Tikugashirei kune yedu inotevera mini kosi. Panguva ino tichataura nezve sevhisi yedu nyowani -
Pano, ngatiite kamukira zvishoma. Ndine chokwadi chekuti vanhu vazhinji vava kufunga kuti: "Izvi zvakasiyana sei kubva
Zvinogona kutariswa nenetiweki maneja uchishandisa iyi ongororo:
- Network traffic analytics - kuti zviteshi zvinotakurwa sei, ndeapi maprotocol anoshandiswa, ayo maseva kana vashandisi vanodya huwandu hukuru hwetraffic.
- Network kunonoka uye kurasikirwa -avhareji yekupindura nguva yemasevhisi ako, kuvapo kwekurasikirwa pamatanho ako ese (kugona kuwana bhodhoro).
- Mushandisi traffic analytics - kuongororwa kwakazara kwevashandisi traffic. Traffic mavhoriyamu, maapplication anoshandiswa, matambudziko mukushanda nemasevhisi emakambani.
- Kuongororwa kwekuita kwechishandiso - kuratidza chikonzero chematambudziko mukushanda kwemakambani ekunyorera (kunonoka kwenetiweki, nguva yekupindura yebasa, dhatabhesi, maapplication).
- SLA monitoring -inoona otomatiki uye inoshuma kunonoka uye kurasikirwa kwakakosha paunenge uchishandisa yako yeruzhinji mawebhu application zvichienderana netraffic chaiyo.
- Tsvaga network anomalies - DNS/DHCP spoofing, zvishwe, nhema DHCP maseva, anomalous DNS/SMTP traffic uye zvimwe zvakawanda.
- Matambudziko nemagadzirirwo -kuonekwa kwevashandisi zvisiri pamutemo kana sevha traffic, izvo zvinogona kuratidza zvisizvo zvigadziriso zvekuchinja kana firewall.
- Comprehensive report - Chirevo chakadzama nezve mamiriro eiyo IT zvivakwa, zvichikubvumidza iwe kuronga basa kana kutenga mimwe michina.
Izvo nyanzvi yekuchengetedza ruzivo inogona kutarisa:
- Viral chiitiko - inoona hutachiona hwehutachiona mukati metiweki, kusanganisira isingazivikanwe malware (0-zuva) zvichienderana nekuongorora maitiro.
- Kuparadzirwa kweransomware - kugona kuona ransomware, kunyangwe ikapararira pakati pemakomputa akavakidzana pasina kusiya chikamu chayo.
- Abnormal Activity - traffic isina kujairika yevashandisi, maseva, maapplication, ICMP/DNS tunneling. Kuziva tyisidziro dzechokwadi kana dzinogona kuitika.
- Network kurwisa - port scanning, brute-force kurwisa, DoS, DDoS, traffic interception (MITM).
- Corporate data leak -kuonekwa kwekurodha pasi (kana kurodha) yedata yekambani kubva kumaseva efaira rekambani.
- Zvishandiso zvisina mvumo -kuonekwa kwezvishandiso zvisiri pamutemo zvakabatana netiweki yekambani (inotaridza mugadziri uye sisitimu yekushandisa).
- Zvikumbiro zvisingadiwe -Kushandiswa kwezvishandiso zvinorambidzwa mukati metiweki (Bittorent, TeamViewer, VPN, Anonymizers, nezvimwewo).
- Cryptominers uye Botnets -Kutarisa network yemidziyo ine hutachiona inobatanidza kune anozivikanwa C&C maseva.
Reporting
Zvichienderana nemhedzisiro yekuongorora, iwe unozogona kuona ese analytics paFlowmon dashboards kana muPDF mishumo. Pazasi pane mimwe mienzaniso.
General traffic analytics
Custom dashboard
Abnormal Activity
Zvishandiso zvakaonekwa
Typical test scheme
Muenzaniso #1 - hofisi imwe
Chinhu chakakosha ndechekuti iwe unokwanisa kuongorora zvese zvekunze uye zvemukati traffic izvo zvisina kuongororwa netiweki perimeter yekudzivirira zvishandiso (NGFW, IPS, DPI, nezvimwewo).
Muenzaniso #2 - mahofisi akawanda
Vhidhiyo chidzidzo
Summary
CheckFlow odhita mukana wakanaka kune IT/IS mamaneja:
- Ziva zvazvino uye zvinogoneka matambudziko mune yako IT zvivakwa;
- Tsvaga matambudziko nekuchengetedzwa kwemashoko uye kushanda kwemaitiro ekuchengetedza aripo;
- Ziva dambudziko rakakosha mukushanda kwebhizinesi zvikumbiro (network chikamu, server chikamu, software) uye avo vane basa rekurigadzirisa;
- Zvinonyanya kuderedza nguva yekugadzirisa matambudziko muIT infrastructure;
- Rongedzera kukosha kwekuwedzera machaneli, sevha huwandu kana kumwe kutenga kwemidziyo yekudzivirira.
Ndinokurudzirawo kuverenga chinyorwa chedu chakapfuura -
Kana uchifarira dingindira iri, gara wakatarisa (
Vashandisi vakanyoresa chete ndivo vanogona kutora chikamu muongororo.
Iwe unoshandisa NetFlow/sFlow/jFlow/IPFIX analyzers?
-
55,6%Hongu5
-
11,1%Kwete, asi ndinoronga kushandisa1
-
33,3%No3
9 vashandisi vakavhota. 1 mushandisi haana.
Source: www.habr.com