¹«º£²Ê´¬¡¤6600(ÖйúÓÎ)¹Ù·½ÍøÕ¾

µã»÷ÏÂÔØ¡¶ÍòÕ×Ô°ÇøÒÔÌ«²Ê¹âÑо¿±¨¸æ¡·£¬½âËøÍòÕ×Ô°ÇøÍøÂ罨ÉèÖ¸ÄÏ
Á¢¼´ÏÂÔØ
ÎÞ¸Ð×¼Èë ÈËÎïͳ¹Ü Ø­ RG-SAM+5.X ÐÂÒ»´ú¸ßУAIÈÏ֤ƽ̨·¢²¼
Ô¤Ô¼Ö±²¥
²úÆ·
< ·µ»ØÖ÷²Ëµ¥
²úÆ·ÖÐÐÄ
²úÆ·
ºÏ×÷»ï°é
·µ»ØÖ÷²Ëµ¥
Ñ¡ÔñÇøÓò/ÓïÑÔ

¹«º£²Ê´¬¡¤6600²úÆ·Õë¶Ô¡°GlobeImposter ¡±µÄ·À·¶´ëÊ©

·¢²¼Ê±¼ä£º2019-03-11

½üÆÚ£¬ÃûΪ“GlobeImposter ”µÄÀÕË÷²¡¶¾Ôٴα¬·¢£¬ÖйúÖÚ¶àÓû§“ÖÐÕД¡£¹«º£²Ê´¬¡¤6600ÍøÂçÒÑ·¢²¼ÏÂÒ»´ú·À»ðǽµÄ·À·¶´ëÊ©£¬½¨Òé¿Í»§¼°Ê±µ÷Õû·À»ðǽ¼°Öնˣ¬·À·¶²¡¶¾¡£ÎªÁË°ïÖúÓû§³¹µ×¶Å¾ø¸Ã²¡¶¾£¬¹«º£²Ê´¬¡¤6600¼¼Êõ·þÎñ¹¤³ÌʦΪ¹ã´óÓû§½øÒ»²½Ìṩ¸üΪÏêϸµÄ´¦Àí¹«º£²Ê´¬¡¤6600¹ÙÍø¡£

 

¹«º£²Ê´¬¡¤6600²úÆ·Õë¶Ô“GlobeImposter ”µÄ·À·¶´ëÊ©

  

“GlobeImposter”ÀÕË÷²¡¶¾³ýÀûÓÃÒÑÖªµÄWindowsµÄϵͳ©¶´Ö®Í⣬»¹ÀûÓÃWindowsÔ¶³Ì×ÀÃæ·þÎñÏà¹Ø¶Ë¿Ú½øÐд«²¥£¬¹«º£²Ê´¬¡¤6600ÍøÂçÇ¿ÁÒ½¨ÒéÏà¹Øµ¥Î»ºÍ¸öÈËÓû§×öºÃÒÔÏ´ëÊ©£º

£¨Ò»£©¹Ø±Õ135¡¢137¡¢139¡¢445µÈ¶Ë¿ÚµÄÍⲿÍøÂç·ÃÎÊȨÏÞ£¬ÔÚ·þÎñÆ÷ÉϹرղ»±ØÒªµÄÉÏÊö·þÎñ¶Ë¿Ú£»

£¨¶þ£©¼ÓÇ¿¶Ô135¡¢137¡¢139¡¢445µÈ¶Ë¿ÚµÄÄÚ²¿ÍøÂçÇøÓò·ÃÎÊÉó¼Æ£¬¼°Ê±·¢ÏÖ·ÇÊÚȨÐÐΪ»òDZÔڵĹ¥»÷ÐÐΪ£»

£¨Èý£©¹Ø±ÕWindowsÔ¶³Ì×ÀÃæ·þÎñµÄÍâÍø·ÃÎÊȨÏÞ£¨Ä¬È϶˿ÚΪTCP 3389£©£¬Í¬Ê±ÔÚ·þÎñÆ÷ÉϹرÕWindowsÔ¶³Ì×ÀÃæ·þÎñ¡£ÈçÈ·Ð迪ÆôÔ¶³Ì×ÀÃæ·þÎñ£¬½¨ÒéÐÞ¸ÄĬÈϵÄWindowsÔ¶³Ì×ÀÃæ·þÎñ¶Ë¿Ú£¬»òͨ¹ýWindows·À»ðǽ¡¢ÍøÂçÉ豸ÉèÖÃÔÊÐí·ÃÎʸ÷þÎñµÄÔ¶³ÌÖ÷»úµØÖ·£»

£¨ËÄ£©¼ÓÇ¿·þÎñÆ÷µÄÃÜÂë¹ÜÀí£¬ÉèÖÃÇ¿¿ÚÁî²¢¶¨ÆÚ¸ü»»ÃÜÂ룻

²ÉÓù«º£²Ê´¬¡¤6600²úÆ·×齨µÄÍøÂ磬¿ÉÒÔ¿ªÆôÏà¹Ø²úÆ·¹¦ÄܽøÐÐÔ¤·À£¬ÒÔ·À·¶ºÍ½µµÍ¹¥»÷²úÉúµÄÓ°Ïì¡£¿ÉÔÚÍøÂç±ß½ç£¨³ö¿ÚÍø¹Ø¡¢Â·ÓÉÆ÷»ò°²È«É豸£©¡¢ÄÚ²¿ÍøÂçÇøÓò£¨½»»»»ú¼°ÎÞÏßÉ豸£©¡¢Ö÷»ú°²È«£¨Ó¦ÓÃÈí¼þ£©µÄÒµÎñÓÅÏÈÅŲ¼Âß¼­½Ç¶È£¬²¿Êð°²È«²ßÂÔ£¬¾ßÌå·À·¶¹«º£²Ê´¬¡¤6600¹ÙÍøÈçÏ£º

×¢Ò⣺Èôͨ¹ýÍøÂçÉ豸×è¶Ï445¼°ÆäËû¹ØÁª¶Ë¿Ú£¨Èç: 135¡¢137¡¢139¡¢3389¶Ë¿Ú)µÄÍⲿÍøÂç·ÃÎÊȨÏÞ£¬»áÓ°Ïìµ½“WindowsÎļþ¹²Ïí¹¦ÄÜ”¡¢“ADÓò¡¢LDAP¶Ô½Ó³¡¾°”¡¢“ÔÆ×ÀÃæ²úÆ·“µÈµÄʹÓ㬽¨Òé¸ù¾Ý¿Í»§Êµ¼ÊÒµÎñÇé¿öÑ¡Ôñ·â¶ÂµÄ¶Ë¿Ú£¬Õë¶ÔÔÆ·þÎñÆ÷»òÒµÎñ·þÎñÆ÷£¬·Åͨ139ºÍ445¶Ë¿Ú¡£

 

• ³ö¿ÚÍø¹Ø²úÆ·

ÍøÂç±ß½ç³ö¿Ú²¿Ê𹫺£²Ê´¬¡¤6600NPE/NBR/EGÍø¹Ø²úÆ·£¬Ö÷Òª²ÉÓýûÖ¹135¡¢137¡¢139¡¢445¡¢3389·þÎñ¶Ë¿Ú·À·¶·çÏÕ¡£ÐèҪעÒâÍø¹Ø²úÆ·¾­³£»á²¿ÊðºÜ¶àµÄÓ³ÉäÒµÎñ£¬ÇëÎñ±ØÈ·ÈÏÒµÎñʹÓõĶ˿ÚÊÇ·ñÓÐÔڴ˽ûÖ¹ÐÐÁУ¬±ÜÃâÓ°ÏìÕý³£ÒµÎñʹÓ㬾ßÌ巽ʽÈçÏÂ:

Ruijie#configure terminal

Ruijie(config)#ip access-list 2999£¨Acl num<1-3000>£¬×¢Òâ²»Òª¸úÆäËûACL³åÍ»ÁË£©

Ruijie(config-ext-nacl)#10 deny tcp any any eq 135

Ruijie(config-ext-nacl)#20 deny tcp any any eq 137

Ruijie(config-ext-nacl)#30 deny tcp any any eq 139

Ruijie(config-ext-nacl)#40 deny tcp any any eq 445

Ruijie(config-ext-nacl)#50 deny tcp any any eq 3389

Ruijie(config-ext-nacl)#60 deny udp any any eq 135

Ruijie(config-ext-nacl)#70 deny udp any any eq 137

Ruijie(config-ext-nacl)#80 deny udp any any eq 139

Ruijie(config-ext-nacl)#90 deny udp any any eq 445

Ruijie(config-ext-nacl)#120 permit ip any any   (·çÏյ㣺×îºó±ØÐëÅäÖÃÔÊÐíËùÓУ¬·ñÔò»áµ¼Ö¶ÏÍø)

Ruijie(config-ext-nacl)#exit

Ruijie(config)#ip session filter 2999 (×¢Òâ˳Ðò£¬±ØÐëÏÈÅäÖÃACL 2999ÔÙÅäÖÃip session filter)

 

• ·ÓɲúÆ·

ÍøÂç±ß½ç³ö¿Ú²¿Ê𹫺£²Ê´¬¡¤6600RSR·ÓÉÆ÷²úÆ·£¬Ö÷Òª²ÉÓýûÖ¹135¡¢137¡¢139¡¢445¡¢3389·þÎñ¶Ë¿ÚÒÔ·À·¶·çÏÕ¡£×¢ÒâÈ·ÈÏÊÇ·ñÓÐÆäËûÕý³£ÒµÎñÉæ¼°¸Ã¶Ë¿Ú£¬±ÜÃâÓ°ÏìÕý³£ÒµÎñʹÓá£
RSR1002e/RSR2004e/RSR2014EF/RSR3044/RSR30-X/RSR50E40/RSR77 /RSR77XϵÁвúÆ·ÍƼöʹÓÃsession filter·½Ê½£¬ÅäÖ÷½Ê½ÈçÏ£º

È«¾Ö´´½¨ACE±íÏ²¢ÔÚÈ«¾Öģʽµ÷ÓøÃACLʹÆäÉúЧ¡£

Ruijie#configure terminal

Ruijie(config)#ip access-list extend deny_onion

Ruijie(config-ext-nacl)#10 deny tcp any any eq 135

Ruijie(config-ext-nacl)#20 deny tcp any any eq 137

Ruijie(config-ext-nacl)#30 deny tcp any any eq 139

Ruijie(config-ext-nacl)#40 deny tcp any any eq 445

Ruijie(config-ext-nacl)#50 deny tcp any any eq 3389

Ruijie(config-ext-nacl)#60 deny udp any any eq 135

Ruijie(config-ext-nacl)#70 deny udp any any eq 137

Ruijie(config-ext-nacl)#80 deny udp any any eq 139

Ruijie(config-ext-nacl)#90 deny udp any any eq 445

Ruijie(config-ext-nacl)#120 permit ip any any   (·çÏյ㣺×îºó±ØÐëÅäÖÃÔÊÐíËùÓУ¬·ñÔò»áµ¼Ö¶ÏÍø)

Ruijie(config-ext-nacl)#exit

Ruijie(config)#ip fpm session filter deny_onion

Õë¶ÔRSR20,RSR50,RSR50eϵÁв»Ö§³Ösession filter¹¦ÄܵÄ·ÓÉÆ÷É豸£¬ÍƼöʹÓÃACLÅäÖã¬ÅäÖ÷½Ê½ÈçÏÂ:

Ruijie#configure terminal

Ruijie(config)#ip access-list extend deny_onion

Ruijie(config-ext-nacl)#10 deny tcp any any eq 135

Ruijie(config-ext-nacl)#20 deny tcp any any eq 137

Ruijie(config-ext-nacl)#30 deny tcp any any eq 139

Ruijie(config-ext-nacl)#40 deny tcp any any eq 445

Ruijie(config-ext-nacl)#50 deny tcp any any eq 3389

Ruijie(config-ext-nacl)#60 deny udp any any eq 135

Ruijie(config-ext-nacl)#70 deny udp any any eq 137

Ruijie(config-ext-nacl)#80 deny udp any any eq 139

Ruijie(config-ext-nacl)#90 deny udp any any eq 445

Ruijie(config-ext-nacl)#120 permit ip any any   (·çÏյ㣺×îºó±ØÐëÅäÖÃÔÊÐíËùÓУ¬·ñÔò»áµ¼Ö¶ÏÍø)

Ruijie(config-ext-nacl)#exit

Ruijie(config)#interface gigabitEthernet 0/1  //¸ù¾Ý²»Í¬¶Ë¿Ú½øÐе÷Õû

Ruijie(config-if-gigabitEthernet)#ip access-group deny_onion in

Èç¹û֮ǰÒѾ­ÓÐÅäÖÃÕâÁ½ÖÖ¹¦ÄÜ£¬Ö»ÐèÒª°ÑÕâ´Î¹ýÂ˶˿ڵÄACE¼ÓÈë֮ǰµÄACL¼´¿É¡£

 

• °²È«²úÆ·

ÍøÂç±ß½ç°²È«ÇøÓò²¿Ê𹫺£²Ê´¬¡¤6600¹«º£²Ê´¬¡¤6600·À»ðǽ²úÆ·£¬¿ÉÒÔͨ¹ý×è¶Ï©¶´¶Ë¿Ú»òÉý¼¶¹æÔò¿âµÄ·½Ê½´¦Àí£º

1£©°²È«²úÆ·Ê×ÏȲÉÓýûÖ¹TCP135¡¢TCP/UDP137¡¢TCP139¡¢TCP445¡¢TCP3389·þÎñ¶Ë¿Ú¡£È粿Êð³ö¿ÚµÄ·À»ðǽÉ豸¾­³£»á²¿ÊðºÜ¶àµÄÓ³ÉäÒµÎñ£¬ÇëÎñ±ØÈ·ÈÏÒµÎñʹÓõĶ˿ÚÊÇ·ñÓÐÔڴ˽ûÖ¹ÐÐÁУ¬±ÜÃâÓ°ÏìÕý³£ÒµÎñʹÓá£
ÒÔÈ«ÐÂÏÂÒ»´ú·À»ðǽΪÀý£¬ÅäÖò½ÖèÈçÏ£º






 

2£©UTMÌØÕ÷¿âÊÚȨÔÚÓÐЧÆÚÄÚµÄÓû§£¬¿É¿ªÆôÈëÇÖ·ÀÓù»ò·À²¡¶¾¹¦ÄܽøÐÐÉî¶È·ÀÓù£º

• RG-WALL 1600ϵÁÐÈ«ÐÂÏÂÒ»´ú·À»ðǽ²úÆ·£¨ÐͺÅ£ºRG-WALL 1600-S3100/S3200/S3600/S3700/M5100/M6600/X8500/9300/X9850£©,½«ÈëÇÖ·ÀÓùÌØÕ÷¿â¸üе½14.00570°æ±¾£¬ ²¡¶¾ÌØÕ÷¿â¸üе½ 66.00963 °æ±¾Ö®ºó£¬Í¬Ê±¿ªÆôÈëÇÖ·ÀÓùºÍ²¡¶¾·À»¤¹¦Äܼ´¿ÉÓÐЧÀ¹½ØÀÕË÷²¡¶¾£¨ÈëÇÖ·ÀÓùºÍ²¡¶¾·À»¤¹¦ÄܵľßÌåÅäÖ÷½·¨£¬¿É²Î¿¼²úÆ·µÄʵʩһ±¾Í¨£©£»

• RG-WALL 1600-EϵÁÐÈ«ÐÂÄ£¿é»¯·À»ðǽ²úÆ·£¨ÐͺÅ£ºRG-WALL 1600-E200/E300/E400/E600/E800£©£¬½«ÈëÇÖ·ÀÓùÌØÕ÷¿â£¨ipsÌØÕ÷¿â£©¹æÔò¿â/¿ìËÙ¼ì²â²¡¶¾¿â°æ±¾¸üе½ 2019-03-11 °æ±¾¼°Ö®ºó£¬Í¬Ê±¿ªÆôÈëÇÖ·ÀÓù¡¢²¡¶¾·À»¤¹¦Äܼ´¿ÉÓÐЧÀ¹½ØÀÕË÷²¡¶¾£¨ÈëÇÖ·ÀÓù¹¦ÄܵľßÌåÅäÖ÷½·¨£¬¿É²Î¿¼²úÆ·µÄʵʩһ±¾Í¨£©£»

 

• ½»»»²úÆ·

Èô¿Í»§³ö¿Ú±ß½çÉ豸ÎÞ·¨ÅäÖøôÀ룬¿É¿¼ÂÇÔÚ½»»»²úÆ·ÓëÍâÍø³ö¿Ú»¥Áª¶Ë¿Ú¼°ÆäËü´æÔÚ¸ÐȾ²¡¶¾·çÏÕµÄÈë¶Ë¿ÚÉϲ¿ÊðACL¡£µ«Çë×¢ÒâÈ·ÈÏÊÇ·ñÓÐÆäËûÕý³£Ó¦ÓÃÉæ¼°¸Ã¶Ë¿Ú£¬±ÜÃâÓ°ÏìÕý³£ÒµÎñʹÓ㬷½Ê½ÈçÏ£º

´´½¨ACE±íÏî

Ruijie#configure terminal

Ruijie(config)#ip access-list extend deny_onion

Ruijie(config-ext-nacl)#10 deny tcp any any eq 135

Ruijie(config-ext-nacl)#20 deny tcp any any eq 137

Ruijie(config-ext-nacl)#30 deny tcp any any eq 139

Ruijie(config-ext-nacl)#40 deny tcp any any eq 445

Ruijie(config-ext-nacl)#50 deny tcp any any eq 3389

Ruijie(config-ext-nacl)#60 deny udp any any eq 135

Ruijie(config-ext-nacl)#70 deny udp any any eq 137

Ruijie(config-ext-nacl)#80 deny udp any any eq 139

Ruijie(config-ext-nacl)#90 deny udp any any eq 445

Ruijie(config-ext-nacl)#150 permit ip any any   (·çÏյ㣺×îºó±ØÐëÅäÖÃÔÊÐíËùÓУ¬·ñÔò»áµ¼Ö¶ÏÍø)

Ruijie(config-ext-nacl)#exit

ÍƼöÑ¡ÔñÔÚÎïÀí½Ó¿ÚÉÏÓ¦ÓøÃACL£¬ÎÞÐèÔÚSVI½Ó¿ÚÉÏÅäÖá£ÀýÈ磺

Ruijie(config)#interface gigabitEthernet 0/1  //¸ù¾Ý²»Í¬¶Ë¿Ú½øÐе÷Õû

Ruijie(config-if-gigabitEthernet)#ip access-group deny_onion in

 

• ÎÞÏß²úÆ·

Èç¹ûÍøÂçÖв¿Ê𹫺£²Ê´¬¡¤6600ÎÞÏßÉ豸£¬Ö÷Òª²ÉÓýûÖ¹135¡¢137¡¢139¡¢445¡¢3389·þÎñ¶Ë¿ÚÒÔ·À·¶·çÏÕ£¬×¢ÒâÈ·ÈÏÊÇ·ñÓÐÆäËûÕý³£ÒµÎñÉæ¼°¸Ã¶Ë¿Ú£¬±ÜÃâÓ°ÏìÕý³£ÒµÎñʹÓá£

1£©Èç¹ûACÔÚ¾ÖÓòÍø»·¾³£¬½¨ÒéÔÚ³ö¿ÚÉ豸×öÏàÓ¦·À»¤²ßÂÔ£¬ÎÞÐèµ÷ÕûACÅäÖá£

2£©Èç¹ûAC×÷Ϊ»¥ÁªÍø³ö¿Ú£¬ÔòÐèÔÚACÉϲ¿ÊðACL·À»¤²ßÂÔ£¬¾ßÌåÅäÖ÷½·¨ÈçÏÂ:

×¢Ò⣺ÅäÖÃÇ°ÇëÏÈÈ·ÈÏÊÇ·ñÓÐÆäËûÕý³£Ó¦ÓÃÐèʹÓÃÒÔ϶˿Ú£¬±ÜÃâÓ°ÏìÕý³£ÒµÎñʹÓá£

Ruijie#configure terminal

Ruijie(config)#ip access-list extend deny_onion

Ruijie(config-ext-nacl)#10 deny tcp any any eq 135

Ruijie(config-ext-nacl)#20 deny tcp any any eq 137

Ruijie(config-ext-nacl)#30 deny tcp any any eq 139

Ruijie(config-ext-nacl)#40 deny tcp any any eq 445

Ruijie(config-ext-nacl)#50 deny tcp any any eq 3389

Ruijie(config-ext-nacl)#60 deny udp any any eq 135

Ruijie(config-ext-nacl)#70 deny udp any any eq 137

Ruijie(config-ext-nacl)#80 deny udp any any eq 139

Ruijie(config-ext-nacl)#90 deny udp any any eq 445

Ruijie(config-ext-nacl)#120 permit ip any any   (·çÏյ㣺×îºó±ØÐëÅäÖÃÔÊÐíËùÓУ¬·ñÔò»áµ¼Ö¶ÏÍø)

Ruijie(config-ext-nacl)#exit

²¿Ê𳡾°£º

1£©Èç¹ûÄÚÍøÎÞÏßÖÕ¶ËÒѾ­³öÏÖÎÊÌ⣬ÔÚÎÞÏßµÄwlansecϵ÷ÓöÔÓ¦µÄÎÞÏßACL£¬·À»¤ÄÚÍø

Ruijie(config)#wlansec 1   £¨×¢Ò⣺ÿ¸öÓû§µÄwlansec϶¼ÐèÒªµ÷Óã©

Ruijie(config-wlansec)#ip access-group deny_onion in (×¢Òâ˳Ðò£¬±ØÐëÅäÖúÃACL deny_onionÔÙÅäÖÃip access-group deny_onion in)

Ruijie(config-wlansec)#exit

Ruijie(config)#exit

Ruijie#write

2£©Èç¹ûµ±Ç°ÄÚÍøÎÞÏßʹÓÃÕý³££¬Ö»ÐèÒª·À»¤ÍâÍøµÄ¹¥»÷±¨ÎÄ£¬¿ÉÔÚACÉÏÁªÎïÀí½Ó¿Úµ÷ÓÃ

Ruijie(config)# interface gigabitEthernet 0/1   £¨ÐèÒªÔÚACÉÏÁªµÄÎïÀí½Ó¿Úµ÷Óã©

Ruijie (config-if-GigabitEthernet 0/1)#ip access-group deny_onion in (×¢Òâ˳Ðò£¬±ØÐëÅäÖúÃACL deny_onionÔÙÅäÖÃip access-group deny_onion in)

Ruijie (config-if-GigabitEthernet 0/1)# exit

Ruijie(config)#exit

Ruijie#write

 

ÈçÐè½øÒ»²½×Éѯ»ò¼¼ÊõÖ§³Ö£¬¿ÉÒÔÁªÏµÍ³Ò»¿Í·þµç»°£º4008111000¡£

 

 

¹Ø×¢¹«º£²Ê´¬¡¤6600
¹Ø×¢¹«º£²Ê´¬¡¤6600¹ÙÍø΢ÐÅ
ËæʱÁ˽⹫˾×îж¯Ì¬

·µ»Ø¶¥²¿

ÊÕÆð
ÎĵµAIÖúÊÖ
ÎĵµÆÀ¼Û
¸Ã×ÊÁÏÊÇ·ñ½â¾öÁËÄúµÄÎÊÌ⣿
Äú¶Ôµ±Ç°Ò³ÃæµÄÂúÒâ¶ÈÈçºÎ£¿
²»Õ¦µÎ
·Ç³£ºÃ
ÄúÂúÒâµÄÔ­ÒòÊÇ£¨¶àÑ¡£©£¿
Äú¶ÔÎĵµÊÇ·ñ»¹ÓÐÆäËüµÄÎÊÌâ»ò½¨Ò飿
Ϊ¾¡¿ì½â¾öÎÊÌ⣬ÇëÄúÁôÏÂÁªÏµ·½Ê½ÒÔ±ã»Ø¸´
ÓÊÏä
ÊÖ»úºÅ
¸ÐлÄúµÄ·´À¡£¡
ÇëÑ¡Ôñ·þÎñÏîÄ¿
¹Ø±Õ×Éѯҳ
ÊÛÇ°×Éѯ ÊÛÇ°×Éѯ
ÊÛÇ°×Éѯ
ÊÛºó·þÎñ ÊÛºó·þÎñ
ÊÛºó·þÎñ
Òâ¼û·´À¡ Òâ¼û·´À¡
Òâ¼û·´À¡
¸ü¶àÁªÏµ·½Ê½
¡¾ÍøÕ¾µØͼ¡¿¡¾sitemap¡¿