McAfee Proven Security 1.ePO36组成与安装 www.tpcn.cn 中国银行 BANK OF CHINA |2年奥运会行合作伙
1. ePO 3.6组成与安装 www.tpcn.cn
2021/2/15 ePolicy Orchestrator组件 Accepts client connections Server Services Reads policy and tasks from the database u Writes property and events to the database Database Directory, structure and policy assignment u Stores policies, tasks, properties &t events Console Local and Remote management Agent m Obtains policy from server m Implements policy at client Repository Managed or unmanaged file store a Used by clients to obtain updates epolicy Orchestrator Notification System Rule-based Server m Intelligent real-time alerting Rogue sensor System Rule-based s Detection of systems present on LAN MeAfee o
2021/2/15 2 Server Services ◼ Accepts client connections ◼ Reads policy and tasks from the database ◼ Writes property and events to the database Database ◼ Directory, structure and policy assignment ◼ Stores policies, tasks, properties & events Agent ◼ Obtains policy from server ◼ Implements policy at client Console ◼ Local and Remote Management ePolicy Orchestrator 组件 ePolicy Orchestrator Server Repository ◼ Managed or unmanaged file store ◼ Used by clients to obtain updates Notification System ◼ Rule-based ◼ Intelligent real-time alerting Rogue Sensor System ◼ Rule-based ◼ Detection of systems present on LAN
2021/2/15 架构与通讯 Framework ePO Server Service Http 80 Service Event parser (APACHE) Service c号∞∞ Master ePO Server EL Repository E Network Application Server Database (TOMCAT) Console Https 8443 Rogue Notification Sensor Rogue System System l Sensor Https 8444 McAfee
2021/2/15 3 架构与通讯 Console Database Framework Service Master Repository Notification System ePO Server Service (APACHE) Rogue Sensor Rogue System Sensor Network Event Parser Service HTTP 8080 HTTPS 8444 Application Server (TOMCAT) HTTPS 8443 HTTP 80 HTTP 81 UDP 8081 TCP 8081 UDP 8082 ePO Server
2021/21154 ePO部署举例 方案1:单台ePO架构 ■方案1: 实行单台ePO服务器可 减少管理费用,降低硬件 成本 ePO Server ePO Consoles ■方案2 方案2:每个分公司1台ePO服务器 实行2台ePO服务器可减 少网络带宽,遵从管理层 的意愿。 ePO Servers ePO Consoles McAfee
2021/2/15 4 方案 2: 每个分公司 1 台 ePO 服务器 方案 1: 单台 ePO 架构 ePO部署举例 ePO Consoles ePO Server ePO Consoles ePO Servers ◼ 方案 1: 实行单台 ePO 服务器可 减少管理费用,降低硬件 成本 ◼ 方案 2: 实行 2台ePO服务器可减 少网络带宽,遵从管理层 的意愿
2021/2/15 数据库的选择 带 service pack4的 Microsoft带 service pack4的 Microsoft SQL Server2000桌面引擎 SQL Server2000标准版或企业 (MSDE 2000) 版 License已含在内 需要每 ePO agent客户端或每 最多至8个连接 SQL处理器 License ●2GB数据文件限制 可允许多个连接 2CPU限制 1,000,000TB数据文件限制 2GB内存 4-32 CPU 2-64GB内存 McAfee
2021/2/15 5 数据库的选择 ► 带service pack 4的 Microsoft SQL Server 2000 桌面引擎 (MSDE 2000) ● License已含在内 ● 最多至8个连接 ● 2 GB 数据文件限制 ● 2 CPU 限制 ● 2 GB 内存 ► 带 service pack 4 的 Microsoft SQL Server 2000 标准版或企业 版 ● 需要 每ePO agent 客户端或每 SQL 处理器License ● 可允许多个连接 ● 1,000,000 TB 数据文件限制 ● 4 - 32 CPU ● 2 - 64 GB 内存