北京八里科技有限公司 - 威胁情报|云安全服务 - 您可靠的合作伙伴

    北京八里科技有限公司

    示例图片三
    网站首页 > 客户案例

    AlienVault 项目实施方案

     

    AlienVault USM 项目方案

    项目背景

    随着XX公司IT系统的发展,需要管理的安全设备和主机系统也越来越多, 其中包括但不限于Cisco/Huawei/H3C等厂家的网络设备、Cisco的防火墙/IPS设备、DB2/Oracle/Informix等数据库系统、Windows/AIX/Linux等操作系统、Apache Tomcat等应用服务器。每台产生海量日志,没有办法集中管理,进行统计分析,并且不能够做统计报表, 管理复杂,需要登录到每一类系统设备中去查看日志,比较繁琐和浪费时间。 需要一套能够集中收集这些系统设备的日志系统, 并能够进行集中收集和管理,统一查询和报表统计, 特选择世界领先的连续5年在Gartner魔力象限被评为最有远见的公司AlienVault www.alienvault.com)的统一安全管理平台USM方案,为XX公司搭建日志集中管理平台。

    项目方案介绍

    项目需求

    XX公司当前的网络架构如下图所示:

    1.png

     

    目前需要进行日志采集的设备列表如下:

     

     

    设备分类

    设备类型

    厂商

    操作系统/型号

    版本

    数量

    操作系统

    AIX

    IBM

    AIX5.3



    AIX

    IBM

    AIX 6.1



    LINUX

    CentOS

    CentOS 5.5



    LINUX

    RedHat

    RedHat 5.7



    LINUX

    RedHat

    RedHat 54



    LINUX

    CentOS

    CentOS 44



    Windows Server

    Microsoft

    Windows 2003

    2003


    数据库

    DB2

    IBM

    DB2 V9.1

    9


    oracle

    ORACLE

    ORACLE 11.2

    11


    应用服务器

    tomcat


    tomcat7.0.12



    tomcat


    tomcat5.5



    网络设备

    路山器

    Cisco

    3845

    12.4


    交换机

    Cisco

    3750G

    12.2


    防火墙

    Cisco

    ASA5520

    82


    路由器

    H3C

    MSR5040



    安全设备


    Cisco

    AIMIO

    7.06


    数据库审计

    Imperva

    ×2500数据库监控网关

    暂未上线


    双因素认证

    RSA

    SECURID

    暂未上线


    堡垒主机

    帕拉迪

    统一安全管理和综合审计系统

    暂未上线


    应用层防火墙

    Imperva

    X2500 WEB应用防火墙

    暂未上线


     

    项目方案设计原则

    根据项目建设目标, XX公司日志分析系统项目要遵守以下几个原则:

    长远性和现实性相结合

    XX公司日志分析系统项目实施,要着眼全局,不能遗漏; 同时又要突出重点,方案和计划具有较强的针对性。

    完整性和阶段性相结合

    XX公司日志分析系统项目,既要制定整体发展规划,安全建设纲要,安全总则等战略性指导文档,也要按照现阶段产品采购,提升客户信息安全的整体审计水平。

    先进性和实用性相结合

    XX公司日志分析系统项目实施,在战略和策略,目标和要求,规章和制度,产品和技术,人员和知识等方面,既要有先进性,又要有实用性。

    开放性和可靠性相结合

    XX公司日志分析系统项目实施,应采用最新且成熟的系统软硬件等技术和产品,其各项技术应保证具有开放性,可移植性和可扩展性,同时具有可靠性和稳定性。

    完整性和经济性相结合

    XX公司日志分析系统建设,既要考虑采用的产品和技术在整体上具有完整性和一致性,又要尽量保护XX公司已有的软硬件投资, 使得总体上具有更好的经济性。

    安全性和业务连续性相结合

    XX公司日志分析系统建设必须保证系统安全性和业务连续性,系统在开发规范和接口规范方面必须符合XX公司相关安全规范和安全要求, 系统建设必须考虑和其他系统之间的整合, 确保相互间业务通信的连续性。

    项目方案产品选型

    对于需要进行日志收集的设备的日志估算量如下:

     

    根据上面的估算, 当前的设备总数为XX, 日志总量约为??EPS (Event Per Second 每秒事件数) 设备选型将以此为基础并充分考虑未来的扩展。

     

    1.    日志管理平台选项: AlienVault USM标准版

    根据当前的日志量并充分考虑未来的扩展,建议选用AlienVault USM 标准版做为日志管理平台系统的核心, 其最佳处理能力为EPS 支持不限数量的设备的日志采集, 完全可以胜任XX公司的日志管理需求。

    日志服务器选项: 建议需要3台服务器做为本项目的统一安全管理平台, 服务器建议配置如下:

    Name

    Value

    CPUType

    Intel®XeonE5620

    RAM Type

    DDR31333MHz

    Disk Type

    SAS 10000RPM (204MB/s)

    MemoryPerformance (MEMCPY)

    3310.32 MiB/s

    Disk Performance (random read/write)

    15.97 Mb/s

     

    AlienVault USM运行在虚拟机环境下的要求:

    1.png

     

    AlienVault 安全统一管理平台的构成

    1.png

     

    AlienVault USM 部署示意图

    1.png

     

    通过在XX公司总部及各分支机构中分布式部署AlienVault USM Sensor产品, 将各个设备的Log 通过采集,归并,过滤和标准化后, 汇总分析后的日志数据最终保存在USM Logger服务器上, 以便后期的取证需要和合规性检查等。

    项目方案功能实现

    AlienVault 的统一安全管理(USM)平台在单一设备上提供五大安全功能:

    资产发现(Asset Discovery)

    ·         主动网络扫描

    ·         被动式网络监控

    ·         资产清单

    ·         软件/服务清单

    漏洞评估(Vulnerability Assessment)

    在网络上识别容易出现漏洞的系统,确认资产和设备上没有打补丁的软件,不完整或者不安全的配置以及其他网络中的漏洞等:

    ·         持续的网络漏洞监控

    ·         持续脆弱性监测

    ·         授权/非授权的主动式扫描

    ·         漏洞修复确认

    威胁检测(Threat Detection)

    检测网络中的恶意流量

    ·         网络入侵检测系统(NIDS)

    ·         主机入侵检测系统(HIDS)

    ·         文件完整性监控(FIM)

    行为监控(Behavioral Monitoring)

    识别可疑行为及可能受影响的系统

    ·         NetFlow分析

    ·         服务可用性监视

    ·         完整的数据包捕获

    安全信息和事件管理(SIEM)

    ·         日志管理

    ·         集成的OTX (Open Threat Exchange)威胁情报数据

    ·         事件回应

    ·         事件关联

    ·         报告和警报

    除了上面提到的五大功能外, USM还具有合规性验证的功能,包括:PCI DSS, GLBA, ISO/IEC 27001, FISMA, NERC CIP, FERPA, and SOX,另外, USM还可以产生符合规定的HIPAA, PCI, GLBA, ISO 27001, FISMA, NERC CIP, GPG13, and SOX等相关报告。

    AlienVault 威胁情报(Threat Intelligence)

    集成在USM Appliance平台上的威胁情报功能,是和市场上区别于其他安全管理方案的一个独特优势, 该功能由AlienVault 实验室安全研究人员开发, 是关于网络所面临的威胁的可以采取措施的有效信息。会告诉您这些威胁是什么, 从哪里来,网络中那些资产处于威胁当中并且怎么去回应这些威胁。

     

    AlienVault USM目前支持的产品插件列表

    说明: 如果贵司所用的设备不在这个列表当中, 请联络八里科技获取相应的支持以取得插件列表。

    插件名称

    厂商

    产品名称

    a10-thunder-waf

    A10

    Thunder WAF

    actiontec

    Actiontec

    Verizon FIOS router

    netvanta

    Adtran

    NetVanta

    aerohive-wap

    Aerohive Networks

    Wireless Access Point

    alcatel

    Alcatel

    Arista Switch

    allot

    Allot Communications

    NetEnforcer

    amun-honeypot

    Amun

    Amun Honeypot

    assp

    Anti-Spam SMTP Proxy

    Anti-Spam SMTP Proxy

    apache-syslog

    Apache Software Foundation

    Apache HTTP Server

    apache

    Apache Software Foundation

    Apache HTTP Server

    apache-ldap

    Apache Software Foundation

    OpenLDAP

    spamassassin

    Apache Software Foundation

    SpamAssassin

    apache-tomcat

    Apache Software Foundation

    Tomcat

    airport-extreme

    Apple

    AirPort Extreme

    pravail-aps

    Arbor Networks

    Pravail APS

    arista-switch

    Arista

    Switches

    arpalert-idm

    Arpalert

    Arpalert

    arpalert-syslog

    Arpalert

    Arpalert

    artemisa

    Artemisa

    Artemisa Honeypot

    artica

    Artica

    Proxy

    aruba-airwave

    Aruba Networks

    Airwave

    aruba-clearpass

    Aruba Networks

    ClearPass

    aruba

    Aruba Networks

    Mobility Access Switches

    aruba-6

    Aruba Networks

    Wireless

    asterisk-voip

    Asterisk

    VoIP

    asus-router

    AsusTek

    Wireless Router

    tarantella

    Automation Access

    Tarantella

    avast

    Avast

    Free Antivirus

    avaya-gateway

    Avaya

    Media Gateway

    avaya

    Avaya

    VSP switches

    barracuda-link-balancer

    Barracuda

    Link Balancer

    barracuda-ng

    Barracuda

    Next Gen Firewall

    barracuda-spam

    Barracuda

    Spam Firewall

    barracuda-sslvpn

    Barracuda

    SSL VPN

    barracuda-waf

    Barracuda

    Web Application Firewall

    barracuda-webfilter

    Barracuda

    Web Filter

    bluecoat

    Blue Coat

    ProxySG

    bomgar

    Bomgar

    Remote Support and Privileged Access

    bro-ids

    Bro

    Bro NSM

    netkeeper-fw

    Broadweb

    IPS-Netkeeper

    netkeeper-nids

    Broadweb

    Netkeeper NIDS

    brocade

    Brocade

    Brocade Devices

    vyatta

    Brocade

    Vyatta vRouter

    cb-defense

    Carbon Black

    Defense

    bit9

    Carbon Black

    Enterprise Protection

    bit9_v7

    Carbon Black

    Enterprise Protection

    carbonblack

    Carbon Black

    Enterprise Response

    cerberus-ftp

    Cerberus

    FTP Server

    fw1-alt

    Check Point

    FireWall

    checkpoint-mepp

    Check Point

    Media Encryption and Port Protection

    packetwave

    Ciena

    Packetwave

    cisco-ace

    Cisco

    ACE Application Control Engine

    cisco-acs-idm

    Cisco

    ACS Secure Access Control Server

    cisco-acs

    Cisco

    ACS Secure Access Control Server

    cisco-asa

    Cisco

    ASA Adaptive Security Appliance

    cisco-asr

    Cisco

    ASR Aggregation Services Router

    cisco-esa

    Cisco

    AsyncOS Email Security Appliances

    cisco-call

    Cisco

    Call Manager

    cisco-firepower

    Cisco

    FirePower NGIPS

    cisco-firesight

    Cisco

    Firesight

    cisco-fw

    Cisco

    Firewall Services Module

    cisco-ids

    Cisco

    IDS Intrusion Detection System

    cisco-ips-syslog

    Cisco

    IPS Intrusion Prevention System

    cisco-ips

    Cisco

    IPS Intrusion Prevention System

    ironport

    Cisco

    IronPort

    cisco-isa

    Cisco

    ISA

    cisco-ise

    Cisco

    ISE

    StealthWatch

    Cisco

    Lancope StealthWatch

    cisco-meraki

    Cisco

    Meraki

    cisco-ngips

    Cisco

    Next Generation Intrusion Prevention System NGIPS

    cisco-nexus-nx-os

    Cisco

    NX-OS

    opendns

    Cisco

    OpenDNS Enterprise Insights

    cisco-pix

    Cisco

    PIX Private Internet eXchange

    cisco-router

    Cisco

    Router

    cisco-rv

    Cisco

    RV Series VPN Router

    cisco-ucs

    Cisco

    Unified Computing System

    cisco-vpn

    Cisco

    VPN

    cisco-3030

    Cisco

    VPN 3000 Series

    cisco-wlc

    Cisco

    Wireless LAN Controller

    citrix-netscaler

    Citrix Systems

    NetScaler

    clamav

    ClamAV

    ClamAV

    clamwin-nxlog

    ClamWin

    ClamWin Free Antivirus

    cloudpassage

    CloudPassage

    Halo

    comodo-antivirus

    Comodo

    Antivirus

    corero-ips

    Corero

    IPS

    courier

    Courier-MTA

    Courier Mail Server

    cyberark

    CyberArk

    Enterprise Password Vault

    cyberguard

    CyberGuard

    SG565

    cylance

    Cylance

    CylancePROTECT

    cyphort

    Cyphort

    Cyphort APT Defense Platform

    dlink-wireless

    D-Link

    Unified Wireless Controller

    failsafe

    Damballa

    FailSafe

    darktrace

    Darktrace

    DCIP

    emc-isilon

    DELL

    EMC Isilon

    emc-vnxe

    DELL

    EMC VNXe

    dell-equallogic

    Dell

    EqualLogic

    dell-force

    DELL

    Force10 Switches

    dell-chassis

    DELL

    M1000 Chassis

    dell-secureworks

    DELL

    SecureWorks

    sonicwall

    DELL

    SonicWALL Scrutinizer

    sonicwall-vpn

    DELL

    SonicWall VPN

    dionaea

    Dionaea

    Dionaea Honeypot

    dovecot

    Dovecot

    Secure IMAP Server

    draytek-vigor

    DrayTek

    Vigor

    drupal-wiki

    Drupal

    Drupal CMS

    iprism

    Edgewave

    iPrism

    dragon

    Enterasys

    Dragon IDS

    enterasys-rmatrix

    Enterasys

    Matrix N-Series

    airlock

    Envault

    Airlock

    eset

    Eset

    Eset

    redtrust

    Evolium

    Redtrust

    silvershield

    Extenua

    SilverSHielD

    extreme-wireless

    Extreme Networks

    Summit Series

    extreme-switch

    Extreme Networks

    Switch

    f5

    F5

    BIG-IP

    f5-firepass

    F5

    FirePass SSL VPN

    fail2ban

    Fail2ban

    Fail2ban

    falconstor

    FalconStor Software

    IPStor

    fireeye-cm

    FireEye

    CM

    fireeye-hx

    FireEye

    HX Series

    fireeye

    FireEye

    MPS

    triton

    ForcePoint

    Triton AP-Web

    forescout-nac

    ForeScout

    CounterACT

    fortiauthenticator

    Fortinet

    FortiAuthenticator

    fortigate

    Fortinet

    FortiGate

    fortiguard

    Fortinet

    FortiGuard

    fortimail

    Fortinet

    FortiMail

    fortiweb

    Fortinet

    Fortiweb

    fortiWLC

    Fortinet

    fortiWLC

    meru

    Fortinet

    Meru Networks WLAN Controller

    ipfw

    FreeBSD

    IPFW Firewall

    freeradius

    FreeRADIUS

    freeradius

    axigen-mail

    GeCAD

    Axigen Mail Server

    gfi

    GFI

    Vipre Antivirus

    h3c-ap

    H3C

    AP

    h3c-switch

    H3C

    Ethernet Switch

    harpp-ddos

    HARPP

    HARPP DDoS Mitigator

    hitachi-hnas

    Hitachi

    NAS Platform

    honeyd

    Honeyd

    Honeyd Virtual Honeypot

    glastopng

    Honeynet Project

    GlastopfNG Honeypot

    nepenthes

    Honeynet Project

    Nepenthes Honeypot

    hp-chassis

    HP

    BladeSystem Chassis

    hp-wireless

    HP

    E-Series Mobility

    hp-eva

    HP

    EVA Storage

    hp-san-switch

    HP

    SAN Switch

    serviceguard

    HP

    Serviceguard

    sitescope

    HP

    SiteScope

    hp-switch

    HP

    Switch

    huawei-router

    Huawei

    Enterprise Router

    huawei-ips

    Huawei

    IPS

    huawei

    Huawei

    NG-Firewall

    aix-audit

    IBM

    Aix Audit

    as400

    IBM

    AS400

    fidelis

    IBM

    Fidelis Network Data Loss Protection

    ibm-imm

    IBM

    Integrated Management Module

    siteprotector-snmp

    IBM

    Proventia IPS

    raslogd

    IBM

    RASlog

    realsecure

    IBM

    RealSecure Server Sensor

    storewize-V7000

    IBM

    Storwize V7000

    ibm-tam

    IBM

    Tivoli Access Manager WebSEAL

    vplus

    IBM

    VisionPLUS

    ibm-websphere

    IBM

    Websphere

    siteprotector-iss

    IBM Internet Security Systems

    Site Protector

    siteprotector

    IBM Internet Security Systems

    Site Protector

    eljefe

    Immunity

    El Jefe

    incapsula

    Imperva

    Incapsula WAF

    imperva-securesphere

    Imperva

    SecureSphere

    impravata-onesign

    Imprivata

    Onesign

    infoblox

    Infoblox

    DNS Server

    snare-idm

    Intersect Alliance

    Snare

    snare-mssql

    Intersect Alliance

    Snare

    snare-msssis

    Intersect Alliance

    Snare

    snare

    Intersect Alliance

    Snare

    bind

    ISC

    BIND

    juniper-ex

    Juniper Networks

    EX Series

    juniper-idp

    Juniper Networks

    IDP Series

    netscreen-igs

    Juniper Networks

    ISG Series

    juniper-mx

    Juniper Networks

    MX Routers

    netscreen-manager

    Juniper Networks

    NetScreen Security Manager

    netscreen-firewall

    Juniper Networks

    NetScreen Series Firewall

    netscreen-nsm

    Juniper Networks

    NetWork and Security Manager

    juniper-nsm

    Juniper Networks

    NSM Network and Security Manager

    juniper-vpn

    Juniper Networks

    SA Secure Access Series

    juniper-srx

    Juniper Networks

    SRX Series

    kaspersky

    Kaspersky

    Antivirus

    kaspersky-sc

    Kaspersky

    Security Center

    kemp

    Kemp Technologies

    VLM-2000-W

    kismet

    Kismet

    Kismet Wireless

    linuxdhcp

    Linux

    DHCP

    linuxdhcp-idm

    Linux

    DHCP Server

    nfs

    Linux

    NFS Network File System

    heartbeat

    Linux-HA

    Heartbeat

    logbinder-sp

    LOGbinder

    LOGbinder for SharePoint

    lucent-brick

    Lucent

    VPN Firewall Brick

    m0n0wall

    M0n0wall

    M0n0wall Embedded Firewall

    malwarebytes-br

    Malwarebytes

    Breach Remediation

    malwarebytes-es

    Malwarebytes

    Endpoint Security

    malwarebytes

    Malwarebytes

    Malwarebytes

    password-manager-pro

    Manage Engine

    Password Manager Pro

    mcafee-antispam

    McAfee

    Anti-Spam

    mcafee

    McAfee

    Antivirus Engine

    mcafee-db

    McAfee

    Database Security

    mcafee-epo

    McAfee

    ePolicy Orchestrator

    sidewinder

    McAfee

    Firewall Enterprise

    intrushield

    McAfee

    IntruShield IPS

    mcafee-mwg

    McAfee

    McAfee-MWG

    mcafee

    McAfee

    Network Security Platform

    microsoft-ata

    Microsoft

    Advanced Threat Analytics

    dhcp-nxlog

    Microsoft

    DHCP Client Service

    dhcp

    Microsoft

    DHCP Client Service

    windns-nxlog

    Microsoft

    DNS Server

    windns

    Microsoft

    DNS Server

    emet

    Microsoft

    Enhanced Mitigation Experience Toolkit

    exchange-nxlog

    Microsoft

    Exchange Server

    exchange

    Microsoft

    Exchange Server

    iis-nxlog

    Microsoft

    IIS Internet Information Services

    iis

    Microsoft

    IIS Internet Information Services

    isa

    Microsoft

    ISA Internet Security and Acceleration Server

    mssql-audit

    Microsoft

    MSSQL

    multifactor-auth

    Microsoft

    Multi-Factor Authentication

    mssql-nxlog

    Microsoft

    SQL Server

    ms-sccm

    Microsoft

    System Center Configuration Manager

    nxlog

    Microsoft

    Windows

    mikrotik-router

    MikroTik

    Router

    moodle

    Moodle

    Moodle

    motorola-firewall

    Motorola

    RFS Series

    mwcollect

    Mwcollect

    Mwcollect Honeypot

    netasq-u

    Netasq

    U-Series

    netgear

    Netgear

    FVS318 ProSafe VPN Firewall

    netgear-switch

    NETGEAR

    Switch

    nginx

    NGinX

     NGinX

    nimble-storage

    Nimble

    Nimble-OS

    alteonos

    Nortel Networks

    Alteon

    nortel-baystack

    Nortel Networks

    Baystack Ethernet Switch

    nortel-switch

    Nortel Networks

    Passport 1612 Switch

    ntsyslog

    NTSyslog

    NTSyslog

    suricata-eve

    OISF

    Suricata

    powerdns

    Open-Xchange

    PowerDNS

    ssh-remote

    OpenBSD

    OpenSSH

    ssh

    OpenBSD

    OpenSSH

    pf

    OpenBSD

    PF Packet Filter

    openldap

    OpenLDAP

    OpenLDAP

    opennms-monitor

    OpenNMS

    OpenNMS

    openswan

    OpenSwan

    IPsec

    optenet

    Optenet

    MailSecure

    oracle-syslog

    Oracle

    Database Server

    palerra

    Oracle

    Palerra Cloud Security

    radiator

    OSC

    Radiator RADIUS Server

    osiris

    Osiris

    Osiris HIDS

    osquery

    OSquery

    OSquery

    owncloud

    OwnCloud

    OwnCloud

    paloalto

    Palo Alto Networks

    PA-5000 Series

    panda-as

    Panda Security

    AdminSecure

    panda-se

    Panda Security

    Security for Enterprise

    postfix

    Postfix

    Postfix

    postgresql

    PostgreSQL GDG

    postgresql

    prads

    Prads

    Prads

    proofpoint-tap

    Proofpoint

    Targeted Attack Protection

    proxim-orinoco

    Proxim

    Orinoco AP700

    pureftpd

    Pure-FTPd

    Pure-FTPd

    qnap-qts

    QNAP

    QTS

    defender-tokengo

    Quest Software

    Defender GO-6 Token

    quickheal-blockedapp

    Quick Heal

    SQEPS6.3

    quickheal-fileact

    Quick Heal

    SQEPS6.3

    quickheal-firewall

    Quick Heal

    SQEPS6.3

    quickheal-vulscan

    Quick Heal

    SQEPS6.3

    radware-ips

    Radware

    DefensePro

    redhat-audit

    Red Hat

    Audit

    jboss

    Red Hat

    JBoss Middleware

    clurgmgr

    Red Hat

    Resource Group (Cluster Service) Manager

    Daemon

    rrd

    RRDtool

    RRDtool

    rsa-authentication-manager

    RSA

    Authentication Manager

    rsa-secureid

    RSA

    SecurID

    token-rsa

    RSA

    SecurID Software Token Converter

    rsa-securid-idr

    RSA Security

    SecurID IDR

    ruckus

    Ruckus

    ZoneDirector

    aladdin

    SafeNet

    eSafe

    smbd

    Samba

    Samba SMB

    samhain

    Samhain Labs

    Samhain

    sangfor

    Sangfor

    NGFW

    sap

    SAP

    NetWeaver

    secureauth

    SecureAuth

    SecureAuth

    sendmail

    SendMail

    SendMail

    shrubbery-tacacs

    Shrubbery Networks

    TACACS+

    tacacs-plus

    Shrubbery Networks

    TACACS+

    siteminder

    SiteMinder

    Policy-Server

    snort_syslog

    Snort

    Snort

    sophos-mssql

    Sophos

    Antivirus

    sophos

    Sophos

    Antivirus

    sophos-central

    Sophos

    Central

    cyberoam

    Sophos

    Cyberoam-Firewall

    sophos-ec

    Sophos

    EC

    sophos-es

    Sophos

    ES

    sophos-ws

    Sophos

    Secure Web Gateway

    sophos-utm

    Sophos

    Sophos-UTM

    sophos

    Sophos

    XG

    sourcefire-ids

    Sourcefire

    Defense Center

    squid

    Squid

    Squid Cache Proxy

    squidGuard

    SquidGuard

    SquidGuard

    stonegate_ips

    Stonesoft

    IPS

    stonegate

    Stonesoft

    StoneGate

    stormshield

    Stormshield

    Netasq NG

    sudo

    Sudo

    Sudo

    suhosin

    Suhosin

    Suhosin PHP Security Extension

    iptables

    Suse

    IPTables

    symantec-ams

    Symantec

    AMS

    symantec-atp

    Symantec

    ATP

    symantec-epm

    Symantec

    Endpoint Protection

    symantec-mg

    Symantec

    Messaging Gateway

    synology

    Synology

    DiskStation

    syslog

    Syslog

    Syslog

    tanium

    Tanium

    EndPoint Platform

    nessus-detector

    Tenable

    Nessus

    nessus

    Tenable

    Nessus

    tesserent-ng

    Tesserent

    Managed Next Gen Firewall

    spamtitan

    TitanHQ

    SpamTitan

    trendmicro-cm

    Trend Micro

    Control Manager

    deepsec-agent

    Trend Micro

    Deep Security Agent

    deepsec-manager

    Trend Micro

    Deep Security Manager

    trendmicro

    Trend Micro

    InterScan Messaging Security

    tippingpoint

    Trend Micro

    TippingPoint IPS

    trustwave

    Trustwave

    Secure Web Gateway

    modsecurity

    TrustWave SpiderLabs

    ModSecurity Web Application Firewall

    ubiquiti-unifi

    Ubiquiti

    Unifi

    pam_unix

    UNIX

    PAM Pluggable Authentication Module

    untangle-ngfw

    Untangle

    NG Firewall

    vandyke-vshell

    VanDyke

    VShell

    vectra

    Vectra

    X-Series

    vmware-esxi

    VMware

    ESXi

    vmware-vcenter-sql

    VMware

    vCenter

    vmware-vcenter

    VMware

    vCenter

    vmware-vshield

    VMware

    vShield

    vmware-workstation

    VMware

    WorkStation

    vormetric-dsm

    Vormetric

    Data Security Manager

    vsftpd

    Vsftpd

    Vsftpd

    watchguard

    WatchGuard

    XTM Series

    webmin

    Webmin

    Webmin

    webroot-flowscape

    Webroot

    FlowScape

    websense-content

    Websense

    Content Gateway

    websense-esg

    Websense

    Email Security Gateway

    websense

    Websense

    Web Security Gateway

    websense7

    Websense

    Web Security Gateway

    wuftp

    WU-Ftp

    WU_Ftp

    ascenlink

    Xtera

    AscenLink

    yara

    Yara

    Yara

    zerofox

    ZeroFox

    Social Media Security SAAS Platform

    zscaler

    zScaler

    Nanolog

    zyxel-firewall

    ZyXEL

    ZyWALL

     

    AlienVault USM的特点和优势

     

    AlienVault USM 标准版的配置

     

    项目实施与进度安排

    项目总工期为: 自合同签订日期开始20-30个工作日内完成(不含货期)。 也可根据客户的建议灵活安排实施部署进度。

     

    项目实施步骤与进度安排

    项目实施步骤

    设备订货

    在合同签订后, 最终用户向八里科技订货,八里科技会向AlienVault下单。

     

    到货验收

    设备(含系统)到货后, 会和客户相关人员共同验货, 依照合同中要求的设备清单对货物进行清点验收

    清点验收时, 如发现短缺,破损,供货方负责补发和负责更换。

    对需要装配的零部件进行组装,整机加电自检测试

    设备验收地点在最终用户指定的地点进行。

    此项工作需要0.5-1天。

     

    联络八里科技以获得更多的威胁情报等信息。

    北京八里科技有限公司

    电话:010 5360 7998

    Email: info@8milestec.com

    www.8milestec.com

    无标题.png



    Powered by MetInfo 5.3.18 ©2008-2017 www.metinfo.cn