Seminar Cyberoam Technology

TRƯỜNG CAO ĐẲNG NGHỀ CÔNG NGHỆ THÔNG TIN
SEMINAR CYBEROAM
TECHNOLOGY
Cyberoam – UTM Firewall
Website: http://www.ispace.edu.vn Forum: http://ispace.edu.vn/forum
Trưởng bộ môn: Giảng Viên Trình bày:

Thầy Nguyễn Văn Tiến 1. Nguyễn Siêu Đẳng
2. Nguyễn Trọng Tiến
3. Trần Đức Minh
TRƯỜNG CAO ĐẲNG NGHỀ CNTT iSPACE Website: http://www.ispace.edu.vn
̣ i Dung Chính
Nô
̣ u
Giới thiê
Factory defaults
Deploy: Bridge & Gateway Modes
User Authentication
Content Filtering
̣ Thống Mạng Doanh Nghiê

Tổng Quan Hê ̣ p
CYBEROAM - UTM FIREWALL

̣ U
GIỚI THIÊ
Cyberoam là giải pháp identity-based UTM cung cấp hê ̣ thống tích hợp
bảo vê ̣ Internet với các policy cơ sở định danh.
Cyberoam hỗ trợ nhiều tính năng như:

Identity-based Firewall
Gateway Anti-Virus & Anti-Spam
VPN- Threat free tunneling
SSL VPN
Content Filtering
Intrusion Prevention System
High Availability (HA)
Bandwidth Management
Multi-Link Manager
On-Appliance Reporting
500+ drilldown reports
Cyberoam – Identity based Firewall

Identity Based Technology
User
̣ u Thiết Bị Cyberoam

Giới Thiê
Cyberoam Package
Cyberoam Appliance
Blue Straight-through
Power Cable
Ethernet Cable
Red Crossover Ethernet

Quick Start Guide
Cable
Serial Cable Documentation CD

Phân Loại Thiết Bị Cyberoam UTM
Large Enterprises
CR 1500i
CR 1000i
CR 750ia
CR 500ia
Small to Medium Enterprises
CR 300i
CR 200i
CR 100ia
Small Offices
CR 50ia
CR 35ia
CR 25ia
CR 15i
CR 15wi
Cyberoam Factory Defaults
Web Based Administration Console:

Username: cyberoam
Port IP Address Zone Type Password: cyber
172.16.16.16/
A LAN
255.255.255.0 Text Based Administration console
192.168.2.1/ (Telnet or Serial Connection):
B WAN
255.255.240.0 Password: admin
SSH:
Username: admin
Password: admin
Factory Reset
Activities:
Connecting appliance using serial console cable
Accessing appliance using Hyper Terminal
Resetting appliance
Type “RESET” on password prompt if you forgot both Web
Admin Console and CLI password.
Type password on prompt and select:
 Cyberoam Management
o Reset to factory defaults.
Deployment Modes
Cyberoam can be deploy in two modes:
Bridge / Transparent Mode
Gateway / Route / NAT Mode

Bridge / Transparent Mode
When to choose bridge mode?

You already have a firewall or a router acting a gateway for your
network and you don’t want to change the existing setup
Want to use Cyberoam for reporting.
Want Cyberoam as a drop-in solution for Viruses, Spam, Content-

Filtering and IDP and Bandwidth Management.
Want to try-out Cyberoam without changing your existing setup.

Before Cyberoam Scenario - Bridge

Bridge IP Address ___.___.___.___
Subnet Mask ___.___.___.___
IP address of the Default Gateway ___.___.___.___

DNS IP Address ___.___.___.___
System Time Zone ______________
System Date and Time ______________
Email ID of the administrator ______________
Router
Firewall
INT IP: 192.168.0.1/24
Switch
Network:192.168.0.x/24
Users
Default Gateway:
192.168.0.1
Cyberoam in Bridge Mode

Bridge IP Address ___.___.___.___
192.168. 0 . 5
Subnet Mask ___.___.___.___
255.255.255. 0
IP address of the Default Gateway ___.___.___.___

192.168. 0 . 1
DNS IP Address 202. 54 . 1 . 30
Router System Time Zone ______________
System Date and Time ______________
Email ID of the administrator ______________
Firewall
INT IP: 192.168.0.1/24
Network:192.168.0.x/24
Users
Default Gateway:
192.168.0.1
Gateway/Route/NAT mode
When to choose gateway mode?

You want to replace your existing firewall or router acting as a
gateway for your network with Cyberoam
You want your gateway to act as a VPN server
You want redundancy in your network with by utilizing the multilink

and HA (High-Availability) features of Cyberoam
You want to configure separate DMZ zone to protect servers from

LAN & WAN zone.
Before Cyberoam Scenario - Gateway

Port A IP Address ___ ___ ___ ___
Subnet Mask ___ ___ ___ ___
DMZ Zone Zone Type LAN/WAN/DMZ
Port B IP Address ___ ___ ___ ___

Subnet Mask ___ ___ ___ ___
Zone Type LAN/WAN/DMZ
Port C IP Address ___ ___ ___ ___
Router Web Server Subnet Mask ___ ___ ___ ___
IP:61.0.5.1/29 IP:172.16.1.2 Zone Type LAN/WAN/DMZ
Gateway: 172.16.1.1 Port D IP Address ___ ___ ___ ___
Firewall Subnet Mask ___ ___ ___ ___
Zone Type LAN/WAN/DMZ
INT IP:192.168.0.1/24
DMZ IP: Switch
IP address of the
172.16.1.1/24 Default Gateway: ___ ___ ___ ___
EXT IP: 61.0.5.2/29 DNS IP Address: ___.___.___.___
Gateway IP: 61.0.5.1 System Time Zone: ______________
System Date and Time: ______________
Mail Server Email ID of the administrator : ______________
Network:192.168.0.x/24 Switch IP:172.16.1.3
Gateway: 172.16.1.1
Database Server
Users IP:172.16.1.4
Gateway: 172.16.1.1
Default Gateway: 192.168.0.1
Cyberoam in Gateway Mode
Router
IP:61.0.5.1/29
INT IP:192.168.0.1/24
DMZ IP: 172.16.1.1/24
EXT IP: 61.0.5.2/29
Gateway IP: 61.0.5.1
DMZ Zone
Console Switch
Switch
Network:192.168.0.x/24
Web Server Mail Server Database Server

IP:172.16.1.2 IP:172.16.1.3 IP:172.16.1.4
Gateway: 172.16.1.1 Gateway: 172.16.1.1 Gateway: 172.16.1.1
Users
Default Gateway: 192.168.0.1

Cấu Hình Các Tính Năng Nâng Cao Cyberoam
̣ c, nghỉ trưa,…
Định nghĩa thời gian làm viê
Cấu hình đường đi ưu tiên
Chứng Thực User:
Internal Database
External Database
Giới hạn quyền cho các user.
Lọc nộ i dung.
Cấu hình VPN
Thực Hành Trên Mô Hình Ứng Dụng Thực Tế

HỎI - ĐÁP
Q&A

Seminar Cyberoam Technology

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Seminar Cyberoam Technology

Uploaded by

Copyright:

Available Formats

TRƯỜNG CAO ĐẲNG NGHỀ CÔNG NGHỆ THÔNG TIN

Cyberoam – UTM Firewall

Website: http://www.ispace.edu.vn Forum: http://ispace.edu.vn/forum

Trưởng bộ môn: Giảng Viên Trình bày:

̣ Thống Mạng Doanh Nghiê

CYBEROAM - UTM FIREWALL

Cyberoam hỗ trợ nhiều tính năng như:

Cyberoam – Identity based Firewall

Identity Based Technology

̣ u Thiết Bị Cyberoam

Red Crossover Ethernet

Serial Cable Documentation CD

Phân Loại Thiết Bị Cyberoam UTM

Small to Medium Enterprises

Cyberoam Factory Defaults

Web Based Administration Console:

Cyberoam can be deploy in two modes:

Bridge / Transparent Mode

Gateway / Route / NAT Mode

Bridge / Transparent Mode

When to choose bridge mode?

Want to use Cyberoam for reporting.

Want Cyberoam as a drop-in solution for Viruses, Spam, Content-

Want to try-out Cyberoam without changing your existing setup.

Before Cyberoam Scenario - Bridge

IP address of the Default Gateway ___.___.___.___

Cyberoam in Bridge Mode

IP address of the Default Gateway ___.___.___.___

When to choose gateway mode?

You want your gateway to act as a VPN server

You want redundancy in your network with by utilizing the multilink

You want to configure separate DMZ zone to protect servers from

Before Cyberoam Scenario - Gateway

Port B IP Address ___ ___ ___ ___

Cyberoam in Gateway Mode

Web Server Mail Server Database Server

Default Gateway: 192.168.0.1

Cấu Hình Các Tính Năng Nâng Cao Cyberoam

Thực Hành Trên Mô Hình Ứng Dụng Thực Tế

You might also like

IP address of the Default Gateway _._._._

IP address of the Default Gateway _._._._

Port B IP Address _ _ _ _