GRANDSTREAM GCC601X(W) Maganin Wutar Lantarki Daya
MANHAJAR MAI AMFANI
GCC601X(W) Tacewar zaɓi
A cikin wannan jagorar, za mu gabatar da sigogin sanyi na GCC601X(W) Module Firewall.
KARSHEVIEW
The overview shafi yana ba wa masu amfani da fahimtar duniya game da tsarin GCC Firewall da kuma barazanar tsaro da ƙididdiga, ƙarewa.view shafi ya ƙunshi:
- Sabis na Wuta: yana nuna sabis na Tacewar zaɓi da matsayin fakiti tare da tasiri da ƙare kwanakin aiki.
- Babban Log Tsaro: yana nuna manyan rajistan ayyukan kowane nau'i, mai amfani zai iya zaɓar nau'in daga jerin abubuwan da aka saukar ko danna gunkin kibiya don turawa zuwa shafin log ɗin tsaro don ƙarin cikakkun bayanai.
- Ƙididdiga na Kariya: yana nuna ƙididdiga na kariya daban-daban, akwai zaɓi don share duk kididdiga ta danna gunkin saiti.
- Manyan Aikace-aikacen Tace: yana nuna manyan aikace-aikacen da aka tace tare da lambar ƙidaya.
- Ƙwayar cuta Files: yana nuna abin da aka bincika files kuma sami kwayar cutar files kuma, don kunna / kashe anti-malware masu amfani za su iya danna gunkin saitunan.
- Matsayin Barazana: yana nuna matakin barazanar daga mahimmanci zuwa ƙarami tare da lambar launi.
- Nau'in Barazana: yana nuna nau'ikan barazanar tare da lambar launi da adadin maimaitawa, masu amfani za su iya jujjuya siginan linzamin kwamfuta akan launi don nuna sunan da abin da ya faru na lamba.
- Babban Barazana: yana nuna manyan barazanar tare da nau'i da ƙidaya.
Masu amfani za su iya gano mahimman sanarwa da barazana cikin sauƙi.
Masu amfani za su iya danna gunkin kibiya a ƙarƙashin Babban Log ɗin Tsaro don a juyar da su zuwa sashin Log ɗin Tsaro, ko shawagi kan gunkin gear a ƙarƙashin Ƙididdiga na Kariya don share ƙididdiga ko ƙarƙashin Virus files don kashe Anti-malware. Ƙarƙashin Matsayin Barazana da Nau'in Barazana, masu amfani kuma za su iya shawagi a kan jadawali don nuna ƙarin cikakkun bayanai. Da fatan za a koma ga alkalumman da ke sama.
SIYASAR FIREWALL
Manufar Dokokin
Manufofin dokoki suna ba da damar ayyana yadda na'urar GCC za ta kula da zirga-zirgar shigowa. Ana yin wannan ta WAN, VLAN, da VPN.
- Manufar Inbound: Ƙayyade shawarar da na'urar GCC za ta ɗauka don zirga-zirgar da aka fara daga WAN ko VLAN. Zaɓuɓɓukan da ke akwai sune Karɓa, Ƙi, da Sauke.
- IP Masquerading: Kunna IP masquerading. Wannan zai rufe adireshin IP na runduna na ciki.
- MSS ClampƘaddamar da wannan zaɓi zai ba da damar MSS (Mafi girman Girman Sashe) don yin shawarwari yayin tattaunawar zaman TCP
- Log Drop/Kin Traffic: Ba da damar wannan zaɓi zai haifar da tarihin duk zirga-zirgar da aka jefar ko ƙi.
- Sauke / Ƙin Ƙimar Shigar Traffic: Ƙayyade adadin rajistan ayyukan a sakan daya, minti, awa ko rana. Kewayon shine 1 ~ 99999999, idan babu komai, babu iyaka.
Dokokin shiga
GCC601X(W) yana ba da damar tace zirga-zirga masu shigowa zuwa rukunin cibiyoyin sadarwa ko tashar WAN kuma yana aiwatar da dokoki kamar:
- Karɓa: Don ba da izinin zirga-zirgar ababen hawa.
- Karyata: Za a aika da amsa zuwa gefen nesa da ke bayyana cewa an ƙi fakitin.
- Sauke: Za a jefar da fakitin ba tare da wani sanarwa ba zuwa gefen nesa.
Dokokin Gabatarwa
GCC601X(W) yana ba da damar ba da damar zirga-zirga tsakanin ƙungiyoyi daban-daban da musaya (WAN/VLAN/VPN).
Don ƙara ƙa'idar turawa, da fatan za a kewaya zuwa Module na Firewall → Policy Firewall → Dokokin Gabatarwa, sannan danna maɓallin "Ƙara" don ƙara sabuwar ƙa'idar turawa ko danna alamar "Edit" don gyara ƙa'ida.
Babban NAT
NAT ko Fassarar adireshin hanyar sadarwa kamar yadda sunan ke nuna fassarar ne ko taswirar adiresoshin sirri ko na ciki zuwa adiresoshin IP na jama'a ko akasin haka, kuma GCC601X(W) yana goyan bayan duka biyun.
- SNAT: Source NAT yana nufin taswirar adireshin IP na abokan ciniki (Adireshin sirri ko na ciki) zuwa na jama'a.
- DNAT: Makomar NAT shine tsarin juzu'i na SNAT inda za'a tura fakiti zuwa takamaiman adireshin ciki.
Shafin Advanced Firewall NAT yana ba da damar saita saiti don tushen da NAT makoma. Kewaya zuwa Module na Firewall → Policy Firewall → Advanced NAT.
SNAT
Don ƙara SNAT danna maɓallin “Ƙara” don ƙara sabon SNAT ko danna alamar “Edit” don gyara wanda aka ƙirƙira a baya. Koma ga adadi da teburin da ke ƙasa:
Koma zuwa teburin da ke ƙasa lokacin ƙirƙira ko gyara shigarwar SNAT:
DNAT
Don ƙara DNAT danna maɓallin "Ƙara" don ƙara sabon DNAT ko danna alamar "Edit" don gyara wanda aka ƙirƙira a baya. Koma ga adadi da teburin da ke ƙasa:
Koma zuwa teburin da ke ƙasa lokacin ƙirƙira ko gyara shigarwar DNAT:
Kanfigareshan Duniya
Sake lodin Haɗin Ruwa
Lokacin da aka kunna wannan zaɓin kuma an canza saitin bangon tacewar zaɓi, hanyoyin haɗin da aka ba da izini daga ƙa'idodin Tacewar zaɓi na baya za a ƙare.
Idan sabbin dokokin Tacewar zaɓi ba su ba da izinin haɗin da aka kafa a baya ba, za a ƙare kuma ba za ta iya sake haɗawa ba. Tare da wannan zaɓin da aka kashe, ana barin haɗin da ke akwai su ci gaba har sai sun ƙare, ko da sabbin dokoki ba za su bari a kafa wannan haɗin ba.
KARE TSARO
Tsaro na DoS
Saitunan asali - Tsaron Tsaro
Hare-Haren Sabis wani hari ne da aka yi niyya don sa albarkatun cibiyar sadarwa ba su samuwa ga masu amfani da halal ta hanyar ambaliya na'urar da aka yi niyya tare da buƙatun da yawa da ke haifar da na'urar yin lodi ko ma faɗuwa ko rufewa.
IP Banda
A wannan shafin, masu amfani za su iya ƙara adiresoshin IP ko kewayon IP don cire su daga binciken Tsaro na DoS. Don ƙara adireshin IP ko kewayon IP zuwa jerin, danna maɓallin "Ƙara" kamar yadda aka nuna a ƙasa:
Ƙayyade suna, sannan kunna matsayi ON bayan haka saka adireshin IP ko kewayon IP.
Tsaro mai lalata
Sashen tsaro na Spoofing yana ba da matakan ƙima da yawa ga dabaru iri-iri. Don kare hanyar sadarwar ku daga yin zuzzurfan tunani, da fatan za a ba da damar matakan da ke biyowa don kawar da haɗarin datse zirga-zirgar zirga-zirgar ku da zubewa. Na'urorin GCC601X(W) suna ba da matakan da za su magance ɓarna akan bayanan ARP, da kuma bayanan IP.
ARP Spoofing Tsaro
- Toshe ARP yana Amsa da Adireshin MAC Source: Na'urar GCC za ta tabbatar da adireshin MAC ɗin da aka nufa na takamaiman fakiti, kuma lokacin da na'urar ta karɓi amsa, za ta tabbatar da adireshin MAC na tushen kuma zai tabbatar da cewa sun dace. In ba haka ba, na'urar GCC ba za ta tura fakitin ba.
- Toshe ARP yana Amsa tare da Adireshin MAC Manufa mara daidaituwa: GCC601X(W) zai tabbatar da adireshin MAC na tushen lokacin da aka karɓi amsa. Na'urar za ta tabbatar da adireshin MAC na manufa kuma zai tabbatar da cewa sun dace.
- In ba haka ba, na'urar ba za ta tura fakitin ba.
- Rage VRRP MAC cikin Teburin ARP: GCC601X(W) zai ƙi gami da duk wani adireshin MAC da aka samar a cikin tebur na ARP.
ANTI-MALWARE
A cikin wannan sashe, masu amfani za su iya kunna Anti-malware da sabunta bayanan ɗakin karatu na sa hannu.
Kanfigareshan
Don kunna Anti-malware, kewaya zuwa Tsarin Wuta → Anti-Malware → Kanfigareshan.
Anti-malware: kunna ON/KASHE don kunna / kashe Anti-malware.
Lura:
Don tace HTTPs URL, da fatan za a kunna "SSL Proxy".
Tsaro mai lalata
ARP Spoofing Tsaro
Toshe ARP yana Amsa da Adireshin MAC Source: Na'urar GCC za ta tabbatar da adireshin MAC ɗin da aka nufa na takamaiman fakiti, kuma lokacin da na'urar ta karɓi amsa, za ta tabbatar da adireshin MAC na tushen kuma zai tabbatar da cewa sun dace. In ba haka ba, na'urar GCC ba za ta tura fakitin ba.
Toshe ARP yana Amsa tare da Adireshin MAC Manufa mara daidaituwa: GCC601X(W) zai tabbatar da adireshin MAC na tushen lokacin da aka karɓi amsa. Na'urar za ta tabbatar da adireshin MAC na manufa kuma zai tabbatar da cewa sun dace.
In ba haka ba, na'urar ba za ta tura fakitin ba.
Rage VRRP MAC cikin Teburin ARP: GCC601X(W) zai ƙi gami da duk wani adireshin MAC da aka samar a cikin tebur na ARP.
ANTI-MALWARE
A cikin wannan sashe, masu amfani za su iya kunna Anti-malware da sabunta bayanan ɗakin karatu na sa hannu.
Kanfigareshan
Don kunna Anti-malware, kewaya zuwa Tsarin Wuta → Anti-Malware → Kanfigareshan.
Anti-malware: kunna ON/KASHE don kunna / kashe Anti-malware.
Zurfin Binciken Fakitin Bayanai: Bincika abun ciki na fakitin kowane zirga-zirga bisa ga tsari. Zurfin zurfin, mafi girman ƙimar ganowa da haɓaka yawan amfani da CPU. Akwai matakin 3 na zurfin ƙasa, matsakaici da babba.
Ana Matse Scan Files: yana goyan bayan duban matsa files
A kan Overview shafi, masu amfani za su iya duba ƙididdiga kuma su sami ƙarewaview. Hakanan, yana yiwuwa a kashe Anti-malware kai tsaye daga wannan shafin ta danna gunkin saitunan kamar yadda aka nuna a ƙasa:
Hakanan yana yiwuwa a bincika log ɗin tsaro don ƙarin cikakkun bayanai
Library Sa hannun Virus
A wannan shafin, masu amfani za su iya sabunta bayanan sa hannu na ɗakin karatu na anti-malware da hannu, sabunta kullun ko ƙirƙirar jadawalin, da fatan za a koma ga adadi a ƙasa:
Lura:
Ta hanyar tsoho, ana sabunta shi a lokacin bazuwar (00:00-6:00) kowace rana.
RIGAN SHIGA
Tsarin Rigakafin Kutse (IPS) da Tsarin Gano Kutse (IDS) hanyoyin tsaro ne waɗanda ke sa ido kan zirga-zirgar hanyar sadarwa don ayyukan da ake tuhuma da ƙoƙarin shiga mara izini. IDS yana gano yuwuwar barazanar tsaro ta hanyar nazarin fakitin cibiyar sadarwa da rajistan ayyukan, yayin da IPS ke hana waɗannan barazanar ta hanyar toshewa ko rage cunkoson ababen hawa a ainihin lokacin. Tare, IPS da IDS suna ba da tsarin tsaro na cibiyar sadarwa, suna taimakawa kariya daga hare-haren intanet da kiyaye mahimman bayanai. Botnet wata hanyar sadarwa ce ta kwamfutoci da suka kamu da malware kuma wani ɗan wasan mugunta ke sarrafa su, galibi ana amfani da su don aiwatar da manyan hare-hare ta yanar gizo ko ayyukan haram.
IDS/IPS
Saitunan asali – IDS/IPS
A kan wannan shafin, masu amfani za su iya zaɓar yanayin IDS/IPS, Matsayin Kariya.
Yanayin IDS/IPS:
- Sanarwa: gano zirga-zirga kuma sanar da masu amfani kawai ba tare da toshe shi ba, wannan yayi daidai da IDS (Tsarin Gano Kutse).
- Sanarwa & Toshe: gano ko toshe zirga-zirgar zirga-zirga kuma yana sanar da batun tsaro, wannan daidai yake da IPS (Tsarin Rigakafin Kutse).
- Babu Mataki: babu sanarwa ko rigakafi, IDS/IPS an kashe a wannan yanayin.
Matsayin Kariya na Tsaro: Zaɓi matakin kariya (Ƙasashe, Matsakaici, Babban, Maɗaukakin Girma da Musamman). Matakan kariya daban-daban sun dace da matakan kariya daban-daban. Masu amfani za su iya tsara nau'in kariyar. Mafi girman matakin kariya, ƙarin ƙa'idodin kariya, kuma Custom zai baiwa masu amfani damar zaɓar abin da IDS/IPS zai gano.
Hakanan yana yiwuwa a zaɓi matakin kariya na tsaro na al'ada sannan zaɓi takamaiman barazanar daga lissafin. Da fatan za a duba hoton da ke ƙasa:
Don duba sanarwar da ayyukan da aka yi, ƙarƙashin rajistan tsaro, zaɓi IDS/IPS daga jerin zaɓuka kamar yadda aka nuna a ƙasa:
IP Banda
IDS/IPS ba za su gano adiresoshin IP na wannan jeri ba. Don ƙara adireshin IP zuwa jerin, danna maɓallin "Ƙara" kamar yadda aka nuna a ƙasa:
Shigar da suna, sannan kunna matsayi, sannan zaɓi nau'in (Source ko Destination) don adireshin IP (s). Don ƙara adireshin IP danna alamar "+" kuma don share adireshin IP danna gunkin "-" kamar yadda aka nuna a ƙasa:
Botnet
Saitunan asali - Botnet
A kan wannan shafin, masu amfani za su iya saita saitunan asali don saka idanu na waje na Botnet IP da Botnet Domain Name kuma akwai zaɓuɓɓuka uku:
Saka idanu: ana samar da ƙararrawa amma ba a toshe su.
Toshe: masu saka idanu da kuma toshe adiresoshin IP masu fita / sunayen yanki waɗanda ke samun damar botnets.
Babu Aiki: Adireshin IP / Sunan yanki na botnet mai fita ba a gano shi ba.
IP/Babban Sunan Domain
Ba za a gano adiresoshin IP akan wannan jeri ba don Botnets. Don ƙara adireshin IP zuwa jerin, danna maɓallin "Ƙara" kamar yadda aka nuna a ƙasa:
Shigar da suna, sannan kunna matsayi. Don ƙara adireshin IP/sunan yanki danna gunkin "+" kuma don share adireshin IP / sunan yanki danna gunkin "-" kamar yadda aka nuna a ƙasa:
Laburaren Sa hannu - Botnet
A wannan shafin, masu amfani za su iya sabunta IDS/IPS da bayanan ɗakin karatu na Botnet da hannu, sabunta kullun ko ƙirƙirar jadawalin, da fatan za a koma ga adadi a ƙasa:
Lura:
Ta hanyar tsoho, ana sabunta shi a lokacin bazuwar (00:00-6:00) kowace rana.
Sarrafa abun ciki
Siffar sarrafa abun ciki tana ba masu amfani damar tacewa (ba da izini ko toshe) zirga-zirga dangane da DNS, URL, keywords, da aikace-aikace.
Tace DNS
Don tace zirga-zirga dangane da DNS, kewaya zuwa Tsarin Wuta → Sarrafa abun ciki → Tace DNS. Danna maɓallin "Ƙara" don ƙara sabon DNS Tace kamar yadda aka nuna a kasa:
Sa'an nan, shigar da sunan mai tace DNS, kunna matsayi, kuma zaɓi aikin (Ba da izini ko Block) kamar yadda na Filtered DNS, akwai zaɓuɓɓuka biyu:
Sauƙaƙan Match: sunan yankin yana goyan bayan daidaita sunan yanki da yawa.
Wildcard: keywords da wildcard * za a iya shigar da su, kati * za a iya ƙara kawai kafin ko bayan shigar da kalmar. Domin misaliample: *.imag, labarai*, *labarai*. Ana ɗaukar * a tsakiya azaman hali na yau da kullun.
Don duba tace DNS, masu amfani za su iya ko dai samun shi a kan Overview shafi ko a karkashin Tsaro log kamar yadda aka nuna a kasa:
Web Tace
Saitunan asali - Web Tace
A kan shafin, masu amfani za su iya kunna / kashe duniya web tacewa, to masu amfani zasu iya kunna ko kashewa web URL tacewa, URL Nau'in tacewa da tace kalmomi da kanshi kuma don tace HTTPs URLs, don Allah kunna "SSL Proxy".
URL Tace
URL tacewa yana bawa masu amfani damar tacewa URL adireshi ta amfani da ko dai Sauƙaƙan wasa (sunan yanki ko adireshin IP) ko amfani da Katin daji (misali * misaliample*).
Don ƙirƙirar a URL tacewa, kewaya zuwa Module na Firewall → Tacewar abun ciki → Web Shafin tace → URL Tace tab, sannan danna maɓallin "Ƙara" kamar yadda aka nuna a ƙasa:
Saka suna, sannan kunna matsayin ON, zaɓi aikin (Ba da izini, Toshe), sannan a ƙarshe saka URL ko dai ta amfani da sunan yanki mai sauƙi, adireshin IP (Simple match), ko amfani da kati. Da fatan za a duba hoton da ke ƙasa:
URL Tace Nau'i
Masu amfani kuma suna da zaɓi ba kawai don tace ta takamaiman yanki / adireshin IP ko kati ba, har ma don tace ta nau'ikan don tsohonample Hare-hare da Barazana, Manya, da sauransu.
Don toshe ko ba da izinin duka nau'in, danna kan zaɓi na farko akan layi kuma zaɓi Duk Izinin ko Duk Toshe. Hakanan yana yiwuwa a toshe/ba da izini ta ƙananan rukuni kamar yadda aka nuna a ƙasa:
Keywords Tace
Tacewar kalmar key yana bawa masu amfani damar tace ta amfani da ko dai magana ta yau da kullun ko Wildcard (misali * misaliample*).
Don ƙirƙirar tace kalmomi, kewaya zuwa Module Firewall → Tacewar abun ciki → Web Shafin Tace → Keywords Tace shafin, sannan danna maballin "Ƙara" kamar yadda aka nuna a ƙasa:
Ƙayyade suna, sannan kunna matsayin ON, zaɓi aikin (Ba da izini, Toshe), sannan a ƙarshe ƙididdige abubuwan da aka tace ko dai ta amfani da furci na yau da kullun ko kati. Da fatan za a duba hoton da ke ƙasa:
Lokacin da tace kalmomin ke ON kuma an saita aikin zuwa Toshe. Idan masu amfani suna ƙoƙarin samun dama ga examp"Youtube" akan burauzar, za'a tura su tare da faɗakarwar Tacewar zaɓi kamar yadda aka nuna a ƙasa:
Example of keywords_filtering akan Browser
Don ƙarin cikakkun bayanai game da faɗakarwa, masu amfani za su iya kewaya zuwa Tsarin Wuta → Log Tsaro.
URL Library Sa hannu
A wannan shafin, masu amfani za su iya sabunta Web Tace bayanan ɗakin karatu na sa hannu da hannu, sabuntawa yau da kullun, ko ƙirƙirar jadawali, da fatan za a koma ga adadi na ƙasa:
Lura:
Ta hanyar tsoho, ana sabunta shi a lokacin bazuwar (00:00-6:00) kowace rana.
Tace aikace-aikace
Saitunan asali - Tace aikace-aikacen
A kan shafin, masu amfani za su iya kunna / kashe tacewa aikace-aikacen duniya, sannan masu amfani za su iya kunna ko kashe ta nau'ikan app.
Kewaya zuwa Tsarin Wuta → Sarrafa abun ciki → Tacewar aikace-aikacen, kuma akan maɓallin saiti na asali, kunna Tacewar Aikace-aikacen a duk duniya, yana yiwuwa kuma a ba da damar AI don ingantaccen rarrabuwa.
Lura:
lokacin da aka kunna Ganewar AI, za a yi amfani da algorithms mai zurfi na ilmantarwa don haɓaka daidaito da amincin rarraba aikace-aikacen, wanda zai iya cinye ƙarin CPU da albarkatun ƙwaƙwalwar ajiya.
Dokokin Tace App
A shafin Dokokin Tacewa ta App, masu amfani za su iya Ba da izini / Katange ta nau'in app kamar yadda aka nuna a ƙasa:
Soke Dokokin Tacewa
Idan an zaɓi nau'in ƙa'ida, masu amfani za su sami zaɓi don ƙetare ka'ida ta gama gari (nau'in ƙa'ida) tare da fasalin ƙa'idodin tacewa.
Don misaliampTo, idan an saita nau'in Browser app zuwa Block, to zamu iya ƙara ƙa'idar tacewa don ba da damar Opera Mini, ta haka an toshe duk nau'in app ɗin sai dai Opera Mini.
Don ƙirƙirar ƙa'idar tacewa, danna maɓallin "Ƙara" kamar yadda aka nuna a ƙasa:
Bayan haka, saka suna kuma kunna matsayi ON, saita aikin zuwa Ba da izini ko Toshe kuma a ƙarshe zaɓi daga cikin jerin apps ɗin da za'a yarda ko toshe. Da fatan za a duba hoton da ke ƙasa:
Laburaren Sa hannu - Tace Aikace-aikacen
A wannan shafin, masu amfani za su iya sabunta bayanan ɗakin karatu na Sa hannun Tacewar Aikace-aikacen da hannu, sabunta kullun ko ƙirƙirar jadawalin, da fatan za a koma ga adadi na ƙasa:
Lura:
Ta hanyar tsoho, ana sabunta shi a lokacin bazuwar (00:00-6:00) kowace rana.
SSL PROXY
Wakilin SSL sabar ce da ke amfani da ɓoyewar SSL don amintaccen canja wurin bayanai tsakanin abokin ciniki da sabar. Yana aiki a bayyane, ɓoyewa da ɓoye bayanan ba tare da an gano shi ba. Da farko, yana tabbatar da amintaccen isar da mahimman bayanai akan intanet.
Lokacin da aka kunna wakili na SSL, GCC601x(w) zai yi aiki azaman uwar garken wakili na SSL don abokan cinikin da aka haɗa.
Saitunan asali – SSL Proxy
Kunna fasali kamar SSL Proxy, Web Tace, ko Anti-malware yana taimakawa gano wasu nau'ikan hare-hare akan su webshafukan yanar gizo, irin su allurar SQL da hare-haren giciye (XSS). Waɗannan hare-haren suna ƙoƙarin cutarwa ko satar bayanai daga gare su webshafuka.
Lokacin da waɗannan fasalulluka ke aiki, suna haifar da rajistan ayyukan faɗakarwa a ƙarƙashin Log ɗin Tsaro.
Koyaya, lokacin da aka kunna waɗannan fasalulluka, masu amfani za su iya ganin gargaɗi game da takaddun shaida lokacin da suke lilon web. Wannan yana faruwa ne saboda mai binciken bai gane takardar shaidar da ake amfani da shi ba. Don guje wa waɗannan gargaɗin, masu amfani za su iya shigar da takaddun shaida a cikin burauzar su. Idan ba a amince da takardar shaidar ba, wasu aikace-aikacen na iya yin aiki daidai lokacin shiga intanet
Don tace HTTPS, masu amfani za su iya kunna wakili na SSL ta hanyar kewayawa zuwa Tsarin Wuta → SSL Proxy → Saitunan asali, sannan kunna ON wakili na SSL, bayan ko dai zaɓi Takaddun shaida na CA daga jerin abubuwan da aka saukar ko danna maɓallin "Ƙara" don ƙirƙirar sabon CA takardar shaidar. Da fatan za a koma ga adadi da teburin da ke ƙasa:
]
Domin SSL Proxy ya yi tasiri, masu amfani za su iya zazzage takardar shaidar CA da hannu ta danna gunkin saukewa kamar yadda aka nuna a ƙasa:
Sannan, ana iya ƙara takardar shedar CA zuwa na'urorin da aka yi niyya ƙarƙashin amintattun takaddun shaida.
Adireshin tushe
Lokacin da ba a kayyade adiresoshin tushe ba, duk haɗin da ke fita ana fatattakar su ta atomatik ta hanyar wakili na SSL. Koyaya, akan ƙara sabbin adiresoshin tushe da hannu, waɗanda keɓaɓɓun waɗanda aka haɗa kawai za'a sami wakilci ta hanyar SSL, suna tabbatar da ɓoyayyen ɓoyewa bisa ƙayyadaddun ƙayyadaddun mai amfani.
Jerin keɓancewar wakili na SSL
Wakilin SSL ya ƙunshi saɓani da duba zirga-zirgar ɓoyayyiyar SSL/TLS tsakanin abokin ciniki da sabar, wanda galibi ana yin shi don dalilai na tsaro da saka idanu a cikin cibiyoyin sadarwar kamfanoni. Koyaya, akwai wasu yanayi inda wakili na SSL bazai zama kyawawa ko aiki ga takamaiman ba webshafuka ko yanki.
Lissafin keɓancewa yana bawa masu amfani damar tantance adireshin IP, yanki, kewayon IP, da web nau'in da za a keɓe daga wakili na SSL.
Danna maɓallin “Ƙara” don ƙara keɓancewar SSL kamar yadda aka nuna a ƙasa:
Ƙarƙashin zaɓi na "Content", masu amfani za su iya ƙara abun ciki ta danna maɓallin "+" kuma su share ta danna kan "- icon" kamar yadda aka nuna a ƙasa:
LOKACIN TSARO
Shiga
A wannan shafin, rajistan ayyukan tsaro za a jera su tare da cikakkun bayanai kamar su Tushen IP, Tushen Tushen, Nau'in Attack, Aiki, da Lokaci. Danna maɓallin "Refresh" don sabunta lissafin da maɓallin "Export" don zazzage jerin zuwa injin gida.
Masu amfani kuma suna da zaɓi don tace rajistan ayyukan ta:
1. Lokaci
Lura:
Ana ajiye rajistan ayyukan ta tsohuwa na kwanaki 180. Lokacin da sararin faifai ya kai bakin kofa, za a share rajistan ayyukan tsaro ta atomatik.
2. Kai hari
A ware abubuwan shiga ta hanyar:
1. Tushen IP
2. Tushen Interface
3. Nau'in Hari
4. Aiki
Don ƙarin cikakkun bayanai, danna kan “alamar faɗa” a ƙarƙashin ginshiƙin Cikakkun bayanai kamar yadda aka nuna a sama:
Tsaro log
Lokacin da masu amfani suka danna maɓallin "Export", Excel file za a sauke su zuwa na'ura ta gida. Da fatan za a duba hoton da ke ƙasa:
Fadakarwa I-mel
A shafin, masu amfani za su iya zaɓar irin barazanar tsaro da za a sanar da su ta amfani da adiresoshin imel. Zaɓi abin da kuke so a sanar da ku daga lissafin.
Lura:
Dole ne a fara saita Saitunan Imel, danna "Saitunan Imel" don kunnawa da daidaita sanarwar Imel. Da fatan za a duba hoton da ke ƙasa:
E
Ƙayyadaddun bayanai:
- Samfurin samfur: GCC601X(W) Tacewar zaɓi
- Yana goyan bayan: WAN, VLAN, VPN
- Fasaloli: Manufofin Dokoki, Dokokin Gabatarwa, Advanced NAT
Tambayoyin da ake yawan yi (FAQ)
Tambaya: Ta yaya zan iya share Ƙididdiga na Kariya?
A: Juya kan gunkin kaya a ƙarƙashin Ƙididdiga Kariya kuma danna don share ƙididdiga.
Takardu / Albarkatu
 |
GRANDSTREAM GCC601X(W) Maganin Wutar Lantarki Daya [pdf] Manual mai amfani GCC601X W, GCC601X W One Networking Solution Firewall, GCC601X W. |
