u5957\u4ef6\u7684\u6210\u54e1\u3002\u5b83\u53ef\u4ee5\u5728\u4e3b\u6a5f\u5230\u4e3b\u6a5f\u50b3\u8f38\u6a21\u5f0f\u4ee5\u53ca\u7ad9\u9ede\u5230\u7ad9\u9ede\u96a7\u9053\u6a21\u5f0f\u4e2d\u5be6\u73fe\uff1a
. \u5728\u50b3\u8f38\u6a21\u5f0f\u4e0b\uff0c\u53ea\u5c0dIP\u6578\u64da\u5305\u7684\u6709\u6548\u8f09\u8377\u9032\u884c\u52a0\u5bc6\u6216\u8a8d\u8b49\uff0c\u901a\u5e38\u5728\u4f7f\u7528\u5176\u4ed6\u96a7\u9053\u5354\u8b70\uff08\u5982GRE\u3001L2TP\uff09\u5148\u5c01\u88ddIP\u6578\u64da\u5305\u6642\u4f7f\u7528\uff0c\u7136\u5f8c\u4f7f\u7528ESP\u4fdd\u8b77\u96a7\u9053\u6578\u64da\u5305\u3002\uff08Juniper<\/a>\uff09
. \u5728\u96a7\u9053\u6a21\u5f0f\u4e0b\uff0c\u6574\u500b IP \u6578\u64da\u5305\u90fd\u7d93\u904e\u52a0\u5bc6\u548c\u8a8d\u8b49\u3002<\/p>\n\n\n\n

\u7b2c2\u5c64\u8f49\u767c\u5354\u8b70 (L2F)
L2F \u6216\u7b2c 2 \u5c64\u8f49\u767c\u662f Cisco Systems, Inc. \u958b\u767c\u7684\u96a7\u9053\u5354\u8b70\uff0c\u7528\u65bc\u5728 Internet \u4e0a\u5efa\u7acb\u865b\u64ec\u5c08\u7528\u7db2\u7d61\u9023\u63a5\u3002L2F \u672c\u8eab\u4e0d\u63d0\u4f9b\u52a0\u5bc6\u6216\u6a5f\u5bc6\u6027\uff1b\u5b83\u4f9d\u8cf4\u65bc\u88ab\u96a7\u9053\u50b3\u8f38\u7684\u5354\u8b70\u4f86\u63d0\u4f9b\u96b1\u79c1\u3002L2F \u5c08\u9580\u8a2d\u8a08\u7528\u65bc\u96a7\u9053\u9ede\u5c0d\u9ede\u5354\u8b70 (PPP)\u6d41\u91cf\u3002
\u8cc7\u6599\u4f86\u6e90\uff1a\u7dad\u57fa\u767e\u79d1<\/a><\/p>\n\n\n\n

\u9ede\u5c0d\u9ede\u96a7\u9053\u5354\u8b70 (PPTP)
\u7531\u65bc\u8a31\u591a\u773e\u6240\u5468\u77e5\u7684\u5b89\u5168\u554f\u984c\uff0c\u4e3b\u8981\u7531Microsoft\u652f\u6301\u7684\u9ede\u5c0d\u9ede\u96a7\u9053\u5354\u8b70 (PPTP)\u662f\u4e00\u7a2e\u904e\u6642\u7684\u7528\u65bc\u5be6\u73fe\u865b\u64ec\u5c08\u7528\u7db2\u7d61 (VPN) \u7684\u65b9\u6cd5\u3002
. PPTP \u4f7f\u7528 TCP \u63a7\u5236\u901a\u9053\u548c\u901a\u7528\u8def\u7531\u5c01\u88dd\u96a7\u9053\u4f86\u5c01\u88dd\u9ede\u5c0d\u9ede\u5354\u8b70 (PPP)\u6578\u64da\u5305\u3002
. PPTP \u898f\u7bc4\u4e0d\u63cf\u8ff0\u52a0\u5bc6\uff0cMicrosoft \u9ede\u5c0d\u9ede\u52a0\u5bc6 (MPPE)\u652f\u6301\u52a0\u5bc6\u3002<\/p>\n\n\n\n

VXLAN \u554f\u984c\u9673\u8ff0
\u76ee\u524d\u7684VLAN\u6578\u91cf\u6709\u9650\uff0c\u70ba4094\uff0c\u7121\u6cd5\u6eff\u8db3\u6578\u64da\u4e2d\u5fc3\u6216\u4e91\u8a08\u7b97\u7684\u9700\u6c42\uff0c\u5177\u6709\u57fa\u65bc\u79df\u6236\u9694\u96e2\u7db2\u7d61\u7684\u5171\u540c\u7279\u9ede\u3002\u4f8b\u5982\uff0cAzure \u6216 AWS \u7684\u5ba2\u6236\u9060\u591a\u65bc 4094\u3002<\/p>\n\n\n\n

VXLAN (RFC 7348) \u65e8\u5728\u89e3\u6c7a\u4ee5\u4e0b\u554f\u984c\uff1a<\/p>\n\n\n\n

  1. \u751f\u6210\u6a39\u548c VLAN \u7bc4\u570d\u65bd\u52a0\u7684\u9650\u5236<\/li>
  2. \u591a\u79df\u6236\u74b0\u5883<\/li>
  3. ToR\uff08\u67b6\u9802\u5f0f\uff09\u4ea4\u63db\u6a5f\u7684\u8868\u5c3a\u5bf8\u4e0d\u8db3
    VXLAN \u5c07\u50b3\u7d71\u7684 VLAN \u5e40\u5c01\u88dd\u70ba IP \u8ca0\u8f09\u6216 MAC-over-IP\uff0c\u4ee5\u652f\u6301\u4e3b\u5e79\u4ea4\u63db\u6a5f\u548c\u8449\u4ea4\u63db\u6a5f\u4e4b\u9593\u7684\u901a\u4fe1\u3002Leaf-Spine\u67b6\u69cb\u63a1\u7528\u8449\u5b50\u4ea4\u63db\u6a5f\u548c\u9aa8\u5e79\u4ea4\u63db\u6a5f\u7d44\u6210\u7684\u5169\u5c64\u7db2\u7d61\u62d3\u64b2\u7d50\u69cb\u3002<\/li><\/ol>\n\n\n\n

    \"https:\/\/ithelp.ithome.com.tw\/upload\/images\/20210623\/20132160uIiJ8sl9Cf.png\"
    \u5e95\u5c64\u7db2\u7d61 \u6216\u6240\u8b02\u7684 \u7269\u7406\u7db2\u7d61 \uff0c\u50b3\u7d71\u5354\u8b70\u5728\u5176\u4e2d\u767c\u63ee\u4f5c\u7528\u3002\u5e95\u5c64\u7db2\u7d61\u662f\u7269\u7406\u57fa\u790e\u8a2d\u65bd\uff0c\u5728\u5176\u4e0a\u69cb\u5efa\u8986\u84cb\u7db2\u7d61\u3002\u5b83\u662f\u8ca0\u8cac\u8de8\u7db2\u7d61\u50b3\u8f38\u6578\u64da\u5305\u7684\u5e95\u5c64\u7db2\u7d61\u3002<\/p>\n\n\n\n