Eicon Networks S92 Bedienungsanleitung PDF herunterladen (Seite 82)

YuChakTinMichael‘sGIACGCFWProjectAssignment

Page 82

Ifthelogfilegrowstoobig(thisispossibleinabusynetwork),considertostarta

newlogfile.Whenanewlogfileisstarted,thecurrentonewillbeautomatically

savedwithanamethathasthecurrentdateappendedtoit.

Apartfromthelog,wemay,throughtheSystemStatusinterface,watchinrealtime

thenumberofpacketsthatareDropped,Rejected,InspectedandLogged.

ConfiguringtheR ulebaseforFW2_B2C:

Refertot he“ProductsPreparation”section on FW1and WindowsNT hardening.

SecurityPoliciesandOrders:

FW2_B2Cisthesecondlayerof firewall protection againstoutsideintrusionalong

theB2Clink.Italsopreventstheinternalstaffsfromtamperingwiththepublic

serviceservers. Thesecuritypolicieshereinclude:

1,Ecommercewebservice:

n AnytrafficallowedfromInternal_Admin.

n HTTP/HTTPStrafficallowedfrom Internal_Dev (DevelopersuseHTTP/HTTPS

basedupdatemethodsuchasFrontpageServerextension).

n HTTP/HTTPStrafficallowedfromInternal_Clients.

n HTTP/HTTPStrafficallowedfromRAS_Net.

2,Externalemailservice:

n Anytrafficallowedfrom Internal_Admin.

n SMTPtrafficallowedfromtheinternalemailserverforretrievingandsending

emailstoandfromtheoutsideworld.

3,External DNSservice:

n Anytrafficallowedfrom Internal_Admin.

n DNSquery trafficallowedfromInternal_Dev.

n DNSquerytrafficallowedfromInternal_Clients.

n DNSquerytrafficallowedfromRAS_Net.

4,IDS:

1 2 ... 77 78 79 80 81 82 83 84 85 86 87 ... 208 209

Keine Kommentare

Eicon Networks S92 Bedienungsanleitung Seite 82