­º­¶> ¨¾¤õÀð/¸ê¦w/SPAM

>>ÂsÄý©Ò¦³Innominate¨¾¤õÀð/¸ê¦w/SPAM

Innominate
Innominate Device Management

«¬¸¹¡GDevice Management


InnominateDevice Management


°Ñ¦Ò°â»ù¡G½Ð¥ß§Y¨Ó¹q ¤O±ô¸ê°T
( »ù®æ¯}Ãa¦æ±¡¡I¨Ó¹q¬¢¸ß)



ServerBank¤O±ô¸ê°Tµ¹§A³Ì¶W­ÈÀu´fªºInnominate - Device Management - ¨¾¤õÀð/¸ê¦w/SPAM
³Ì¦nªºInnominate - Innominate Device Management±ÄÁÊ¿ï¾Ü´N¦b ServerBank!
¶W¦h´Ú¨¾¤õÀð/¸ê¦w/SPAM Åwªï±z¨Ó¹q°Q½×±ÄÁʻݨD¡A²{¦b§ó¦³¦h­«Àu´f¤è®×³á
¥»¯¸°Ó«~§¡¸û¦P·~»PºôÁÊ«K©y,¥ø·~ªø´Á±ÄÁÊ ¶q¤j¥t¦³§é¦©³á!  
 ServerBankÂX¤j©Û¶Ò·~°È¦P¤¯¡I

°Ñ¦Ò°â»ù¡G( ¯}Ãa¦æ±¡¼t°Ó¬IÀ£¡I)
¸ß°Ý¥ô¦óInnominate¬ÛÃö²£«~½Ð¥ß§Y¨Ó¹q
¤O±ô¸ê°T ServerBank ¹q¸Ü:(02)8969-0901
¸ß»ùEmail service@serverbank.com.tw



·|­û»ù>>¯Á¨ú¦¹°Ó«~³ø»ù
¦Û°Ê¦C¦L³ø»ù³æ(¤´¥i¨Ó¹q¸ß°Ý§é¦©´T«×)


ÂsÄý³W®æ¬Ûªñ¤§Innominate²£«~>>
ÂsÄý³W®æ¬Ûªñ¤§¨ä¥L«~µP²£«~>>






¥[ÁÊ ¼Ð·Ç°t³Æ¥H¥~¤§Innominate­ì¼t°t¥ó


¡@

¡@

¡@

Erhaltlich sind die mGuard blade

The Innominate Device Manager (IDM) enables the

convenient management of Innominate mGuard se cu -

rity appliances. The tool offers a template mechanism

that allows users to centrally configure and manage

hundreds up to several thousand Innominate mGuard

devices.

Innominate¡¦s mGuard security appliances safe guard

machines for M2M communication. Application

scenarios include the protection and / or secure

remote maintenance of networked robots in the automotive

industry, production systems in the manufacturing

and process industries, medical technology

systems, printing machinery, point of sales systems

and ATMs, telematics and monitoring systems where

the installation of distributed security appliances

requires a clearly organised and easy-to-use ma na -

gement tool.

The template-based Innominate Device Manager

(IDM) is particularly suitable for the roll out and configuration

management of large groups of homoge -

neously configured mGuard devices. Templates enable

the centralisation of settings for several devices

at once and typically capture the security-critical and

knowledge-intensive portions of device configurations.

Via the upload function, all security appliances

on the manager¡¦s device list can be conveniently

configured in one go. Alternatively, the configuration

data can automatically be downloaded following the

activation of the remote appliance. With the Innominate

Device Manager, the roll out of broadly distributed

installations involving thousands of appliances

can be carried out quickly and efficiently.

With a mouse click, the desired firewall rules and

NAT settings can be generated and uploaded to the

devices in the network, deploying the desired device

configurations in one process. The IDM is a clientserver

application, the client offering full control of all

IDM features, the server storing the configuration in a

database, generating configuration files and uploading

those files to the devices upon request. If a configuration

is uploaded to a device, the IDM generates

an (ASCII) configuration file. This configuration is

transferred via SSH to the device and is subsequently

placed in operation by the Innominate mGuard. Furthermore,

the IDM can generate configuration files to

be used for a configuration pull by the devices via

HTTPS.

IDM client overview

The IDM client is the graphical user interface for

accessing all features of the IDM. It allows users to

create and manage devices and templates, to initiate

the upload of configurations to devices, or to command

the export of device configurations to a web

server file system.

Application example: mGuard secured remote

services

Remote service security is a prominent application

area in which mGuard appliances are deployed in

order to secure Internet / VPN or dial-up based connections

for the remote monitoring, diagnostics, and

maintenance of industrial machinery and equipment.

Manufacturers of such equipment with thousands of

their systems in the field and hundreds of new

systems being shipped each year can apply the IDM

to efficiently manage corresponding numbers of

mGuard security appliances attached to their machines.

Roll out scenario

Once an experienced network security administrator

has put the appropriate IDM configuration templates

in place, regular technical staff working on assembly

and packaging of the equipment can configure

mGuard devices before shipment to end customer

premises with only minimal training. In particular, the

complexities of configuring VPN connections, digital

certificates and virtual addressing schemes are completely

taken away at the device level by the IDM¡¦s

template and combined automation mechanisms.

Configuration of a restricted set of variables that may

not be known before the actual on-site commissioning

phase, such as an available IP address for the

external interface to the customer network, may be

delegated as so-called local variables to an on-site

technician taking on mGuard¡¦s ¡§Network Admin¡¨ user

role. Once the mGuard appliances are installed in the

field, the IDM can continuously be applied to update,

maintain and monitor their configuration status over

time.

Deploying device configurations from the

IDM server to mGuard appliances

1. Configuration push via SSH

The IDM server connects to the mGuard device using

the SSH secure shell protocol. Subsequently the configuration

file is copied to the device and put into

operation. The status and success of the upload process

as well as any possible problems are monitored

by the IDM server and visualized in the device list in

the IDM client. The upload process can be initiated

from the IDM client for individual selections of

devices or simultaneously for all devices with

changed configurations pending upload.

2. Configuration pull via HTTPS

The IDM server can also be instructed to export new

or updated device configurations to a web server file

system. The respective mGuard devices themselves

can then check for and download available configurations

from that web server using the secure HTTPS

protocol on a regular schedule or each time they

boot. The correctly matching IDM configuration for a

device can be identified both by logical management

ID or the serial number of the physical device. The

process includes an optional mechanism to report

successful configuration pulls back from the device

via the web server to the IDM server for monitoring

purposes.

Both methods may be combined as appropriate, e. g.

non-critical configuration updates may be provided

for the next configuration pull whereas critical, emergency

type updates may be immediately pushed to

all available devices.

Configurable mGuard features supported

by the Innominate Device Manager

¡½ Control of system settings (host, time and date,

shell access)

¡½ mGuard web access

¡½ Configuration pull

¡½ mGuard interfaces (Network mode, Stealth mode

settings, external and internal networks, PPPoE

settings)

¡½ DNS

¡½ Internal DHCP

¡½ User authentication (local mGuard users): Admin,

Network Admin and Audit

¡½ Packet filter (incoming and outgoing rules)

¡½ NAT (masquerading, 1:1 NAT, port forwarding)

¡½ Remote logging to Syslog server

¡½ VPN connections

¡½ Convenient auto-configuration of peer VPN gateway

 if the peer device is also managed by the IDM

¡½ Integrated Certificate Authority (CA) for VPN

authentication with auto-generated X.509 certificates

¡½ Intelligent value pool management, e. g. for autoassigned

unique virtual addresses and networks


Innominate
Innominate Device Management - ServerBank¸ê°T±ÄÁʺô
Device Management
¨¾¤õÀð/¸ê¦w/SPAM


¡@
²£«~³W®æ
Hardware-Leistungsmerkmale
Minimum System Requirements Client Server
Hardware A minimum of 512 MB RAM

500 MB free hard disk space

Color-monitor with at least

1024 x 768 resolution

A minimum of 512 MB RAM

4 GB free hard disk space

Software Windows 2000 SP 2 (or higher),

Windows XP or Linux

Java Runtime Environment 5.0

Windows 2000 SP 2 (or higher),

Windows XP or Linux

Java Runtime Environment 5.0

PostgreSQL Version 8.1


¡D¥»¤å¥óªº¸ê°T­Y¦³­×§ï¡A®¤¤£¥t¦æ³qª¾¡C
¡D³W®æ©Î³ø»ù­Y¦³»~¡A¥H­ì¼t«¬¿ý©Î¥¿¦¡³ø»ù³æ¬°¥D¡C
¡D¥»ºô¯¸¤º®e©Î¤å¥ó·í¤¤©Ò´£¤Î¤§«~µP¤Î²£«~¦WºÙ©Î¹Ï¤ù§¡¬°¨ä­ì©ÒÄݤ½¥q¤§ª©Åv¡B°Ó¼Ð©Îµù¥U°Ó¼Ð¡C

º¡¤@©w¼Æ¶q©Îª÷ÃBÁÙ¦³¦h´ÚÃØ«~¥i¨Ñ¿ï¾Ü³á! ServerBank¤O±ô¸ê°Tµ¹§A³Ì¶W­ÈÀu´fªºInnominate - Device Management - ¨¾¤õÀð/¸ê¦w/SPAM ,³Ì¦nªºInnominate - Innominate Device Management±ÄÁÊ¿ï¾Ü´N¦b ServerBank!


¥æ©ö¤Î¹B°e«O©T»¡©ú

¥æ©ö¤è¦¡¡G
±z¤£½T©w¥H¤W°Ó«~¬O§_²Å¦X±zªº»Ý¨D?¨SÃö«Y¡A§Ú­Ì·|¬°±z¦V­ì¼t½T»{¡C©Î¬O±z§Æ±æ¼W´î¥H¤W°Ó«~¤§³W®æ¹s²Õ¥ó¡A§Ú­Ì³£¥i¼u©Ê°t¦X±zªº»Ý­n³ø»ù¤Î¥X³f¡C ¦p±z¹ï¥H¤W²£«~³W®æ¥H¤Î»ù®æº¡·N¡A¥i³z¹L¥H¤U¤è¦¡¶i¦æ±ÄÁÊ¡G

1.¹q¸ÜÁpô¡G ½Ðª½±µ¨Ó¹q¡G(02)8969-0901
2.ºô¸ô¸ß»ù¡GÂI¿ï¥»­¶ÁʶR¸ß»ù§Ú­Ì·|¥ß§Y»P±zÁpô!
3.¨Ó¨ç¸ß»ùEmail: service@serverbank.com.tw
¥I´Ú¤è¦¡¡G¦p«È¤á¬°­º¦¸¥æ©ö±Ä²{ª÷¥æ©ö¡C
¶Ç¯u­q³æ¡G ª½±µ±N¥¿¦¡³ø»ù³æñ¦W«á¶Ç¯u¦Ü(02)2253-9016 §Y§¹¦¨­qÁʵ{§Ç¡A§Ú­Ì·|©ó³Ìµu®É¶¡¤º¹q¸Ü½T»{­q³æ¡C
±H°e®É¶¡¡G¨Ì³y¤£¦P¼tµP¥N²z°Ó¦³©Ò¤£¦P¡A¤j¦h¼Æ°Ó«~©ó 7 ­Ó¤u§@¤Ñ¯à°e©è«È¤áºÝ¡A§Ú­Ì¦¬¨ì±z­q³æ®É·|¦P®É¦^Âбz½T©w¥æ´Á¡C
°e³f¤è¦¡¡G(1) ­ì¼t©Î¬O¥N²z°Óª½±µ°t°e (2) ¥ÑServerBank©e°U¦v°t©Î¬O³f¹B¤½¥q°e¹F¡C
°e³f½d³ò¡G­­¥xÆW¥»®q¦a°Ï¡A¹B¶O¥Ñ ServerBank ¬°±z­t¾á¡Aª`·N¡I¦¬¥ó¦a§}½Ð¤Å¬°¶l¬F«H½c¡C
°â«áªA°È¡G­Y²£«~¥»¨­·å²«©Î¹B°e¹Lµ{¾É­P·s«~·å²«¡A¨ì³f7¤é¤º¥i§ó´«·s«~¡C
«O©T¬Fµ¦¡G ¹ê»Ú¥H­ì¼t¤Î¥N²z°Ó¤½§i«O©T±ø¥ó¬°¥D¡A¬d¾\Áʪ«»¡©ú»P«O©TªA°È¡C¡@

¤O±ô¸ê°T ServerBank Inc. ²¤¶

¥Ø«e¤w¸g¬°¶W¹L30000®a¥ø·~´£¨ÑIT¸ê°T¬[ºc©Ò»Ýªº³nµwÅé³]³Æ¡A¦U¦æ·~ª¾¦W«È¤á¦p¡G

»s³y·~¡G¥x¿n¹q¡B¤Í¹F¡BÂE®üºë±K¡B¤O´¹¥b¾ÉÅé¡B¦w±¶­Û¡B¥xÆWªFªÛ¡B¥xÆW­^­¸­â¡B¥¿´Q¡B§¡»¨¡B§»¥¿¡B©MºÓÁp¦X¡BªF¶©¡B«Ø¿³¹q¤l¡B­¸§Q®ú©úùÖ¡B®õª÷Ä_¡B¯«³q¡B¯«¹F¡B°¶³Ð¤O¡B±d¥þ¡B°ê²³¡B±á¬P¥b¾ÉÅé¡B¼s¹F¹q¸£¡B¼s¿o¹q³q¡BÁpµØ®ðÅé¡BÄ_¦¨¤u·~¡B¼s¹B¡B

¥~°Ó¡G ¥xÆWNTT¡B¥xÆW·Nªk¥b¾ÉÅé¡B¥xÆWNEW Balance¡B¥xÆWNEC¡B¥xÆWSONY¡B¥xÆW´I¤h¥þ¸S¡B

ª÷¿Ä¡G°ê®õ¤H¹Ø¡B¤¸¤jÃÒ¨é¡B«n¤s¤H¹Ø¡B°ê®õ¥@µØ¡B¥xÆW¤u·~»È¦æ¡B¥xÆWª÷¿Ä¬ã°V°|¡B¤T°Ó¬ü¨¹¤H¹Ø¡B¤j¸Û«OÀI¡Bªk°ê¤Ú¾¤¤H¹Ø¡B«O¸Û¤H¹Ø¡B°êµØ¤H¹Ø¡B²Î¤@ÃÒ¨é¡B´I¨¹¤H¹Ø¡BµØ«n²£ª««OÀI¡B·s¥ú¤H¹Ø¡B¥xÆW²£·~«OÀI¡B

¬y³q¡G ·s¥ú¤T¶V¡B¤T¹´(·L­·¼s³õ)¡B«H¸q©Ð«Î¡Bªü¨½¤Ú¤Ú¡B

Æ[¥ú¡G ¤¤«H¶º©±¡B¶³®Ô¶º©±¡B¤Ó¥­¬v¡BµØ®õ¡B¤»ºÖ¡B¤Ñ²»´¹µØ¡B¬K¤Ñ°s©±¡B»·¶¯®ü¬v¤½¶é¡B

­¹«~¡G ¥xÆWµÒ°s¡B¤Ñ¤¯¯ù¸­¡B¤¸¯ª¡B¥ú¬u¡B·sªF¶§¡B¦w¤ß­¹«~(¼¯´µº~³ù)¡B®õ¤s¡B®üÅQ¤ý¡B²Î¤@¥ø·~¡B¾ó¤ì±í¡B¯ø´µ¸ª¡B«¢¸ò¹F´µ¦B²N²O¡B

´CÅé¡G ³ü¶Ç´C¡BÁp¦X³ø¡B¥xµø¡BµØµø¡B«D¤Z¹qµø¡B¨È¬w¼s¼½¡B­¸ºÐ¼s¼½¡B­·¼é°Û¤ù¡B®É³ø©P¥Z¡B

±Ð¨|¡G ¥xÆW¤j¾Ç¡B¥æ³q¤j¾Ç¡B²MµØ¤j¾Ç¡B¤j¦P¤j¾Ç¡B¤¤¥¡¤j¾Ç¡B¤¤­ì¤j¾Ç¡B¤¤¿³¤j¾Ç¡B»²¤j¡B°ê»y¹ê¤p¡BÂù¶é°ê¤p¡BµØ¿³¤¤¾Ç¡BªFªù°ê¤p¡B¥x¬ì¤j¡B©ú§Ó¡BªF§d¡BªF®ü¹qºâ¤¤¤ß¡Bªø©°¤j¾Ç¡B«n¨È§Þ³N¾Ç°|¡B¨ÈªF¡B«nªù°ê¤¤¡B¥x®v¤j¡BªFµØ¡B¶§©ú¡B¶³¬ì¤j¡B¦Ë®v¡Bº[«n¤j¾Ç¡B±X¤s¬ì¤j¡B²H¦¿¡B²M¶³¡B³{¥Ò¡B

²Õ´¡G «H«O°òª÷¡B«C³Ð·|¡B¤¤¤p¥ø·~¨ó·|¡BºÞ²z¬ì¾Ç¾Ç·|¡B­ì¦í¥Á±Ú¤å¤Æ±Ð¨|¨ó·|¡B¸êµ¦·|¡B¥xºô¤¤¤ß¡B¶³ªù»R¶°

¬F©²¡G ¤¤¬ã°|¡B¤¤¬ì°|¡B°·«O§½¡B¤Ñ¤å¬ì±ÐÀ]¡B¦Á¤îĵ§½¡BªO¾ô¹A·|¡B¥x¥_¿¤®ø¨¾§½¡B°ê½Ã°|¡B®ü¥ÍÀ]¡B°ê¦w§½¡B

ÂåÀø¡G ¥x¤jÂå°|¡B®¦¥D¤½Âå°|¡B¥_¨Ê¦P¤¯°ó¡B®H¨½°ò·þ±ÐÂå°|¡B¸¯Äõ¯À¥v§J¡Bù¤ó¤jÃļt¡B¥Ã«HÃÄ«~¡B

¹q«H¡G ¤j²³¹q«H¡B¥xÆW©Tºô¡B»·¶Ç¹q«H¡B

¥æ³q¡G ¥x¥_±¶¹B¤½¥q¡BµØ¯è¡B¤­±]±¶¹B¡B¥xÆW´¼¼z¥d¡B

¤½¯q¡G³ßéw¨à¡B¥ì¨l¡B¶§¥ú°òª÷·|¡B»Z¤½­^¡B¿ßÀYÆN

©v±Ð¡G ¤¤¥xÁI¦x¡B°ò·þ±Ð¦æ¹D·|¡B°ò·þ±Ð®û«H·|¡B

­x¤è¡G ªÅ­x¥q¥O³¡¡B°ê¨¾Âå¾Ç°|¡B

 

 


¡@
         ServerBank ¥Ñ¤O±ô¸ê°TªÑ¥÷¦³­­¤½¥q«Ø¸m@
         ·s¥_¥«ªO¾ô°Ï¤å¤Æ¸ô¤@¬q268¸¹3¼Ó
         ¹q¸Ü:
(02)8969-0901
          service@serverbank.com.tw
          www.ServerBank.com.tw
ServerBank¤O±ô­º­¶

¥þ³¡¤ÀÃþ | ¦Cªí | «~µP | ¶i¶¥·j´M | §Þ³N¤ä´©
¡@
¡@
¹q¸Ü(02)8969-0901
¡@
 ServerBank¼ö½æ¾÷ºØ
 ¨¾¤õÀð/UTM ¨Ì¥ø·~¨Ï¥Î¤H¼Æ
 50¤H¥H¤U
 100¤H
 300¤H
 500¤H¥H¤W
 ©U§£¶l¥ó¹LÂo
 ¨¾¤õÀð¥[­È²£«~
 ¨¾¤õÀð/UTM ¨Ì¨¾¤õÀð®Ä¯à
 50M¥H¤U
 100M
 300M
 500M
 1G¥H¤W
 ¨¾¤õÀð/UTM ³Ì¤j³s½usession
 5¸U
 10¸U
 30¸U
 50¸U
 100¸U
 200¸U¥H¤W
 IM°¼¿ýºÞ²z
 ¶l¥ó½]®Ö¨¾¿m
 ¤Ï©U§£¶l¥ó
 ºô¸ô¦æ¬°°¼¿ý
 SSL VPN
 IPSec VPN
 IPS¤J«I¨¾¿m
 IDP¤J«I°»´ú
 ¦w±±»{ÃÒ¹h¹D¾¹
 DDOS¨¾¿m¨t²Î
 µL½uºô¸ô¦w¥þ
 ºô¯¸/ºô­¶¹LÂo
 µwÅ騾¬rÀð
 ¨¾¤õÀð¿ïÁʪA°È
 ¼WÁʨ쩲¦w¸Ë
 ¤j¥x¥_¦w¸ËªA°È
 ®ç¶é·s¦Ë¦w¸ËªA°È
 ¤¤³¡¦w¸ËªA°È
 «n³¡¦w¸ËªA°È
 ªF³¡¦w¸ËªA°È
 Â÷®q¦w¸ËªA°È
 ¨¾¬r¤J«I
 ³nÅé§ó·s
 ª@¯Å°t¥ó
 ¼WÁÊ©µªø«O©T
 ¼WÁʱШ|°V½m
 ¼WÁʳƾ÷§ó´«ªA°È
 ³nÅé²£«~
«P¾P¬¡°Ê



¡@


ServerBank ¤O±ô¸ê°TServerBank¸ê°T±ÄÁʺô > ¨¾¤õÀð/¸ê¦w/SPAM

InnominateDevice Management

Innominate Device Management


¼tµP¡GInnominate      >>ÂsÄýInnominate¥þ³¡²£«~
«¬¸¹¡GDevice Management



ServerBank¤O±ô¸ê°Tµ¹§A³Ì¶W­ÈÀu´fªºInnominate - Device Management - ¨¾¤õÀð/¸ê¦w/SPAM ,³Ì¦nªºInnominate - Innominate Device Management±ÄÁÊ¿ï¾Ü´N¦b ServerBank!
¶W¦h´Ú¨¾¤õÀð/¸ê¦w/SPAM Åwªï±z¨Ó¹q°Q½×±ÄÁʻݨD¡A²{¦b§ó¦³¦h­«Àu´f¤è®×³á
¥»¯¸°Ó«~§¡¸û¦P·~»PºôÁÊ«K©y,¥ø·~ªø´Á±ÄÁÊ ¶q¤j¥t¦³§é¦©³á!  

 

°Ñ¦Ò°â»ù¡G( ¯}Ãa¦æ±¡¼t°Ó¬IÀ£¡I)
¸ß°Ý¥ô¦óInnominate¬ÛÃö²£«~, ½Ð¥ß§Y¨Ó¹q(02)8969-0901
¤O±ô¸ê°T ServerBank ¸ß»ùEmail: service@serverbank.com.tw



·|­û»ù>>¯Á¨ú¦¹°Ó«~³ø»ù


ÂsÄý³W®æ¬Ûªñ¤§Innominate²£«~>>
ÂsÄý³W®æ¬Ûªñ¤§¨ä¥L«~µP²£«~>>
¦Û°Ê¦C¦L³ø»ù³æ(½Ð¨Ó¹q¸ß°Ý§é¦©­°´T)






ServerBankÂX¤j©Û¶Ò·~°È¦P¤¯¡I
¥[ÁÊ ¼Ð·Ç°t³Æ¥H¥~¤§Innominate­ì¼t°t¥ó


¡@

¡@

¡@

Erhaltlich sind die mGuard blade

The Innominate Device Manager (IDM) enables the

convenient management of Innominate mGuard se cu -

rity appliances. The tool offers a template mechanism

that allows users to centrally configure and manage

hundreds up to several thousand Innominate mGuard

devices.

Innominate¡¦s mGuard security appliances safe guard

machines for M2M communication. Application

scenarios include the protection and / or secure

remote maintenance of networked robots in the automotive

industry, production systems in the manufacturing

and process industries, medical technology

systems, printing machinery, point of sales systems

and ATMs, telematics and monitoring systems where

the installation of distributed security appliances

requires a clearly organised and easy-to-use ma na -

gement tool.

The template-based Innominate Device Manager

(IDM) is particularly suitable for the roll out and configuration

management of large groups of homoge -

neously configured mGuard devices. Templates enable

the centralisation of settings for several devices

at once and typically capture the security-critical and

knowledge-intensive portions of device configurations.

Via the upload function, all security appliances

on the manager¡¦s device list can be conveniently

configured in one go. Alternatively, the configuration

data can automatically be downloaded following the

activation of the remote appliance. With the Innominate

Device Manager, the roll out of broadly distributed

installations involving thousands of appliances

can be carried out quickly and efficiently.

With a mouse click, the desired firewall rules and

NAT settings can be generated and uploaded to the

devices in the network, deploying the desired device

configurations in one process. The IDM is a clientserver

application, the client offering full control of all

IDM features, the server storing the configuration in a

database, generating configuration files and uploading

those files to the devices upon request. If a configuration

is uploaded to a device, the IDM generates

an (ASCII) configuration file. This configuration is

transferred via SSH to the device and is subsequently

placed in operation by the Innominate mGuard. Furthermore,

the IDM can generate configuration files to

be used for a configuration pull by the devices via

HTTPS.

IDM client overview

The IDM client is the graphical user interface for

accessing all features of the IDM. It allows users to

create and manage devices and templates, to initiate

the upload of configurations to devices, or to command

the export of device configurations to a web

server file system.

Application example: mGuard secured remote

services

Remote service security is a prominent application

area in which mGuard appliances are deployed in

order to secure Internet / VPN or dial-up based connections

for the remote monitoring, diagnostics, and

maintenance of industrial machinery and equipment.

Manufacturers of such equipment with thousands of

their systems in the field and hundreds of new

systems being shipped each year can apply the IDM

to efficiently manage corresponding numbers of

mGuard security appliances attached to their machines.

Roll out scenario

Once an experienced network security administrator

has put the appropriate IDM configuration templates

in place, regular technical staff working on assembly

and packaging of the equipment can configure

mGuard devices before shipment to end customer

premises with only minimal training. In particular, the

complexities of configuring VPN connections, digital

certificates and virtual addressing schemes are completely

taken away at the device level by the IDM¡¦s

template and combined automation mechanisms.

Configuration of a restricted set of variables that may

not be known before the actual on-site commissioning

phase, such as an available IP address for the

external interface to the customer network, may be

delegated as so-called local variables to an on-site

technician taking on mGuard¡¦s ¡§Network Admin¡¨ user

role. Once the mGuard appliances are installed in the

field, the IDM can continuously be applied to update,

maintain and monitor their configuration status over

time.

Deploying device configurations from the

IDM server to mGuard appliances

1. Configuration push via SSH

The IDM server connects to the mGuard device using

the SSH secure shell protocol. Subsequently the configuration

file is copied to the device and put into

operation. The status and success of the upload process

as well as any possible problems are monitored

by the IDM server and visualized in the device list in

the IDM client. The upload process can be initiated

from the IDM client for individual selections of

devices or simultaneously for all devices with

changed configurations pending upload.

2. Configuration pull via HTTPS

The IDM server can also be instructed to export new

or updated device configurations to a web server file

system. The respective mGuard devices themselves

can then check for and download available configurations

from that web server using the secure HTTPS

protocol on a regular schedule or each time they

boot. The correctly matching IDM configuration for a

device can be identified both by logical management

ID or the serial number of the physical device. The

process includes an optional mechanism to report

successful configuration pulls back from the device

via the web server to the IDM server for monitoring

purposes.

Both methods may be combined as appropriate, e. g.

non-critical configuration updates may be provided

for the next configuration pull whereas critical, emergency

type updates may be immediately pushed to

all available devices.

Configurable mGuard features supported

by the Innominate Device Manager

¡½ Control of system settings (host, time and date,

shell access)

¡½ mGuard web access

¡½ Configuration pull

¡½ mGuard interfaces (Network mode, Stealth mode

settings, external and internal networks, PPPoE

settings)

¡½ DNS

¡½ Internal DHCP

¡½ User authentication (local mGuard users): Admin,

Network Admin and Audit

¡½ Packet filter (incoming and outgoing rules)

¡½ NAT (masquerading, 1:1 NAT, port forwarding)

¡½ Remote logging to Syslog server

¡½ VPN connections

¡½ Convenient auto-configuration of peer VPN gateway

 if the peer device is also managed by the IDM

¡½ Integrated Certificate Authority (CA) for VPN

authentication with auto-generated X.509 certificates

¡½ Intelligent value pool management, e. g. for autoassigned

unique virtual addresses and networks


Innominate
Innominate Device Management - ServerBank¸ê°T±ÄÁʺô
Device Management
¨¾¤õÀð/¸ê¦w/SPAM


¡@
²£«~³W®æ
Hardware-Leistungsmerkmale
Minimum System Requirements Client Server
Hardware A minimum of 512 MB RAM

500 MB free hard disk space

Color-monitor with at least

1024 x 768 resolution

A minimum of 512 MB RAM

4 GB free hard disk space

Software Windows 2000 SP 2 (or higher),

Windows XP or Linux

Java Runtime Environment 5.0

Windows 2000 SP 2 (or higher),

Windows XP or Linux

Java Runtime Environment 5.0

PostgreSQL Version 8.1


¡D¥»¤å¥óªº¸ê°T­Y¦³­×§ï¡A®¤¤£¥t¦æ³qª¾¡C
¡D³W®æ©Î³ø»ù­Y¦³»~¡A¥H­ì¼t«¬¿ý©Î¥¿¦¡³ø»ù³æ¬°¥D¡C
¡D¥»ºô¯¸¤º®e©Î¤å¥ó·í¤¤©Ò´£¤Î¤§«~µP¤Î²£«~¦WºÙ©Î¹Ï¤ù§¡¬°¨ä­ì©ÒÄݤ½¥q¤§ª©Åv¡B°Ó¼Ð©Îµù¥U°Ó¼Ð¡C

º¡¤@©w¼Æ¶q©Îª÷ÃBÁÙ¦³¦h´ÚÃØ«~¥i¨Ñ¿ï¾Ü³á! ServerBank ¤O±ô¸ê°Tµ¹§A³Ì¶W­ÈÀu´fªºInnominate - Device Management - ¨¾¤õÀð/¸ê¦w/SPAM ,³Ì¦nªºInnominate - Innominate Device Management±ÄÁÊ¿ï¾Ü´N¦b ServerBank!


¥æ©ö¤Î¹B°e«O©T»¡©ú
¥æ©ö¤è¦¡¡G
±z¤£½T©w¥H¤W°Ó«~¬O§_²Å¦X±zªº»Ý¨D?¨SÃö«Y¡A§Ú­Ì·|¬°±z¦V­ì¼t½T»{¡C©Î¬O±z§Æ±æ¼W´î¥H¤W°Ó«~¤§³W®æ¹s²Õ¥ó¡A§Ú­Ì³£¥i¼u©Ê°t¦X±zªº»Ý­n³ø»ù¤Î¥X³f¡C ¦p±z¹ï¥H¤W²£«~³W®æ¥H¤Î»ù®æº¡·N¡A¥i³z¹L¥H¤U¤è¦¡¶i¦æ±ÄÁÊ¡G

1.¹q¸ÜÁpô¡G ½Ðª½±µ¨Ó¹q¡G(02)8969-0901
2.ºô¸ô¸ß»ù¡GÂI¿ï¥»­¶ÁʶR¸ß»ù§Ú­Ì·|¥ß§Y»P±zÁpô!
3.¨Ó¨ç¸ß»ùEmail: service@serverbank.com.tw
¥I´Ú¤è¦¡¡G¦p«È¤á¬°­º¦¸¥æ©ö±Ä²{ª÷¥æ©ö¡C
¶Ç¯u­q³æ¡G ª½±µ±N¥¿¦¡³ø»ù³æñ¦W«á¶Ç¯u¦Ü(02)2253-9016 §Y§¹¦¨­qÁʵ{§Ç¡A§Ú­Ì·|©ó³Ìµu®É¶¡¤º¹q¸Ü½T»{­q³æ¡C
±H°e®É¶¡¡G¨Ì³y¤£¦P¼tµP¥N²z°Ó¦³©Ò¤£¦P¡A¤j¦h¼Æ°Ó«~©ó 7 ­Ó¤u§@¤Ñ¯à°e©è«È¤áºÝ¡A§Ú­Ì¦¬¨ì±z­q³æ®É·|¦P®É¦^Âбz½T©w¥æ´Á¡C
°e³f¤è¦¡¡G(1) ­ì¼t©Î¬O¥N²z°Óª½±µ°t°e (2) ¥ÑServerBank©e°U¦v°t©Î¬O³f¹B¤½¥q°e¹F¡C
°e³f½d³ò¡G­­¥xÆW¥»®q¦a°Ï¡A¹B¶O¥Ñ ServerBank ¬°±z­t¾á¡Aª`·N¡I¦¬¥ó¦a§}½Ð¤Å¬°¶l¬F«H½c¡C
°â«áªA°È¡G­Y²£«~¥»¨­·å²«©Î¹B°e¹Lµ{¾É­P·s«~·å²«¡A¨ì³f7¤é¤º¥i§ó´«·s«~¡C
«O©T¬Fµ¦¡G ¹ê»Ú¥H­ì¼t¤Î¥N²z°Ó¤½§i«O©T±ø¥ó¬°¥D¡A¬d¾\Áʪ«»¡©ú»P«O©TªA°È¡C

¤O±ô¸ê°T ServerBank Inc. ²¤¶

¥Ø«e¤w¸g¬°¶W¹L30000®a¥ø·~´£¨ÑIT¸ê°T¬[ºc©Ò»Ýªº³nµwÅé³]³Æ¡A¦U¦æ·~ª¾¦W«È¤á¦p¡G

»s³y·~¡G¥x¿n¹q¡B¤Í¹F¡BÂE®üºë±K¡B¤O´¹¥b¾ÉÅé¡B¦w±¶­Û¡B¥xÆWªFªÛ¡B¥xÆW­^­¸­â¡B¥¿´Q¡B§¡»¨¡B§»¥¿¡B©MºÓÁp¦X¡BªF¶©¡B«Ø¿³¹q¤l¡B­¸§Q®ú©úùÖ¡B®õª÷Ä_¡B¯«³q¡B¯«¹F¡B°¶³Ð¤O¡B±d¥þ¡B°ê²³¡B±á¬P¥b¾ÉÅé¡B¼s¹F¹q¸£¡B¼s¿o¹q³q¡BÁpµØ®ðÅé¡BÄ_¦¨¤u·~¡B¼s¹B¡B

¥~°Ó¡G ¥xÆWNTT¡B¥xÆW·Nªk¥b¾ÉÅé¡B¥xÆWNEW Balance¡B¥xÆWNEC¡B¥xÆWSONY¡B¥xÆW´I¤h¥þ¸S¡B

ª÷¿Ä¡G°ê®õ¤H¹Ø¡B¤¸¤jÃÒ¨é¡B«n¤s¤H¹Ø¡B°ê®õ¥@µØ¡B¥xÆW¤u·~»È¦æ¡B¥xÆWª÷¿Ä¬ã°V°|¡B¤T°Ó¬ü¨¹¤H¹Ø¡B¤j¸Û«OÀI¡Bªk°ê¤Ú¾¤¤H¹Ø¡B«O¸Û¤H¹Ø¡B°êµØ¤H¹Ø¡B²Î¤@ÃÒ¨é¡B´I¨¹¤H¹Ø¡BµØ«n²£ª««OÀI¡B·s¥ú¤H¹Ø¡B¥xÆW²£·~«OÀI¡B

¬y³q¡G ·s¥ú¤T¶V¡B¤T¹´(·L­·¼s³õ)¡B«H¸q©Ð«Î¡Bªü¨½¤Ú¤Ú¡B

Æ[¥ú¡G ¤¤«H¶º©±¡B¶³®Ô¶º©±¡B¤Ó¥­¬v¡BµØ®õ¡B¤»ºÖ¡B¤Ñ²»´¹µØ¡B¬K¤Ñ°s©±¡B»·¶¯®ü¬v¤½¶é¡B

­¹«~¡G ¥xÆWµÒ°s¡B¤Ñ¤¯¯ù¸­¡B¤¸¯ª¡B¥ú¬u¡B·sªF¶§¡B¦w¤ß­¹«~(¼¯´µº~³ù)¡B®õ¤s¡B®üÅQ¤ý¡B²Î¤@¥ø·~¡B¾ó¤ì±í¡B¯ø´µ¸ª¡B«¢¸ò¹F´µ¦B²N²O¡B

´CÅé¡G ³ü¶Ç´C¡BÁp¦X³ø¡B¥xµø¡BµØµø¡B«D¤Z¹qµø¡B¨È¬w¼s¼½¡B­¸ºÐ¼s¼½¡B­·¼é°Û¤ù¡B®É³ø©P¥Z¡B

±Ð¨|¡G ¥xÆW¤j¾Ç¡B¥æ³q¤j¾Ç¡B²MµØ¤j¾Ç¡B¤j¦P¤j¾Ç¡B¤¤¥¡¤j¾Ç¡B¤¤­ì¤j¾Ç¡B¤¤¿³¤j¾Ç¡B»²¤j¡B°ê»y¹ê¤p¡BÂù¶é°ê¤p¡BµØ¿³¤¤¾Ç¡BªFªù°ê¤p¡B¥x¬ì¤j¡B©ú§Ó¡BªF§d¡BªF®ü¹qºâ¤¤¤ß¡Bªø©°¤j¾Ç¡B«n¨È§Þ³N¾Ç°|¡B¨ÈªF¡B«nªù°ê¤¤¡B¥x®v¤j¡BªFµØ¡B¶§©ú¡B¶³¬ì¤j¡B¦Ë®v¡Bº[«n¤j¾Ç¡B±X¤s¬ì¤j¡B²H¦¿¡B²M¶³¡B³{¥Ò¡B

²Õ´¡G «H«O°òª÷¡B«C³Ð·|¡B¤¤¤p¥ø·~¨ó·|¡BºÞ²z¬ì¾Ç¾Ç·|¡B­ì¦í¥Á±Ú¤å¤Æ±Ð¨|¨ó·|¡B¸êµ¦·|¡B¥xºô¤¤¤ß¡B¶³ªù»R¶°

¬F©²¡G ¤¤¬ã°|¡B¤¤¬ì°|¡B°·«O§½¡B¤Ñ¤å¬ì±ÐÀ]¡B¦Á¤îĵ§½¡BªO¾ô¹A·|¡B¥x¥_¿¤®ø¨¾§½¡B°ê½Ã°|¡B®ü¥ÍÀ]¡B°ê¦w§½¡B

ÂåÀø¡G ¥x¤jÂå°|¡B®¦¥D¤½Âå°|¡B¥_¨Ê¦P¤¯°ó¡B®H¨½°ò·þ±ÐÂå°|¡B¸¯Äõ¯À¥v§J¡Bù¤ó¤jÃļt¡B¥Ã«HÃÄ«~¡B

¹q«H¡G ¤j²³¹q«H¡B¥xÆW©Tºô¡B»·¶Ç¹q«H¡B

¥æ³q¡G ¥x¥_±¶¹B¤½¥q¡BµØ¯è¡B¤­±]±¶¹B¡B¥xÆW´¼¼z¥d¡B

¤½¯q¡G³ßéw¨à¡B¥ì¨l¡B¶§¥ú°òª÷·|¡B»Z¤½­^¡B¿ßÀYÆN

©v±Ð¡G ¤¤¥xÁI¦x¡B°ò·þ±Ð¦æ¹D·|¡B°ò·þ±Ð®û«H·|¡B

­x¤è¡G ªÅ­x¥q¥O³¡¡B°ê¨¾Âå¾Ç°|¡B


¡@
¡@

ServerBank¥Ñ¤O±ô¸ê°TªÑ¥÷¦³­­¤½¥q«Ø¸m service@serverbank.com.tw
¹q¸Ü(02)8969-0901 ¶Ç¯u(02)2253-9016 ·s¥_¥«ªO¾ô°Ï¤å¤Æ¸ô¤@¬q268¸¹3¼Ó

¡@
¡@