tp-link DPI SDN Controller User Guide

Zviri mukati hide
1 DPI
2 IDS/IPS
3 Wireless IDS/IPS
tp-link DPI SDN Controller - Featured Image

Wireless IPS

Configuration Guide ye
DPI, IPS/IDS, uye Wireless IPS/IDS
Gwaro iri richasuma mashandisirwo eDPI, IPS/IDS, uye isina waya IPS/IDS mabasa eOmada.
Controller.

tp-link DPI SDN Controller - icon 1 DPI

Overview
DPI (Deep Packet Inspection) inokubatsira kuona, kuongorora, uye kudzora traffic pane iyo application layer mune network. Injini yeDPI inosanganisira ichangoburwa masiginecha ekuzivikanwa kwekushandisa kuti uone kuti ndeapi maapplication ari kushandisa zvakanyanya bandwidth. Iwe unogona kutonga zvirinani uye kugovera network traffic kushandiswa kuburikidza neDPI.

Configuration

  1. Sarudza saiti kubva pane yekudonhedza pasi rondedzero yeSangano. Enda kuSettings> Network Security> Application Control.
  2. PaDeep Packet Inspection peji, gonesa Deep Packet Inspection uye Logging Traffic, wobva waisa marongero.
    tp-link DPI SDN Controller - Yakadzika Packet InspectionYakadzika Packet Kuongorora
    Kana yagoneswa, chishandiso chinotumira traffic inotumirwa kune inyanzvi yenzvimbo DPI injini kuti iongororwe, kuitira kutonga uye kuona rudzi rwetraffic.
    Logging Traffic
    Kana yagoneswa, chishandiso chinounganidza uye kuchengetedza zvawanikwa zvekuongorora traffic. Unogona kutarisa zvawanikwa pane Statistics> Application Analytics peji.
  3. Isa zvigadziriso.
  4. PaRules Management peji, tinya Gadzira New Rule. Iwe unogona kufanotsanangura mutemo mumwe chete kana kupfuura, uye APP yekudzora nzira inogona kutaurwa, uye kuona block kana QoS zviito zveakatarwa maApps mukati menguva yakatarwa.
    tp-link DPI SDN Controller - Rules ManagementRule Name
    Taura zita remutemo.
    Purogiramu
    Taura nguva iyo mutemo unotanga kushanda. Iwe unogona kugadzira nguva nyowani zvichienderana nezvaunoda.
    QoS
    Bvumira iyi sarudzo uye sarudza QoS Kirasi kugadzirisa iyo QoS zano kana zvichidikanwa.
    Sarudza Mapurogiramu
    Sarudza maApps emutemo.
  5. PaPeji Yesefa Yekushandisa, tinya Gadzira Nyowani Yesefa Yekushandisa. Iwe unogona kushandisa iyo yakatsanangurwa mitemo uye kupatsanura akawanda mitemo mune imwe seti yakasetwa kuitira nyore manejimendi.
    tp-link DPI SDN Controller - Application Filter
    Zita Taura zita resefa.
    Tsanangudzo Isa tsananguro yekuzvizivisa.
    Sarudza Mitemo Sarudza mitemo yesefa.
  6. Paiyo DPI Packet Inspection peji, tinya Gadzira Nyowani Yekugovera Restriction. Sarudza network kuti uise sefa yakatsanangurwa kare.
    tp-link DPI SDN Controller - DPI Packet Inspection
    Network Sarudza network yekushandisa sefa.
    Sefa Sarudza sefa yakafanotsanangurwa.
  7. Sevha zvirongwa. Unogona view mhedzisiro yekuongorora traffic pane iyo Statistics> Application Analytics peji.
    tp-link DPI SDN Controller - kuongorora kwemigwagwaKana iwe uchida kujekesa DPI data yenguva yenguva, enda kune Deep Packet Inspection peji, tinya Bvisa Dhata bhatani uye tsanangura iyo nguva.

tp-link DPI SDN Controller - icon 1 IDS/IPS

Overview
IDS/IPS inzira yekuchengetedza inoona kupindira kunoenderana nekurwisa maitiro. Inogona kuona malware, Trojan mabhiza, makonye, ​​ActiveX uye kumwe kurwiswa kuchengetedza network kuchengetedza vashandisi.

tp-link DPI SDN Controller - icon 2 Cherechedza:
Kushandisa Intrusion Detection/Prevention inogona kuderedza hupamhi hwekupfuura.

2. 1 Gadzira IDS/IPS

  1. Sarudza saiti kubva pane yekudonha-pasi rondedzero yeSangano. Enda kune Zvirongwa> Network Security> IDS/IPS.
  2. Gonesa Intrusion Detection / Prevention uye gadzirisa iyo parameter.
    tp-link DPI SDN Controller - Intrusion Detection
    Type Taura maitiro ekushanda.
    Mune IDS modhi, iyo sisitimu inongotaura iyo yekutyisidzira log.
    Mune IPS mode, iyo sisitimu inovhara iyo inoenderana yekubatanidza ye300s mushure mekutyisidzira kwaonekwa.
    GEO Enforcer Gonesa kuzivikanwa kwenzvimbo yezvinyorwa zvekutyisidzira.
    Chengetedzo Level Sarudza mwero wekudzivirira. Chiyero chekudzivirira chepamusoro chinoreva kuti mamwe marudzi ekutyisidzira anoonekwa, nepo danho redziviriro rakaderera rinongoona kumwe kutyisidzira kwakakosha. Iwe unogona zvakare kugadzirisa chikamu chekudzivirira.
    Nguva Inobudirira Rondedzera nguva inoshanda yeIDS/IPS module.
  3. Isa zvigadziriso.
    Kana iyo sisitimu yaona kutyisidzira, iyo inoenderana yekutyisidzira log inozoratidzwa pane Insights> Threat Management peji.

2. 2 Tonga Kutyisidzira muSiti

  1. Sarudza saiti kubva pane yekudonha-pasi rondedzero yeSangano. Enda kune Insights> Threat Management.
  2. Dzvanya kutyisidzira kwakawanikwa nehurongwa, ipapo iwe unogona kusarudza yakatsanangurwa mhinduro nzira yeinoenderana kurwisa IP: Vimba, Isolate Chishandiso, Siginecha Kudzvinyirira, kana Bvumira.
    tp-link DPI SDN Controller - kutyisidzira izvo
    Block Donhedza traffic kuenda/kubva kune yekunze IP kero uye chaiyo yemukati IP kero.
    Kana iwe ukavharira kupinda, kunowedzerwa kuBlock Rondedzero paSettings> Network Security> IDS/IPS.
    Isolate Device Donhedza traffic kuenda/kubva kune yekunze IP kero uye chero yemukati IP kero.
    Siginecha Kudzvinyirira Nyamudza yambiro pane mamwe masiginicha. Izvi zvinozodzima kuvharira patraffic inoenderana neyakatemerwa kudzvanyirira mutemo.
    Kana iwe ukadzvanya siginecha yekupinda, inowedzerwa kune Siginecha Suppression runyorwa paSettings> Network Security> IDS/IPS.
    Bvumira  Vimba nekero yeIP kuitira kuti traffic, zvichienderana negwara rakasarudzwa, isavharwe kune kana kubva kune yakaonekwa IP kero.
    Kana iwe ukabvumira kupinda, ichawedzerwa kune Rega Rondedzero paSettings> Network Security> IDS/IPS.
  3. Iwe unogona kuenderera mberi nekutarisa uye kugadzirisa zvakagadziriswa zvinyorwa pa Zvirongwa> Network Security> IDS/IPS.
    ■ Block List
    Iyo Block Rondedzero peji inoratidza ese evhavha ekupinda akawedzerwa kuburikidza neThreat Management peji. Iwe unogona kusarudza kuvharira traffic yese yeIP sosi mune yekutyisidzira log, kana kuvharira traffic yese pakati peiyo IP sosi uye yekuenda IP mune yekutyisidzira log.
    ■ Bvumira Rondedzero
    PaKubvumidza Runyorwa peji, unogona kuwedzera, view, uye gadzirisa zvinyorwa zvekuregererwa kwekuonekwa kweIDS/IPS, kuitira kuti zvinhu zvakatarwa zvirege kukonzera matanda ekutyisidzira.
    Dzvanya Gadzira Nyowani Bvumira Rondedzero uye gadzirisa ma parameter.
    tp-link DPI SDN Controller - Gadzira Nyowani Inobvumira Runyorwa
    Direction Tsanangura nzvimbo yechinhu (chinangwa) chinoregererwa kubva pakukonzeresa kutyisidzira: kwainobva, kwainosvika, kana mativi ese.
    Track By Rondedzera rudzi rwechinhu (chinangwa) chinoregererwa kubva mukukonzeresa kutyisidzira: IP kero, Network, kana Subnet.
    IP Kero/Network/ Subnet Taura kukosha kwechinhu.

    ■ Kudzvinyirira Siginecha
    Iyo Siginecha Suppression peji inoratidza ese siginecha yekudzvanya mapindiro akawedzerwa kuburikidza neThreat Management peji, uye zvinhu zvine siginicha yakadzvanywa hazvichakonzeresa matanda ekutyisidzira.

2. 3 Tonga Zvinotyisidzira Pasi Pose
MuGlobal view, enda kuSecurity.

■ Rondedzero Yekutyisidzira
MuThreat Management Rondedzero, unogona kutarisa kutyisidzira kwepamusoro nekuomarara, nzvimbo dzekutyisidzira kwepamusoro, uye zvisina kuchengetwa uye zvakachengetwa kutyisidzira.

tp-link DPI SDN Controller - Threat Management List

Mune iyo isina kuchengetwa yekutyisidzira rondedzero, tinya yekupinda, ipapo iwe unogona kusarudza yakatsanangurwa mhinduro nzira yeinoenderana kurwisa IP: Vimba, Isolate Chishandiso, Siginecha Kudzvinyirira, kana Bvumira.

tp-link DPI SDN Controller - Mune iyo isina kuchengetwa

Block Donhedza traffic kuenda/kubva kune yekunze IP kero uye chaiyo yemukati IP kero.
Kana iwe ukavharira kupinda, kunowedzerwa kuBlock Rondedzero paSettings> Network Security> IDS/IPS.
Isolate Device Donhedza traffic kuenda/kubva kune yekunze IP kero uye chero yemukati IP kero.
Siginecha Kudzvinyirira Nyamudza yambiro pane mamwe masiginicha. Izvi zvinozodzima kuvharira patraffic inoenderana neyakatemerwa kudzvanyirira mutemo.
Kana iwe ukadzvanya siginecha yekupinda, inowedzerwa kune Siginecha Suppression runyorwa paSettings> Network Security> IDS/IPS.
Bvumira  Vimba nekero yeIP kuitira kuti traffic, zvichienderana negwara rakasarudzwa, isavharwe kune kana kubva kune yakaonekwa IP kero.
Kana iwe ukabvumira kupinda, ichawedzerwa kune Rega Rondedzero paSettings> Network Security> IDS/IPS.

■ Mepu Yekutyisidzira
MuThreat Management Mepu, unogona view kutyisidzira uye nhamba dzekurwiswa kwakawanikwa nehurongwa. Unogona kudzvanya nhamba mumepu kuti view kurwisa mashoko.
Iwe unogona kudzvanya-kurudyi nzvimbo kuvhara zviitiko zvayo zvekurwiswa uye kutonga iyo Block Nzvimbo rondedzero.
Kana kurwiswa kwakanyanya kwaonekwa, iwe unogona kusarudza chaiwo hutsinye mazinga ekuratidza.

tp-link DPI SDN Controller - Kutyisidzira Mepu

Wireless IDS/IPS

Overview
Iine Wireless IDS (Intrusion Detection System), APs inogara ichiona isina waya masaini emidziyo iri munetiweki kutarisa kwakashata kana zvisiri pamutemo maitiro etiweki.
Ne Wireless IPS (Intrusion Prevention System), APs inogona kutora dziviriro dzinoenderana uye nhanho dzekupikisa dzakaonekwa nemidziyo yakaipa uye vanorwisa.

■ Wireless IDS

  1. Sarudza saiti kubva pane yekudonha-pasi rondedzero yeSangano. Enda kune Zvirongwa> Network Security> Wireless IDS/IPS.
  2. PaWireless IDS peji, gonesa basa uye gadzirisa zvigadziriso zvekuona.
    tp-link DPI SDN Controller - Wireless IDS
  3. Sevha zvirongwa. Kana mudziyo ukaona kutyisidzira, irogi rekutyisidzira rinoenderana richaratidzwa pane Insights> Threat Management peji.

■ Wireless IPS

  1. Sarudza saiti kubva pane yekudonha-pasi rondedzero yeSangano. Enda kune Zvirongwa> Network Security> Wireless IDS/IPS.
  2. PaWireless IPS peji, gonesa basa uye gadzirisa ma parameter.
    tp-link DPI SDN Controller - Wireless IPS
    Deauthenticate Kana yagoneswa, Omada APs inorwisa iyo yakaonekwa yakaipa APs, kuitira kuti vatengi vabvise kubva kune iwo maAP. Kuti ushandise basa iri, ita shuwa kuti wagonesa kuonekwa kwezviitiko Detect_adhoc_using_valid_ssid uye Detect_valid_ssid_miuse.
    Zvikasadaro iyo gadziriso haizoitike.
    Dynamic Block List Kana yagoneswa, kana AP yangoona kurwiswa kwakashata senge brute force cracking, inowedzera anorwisa kune block list uye haizobatanidzi mapaketi kubva kune uyu anorwisa kwenguva yakati. Kuti ushandise basa iri, ita shuwa kuti wagonesa kuonekwa kwezviitiko Detect_client_flood, Detect_violence_break, uye Detect_power_save_dos_ flood_attack. Zvikasadaro iyo gadziriso haizoitike.
    Nguva Yekuvhara Mudziyo Rondedzera nguva yekuti anorwisa arambe ari mu dynamic block list mushure mekuwedzera.
  3. Sevha zvirongwa. Kana mudziyo ukaona kutyisidzira, unotora dziviriro dzinoenderana uye nhanho dzekurwisa dzakaonekwa dzakaipa midziyo uye vanorwisa.

Wireless IPS

Zvinyorwa / Zvishandiso

PDF thumbnailDPI SDN Controller
User Guide · DPI SDN Controller, SDN Controller, Controller

References

Published: February 14, 2024
Yakagadziridzwa: Kukadzi 17, 2024

Bvunza Mubvunzo

Use this section to ask about setup, compatibility, troubleshooting, or anything missing from this manual.

Bvunza Mubvunzo

Ask a question about setup, compatibility, troubleshooting, or anything missing from this manual.

tp-link T300 Waterproof Universal Lock Instructions
Kubvumbi 8, 2026
TP-Link C100 Tapo 1080P Indoor Security Camera Instructions
Kubvumbi 8, 2026
tp-link POE20E-Outdoor Gigabit Outdoor PoE plus Extender Installation Guide
Kubvumbi 4, 2026
tp-link TL-SL12 Series Unmanaged PoE plus Switch Installation Guide
Kubvumbi 4, 2026