Design and Implementation of Enterprise Intranet anti-virus Policies (1)

Enterprise Intranet security status quo and problems

In modern enterprise informatization construction, the network architecture and scale will be constantly changing according to the enterprise's own business needs. At the same time as the completion of the basic network architecture, various application systems have also begun to be built. The network architecture and application systems are inseparable. When a project involving the entire enterprise scale is started, the existing network system and application system must be analyzed. Project Analysis and Evaluation are carried out to ensure the normal operation of the company's business, which provides a reliable design basis for the design of the enterprise intranet anti-virus policy architecture. During the overall design of the enterprise intranet anti-virus policy, the most important link is to analyze the current situation of the enterprise's virus prevention and control, and count the types of anti-virus software currently in use in the enterprise, analyze the application results of these software products, count the virus types in the network, evaluate the degree of risk faced by the enterprise, find the source of the virus, and find out the key points of policy design.

1.1 analyze the status quo of the Intranet Network System

The company has a main office building with its core, which is distributed around some smaller office buildings and functional areas. The company's basic network application requirements are :. 1. Share office documents, reports, and other data between departments, and share various printing devices in the office. 2. provides internal email services. 3. leased line access is used to lease lines of the local department of Posts and Telecommunications to meet the Internet requirements of users in the entire network.

1.1.1 Network Topology

The main office building has a central data center with core routers and some application servers. There are equipment rooms in other office buildings with port expansion devices. The main switch device, port expansion device, server and client computer are connected through communication media to form an office LAN. The office LAN adopts a star structure with an extended star structure. 1.1.

1.1.2 Address Allocation

The company uses the dynamic IP address DHCP allocation method and assigns a port address pool to each network segment. For machines with special needs within each address range, the IP address is reserved, not automatically assigned. Because servers need to be frequently accessed, their IP addresses are fixed.

1.1.3 Intranet Network Management System

In order to strengthen the Department's network management, the implementation of the network management system, the implementation of products for the linkManager-40-B-250N network security management software. The functions of the network management software are as follows:

(1) It can automatically discover important nodes (firewalls, switches, and routers) on the network, support multiple network structures, and support management protocols such as SNMP, ROMN, and CDP, and provides management views based on these protocols;

(2) displays the working status of all network nodes graphically, and automatically updates the network structure chart according to the actual changes in the network topology;

(3) Multiple event alerts are supported;

(4) provides multi-level filtering to filter nodes, topologies, and circles;

(5) permission-Based Management and multi-level administrator operations:

(6) nodes and ports can be configured;

(7) Conduct statistics on configuration and link load, availability, reliability, and network availability;

(8) provide cultural reports.

The management system can effectively monitor various performance parameters (such as the network disconnection time, device port data traffic, and device usage) of the network's main devices ), however, you cannot analyze data traffic at the application layer or implement protocol analysis.

1.2 analyze the current situation of intranet application systems

1.2.1 email system

To improve office efficiency. An office email system is created in the company. This email system includes enterprise email and calendar, business-critical instant messaging, and a quick application development and implementation environment. Its main functions are as follows:

(1) Specially mark the recipient to facilitate more efficient inbox management;

(2) email clues in the email memorandum allow users to conveniently view the email clues of each email;

(3) The Automatic save function can automatically save documents to prevent content loss;

(4) Lang's message passing session can be saved as an email:

(5) sort by topic in the inbox and all documents view.