版本差別
| Feature | Professional | Enterprise |
| Advanced Features | ||
| Monitors every TCP and UDP port |  | |
| Monitors ICMP ping messages | | |
| IDS signature engine | | |
| Other Features | ||
| High integrity version | | |
| Denial Of Service (DOS) attack protection | | |
| Scenario rules | | |
| Database integration | | |
| Export logs in multiple formats | | |
| Systems service | | |
| High integrity version | | |
| Extensive Documentation | | |
| Alerts | ||
| System tray alerts | | |
| Audio alerts | | |
| EMail alerts | | |
| SysLog alerts | | |
| Event log alerts | | |
| External application alerts | | |
| Alerts from central server | | |
| Service Emulation | ||
| Banner | | |
| Command console | | |
| HTTP | | |
| SMTP | | |
| Window networking / NetBIOS / SMB / CIFS | | |
| SOCKS | | |
| MS SQL Server | | |
| MySQL | | |
| FTP | | |
| POP3 | | |
| Telnet | | |
| Terminal Server | | |
| VNC | | |
| Relay | | |
| External simulation scripts | | |
| Enterprise management | ||
| Protect the enterprise with multiple installations | | |
| View centrally events from multiple remote installations | | |
| Re-configure installations remotely | | |
| Distribute new signatures automatically | | |
| Automatic back up remote sensors' logs | |
架構上就是跟其他是伺服器混在一起,誘騙入侵者,藉此紀錄攻擊步驟,但這一套有e-mail警報功能,會通知使用者。
系統要求:
- Windows XP, Windows 2003 Server, Windows Vista, Windows 2008 Server, WIndows 7, Windows 8
- 32-bit Windows or 64-bit Windows
- Processor 1.5Ghz or greater
- 2Gb hard disk space
- 2Gb RAM
- 1 LAN card or more
- keyboard
裝這個超簡單的,一直下一步,最後重開機,OK
設定方式,也有設定精靈協助。
要裝winpcap-1.4.1版,不然有些功能無法使用。
要裝winpcap-1.4.1版,不然有些功能無法使用。
 |
| 設定時,預設值是全部都模擬,請選擇你要模擬的狀態來設定。 |
 |
| 例如只有基本的網路服務功能 |
 |
| 模擬前 |
 |
| 模擬後 說明手冊 其他功能,請有興趣者,自行挖掘 |
沒有留言:
張貼留言