 |
| ¤ý | ÀÀ´ä ½Ã°£ÀÇ Çâ»ó
(200% ÀÌ»ó) |
| ¤ý | Traffic ÆøÁֽà ¼¹öÀÇ ´Ù¿î
Çö»ó ¹æÁö |
| ¤ý | DoS Attack Â÷´Ü |
| ¤ý | Web Log ÅëÇÕ |
 |
 |
|  |
 |
|
ħÀÔŽÁö(eTrust Intrusion Detection)
[ °³¿ä ¹× ±¸¼º ]
eTrust Intrusion Detection ´Â ³×Æ®¿öÅ© ±â¹ÝÀÇ ½Ç½Ã°£ °¨½Ã, °ø°ÝŽÁö ¹× ´ëÀÀ ½Ã½ºÅÛÀÌ´Ù.
º¸¾È Á¤Ã¥ ±¸Ãà ¹× ÃÖÀûÀÇ º¸¾È ½Ã½ºÅÛ ±¸ÃàÀ» À§ÇÑ ±âº» ÀÚ·á Á¦°øÇϸç, ³»ºÎ ÁÖ¿ä Á¤º¸ À¯Ãâ ¹æÁö,³×Æ®¿öÅ© Æ®·¡ÇÈÀÇ ³²¿ëÀ» ¹æÁöÇÒ ¼ö ÀÖ´Â ÅëÇÕ ³×Æ®¿öÅ© ¹× º¸¾È °ü¸® ÅøÀÌ´Ù.
[ ÁÖ¿ä ±â´É ]
|
º¸¾ÈÁ¤Ã¥ ¼³Á¤
|
- º¸¾È Á¤Ã¥À» ±×´ë·Î Rule·Î ¼³Á¤ (from, to, ³»¿ë, action)
- ¸ðµç ³×Æ®¿öÅ© Æ®·¡ÇÈÀ» °¡·Îä¾î ¹Ì¸® ¼³Á¤µÈ Rule·Î Filtering ÇÏ¿© º¸¾È °Ë»çÇÏ¿© ½Ç½Ã°£ ·Î±ë, °æº¸, Â÷´Ü
|
°¨½Ã
(Monitoring)
|
- TCP/IP ¸ðµç Æ®·¡ÇÈ °¨½Ã, ·Î±ë
- E-mail : Å°¿öµå, ¹®Àå °Ë»ö
- ¼ö»óÇÑ ³×Æ®¿öÅ© Á¢¼Ó : Login Fail, Session Time
- Telnet PlaybackÀ¸·Î Terminal Mode ÀçÇö °¡´É
- WISIWYG ½º³À ¼¦
|
Â÷´Ü
(Blockling)
|
- ¸ðµç Æ®·¡ÇÈÀÇ ³»¿ëÀÌ ¼³Á¤µÈ Match Á¶°Ç¿¡ ¸ÂÀ» ¶§ blocking °¡´É
- Mail Size¿¡ µû¶ó¼ °æ°í ¶Ç´Â Blocking °¡´É
- Default Blocking Message Á¤ÀÇ
- ³»ºÎ ÁÖ¿ä ¼¹ö Á¢±Ù Â÷´Ü
- URLÂ÷´Ü : ³»¿ë, Ä«Å×°í¸®, µî±Þ º°
|
°æº¸
(Alerting and Responding )
|
- °æ°í ¹æ¹ý :
Message, Run, E-mail, Fax, Sound, Append to File, Snmp Trap, Pager
- OPSECÃß°¡ (Checkpoint fw-1ÀÇ rule°ú ¿¬µ¿)
- User Define¿¡¼ ÇÁ·Î±×·¥ ¶Ç´Â dll ½ÇÇà ½Ã Parameter Àü´Þ °¡´É Mail, Fax, Pager
|
ºÐ¼® ¹× º¸°í
( Analyzing and Reporting )
|
- Reporting ´ë»óÀ» Single Station ¶Ç´Â Network Object ÁöÁ¤
- Report Á¾·ù ´ëÆø Áõ°¡
- Crystal ReportÀÌ¿ëÇÏ¿© »õ·Î¿î Report FormÀ» Ãß°¡
- Report Export¿¡ ODEC Áö¿ø (Dbase, Excel, Foxpro, MS-Access)
- Àü¿ë Report Viewer Ãß°¡
(Tree±¸Á¶·Î ¼±ÅÃÀû Á¶È¸, Drill-DownÀ¸·Î ÇØ´ç Ç׸ñ ÃßÀû)
- ±âº» Web ServerÀÌ¿ëÇÏ¿© Report Á¶È¸ ºÒÇÊ¿äÇÑ ³×Æ®¿öÅ© »ç¿ë ÅëÁ¦
|
°¨»ç
(Auditing)
|
- ¿Ïº®ÇÑ °¨»ç ÁõÀû (´©°¡, ¾ðÁ¦, ¹«¾ùÀ», ¾î¶»°Ô)
- ÇØÅ·ÀÇ Àü°úÁ¤ ±â·Ï, ÃßÀû
|
|
ħÀÔŽÁö
|
- »ç¿ëÀÚ ÇØÅ· ½Ãµµ ¹× Àǽɽº·¯¿î ³×Æ®¿÷ Á¢±ÙÀ» ŽÁöÇÏ¿© °æº¸
- »õ·Î¿î ħÀÔ À¯Çü (Intrusion Pattern) Á¤ÀÇ °¡´É
|
|
|
 |
|
|
