Ngemuva kwezinyanga eziyisi-6 zokuthuthukiswa
Okuqukethwe okuyisisekelo kokusabalalisa kusekelwe kukhodi
Ngaphezu kwalokho, ukusatshalaliswa kunikeza amathuluzi okudala ukucushwa okubekezelela amaphutha okusekelwe ekusetshenzisweni kwephrothokholi ye-CARP futhi kukuvumela ukuthi uqalise, ngaphezu kwe-firewall eyinhloko, i-node yokusekelayo ezovumelaniswa ngokuzenzakalelayo ezingeni lokucushwa futhi izothatha izintambo. umthwalo uma kwenzeka ukwehluleka kwenodi eyinhloko. Umlawuli unikezwa isixhumi esibonakalayo sesimanje nesilula sokumisa i-firewall, eyakhiwe kusetshenziswa uhlaka lwewebhu lwe-Bootstrap.
Enguqulweni entsha:
- Ikhono elakhelwe ngaphakathi lokuthumela izingodo kuseva ekude kusetshenziswa i-Syslog-ng;
- Kwengezwe uhlu oluhlukile lokubuka imithetho yesihlungi sephakethe ekhiqizwa ngokuzenzakalelayo;
- Izibalo ezingeziwe zayo yonke imithetho yesihlungi sephakethe;
- Ukuphatha okuthuthukisiwe
amagama okungelona iqiniso emithethweni ye-firewall (ikuvumela ukuthi usebenzise okuguquguqukayo esikhundleni sezisingathi, izinombolo zembobo kanye namanethi angaphansi). Kwengezwe amandla okungenisa nokuthekelisa iziteketiso ngefomethi ye-JSON. Kukhona ikhono lokuzikhethela lokugcina izibalo zamagama mbumbulu; - Ikhodi yokucubungula nokushintsha amasango isibhalwe kabusha;
- Isebenzise ikhono lokuvumelanisa amaqembu e-LDAP;
- Kwengezwe ikhono lokuthumela izicelo zokusayina isitifiketi;
- Ukwesekwa okwengeziwe kwemizila yokudlulisela nge-IPsec (VTI);
- Ukuvumelanisa iziteketiso, ama-VHID namawijethi kwenziwa nge-XMLRPC;
- Kwengezwe amandla okuqinisekisa kummeleli Wewebhu kanye ne-IPsec nge-PAM;
- Ukwesekwa okwengeziwe kokuxhuma ngeketango lommeleli;
- Sethule ikhono lokusebenzisa amaqembu ukulungisa amalungelo oxhumano lommeleli;
- Ama-plugin e-Netdata, WireGuard, Maltrail and Mail-Backup (PGP) aselungisiwe. Amaseva e-Dpinger kanye ne-DHCP afakwe kusistimu ye-plugin;
- Izinguqulo ezithuthukisiwe zesiRashiya;
- Kusetshenziswa izinguqulo ezintsha ze-Bootstrap 3.4, LibreSSL 2.9, Unbound 1.9, PHP 7.2, Python 3.7 kanye ne-squid 4.
Source: opennet.ru