Gaisuwa ga duk wanda ya ci gaba da karanta jerin abubuwa game da sabon ƙarni na NGFW Check Point of the SMB iyali (1500 series). IN mun duba SMP bayani (portal na gudanarwa don ƙofofin SMB). A yau ina so in yi magana game da tashar jiragen ruwa na Smart-1 Cloud, yana sanya kanta a matsayin mafita dangane da SaaS Check Point, yana aiki a matsayin Sabar Gudanarwa a cikin girgije, don haka zai dace da kowane NGFW Check Point. Ga wadanda suka shigo mana, bari in tunatar da ku batutuwan da aka tattauna a baya: , , .
Bari mu haskaka manyan abubuwan Smart-1 Cloud:
- Magani guda ɗaya ta tsakiya don sarrafa dukkan kayan aikin Check Point (ƙofofin kama-da-wane da na zahiri a matakai daban-daban).
- Manufofin gama gari don duk Blades suna ba ku damar sauƙaƙe hanyoyin gudanarwa (ƙirƙirar/daidaita dokokin don ayyuka daban-daban).
- Taimako don tsarin bayanin martaba lokacin aiki tare da saitunan ƙofa. Mai alhakin raba haƙƙin samun dama yayin aiki a cikin tashar tashar, inda masu gudanar da cibiyar sadarwa, ƙwararrun bincike, da sauransu za su iya yin ayyuka daban-daban a lokaci guda.
- Saka idanu na barazanar, wanda ke ba da rajistar rajistan ayyukan da kallon taron a wuri guda.
- Taimako don hulɗa ta hanyar API. Mai amfani zai iya aiwatar da hanyoyin sarrafa kansa, sauƙaƙe ayyukan yau da kullun.
- Shiga yanar gizo. Yana cire hani game da goyan bayan OS guda ɗaya kuma yana da hankali.
Ga waɗanda suka riga sun saba da hanyoyin magance Check Point, babban ƙarfin da aka gabatar bai bambanta da samun saɓanin Sabar Gudanarwa a kan wuraren gine-ginen ku. Za su kasance daidai, amma a cikin yanayin Smart-1 Cloud, kulawar uwar garken gudanarwa yana samuwa ta hanyar kwararrun Check Point. Ya haɗa da: yin ajiya, sa ido kan sarari kyauta akan kafofin watsa labarai, gyara kurakurai, shigar da sabbin nau'ikan software. Hakanan an sauƙaƙe tsarin ƙaura (canjawa) saitunan.
Lasisi
Kafin mu saba da aikin maganin sarrafa girgije, bari mu yi nazarin batutuwan lasisi daga jami'in. .
Gudanar da kofa ɗaya:
Biyan kuɗi ya dogara da zaɓaɓɓun igiyoyin sarrafawa; akwai kwatance 3 gabaɗaya:
- Gudanarwa. 50 GB ajiya, 1 GB kullum don rajistan ayyukan.
- Gudanarwa + SmartEvent. 100 GB ajiya, 3 GB rajistan ayyukan yau da kullum, rahoton tsarawa.
- Gudanarwa + Yarda + SmartEvent. 100 GB ajiya, 3 GB rajistan ayyukan yau da kullun, tsara rahoto, shawarwari don saituna dangane da ayyukan tsaro na gabaɗaya.
* Zaɓin ya dogara da dalilai da yawa: nau'in rajistan ayyukan, adadin masu amfani, adadin zirga-zirga.
Akwai kuma biyan kuɗi don sarrafa ƙofofin 5. Ba za mu tsaya kan wannan daki-daki ba - koyaushe kuna iya samun bayanai daga .
Kaddamar da Smart-1 Cloud
Kowa zai iya gwada mafita; don yin wannan, kuna buƙatar yin rajista a cikin Infinity Portal - sabis na girgije daga Check Point, inda zaku iya samun damar gwaji zuwa wuraren masu zuwa:
- Kariyar Cloud (CloudGuard SaaS, CloudGuard Native);
- Kariyar hanyar sadarwa (CloudGuard Connect, Smart-1 Cloud, Infinity SOC);
- Kariyar Ƙarshen (, SandBlast Agent Cloud Management, Sandblast Mobile).
Za mu shiga cikin tsarin tare da ku (ana buƙatar yin rajista don sababbin masu amfani) kuma je zuwa ga Smart-1 Cloud bayani:
Za a gaya muku a taƙaice game da fa'idodin wannan bayani (Gudanar da kayan aikin, babu buƙatar shigarwa, sabuntawa ta atomatik).
Bayan cika filayen, kuna buƙatar jira har sai an shirya asusunku don shiga cikin tashar:
Idan aikin ya yi nasara, za ku sami bayanan rajista ta imel (akayyade lokacin shiga cikin Infinity Portal), sannan kuma za a tura ku zuwa shafin gida na Smart-1 Cloud.
Shafukan yanar gizo akwai:
- Kaddamar da SmartConsole. Yin amfani da aikace-aikacen da aka shigar akan PC ɗinku, ko amfani da haɗin yanar gizo.
- Aiki tare da abun ƙofa.
- Yin aiki tare da katako.
- Saiti
Aiki tare tare da ƙofa
Bari mu fara da daidaita Ƙofar Tsaro, don yin wannan, kuna buƙatar ƙara shi azaman abu. Jeka shafin "Haɗa Ƙofar"
Dole ne ku shigar da sunan ƙofa na musamman; za ku iya ƙara tsokaci ga abin. Sannan danna "Rijista".
Abu na ƙofa zai bayyana wanda zai buƙaci a daidaita shi tare da Sabar Gudanarwa ta aiwatar da umarnin CLI don ƙofar:
- Tabbatar cewa an shigar da sabuwar JHF (Jumbo Hotfix) akan ƙofa.
- Saita alamar haɗi: saita security-gateway maas akan auth-token
- Duba matsayin ramin aiki tare:
Matsayin MaaS: An kunna
Jiha Tunnel MaaS: Up
Sunan yankin MaaS:
Service-Identifier.maas.checkpoint.com
Ƙofar IP don Sadarwar MaaS: 100.64.0.1
Da zarar an ɗaga sabis na Tunnel ɗin Mass, dole ne ku ci gaba don kafa haɗin SIC tsakanin ƙofar da Smart-1 Cloud a cikin Smartconsole. Idan aikin ya yi nasara, za a sami topology na ƙofa, bari mu haɗa misali:
Don haka, lokacin amfani da Smart-1 Cloud, an haɗa ƙofar zuwa cibiyar sadarwar "launin toka" 10.64.0.1.
Bari in ƙara da cewa a cikin shimfidar wuri na ƙofar da kanta yana shiga Intanet ta amfani da NAT, don haka, babu adireshin IP na jama'a a kan hanyar sadarwa, duk da haka, muna iya sarrafa shi daga waje. Wannan wani fasali ne mai ban sha'awa na Smart-1 Cloud, godiya ga wanda aka ƙirƙiri keɓantaccen yanki na gudanarwa tare da nasa wuraren adiresoshin IP.
ƙarshe
Da zarar kun sami nasarar ƙara hanyar gudanarwa ta Smart-1 Cloud, kuna da cikakkiyar dama, kamar a cikin Smart Console. A kan shimfidar wuri, mun ƙaddamar da sigar yanar gizo; a zahiri, na'ura ce mai haɓakawa tare da abokin ciniki mai gudanarwa.
Koyaushe kuna iya ƙarin koyo game da iyawar Smart Console da gine-ginen Check Point a cikin marubucin mu .
Wannan shine kawai don yau, muna jiran labarin ƙarshe na jerin, wanda a cikinsa za mu taɓa ikon daidaitawa na dangin SMB 1500 tare da shigar da Gaia 80.20.
. Ku kasance da mu (, , , , )
source: www.habr.com
