ããã°ãã¯ãããããããã®è¸è½äººã»æå人ã æ¸ãã¦ããAmebaããã°ã ç¡æã§ç°¡åã«ã¯ããããã¨ãã§ãã¾ãã
ãµã¼ãè² è·åæ£ã®åºæ¬æ§æã¨åä½ è² è·åæ£è£ ç½®ï¼ãã¼ããã©ã³ãµï¼ã®ãã¼ãºã¯ç¾å¨ãé«ã¾ãä¸æ¹ã§ããå¾æ¥ã¯Webãµã¼ãã®ã¿ã主ãªå¯¾è±¡ã¨ãã¦ãã¾ããããç¾å¨ã§ã¯ã«ã¼ã¿#1ï¼ã¢ããªã±ã¼ã·ã§ã³ãµã¼ãï¼ã¡ã¼ã«ãµã¼ãï¼SIPãµã¼ãï¼ãã¡ã¤ã¢ã¦ã©ã¼ã«ï¼VPNã²ã¼ãã¦ã§ã¤ï¼ã¦ã¤ã«ã¹ã²ã¼ãã¦ã§ã¤ï¼IDSãªã©ãå¤ç¨®å¤æ§ã®æ©å¨ããããã³ã«ãè² è·åæ£ã®å¯¾è±¡ã¨ãªã£ã¦ãã¾ããããã«å¿ãã¦ãã¼ããã©ã³ãµãç¾å¨ã§ã¯é常ã«å¤æ©è½ã¨ãªã£ã¦ãã¾ãããæ¬é£è¼ã§ã¯ãå ¨3åã«æ¸¡ã£ã¦ã¢ããªã±ã¼ã·ã§ã³ãã¼ã¹ã§ã¯ãªãããããã¯ã¼ã¯ãã¼ã¹ã®æè¡ãåºæ¬ã¨ãªããã±ããããã¼ããµã¼ããã«ã¹ãã§ãã¯ãæ¥ç¶ç¶æãªã©ã®åä½ã«ã¤ãã¦ç´¹ä»ãã¾ããã¾ããããã©ã¼ãã³ã¹æ¸¬å®ã«ã¤ãã¦ãã話ããã¾ãããã #1ãã«ã¼ã¿ã¯ã¬ã¤ã¤3ã§ã¤ã³ã¿ã¼ãããåç·ã®ãã«ããã¼ãã³ã°ã¨ãã¦æ©è½ããï¼ï¼è¤æ°ã®WANåç·ãæ¥ç¶ãã¦ãåæã«éä¿¡ããããã¨ã§è² è·åæ£ããå¿ è¦ãªå¸¯åã確ä¿ãããã
BIG-IPã¯åºæ¬çã«Virtual Serverã¨ãããªãã¸ã§ã¯ããç¶ãã¹ããã©ãã£ãã¯ãæ¾ãä¸ãããã®è¨å®ã«ãããããåä½ãããã¾ããåä½ã¨ããã®ã¯åç´ã«æ¯åããããiRulesã§URLãã¨ã«æ¯åããããHTTPã®ããããããã£ããã¨ãããã®ãæãã¾ãã Virtual Serverããã®ãã±ãããæ¾ãä¸ãããã©ããã決ãããããæ¡ä»¶ã¯IPã¢ãã¬ã¹ã¨ãã¼ãçªå·ã§ããå¾ã£ã¦VIPã¨ããç¿æ £çãªè¡¨ç¾ã¯æ£ç¢ºã§ã¯ããã¾ããã Self IPã¨ã®é¢é£æ§ Virtual Serverã«è¨å®ããIPã¢ãã¬ã¹ã¯ãä¸è¿°ã®éããããæ¡ä»¶ã«ããéããªãã®ã§ãSelf IPã¨åä¸ã§ããå¿ è¦ã¯ããã¾ãããå¾ã£ã¦ä»¥ä¸ã®ãããªæ§æãå¯è½ã§ãã Virtual Serverã«ã°ãã¼ãã«IPãè¨å®ãããã¨ãã«ãBIG-IPèªèº«ãå±ãããµããããã«ãåãããã«ã°ãã¼ãã«IPã¢ãã¬ã¹ãå¿ è¦ãªå ´åãä¸ä½ã«ã¼ã¿ã®BIG-IPå´
æ¦è¦ BIG-IP + Linux 2å°(CentOS 5) 㧠DSR(Direct Server Retrun) æ§æãè¡ã£ãã¨ãã®è¨å®ã¡ã¢ã DSRã¨ã¯ ãã¡ãã®è¨äºãåãããããã ãã®è¨äºã«ããããã«ããã®ã¾ã¾ã ã¨ãmac ã¢ãã¬ã¹ããã¡ãã¡ã«ãã£ãã·ã¥ããã¦ãã¾ããããããåé¡ãåºã¦å°ã ãã£ããã ã£ãã 次ã®ããã« iptables ã¨çµã¿åãããã¨ã§ãç°¡åã«ãã®åé¡ã解決ã§ããã ããã¯ã¨ã³ãè¨å® Linux ãµã¼ãã® /etc/sysconfig/iptables ã«å¯¾ãã次ã®è¨å®ãè¡ãã *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] COMMIT # ================================================================
ãããã¯ã ã©ã¤ã³ãããâ [edit] BIG-IP ããã¯ã¹å VIPRION ã·ã£ã¼ã·å LTM [Local Traffic Manager] è² è·åæ£ GTM [Global Traffic Manager] åºåè² è·åæ£ APM [Access Policy Manager] ãªã¢ã¼ã ã¢ã¯ã»ã¹ æ§ Firepass ASM [Application Security Manager] WAF AFM [Advanced Firewall Manager] ãã¡ã¤ã¢ã¦ã©ã¼ã« â ç¨èªâ [edit] Virtual Server BIG-IP ããã©ã³ã·ã³ã°ãããµã¼ãã¹ IP ã¢ãã¬ã¹ã¨ãã¼ãçªå·ã®çµã¿åããã§ãããã³ã° Pool Member ãã©ã³ã·ã³ã°å¯¾è±¡ã® IP ã¢ãã¬ã¹ããã¼ãçªå· Node ãã©ã³ã·ã³ã°å¯¾è±¡ã® IP ã¢ãã¬ã¹ (Pool Member ãè¨å®ããã°èªåã§
ãªãªã¼ã¹ãé害æ å ±ãªã©ã®ãµã¼ãã¹ã®ãç¥ãã
ææ°ã®äººæ°ã¨ã³ããªã¼ã®é ä¿¡
å¦çãå®è¡ä¸ã§ã
j次ã®ããã¯ãã¼ã¯
kåã®ããã¯ãã¼ã¯
lãã¨ã§èªã
eã³ã¡ã³ãä¸è¦§ãéã
oãã¼ã¸ãéã
{{#tags}}- {{label}}
{{/tags}}