{"id":234,"date":"2022-01-12T16:33:30","date_gmt":"2022-01-12T08:33:30","guid":{"rendered":"http:\/\/learning.sino-vt.com:8988\/?p=234"},"modified":"2022-01-12T16:33:30","modified_gmt":"2022-01-12T08:33:30","slug":"auditsys-4-5-%e4%ba%a7%e5%93%81%e6%97%a5%e5%b8%b8%e7%bb%b4%e6%8a%a4%e6%89%8b%e5%86%8c","status":"publish","type":"post","link":"http:\/\/learning.sino-vt.com:8988\/index.php\/2022\/01\/12\/auditsys-4-5-%e4%ba%a7%e5%93%81%e6%97%a5%e5%b8%b8%e7%bb%b4%e6%8a%a4%e6%89%8b%e5%86%8c\/","title":{"rendered":"AuditSys 4.5 \u4ea7\u54c1\u65e5\u5e38\u7ef4\u62a4\u624b\u518c"},"content":{"rendered":"<p>\u76ee\u5f55<\/p>\n<p><a href=\"#_Toc17630 \">1.\u5f15\u8a00 <\/a><\/p>\n<p><a href=\"#_Toc23276 \">1.1 \u6982\u8ff0 <\/a><\/p>\n<p><a href=\"#_Toc24625 \">1.2 \u76f8\u5173\u672f\u8bed <\/a><\/p>\n<p><a href=\"#_Toc10822 \">1.3 \u624b\u518c\u4f7f\u7528\u8bf4\u660e <\/a><\/p>\n<p><a href=\"#_Toc28106 \">2.AuditSys\u7ef4\u62a4\u4ecb\u7ecd <\/a><\/p>\n<p><a href=\"#_Toc28588 \">2.1\u00a0AuditSys\u7ba1\u7406\u5e73\u53f0\u4e2d\u670d\u52a1\u72b6\u6001\u53ca\u8fdb\u7a0b\u76d1\u63a7 <\/a><\/p>\n<p><a href=\"#_Toc12203 \">2.1.1 AuditSys\u767b\u5f55\u7cfb\u7edf <\/a><\/p>\n<p><a href=\"#_Toc24043 \">2.1.2 \u76d1\u63a7Center\u670d\u52a1\u5668\u72b6\u6001\u53ca\u8fdb\u7a0b <\/a><\/p>\n<p><a href=\"#_Toc2786 \">2.1.3 \u76d1\u63a7Server\u670d\u52a1\u5668\u72b6\u6001\u53ca\u8fdb\u7a0b <\/a><\/p>\n<p><a href=\"#_Toc5513 \">2.1.4 \u76d1\u63a7ES\u670d\u52a1\u5668\u8282\u70b9\u72b6\u6001 <\/a><\/p>\n<p><a href=\"#_Toc22237 \">2.1.5 \u67e5\u770b\u7ec8\u7aefAgent\u72b6\u6001 <\/a><\/p>\n<p><a href=\"#_Toc27956 \">2.1.6 \u67e5\u770b\u4f1a\u8bdd\u72b6\u6001 <\/a><\/p>\n<p><a href=\"#_Toc24743 \">2.1.7 \u67e5\u770b\u8bb8\u53ef\u8bc1\u72b6\u6001 <\/a><\/p>\n<p><a href=\"#_Toc21142 \">2.1.8 \u67e5\u770b\u5404\u670d\u52a1\u5668\u65e5\u5fd7\u72b6\u6001 <\/a><\/p>\n<p><a href=\"#_Toc2276 \">2.2\u00a0\u67e5\u770b\u548c\u542f\u505cAuditSys\u670d\u52a1\u8fdb\u7a0b\u53ca\u5176\u72b6\u6001 <\/a><\/p>\n<p><a href=\"#_Toc11995 \">2.2.1 AuditSys\u540e\u53f0\u767b\u5f55 <\/a><\/p>\n<p><a href=\"#_Toc23228 \">2.2.2 \u540e\u53f0\u67e5\u770b\u548c\u542f\u505cCenter\u670d\u52a1\u8fdb\u7a0b <\/a><\/p>\n<p><a href=\"#_Toc21624 \">2.2.3 \u540e\u53f0\u67e5\u770b\u548c\u542f\u505cServer\u670d\u52a1\u8fdb\u7a0b <\/a><\/p>\n<p><a href=\"#_Toc11035 \">2.2.4 \u540e\u53f0\u67e5\u770b\u548c\u542f\u505cES\u670d\u52a1\u8fdb\u7a0b <\/a><\/p>\n<p><a href=\"#_Toc26594 \">2.2.5 \u540e\u53f0\u67e5\u770b\u548c\u542f\u505cStatistic Server\u670d\u52a1\u8fdb\u7a0b <\/a><\/p>\n<p><a href=\"#_Toc2795 \">2.2.6 AuditSys\u540e\u53f0\u68c0\u67e5DataServer\u670d\u52a1\u5668 <\/a><\/p>\n<p><a href=\"#_Toc865 \">2.2.7 AuditSys\u7ec8\u7aef\u540e\u53f0\u68c0\u67e5 <\/a><\/p>\n<p><a href=\"#_Toc27707 \">2.3 AuditSys\u5e38\u89c1\u95ee\u9898\u53ca\u5904\u7406\u6b65\u9aa4 <\/a><\/p>\n<p><a href=\"#_Toc5671 \">2.3.1\u95ee\u9898\u63cf\u8ff0: \u767b\u5f55\u7ba1\u7406\u5e73\u53f0\u5931\u8d25 <\/a><\/p>\n<p><a href=\"#_Toc6505 \">2.3.2\u95ee\u9898\u63cf\u8ff0\uff1a\u5728\u7ba1\u7406\u5e73\u53f0\u914d\u7f6eES\u670d\u52a1\u5668\u5931\u8d25 <\/a><\/p>\n<p><a href=\"#_Toc16707 \">2.3.3\u95ee\u9898\u63cf\u8ff0\uff1a\u5b89\u88c5Server\u670d\u52a1\u5668\u540e\u5728\u7ba1\u7406\u5e73\u53f0\u770b\u4e0d\u5230\u8be5\u670d\u52a1\u5668 <\/a><\/p>\n<p><a href=\"#_Toc22215 \">2.3.4\u95ee\u9898\u63cf\u8ff0\uff1a\u5b89\u88c5\u7edf\u8ba1\u670d\u52a1\u5668\u540e\u5728\u7ba1\u7406\u5e73\u53f0\u770b\u4e0d\u5230\u8be5\u670d\u52a1\u5668 <\/a><\/p>\n<p><a href=\"#_Toc18744 \">2.3.5\u95ee\u9898\u63cf\u8ff0\uff1a\u5b89\u88c5\u5ba2\u6237\u7aef\u540e\u672a\u4e0a\u62a5\u5230\u7ba1\u7406\u5e73\u53f0 <\/a><\/p>\n<p><a href=\"#_Toc2651 \">2.3.6\u95ee\u9898\u63cf\u8ff0\uff1a\u5ba2\u6237\u7aef\u4e0a\u62a5\u540e\u5728\u68c0\u7d22\u754c\u9762\u770b\u4e0d\u5230\u8be5\u5ba2\u6237\u7aef\u7684\u64cd\u4f5c <\/a><\/p>\n<p><a href=\"#_Toc10557 \">2.3.7\u95ee\u9898\u63cf\u8ff0\uff1a\u62a5\u8868\u90ae\u4ef6\u53d1\u9001\u5931\u8d25 <\/a><\/p>\n<p><a href=\"#_Toc25255 \">2.3.8\u95ee\u9898\u63cf\u8ff0\uff1a\u5f55\u5c4f\u4e0d\u80fd\u6b63\u5e38\u64ad\u653e <\/a><\/p>\n<p><a href=\"#_Toc32104 \">2.4 AuditSys\u6280\u672f\u652f\u6301\u8054\u7cfb\u65b9\u5f0f <\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc10176\"><\/a><strong><b><a name=\"_Toc14523_WPSOffice_Level1\"><\/a><a name=\"_Toc6400\"><\/a>\u00a0<\/b><\/strong><\/p>\n<p><a name=\"_Toc12903\"><\/a><strong><b><a name=\"_Toc17630\"><\/a><a name=\"_Toc15592\"><\/a><a name=\"_Toc17857\"><\/a>1.\u5f15\u8a00<\/b><\/strong><\/p>\n<ul>\n<li><a name=\"_Toc22930\"><\/a><b><\/b><strong><b><a name=\"_Toc9823_WPSOffice_Level2\"><\/a><a name=\"_Toc6643\"><\/a><a name=\"_Toc11855\"><\/a><a name=\"_Toc29955\"><\/a><a name=\"_Toc4862\"><\/a><a name=\"_Toc23276\"><\/a>\u6982\u8ff0<\/b><\/strong><\/li>\n<\/ul>\n<p>\u672c\u624b\u518c\u4e3aAuditSys\u884c\u4e3a\u98ce\u9669\u7ba1\u7406\u7cfb\u7edf\u65e5\u5e38\u7ef4\u62a4\u6587\u6863\uff0c\u672c\u624b\u518c\u5047\u8bbe\u9605\u8bfb\u8005\u62e5\u6709AuditSys\u884c\u4e3a\u98ce\u9669\u7ba1\u7406\u7cfb\u7edf\u6240\u6709\u6743\u9650\u3002<\/p>\n<ul>\n<li><a name=\"_Toc15827\"><\/a><b><\/b><strong><b><a name=\"_Toc1736\"><\/a><a name=\"_Toc11044_WPSOffice_Level2\"><\/a><a name=\"_Toc3326\"><\/a><a name=\"_Toc24625\"><\/a><a name=\"_Toc1910\"><\/a><a name=\"_Toc4534\"><\/a>\u76f8\u5173\u672f\u8bed<\/b><\/strong><\/li>\n<\/ul>\n<table>\n<tbody>\n<tr>\n<td width=\"129\">\u5e8f\u53f7<\/td>\n<td width=\"320\">\u672f\u8bed\u540d\u79f0<\/td>\n<td width=\"713\">\u672f\u8bed\u5b9a\u4e49<\/td>\n<\/tr>\n<tr>\n<td width=\"129\">1<\/td>\n<td width=\"320\">AuditSys<\/td>\n<td width=\"713\">AuditSys\u884c\u4e3a\u98ce\u9669\u7ba1\u7406\u7cfb\u7edf\uff08UEBA\u7528\u6237\u5b9e\u4f53\u884c\u4e3a\u5206\u6790\u5de5\u5177\uff09<\/td>\n<\/tr>\n<tr>\n<td width=\"129\">2<\/td>\n<td width=\"320\">Center<\/td>\n<td width=\"713\">AuditSys\u884c\u4e3a\u98ce\u9669\u7ba1\u7406\u7cfb\u7edf\u63a7\u5236\u53f0\u670d\u52a1\u5668<\/td>\n<\/tr>\n<tr>\n<td width=\"129\">3<\/td>\n<td width=\"320\">Server<\/td>\n<td width=\"713\">AuditSys\u884c\u4e3a\u98ce\u9669\u7ba1\u7406\u7cfb\u7edf\u5e94\u7528\u670d\u52a1\u5668<\/td>\n<\/tr>\n<tr>\n<td width=\"129\">4<\/td>\n<td width=\"320\">ES<\/td>\n<td width=\"713\">AuditSys\u884c\u4e3a\u98ce\u9669\u7ba1\u7406\u7cfb\u7edf\u6570\u636e\u5206\u6790\u670d\u52a1\u5668<\/td>\n<\/tr>\n<tr>\n<td width=\"129\">5<\/td>\n<td width=\"320\">Statistics<\/td>\n<td width=\"713\">AuditSys\u884c\u4e3a\u98ce\u9669\u7ba1\u7406\u7cfb\u7edf\u7edf\u8ba1\u670d\u52a1\u5668<\/td>\n<\/tr>\n<tr>\n<td width=\"129\">6<\/td>\n<td width=\"320\">Dataserver<\/td>\n<td width=\"713\">AuditSys\u884c\u4e3a\u98ce\u9669\u7ba1\u7406\u7cfb\u7edf\u89c6\u9891\u6570\u636e\u5907\u4efd\u670d\u52a1\u5668<\/td>\n<\/tr>\n<tr>\n<td width=\"129\">7<\/td>\n<td width=\"320\">Agent<\/td>\n<td width=\"713\">AuditSys\u884c\u4e3a\u98ce\u9669\u7ba1\u7406\u7cfb\u7edf\u5ba2\u6237\u7aef\u5b89\u88c5\u5305\u6216AuditSys\u884c\u4e3a\u98ce\u9669\u7ba1\u7406\u7cfb\u7edf\u5ba2\u6237\u7aef<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<ul>\n<li><a name=\"_Toc9882_WPSOffice_Level2\"><\/a><b><\/b><strong><b><a name=\"_Toc13474\"><\/a><a name=\"_Toc9713\"><\/a><a name=\"_Toc22797\"><\/a><a name=\"_Toc28059\"><\/a><a name=\"_Toc10822\"><\/a><a name=\"_Toc1782\"><\/a>\u624b\u518c\u4f7f\u7528\u8bf4\u660e<\/b><\/strong><\/li>\n<\/ul>\n<p><u>\u5e26\u4e0b\u5212\u7ebf<\/u>\u8868\u793a\u64cd\u4f5c\u4e2d\u7684\u83dc\u5355\uff0c\u4f8b\u5982\uff1a<\/p>\n<p><u>\u7cfb\u7edf<\/u>&#8211;<u>\u8bb8\u53ef\u8bc1<\/u><\/p>\n<p>\u8868\u793a\uff1a\u64cd\u4f5c\u4e3a\u5148\u70b9\u51fb\u201c\u7cfb\u7edf\u201d\u83dc\u5355\uff0c\u5728\u51fa\u73b0\u7684\u9875\u9762\u518d\u70b9\u51fb\u201c\u8bb8\u53ef\u8bc1\u201d\u83dc\u5355\u3002<\/p>\n<p>\u7ea2\u8272\u5b57\u4f53\u8868\u793a\u7528\u6237\u7279\u522b\u9700\u8981\u6ce8\u610f\u7684\u5185\u5bb9<\/p>\n<p><a name=\"_Toc21963\"><\/a><strong><b><a name=\"_Toc9823_WPSOffice_Level1\"><\/a><a name=\"_Toc23921\"><\/a><a name=\"_Toc25870\"><\/a><a name=\"_Toc26439\"><\/a><a name=\"_Toc28106\"><\/a><a name=\"_Toc27159\"><\/a>2.AuditSys\u7ef4\u62a4\u4ecb\u7ecd<\/b><\/strong><\/p>\n<p>\u7cfb\u7edf\u7ef4\u62a4\u624b\u518c\u662f\u7cfb\u7edf\u4e0a\u7ebf\u8fd0\u884c\u540e,\u5bf9\u7cfb\u7edf\u8fdb\u884c\u65e5\u5e38\u7ef4\u62a4,\u53d1\u73b0\u95ee\u9898\u89e3\u51b3\u95ee\u9898\u7684\u4e00\u4e2a\u53c2\u8003\u624b\u518c\uff0c\u57fa\u672c\u7684\u65e5\u5e38\u7ef4\u62a4\u4e3b\u8981\u5305\u62ec\u524d\u53f0\u64cd\u4f5c\u548c\u540e\u53f0\u7ef4\u62a4\u4e24\u90e8\u5206\u3002<\/p>\n<p><a name=\"_Toc28588\"><\/a><strong><b>2.<\/b><\/strong><strong><b>1<\/b><\/strong><strong><b>\u00a0<\/b><\/strong><strong><b>AuditSys\u7ba1\u7406\u5e73\u53f0\u4e2d\u670d\u52a1\u72b6\u6001\u53ca\u8fdb\u7a0b\u76d1\u63a7<\/b><\/strong><\/p>\n<p>\u524d\u53f0\u64cd\u4f5c\u662f\u6307\u5728\u8fdb\u884c\u65e5\u5e38\u540e\u53f0\u7ef4\u62a4\u64cd\u4f5c\u4e4b\u524d\u6216\u8005\u4e4b\u540e,\u901a\u8fc7\u524d\u53f0\u7684\u4e00\u4e9b\u57fa\u672c\u64cd\u4f5c\u6765\u53d1\u73b0\u95ee\u9898,\u6216\u8005\u67e5\u770b\u95ee\u9898\u662f\u5426\u89e3\u51b3\u3002<\/p>\n<p>\u524d\u53f0\u7684\u57fa\u672c\u64cd\u4f5c\u5982\u4e0b\uff1a<\/p>\n<p><a name=\"_Toc18921\"><\/a><strong><b><a name=\"_Toc12203\"><\/a><a name=\"_Toc30185\"><\/a><a name=\"_Toc14212\"><\/a>2.1.1 AuditSys\u767b\u5f55\u7cfb\u7edf<\/b><\/strong><\/p>\n<p>\u767b\u5f55\u7cfb\u7edf\u4e3aWEB\u767b\u5f55\uff08https:\/\/CenterIP:80\uff09\uff0c\u524d\u53f0\u64cd\u4f5c\u90fd\u9700\u8981\u767b\u5f55\u7cfb\u7edf\u540e\u624d\u80fd\u8fdb\u884c\u3002<\/p>\n<p><a name=\"_Toc517\"><\/a><strong><b><a name=\"_Toc30415\"><\/a><a name=\"_Toc4058\"><\/a><a name=\"_Toc24043\"><\/a>2.1.2 <\/b><\/strong><strong><b>\u76d1\u63a7<\/b><\/strong><strong><b>Center<\/b><\/strong><strong><b>\u670d\u52a1\u5668\u72b6\u6001\u53ca\u8fdb\u7a0b<\/b><\/strong><\/p>\n<p>\u53ef\u4ee5\u5bf9Center\u7684\u72b6\u6001\u8fdb\u884c\u521d\u6b65\u68c0\u67e5\uff0c\u5982\uff1aCenter\u8fd0\u884c\u65f6\u957f\u3001\u8d44\u6e90\u4f7f\u7528\u60c5\u51b5\u3001\u8fdb\u7a0b\u5217\u8868\u7b49\u3002Center\u7684\u72b6\u6001\u53ef\u4ee5\u5728\u7cfb\u7edf-\u6982\u89c8-Center\u4e2d\u67e5\u770b\u3002\u754c\u9762\u5982\u4e0b\uff1a<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc25061\"><\/a><strong><b><a name=\"_Toc13528\"><\/a><a name=\"_Toc19340\"><\/a><a name=\"_Toc2786\"><\/a>2.1.3 <\/b><\/strong><strong><b>\u76d1\u63a7Server\u670d\u52a1\u5668\u72b6\u6001\u53ca\u8fdb\u7a0b<\/b><\/strong><\/p>\n<p>\u53ef\u4ee5\u5bf9Server\u7684\u72b6\u6001\u8fdb\u884c\u521d\u6b65\u68c0\u67e5\uff0c\u5982\uff1aServer\u662f\u5426\u5728\u7ebf\u3001\u8d44\u6e90\u4f7f\u7528\u60c5\u51b5\u3001\u4f1a\u8bdd\u6570\u3001\u8fdb\u7a0b\u5217\u8868\u7b49\u3002Server\u7684\u72b6\u6001\u53ef\u4ee5\u5728\u7cfb\u7edf-\u6982\u89c8-Server\u4e2d\u67e5\u770b\u3002\u754c\u9762\u5982\u4e0b\uff1a<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc13082\"><\/a><strong><b><a name=\"_Toc17357\"><\/a><a name=\"_Toc1784\"><\/a><a name=\"_Toc5513\"><\/a>2.1.4 <\/b><\/strong><strong><b>\u76d1\u63a7<\/b><\/strong><strong><b>ES<\/b><\/strong><strong><b>\u670d\u52a1\u5668\u8282\u70b9\u72b6\u6001<\/b><\/strong><\/p>\n<p>\u53ef\u4ee5\u5bf9ES\u7684\u72b6\u6001\u8fdb\u884c\u521d\u6b65\u68c0\u67e5\uff0c\u5982\uff1aES\u662f\u5426\u5728\u7ebf\u3001\u8d44\u6e90\u4f7f\u7528\u60c5\u51b5\u3001\u8282\u70b9\u72b6\u6001\u3001\u7d22\u5f15\u4fe1\u606f\u7b49\u3002ES\u7684\u72b6\u6001\u53ef\u4ee5\u5728\u7cfb\u7edf-ES\u76d1\u63a7-\u76d1\u63a7\u4fe1\u606f\u4e2d\u67e5\u770b\u3002\u754c\u9762\u5982\u4e0b\uff1a<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc4267\"><\/a><strong><b><a name=\"_Toc17753\"><\/a><a name=\"_Toc10236\"><\/a><a name=\"_Toc22237\"><\/a>2.1.5 <\/b><\/strong><strong><b>\u67e5\u770b<\/b><\/strong><strong><b>\u7ec8\u7aef<\/b><\/strong><strong><b>Agent<\/b><\/strong><strong><b>\u72b6\u6001<\/b><\/strong><\/p>\n<p>\u53ef\u4ee5\u5bf9Agent\u7684\u72b6\u6001\u8fdb\u884c\u521d\u6b65\u68c0\u67e5\uff0c\u5982\uff1aAgent\u662f\u5426\u5728\u7ebf\u3001\u662f\u5426\u88ab\u7981\u7528\u3001\u7248\u672c\u53f7\u3001\u7ec8\u7aef\u6570\u7b49\u3002Agent\u7684\u72b6\u6001\u53ef\u4ee5\u5728\u7ec8\u7aef-\u7ec8\u7aef\u4e2d\u67e5\u770b\u3002\u754c\u9762\u5982\u4e0b\uff1a<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc31971\"><\/a><strong><b><a name=\"_Toc22871\"><\/a><a name=\"_Toc2695\"><\/a><a name=\"_Toc27956\"><\/a>2.1.6 <\/b><\/strong><strong><b>\u67e5\u770b<\/b><\/strong><strong><b>\u4f1a\u8bdd<\/b><\/strong><strong><b>\u72b6\u6001<\/b><\/strong><\/p>\n<p>\u53ef\u4ee5\u5bf9\u4f1a\u8bdd\u7684\u72b6\u6001\u8fdb\u884c\u521d\u6b65\u68c0\u67e5\uff0c\u5982\uff1a\u4f7f\u7528\u4e2d\u7684Agent\u662f\u5426\u6709\u76f8\u5e94\u7684\u5f55\u5236\u4e2d\u4f1a\u8bdd\u3001\u662f\u5426\u6709\u5df2\u5b8c\u6210\u4f1a\u8bdd\u3001\u79bb\u7ebf\u4f1a\u8bdd\u662f\u5426\u4e0a\u4f20\u3001\u4f1a\u8bdd\u5143\u6570\u636e\u80fd\u5426\u6b63\u5e38\u5c55\u793a\u3001\u4f1a\u8bdd\u80fd\u5426\u6b63\u5e38\u64ad\u653e\u7b49\u3002Agent\u7684\u72b6\u6001\u53ef\u4ee5\u5728\u68c0\u7d22-\u4f1a\u8bdd\u4e2d\u67e5\u770b\u3002\u754c\u9762\u5982\u4e0b\uff1a<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc5079\"><\/a><strong><b><a name=\"_Toc2919\"><\/a><a name=\"_Toc7271\"><\/a><a name=\"_Toc24743\"><\/a>2.1.7 <\/b><\/strong><strong><b>\u67e5\u770b<\/b><\/strong><strong><b>\u8bb8\u53ef<\/b><\/strong><strong><b>\u8bc1\u72b6\u6001<\/b><\/strong><\/p>\n<p>\u53ef\u4ee5\u5bf9\u8bb8\u53ef\u8bc1\u7684\u72b6\u6001\u8fdb\u884c\u521d\u6b65\u68c0\u67e5\uff0c\u5982\uff1a\u8bb8\u53ef\u65f6\u95f4\u662f\u5426\u6709\u671f\u9650\u3001Agent\u6570\u91cf\u662f\u5426\u8d85\u51fa\u7b49\u3002Agent\u7684\u72b6\u6001\u53ef\u4ee5\u5728\u7cfb\u7edf-\u8bb8\u53ef\u8bc1\u4e2d\u67e5\u770b\u3002\u754c\u9762\u5982\u4e0b\uff1a<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc17247\"><\/a><strong><b><a name=\"_Toc30826\"><\/a><a name=\"_Toc8192\"><\/a><a name=\"_Toc21142\"><\/a>2.1.8 <\/b><\/strong><strong><b>\u67e5\u770b\u5404\u670d\u52a1\u5668<\/b><\/strong><strong><b>\u65e5\u5fd7<\/b><\/strong><strong><b>\u72b6\u6001<\/b><\/strong><\/p>\n<p>\u53ef\u4ee5\u5bf9\u7cfb\u7edf\u65e5\u5fd7\u7684\u72b6\u6001\u8fdb\u884c\u521d\u6b65\u68c0\u67e5\uff0c\u5982\uff1a\u662f\u5426\u6709\u9519\u8bef\u65e5\u5fd7\u4ea7\u751f\u3001\u9519\u8bef\u65e5\u5fd7\u7684\u7c7b\u578b\u3001\u9519\u8bef\u65e5\u5fd7\u7684\u6765\u6e90\u3001\u9519\u8bef\u65e5\u5fd7\u7684\u5177\u4f53\u4fe1\u606f\u7b49\u3002Agent\u7684\u72b6\u6001\u53ef\u4ee5\u5728\u7cfb\u7edf-\u7cfb\u7edf\u65e5\u5fd7\u4e2d\u67e5\u770b\u3002\u754c\u9762\u5982\u4e0b\uff1a<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc2276\"><\/a><strong><b>2.<\/b><\/strong><strong><b>2<\/b><\/strong><strong><b>\u00a0AuditSys<\/b><\/strong><strong><b>\u7cfb\u7edf\u67e5\u770b\u548c\u542f\u505c\u670d\u52a1\u8fdb\u7a0b\u53ca\u5176\u72b6\u6001<\/b><\/strong><\/p>\n<p>\u540e\u53f0\u7ef4\u62a4\u5305\u62ec\u5bf9\u7cfb\u7edf\u8fd0\u884c\u547d\u4ee4\u7684\u67e5\u770b\u3001\u542f\u52a8\u9879\u662f\u5426\u6b63\u5e38\u3001\u8fd0\u884c\u60c5\u51b5\u7684\u67e5\u770b\u4ee5\u53ca\u786c\u4ef6\u8fd0\u884c\u60c5\u51b5\u7b49\u53c2\u6570\u7684\u67e5\u770b\u7b49\u64cd\u4f5c\u3002\u4e5f\u53ef\u4ee5\u9488\u5bf9\u524d\u53f0\u51fa\u73b0\u7684\u95ee\u9898\u9488\u5bf9\u6027\u7684\u67e5\u770b\u3002<\/p>\n<p>\u540e\u53f0\u7684\u57fa\u672c\u64cd\u4f5c\u5982\u4e0b\uff1a<\/p>\n<p><a name=\"_Toc14584\"><\/a><strong><b><a name=\"_Toc2302\"><\/a><a name=\"_Toc28266\"><\/a><a name=\"_Toc11995\"><\/a>2.2.1 AuditSys\u540e\u53f0\u767b\u5f55<\/b><\/strong><\/p>\n<p>\u53ef\u4ee5\u901a\u8fc7PuTTY\u6216SecureCRT\u3001Xshell\u7b49\u8fd0\u7ef4\u5de5\u5177\u8fdc\u7a0b\u767b\u5f55\u670d\u52a1\u5668\u7aef\uff0c\u53ef\u4ee5\u4f7f\u7528\u8fdc\u7a0b\u684c\u9762\u8fde\u63a5\u7b49\u65b9\u5f0f\u8fdc\u7a0b\u767b\u5f55\u7ec8\u7aef\uff0c\u540e\u53f0\u64cd\u4f5c\u90fd\u9700\u8981\u767b\u5f55\u76f8\u5e94\u7ec4\u4ef6\u540e\u624d\u80fd\u8fdb\u884c\u3002<\/p>\n<p><a name=\"_Toc170\"><\/a><strong><b><a name=\"_Toc17544\"><\/a><a name=\"_Toc11937\"><\/a><a name=\"_Toc23228\"><\/a>2.2.2 \u540e\u53f0<\/b><\/strong><strong><b>\u67e5\u770b\u548c\u542f\u505c<\/b><\/strong><strong><b>Center<\/b><\/strong><strong><b>\u670d\u52a1\u8fdb\u7a0b<\/b><\/strong><\/p>\n<p>Center\u4e0a\u8fd0\u884c\u7684\u670d\u52a1\u5982\u4e0b\uff1a<\/p>\n<ol>\n<li>php-fpm\u670d\u52a1\uff1a\u662f\u4e00\u4e2aPHP FastCGI\u7ba1\u7406\u5668\uff0c\u7528\u4e8e\u8fd0\u884cPHP\u9879\u76ee\u3002<\/li>\n<\/ol>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status\u00a0\u00a0php-fpm<\/p>\n<p>\u91cd\u542f\uff1asystemctl \u00a0restart \u00a0php-fpm<\/p>\n<p>\u542f\u52a8\uff1asystemctl \u00a0start \u00a0php-fpm<\/p>\n<p>\u505c\u6b62\uff1asystemctl \u00a0stop \u00a0php-fpm<\/p>\n<p>2.mysql\u670d\u52a1\uff1a\u662fmysql\u6570\u636e\u5e93\u7684\u670d\u52a1\u8fdb\u7a0b\u3002<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status mysql<\/p>\n<p>\u91cd\u542f\uff1asystemctl \u00a0restart \u00a0mysql<\/p>\n<p>\u542f\u52a8\uff1asystemctl \u00a0start \u00a0mysql<\/p>\n<p>\u505c\u6b62\uff1asystemctl \u00a0stop \u00a0mysql<\/p>\n<p>3.nginx\u670d\u52a1\uff1a\u662f\u4e00\u4e2a\u9ad8\u6027\u80fd\u7684HTTP\u548c\u53cd\u5411\u4ee3\u7406\u670d\u52a1\u3002<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0nginx<\/p>\n<p>\u91cd\u542f\uff1asystemctl \u00a0restart \u00a0nginx<\/p>\n<p>\u542f\u52a8\uff1asystemctl \u00a0start \u00a0nginx<\/p>\n<p>\u505c\u6b62\uff1asystemctl \u00a0stop \u00a0nginx<\/p>\n<p>4.redis\u670d\u52a1\uff1a\u662fRedis\u5b58\u50a8\u7684\u670d\u52a1\u8fdb\u7a0b\u3002<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0redis<\/p>\n<p>\u91cd\u542f\uff1asystemctl \u00a0restart \u00a0redis<\/p>\n<p>\u542f\u52a8\uff1asystemctl \u00a0start \u00a0redis<\/p>\n<p>\u505c\u6b62\uff1asystemctl \u00a0stop \u00a0redis<\/p>\n<p>5.filebeat\u670d\u52a1\uff1a\u662f\u91c7\u96c6\u672c\u5730\u6587\u4ef6\u65e5\u5fd7\u6570\u636e\u548c\u53d1\u9001\u3002<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status filebeat<\/p>\n<p>\u91cd\u542f\uff1asystemctl \u00a0restart \u00a0filebeat<\/p>\n<p>\u542f\u52a8\uff1asystemctl \u00a0start \u00a0filebeat<\/p>\n<p>\u505c\u6b62\uff1asystemctl \u00a0stop \u00a0filebeat<\/p>\n<p><a name=\"_Toc23017\"><\/a><strong><b><a name=\"_Toc8836\"><\/a><a name=\"_Toc27761\"><\/a><a name=\"_Toc21624\"><\/a>2.2.3 <\/b><\/strong><strong><b>\u540e\u53f0<\/b><\/strong><strong><b>\u67e5\u770b\u548c\u542f\u505cServer\u670d\u52a1\u8fdb\u7a0b<\/b><\/strong><\/p>\n<p>Server\u4e0a\u8fd0\u884c\u7684\u670d\u52a1\u5982\u4e0b\uff1a<\/p>\n<p>1.recv-server \u89c6\u9891\u63a5\u6536\u8fdb\u7a0b<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0recv-server<\/p>\n<p>\u91cd\u542f\uff1asystemctl restart recv-server<\/p>\n<p>\u542f\u52a8\uff1asystemctl start recv-server<\/p>\n<p>\u505c\u6b62\uff1asystemctl stop recv-server<\/p>\n<p>2.compress-server \u89c6\u9891\u538b\u7f29\u8fdb\u7a0b<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0compress-server<\/p>\n<p>\u91cd\u542f\uff1asystemctl restart compress-server<\/p>\n<p>\u542f\u52a8\uff1asystemctl start compress-server<\/p>\n<p>\u505c\u6b62\uff1asystemctl stop compress-server<\/p>\n<p>3.dataclient \u6570\u636e\u5907\u4efd<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0dataclient<\/p>\n<p>\u91cd\u542f\uff1asystemctl restart dataclient<\/p>\n<p>\u542f\u52a8\uff1asystemctl start dataclient<\/p>\n<p>\u505c\u6b62\uff1asystemctl stop dataclient<\/p>\n<p>4.replay-server \u89c6\u9891\u64ad\u653e\u8fdb\u7a0b<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0replay-server<\/p>\n<p>\u91cd\u542f\uff1asystemctl restart replay-server<\/p>\n<p>\u542f\u52a8\uff1asystemctl start replay-server<\/p>\n<p>\u505c\u6b62\uff1asystemctl stop replay-server<\/p>\n<p>5.state-client \u7cfb\u7edf\u76d1\u63a7\u8fdb\u7a0b<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0state-client<\/p>\n<p>\u91cd\u542f\uff1asystemctl restart state-client<\/p>\n<p>\u542f\u52a8\uff1asystemctl start state-client<\/p>\n<p>\u505c\u6b62\uff1asystemctl stop state-client<\/p>\n<p>6.filebeat\u8fdb\u7a0b filebeat\u662f\u91c7\u96c6\u672c\u5730\u6587\u4ef6\u65e5\u5fd7\u6570\u636e\u548c\u53d1\u9001<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0filebeat<\/p>\n<p>\u91cd\u542f\uff1asystemctl \u00a0restart \u00a0filebeat<\/p>\n<p>\u542f\u52a8\uff1asystemctl \u00a0start \u00a0filebeat<\/p>\n<p>\u505c\u6b62\uff1asystemctl \u00a0stop \u00a0filebeat<\/p>\n<p>7.sque\u00a0\u6570\u636e\u5904\u7406\u670d\u52a1<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0sque<\/p>\n<p>\u91cd\u542f\uff1asystemctl restart sque<\/p>\n<p>\u542f\u52a8\uff1asystemctl start sque<\/p>\n<p>\u505c\u6b62\uff1asystemctl stop sque<\/p>\n<p>8.sque2\u00a0\u6570\u636e\u5904\u7406\u670d\u52a12<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0sque2<\/p>\n<p>\u91cd\u542f\uff1asystemctl restart sque2<\/p>\n<p>\u542f\u52a8\uff1asystemctl start sque2<\/p>\n<p>\u505c\u6b62\uff1asystemctl stop sque2<\/p>\n<p><a name=\"_Toc4091\"><\/a><strong><b><a name=\"_Toc8052\"><\/a><a name=\"_Toc566\"><\/a><a name=\"_Toc11035\"><\/a>2.2.4 <\/b><\/strong><strong><b>\u540e\u53f0<\/b><\/strong><strong><b>\u67e5\u770b\u548c\u542f\u505cES\u670d\u52a1\u8fdb\u7a0b<\/b><\/strong><\/p>\n<p>ES\u4e0a\u8fd0\u884c\u7684\u670d\u52a1\u5982\u4e0b\uff1a<\/p>\n<p>1.elasticsearch\u8fdb\u7a0b \u5927\u6570\u636e\u7684\u5b58\u50a8\u548c\u641c\u7d22\u5f15\u64ce\u670d\u52a1\u3002<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0elasticsearch<\/p>\n<p>\u91cd\u542f\uff1asystemctl \u00a0restart \u00a0elasticsearch<\/p>\n<p>\u542f\u52a8\uff1asystemctl \u00a0start \u00a0elasticsearch<\/p>\n<p>\u505c\u6b62\uff1asystemctl \u00a0stop \u00a0elasticsearch<\/p>\n<p><a name=\"_Toc4234\"><\/a><strong><b><a name=\"_Toc31817\"><\/a><a name=\"_Toc24721\"><\/a><a name=\"_Toc26594\"><\/a>2.2.5 <\/b><\/strong><strong><b>\u540e\u53f0<\/b><\/strong><strong><b>\u67e5\u770b\u548c\u542f\u505cStatistic\u670d\u52a1\u8fdb\u7a0b<\/b><\/strong><\/p>\n<p>Statistics\u4e0a\u8fd0\u884c\u7684\u670d\u52a1\u5982\u4e0b\uff1a<\/p>\n<p>1.filebeat\u8fdb\u7a0b filebeat\u662f\u91c7\u96c6\u672c\u5730\u6587\u4ef6\u65e5\u5fd7\u6570\u636e\u548c\u53d1\u9001<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0filebeat<\/p>\n<p>\u91cd\u542f\uff1asystemctl \u00a0restart \u00a0filebeat<\/p>\n<p>\u542f\u52a8\uff1asystemctl \u00a0start \u00a0filebeat<\/p>\n<p>\u505c\u6b62\uff1asystemctl \u00a0stop \u00a0filebeat<\/p>\n<p>2.state-client \u7cfb\u7edf\u76d1\u63a7\u8fdb\u7a0b<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0state-client<\/p>\n<p>\u91cd\u542f\uff1asystemctl \u00a0restart \u00a0state-client<\/p>\n<p>\u542f\u52a8\uff1asystemctl \u00a0start \u00a0state-client<\/p>\n<p>\u505c\u6b62\uff1asystemctl \u00a0stop \u00a0state-client<\/p>\n<p>3.sque\u00a0\u6570\u636e\u5904\u7406<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0sque<\/p>\n<p>\u91cd\u542f\uff1asystemctl restart sque<\/p>\n<p>\u542f\u52a8\uff1asystemctl start sque<\/p>\n<p>\u505c\u6b62\uff1asystemctl stop sque<\/p>\n<p><a name=\"_Toc4744\"><\/a><strong><b><a name=\"_Toc22043\"><\/a><a name=\"_Toc9687\"><\/a><a name=\"_Toc2795\"><\/a>2.2.6 AuditSys\u540e\u53f0\u68c0\u67e5DataServer\u670d\u52a1\u5668<\/b><\/strong><\/p>\n<p>DataServer\u4e0a\u8fd0\u884c\u7684\u670d\u52a1\u5982\u4e0b\uff1a<\/p>\n<p>1.dataserver.service \u89c6\u9891\u63a5\u6536\u8fdb\u7a0b<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0dataserver.service<\/p>\n<p>\u91cd\u542f\uff1asystemctl restart dataserver.service<\/p>\n<p>\u542f\u52a8\uff1asystemctl start dataserver.service<\/p>\n<p>\u505c\u6b62\uff1asystemctl stop dataserver.service<\/p>\n<p>2.replay-server \u89c6\u9891\u64ad\u653e\u8fdb\u7a0b<\/p>\n<p>\u72b6\u6001\u67e5\u770b\uff1asystemctl \u00a0status \u00a0replay-server<\/p>\n<p>\u91cd\u542f\uff1asystemctl restart replay-server<\/p>\n<p>\u542f\u52a8\uff1asystemctl start replay-server<\/p>\n<p>\u505c\u6b62\uff1asystemctl stop replay-server<\/p>\n<p><a name=\"_Toc22404\"><\/a><strong><b><a name=\"_Toc4738\"><\/a><a name=\"_Toc16524\"><\/a><a name=\"_Toc865\"><\/a>2.2.7 AuditSys\u7ec8\u7aef\u540e\u53f0\u68c0\u67e5<\/b><\/strong><\/p>\n<p>\u7ec8\u7aef\u4e0a\u53ef\u4ee5\u901a\u8fc7\u4efb\u52a1\u7ba1\u7406\u5668\u67e5\u770bAgent\u8fd0\u884c\u7684\u670d\u52a1\uff0c\u5e76\u901a\u8fc7\u53f3\u952e\u70b9\u51fb\u5bf9\u5176\u8fdb\u884c\u91cd\u65b0\u542f\u52a8\u3001\u5f00\u59cb\u3001\u505c\u6b62\u64cd\u4f5c\u3002Agent\u4e0a\u8fd0\u884c\u7684\u670d\u52a1\u5982\u4e0b\uff1a<\/p>\n<p>AuditsysRecorderService\u670d\u52a1\uff1a\u7ec8\u7aefAgent\u8fd0\u884c\u7684\u4e3b\u670d\u52a1\uff0c\u7528\u4ee5\u8bb0\u5f55\u7528\u6237\u64cd\u4f5c\u3002<\/p>\n<p>AuditsysUpdateService\u670d\u52a1\uff1a\u7ec8\u7aefAgent\u8fd0\u884c\u7684\u5347\u7ea7\u670d\u52a1\uff0c\u7528\u4ee5\u66f4\u65b0\u914d\u7f6e\u3002<\/p>\n<p><a name=\"_Toc15566\"><\/a><strong><b><a name=\"_Toc12191\"><\/a><a name=\"_Toc27707\"><\/a><a name=\"_Toc8825\"><\/a><a name=\"_Toc23872\"><\/a><a name=\"_Toc5750\"><\/a><a name=\"_Toc11595_WPSOffice_Level2\"><\/a>2.3 AuditSys\u5e38\u89c1\u95ee\u9898\u53ca\u5904\u7406\u6b65\u9aa4<\/b><\/strong><\/p>\n<p><a name=\"_Toc31615\"><\/a><strong><b><a name=\"_Toc4509\"><\/a><a name=\"_Toc9125\"><\/a><a name=\"_Toc5671\"><\/a>2.3.1\u95ee\u9898\u63cf\u8ff0: <\/b><\/strong><strong><b>\u6253\u5f00<\/b><\/strong><strong><b>\u767b\u5f55\u7ba1\u7406\u5e73\u53f0\u5931\u8d25<\/b><\/strong><strong><b>\u63d0\u793a\u201c403 Forbidden\u201d\u9519\u8bef\u9875\u9762<\/b><\/strong><\/p>\n<p><strong>\u5904\u7406\u6b65\u9aa4\uff1a<\/strong>\u8bf7\u6dfb\u52a0https\u534f\u8bae\uff0c\u5982\uff1a<a href=\"https:\/\/192.168.8.77\u3002\"><u>https:\/\/192.168.8.77<\/u><u>\u3002<\/u><\/a><\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc6505\"><\/a><strong><b><a name=\"_Toc3127\"><\/a><a name=\"_Toc20054\"><\/a><a name=\"_Toc27235\"><\/a>2.3.2\u95ee\u9898\u63cf\u8ff0\uff1a\u5728\u7ba1\u7406\u5e73\u53f0\u914d\u7f6eES\u670d\u52a1\u5668\u5931\u8d25<\/b><\/strong><\/p>\n<p><strong><b>\u00a0<\/b><\/strong><strong>\u5904\u7406\u6b65\u9aa4\uff1a<\/strong><\/p>\n<p>1.\u68c0\u67e5ES\u670d\u52a1\u5668\u7684elastisearch\u670d\u52a1\u662f\u5426\u6b63\u5e38\uff08\u8bf7\u53c2\u7167\u8be5\u6587\u68632.2.4\uff09<\/p>\n<p>2.\u68c0\u67e5Center\u80fd\u5426\u8bbf\u95eeES\u7684 9200\u30019300\u7aef\u53e3\uff08\u5728Center\u670d\u52a1\u5668\u547d\u4ee4\u884c\u7a97\u53e3\u6267\u884c\u201dcurl ESIP:9200\u201d,\u201dtelnet ESIP 9300\u201d\uff0c\u5982\u6709\u4e0b\u56fe\u8fd4\u56de\u7ed3\u679c\u5373\u53ef\u6210\u529f\u914d\u7f6eES\u670d\u52a1\u5668\uff09\u3002<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc1021\"><\/a><strong><b><a name=\"_Toc16707\"><\/a><a name=\"_Toc3263\"><\/a><a name=\"_Toc6037\"><\/a>2.3.3\u95ee\u9898\u63cf\u8ff0\uff1a\u5b89\u88c5Server\u670d\u52a1\u5668\u540e\u5728\u7ba1\u7406\u5e73\u53f0\u770b\u4e0d\u5230\u8be5\u670d\u52a1\u5668<\/b><\/strong><strong><b>\u4e0a\u62a5<\/b><\/strong><\/p>\n<p><strong><b>\u00a0<\/b><\/strong><strong>\u5904\u7406\u6b65\u9aa4\uff1a<\/strong>\u8bf7\u68c0\u67e5\u662f\u5426\u5728Server\u7684\u914d\u7f6e\u6587\u4ef6\u4e2d\u6b63\u786e\u914d\u7f6e\u4e86\u63a7\u5236\u53f0\u7684IP\uff08\u8bf7\u5728Server\u670d\u52a1\u5668\u547d\u4ee4\u884c\u7a97\u53e3\uff0c\u67e5\u770b\u201d\/etc\/auditsys\/server\/server.conf\u201d\u914d\u7f6e\u6587\u4ef6\uff0c\u5982\u56fe\uff09\u3002<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc22215\"><\/a><strong><b><a name=\"_Toc1518\"><\/a><a name=\"_Toc13505\"><\/a><a name=\"_Toc9150\"><\/a>2.3.4\u95ee\u9898\u63cf\u8ff0\uff1a\u5b89\u88c5\u7edf\u8ba1\u670d\u52a1\u5668\u540e\u5728\u7ba1\u7406\u5e73\u53f0\u770b\u4e0d\u5230\u8be5\u670d\u52a1\u5668<\/b><\/strong><\/p>\n<p><strong><b>\u00a0\u00a0<\/b><\/strong><strong>\u5904\u7406\u6b65\u9aa4\uff1a<\/strong>\u8bf7\u68c0\u67e5\u662f\u5426\u5728\u7edf\u8ba1\u670d\u52a1\u5668\u7684\u914d\u7f6e\u6587\u4ef6\u4e2d\u6b63\u786e\u914d\u7f6e\u4e86\u63a7\u5236\u53f0\u7684IP\u8bf7\u5728StatisticServer\u670d\u52a1\u5668\u547d\u4ee4\u884c\u7a97\u53e3\uff0c\u67e5\u770b\u201d\/etc\/auditsys\/server\/server.conf\u201d\u914d\u7f6e\u6587\u4ef6\uff0c\u5982\u56fe\uff09\u3002<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc15085\"><\/a><strong><b><a name=\"_Toc13770\"><\/a><a name=\"_Toc10873\"><\/a><a name=\"_Toc18744\"><\/a>2.3.5\u95ee\u9898\u63cf\u8ff0\uff1a\u5b89\u88c5\u5ba2\u6237\u7aef\u540e\u672a\u4e0a\u62a5\u5230\u7ba1\u7406\u5e73\u53f0<\/b><\/strong><\/p>\n<p><strong><b>\u00a0\u00a0<\/b><\/strong><strong>\u5904\u7406\u6b65\u9aa4\uff1a<\/strong><\/p>\n<ol>\n<li>\u8bf7\u68c0\u67e5\u5ba2\u6237\u7aef\u914d\u7f6e\u662f\u5426\u6b63\u786e,\u5982\u56fe\uff1a<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol start=\"2\">\n<li>\u662f\u5426\u80fd\u8bbf\u95ee\u63a7\u5236\u53f0\u7684443\u7aef\u53e3\uff08\u5728cmd\u6267\u884c\u201dtelnet centerIP 443\u201c, \u5982\u56fe\uff09\u3002<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc27519\"><\/a><strong><b><a name=\"_Toc20846\"><\/a><a name=\"_Toc19272\"><\/a><a name=\"_Toc2651\"><\/a>2.3.6\u95ee\u9898\u63cf\u8ff0\uff1a\u5ba2\u6237\u7aef\u4e0a\u62a5\u540e\u5728\u68c0\u7d22\u754c\u9762\u770b\u4e0d\u5230\u8be5\u5ba2\u6237\u7aef\u7684\u64cd\u4f5c<\/b><\/strong><\/p>\n<p><strong><b>\u00a0\u00a0<\/b><\/strong><strong>\u5904\u7406\u6b65\u9aa4\uff1a<\/strong>\u8bf7\u68c0\u67e5\u662f\u5426\u6709Server\u670d\u52a1\u5668\u63a5\u6536\u8be5\u7ec8\u7aef\u6240\u5728\u7ec4\u7ec7\u6216IP\u6bb5\u4ea7\u751f\u7684\u4f1a\u8bdd\u3002\u8be6\u7ec6\u6b65\u9aa4\u5982\u4e0b\uff1a<\/p>\n<ol>\n<li>\u68c0\u67e5\u7ec8\u7aef\u662f\u5426\u5728\u670d\u52a1\u5668\u63a5\u6536\u8303\u56f4\uff1a\u767b\u5f55AuditSys\u7cfb\u7edf\u7ba1\u7406\u9875\u9762\uff0c\u4f9d\u6b21\u70b9\u51fb\u7ba1\u7406-\u7ec8\u7aef\uff0c\u68c0\u67e5\u8be5\u7ec8\u7aef\u662f\u5426\u5728\u670d\u52a1\u5668\u63a5\u6536\u7ec4\u7ec7\u6216IP\u8303\u56f4\u5185\uff0c\u5982\u4e0d\u5728\u7ec4\u7ec7\u5185\uff0c\u70b9\u51fb\u5e76\u52fe\u9009\u7ec8\u7aef\u540e\uff0c\u70b9\u51fb\u201d\u7ed1\u5b9a\u7ec4\u7ec7\u6309\u94ae\u201c\u6765\u91cd\u65b0\u7ed1\u5b9a\u7ec4\u7ec7\u3002<\/li>\n<li>\u68c0\u67e5\u670d\u52a1\u5668\u63a5\u6536\u7684\u7ec4\u7ec7\u6216IP\u6bb5\u8303\u56f4\uff1a\u767b\u5f55AuditSys\u7cfb\u7edf\u7ba1\u7406\u9875\u9762\uff0c\u4f9d\u6b21\u70b9\u51fb\u7cfb\u7edf-\u670d\u52a1\u5668-\u7f16\u8f91\u6309\u94ae,\u67e5\u770b\u201d\u57fa\u7840\u914d\u7f6e\u201c\u4e2d\u7684\u7ec4\u7ec7\u6216IP\u6bb5\u662f\u5426\u914d\u7f6e\u6b63\u786e\uff0c\u6b63\u786e\u914d\u7f6e\u540e\u70b9\u51fb\u4e0b\u65b9\u4fdd\u5b58\u6309\u94ae\u9000\u51fa\u3002<\/li>\n<li>\u68c0\u67e5\u7ec8\u7aef\u64cd\u4f5c\u8bb0\u5f55\uff1a\u5728\u5e73\u53f0\u7ba1\u7406\u754c\u9762\uff0c\u4f9d\u6b21\u70b9\u51fb\u68c0\u7d22-\u4f1a\u8bdd\u68c0\u7d22\uff0c\u67e5\u770b\u662f\u5426\u6709\u7ec8\u7aef\u64cd\u4f5c\u7684\u4f1a\u8bdd\u8bb0\u5f55\u3002\u82e5\u4ecd\u672a\u6b63\u786e\u663e\u793a\uff0c\u8bf7\u79fb\u52a8\u81f33.2\uff0c\u6b63\u786e\u914d\u7f6eES\u670d\u52a1\u5668\u3002<\/li>\n<\/ol>\n<p><a name=\"_Toc10557\"><\/a><strong><b><a name=\"_Toc22555\"><\/a><a name=\"_Toc6008\"><\/a><a name=\"_Toc26108\"><\/a>2.3.7\u95ee\u9898\u63cf\u8ff0\uff1a\u62a5\u8868\u90ae\u4ef6\u53d1\u9001\u5931\u8d25<\/b><\/strong><\/p>\n<p><strong><b>\u00a0\u00a0<\/b><\/strong><strong>\u5904\u7406\u6b65\u9aa4\uff1a<\/strong>\u8bf7\u68c0\u67e5\u90ae\u4ef6\u914d\u7f6e\u662f\u5426\u6b63\u786e\u3002(\u901a\u8fc7\u6d4f\u89c8\u5668\u8fdb\u5165center\u7ba1\u7406\u9875\u9762\u540e\uff0c\u70b9\u51fb\u7cfb\u7edf-\u90ae\u4ef6\u901a\u77e5\uff0c\u67e5\u770b\u90ae\u4ef6\u914d\u7f6e\u5185\u5bb9\u662f\u5426\u6b63\u786e\uff0c\u5e76\u53ef\u70b9\u51fb\u201d\u6d4b\u8bd5\u90ae\u4ef6\u53d1\u9001\u201c\u6d4b\u8bd5\u90ae\u4ef6\u662f\u5426\u80fd\u6b63\u5e38\u53d1\u9001\u3002\u82e5\u4ecd\u53d1\u9001\u5931\u8d25\uff0c\u8bf7\u68c0\u67e5\u60a8\u516c\u53f8\u90ae\u7bb1\u8bbe\u7f6e\u6216\u67e5\u770b\u672c\u6587\u68632.4\u8054\u7cfb\u6280\u672f\u5de5\u7a0b\u5e08\u89e3\u51b3)<\/p>\n<p>&nbsp;<\/p>\n<p><a name=\"_Toc25255\"><\/a><strong><b>2.3.8\u95ee\u9898\u63cf\u8ff0\uff1a\u5f55\u5c4f\u4e0d\u80fd\u6b63\u5e38\u64ad\u653e<\/b><\/strong><\/p>\n<p><strong>\u00a0\u00a0\u5904\u7406\u6b65\u9aa4\uff1a<\/strong>\u8bf7\u53c2\u7167\u672c\u6587\u68632.2.3\u4e2dreplay-server\u90e8\u5206\uff0c\u91cd\u542f\u8be5\u670d\u52a1\u8fdb\u7a0b\u3002<\/p>\n<p><a name=\"_Toc2675\"><\/a><strong><b><a name=\"_Toc1451\"><\/a><a name=\"_Toc30884\"><\/a><a name=\"_Toc25897\"><\/a><a name=\"_Toc32104\"><\/a><a name=\"_Toc15479\"><\/a>2.4 AuditSys\u6280\u672f\u652f\u6301\u8054\u7cfb\u65b9\u5f0f<\/b><\/strong><\/p>\n<p>\u672c\u624b\u518c\u53ea\u662f\u5bf9\u4e00\u4e9b\u7b80\u5355\u95ee\u9898\u7684\u65e5\u5e38\u7ef4\u62a4\u4ecb\u7ecd\uff0c\u5bf9\u4e8e\u65e0\u6cd5\u5904\u7406\u7684\u95ee\u9898\uff0c\u5efa\u8bae\u54a8\u8be2\u6211\u4eec\uff0c\u534e\u590f\u5a01\u79d1\u63d0\u4f9b\u5f3a\u5927\u7684\u7ef4\u62a4\u670d\u52a1\u3002\u8054\u7cfb\u65b9\u5f0f\u5982\u4e0b\uff1a<\/p>\n<table>\n<tbody>\n<tr>\n<td width=\"315\"><strong>\u89d2\u8272<\/strong><\/td>\n<td width=\"196\"><strong>\u59d3\u540d<\/strong><\/td>\n<td width=\"278\"><strong>\u8054\u7cfb\u65b9\u5f0f<\/strong><\/p>\n<p><strong>\uff08\u5ea7\u673a\u53ca\u624b\u673a\uff09<\/strong><\/td>\n<td width=\"376\"><strong>EMAIL<\/strong><\/td>\n<\/tr>\n<tr>\n<td width=\"315\">\u534e\u590f\u5a01\u79d1\u9500\u552e<\/td>\n<td width=\"196\">\u7530\u96ea\u6770<\/td>\n<td width=\"278\">18138735927<\/td>\n<td width=\"376\">tianxj@sinobigdata.net<\/td>\n<\/tr>\n<tr>\n<td width=\"315\">\u534e\u590f\u5a01\u79d1\u9879\u76ee\u7ecf\u7406<\/td>\n<td width=\"196\">\u9676\u7136<\/td>\n<td width=\"278\">13632771505<\/td>\n<td width=\"376\">taor@sino-vt.com<\/td>\n<\/tr>\n<tr>\n<td width=\"315\">\u534e\u590f\u5a01\u79d1\u6280\u672f\u5de5\u7a0b\u5e08<\/td>\n<td width=\"196\">\u7533\u6770\u9b41<\/td>\n<td width=\"278\">13332908174<\/td>\n<td width=\"376\">shenjk@sino-vt.com<\/td>\n<\/tr>\n<tr>\n<td width=\"315\">\u534e\u590f\u5a01\u79d1\u6280\u672f\u5de5\u7a0b\u5e08<\/td>\n<td width=\"196\">\u82cf\u5e86\u4e91<\/td>\n<td width=\"278\">18062447335<\/td>\n<td width=\"376\">suqy@sino-vt.com<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"excerpt":{"rendered":"<p>\u76ee\u5f55 1.\u5f15\u8a00 1.1 \u6982\u8ff0 1.2 \u76f8\u5173\u672f\u8bed 1.3 \u624b\u518c\u4f7f\u7528\u8bf4\u660e 2.AuditSys\u7ef4\u62a4\u4ecb\u7ecd 2.1\u00a0A [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-234","post","type-post","status-publish","format-standard","hentry","category-auditsys"],"_links":{"self":[{"href":"http:\/\/learning.sino-vt.com:8988\/index.php\/wp-json\/wp\/v2\/posts\/234","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/learning.sino-vt.com:8988\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/learning.sino-vt.com:8988\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/learning.sino-vt.com:8988\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/learning.sino-vt.com:8988\/index.php\/wp-json\/wp\/v2\/comments?post=234"}],"version-history":[{"count":1,"href":"http:\/\/learning.sino-vt.com:8988\/index.php\/wp-json\/wp\/v2\/posts\/234\/revisions"}],"predecessor-version":[{"id":235,"href":"http:\/\/learning.sino-vt.com:8988\/index.php\/wp-json\/wp\/v2\/posts\/234\/revisions\/235"}],"wp:attachment":[{"href":"http:\/\/learning.sino-vt.com:8988\/index.php\/wp-json\/wp\/v2\/media?parent=234"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/learning.sino-vt.com:8988\/index.php\/wp-json\/wp\/v2\/categories?post=234"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/learning.sino-vt.com:8988\/index.php\/wp-json\/wp\/v2\/tags?post=234"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}