Into the overall security program Technical program Service programs and support programs in three parts.
1, technology Solutions Security products is a cornerstone of network security, network installation by a certain safety equipment to make the network structure more clearly, be significantly enhanced security; the same time to reduce the difficulty of security management, improve the effectiveness of safety management .
Here the increase in the local area network installation location of safety equipment and their role.
1, Firewall Installation location: LAN and routers; WWW server and managed between Local Area Network;
LAN firewall functions: (1) to achieve a one-way Visit To allow LAN users to access INTERNET resources, but strictly INTERNET users access to LAN resources;
(2) through the firewall, the entire local area network division INTERNET, DMZ area network access to areas within the three logically separate areas, it is beneficial for the entire network management;
(3) local area network to all workstations and servers in the firewall to the overall protection, as long as the changes through the firewall settings can prevent from INTERNET limited most of the attacks, network administrators need to pay attention only to provide the external DMZ zone services related to application security vulnerabilities;
(4) through the firewall's filtering rules to achieve port-level control, restricting access to the LAN users INTERNET;
(5) for flow control, to ensure that important business of the flow requirements;
(6) through the filter rules to control the element of time, limit high-volume Web applications in working hours of use.
The role of managed firewall
room: (7) through the firewall's filtering rules to restrict the INTERNET users to access WWW servers, the access control to a minimum, in this case, the network administrator can ignore the server system's security holes, just need to focus on WWW applications software security vulnerabilities;
(8) through the filter rules, the remote update of the time, the source (via IP address) to limit.
2, intrusion detection Installation location: LAN DMZ area and managed area room servers;
IDS role: (1) as a bypass device, monitor the network information, statistics and records of network anomalies, and abnormal connecting host;
(2) abnormal connection break; (3) through the linkage mechanism to send commands to the firewall, for a limited time on specific IP addresses implementation of the closure.
3, anti-virus software, network control center and the client software
Installation location: local area network anti-virus server and various end
Role of anti-virus server: (1) anti-virus software as the control center, in a timely manner through the INTERNET update the virus database, and force the LAN terminal has been switched to update virus database software;
(2) record all the terminal's virus database upgrades;
(3) records LAN Computer Time the virus appears, type and follow-up treatment measures.
Anti-virus software, the role of the client:
(4) on the machine's memory, read and write files to monitor, pre-treatment methods according to infected files;
(5) Monitor send and receive e-mail software, based on pre-treatment processing borne viruses;