With the deepening of information process, network security has become a common challenge for the people in the information age, and it can be interpreted from two different angles, that is, information security and control security. To make the network security truly "watertight", in addition to make the network security, credibility and more to achieve controllable, can be managed.
In order to create "high-speed, stable, controllable, can be managed" the Health network environment, the major network equipment manufacturers are in the effort to report their own network solutions, and as the country's focus on supporting the education field, the campus information construction to a large number of complex structure, network environment is not easy to manage the network is difficult to overcome a difficult problem.
July 2006, Jimei University in the campus network upgrade project at the beginning of the network security as an important indicator into the overall scheme, the adoption of Ruijie network provided by the GSN global Security Network Solutions. After the adoption of GSN, we obviously found that all kinds of security problems and the virus plummeted in the network, and the security and stability of the network have been improved unprecedentedly. "said Li Binch, director of the Network Center at Jimei University.
Before the network transformation, Jimei University's campus network situation is very chaotic: export congestion, worm outbreaks, ARP spoofing caused by large-scale network failure occurs, more serious is that these network problems are difficult to find the root cause, after the problem often need the network center of Jimei University teacher to the switch for the investigation, Or be tired of recurring viruses. and Rui Jie network to Jimei University Campus network after the upgrade, rely on the overall network solution, Jimei University not only to do the virus, malicious attacks, more clearly know where the problem, through the GSN global Security Network, Sam identity authentication billing system, million trillion backbone network "three knives" cut off the security risks, The upgrade has completely changed the old "shear, the chaos" of the inherent problems, for Jimei University provides a high-speed stable, controllable, manageable new generation of campus network environment.
A knife--"cut the branch"
The GSN system implemented in Jimei University realizes the in-depth analysis and global monitoring of all security events, network virus attack behavior, user behavior and user Host security information in the whole network. On the basis of real-time monitoring, through the security linkage, the Network center teachers can in the first time the network of abnormal phenomenon of the machine through the access layer, isolated to the security repair area or automatically block abnormal data flow, so that the network anomaly does not affect the whole network operation.
After the network has been reconstructed, GSN to the network security incidents and network virus effective suppression, in the GSN global security solution, the SMP as a trusted third party, through SMP to provide the correct ARP information, and the correct gateway ARP information sent to the security client for static binding, Sends the correct host's ARP information to the gateway to generate the trusted ARP entry. Security incidents such as ARP spoofing, worms, and so on are already significantly less than before deployment, judging from the security-time statistical reports provided by the system.
A few days ago, "panda incense" so that millions of computers have "recruit", while network management is constantly restarting the switch and users are constantly reinstalling the system, "Panda incense" is in a completely passive state at Jimei University, Chen Weibin, technical director of Jimei University's Network Center, recalls: "At first we didn't know." Panda burning Incense ' this thing, even when the internet has been a buzz, I have not paid much attention to, until a few other colleges and universities information Center students to call me, said their network over there because of ' panda incense ' and several paralysis, to my attention, I began to care. ”
The first knife of the "cut" really realized the virus to attack can also be "chopped off" for the Jimei University Campus network to create a relatively safe network environment.
Two knives--"root-cutting"
Relying on the unique Sam authentication billing system of Ruijie network, Jimei University has realized the identity attestation of all student dormitory, teacher dormitory, office and public computer room. The system is based on 802.1X technology, the user's identity and IP, MAC, switch port, switch IP and other information strictly binding, once there are problems, can be traced quickly to people. Jimei University in the past is not aware of what type of security problems, not to know exactly where the problem in the network situation has been fundamentally improved, "the chaos" dilemma has ceased to exist. Sam Identity Certification enables the teachers at the Network center of Jimei University to "get to the bottom of the problem" and cut it off.