{"id":229343,"date":"2014-07-10T13:03:03","date_gmt":"2014-07-10T09:03:03","guid":{"rendered":"http:\/\/savepearlharbor.com\/?p=229343"},"modified":"-0001-11-30T00:00:00","modified_gmt":"-0001-11-29T21:00:00","slug":"","status":"publish","type":"post","link":"https:\/\/savepearlharbor.com\/?p=229343","title":{"rendered":"<span class=\"post_title\">\u0427\u0442\u043e \u043a \u0447\u0435\u043c\u0443 \u0432 \u201cNGFW | NGIPS | UTM\u201d<\/span>"},"content":{"rendered":"<div class=\"content html_format\">     \t\u0412\u0441\u0435 \u0431\u043e\u043b\u044c\u0448\u0435 \u043f\u043e\u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u043e \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u0435\u0440\u0435\u0445\u043e\u0434\u0430 \u043d\u0430 \u00ab\u043d\u043e\u0432\u044b\u0435\u00bb \u0442\u0438\u043f\u044b \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0441\u0435\u0442\u0435\u0432\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u044b. \u041a\u0443\u0434\u0430 \u0434\u0435\u0432\u0430\u0442\u044c \u0438\u043c\u0435\u044e\u0449\u0438\u0435\u0441\u044f \u2013 \u043c\u043e\u043b\u0447\u0430\u0442, \u043d\u0430\u0432\u0435\u0440\u043d\u043e\u0435, \u043d\u0430 ebay \u043f\u0440\u043e\u0434\u0430\u0432\u0430\u0442\u044c. \u0412\u043e\u0437\u043d\u0438\u043a\u0430\u0435\u0442 \u0432\u043e\u043f\u0440\u043e\u0441: \u041d\u0430\u0434\u043e \u043b\u0438? What is the benefit?<br \/>  <a name=\"habracut\"><\/a><br \/>  \u041f\u0440\u043e NGFW \u0443\u0436\u0435 \u0435\u0441\u0442\u044c \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u043c\u043d\u043e\u0433\u043e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438 \u0441\u0440\u0430\u0432\u043d\u0435\u043d\u0438\u0439, \u0441\u043a\u0430\u0436\u0435\u043c \u0441 UTM, \u043e\u0431\u044a\u0435\u0434\u0438\u043d\u044f\u044e\u0449\u0435\u0439 \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u043e \u0444\u0443\u043d\u043a\u0446\u0438\u0439. \u041e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u0438\u0435 \u043f\u043e Gartner \u0443 NGFW \u0442\u0430\u043a\u043e\u0435:<\/p>\n<pre><code class=\"vbscript\"> Next-generation firewalls integrate three key assets: enterprise firewall capabilities, an intrusion prevention system (IPS) and application control. <\/code><\/pre>\n<p> \u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u043e\u0441\u043d\u043e\u0432\u043d\u043e\u0439 \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0430\u043b \u0434\u043e\u043b\u0436\u0435\u043d \u0432\u043a\u043b\u044e\u0447\u0430\u0442\u044c \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0435 \u0431\u043b\u043e\u043a\u0438:  <\/p>\n<ul>\n<li>packet filtering<\/li>\n<li>network address translation (NAT)<\/li>\n<li>URL blocking and virtual private networks (VPNs) <\/li>\n<li>Quality of Service (QoS) functionality <\/li>\n<li>intrusion prevention<\/li>\n<li>SSL and SSH inspection<\/li>\n<li>deep-packet inspection <\/li>\n<li>reputation-based malware detection <\/li>\n<li>application awareness, full stack visibility and granular control<\/li>\n<\/ul>\n<p>  \u041a\u0430\u043a \u0432\u0438\u0434\u043d\u043e \u043f\u0440\u0438 \u043d\u0430\u043b\u0438\u0447\u0438\u0438 \u0431\u043b\u043e\u043a\u0430 IPS, \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u044b\u0435 IPS \u043f\u0435\u0440\u0432\u043e\u0433\u043e \u043f\u043e\u043a\u043e\u043b\u0435\u043d\u0438\u044f, \u043f\u043e \u0438\u0434\u0435\u0435, \u0441\u0442\u0430\u043d\u043e\u0432\u044f\u0442\u0441\u044f \u043d\u0435 \u043d\u0443\u0436\u043d\u044b. \u041f\u0440\u0430\u0432\u0434\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f\u043c\u0438 \u0432\u0441\u0435 \u0436\u0435 \u00ab\u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f\u00bb \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0441\u0432\u044f\u0437\u043a\u0443 \u0438\u0437 IPS \u0438 NGFW. \u041f\u043e\u043b\u0443\u0447\u0430\u0435\u0442\u0441\u044f, \u0447\u0442\u043e \u0441 \u0442\u043e\u0447\u043a\u0438 \u0437\u0440\u0435\u043d\u0438\u044f \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 1 \u043f\u043e\u043a\u043e\u043b\u0435\u043d\u0438\u044f NGFW \u2013 \u044d\u0442\u043e \u00ab\u0448\u0432\u0435\u0439\u0446\u0430\u0440\u0441\u043a\u0438\u0439 \u043d\u043e\u0436\u00bb? \u041d\u0430 \u044d\u0442\u043e\u0442 \u0432\u043e\u043f\u0440\u043e\u0441 \u0434\u0430\u0435\u0442 \u043e\u0442\u0432\u0435\u0442 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u0442\u0430\u043a\u0438\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u043a\u0430\u043a UTM, \u0432 \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e \u0441\u0443\u0442\u0438 \u043c\u043e\u0436\u043d\u043e \u0432\u043f\u0438\u0445\u043d\u0443\u0442\u044c \u043c\u043d\u043e\u0433\u043e\u0433\u043e \u0438 \u0440\u0430\u0437\u043d\u043e\u0433\u043e.  <\/p>\n<pre><code class=\"vbscript\">UTM solution includes the following features: <\/code><\/pre>\n<p>  <\/p>\n<ul>\n<li> Firewall<\/li>\n<li> Application control<\/li>\n<li> IPsec and SSL VPN<\/li>\n<li> IPS<\/li>\n<li> Web content filtering<\/li>\n<li> Anti-spam<\/li>\n<li> Data loss\/leakage protection<\/li>\n<li> Anti-virus and anti-spyware protection<\/li>\n<li> IPv6 native support<\/li>\n<li> Traffic shaping\/bandwidth control<\/li>\n<\/ul>\n<p>  \u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0440\u0430\u0437\u043d\u0438\u0446\u0430 \u043c\u0435\u0436\u0434\u0443 UTM \u0438 NGFW \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u044f\u0435\u0442\u0441\u044f \u0442\u0430\u043a:  <\/p>\n<pre><code class=\"vbscript\">Next-generation firewalls are similar to UTM devices in that they are consolidated network security devices and operate as an inline security barrier with network security policy capabilities in real time. The most significant difference is that they provide a subset of the technologies included in most UTM solutions. <\/code><\/pre>\n<p> \u041a\u0443\u043b\u044c\u0442\u0443\u0440\u043d\u043e\u0435 \u00ab\u043e\u043f\u0443\u0441\u043a\u0430\u043d\u0438\u0435\u00bb NGFW \u043d\u0430 \u0437\u0435\u043c\u043b\u044e \u0433\u0440\u0435\u0448\u043d\u0443\u044e.<br \/>  \u041e\u0434\u043d\u0430\u043a\u043e, \u0447\u0442\u043e\u0431\u044b \u043d\u0435 \u043e\u0442\u0441\u0442\u0430\u0432\u0430\u0442\u044c \u043e\u0442 \u0442\u0435\u043d\u0434\u0435\u043d\u0446\u0438\u0439 \u0440\u044b\u043d\u043a\u0430 \u0438 \u044d\u0441\u043a\u0430\u043b\u0430\u0446\u0438\u0438 holly war \u0441 UTM, \u043d\u0435 \u0437\u0430\u0441\u0442\u0430\u0432\u0438\u043b\u043e \u0441\u0435\u0431\u044f \u0434\u043e\u043b\u0433\u043e \u0436\u0434\u0430\u0442\u044c \u043f\u043e\u044f\u0432\u043b\u0435\u043d\u0438\u0435 NGIPS. \u0423\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 \u0441\u0447\u0438\u0442\u0430\u044e\u0442\u0441\u044f \u00abat the edge of technology\u00bb. \u041f\u0440\u043e\u0430\u043d\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u0432 \u043f\u0435\u0440\u0435\u0447\u0435\u043d\u044c \u043e\u0431\u044f\u0437\u0430\u0442\u0435\u043b\u044c\u043d\u044b\u0445 \u0442\u0440\u0435\u0431\u043e\u0432\u0430\u043d\u0438\u0439 \u043a NGFW, \u043f\u043e \u0438\u0434\u0435\u0435, \u043e\u0442 NGIPS \u043d\u0430\u0434\u043e \u0436\u0434\u0430\u0442\u044c \u0447\u0435\u0433\u043e \u2014 \u0442\u043e \u043d\u043e\u0432\u043e\u0433\u043e, \u0440\u0430\u043d\u0435\u0435 \u043d\u0435\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0432\u0448\u0435\u0433\u043e\u0441\u044f. \u0427\u0442\u043e \u0432\u0438\u0434\u0438\u043c \u0432 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0438 \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0430\u043b\u0430:  <\/p>\n<ul>\n<li>Standard first-generation IPS<b> (\u0435\u0441\u0442\u044c \u0432 NGFW) <\/b>capabilities such as being able to read network traffic at wire speed and block attacks that can be recognized on the basis of threat signatures. <\/li>\n<li>Application awareness and full-stack visibility <b>(\u0435\u0441\u0442\u044c \u0432 NGFW) <\/b>to identify traffic from specific applications and enforce network security policy at the application layer. <\/li>\n<li>Context awareness to use information from a variety of sources outside of the IPS to improve blocking decisions \u2014 for example, user identity information from directories, geo-location information such as the source of packets, and reputation feeds identifying suspicious web sites and IP addresses \u2013 <i>\u043a\u0430\u043a \u044f \u043f\u043e\u043d\u044f\u043b \u0438\u0441\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0430\u0437\u0432\u0438\u0442\u0438\u0435 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u0430 Prevention, \u0441 \u0446\u0435\u043b\u044c\u044e \u0443\u043c\u0435\u043d\u044c\u0448\u0435\u043d\u0438\u044f \u043e\u0448\u0438\u0431\u043e\u043a 1 \u0438 2 \u0440\u043e\u0434\u0430 \u0437\u0430 \u0441\u0447\u0435\u0442 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438. \u041d\u043e\u0432\u0438\u0437\u043d\u0430? \u042f \u0431\u044b \u0442\u0430\u043a \u043d\u0435 \u0441\u043a\u0430\u0437\u0430\u043b\u2026<\/i><\/li>\n<li>Content awareness to inspect and classify executables and other file types in inbound and outbound traffic \u2013 <i>\u043f\u043e-\u043c\u043e\u0435\u043c\u0443, \u044d\u0442\u043e \u0444\u0443\u043d\u043a\u0446\u0438\u044f \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u043e\u0433\u043e \u0430\u043d\u0442\u0438\u0432\u0438\u0440\u0443\u0441\u0430, \u043f\u043e\u043f\u0440\u0430\u0432\u044c\u0442\u0435 \u0435\u0441\u043b\u0438 \u043e\u0448\u0438\u0431\u0430\u044e\u0441\u044c.<\/i><\/li>\n<li>An agile engine that makes it easy to upgrade to new information feeds and detection techniques developed in the future \u2013 <i>\u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0435 usability, \u0434\u043b\u044f \u043f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0443\u043b\u0443\u0447\u0448\u0435\u043d\u0438\u044f \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0430\u043b\u0430.<\/i><\/li>\n<\/ul>\n<p>  \u041a\u0430\u043a-\u0442\u043e \u0441\u043e\u0432\u0441\u0435\u043c \u043d\u0435 \u0432\u043f\u0435\u0447\u0430\u0442\u043b\u044f\u044e\u0449\u0435\u0435 \u0437\u0440\u0435\u043b\u0438\u0449\u0435.<br \/>  \u0412 \u0438\u0442\u043e\u0433\u0435 \u043f\u043e\u043b\u0443\u0447\u0430\u0435\u043c \u0442\u0430\u0431\u043b\u0438\u0446\u0443 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0435\u0433\u043e \u0445\u0430\u0440\u0430\u043a\u0442\u0435\u0440\u0430 (\u043f\u043e \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0430\u043b\u0443 \u043d\u0435\u043c\u043d\u043e\u0433\u043e \u0433\u0440\u0443\u0431\u043e \u043e\u0431\u044a\u0435\u0434\u0438\u043d\u0438\u043b, \u0441\u0438\u043b\u044c\u043d\u043e \u043d\u0435 \u043f\u0438\u043d\u0430\u0439\u0442\u0435):<br \/>  <img decoding=\"async\" src=\"http:\/\/habrastorage.org\/getpro\/habr\/post_images\/453\/954\/40e\/45395440e4cc55d8f804a44ad70214c8.jpg\"\/><br \/>  \u041a\u0442\u043e \u2014 \u0433\u0434\u0435 \u0438\u0437 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u0439 \u043f\u043e \u00ab\u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0443\u00bb \u043c\u043e\u0436\u043d\u043e \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0442\u044c \u0432 \u043e\u0442\u0447\u0435\u0442\u0430\u0445 Gartner. \u041d\u043e \u0435\u0441\u043b\u0438 \u0447\u0435\u0441\u0442\u043d\u043e, \u0441\u0443\u0434\u044f \u043f\u043e \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0430\u043b\u0443 \u0438 \u043f\u0435\u0440\u0435\u0447\u043d\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u0439 \u0432\u043e\u0437\u043d\u0438\u043a\u0430\u0435\u0442 \u043e\u0449\u0443\u0449\u0435\u043d\u0438\u0435 \u043b\u0435\u0433\u043a\u043e\u0433\u043e \u043d\u0430\u0434\u0443\u0432\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430 (SMILE)<br \/>  \u0423\u0434\u0430\u0447\u0438 \u0432 \u0432\u044b\u0431\u043e\u0440\u0435, \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043c\u0430\u043b\u043e \u043d\u0435 \u0431\u044b\u0432\u0430\u0435\u0442 \u0438\u043b\u0438 defense-in-depth.<br \/>  P.S. \u041d\u0435 \u043f\u0435\u0440\u0435\u0432\u043e\u0434\u0438\u043b \u043e\u0440\u0438\u0433\u0438\u043d\u0430\u043b, \u0447\u0442\u043e\u0431\u044b \u043d\u0435 \u043f\u043e\u0442\u0435\u0440\u044f\u043b\u0430\u0441\u044c \u0441\u0443\u0442\u044c.      \t<\/p>\n<div class=\"clear\"><\/div>\n<\/p><\/div>\n<p> \u0441\u0441\u044b\u043b\u043a\u0430 \u043d\u0430 \u043e\u0440\u0438\u0433\u0438\u043d\u0430\u043b \u0441\u0442\u0430\u0442\u044c\u0438 <a href=\"http:\/\/habrahabr.ru\/post\/229343\/\"> http:\/\/habrahabr.ru\/post\/229343\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<div class=\"content html_format\">     \t\u0412\u0441\u0435 \u0431\u043e\u043b\u044c\u0448\u0435 \u043f\u043e\u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u043e \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u0435\u0440\u0435\u0445\u043e\u0434\u0430 \u043d\u0430 \u00ab\u043d\u043e\u0432\u044b\u0435\u00bb \u0442\u0438\u043f\u044b \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0441\u0435\u0442\u0435\u0432\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u044b. \u041a\u0443\u0434\u0430 \u0434\u0435\u0432\u0430\u0442\u044c \u0438\u043c\u0435\u044e\u0449\u0438\u0435\u0441\u044f \u2013 \u043c\u043e\u043b\u0447\u0430\u0442, \u043d\u0430\u0432\u0435\u0440\u043d\u043e\u0435, \u043d\u0430 ebay \u043f\u0440\u043e\u0434\u0430\u0432\u0430\u0442\u044c. \u0412\u043e\u0437\u043d\u0438\u043a\u0430\u0435\u0442 \u0432\u043e\u043f\u0440\u043e\u0441: \u041d\u0430\u0434\u043e \u043b\u0438? What is the benefit?  <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[],"class_list":["post-229343","post","type-post","status-publish","format-standard","hentry"],"_links":{"self":[{"href":"https:\/\/savepearlharbor.com\/index.php?rest_route=\/wp\/v2\/posts\/229343","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/savepearlharbor.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/savepearlharbor.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/savepearlharbor.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/savepearlharbor.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=229343"}],"version-history":[{"count":0,"href":"https:\/\/savepearlharbor.com\/index.php?rest_route=\/wp\/v2\/posts\/229343\/revisions"}],"wp:attachment":[{"href":"https:\/\/savepearlharbor.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=229343"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/savepearlharbor.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=229343"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/savepearlharbor.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=229343"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}