Ogwiritsa ntchito ambiri akubweretsa zida zawo zonse za IT pamtambo wapagulu. Komabe, ngati kuwongolera ma antivayirasi sikukwanira pazomangamanga zamakasitomala, zoopsa zazikulu za cyber zimayamba. Zochita zikuwonetsa kuti mpaka 80% ya ma virus omwe alipo amakhala mwangwiro m'malo enieni. Mu positi iyi tikambirana za momwe tingatetezere zida za IT pamtambo wapagulu komanso chifukwa chake ma antivayirasi achikhalidwe sali oyenera pazolinga izi.
Poyamba, tikuwuzani momwe tidafikira lingaliro lakuti zida zodzitchinjiriza zanthawi zonse sizoyenera pamtambo wapagulu komanso kuti njira zina zotetezera ndizofunikira.
Choyamba, opereka nthawi zambiri amapereka njira zofunikira kuti atsimikizire kuti nsanja zawo zamtambo zimatetezedwa pamlingo wapamwamba. Mwachitsanzo, ku #CloudMTS timasanthula kuchuluka kwa magalimoto pamanetiweki, kuyang'anira zipika zamakina athu achitetezo amtambo, ndikuchita ma penti pafupipafupi. Magawo amtambo omwe amaperekedwa kwa kasitomala aliyense ayeneranso kutetezedwa bwino.
Kachiwiri, njira yachikale yolimbana ndi zoopsa za cyber imaphatikizapo kukhazikitsa ma antivayirasi ndi zida zowongolera ma antivayirasi pamakina aliwonse. Komabe, ndi makina ambiri enieni, mchitidwewu ukhoza kukhala wosagwira ntchito ndipo umafuna ndalama zambiri zogwiritsira ntchito makompyuta, potero zimakwezanso zowonongeka za kasitomala ndikuchepetsa ntchito yonse yamtambo. Ichi chakhala chofunikira kwambiri pakufufuza njira zatsopano zopangira chitetezo chothana ndi ma virus pamakina amakasitomala.
Kuphatikiza apo, mayankho ambiri a antivayirasi pamsika samasinthidwa kuti athetse mavuto oteteza zida za IT mumtambo wamtambo wapagulu. Monga lamulo, iwo ndi heavyweight EPP solutions (Endpoint Protection Platforms), zomwe, komanso, sizimalola makonda ofunikira kumbali ya kasitomala wa opereka mtambo.
Zikuwonekeratu kuti mayankho amtundu wa antivayirasi sali oyenera kugwira ntchito mumtambo, chifukwa amakweza kwambiri zida zosinthira panthawi yosintha ndi kusanthula, komanso alibe magawo ofunikira pakuwongolera ndi makonda. Kenako, tisanthula mwatsatanetsatane chifukwa chomwe mtambo umafunikira njira zatsopano zotetezera anti-virus.
Zomwe antivayirasi mumtambo wapagulu ayenera kuchita
Chifukwa chake, tiyeni tiyang'anenso za zomwe zimagwira ntchito m'malo enieni:
Kuchita bwino kwa zosintha ndi masanjidwe amisala omwe adakonzedwa. Ngati makina ambiri ogwiritsira ntchito antivayirasi achikhalidwe ayambitsa zosintha nthawi yomweyo, zomwe zimatchedwa "mkuntho" wazosintha zidzachitika mumtambo. Mphamvu ya khamu la ESXi lomwe limakhala ndi makina angapo pafupifupi silingakhale lokwanira kuthana ndi kuchuluka kwa ntchito zofananira zomwe zikuyenda mwachisawawa. Kuchokera pakuwona kwa opereka mtambo, vuto lotere limatha kubweretsa katundu wowonjezera pamagulu angapo a ESXi, zomwe pamapeto pake zidzatsogolera kutsika kwa magwiridwe antchito amtambo. Izi zitha, mwa zina, zingakhudze magwiridwe antchito a makina amakasitomala ena amtambo. Zofananazo zitha kuchitika poyambitsa kusanthula kwamisala: kukonzedwa munthawi yomweyo ndi disk system ya zopempha zambiri zofananira kuchokera kwa ogwiritsa ntchito osiyanasiyana zidzasokoneza magwiridwe antchito a mtambo wonse. Pokhala ndi mwayi waukulu, kuchepa kwa machitidwe osungirako kumakhudza makasitomala onse. Katundu woterewu wadzidzidzi samakondweretsa ngakhale woperekayo kapena makasitomala ake, chifukwa amakhudza "oyandikana nawo" mumtambo. Kuchokera pamalingaliro awa, antivayirasi yachikhalidwe imatha kubweretsa vuto lalikulu.
Kukhala kwaokha motetezeka. Ngati fayilo kapena chikalata chomwe chingakhale ndi kachilomboka chapezeka pakompyuta, chimatumizidwa kuti chikhale kwaokha. Zachidziwikire, fayilo yomwe ili ndi kachilombo imatha kuchotsedwa nthawi yomweyo, koma izi nthawi zambiri sizovomerezeka kumakampani ambiri. Ma antivayirasi amakampani omwe sanasinthidwe kuti azigwira ntchito mumtambo wa operekera, monga lamulo, amakhala ndi malo omwe amakhala kwaokha - zinthu zonse zomwe zili ndi kachilomboka zimagwera mmenemo. Mwachitsanzo, omwe amapezeka pamakompyuta a ogwiritsa ntchito makampani. Makasitomala a opereka mtambo "amakhala" m'magawo awo (kapena obwereketsa). Magawo awa ndi opaque komanso odzipatula: makasitomala sadziwa za wina ndi mzake ndipo, ndithudi, samawona zomwe ena akuchitira mumtambo. Mwachiwonekere, kukhazikitsidwa kwa anthu onse, komwe kudzafikiridwa ndi onse ogwiritsa ntchito ma antivayirasi pamtambo, kumatha kuphatikiza chikalata chokhala ndi zinsinsi kapena chinsinsi chamalonda. Izi ndizosavomerezeka kwa woperekayo ndi makasitomala ake. Chifukwa chake, pangakhale yankho limodzi lokha - kukhala kwaokha kwa kasitomala aliyense m'gawo lake, pomwe wopereka kapena makasitomala ena alibe mwayi.
Ndondomeko zachitetezo payekha. Wogula aliyense mumtambo ndi kampani yosiyana, yomwe dipatimenti yake ya IT imayika ndondomeko zake zachitetezo. Mwachitsanzo, oyang'anira amatanthauzira malamulo ojambulira ndikukonza masikelo odana ndi ma virus. Chifukwa chake, bungwe lililonse liyenera kukhala ndi malo ake owongolera kuti likhazikitse ndondomeko za antivayirasi. Nthawi yomweyo, zosintha zomwe zatchulidwa siziyenera kukhudza makasitomala ena amtambo, ndipo woperekayo ayenera kutsimikizira kuti, mwachitsanzo, zosintha za antivayirasi zimachitika ngati zachilendo pamakina onse a kasitomala.
Bungwe la zolipirira ndi chilolezo. Chitsanzo cha mtambo chimadziwika ndi kusinthasintha ndipo chimaphatikizapo kulipira kokha ndalama za IT zomwe zimagwiritsidwa ntchito ndi kasitomala. Ngati pali chosowa, mwachitsanzo, chifukwa cha nyengo, ndiye kuti kuchuluka kwa zinthu kumatha kuonjezedwa kapena kuchepetsedwa mwachangu - zonse kutengera zosowa zapakompyuta zamagetsi. Ma antivayirasi achikhalidwe sasintha kwambiri - monga lamulo, kasitomala amagula laisensi kwa chaka chimodzi kuti awerengeretu ma seva kapena malo ogwirira ntchito. Ogwiritsa ntchito mtambo nthawi zonse amadula ndikulumikiza makina ena owonjezera kutengera zosowa zawo zapano - chifukwa chake, zilolezo za antivayirasi ziyenera kuthandizira mtundu womwewo.
Funso lachiwiri ndilakuti laisensiyo idzafotokoza chiyani. Antivayirasi wamba ali ndi chilolezo ndi kuchuluka kwa ma seva kapena malo ogwirira ntchito. Malayisensi otengera kuchuluka kwa makina otetezedwa otetezedwa sali oyenera kwathunthu mumtundu wamtambo. Makasitomala amatha kupanga nambala iliyonse yamakina abwino kwa iye kuchokera pazomwe zilipo, mwachitsanzo, makina asanu kapena khumi. Nambala iyi sinthawi zonse kwamakasitomala ambiri; sizingatheke kuti ife, monga opereka chithandizo, tizitsata zosintha zake. Palibe mwayi waukadaulo wopatsa chilolezo ndi CPU: makasitomala amalandila mapurosesa (vCPUs), omwe amayenera kugwiritsidwa ntchito popereka chilolezo. Chifukwa chake, njira yatsopano yotetezera ma virus iyenera kuphatikiza kuthekera kwa kasitomala kudziwa kuchuluka kofunikira kwa ma vCPU omwe adzalandira ziphaso zotsutsana ndi ma virus.
Kutsata malamulo. Mfundo yofunika kwambiri, chifukwa mayankho omwe amagwiritsidwa ntchito ayenera kuonetsetsa kuti akutsatira zofunikira za owongolera. Mwachitsanzo, "okhala" amtambo nthawi zambiri amagwira ntchito ndi deta yaumwini. Pankhaniyi, woperekayo ayenera kukhala ndi gawo lina lamtambo lovomerezeka lomwe limakwaniritsa zofunikira za Personal Data Law. Ndiye makampani sayenera "kumanga" dongosolo lonse logwira ntchito ndi deta yaumwini payekha: kugula zipangizo zovomerezeka, kugwirizanitsa ndikuzikonza, ndikukhala ndi certification. Pachitetezo cha cyber cha ISPD chamakasitomala oterowo, antivayirasi iyeneranso kutsatira zofunikira zamalamulo aku Russia ndikukhala ndi satifiketi ya FSTEC.
Tidayang'ana njira zovomerezeka zomwe chitetezo cha antivayirasi mumtambo wapagulu chiyenera kukwaniritsa. Kenako, tigawana zomwe takumana nazo posintha njira ya antivayirasi kuti igwire ntchito mumtambo wa opereka.
Momwe mungapangire mabwenzi pakati pa antivayirasi ndi mtambo?
Monga momwe tawonetseratu, kusankha njira yothetsera kufotokozera ndi zolemba ndi chinthu chimodzi, koma kuigwiritsa ntchito muzochitika zamtambo zomwe zikugwira ntchito kale ndi ntchito yosiyana kwambiri ndi zovuta. Tikuwuzani zomwe tidachita komanso momwe tidasinthira antivayirasi kuti azigwira ntchito pamtambo wapagulu wa omwe amapereka. Wogulitsa yankho la anti-virus anali Kaspersky, yemwe mbiri yake imaphatikizapo njira zotetezera zolimbana ndi ma virus pamtambo. Tinakhazikika pa "Kaspersky Security for Virtualization" (Wothandizira Kuwala).
Zimaphatikizapo cholumikizira chimodzi cha Kaspersky Security Center. Makina opepuka komanso makina otetezedwa (SVM, Security Virtual Machine) ndi seva yophatikiza ya KSC.
Titaphunzira kamangidwe ka njira ya Kaspersky ndikuyesa mayesero oyambirira pamodzi ndi akatswiri opanga malonda, funso lidawuka ponena za kuphatikiza utumiki mumtambo. Kukhazikitsa koyamba kunachitika limodzi pamalo amtambo a Moscow. Ndipo ndi zomwe tinazindikira.
Pofuna kuchepetsa kuchuluka kwa magalimoto pamaneti, adaganiza zoyika SVM pagulu lililonse la ESXi ndi "kumangirira" SVM kwa makamu a ESXi. Pankhaniyi, othandizira owunikira amakina otetezedwa amapeza SVM ya ESXi yomwe imagwira ntchito pomwe akuyendetsa. Wobwereketsa wina adasankhidwa ku KSC yayikulu. Zotsatira zake, ma KSC apansi amakhala mwa obwereketsa a kasitomala aliyense ndipo amalankhula ndi KSC yapamwamba yomwe ili mugawo loyang'anira. Chiwembuchi chimakupatsani mwayi wothana ndi mavuto omwe amabwera mwa obwereketsa makasitomala.
Kuwonjezera pa nkhani ndi kukweza zigawo zikuluzikulu za odana ndi HIV yankho palokha, tinayang'anizana ndi ntchito yokonza maukonde kugwirizana kudzera kulenga zina VxLANs. Ndipo ngakhale yankholo poyamba lidapangidwa kwa makasitomala abizinesi okhala ndi mitambo yachinsinsi, mothandizidwa ndiukadaulo waukadaulo komanso kusinthasintha kwaukadaulo wa NSX Edge tidatha kuthana ndi mavuto onse okhudzana ndi kulekanitsidwa kwa lendi ndi chilolezo.
Tinagwira ntchito limodzi ndi mainjiniya a Kaspersky. Choncho, pofufuza njira yothetsera vutoli pokhudzana ndi kuyanjana kwa maukonde pakati pa zigawo za dongosolo, zinapezeka kuti, kuwonjezera pa kupeza kuchokera kwa othandizira kuwala kupita ku SVM, ndemanga ndizofunikiranso - kuchokera ku SVM kupita ku othandizira kuwala. Kulumikizana kwa netiwekiku sikutheka m'malo ambiri chifukwa chotheka kuyika makina ofanana pamakina omwe ali m'malo osiyanasiyana amtambo. Choncho, pa pempho lathu, ogwira nawo ntchito kuchokera kwa ogulitsa adakonzanso njira yolumikizira maukonde pakati pa wothandizira kuwala ndi SVM pofuna kuthetsa kufunikira kwa kugwirizana kwa intaneti kuchokera ku SVM kupita ku othandizira kuwala.
Njira yothetsera vutoli itatumizidwa ndikuyesedwa pamtambo wa Moscow, tidabwerezanso ku malo ena, kuphatikizapo gawo lamtambo lovomerezeka. Ntchitoyi tsopano ikupezeka m'zigawo zonse za dziko.
Zomangamanga za njira yotetezera chidziwitso mkati mwa dongosolo la njira yatsopano
Chiwembu chogwiritsa ntchito njira ya antivayirasi pamtambo wamtambo ndi motere:
Ndondomeko yogwiritsira ntchito yankho la antivayirasi pamtambo wamtambo #CloudMTS
Tifotokozereni mawonekedwe a magwiridwe antchito amtundu uliwonse wa yankho mumtambo:
β’ Konsoni imodzi yomwe imalola makasitomala kuyang'anira chitetezo chapakati: kuyendetsa masikeni, kuwongolera zosintha ndi kuyang'anira madera okhala kwaokha. Ndizotheka kukonza ndondomeko zachitetezo cha munthu aliyense mkati mwa gawo lanu.
Tiyenera kuzindikira kuti ngakhale ndife opereka chithandizo, sitimasokoneza makonda omwe amaikidwa ndi makasitomala. Chokhacho chomwe tingachite ndikukhazikitsanso ndondomeko zachitetezo kukhala zokhazikika ngati kukonzanso kuli kofunikira. Mwachitsanzo, izi zitha kukhala zofunikira ngati kasitomala adazilimbitsa mwangozi kapena kuzifooketsa kwambiri. Kampani nthawi zonse imatha kulandira malo owongolera okhala ndi mfundo zosasinthika, zomwe zimatha kuzikonza palokha. Choyipa cha Kaspersky Security Center ndikuti nsanjayi ikupezeka pamakina ogwiritsira ntchito a Microsoft. Ngakhale othandizira opepuka amatha kugwira ntchito ndi makina onse a Windows ndi Linux. Komabe, Kaspersky Lab ikulonjeza kuti posachedwa KSC idzagwira ntchito pansi pa Linux OS. Imodzi mwa ntchito zofunika za KSC ndikutha kuyang'anira kukhala kwaokha. Kampani iliyonse yamakasitomala mumtambo wathu ili ndi payekha. Njirayi imachotsa nthawi yomwe chikalata chomwe chili ndi kachilomboka chimawonekera mwangozi, monga momwe zingachitikire ngati antivayirasi wakale wamakampani omwe amakhala kwaokha.
β’ Wothandizira kuwala. Monga gawo lachitsanzo chatsopano, wothandizira wopepuka wa Kaspersky Security amayikidwa pamakina aliwonse. Izi zimathetsa kufunikira kosungirako ma antivayirasi pa VM iliyonse, zomwe zimachepetsa kuchuluka kwa malo a disk ofunikira. Utumikiwu umaphatikizidwa ndi zomangamanga zamtambo ndipo umagwira ntchito kudzera pa SVM, zomwe zimawonjezera kachulukidwe ka makina owoneka bwino pagulu la ESXi komanso magwiridwe antchito amtambo wonse. Wothandizira kuwala amapanga mzere wa ntchito pamakina aliwonse enieni: yang'anani mafayilo amafayilo, kukumbukira, ndi zina. Koma SVM ili ndi udindo wochita izi, zomwe tikambirana pambuyo pake. Wothandizirayo amagwiranso ntchito ngati firewall, amawongolera ndondomeko zachitetezo, amatumiza mafayilo omwe ali ndi kachilomboka kuti azikhala kwaokha ndikuyang'anira "thanzi" lonse la machitidwe omwe amaikidwapo. Zonsezi zitha kuyendetsedwa pogwiritsa ntchito single console yomwe yatchulidwa kale.
β’ Security Virtual Machine. Ntchito zonse zogwiritsa ntchito kwambiri (zosintha zachitetezo cha antivayirasi, masikani okhazikika) zimayendetsedwa ndi makina apadera a Security Virtual (SVM). Amayang'anira ntchito ya injini yolimbana ndi ma virus komanso ma database ake. Zomangamanga za kampani za IT zitha kuphatikiza ma SVM angapo. Njirayi imawonjezera kudalirika kwa dongosolo - ngati makina amodzi akulephera ndipo sayankha kwa masekondi makumi atatu, wothandizira amayamba kuyang'ana wina.
β’ Seva yophatikiza ya KSC. Chimodzi mwa zigawo za KSC yayikulu, yomwe imapatsa ma SVM ake kwa othandizira kuwala molingana ndi algorithm yomwe yafotokozedwa m'makonzedwe ake, ndikuwongoleranso kupezeka kwa ma SVM. Chifukwa chake, gawo la pulogalamuyo limapereka kusanja kwazinthu pama SVM onse amtundu wamtambo.
Algorithm yogwira ntchito mumtambo: kuchepetsa katundu pazomangamanga
Mwambiri, ma aligorivimu a antivayirasi amatha kuyimiridwa motere. Wothandizira amapeza fayilo pamakina enieni ndikuwunika. Zotsatira za chitsimikiziro zimasungidwa mu nkhokwe yachigamulo ya SVM yapakati (yotchedwa Shared Cache), cholowa chilichonse chomwe chimawonetsa fayilo yapadera. Njirayi imakulolani kuti muwonetsetse kuti fayilo yomweyi siyikufufuzidwa kangapo motsatana (mwachitsanzo, ngati idatsegulidwa pamakina osiyanasiyana). Fayiloyo imasinthidwanso pokhapokha ngati zasinthidwa kapena kujambula kwayambika pamanja.
Kukhazikitsa njira ya antivayirasi mumtambo wa opereka
Chithunzichi chikuwonetsa chithunzithunzi cha kukhazikitsidwa kwa yankho mumtambo. Kaspersky Security Center yayikulu imayikidwa m'malo olamulira amtambo, ndipo SVM yapayekha imayikidwa pagulu lililonse la ESXi pogwiritsa ntchito seva yophatikiza ya KSC (gulu lililonse la ESXi lili ndi SVM yake yolumikizidwa ndi zoikamo zapadera pa VMware vCenter Server). Makasitomala amagwira ntchito m'magawo awo amtambo, komwe kuli makina enieni okhala ndi othandizira. Amayendetsedwa kudzera pa ma seva a KSC omwe ali pansi pa KSC yayikulu. Ngati kuli kofunikira kuteteza makina owerengeka (mpaka 5), ββkasitomala atha kupatsidwa mwayi wofikira pa seva yapadera yodzipereka ya KSC. Kulumikizana kwa maukonde pakati pa makasitomala a KSC ndi KSC yayikulu, komanso othandizira owunikira ndi ma SVM, kumachitika pogwiritsa ntchito NAT kudzera pa EdgeGW kasitomala ma routers.
Malinga ndi kuyerekezera kwathu ndi zotsatira za mayeso a ogwira nawo ntchito kwa ogulitsa, Wothandizira Kuwala amachepetsa katundu wamakasitomala pafupifupi 25% (poyerekeza ndi kachitidwe kogwiritsa ntchito mapulogalamu odana ndi ma virus). Makamaka, antivayirasi wamba ya Kaspersky Endpoint Security (KES) yachilengedwe imawononga pafupifupi kuwirikiza kawiri nthawi ya CPU ya seva (2,95%) ngati njira yopepuka yogwiritsira ntchito mawonekedwe (1,67%).
tchati chofananira cha katundu wa CPU
Zofananazi zimawonedwa ndi kuchuluka kwa ma disks kulemba: kwa antivayirasi yapamwamba ndi 1011 IOPS, pa antivayirasi yamtambo ndi 671 IOPS.
Disk access rate graph yofananira
Kupindula kwa magwiridwe antchito kumakuthandizani kuti mukhalebe okhazikika komanso kugwiritsa ntchito mphamvu zamakompyuta moyenera. Mwa kusintha kuti mugwire ntchito pamtambo wapagulu, yankho silichepetsa magwiridwe antchito amtambo: limayang'ana pakatikati mafayilo ndikutsitsa zosintha, kugawa katunduyo. Izi zikutanthauza kuti, kumbali imodzi, ziwopsezo zokhudzana ndi zomangamanga zamtambo sizidzaphonya, kumbali ina, zofunikira zamakina owoneka bwino zidzachepetsedwa ndi pafupifupi 25% poyerekeza ndi antivayirasi yachikhalidwe.
Ponena za magwiridwe antchito, mayankho onsewa ndi ofanana kwambiri: pansipa pali tebulo lofananiza. Komabe, mumtambo, monga momwe zotsatira za mayeso pamwambapa zikuwonetsera, ndibwino kuti mugwiritse ntchito njira yothetsera malo enieni.
Za tariffs mkati mwa chimango cha njira yatsopano. Tinaganiza zogwiritsa ntchito chitsanzo chomwe chimatilola kupeza zilolezo potengera kuchuluka kwa ma vCPU. Izi zikutanthauza kuti chiwerengero cha zilolezo chidzakhala chofanana ndi ma vCPU. Mutha kuyesa antivayirasi yanu posiya pempho .
M'nkhani yotsatira pamitu yamtambo, tidzakambirana za kusinthika kwa WAFs wamtambo ndi zomwe zili bwino kusankha: hardware, mapulogalamu kapena mtambo.
Mawuwa adakonzedwa ndi ogwira ntchito pamtambo #CloudMTS: Denis Myagkov, womanga wamkulu ndi Alexey Afanasyev, woyang'anira chitetezo chazidziwitso.
Source: www.habr.com