Embed Size (px)
Citation preview
www.beijinghuayu.com.cn 400-881-9281
- -
Cross
2
2016 9
www.beijinghuayu.com.cn 400-881-9281
- -
...................................................................................................................................... 1
1.1 .................................................................................................................................. 1
1.2 .............................................................................................. 3
1.3 .......................................................................................... 3
...................................................................................................................... 6
2.1 .......................................................................................................... 6
2.2 WEB ............................................................................................................ 7
2.3 ...................................................................................................................... 7
2.4 IPS“ ........................................................................................................................... 8
2.5 .......................................................................................................................... 8
2.6 .......................................................................................................... 8
............................................................................................................................ 10
3.1 ............................................................................................................................ 10
3.1.1 ............................................................................................................... 10
3.1.2 ................................................................................................... 10
3.2 ............................................................................................................................. 11
3.2.1 ........................................................................................................................ 11
3.2.2 URL ........................................................................................................................... 11
3.2.3 ............................................................................................................................ 11
www.beijinghuayu.com.cn 400-881-9281
- -
3.2.4 ....................................................................................................................... 12
3.3 ................................................................................................................................ 13
3.4 ................................................................................................................................ 14
www.beijinghuayu.com.cn 400-881-9281
- 1 -
Verizon 2014 “
66%
91%
Ponemon
Institute 2014 2013 “
350 15% 2014 Target “
1.48
“
Eric Holder
Richard Clarke James Comey
/
Web2.0 / P2P
Cross
1.1
Cross
www.beijinghuayu.com.cn 400-881-9281
- 2 -
Cross
Cross VPN DDos
NAT
“ WEB
Cross
/
1
1
2 AD Radius
3
1 3 1
1
2 WEB SQL XSS CSRF
3 “
4
www.beijinghuayu.com.cn 400-881-9281
- 3 -
1.2
:
1.3
WEB 2.0 WEB
FTP HTML
Telnet E-Mail ERP
OA CRM VoIP
P2P Web
Ø
80 HTTP P2P
www.beijinghuayu.com.cn 400-881-9281
- 4 -
Web HTTP
80
P2P “
80 Web
Ø IP
IP
IP
IP IP
IP
Ø
“
Web Web
web SQL XSS “
Ø
www.beijinghuayu.com.cn 400-881-9281
- 5 -
IDC 80% IT
www.beijinghuayu.com.cn 400-881-9281
- 6 -
2.1 1
Cross DPI
Cross
IP
Cross 700
AD LDAP Radius IP
MAC
P2P RDP Lotus
Notes RTX Citrix Oracle EBS EAS NC U8 SAP LDAP
Cross Microsoft
SHAREPOINT 360 Symantec Sogou Kaspersky
www.beijinghuayu.com.cn 400-881-9281
- 7 -
2.2 WEB 1
Cross “ Web 12000
“ 800 Web
URL ActiveX
WEB
WEB SQL
XSS WEB SHELL
1. SQL
SQL WEB
SQL Cross URL
SQL SQL
2. XSS
WEB HTML
Cross
WEB
2.3
CA
www.beijinghuayu.com.cn 400-881-9281
- 8 -
0A1
3 ,
2.4 IPS
12000 “
DOS / /
/ / /
/ / / /
/” web /ICMP / / /
2.5
+22 2 1-2
,-
2.6
Internet
Internet
NAT
IP/IP /IP IP/MAC PORT
www.beijinghuayu.com.cn 400-881-9281
- 9 -
VLAN
www.beijinghuayu.com.cn 400-881-9281
- 10 -
3.1
3.1.1
Cross Cross
Cross
Radius AD
LDAP
Cross
Radius AD LDAP
VPN
3.1.2
Cross
Cross
www.beijinghuayu.com.cn 400-881-9281
- 11 -
3.2
3.2.1
Cross 2500 5
P2P
WWW
FTP Cross
SQL
Ø
3.2.2 URL
Cross URL
URL
Cross Web IP
URL Web
Ø
3.2.3
Cross HTTP SMTP
www.beijinghuayu.com.cn 400-881-9281
- 12 -
POP3 FTP IM
Cross
3.2.4 3
Cross
www.beijinghuayu.com.cn 400-881-9281
- 13 -
3.3
:
www.beijinghuayu.com.cn 400-881-9281
- 14 -
3.4
Bypass
WEB HTTP SSL WEB
SSH SSH
Console Console
IP
IPv4 IPv6
OSPF
OSPF
RIP RIP
www.beijinghuayu.com.cn 400-881-9281
- 15 -
PPPOE PPPOE PPPOE
DHCP DHCP
DHCP DHCP
DHCP IPv4 IPv6 DHCP
DNS DNS
DNS DNS , DNS
DNS DNS
VLAN VLAN
NAT PAT NAT
VPN
PPTP VPN PPTP VPN
IPSec VPN IPSec VPN
www.beijinghuayu.com.cn 400-881-9281
- 16 -
L2TP VPN L2TP VPN
IPS
8 “ DNS DNS “ DNS “
“ “ Sendmail Foxmail MS
Exchange “
AC “
“ Tftp tftp “ 3CDeamon FutureSoft
tftp “
“ snmp snmp “ snmp
“
“ Ftp ftp “ Serv-U WU-FTPD WS_FTP
3CDeamon ftp “
7A8
“
Shellcode “
Shellcode shellcode shellcode
C 7“ rpc rpc “ tooltalk sadmind
rpc “
8
“
“ Oracle Sql server Mysql
“
www.beijinghuayu.com.cn 400-881-9281
- 17 -
“ Web web “ IIS Apache
web “
I “ “ Windows Linux Unix
“
C “Malware PC
malware malware
malware“
CA “
“ Telnet Telnet “ Telnet
“
A “ botnet botnet botnet“
CA “Web web “ IE Firefox Chrome
web “
7 F H
“
ActiveX web
Web_activeX ActiveX “
ActiveX “
DOS/DDOS
www.beijinghuayu.com.cn 400-881-9281
- 18 -
DOS/DDOS
ARP IP DOS/DDOS ICMP
UDP SYN DNS
TearDrop IP LAND WinNuke
Smurf
Web HTTP web
FTP
OWASP 10 web Web
SQL XSS CSRF
web web
“
URL URL ftp telnet
APT
APT
www.beijinghuayu.com.cn 400-881-9281
- 19 -
10
HTTP FTP SMTP POP3
gzip zip rar
URL URL URL
URL URL
URL
TCP/80 URL
Telnet
,
HTTPS
SSL
HTTP
HTTP
FTP FTP
www.beijinghuayu.com.cn 400-881-9281
- 20 -
FTP
FTP FTP
WebMail SMTP POP3
PC
FTP SMTP TFTP IMAP
IP
MPLS PPPoE VLAN Q-in-Q L2TP GRE
HTTP HTTP IE
HTTP QQ Facebook
FTP FTP FTP FTP
WEB
P2P PP BT QQ
www.beijinghuayu.com.cn 400-881-9281
- 21 -
PPLive PPStream Qvod QQLive UUsee
PPFilm SopCast
QQ ;
)
QQ/TM MSN HI
UC
(
(
Skype ET263 YY Netmeeting
360
QQ 163 126
360
QQ SSH Windows VNC teamview
DB2 MySQL Oracle SQL
www.beijinghuayu.com.cn 400-881-9281
- 22 -
VIP
IP IP /
IP
/
/
/ 500K/1M
P2P 100K/200K 100K/100K
www.beijinghuayu.com.cn 400-881-9281
- 23 -
360WiFi IP
IP
( 5 )
( 5 )
5
PC
IP
www.beijinghuayu.com.cn 400-881-9281
- 24 -
IP
IP IP
TOP 50
TOP 50
www.beijinghuayu.com.cn 400-881-9281
- 25 -
360WiFi
PC
AD AD
RADIUS RADIUS
LDAP LDAP LDAP
www.beijinghuayu.com.cn 400-881-9281
- 26 -
POP3 POP3
WEB POP3 AD LDAP RADIUS
Web
/ USB
LDAP/AD
LDAP/AD /
LDAP AD
IP MAC VLAN ID
IP MAC
IP+MAC VLAN
PC android
IP
IP/MAC IP MAC IP+MAC
VLAN VLAN
IP
www.beijinghuayu.com.cn 400-881-9281
- 27 -
NetBIOS
IP MAC
(HA) HA
DOS DOS
ARP ARP ARP
CPU
www.beijinghuayu.com.cn 400-881-9281
- 28 -
Excel PDF
CPU
/ /
www.beijinghuayu.com.cn 400-881-9281
- 29 -
/ /
URL
URL / /
/ /
/ URL
/
/
DoS DoS IP IP
IPS IPS IP “
www.beijinghuayu.com.cn 400-881-9281
- 30 -
ID “
IP
URL URL
IP/
IP/ IP/ MAC
EXCEL HTML
FTP
![MS-Series - Carling Tech...[16.51 mm] Email: sales @ carlingtech.com Application Support: team2@carlingtech.com Phone: (860) 793–9281 Fax: (860) 793–9231](https://img.pdfslide.us/doc/110x75/5f2252a28291786d757df78f/ms-series-carling-tech-1651-mm-email-sales-application-support-team2.jpg)
![nÊ - Al Islam Online - Official WebsiteYZƒ0+Z„Zƒ0+Zs CÙ gzZ ì1 Š¤/LZðZŠ»y-L gzZ XìŠH (280 c*&+Z2006 ·,xzŠ¢{Zg Ä) îª3Ò7 ]|xâZ}g\}gø E ZGGE-o.Å ÷ G k]m,+Z{ Ò\¬vZ{](https://img.pdfslide.us/doc/110x75/5f07e9327e708231d41f5fa9/n-al-islam-online-official-website-yz0zaz0zs-c-gzz-1-lzzy-l.jpg)
![õ S A ß ¡ Ï + ã ½$ Y gØ]enlight.lib.ntu.edu.tw/FULLTEXT/JR-MISC/misc589204.pdf · 77 õ s a ß ¡ Ï + ã ½$ y gØ] # p \ Ô Ï ø ± ê Ç « ¸ õ s a ß 3 ·¸h ~ b Ú](https://img.pdfslide.us/doc/110x75/5e46c7c93eeaf463a052f0ef/-s-a-y-g-77-s-a-y-g-p-.jpg)
![w‚kZvZY¶KZˆÆ9Æ ì gƒÂ Ñ gø - Al Islam Online · w‚kZvZY¶KZˆÆ9zÆw‚ ì;gƒÂ:Ñ‚*Zgø ({1gX¶ZKx®Y1972ÞâB17Qgñ{Šñ Û-[)D:c*â ÛägâZg—ˆÆ]zˆÅBÃ>gÎgzZfËé](https://img.pdfslide.us/doc/110x75/5f07e9967e708231d41f61af/wakzvzykz9-g-g-al-islam-online-wakzvzykz9zwa.jpg)
![[XLS]assets.publishing.service.gov.uk · Web view3030. 4211. 13470. 37490. 8556. 44916. 2171. 815. 50041. 0. 8516. 6640. 1606. 32320. 9281. 38169. 15321. 87898. 110246. 6852. 7887](https://img.pdfslide.us/doc/110x75/5b0b29a77f8b9a0c4b8d4c06/xls-view3030-4211-13470-37490-8556-44916-2171-815-50041-0-8516-6640.jpg)
