Download - 題目 : 防火牆架構與設定
-
::
-
1
-
All-in-One (Unified Threat Management, UTM) (VPN )
-
(Security Policy) (Packet Filter) (Authentication) (Logging , Monitor ,Report) (NAT) (Server Publish) (IDSVPN)
-
(who)(how) (what)
-
(Deny by Default): (Allow by Default):
-
2
-
(1/2) (Access Rules) (Authentication)
-
(2/2) (LoggingAlert and Monitor) (NATVirtual Server) IP
-
2
-
IP TCP/UDP ICMP TYPECODE TCP (URG/ACK/PSH/RST/SYN/FIN) IP IP Options
-
(Packet Filter)
-
(IP) (IP) (TCPUDPICMP) (InboundOutboundBoth) (AllowDeny)
-
(Packet Filtering)
-
Windows
-
Windows XP 1/3 1.
-
Windows XP 2/32. Windows
-
Windows XP 3/33. WindowsWindows
-
2
-
SYSLog Server SNMP Trap (syslog)
-
()
-
3
-
(Content Filter) (VPN)
-
(Content Filter)
-
(Application Content Filter)
-
HTTPWeb Content Filter Email Filter
-
HTTP (Keyword)URLURL HTTP MIME type HTTPGETPOSTHEADPUT Java Applet Active ActiveScriptingCookiesPopup
-
() (Attachment) SMTP(VRFY EXPN) ,(Masquerading) E-mail(Relay)
-
4
-
(Checklist) (Port scan) (Penetrate Test)
-
(Keep It Simple and concise) (Least privilege) (Defense in depth) (Minimal information)
-
, , :
-
http://dsa.dsc.com.tw/class/fire_wall/firewall_class1.asphttp://www.netfos.com.tw/reprint/fortinet.htm
http://eservice.seed.net.tw/class/class39.html