ããžãã¹ãã³ãªã誰ã§ãã³ã¹ãåæžã«åªããŸãã åãããšãITã€ã³ãã©ã¹ãã©ã¯ãã£ã«ãåœãŠã¯ãŸããŸãã
æ°ãããªãã£ã¹ããªãŒãã³ãããšã誰ãã®é«ªã®æ¯ãç«ã¡äžããå§ããŸãã çµå±ã®ãšããã以äžãæŽçããå¿ èŠããããŸãã
- ããŒã«ã«ãããã¯ãŒã¯;
- ã€ã³ã¿ãŒãããã»ã¢ã¯ã»ã¹ã XNUMX çªç®ã®ãããã€ããŒãéããŠäºçŽãããšããã«ãåŸã§ãã
- äžå€®ãªãã£ã¹ (ãŸãã¯ãã¹ãŠã®æ¯åº) ãžã® VPNã
- SMS çµç±ã®èªèšŒãæã€ã¯ã©ã€ã¢ã³ãåãã®ãããã¹ãããã
- ãã©ãã£ãã¯ããã£ã«ã¿ãªã³ã°ããŠãåŸæ¥å¡ããœãŒã·ã£ã« ãããã¯ãŒã¯ã«æéãè²»ãããããSkype ã§ãããã¹ããããããªãããã«ããŸãã
- ãŠã€ã«ã¹ãæ»æãããããã¯ãŒã¯ãä¿è·ããŸãã äŸµå ¥ä¿è· (IDS/IPS) ãæäŸããŸãã
- ãŠã€ã«ã¹å¯Ÿçãšã¹ãã 察çãåãã£ãç¬èªã®ã¡ãŒã« ãµãŒã㌠(pdd.yandex.ru ãä¿¡é Œããªãå Žå)ã
- ãã¡ã€ã«ãã³ãã
- ããããé»è©±ãå¿ èŠã§ãã PBX ãæŽçããSIP ãããã€ããŒããã®ä»ã®äŸ¿å©ãªæ©èœã«æ¥ç¶ããŸã...
ããããEnikey ã®ã¹ãã·ã£ãªã¹ãã¯ããã®ãããªèŠä»¶ãåãããšã³ã¿ãŒãã©ã€ãº ãããã¯ãŒã¯ãæ§ç¯ããããšã¯ã§ããŸãã...é«äŸ¡ãªã·ã¹ãã 管çè
ãéããŸãã?
å°æ¥ã®ã³ã¹ãã®èŠ³ç¹ãããéåžžã«å€§ããªã«ãŒãã«é¡ãæµ®ãã³äžãã£ãŠããŸãã
ãããããããã®ã³ã¹ãã¯ã次ã®ç¹ã«æ³šæããã°å€§å¹
ã«åæžã§ããŸãã UTMãœãªã¥ãŒã·ã§ã³ãçŸåšã§ã¯èšå€§ãªæ°ããããŸãã ãããŠãç§ã¯åé¡ã解決ããéã«ãã·ã³ãã«ã§ããã»ã©è¯ãããšããæŠç¥ã«åºå·ããŠãããããUTM ã«æ³šç®ããŸããã
ãã®ã·ã¹ãã ãäŒç€Ÿã®äºç®ã®ç¯çŽã«ã©ã®ããã«åœ¹ç«ã€ãããããŠãªããã®ã·ã¹ãã ãç¶æããããã«é«äŸ¡ãªã·ã¹ãã 管çè
ãå¿
èŠãªãã®ãã以äžã§èª¬æããŸãã
ããããä»åŸã®ããšãèãããšãããã¯ç¹æ®ãªè£œåã§ãããéçããããšèšããŸãã ã²ãŒããŠã§ã€ã®æ©èœããã詳现ã«è©äŸ¡ã§ããŸã
ç§ã¯èšäºãããã·ã¢èªãã§ãã€ãŸãããã調ã¹ãã«ããã¹ãŠãã©ãã»ã©çŽæçã§ããããç解ããããã«èšå®ããŸããã
åæã€ã³ã¹ããŒã«
ICS ã¯ãå®éã®ããŒããŠã§ã¢ãšãââã€ããŒãã€ã¶ãŒã®äž¡æ¹ã«ã€ã³ã¹ããŒã«ã§ããŸãã äžéšã®ãã¡ã³ã¬ã¹ PC ã䜿çšã§ããŸããããšãã°ãããªæãã
ãã®ã·ã¹ãã ã¯ä»¥äžã«åºã¥ããŠããŸã
ã€ã³ã¹ããŒã«ã¯ç©ºã®ãã£ã¹ã¯ã«å®è¡ãããŸãã ããæ£ç¢ºã«èšãã°ãããã«äœãããã£ãå Žåãå®å
šã«ããã«å¥ããåããããšãã§ããŸããæ®å¿µãªãããã€ã³ã¹ããŒã©ãŒã¯è±èªã®ã¿ããµããŒãããŠããŸãã ãã ããã€ã³ã¹ããŒã«åŸãã¡ã€ã³ã€ã³ã¿ãŒãã§ã€ã¹ã¯ãã·ã¢èªã«ãªãå ŽåããããŸãã
圌ãã¯èé害æ§ãå¿ããŠããŸããã§ãããã·ã¹ãã å
ã«è€æ°ã®ãã£ã¹ã¯ãããå Žåã¯ãZFS ã䜿çšããŠãããã XNUMX ã€ã® RAID ã«çµåã§ããŸãã
ãããã¯ãŒã¯ ã€ã³ã¿ãŒãã§ã€ã¹ãéžæããéžæãããããã¯ãŒã¯ãã IP ãå²ãåœãŠãŸãã
ããšãã°ã¡ãŒã« ãµãŒããŒãã»ããã¢ããããäºå®ãããå Žåã¯ãå®éã®ãã¡ã€ã³åãæå®ããŠãã ããã ä»ãã®ãããªå¿
èŠããªãå Žåã¯ãçªç¶æžããŠãæ§ããŸããã åŸããã€ã³ã¿ãŒãã§ãŒã¹ã§ä¿®æ£ã§ããŸãã
å šãŠïŒ èšå®ã§æå®ããã IP ãšããŒã 81 ã䜿çšã㊠Web ã€ã³ã¿ãŒãã§ã€ã¹ã«ãã°ã€ã³ã§ããŸãããã®æ®µéã§ã¯ DHCP ããŸã æå¹ã«ãªã£ãŠããªããããPC ã§åããããã¯ãŒã¯ãã IP ãæåã§å²ãåœãŠãå¿ èŠããããŸãã
ã€ã³ã¿ãŒãããã«æ¥ç¶ãããªãã£ã¹ãæ¥ç¶ããŸãã
åããŠãã°ã€ã³ãããšããŠã£ã¶ãŒããéå§ãããŸãã äœã 匷åãªãã¹ã¯ãŒããèšå®ããŸããã
ãã¹ã¿ãŒ
次ã«ãããã¯ãŒã¯èšå®ã«é²ã¿ãŸã
ãããã€ããŒãžã®æ¥ç¶ãšãã¹ãŠã®ãããã¯ãŒã¯ ã€ã³ã¿ãŒãã§ã€ã¹ã®åœ¹å²ãèšå®ããŸãã
è€æ°ã®ãããã€ããŒãæ§æãããã©ã³ã·ã³ã°ãæŽçã§ããŸãã
ã¡ãªã¿ã«ãè±èªã®ã€ã³ã¿ãŒãã§ãŒã¹èšèªã«æ
£ããŠããªãå Žåã¯ãããã§ç°¡åã«å€æŽã§ããŸãã
ããšãã°ããªãã£ã¹ãæ¬ç€Ÿã«æ¥ç¶ããå¿
èŠãããå Žåã 次ã«ãæ°ããæ¥ç¶ãäœæããŸã
ãªã¢ãŒã ãããã¯ãŒã¯äžã®ãªãœãŒã¹ãžã®ã«ãŒããæ§æããŸãã
åçã«ãŒãã£ã³ã°ã®ããšã¯å¿ããŠãã ãããããã«ã¯ãããŸããã
ç§ããã ãããããã®ãããããŸããããç§ã®æèŠã§ã¯ãããã¯å€§ããªæ¬ ç¹ã§ã...
åŸæ¥å¡åãã®ã€ã³ã¿ãŒããã ã¢ã¯ã»ã¹
ã»ãšãã©ã®å Žåãã²ãŒããŠã§ã€ã®äž»ãªã¿ã¹ã¯ã¯ãåŸæ¥å¡ã®ã€ã³ã¿ãŒããããžã®ã¢ã¯ã»ã¹ãå¶åŸ¡ããããšã§ãã
åŸæ¥å¡ã¯ãIP/MAC ãŸãã¯ãšãŒãžã§ã³ããŸãã¯ãã£ããã£ã ããŒã¿ã«ãä»ãããã°ã€ã³/ãã¹ã¯ãŒãã«ãã£ãŠèå¥ã§ããŸãã
ãŸããçµç¹ã§ Active Directory ã䜿çšããŠããå Žåã¯ãICS ã Active Directory ãšçµ±åã§ããŸãã
ãã£ã«ã¿ãªã³ã°èšå® (åŸæ¥å¡ãã©ãã«è¡ããããã©ãã«è¡ããªãã) ã¯éåžžã«åºç¯ã§ãã
èšå€§ãªæ°ã®æ¢è£œã®ã«ãŒã« ãã³ãã¬ãŒã:
YouTube ãèš±å¯ããŠããããã«ãããªãã¢ããããŒãããããšã¯çŠæ¢ã§ããŸãã
ããããèªåèªèº«ãå¶éããå¿
èŠã¯ãããŸãããICS ã¯ãåºç¯ãªã¬ããŒãã§å
šå¡ãã©ãã«è¡ã£ãã®ããã©ãã«è¡ã£ãã®ããæããŠãããŸãã
ã²ã¹ãçš Wi-Fi ã¯ã©ãã§ãã?
ãŸããã²ã¹ã Wi-Fi ã¯ããŠãŒã¶ãŒ ID ã®çŸ©åä»ãã«é¢ãããã·ã¢æ³ã®èŠä»¶ã«æºæ ããŠæ§æã§ããŸãã
ICS ã¯ãä»»æã® SMS ãããã€ããŒãä»ãã SMPP ãããã³ã«çµç±ã® SMS ã®éä¿¡ããµããŒãããŸãã
é»è©±ã
ã¯ãã¯ãïŒ Asterisk ã䜿çšããŠå¥ã®ãµãŒããŒãã€ã³ã¹ããŒã«ããå¿
èŠã¯ãããŸããã ãã§ã« ICS ã«å«ãŸããŠããŸãã
Megafon (emotionãmultifon) ããã® SIP æ¥ç¶ã«æåããŸããã
å人åãã®æºåž¯æéã§MegafonããSIPãååŸããæ¹æ³ã¯èšäºã§èªãããšãã§ããŸã
ã»ãã¥ãªãã£ã
ICS ã«ã¯ãèŠä»¶ã«å¿ããŠã»ãã¥ãªã㣠ã¬ãã«ãã«ã¹ã¿ãã€ãºã§ããããŒã«ãæ°å€ããããŸããããšãã°ãç¡æã®ãŠã€ã«ã¹å¯Ÿçãœããã§ãã ClamAV ã
åãããããã®ãªãfail2Banã§ãæ°ã¯ãªãã¯ã§èšå®å¯èœ
ICS ã¯ãããèªäœããã©ãã£ãã¯ãééãããã«ããããã¯ãŒã¯æ©åšããã® netflow ãããã³ã«çµç±ã®ãã©ãã£ãã¯ãç£èŠããããšãã§ããŸãã
ã³ãã¥ãã±ãŒã·ã§ã³ã°ããº
é»è©±ãã¡ãŒã«ã ãã§ãªãåŸæ¥å¡ã®ã³ãã¥ãã±ãŒã·ã§ã³ãå¯èœ
Jabberçµç±ã§ãå¯èœã§ãã 確ãã«ããã®ãããªãããã³ã«ã«ã€ããŠèŠããŠãã人ã¯ã»ãšãã©ããŸããã
ãŠã§ããµãŒããŒ:
ICS ã«ã¯ãPHP ããµããŒããã Web ãµãŒããŒããããŸãã ç¬èªã® HTTPS 蚌ææžã賌å
¥ããå Žåã¯ãããã€ã³ã¹ããŒã«ããããšããICS ãç¡æã® Let's Encrypt ãåãåãããã«æå®ããããšãã§ããŸãã
ååº Web ãµã€ããåºåã®ã©ã³ãã£ã³ã° ããŒãžããã¹ãããã«ã¯ããã§ååã§ãã ãã ããã«ã¹ã¿ã ã¢ãžã¥ãŒã«ã䜿çšããŠéãããŒã¿ã«ã«åã蟌ãããšã¯ã§ããŸããã ãããŠç§ã«ãšã£ãŠãããã¯æããªããšã§ãã ããã§ããã²ãŒããŠã§ã€ã¯ã²ãŒããŠã§ã€ã§ããç¶ããªããã°ãªããŸããã
ç£èŠãšéç¥ã®æè»ãªæ§æã
ã¢ã©ãŒã ã Telegram ã«éä¿¡ããããšãã§ããŸãã ãããŠããã·ã¢é£éŠã®çŸå®ã§ã¯ããããã·ãä»ããŠã¡ãã»ãŒãžãéä¿¡ããããšããå¯èœã§ãã
çµè«ãšããŠ
ICS ã€ã³ã¿ãŒããã ã²ãŒããŠã§ã€ã«ã¯ãå°èŠæš¡ãªãã£ã¹ã®æ©èœã«å¿
èŠãªã»ãŒãã¹ãŠã®ã³ã³ããŒãã³ããå«ãŸããŠããŸãã
ããã«ãããããã¹ãŠã¯åå¿è
ã®ã·ã¹ãã 管çè
ã§ãèšå®ã§ããŸãã
ã·ã¹ãã 㯠FreeBSD äžã«æ§ç¯ãããŠããªãã«ãããããããssh çµç±ã§ã·ã¹ãã ã«ã¢ã¯ã»ã¹ããããšã¯ã§ããŸããã ã€ãŸããæŸèæããªããš PHP ã¢ãžã¥ãŒã«ãã€ã³ã¹ããŒã«ã§ããŸããã èªåãæã£ãŠãããã®ã«æºè¶³ããå¿ èŠããããŸã... ãŸãã¯ããµããŒãã«äŸé ŒããŠå®æãããŠãã ããã
ãããã«ããåãã®ãã¡ã¯
ã©ã€ã»ã³ã¹ã«ã¯æå¹æéããããŸããããããã«ãé¢ãããè²»çšã¯ããªãããããŸã
ãã®ã·ã¹ãã ã¯ãç·åãã¹ãã®ãã³ãäžã§é©åã«æ©èœããŸããã
顧客ãæ¿èªãããã®ã·ã¹ãã ããæŠéãã§ã©ã®ããã«åäœãããã«èå³ãããå Žåã¯ã3 ïœ 6 ãæ以å ã«ãçºçãããã¹ãŠã®åé¡ãšå°é£ãå«ããã¬ãã¥ãŒãæžããŸãã å¯èœã§ããã°ãæè¡ãµããŒãã®å質ã確èªããŸãã
ã³ã¡ã³ãã§ã¯ãæŠéã§ã®äœ¿çšã«ãããŠè©³çŽ°ã«å¯ŸåŠããå¿
èŠããã質åããåŸ
ã¡ããŠããŸãã
åºæïŒ habr.com