1. Trang Chủ
  2. Quản trị mạng
  3. Performance Pack

Performance Pack

Tham khảo tài liệu 'performance pack', công nghệ thông tin, quản trị mạng phục vụ nhu cầu học tập, nghiên cứu và làm việc hiệu quả TM Performance Pack Administration Guide Version NGX R65 March 2007 © 2003-2007 Check Point Software Technologies Ltd. All rights reserved. This product and related documentation are protected by copyright and distributed under licensing restricting their use, copying, distribution, and decompilation. No part of this product or related documentation may be reproduced

Thể loại Tài liệu miễn phí Quản trị mạng

Số trang 46

Ngày tạo 8/29/2018 5:31:56 PM +00:00

Loại tệp PDF

Kích thước

Tên tệp

Tải Performance Pack (.pdf)

Xem mẫu

  1. TM Performance Pack Administration Guide Version NGX R65 March 2007
  2. © 2003-2007 Check Point Software Technologies Ltd. All rights reserved. This product and related documentation are protected by copyright and distributed under licensing restricting their use, copying, distribution, and decompilation. No part of this product or related documentation may be reproduced in any form or by any means without prior written authorization of Check Point. While every precaution has been taken in the preparation of this book, Check Point assumes no responsibility for errors or omissions. This publication and features described herein are subject to change without notice. RESTRICTED RIGHTS LEGEND: Use, duplication, or disclosure by the government is subject to restrictions as set forth in subparagraph (c)(1)(ii) of the Rights in Technical Data and Computer Software clause at DFARS 252.227-7013 and FAR 52.227-19. TRADEMARKS: ©2003-2007 Check Point Software Technologies Ltd. All rights reserved. Check Point, AlertAdvisor, Application Intelligence, Check Point Express, Check Point Express CI, the Check Point logo, ClusterXL, Confidence Indexing, ConnectControl, Connectra, Connectra Accelerator Card, Cooperative Enforcement, Cooperative Security Alliance, CoSa, DefenseNet, Dynamic Shielding Architecture, Eventia, Eventia Analyzer, Eventia Reporter, Eventia Suite, FireWall-1, FireWall-1 GX, FireWall-1 SecureServer, FloodGate-1, Hacker ID, Hybrid Detection Engine, IMsecure, INSPECT, INSPECT XL, Integrity, Integrity Clientless Security, Integrity SecureClient, InterSpect, IPS-1, IQ Engine, MailSafe, NG, NGX, Open Security Extension, OPSEC, OSFirewall, Policy Lifecycle Management, Provider-1, Safe@Home, Safe@Office, SecureClient, SecureClient Mobile, SecureKnowledge, SecurePlatform, SecurePlatform Pro, SecuRemote, SecureServer, SecureUpdate, SecureXL, SecureXL Turbocard, Sentivist, SiteManager-1, SmartCenter, SmartCenter Express, SmartCenter Power, SmartCenter Pro, SmartCenter UTM, SmartConsole, SmartDashboard, SmartDefense, SmartDefense Advisor, Smarter Security, SmartLSM, SmartMap, SmartPortal, SmartUpdate, SmartView, SmartView Monitor, SmartView Reporter, SmartView Status, SmartViewTracker, SofaWare, SSL Network Extender, Stateful Clustering, TrueVector, Turbocard, UAM, UserAuthority, User-to-Address Mapping, VPN-1, VPN-1 Accelerator Card, VPN-1 Edge, VPN-1 Express, VPN-1 Express CI, VPN- 1 Power, VPN-1 Power VSX, VPN-1 Pro, VPN-1 SecureClient, VPN-1 SecuRemote, VPN-1 SecureServer, VPN-1 UTM, VPN-1 UTM Edge, VPN-1 VSX, Web Intelligence, ZoneAlarm, ZoneAlarm Anti-Spyware, ZoneAlarm Antivirus, ZoneAlarm Internet Security Suite, ZoneAlarm Pro, ZoneAlarm Secure Wireless Router, Zone Labs, and the Zone Labs logo are trademarks or registered trademarks of Check Point Software Technologies Ltd. or its affiliates. ZoneAlarm is a Check Point Software Technologies, Inc. Company. All other product names mentioned herein are trademarks or registered trademarks of their respective owners. The products described in this document are protected by U.S. Patent No. 5,606,668, 5,835,726, 6,496,935, 6,873,988, and 6,850,943 and may be protected by other U.S. Patents, foreign patents, or pending applications. For third party notices, see: THIRD PARTY TRADEMARKS AND COPYRIGHTS.
  3. Contents Preface Who Should Use This Guide................................................................................ 8 Summary of Contents ......................................................................................... 9 Related Documentation .................................................................................... 10 More Information ............................................................................................. 13 Feedback ........................................................................................................ 14 Chapter 1 Introduction to Performance Pack Overview ......................................................................................................... 16 Release Notes ................................................................................................. 17 Chapter 2 Getting Started Performance Pack NGX System Requirements .................................................... 20 Minimum System Requirements ................................................................... 20 Recommended System Options .................................................................... 21 Performance Pack Recommended Platform Configuration .................................... 22 Preparing the Performance Pack NGX Machine ................................................... 23 BIOS Settings............................................................................................. 23 Network Interface Cards location .................................................................. 23 Installation................................................................................................. 23 Chapter 3 Command Line fwaccel ........................................................................................................... 26 cpconfig ......................................................................................................... 27 sim................................................................................................................. 28 proc entries..................................................................................................... 29 Appendix 4 Performance Tuning and Measurement Hints Performance Tuning......................................................................................... 32 SYN Defender............................................................................................. 32 Amount of Concurrent Connections and Hash Size ......................................... 32 Implied Rules............................................................................................. 33 HyperThreading .......................................................................................... 33 Connection Templates ................................................................................. 34 Delayed Synchronization.............................................................................. 35 Performance Measurement ............................................................................... 37 TCP State and Benchmarking....................................................................... 37 Index........................................................................................................... 45 Table of Contents 5
  4. 6
  5. Preface P Preface In This Chapter Who Should Use This Guide page 8 Summary of Contents page 9 Related Documentation page 10 More Information page 13 Feedback page 14 7
  6. Who Should Use This Guide Who Should Use This Guide This guide is intended for administrators responsible for maintaining network security within an enterprise, including policy management and user support. This guide assumes a basic understanding of • System administration. • The underlying operating system. • Internet protocols (IP, TCP, UDP etc.). 8
  7. Summary of Contents Summary of Contents This document describes how to install and configure Performance Pack. Additionally, it shows you how to get the best possible performance using Performance Pack.. Chapter Description Chapter 1, “Introduction to Contains a general description of Performance Performance Pack” Pack. Chapter 2, “Getting Started” Describes system requirements, recommended platforms and how to prepare for the NGX Machine. Chapter 3, “Command Line” Contains explanations of the Performance Pack commands. Chapter 4, “Performance Describes Performance Pack Tuning and Tuning and Measurement Measurement. Hints” Preface 9
  8. Related Documentation Related Documentation The NGX R65 release includes the following documentation TABLE P-1 VPN-1 Power documentation suite documentation Title Description Internet Security Product Contains an overview of NGX R65 and step by step Suite Getting Started product installation and upgrade procedures. This Guide document also provides information about What’s New, Licenses, Minimum hardware and software requirements, etc. Upgrade Guide Explains all available upgrade paths for Check Point products from VPN-1/FireWall-1 NG forward. This guide is specifically geared towards upgrading to NGX R65. SmartCenter Explains SmartCenter Management solutions. This Administration Guide guide provides solutions for control over configuring, managing, and monitoring security deployments at the perimeter, inside the network, at all user endpoints. Firewall and Describes how to control and secure network SmartDefense access; establish network connectivity; use Administration Guide SmartDefense to protect against network and application level attacks; use Web Intelligence to protect web servers and applications; the integrated web security capabilities; use Content Vectoring Protocol (CVP) applications for anti-virus protection, and URL Filtering (UFP) applications for limiting access to web sites; secure VoIP traffic. Virtual Private Networks This guide describes the basic components of a Administration Guide VPN and provides the background for the technology that comprises the VPN infrastructure. 10
  9. Related Documentation TABLE P-1 VPN-1 Power documentation suite documentation (continued) Title Description Eventia Reporter Explains how to monitor and audit traffic, and Administration Guide generate detailed or summarized reports in the format of your choice (list, vertical bar, pie chart etc.) for all events logged by Check Point VPN-1 Power, SecureClient and SmartDefense. SecurePlatform™/ Explains how to install and configure SecurePlatform Pro SecurePlatform. This guide will also teach you how Administration Guide to manage your SecurePlatform machine and explains Dynamic Routing (Unicast and Multicast) protocols. Provider-1/SiteManager-1 Explains the Provider-1/SiteManager-1 security Administration Guide management solution. This guide provides details about a three-tier, multi-policy management architecture and a host of Network Operating Center oriented features that automate time-consuming repetitive tasks common in Network Operating Center environments. TABLE P-2 Integrity Server documentation Title Description Integrity Advanced Explains how to install, configure, and maintain the Server Installation Integrity Advanced Server. Guide Integrity Advanced Provides screen-by-screen descriptions of user Server Administrator interface elements, with cross-references to relevant Console Reference chapters of the Administrator Guide. This document contains an overview of Administrator Console navigation, including use of the help system. Integrity Advanced Explains how to managing administrators and Server Administrator endpoint security with Integrity Advanced Server. Guide Integrity Advanced Provides information about how to integrating your Server Gateway Virtual Private Network gateway device with Integrity Integration Guide Advanced Server. This guide also contains information regarding deploying the unified SecureClient/Integrity client package. Preface 11
  10. Related Documentation TABLE P-2 Integrity Server documentation (continued) Title Description Integrity Advanced Provides information about client and server Server System requirements. Requirements Integrity Agent for Linux Explains how to install and configure Integrity Agent Installation and for Linux. Configuration Guide Integrity XML Policy Provides the contents of Integrity client XML policy Reference Guide files. Integrity Client Explains how to use of command line parameters to Management Guide control Integrity client installer behavior and post-installation behavior. 12
  11. More Information More Information • For additional technical information about Check Point products, consult Check Point’s SecureKnowledge at https://secureknowledge.checkpoint.com/. • See the latest version of this document in the User Center at http://www.checkpoint.com/support/technical/documents/ Preface 13
  12. Feedback Feedback Check Point is engaged in a continuous effort to improve its documentation. Please help us by sending your comments to: cp_techpub_feedback@checkpoint.com 14
  13. Chapter 1 Introduction to Performance Pack In This Chapter Overview page 16 Release Notes page 17 15
  14. Overview Overview Performance Pack is supported both for SecurePlatform and Solaris platforms. Performance Pack is a software acceleration product installed as an add-on to VPN-1 Power. Performance Pack significantly enhances and improves the performance of VPN-1 Power. Performance Pack uses Check Point’s SecureXL technology and other innovative network acceleration techniques, to deliver wire-speed performance for VPN-1 Power. Moreover, it accelerates key security functions, thereby ensuring your organization the best security with the best performance available on an open platform. Supported security functions include: • Access control. • Encryption. • NAT. • Accounting and logging. • Connection/session rate. • General security checks. • SmartDefense features. • CIFs resources. • ClusterXL High Availability and Load Sharing. • TCP Sequence Verification. • Dynamic VPN 16
  15. Release Notes Release Notes The latest Release Notes for Performance Pack can be found at: http://www.checkpoint.com/support/technical/documents/index.html Chapter 1 Introduction to Performance Pack 17
  16. Release Notes 18
  17. Chapter 2 Getting Started In This Chapter Performance Pack NGX System Requirements page 20 Performance Pack Recommended Platform Configuration page 22 Preparing the Performance Pack NGX Machine page 23 19
  18. Performance Pack NGX System Requirements Performance Pack NGX System Requirements Performance Pack accelerates the performance of VPN-1 Power on: • Hardware supported by SecurePlatform • Solaris 8, 9, or 10 for SPARC 64 Bit Following are the minimum recommended requirements: Minimum System Requirements The following are the minimum system requirements: Table 2-1 Minimum System Requirements Operating SecurePlatform NGX R65 Systems Solaris 8, 9, and 10 CPU • See: Hardware Compatibility List for SecurePlatform NGX R65 • SPARC 64 bit for Solaris. Disk Space 80MB Memory 128MB Network Network Interfaces supported by VPN-1 Power on Solaris: Interfaces • GEM Ethernet NIC • 10/100 QuadEthernet NIC • GigaSwift NIC • Sun HME 10/100 Ethernet NIC • BGE 20
nguon tai.lieu . vn
Tin học văn phòng Đồ họa - Thiết kế - Flash Quản trị Web Cơ sở dữ liệu Quản trị mạng Kỹ thuật lập trình Hệ điều hành Phần cứng An ninh - Bảo mật Chứng chỉ quốc tế Thủ thuật máy tính Điện - Điện tử Kinh tế học Hoá học Xã hội học Môi trường