Juniper防火墙的一些技术概念
Juniper防火墙的一些概念安全区(SecurityZone):Juniper防火墙增加了全新的安全区域(SecurityZone)的概念,安全区域是一个逻辑的结构,是多个处于一样属性区域的物理接口的调集。当不一样安全区域之间彼此通信时,有必要通过事先定义的策略检测才能通过;当在同一个安全区域进行通信时,默认状态下允许不通过策略检测,通过配置后也可以强行进行策略检测以提升安全性。安全区域概念的呈现,使防火墙的配置能更灵敏同现有的网络结构相结合。(Some concepts of Juniper firewall security zone (SecurityZone): Juniper firewall adds a new concept of security zone (SecurityZone), a security zone is a logical structure, is a collection of multiple physical interfaces in the same attribute zone. When communicating with each other in different security zones, it is necessary to pass the pre-defined policy detection; when communicating in the same security zone, it is allowed to fail the policy detection by default, and the policy detection can also be forced after configuration. to enhance security. The appearance of the concept of security zone makes the configuration of the firewall more flexible and combined with the existing network structure.)
页:
[1]