ProHoster > Π‘Π»ΠΎΠ³ > Kev tswj hwm > Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Tsis ntev los no (hauv 2016), lub tuam txhab Kuaj Cov Lus nthuav tawm nws cov khoom siv tshiab (ob lub rooj vag thiab tswj cov servers). Qhov sib txawv tseem ceeb ntawm cov kab dhau los yog qhov ua tau zoo ntawm kev tsim khoom.

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Hauv tsab xov xwm no peb yuav tsom tshwj xeeb rau cov qauv qis. Peb yuav piav qhia txog qhov zoo ntawm cov cuab yeej tshiab thiab qhov ua tau zoo uas tsis tas yuav tham txog. Peb kuj tseem yuav qhia txog kev xav ntawm tus kheej ntawm lawv txoj kev siv.

Check Point lineup

Raws li koj tuaj yeem pom los ntawm daim duab, Check Point faib nws cov khoom siv rau hauv peb pawg loj:

Hauv qhov no, ib qho ntawm cov yam ntxwv tseem ceeb yog qhov hu ua SPU - Kev Ruaj Ntseg Lub Zog. Qhov no yog Check Point qhov kev ntsuas tus kheej uas qhia txog qhov ua tau zoo ntawm lub cuab yeej. Ua piv txwv, cia peb piv cov txheej txheem ib txwm ntsuas kev ua haujlwm ntawm Firewall (Mbps) nrog cov txheej txheem "tshiab" los ntawm Check Point (SPU).

Cov txheej txheem tsoos - Firewall Throughput

  • Kev ntsuas yog ua nyob rau hauv lub chaw kuaj mob ntawm "artificial" tsheb.
  • Qhov kev ua tau zoo ntawm tsuas yog Firewall muaj nuj nqi raug soj ntsuam, tsis muaj cov modules ntxiv xws li IPS, Kev Tswj Xyuas, thiab lwm yam.
  • Kev ntsuam xyuas feem ntau yog ua nrog ib txoj cai Firewall.

Txheeb Point Methodology - Kev Ruaj Ntseg Zog

  • Kev ntsuas ntawm cov neeg siv tiag tiag.
  • Kev ua haujlwm ntawm txhua qhov kev ua haujlwm (Firewall, IPS, Kev Tswj Xyuas Daim Ntawv Thov, URL lim, thiab lwm yam) raug soj ntsuam.
  • Kev ntsuam xyuas ntawm tus qauv txoj cai uas suav nrog ntau txoj cai.

Check Point Appliance Sizing Tool

Yog li, thaum xaiv tus qauv Check Point, nws yog qhov zoo dua los tso siab rau qhov ntsuas Kev Ruaj Ntseg Lub Zog. Nws yog qhia nyob rau hauv tej datasheet rau lub ntaus ntawv. Koj yuav tsis tuaj yeem xam qhov tsim nyog SPU rau koj lub network ntawm koj tus kheej. Qhov no tsuas yog ua tau nrog kev pab los ntawm tus khub uas muaj kev nkag mus rau lub cuab yeej Check Point Appliance Sizing Tool:

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Txhawm rau xaiv qhov kev daws teeb meem zoo tshaj plaws, koj yuav tsum coj mus rau hauv tus account xws li:

  • Internet channel dav;
  • Tag nrho cov kev nkag mus ntawm lub rooj vag (tej zaum yuav txawv ntawm Internet channel yog tias, piv txwv li, koj segmented lub zos network siv Check Point);
  • Tus naj npawb ntawm cov neeg siv ntawm lub network;
  • Yuav tsum muaj haujlwm (Firewall, Anti-Virus, Anti-Bot, Application Control, URL Lim, IPS, hem Emulation, thiab lwm yam).

Kuj tseem muaj ntau qhov kev hloov maj mam piav qhia txog qhov kev khiav tsheb ntawm cov hniav no yuav siv rau:

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Tom qab qhia tag nrho cov yam ntxwv, koj tuaj yeem tau txais ib daim ntawv qhia piav txog cov khoom siv tsim nyog:

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Ntawm no koj tuaj yeem pom qhov xav tau SPU (72 hauv peb rooj plaub) thiab qhov pom zoo (144). Thiab tseem cov qauv lawv tus kheej nrog cov lus piav qhia ntawm lawv cov load thiab "tso tseg" rau kev khiav tsheb thiab cov hniav. Thaum xaiv tus qauv, nws yog ib txwm pom zoo kom nqa ib lub cuab yeej los ntawm thaj chaw ntsuab (piv txwv li thauj mus txog 50 feem pua):

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Qhov no ua kom ntseeg tau tias tsis muaj teeb meem thaum lub sijhawm thauj khoom siab tshaj lossis npaj yuav nce hauv Internet channel dav. Thaum xaiv ib lub cuab yeej, ib txwm hais kom koj tus khub muab ib daim ntawv qhia zoo sib xws. Cov piv txwv tuaj yeem rub tawm no.

Old vs New

Tau nkag siab txog qhov tseem ceeb ntawm qhov ua tau zoo ntawm cov khoom siv, peb tuaj yeem ua tib zoo saib cov qauv tshiab rau cov lag luam me thiab nruab nrab. Raws li tau hais los saum no, Check Point muaj tag nrho ntu - Kev Lag Luam Me thiab Nruab Nrab ( qauv 3200, 3100, 1490, 1470, 1450, 1430, 1200R). Cov khoom siv no tuaj yeem hu ua qhov hloov tshiab ntawm cov qub 2012 series (2200, 1180, 1140, 1120). Txhawm rau kom nkag siab qhov sib txawv tseem ceeb, xav txog daim duab hauv qab no:

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo
(Tus nqi yog nyob rau hauv GPL, tsis suav VAT thiab kev txhawb nqa)

Raws li koj tuaj yeem pom, 2016 series tau nce kev ua tau zoo (SPU), thiab cov nqi tseem nyob ntawm kwv yees li tib theem (nrog rau kev zam ntawm 3200 qauv). Cov kab tshiab kuj suav nrog tus qauv 3100, tab sis tsis tau tsis muaj kev ceeb toom thiab ntshuam mus rau Russia yog txwv! Nco ntsoov qhov no!

Yog tias peb rov xam tus nqi ntawm ib SPU, ces tus qauv 1450 yog qhov sib npaug tshaj plaws. Hauv qab no peb yuav ua tib zoo saib ntawm qhov tshiab Check Point series.

Cov txheej txheem rau kev siv SMB cov cuab yeej

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Raws li tuaj yeem pom los ntawm daim duab, muaj ob qhov kev siv tseem ceeb rau SMB cov khoom siv:

  1. Nyob rau hauv default gateway mode. Nyob rau hauv cov ntaub ntawv no, Check Point yog ntsia raws li ib tug perimeter ntaus ntawv thiab tswj hauv zos.
  2. ceg rooj vag. Nyob rau hauv rooj plaub no, ceg kho vajtse yog tswj hwm hauv nruab nrab (siv cov neeg rau zaub mov Kev Tswj Xyuas) los ntawm lub hauv paus chaw ua haujlwm.

Rau series 3000 ΠΈ 1400 Muaj qee qhov nta hauv txhua hom. Peb mam li saib lawv hauv qab no.

SMB series 3000

Tam sim no muaj ob "khoom hlau" - 3200 ΠΈ 3100. Raws li tau hais ua ntej, 3100 tseem tsis tuaj yeem raug xa mus rau hauv lub tebchaws. Raws li rau 3200, nws yog ib qho zoo heev hloov rau lub qub 2200 series. Cov cuab yeej khiav ib tug tag nrho-fledged version ntawm Gaia (ob R77.30 thiab R80.10). Yog tias koj siv lub cuab yeej ua lub qhov rooj tseem ceeb hauv kev lag luam me, koj tuaj yeem cia siab tias qhov kev ua tau zoo hauv qab no:

  1. Internet channel - 50 Mbit;
  2. Tag nrho bandwidth - 300 Mbit;
  3. Tus naj npawb ntawm cov neeg siv - 200.

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Raws li koj tuaj yeem pom, cov cuab yeej thauj khoom hauv qhov no yog 47% thiab qhov no yog nrog kev tswj hwm hauv zos, piv txwv li. Ib Leeg configuration (ntau ntxiv txog standalone thiab faib no). Los ntawm tus kheej kev paub kuv tuaj yeem hais tias nrog kev tswj hwm hauv zos nws tsis pom zoo kom tshaj qhov load ntawm 50%, vim ... Tej zaum yuav muaj teeb meem nrog kev tswj hwm (nws yuav qeeb).
Yog hais tias lub cuab yeej raug suav hais tias yog ib ceg cuab yeej (piv txwv li nrog kev tswj hwm hauv nruab nrab), ces cov ntsuas yuav siab dua. Thiab koj tuaj yeem nkag mus rau thaj tsam daj hauv qhov loj me (piv txwv li, nrog lub nra ntawm 50% txog 70%). Koj tuaj yeem saib cov ntaub ntawv ntaus ntawv no.

SMB series 1400

Cov koob no suav nrog ntau yam khoom siv ib zaug: 1490, 1470, 1450, 1430 (Logical hloov pauv ntawm 1120, 1140 thiab 1180).

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Txawm tias muaj tseeb hais tias cov no yog tus yau tshaj Check Point qauv, lawv muaj tag nrho cov tsim nyog functionality:

  • Cov khoom siv SMB tuaj yeem sib sau ua ke rau hauv HA pawg (Active/Standby);
  • Yuav luag tag nrho cov software blades muaj (raws li nyob rau hauv "loj" daim ntawm hardware);
  • tuaj yeem tswj hwm ob qho tib si hauv zos thiab hauv nruab nrab (siv cov kev tswj hwm ib txwm muaj);
  • muaj kev hloov kho nrog WiFi, ADSL thiab PoE;
  • koj tuaj yeem txuas 3G modems;
  • Rack mount cov khoom siv muaj.

Txawm li cas los xij, nws tsim nyog ceeb toom txog qee qhov kev txwv / yam ntxwv:

  • Cov cuab yeej muaj teeb meem Gaia ntawm lub nkoj, thiab Gaia 77.20 Embedded. Qhov kev txwv no yog vim muaj cov cuab yeej tsim qauv (ARM processors siv). Nyob rau hauv rooj plaub ntawm kev tswj hwm hauv zos (standalone), koj yuav tsis tuaj yeem siv SmartConsole li ib txwm. Hloov chaw, muaj lub web interface. Koj tuaj yeem pom nws hauv qhov video no:


    Qhov piv txwv suav nrog 700 series, tab sis hauv txoj cai nws tsis muag hauv Russia.
  • Kev Nyab Xeeb Kev Nyab Xeeb tsis ua haujlwm. hem Emulation nkaus xwb. Koj tuaj yeem pom nws yog dab tsi no
  • Nws tsis yooj yim sua kom sib sau ib pawg hauv Load Sharing hom. Cov. kev dag los ntawm kev yuav ob "khoom pheej yig" ntawm cov khoom siv thiab faib cov khoom thauj hauv pawg ntawm lawv yuav tsis ua haujlwm.
  • Nrog rau kev tswj hwm hauv zos muaj kev txwv hnyav txog HTTPS tshuaj xyuas.
  • Anti-Virus scanning ntawm archives tsis ua haujlwm.
  • Tsis muaj DLP ua haujlwm.

Cov ntsiab lus kawg yog kab tias cov kev txwv tseem ceeb tshaj plaws uas feem ntau nyob twj ywm. Rau tag nrho HTTPS tshuaj xyuas, koj yuav raug yuam kom siv ib txwm muaj kev tswj hwm server. Hauv qhov no, koj yuav tswj tau lub cuab yeej ua lub rooj vag nrog tag nrho (yuav luag tag nrho) version ntawm Gaia.

Lwm yam kev txwv ntawm Gaia Embedded tuaj yeem pom ntawm no no. Nco ntsoov xyuas lawv ua ntej txiav txim siab yuav khoom.

Piv txwv li, xav txog lub chaw ua haujlwm me me uas muaj cov hauv qab no:

  • Internet channel - 50 Mbit;
  • Tag nrho bandwidth - 200 Mbit;
  • Tus naj npawb ntawm cov neeg siv - 200;
  • Kev tswj hwm hauv zos (Web interface).

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Raws li tuaj yeem pom los ntawm qhov loj me, tus qauv 1490 tau ua tiav nrog txoj haujlwm no nrog kev thauj khoom ntawm 46% (tsis tau tawm hauv thaj chaw ntsuab). Nrog rau kev tswj hwm siab, 1470 yuav tiv nrog txoj haujlwm no.
Cov ntaub ntawv rau 1400 series li tuaj yeem pom no.

Qauv: 1200R

Tshawb xyuas Point SMB cov kev daws teeb meem. Cov qauv tshiab rau cov tuam txhab me thiab cov ceg ntoo

Cov qauv no tsis tuaj yeem hu ua SMB. Qhov no twb yog ib qho kev daws teeb meem thiab tej zaum tsim nyog rau ib tsab xov xwm cais. Tam sim no peb yuav tsis xav txog cov qauv no hauv kev nthuav dav.

Webinar

Cov ntsiab lus ntxiv txog SMB cov cuab yeej tuaj yeem pom hauv peb lub vev xaib dhau los:

tshawb pom

Hauv kuv lub tswv yim, cov qauv SMB tshiab tau dhau los ua tau zoo heev. Kev ua tau zoo ntawm cov khoom siv tau nce ntau ntxiv thaum tuav tus nqi qib. Kuv tsis tau npaj los tham txog tus nqi siab / pheej yig ntawm cov khoom siv, vim Cov tswv yim no txawv heev rau cov tuam txhab sib txawv.

Tus qauv 3200 Kuv xav pom zoo rau cov tuam txhab me me uas txaus siab rau qib siab tshaj plaws ntawm kev tiv thaiv rau tus nqi tsim nyog. Ntxiv rau, qhov no yog qhov kev xaiv zoo rau cov neeg uas twb tau siv los ua haujlwm nrog tag nrho version ntawm Gaia. Lub R80.10 version kuj muaj nyob ntawm no. Thaum tau txais kev ceeb toom rau 3100, tus nqi tag yuav poob me ntsis ntxiv. Qhov no yog qhov kev xaiv zoo tshaj plaws rau cov ceg ntoo.

Cov khoom siv series 1400 yog ib qho kev cuam tshuam zoo thiab muaj tus nqi zoo tshaj plaws / zoo piv (tshwj xeeb tshaj yog tus nqi ntawm 1 SPU). Cov khoom siv no zoo heev rau cov ceg ntoo ntawm pob nyiaj siv. Siv kev tswj hwm hauv nruab nrab, koj tuaj yeem tswj cov khoom siv xws li lub rooj vag ib txwm muaj nrog rau tag nrho cov version ntawm Gaia. Tab sis, dua, tsis txhob hnov ​​qab txog txwv, uas koj yuav tsum paub tseeb koj tus kheej nrog.

PS Kuv xav ua tsaug Alexey Matveev (RRC tuam txhab) rau kev pab npaj cov khoom.

Tau qhov twg los: www.hab.com

Ntxiv ib saib