HP X Unified Security Platform Series Uživatelský manuál Strana 143
- Strana / 333
- Tabulka s obsahem
- KNIHY
Hodnocené. / 5. Na základě hodnocení zákazníků
Reports
X Family LSM User’s Guide V 2.5.1 127
whichever is more recent. Data is added when the firewall session is closed; therefore, a large file
transfer in progress, for example, will not be tabulated until after it finishes.
Data is presented as one of the following graphs:
• Top Web si te s — The 25 most visited external Web sites by bandwidth. You must create a firewall
rule to match with the “web-filter” action between zones that you wish to monitor. You do not need to
enable either of the web filtering options (manual-filter or filter-service). Only connections to or
from TCP port 80 are displayed. The web site name is extracted from the HTTP request headers; for
requests that do not provide a host name or only an IP address, the IP is displayed. Sites with multiple
domains or that host images and other data on different Web servers appear as multiple entries.
• Firewall rule hits — The 25 most triggered firewall rules. The “hit count” is the number of firewall
sessions that have matched that rule in the table. The top ten rules are assigned colors. Unlike the
other tables, which are sorted by bandwidth, entries in this table are displayed in order of
precedence; rules outside of the first ten are listed as “other” even if they have larger hit counts.
• Top c l i ents — The 25 protocols generating the most traffic to and from internal IP addresses by
bandwidth. An internal address is one which is on an internal security zone, that is, one that is part
of any internal virtual interface. Generally the only IP addresses not considered internal are those
reached via a route out of the external virtual interface. Machines reached via PPTP, L2TP, and IPSec
tunnels that terminate on an internal security zone are considered as internal addresses and can
appear as clients.
• Top s er v ic e s — The 25 services consuming the most bandwidth. For TCP and UDP, the service
name is determined from the IP protocol and destination port. Traffic for which there is no known
service is shown as a generic name tcp(port), udp(port) or ip(protocol), such as “tcp(1234),”
“udp(5001),” or “ip(100).” FTP connections are aggregated, but services such as p2p that use
different port numbers appear as multiple entries and cannot be agregated.
The following figure shows the Firewall Reports page.
Figure 5–7: Firewall Reports Page
- X Family 1
- Local Security Manager 1
- User’s Guide 1
- 3Com Corporation 2
- 350 Campus Drive 2
- Marlborough, MA 01752 2
- Chapter 3. IPS Filtering 15 4
- Chapter 4. Firewall 63 4
- Chapter 6. Network 129 6
- Chapter 7. VPN 181 7
- Chapter 8. System 217 7
- Glossary 307 9
- Index 315 9
- Contents 10
- About This Guide 11
- Conventions 12
- Screen Captures 13
- Messages 13
- Related Documentation 14
- Customer Support 14
- Contact Information 15
- System Overview 17
- Core Functionality 18
- X Family Environment 19
- Local Clients 20
- System Requirements 20
- SMS Configuration 20
- LSM Navigation 21
- Logging In 22
- Logging In 23
- Figure 2–1: LSM Logon Page 23
- LSM Screen Layout 24
- Main Menu Bar 25
- Navigation 26
- Content and Functionality 27
- System Summary 28
- Log Summary 29
- Product Specifications 30
- IPS Filtering 31
- Using the IPS 32
- Security Profiles 33
- Chapter 3 IPS Filtering 34
- Managing Security Profiles 35
- Security Profile Details 36
- Security Profiles 37
- Filter Components 40
- Configuring DV Filters 41
- View DV Filters 42
- Filter Search 43
- Filters List (All Filters) 43
- Filter List Details 44
- Address 50
- Reset an Individual Filter 51
- Port Scan/Host Sweep Filters 51
- Filter Tuning 52
- Traffic Threshold Filters 54
- Traffic Threshold Details 55
- Column Definition 56
- Traffic Threshold Filters 57
- Action Sets 60
- Action Set Configurations 61
- Default Action Sets 62
- Managing Actions 63
- Rate Limit Action Set 65
- Quarantine Action Set 65
- Action Sets 67
- Notification Contacts 68
- Notification Contacts 69
- IPS Services 71
- IPS Services Page Details 72
- Preferences 75
- Adaptive Filter Configuration 76
- Click Apply 77
- Firewall 79
- Chapter 4 Firewall 80
- Default Firewall Rules 83
- Managing Firewall Rules 84
- Firewall Rules List Details 85
- Configuring Firewall Rules 87
- Configuration Notes 88
- Firewall Services 91
- Configuring Service Groups 94
- Schedules 95
- Managing Schedules 97
- Virtual Servers 98
- Virtual Servers page 99
- Configuring Virtual Servers 100
- Web Filtering 101
- How Web Filtering Works 102
- Setting Up Web Filtering 103
- Web Filtering Page 104
- Web Filtering 105
- Parameter Description 105
- Web Filter Service 106
- Custom Filter List 108
- Parameter/Function 109
- Configure URL Patterns 110
- Value Description 111
- URL Test 112
- Events: Logs, Traffic 113
- Streams, Reports 113
- Overview 114
- Alert Log 115
- Audit Log 116
- IPS Block Log 117
- Firewall Block Log 118
- Firewall Session Log 119
- Configuration 120
- System Log 121
- Managing Logs 122
- Viewing Logs 123
- Downloading a Log 123
- Resetting a log 124
- Searching a Log 125
- Managed Streams 126
- Managed Streams 127
- Field Description 127
- Rate Limited Streams 128
- Quarantined Addresses 129
- Column Description 130
- • Performance/Throughput 132
- Device Health 133
- Module Health 134
- Table 5–13: Module Health 135
- Performance/Throughput 136
- Port Health 136
- Reports 137
- Attack Reports 138
- Rate Limit Reports 139
- Traffic Reports 139
- Update report data 140
- Traffic Threshold Report 141
- Quarantine Report 141
- Firewall Reports 142
- Configuration Overview 146
- Deployment Modes 147
- Network Port Configuration 148
- Port Configuration Tasks 149
- Chapter 6 Network 150
- Security Zone Configuration 151
- Preconfigured Zones Ports 152
- Security Zone Configuration 153
- IP Interfaces 156
- Managing IP Interfaces 157
- IP Interfaces 159
- Configuring a GRE Tunnel 164
- Bridge Mode for IP Interfaces 166
- RIP for IP Interfaces 166
- RIPv1 Configuration Settings 167
- RIPv2 Configuration Settings 167
- IP Address Groups 169
- Default Gateway 172
- Routing Table 173
- Static Routes 175
- RIP Setup 176
- Routing 177
- Multicast (IGMP and PIM-DM) 179
- PIM-DM Setup 181
- DHCP Server 183
- DHCP Server Page 184
- Configure DHCP Server 185
- DHCP Relay 187
- Configuring DHCP Relay 188
- Static Reservations 190
- Network Tools 192
- DNS Lookup 193
- Find Network Path 193
- Traffic Capture 193
- Traceroute 195
- About VPN 198
- VPN Configuration Overview 199
- IPSec Configuration 200
- IPSec Status Details 201
- Chapter 7 VPN 202
- IPSec Configuration 205
- IKE Proposal 214
- IKE Proposal Details 215
- Configuring IKE Proposals 216
- IKE Proposal 217
- L2TP Configuration 224
- L2TP Status Page Details 225
- L2TP Server Configuration 226
- L2TP Configuration 227
- PPTP Configuration 228
- PPTP Server Configuration 229
- PPTP Configuration 231
- Chapter 8 System 234
- Persistent Settings 236
- Updating the TOS Software 240
- System Snapshots 243
- Time Options 245
- Figure 8–3: Time Options Page 246
- Internal CMOS Clock 247
- NTP Server 247
- Time Zones 248
- SMS/NMS 249
- High Availability 251
- How High Availability Works 252
- Email Server 257
- Syslog Servers 258
- Setup Wizard 258
- Authentication 261
- User List 262
- TOS and Local User Accounts 263
- TOS User Security Level 263
- Managing User Accounts 265
- Chapter 9 Authentication 268
- Privilege Groups 269
- X.509 Certificates 271
- CA Certificates 273
- Certificate Requests 276
- Managing Certificate Requests 278
- Local Certificates 279
- Preferences 282
- Preferences Parameter Details 283
- Browser Certificates 287
- Client Authentication Message 288
- Security Alert 289
- Certificate Authority 290
- Security Alert 291
- Invalid Certificate Name 293
- Figure A–11: HOSTS File 294
- Core Categories 298
- Gambling 299
- Hate Speech 299
- Violence 299
- Productivity Categories 300
- Advertisement 301
- Arts & Entertainment 301
- Computing & Internet 301
- Education 301
- Appendix B Web Filter Service 302
- Free 14-day Trial Period 306
- Log Formats and System 307
- Log Formats 308
- Audit Log Format 310
- Field Name Description 311
- Firewall Block Log Format 312
- Firewall Session Log Format 314
- VPN Log Format 315
- System Log Format 316
- Remote Syslog Log Format 317
- System Update Status Messages 319
- Device Maximum 321
- Parameter X5 X506 322
- Glossary 323
- X family device 328
Související produkty a manuály pro Sítě HP X Unified Security Platform Series
Sítě HP N1200 Uživatelský manuál
(198 stránky)
(198 stránky)
Sítě HP 100Base-T Instalační manuál
(20 stránky)
(20 stránky)
(176 stránky)
Sítě HP 8800 Router Series Instalační manuál
(121 stránky)
(121 stránky)
Sítě HP Cooktop 10GBE Uživatelský manuál
(34 stránky)
(34 stránky)
Sítě HP -PB 10 Uživatelský manuál
(112 stránky)
(112 stránky)
Sítě HP 3PAR Uživatelská příručka
(53 stránky)
(53 stránky)
Sítě HP SCSI Host Bus Adapters Instalační manuál
(18 stránky)
(18 stránky)
Sítě HP U522 Uživatelský manuál
(44 stránky)
(44 stránky)
Sítě HP 9200c Uživatelský manuál
(218 stránky)
(218 stránky)
Sítě HP 480-0005-00-15 Uživatelský manuál
(185 stránky)
(185 stránky)
Sítě HP 100VG-ANYLAN B5426-90001 Uživatelský manuál
(39 stránky)
(39 stránky)
Sítě HP DT-10 Uživatelský manuál
(20 stránky)
(20 stránky)
Sítě HP AD583C Uživatelský manuál
(132 stránky)
(132 stránky)
Sítě HP E5000 Rychlý návod
(2 stránky)
(2 stránky)
Sítě HP Cloud OS for Moonshot Uživatelská příručka
(126 stránky)
(126 stránky)
Sítě HP hn220w Příručka pro rychlý start
(12 stránky)
(12 stránky)
Sítě HP ActivCard Smart Card Uživatelský manuál
(24 stránky)
(24 stránky)
© 2020, manymanuals.cz. Všechna práva vyhrazena. | 0.083 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentáře k této Příručce