Molweni! Wamkelekile kwisifundo sesithoba sekhosi . Kulo Sivavanye iindlela ezisisiseko zokulawula ukufikelela kwabasebenzisi kwimithombo eyahlukeneyo. Ngoku sinomnye umsebenzi - kufuneka sihlalutye indlela yokuziphatha kwabasebenzisi kwinethiwekhi, kwaye silungiselele ukufunyanwa kwedatha enokunceda kuphando lweziganeko ezahlukeneyo zokhuseleko. Ngoko ke, kwesi sifundo siza kujonga indlela yokugawulwa kwemithi kunye nendlela yokunika ingxelo. Kule nto, siya kufuna i-FortiAnalyzer, esiyifake ekuqaleni kwekhosi. Ithiyori efunekayo, kunye nesifundo sevidiyo, sifumaneka phantsi kokusikwa.
Kwi-FotiGate, iilogi zihlulwe zibe ziintlobo ezintathu: iilogi zendlela, iilog zesiganeko kunye neelogi zokhuseleko. Bona, bahlulahlulwe kwii-subtypes.
Amaxwebhu etrafikhi arekhoda ulwazi lokuhamba kwezithuthi olufana nezicelo kunye neempendulo, ukuba zikhona. Olu didi luqulathe udidi Phambili, lwasekuhlaleni kunye ne-Sniffer.
Udidi Phambili olusezantsi lunolwazi malunga netrafikhi ethe yamkelwa okanye yaliwe yiFortiGate ngokusekelwe kwimigaqo-nkqubo yomlilo.
I-subtype yeNgingqi iqulethe ulwazi malunga ne-traffic ngqo kwidilesi ye-IP ye-FortiGate kunye nakwiidilesi ze-IP apho ulawulo lwenziwa khona. Umzekelo, uqhagamshelo kwi-FortiGate web interface.
I-subtype ye-Sniffer iqulethe iilog zetrafikhi ezifunyenwe kusetyenziswa isipili se-traffic.
Iilogi zeminyhadala ziqulethe inkqubo okanye iziganeko zolawulo, ezinjengokongeza okanye ukutshintsha iiparitha, ukuseka kunye nokwaphula iitonela zeVPN, iziganeko zomzila oguquguqukayo, njalo njalo. Zonke ii-subtypes zinikezelwe kumzobo ongezantsi.
Kwaye uhlobo lwesithathu lukhuni lokhuseleko. Ezi logs zirekhoda iziganeko ezinxulumene nohlaselo lwentsholongwane, ukutyelelwa kwezixhobo ezingavumelekanga, ukusetyenziswa kwezicelo ezingavumelekanga, njalo njalo. Uluhlu olupheleleyo lukwabonisiwe kulo mfanekiso ungezantsi.
Unokuzigcina iilogi kwiindawo ezahlukeneyo - zombini kwiFortiGate ngokwayo nangaphandle kwayo. Ukugcina iingodo kwi-FortiGate kuthathwa njengokungena kwingingqi. Ngokuxhomekeke kwisixhobo ngokwaso, iilogi zinokugcinwa nokuba kwimemori yesixhobo okanye kwi-hard drive. Njengomthetho, iimodeli ezivela phakathi zine-hard drive. Iimodeli ezine-hard drive zilula kakhulu ukwahlula - kukho iyunithi ekugqibeleni. Ngokomzekelo, i-FortiGate 100E iza ngaphandle kwe-hard drive, kwaye i-FortiGate 101E iza ne-hard drive.
Iimodeli ezincinci nezindala zihlala zingenayo i-hard drive. Kule meko, imemori ye-flash isetyenziselwa ukurekhoda iilogi. Nangona kunjalo, kuyafaneleka ukuqwalasela ukuba ukubhala rhoqo iingodo kwimemori ekhanyayo kunokunciphisa ukusebenza kwayo kunye nobomi benkonzo. Ke ngoko, ukubhala iilogi kwimemori edanyazayo kuvaliwe ngokungagqibekanga. Kuyacetyiswa ukuba yenziwe kuphela kwimicimbi yokugawulwa kwemithi ngelixa usombulula iingxaki ezithile.
Xa urekhoda ngokungqongqo iilogi, akunandaba kwi-hard drive okanye kwimemori ye-flash, ukusebenza kwesixhobo kuya kuncipha.
Kuqhelekile ukugcina iilog kwiiseva ezikude. I-FortiGate inokugcina izingodo kwiiseva ze-Syslog, i-FortiAnalyzer okanye i-FortiManager. Ungasebenzisa kwakhona inkonzo yelifu ye-FortiCloud ukugcina izingodo.
I-Syslog yiseva yokugcina iilog kwizixhobo zenethiwekhi.
I-FortiCloud lulawulo lokhuseleko olusekwe kubhaliso kunye nenkonzo yokugcina ilogi. Ngoncedo lwayo, unokugcina ukude izigodo kunye nokwakha iingxelo ezifanelekileyo. Ukuba unothungelwano oluncinci oluncinci, isisombululo esihle sinokuba kukusebenzisa le nkonzo yelifu kunokuthenga izixhobo ezongezelelweyo. Kukho inguqulelo yasimahla yeFortiCloud ebandakanya ukugcinwa kwelog yeveki. Emva kokuthenga umrhumo, iilogi zingagcinwa unyaka.
I-FortiAnalyzer kunye ne-FortiManager zixhobo zangaphandle zokugcina iilogi. Ngenxa yokuba zonke zinenkqubo efanayo yokusebenza - i-FortiOS - ukuhlanganiswa kwe-FortiGate kunye nezi zixhobo azibonisi naziphi na iingxaki.
Nangona kunjalo, kukho umahluko onokuthi uphawule phakathi kwezixhobo zeFortiAnalyzer kunye neFortiManager. Eyona njongo iphambili yeFortiManager kulawulo oluphakathi kwezixhobo ezininzi zeFortiGate - ke ngoko, inani lememori yokugcina iilogi kwiFortiManager lincinci kakhulu kuneFortiAnalyzer (ukuba, ewe, sithelekisa iimodeli ukusuka kwicandelo lexabiso elifanayo).
Injongo ephambili ye-FortiAnalyzer ngokuchanekileyo ukuqokelela kunye nokuhlalutya izingodo. Ke ngoko, siya kuqwalasela ngakumbi ukusebenza nayo ngokusebenza.
Ithiyori yonke, kunye nenxalenye ebonakalayo, iboniswe kwesi sifundo sevidiyo:
Kwisifundo esilandelayo, siza kugubungela iziseko zokulawula iyunithi yeFortiGate. Ukuze ungaphoswa, landela uhlaziyo kula majelo alandelayo:
umthombo: www.habr.com