ProHoster > Π‘Π»ΠΎΠ³ > Kev tswj hwm > 6. NGFW rau cov lag luam me. Smart-1 Huab

6. NGFW rau cov lag luam me. Smart-1 Huab

6. NGFW rau cov lag luam me. Smart-1 Huab

Zoo siab txais tos rau txhua tus neeg uas tau nyeem txuas ntxiv txog cov tiam tshiab ntawm NGFW Check Point ntawm SMB tsev neeg (1500 series). IN 5 qhov chaw peb tau saib ntawm qhov kev daws teeb meem SMP (kev tswj hwm portal rau SMB rooj vag). Hnub no kuv xav tham txog Smart-1 Cloud portal, nws tso nws tus kheej raws li kev daws teeb meem raws li SaaS Check Point, ua raws li Kev Tswj Xyuas server hauv huab, yog li nws yuav cuam tshuam rau txhua qhov NGFW Check Point. Rau cov neeg uas nyuam qhuav tuaj koom nrog peb, cia kuv nco koj txog cov ncauj lus uas tau tham dhau los: pib thiab configuration , Lub koom haum ntawm kev sib txuas lus wireless (WiFi thiab LTE) , VPN.

Cia peb qhia txog cov yam ntxwv tseem ceeb ntawm Smart-1 Huab:

  1. Ib qho kev daws teeb meem hauv nruab nrab rau kev tswj hwm koj tag nrho Check Point infrastructure (virtual thiab lub cev lub rooj vag ntawm ntau qib).
  2. Ib txheej txheej txheej txheem rau txhua qhov Blades tso cai rau koj kom yooj yim rau kev tswj hwm cov txheej txheem (tsim / kho cov cai rau ntau yam haujlwm).
  3. Kev them nyiaj yug rau qhov profile mus kom ze thaum ua haujlwm nrog qhov rooj teeb tsa. Lub luag haujlwm rau kev sib cais ntawm cov cai nkag mus thaum ua haujlwm hauv lub portal, qhov twg cov thawj coj hauv lub network, cov kws tshawb xyuas tshwj xeeb, thiab lwm yam tuaj yeem ua tiav ib txhij ua ntau yam haujlwm.
  4. Kev saib xyuas kev hem thawj, uas muab cov cav thiab cov xwm txheej saib hauv ib qho chaw.
  5. Txhawb kev sib cuam tshuam ntawm API. Tus neeg siv tuaj yeem siv cov txheej txheem automation, ua kom yooj yim cov haujlwm txhua hnub.
  6. Web nkag. Tshem tawm cov kev txwv txog kev txhawb nqa rau tus kheej OSes thiab yog qhov yooj yim.

Rau cov uas twb paub txog cov kev daws teeb meem Check Point, cov peev txheej tseem ceeb uas tau nthuav tawm tsis txawv dua li muaj kev mob siab rau Kev Tswj Xyuas Kev Ua Haujlwm ntawm thaj chaw hauv koj qhov kev tsim kho vaj tse. Lawv yuav yog ib feem ntawm txoj cai, tab sis nyob rau hauv rooj plaub ntawm Smart-1 Cloud, kev saib xyuas ntawm kev tswj xyuas server yog muab los ntawm cov kws tshaj lij Check Point. Nws suav nrog: ua thaub qab, saib xyuas qhov chaw dawb ntawm kev tshaj tawm, kho qhov tsis raug, txhim kho cov software tshiab tshaj plaws. Cov txheej txheem ntawm kev tsiv teb tsaws (hloov chaw) kuj yooj yim.

Tso Cai

Ua ntej tau txais kev paub txog kev ua haujlwm ntawm huab tswj kev daws teeb meem, cia peb kawm cov teeb meem kev tso cai los ntawm tus nom Cov ntaub ntawv.

Tswj ib lub rooj vag:

6. NGFW rau cov lag luam me. Smart-1 Huab

Qhov kev tso npe yuav nyob ntawm qhov xaiv tswj cov hniav; muaj 3 cov lus qhia hauv tag nrho:

  1. Kev tswj hwm. 50 GB cia, 1 GB txhua hnub rau cov cav.
  2. Kev tswj hwm + SmartEvent. 100 GB cia, 3 GB txhua hnub teev, qhia tiam.
  3. Kev tswj hwm + Ua raws + SmartEvent. 100 GB cia, 3 GB txhua hnub teev, qhia tiam, cov lus pom zoo ntawm kev teeb tsa los ntawm cov ntaub ntawv kev nyab xeeb kev coj ua.

* Qhov kev xaiv nyob ntawm ntau yam: hom cav, tus naj npawb ntawm cov neeg siv, cov tsheb khiav.

Kuj tseem muaj kev tso npe los tswj 5 lub rooj vag. Peb yuav tsis nyob ntawm qhov no hauv kev nthuav dav - koj tuaj yeem tau txais cov ntaub ntawv los ntawm txhua lub sijhawm Cov ntaub ntawv.

Launch ntawm Smart-1 Huab

Txhua tus tuaj yeem sim daws qhov no; ua qhov no, koj yuav tsum sau npe hauv Infinity Portal - huab kev pabcuam los ntawm Check Point, qhov chaw koj tuaj yeem tau txais kev sim nkag mus rau thaj chaw hauv qab no:

  • Kev Tiv Thaiv Huab (CloudGuard SaaS, CloudGuard Native);
  • Kev Tiv Thaiv Network (CloudGuard Txuas, Ntse-1 Huab, Infinity SOC);
  • Endpoint Protection (Sandblast Agent Management Platform, SandBlast Agent Huab Management, Sandblast Mobile).

Peb yuav nkag mus rau hauv lub kaw lus nrog koj (kev tso npe yuav tsum muaj rau cov neeg siv tshiab) thiab mus rau Smart-1 Cloud daws:

6. NGFW rau cov lag luam me. Smart-1 Huab

Koj yuav tau qhia luv luv txog qhov zoo ntawm qhov kev daws teeb meem no (Infrastructure tswj, tsis tas yuav tsum tau teeb tsa, hloov kho tshiab).

6. NGFW rau cov lag luam me. Smart-1 Huab

Tom qab sau cov teb, koj yuav tsum tau tos kom txog thaum koj tus account npaj nkag mus rau hauv lub portal:

6. NGFW rau cov lag luam me. Smart-1 Huab

Yog tias txoj haujlwm ua tiav, koj yuav tau txais cov ntaub ntawv sau npe los ntawm email (tshwj xeeb thaum nkag mus rau Infinity Portal), thiab koj tseem yuav raug xa mus rau Smart-1 Cloud home page.

6. NGFW rau cov lag luam me. Smart-1 Huab

Muaj cov portal tabs:

  1. Tua tawm SmartConsole. Siv daim ntawv thov ntsia ntawm koj lub PC, lossis siv lub vev xaib interface.
  2. Synchronization nrog lub rooj vag khoom.
  3. Ua haujlwm nrog cov log.
  4. Chaw

Synchronization nrog lub rooj vag

Cia peb pib nrog synchronizing lub Security Gateway; ua qhov no, koj yuav tsum tau ntxiv nws ua ib yam khoom. Mus rau lub tab "Txuas Gateway"

6. NGFW rau cov lag luam me. Smart-1 Huab

Koj yuav tsum nkag mus rau lub npe lub rooj vag tshwj xeeb; koj tuaj yeem ntxiv cov lus pom rau cov khoom. Ces nias β€œSau npe”.

6. NGFW rau cov lag luam me. Smart-1 Huab

Lub rooj vag khoom yuav tshwm sim uas yuav tsum tau synchronized nrog Management Server los ntawm kev ua tiav CLI cov lus txib rau lub rooj vag:

  1. Nco ntsoov tias qhov tseeb JHF (Jumbo Hotfix) tau teeb tsa rau ntawm lub rooj vag.
  2. Teem lub token txuas: teeb kev ruaj ntseg- rooj vag maas ntawm auth-token
  3. Txheeb xyuas qhov xwm txheej ntawm qhov synchronization qhov:
    MaaS Status: Enabled
    MaaS Tunnel State: Up
    MaaS domainname:
    Service-Identifier.maas.checkpoint.com
    Gateway IP rau MaaS Kev Sib Txuas Lus: 100.64.0.1

Thaum cov kev pabcuam rau Mass Tunnel tau raug tsa, koj yuav tsum pib tsim SIC kev sib txuas ntawm lub rooj vag thiab Smart-1 Huab hauv Smartconsole. Yog tias txoj haujlwm ua tiav, lub rooj vag topology yuav tau txais, cia peb txuas ib qho piv txwv:

6. NGFW rau cov lag luam me. Smart-1 Huab

Yog li, thaum siv Smart-1 Huab, lub rooj vag txuas nrog "grey" network 10.64.0.1.

Cia kuv ntxiv tias hauv peb qhov kev teeb tsa lub rooj vag nws tus kheej nkag mus rau Is Taws Nem siv NAT, yog li ntawd, tsis muaj qhov chaw nyob IP pej xeem ntawm nws qhov interface, txawm li cas los xij, peb tuaj yeem tswj hwm nws los ntawm sab nraud. Qhov no yog lwm qhov nthuav dav ntawm Smart-1 Huab, ua tsaug rau qhov kev tswj hwm subnet tau tsim nrog nws tus kheej lub pas dej ntawm IP chaw nyob.

xaus

Thaum koj tau ua tiav qhov rooj ntxiv rau kev tswj hwm ntawm Smart-1 Cloud, koj muaj kev nkag tau tag nrho, ib yam li hauv Smart Console. Ntawm peb layout, peb launched lub web version; qhov tseeb, nws yog ib tug tsa virtual tshuab nrog ib tug khiav tswj neeg siv.

6. NGFW rau cov lag luam me. Smart-1 Huab

Koj tuaj yeem kawm paub ntau ntxiv txog lub peev xwm ntawm Smart Console thiab Check Point architecture hauv peb tus kws sau ntawv chav kawm.

Qhov ntawd yog txhua yam rau hnub no, peb tab tom tos rau tsab xov xwm kawg ntawm cov koob, uas peb yuav kov ntawm qhov kev ua tau zoo tu lub peev xwm ntawm SMB 1500 series tsev neeg nrog Gaia 80.20 Embedded ntsia.

Kev xaiv loj ntawm cov ntaub ntawv ntawm Check Point los ntawm TS Solution. Nyob twj ywm (Telegram, Facebook, VK, TS Solution Blog, Yandex.Zen)

Tau qhov twg los: www.hab.com

Ntxiv ib saib