业务
角色和责任
入职培训
MFW-V 安装
| Activity | Equinix | Customer |
|---|---|---|
| Virtual Machine resources (compute, storage and networking) for the virtual firewall on MPC | RA | I |
| Virtual Firewall appliance software, licenses and support | RA | I |
| Equinix management environment for firewall management including Self-Service & Analyzing portal | RA | I |
MFW-P 安装
| Activity | Equinix | Customer |
|---|---|---|
| Provide power and rackspace for the Physical Firewalls (Customer Licensed Space), Rack Firewalls and cabling, Provide cross-connects, etc. | CI | RA |
| Provide power and rackspace for the Physical Firewalls (EMS Licensed Space), Rack Firewalls and cabling, Provide cross-connects, etc. | RA | I |
| Provide firewall appliances including software and licenses | RA | I |
| Equinix management environment for firewall management including Self-Service & Analyzing portal | RA | I |
MFW-V 和 MFW-P 配置
| Activity | Equinix | Customer |
|---|---|---|
| Firewall-appliance basic configuration, Network interfaces, network settings and hardening | RA | I |
| Set up firewall monitoring and logging to Analyzer-Portal | RA | I |
| Setup customer accounts on portal for access to logging, reporting and self-service | RA | CI |
| Defining initial firewall rule-set | CI | RA |
| Loading initial firewall rule-set trough Self-Service | CI | RA |
| Loading initial firewall rule-set trough Service Request | RA | CI |
接受服务
| Activity | Equinix | Customer |
|---|---|---|
| Testing the configuration and failover as part of operational management | RA | CI |
| Functional testing | CI | RA |
运行
| Activity | Equinix | Customer |
|---|---|---|
| Service desk | RA | CI |
| Maintenance of the firewall-appliance (hardware/software break & fix, software updates, security patches) | RA | I |
| 24x7 monitoring of the virtual firewall (health checks) | RA | I |
| Back-up and management of log files and rule base | RA | I |
| Submitting Service Request via the Portal | CI | RA |
| Implementation of Changes in accordance with change process based on Service Requests | RA | CI |
| Interpretation of security events | RA |
**重要提示:**客户负责防火墙规则集和策略、可选的 VPN 连接配置以及服务器负载均衡配置。Equinix 仅根据客户的指示实施更改。
报告和管理
报告和分析
客户可以通过门户查看和保存网络流量和安全事件报告。自助服务门户提供可自定义的交互式控制面板,通过直观的图表(参见图中示例)快速识别网络流量、威胁、应用程序等问题。它是一个全面的监控系统,将实时数据和历史数据整合到一个概览中。
您可以使用 70 多个内置模板以及 2000 多个组合的即用型数据集、图表和宏来生成自定义数据报告,用于异常检测、威胁评估等分析。这些报告可以直接运行(按需运行)或按计划运行(定时运行),并可选配自动电子邮件通知。报告格式灵活,可选择 PDF、HTML、CSV、XML 和 JSON。
安全事件
客户的安全团队可以监控和管理来自防火墙的警报和事件日志,并以分析师可以轻松理解的格式处理和关联事件。
服务可用性
不同服务选项的可用服务如下。
| Service Option | Availability |
|---|---|
| MFW-V and MFW-P1 standard service | 99.9% |
| MFW-V and MFW-P1 Stretched deployment option | 99.95% |
**注意:**对于 MFW-P,可用性取决于客户特定网络的设计以及 IBX 数据中心之间的连接。
请参阅Managed Solutions产品政策,了解如何计算 SLA,以及当物理设备放置在客户许可的IBX空间中时适用哪些排除条款。