Siyakwamukela esifundweni sesibili sesifundo . Namuhla sizokhuluma mayelana nendlela yezizinda zokuphatha ku , sizophinde sixoxe ngenqubo yokucubungula izingodo - ukuqonda imigomo yokusebenza kwalezi zindlela kuyadingeka kuzilungiselelo zokuqala . Futhi ngemva kwalokho sizoxoxa ngesakhiwo esizosisebenzisa phakathi nesifundo, futhi senze ukucushwa kokuqala . Ingxenye yetiyori, kanye nokuqoshwa okugcwele kwesifundo sevidiyo, kutholakala ngaphansi kokusikwa.
Okokuqala, ake sikhulume ngezizinda zokuphatha futhi. Kunezinto ezimbalwa okudingeka uzazi ngazo ngaphambi kokuthi uqale ukuzisebenzisa:
- Amandla okudala izizinda zokuphatha anikwe amandla futhi akhutshaziwe phakathi nendawo.
- Kudingeka isizinda esihlukile sokulawula ukubhalisa noma imaphi amadivaysi ngaphandle kwe-FortiGate. Okusho ukuthi, uma ufuna ukubhalisa amadivayisi amaningi e-FortiMail kudivayisi, udinga isizinda esihlukile sokuphatha ukuze wenze njalo. Kodwa lokhu akuphikisani neqiniso lokuthi ukuze kube lula ukuhlanganisa amadivayisi we-FortiGate, ungakha izizinda ezihlukene zokuphatha.
- Inombolo enkulu yezizinda zokuphatha ezisekelwayo incike kumodeli yeyunithi ye-FortiAnalyzer.
- Uma uvumela ikhono lokudala izizinda zokuphatha, kufanele ukhethe imodi yazo yokusebenza - Okujwayelekile noma Okuthuthukile. Kumodi Ejwayelekile, awukwazi ukwengeza izizinda ezihlukile (noma uma kungenjalo ama-VDOM) e-FortiGate efanayo ezizindeni ezihlukene zokuphatha zedivayisi ye-FortiAnalyzer. Lokhu kungenzeka ngemodi ethuthukisiwe. Imodi ethuthukisiwe ikuvumela ukuthi ucubungule idatha evela ezizindeni ezibonakalayo ezahlukahlukene futhi uthole imibiko ehlukene ngazo. Uma ukhohlwe ukuthi yiziphi izizinda ezibonakalayo, bheka , kuchazwe lapho ngokuningiliziwe.
Sizobheka ekudaleni izizinda zokuphatha kanye nokwaba inkumbulo phakathi kwazo kamuva nje njengengxenye engokoqobo yesifundo.
Manje ake sikhulume ngendlela yokuqopha nokucubungula izingodo eziza ku-FortiAnalyzer.
Amalogi atholwe yi-FortiAnalyzer ayacindezelwa futhi alondolozwe kufayela lokungena. Uma leli fayela lifinyelela usayizi othile, liyabhalwa futhi lifakwe kungobo yomlando. Izingodo ezinjalo zibizwa nge-archived. Abhekwa njengamalogi angaxhunyiwe ku-inthanethi ngoba awakwazi ukuhlaziya ngesikhathi sangempela. Ziyatholakala ukuze zibukwe kuphela ngefomethi eluhlaza. Inqubomgomo yokugcina idatha esizindeni sokuqondisa inquma ukuthi amalogi anjalo azogcinwa isikhathi esingakanani kumemori yedivayisi.
Ngesikhathi esifanayo, izingodo zikhonjwe ku-database ye-SQL. Lawa malogi asetshenziselwa ukuhlaziywa kwedatha kusetshenziswa izindlela ze-Log View, i-FortiView ne-Reports. Inqubomgomo yokugcina idatha esizindeni sokuqondisa inquma ukuthi amalogi anjalo azogcinwa isikhathi esingakanani kumemori yedivayisi. Ngemuva kokuthi lawa malogi esesusiwe kumemori yedivayisi, angase ahlale ohlotsheni lwamalogi afakwe kungobo yomlando, kodwa lokhu kuncike kunqubomgomo yokulondoloza idatha esizindeni sokuphatha.
Ukuze siqonde izilungiselelo zokuqala, lolu lwazi lusanele impela. Manje ake sixoxe ngesakhiwo sethu:
Kuyo ubona amadivayisi ayi-6 - i-FortiGate, i-FortiMail, i-FortiAnalyzer, isilawuli sesizinda, ikhompyutha yomsebenzisi wangaphandle kanye nekhompyutha yomsebenzisi wangaphakathi. I-FortiGate ne-FortiMail ziyadingeka ukuze kukhiqizwe amalogi emishini ehlukahlukene ye-Fortinet ukuze kusetshenziswe isibonelo ukuze kucatshangelwe izici zokusebenza nezizinda ezihlukahlukene zokuphatha. Abasebenzisi bangaphakathi nabangaphandle, kanye nesilawuli sesizinda bayadingeka ukukhiqiza ithrafikhi ehlukahlukene. I-Windows ifakiwe kukhompuyutha yomsebenzisi wangaphakathi, futhi i-Kali Linux ifakwe kukhompyutha yomsebenzisi wangaphandle.
Kulesi sibonelo, i-FortiMail isebenza ngemodi Yeseva, okusho ukuthi iyiseva yemeyili ehlukile abasebenzisi bangaphakathi nabangaphandle abangashintshana ngayo imilayezo ye-imeyili. Izilungiselelo ezidingekayo ezifana namarekhodi e-MX amisiwe kusilawuli sesizinda. Kumsebenzisi wangaphandle, iseva ye-DNS isilawuli sesizinda sangaphakathi - lokhu kwenziwa kusetshenziswa ukudluliselwa kwembobo (noma obunye ubuchwepheshe be-Virtual IP) ku-FortiGate.
Lezi zilungiselelo azihlanganiswa ngesikhathi sesifundo ngoba azihambisani nesihloko sesifundo. Ukuthunyelwa kanye nokucushwa kokuqala kweyunithi ye-FortiAnalyzer kuzombozwa. Izingxenye ezisele zesakhiwo samanje zilungiswe kusenesikhathi.
Izidingo zesistimu zamadivayisi ahlukahlukene zibalwe ngezansi. Kimina, lesi sakhiwo sisebenza emshinini olungiselelwe kusengaphambili endaweni ebonakalayo ye-VMWare Workstation. Izici zalo mshini nazo zibalwe ngezansi.
Idivayisi
I-RAM GB
I-vCPU
I-HDD, GB
Isilawuli sesizinda
6
3
40
Umsebenzisi wangaphakathi
4
2
32
Umsebenzisi wangaphandle
2
2
8
I-FortiGate
2
2
30
I-FortiAnalyzer
8
4
80
I-FortiMail
2
4
50
Umshini wokuma
28
19
280
Izimfuneko zesistimu ezibalwe kuleli thebula ubuncane; ezimweni zomhlaba wangempela, izinsiza ezengeziwe ngokuvamile zizodingeka. Ulwazi olwengeziwe mayelana nezidingo zesistimu lungatholakala kokuthi .
Isifundo sevidiyo sethula izinto zetiyori okukhulunywe ngazo ngenhla, kanye nengxenye ebonakalayo - ngokucushwa kokuqala kwedivayisi ye-FortiAnalyzer. Jabulela ukubuka!
Esifundweni esilandelayo sizobheka ngokuningiliziwe izici zokusebenza ngamalogi. Ukuze ugweme ukuphuthelwa, bhalisela yethu .
Ungaphinda ulandele izibuyekezo ezinsizeni ezilandelayo:
Source: www.habr.com