Check Point FireWall-1 ªºÅçÃÒªA°È
§@¬°¤@Ó¥X¦âªººôµ¸«O¦w±M®a¡A°£¤F¾Ö¦³Â×´Iªººôµ¸ª¾ÃÑ¥~¡AÀY¸£¥²¶·²`«ä²Ó±K¡A¹ï¥ô¦ó¬ðµo®É±¡³£¦³§Y®Éªº¸Ñ¨M¯à¤O¡AÁÙn¹ï¶g³òªº¨Æª«¤Q¤À¤F¸Ñ¡A°µ¨C¤@¥ó¨Æ±¡¤§«e³£¦³¤@Ó¶g¥þªº¹î¹º¡A¥H¤Î°µ¦n¹w¨¾±¤¬I¡C
¤W´Á¬°¤j®aÁ¿¹L Check Point FireWall-1 ¨¾¤õÀ𪺦s¨ú±±¨î¥\¯à«á¡A¤µ¦¸¦A¬°¤j®aÁ¿¸Ñ¤@¤UCheck Point Firewall ªº¨ä¥L¥\¯à¡C¬°¬Æ»ò Check Point VPN-1/FireWall-1 ¦b·~¬É³o»ò¬y¦æ©M¨ü¨ì¼sªxÀ³¥Î¡H¦]¬°¥¦¬O¤@®M ¡§ºî¦X©Ê ¡§ ªººôµ¸«O¦w²£«~¡A¥¦°£¤F¾Ö¦³·~¬É³Ì·sªº Stateful Inspection ¨¾¤õÀð§Þ³N©M°ª®Ä¯à¦s¨ú±±¨î¥~¡AÁÙ´£¨Ñ¤F¨Ï¥ÎªÌÅçÃÒªA°È (Authentication)¡Bºôµ¸¦ì§}Âà´« (Network Address Translation)¡BµêÀÀ¨p¤Hºôµ¸ (Virtual Private Network) ¡K¡Kµ¥¦hºØ¥\¯à¡C©Ò¥H«Ü¦h¤¤¤j«¬¥ø·~¤W¤@©w·|µoı Check Point VPN-1/FireWall-1¸ñ¼v¡C
Check Point VPN-1/FireWall-1 ªºÅçÃÒªA°È (Authentication Service) ¬O¥Î§@®Ö¹ê¨Ï¥ÎªÌ¨¥÷¤§¥Î¡C·í¨Ï¥ÎªÌ¶i¥Xºôµ¸ªº®ÉÔ¡A©ÎªÌ»Ýn¦s¨ú¬Y¨Ç¯S©w¸ê·½¡Aºôµ¸«O¦wºÞ²zªÌ³£¥i¥H¦b Policy Editor ¸Ì±¤À§O«ü¥X¨º¨Çºôµ¸¸ê·½¥²¶·¨ü¨ì«OÅ@¡A¨Ï¥ÎªÌ¦s¨ú®É¥²¶·´£¨Ñ¥¿½Tªº¨Ï¥ÎªÌ¦WºÙ©M±K½X¤~¥i¨Ï¥Î¡C¦¹¥~¡A¾ãÓÅçÃÒ¹Lµ{©Mµ²ªG¡Aºôµ¸«O¦wºÞ²zªÌ³£¥i¥H³z¹L Log Viewer ¨ÓºÊ¹î©MÅã¥Ü¥X¨Ó¡C
¹Ï¤¤¬O Policy Editor ¤º¨ä¤¤¤@±ø Rule ¦C©ú¡A·í ¡§MS_Staff¡¨ úó²Õ¤ºªº¨Ï¥ÎªÌ¡A¦b¥ô¦ó¦a¤è³s±µ¨ì ¡§MS_Net¡¨ ºôµ¸®É¡A¦pªG¦s¨úªº¬O ¡§FTP¡¨ ªA°È¡A´N¥²¶·³q Firewall ªº ¡§User Authentication¡¨ (¨Ï¥ÎªÌÅçÃÒ)¡C¬O¤£¬O«Ü²³æ©O¡H·íµM³o¥u¬O¤@Ó¨Ò¤l¡A¦pªG¦b¥ø·~¤º¡A³oÃþ¦³Ãö¨Ï¥ÎªÌÅçÃÒªºRule¤@©w·|«Ü¦h©O¡I
µM¦Ó¡AUser Authentication ¬O®Ú¾Ú ¡§¨Ï¥ÎªÌ¡¨ §@¬°ÅçÃÒ°ò¦¡A·N«ä¬O¨Ï¥ÎªÌ¥i¥H¦b¥ô¦ó¤@³¡¹q¸£Login³£¨S¦³°ÝÃD¡A¦ý¬O¬Y¨Ç±¡ªp¤§¤U¡Aºôµ¸«O¦wºÞ²zªÌ·Q¼W¥[¨ä¦w¥þ©Ê¡AÁÙ¥i¦³¿ï¾Ü¨Ï¥Î¥H«ü©w¹q¸£ (IP Address) §@¬°ÅçÃÒ°ò¦ªº Client Authentication ©M Session Authentication¡C
°£¦¹¤§¥~¡A¦]¬°¦b·~¬É¤§¤¤¦³«Ü¦hºØ¤£¦PªºÅçÃÒ¼Ò¦¡¡A¤£¦Pªº¥ø·~«¬ºA¦Ó·|¦³¤£¦Pªº¿ï¾Ü¡A¦ý¬O Check Point VPN-1/FireWall-1 ³£¯à°÷¤@¤@¤ä´©¡A¥]¬AªºÅçÃÒ¼Ò¦¡¦³¥H¤U´XºØ¡GS/Key¡BOS Password¡B Check Point FireWall-1 Password¡BRADIUS¡BTACACS¡BAXENT¤ÎSecurIDµ¥¡C
¬Û«H¤j®a²{¦b¹ïFirewallªºÅçÃÒªA°È¦³¤@Óªì¨Bªº»{ÃÑ¡A¤U´Á¬°¤j®a¤¶²ÐCheck Point VPN-1/FireWall-1¦³Ãöºôµ¸¦ì§}Âà´« (Network Address Translation) ªº§Þ³N¡C
¡@ | 
MCP
