Kwaziwai! Kugamuchirwa kuchidzidzo chechinomwe chekosi ... Vhura takajairana nemaprofile ekuchengetedza akadai seWebhu Kusefa, Kudzora Kudzora uye kuongorora kweHTTPS. Muchidzidzo chino tichaenderera mberi nesumo yedu kune zvekuchengetedza profiles. Chekutanga, isu tinozoziva nezve theoretical maficha ekushanda kweantivirus uye intrusion yekudzivirira system, tobva tatarisa kuti aya maprofile ekuchengetedza anoshanda sei mukuita.
Ngatitange ne antivirus. Kutanga, ngatikurukurei matekinoroji anoshandiswa neFortiGate kuona mavhairasi:
Antivirus scanning ndiyo iri nyore uye inokurumidza nzira yekuona mavhairasi. Inoona mavhairasi anonyatsoenderana nemasiginicha arimo muanti-virus database.
Grayware Scan kana isingadiwe chirongwa chekuongorora - tekinoroji iyi inoona zvirongwa zvisingadiwe zvakaiswa pasina ruzivo rwemushandisi kana mvumo. Nehunyanzvi, zvirongwa izvi hazvisi mavhairasi. Vanowanzo kuuya vakasungwa nezvimwe zvirongwa, asi kana vakaiswa vanokanganisa sisitimu, ndosaka vachinzi malware. Kazhinji zvirongwa zvakadaro zvinogona kuonekwa uchishandisa nyore greyware siginecha kubva kuFortiGuard research base.
Heuristic scanning - iyi tekinoroji yakavakirwa pane zvingangoitika, saka kushandiswa kwayo kunogona kukonzera nhema mhedzisiro, asi inogona zvakare kuona zero zuva mavhairasi. Mavhairasi ezuva reZero mavhairasi matsva asati adzidzwa, uye hapana masiginicha anogona kuaona. Heuristic scanning haigoneswe nekusarudzika uye inofanirwa kugoneswa pamutsetse wekuraira.
Kana ese antivirus masimba akagoneswa, FortiGate anoashandisa nenzira inotevera: antivirus scanning, grayware scanning, heuristic scanning.
FortiGate inogona kushandisa akati wandei anti-virus dhatabhesi, zvichienderana nemabasa:
- Yakajairika antivirus database (Yakajairwa) - iri mune ese FortiGate modhi. Inosanganisira masiginecha emavhairasi akawanikwa mumwedzi ichangopfuura. Iri ndiro diki diki antivirus dhatabhesi, saka inoongorora nekukurumidza kana yashandiswa. Nekudaro, iyi database haigone kuona mavhairasi ese anozivikanwa.
- Yakawedzerwa - chigadziko ichi chinotsigirwa nemhando zhinji dzeFortiGate. Inogona kushandiswa kuona mavhairasi asingachashandi. Mapuratifomu mazhinji achiri panjodzi yehutachiona uhu. Zvakare, mavhairasi aya anogona kukonzera matambudziko mune ramangwana.
- Uye yekupedzisira, yakanyanyisa base (Extreme) - inoshandiswa mune zvivakwa panodiwa chiyero chepamusoro chekuchengetedza. Nekubatsira kwayo, unogona kuona mavhairasi ese anozivikanwa, kusanganisira mavhairasi akanangana neakare masystem ekushandisa, ayo asina kuparadzirwa zvakanyanya panguva ino. Iri rudzi rwesiginecha dhatabhesi zvakare haritsigirwe nemhando dzese dzeFortiGate.
Kune zvakare compact siginecha dhatabhesi yakagadzirirwa kukurumidza kuongorora. Tichazotaura nezvazvo gare gare.
Iwe unogona kugadzirisa anti-virus database uchishandisa nzira dzakasiyana.
Nzira yekutanga ndeye Push Update, iyo inobvumira dhatabhesi kuti igadziriswe nekukurumidza kana FortiGuard dhatabhesi yekutsvagisa inoburitsa imwe update. Izvi zvinobatsira kune zvivakwa zvinoda kuchengetedzwa kwepamusoro, sezvo FortiGate ichawana zvigadziriso zvekukurumidzira pazvinenge zvavapo.
Nzira yechipiri ndeyokuisa purogiramu. Nenzira iyi iwe unogona kutarisa zvigadziriso awa yega, zuva kana vhiki. Ndiko kuti, pano nguva yakatarwa inoiswa pakufunga kwako.
Nzira idzi dzinogona kushandiswa pamwechete.
Asi iwe unofanirwa kugara uchifunga kuti kuitira kuti zvigadziriso zviitwe, unofanirwa kugonesa iyo antivirus mbiri kune imwechete firewall policy. Zvikasadaro, zvigadziriso hazviitwe.
Iwe unogona zvakare kudhawunirodha zvigadziriso kubva kuFortinet yekutsigira saiti uye wozozvirodha nemaoko kuFortiGate.
Ngatitarisei maitiro ekuvheneka. Kune matatu chete ayo - Yakazara Modhi muKuyerera Kwakavakirwa modhi, Kurumidza Modhi muKuyerera Kwakavakirwa modhi, uye Yakazara Modhi mune proxy modhi. Ngatitangei neYakazara Modhi muFlow mode.
Ngatitii mushandisi anoda kudhawunirodha faira. Anotumira chikumbiro. Sevha inotanga kumutumira mapaketi anoumba faira. Mushandisi anobva agamuchira aya mapakeji. Asi usati waendesa mapaketi aya kumushandisi, FortiGate inoabata. Mushure mekunge FortiGate yagamuchira pakiti yekupedzisira, inotanga kuongorora faira. Panguva ino, pakiti yekupedzisira yakamisikidzwa uye haina kuendeswa kumushandisi. Kana iyo faira isina mavhairasi, yazvino packet inotumirwa kumushandisi. Kana hutachiona hwaonekwa, FortiGate inotyora kubatana nemushandisi.
Yechipiri scanning mode inowanikwa muFlow Based is Quick Mode. Iyo inoshandisa compact siginecha dhatabhesi, iyo ine mashoma masiginecha pane yenguva dzose dhatabhesi. Iyo zvakare ine zvimwe zvipimo zvichienzaniswa neYakazara Mode:
- Haikwanise kutumira mafaera kubhokisi rejecha
- Haikwanise kushandisa heuristic analysis
- Zvakare haigone kushandisa mapakeji ane chekuita nenharembozha malware
- Mamwe mamodhi ekupinda nawo haatsigire iyi modhi.
Kurumidza modhi zvakare inotarisa traffic yehutachiona, makonye, ββtrojans uye malware, asi pasina buffering. Izvi zvinopa kuita zviri nani, asi panguva imwechete mukana wekuona hutachiona unoderedzwa.
MuProxy modhi, iyo chete yekutarisa modhi iripo ndeye Yakazara Modhi. Ne scan yakadai, FortiGate inotanga kuchengeta faira rese pachayo (kunze kwekunge, chokwadi, saizi inobvumidzwa yefaira yekuongorora yakapfuurwa). Mutengi anofanira kumirira kuti scan ipere. Kana hutachiona hukaonekwa panguva yekuongorora, mushandisi achaziviswa nekukurumidza. Nekuti FortiGate inotanga yachengeta faira rese yobva yatarisisa, izvi zvinogona kutora nguva yakati rebei. Nekuda kweizvi, zvinokwanisika kuti mutengi agumise kubatana asati agamuchira faira nekuda kwekunonoka kwenguva refu.
Mufananidzo uri pazasi unoratidza tafura yekufananidza yekuongorora modes - ichakubatsira iwe kuona kuti ndeupi rudzi rwekuvheneka rwakakodzera mabasa ako. Kugadzirisa uye kutarisa kushanda kweantivirus kunokurukurwa mukuita muvhidhiyo pamagumo echinyorwa.
Ngatiendei kune chikamu chechipiri chechidzidzo - iyo intrusion kudzivirira system. Asi kuti utange kudzidza IPS, unofanirwa kunzwisisa mutsauko uripo pakati pezvakawanda uye anomalies, uye zvakare kunzwisisa kuti ndedzipi nzira dzinoshandiswa naFortiGate kudzivirira kubva kwavari.
Zvakaitwa zvinozivikanwa kurwiswa nemapateni chaiwo anogona kuwonekwa uchishandisa IPS, WAF, kana siginecha yeantivirus.
Zvisizvo maitiro asina kujairika pamanetiweki, akadai sehuwandu hwetraffic hwakakurisa kana kukwira kupfuura mashandisirwo eCPU anojairika. Zvinetso zvinoda kuongororwa nekuti zvinogona kunge zviri zviratidzo zvekurwisa kutsva kusati kwaongororwa. Anomalies anowanzo onekwa pachishandiswa maitiro ekuongorora - anonzi chiyero-chakavakirwa masiginicha uye DoS marongero.
Nekuda kweizvozvo, IPS paFortiGate inoshandisa masiginecha mabhesi kuona kurwiswa kunozivikanwa, uye Rate-Yakavakirwa masiginicha uye DoS marongero kuona akasiyana anomalies.
Nekutadza, yekutanga seti ye IPS siginecha inosanganisirwa neimwe vhezheni yeFortiGate inoshanda system. Nekuvandudzwa, FortiGate inogamuchira masiginecha matsva. Nenzira iyi, IPS inoramba ichishanda pakurwisa zvitsva. FortiGuard inogadziridza IPS siginecha kazhinji.
Chinhu chakakosha chinoshanda kune ese IPS uye antivirus ndechekuti kana marezinesi ako apera, unogona kushandisa masaini achangoburwa. Asi haugone kuwana matsva pasina marezinesi. Naizvozvo, kusavapo kwemarezinesi kwakanyanya kusada - kana kurwiswa kutsva kuchioneka, haugone kuzvidzivirira nemasaini ekare.
IPS siginecha dhatabhesi yakakamurwa kuita yenguva dzose uye yakawedzerwa. Iyo yakajairwa dhatabhesi ine masiginicha ezvakajairika kurwisa izvo zvisingawanzo kana kusambokonzeresa manyepo. Iyo preconfigured chiito kune mazhinji emasiginecha aya ibhuroka.
Iyo dhatabhesi yakawedzerwa ine mamwe masiginecha ekurwisa ane mhedzisiro yakakura pakuita kwesystem, kana iyo isingagone kuvharwa nekuda kwehunhu hwavo hwakakosha. Nekuda kwehukuru hwedatabase iyi, haisi kuwanikwa paFortiGate modhi ine diki dhisiki kana RAM. Asi kune nharaunda dzakachengeteka zvakanyanya, ungangoda kushandisa hwaro hwakawedzerwa.
Kumisikidza uye kutarisa kushanda kweIPS kunokurukurwawo muvhidhiyo pazasi.
Muchidzidzo chinotevera tichatarisa kushanda nevashandisi. Kuti usarasikirwe, tevera zvigadziriso pazviteshi zvinotevera:
Source: www.habr.com