[
¥È¥Ã¥×
] [
¿·µ¬
|
°ìÍ÷
|
ºÇ½ª¹¹¿·
|
¥Ø¥ë¥×
]
AND
OR
³«»Ï¹Ô:
*IceWall [#c8dc05b7]
-[[IceWall¤È¤Ï>#n4278de5]]
-[[IceWall¤Î´ðËܹ½À®>#z77d9c60]]
-[[¥¤¥ó¥¹¥È¡¼¥ë>#e0738a74]]
-[[IceWall¥·¥¹¥Æ¥àÍѥơ¼¥Ö¥ë¤ÎºîÀ®>#pc05ff7b]]
-[[ºîÀ®¤·¤¿¥Æ¡¼¥Ö¥ë¤È¥«¥é¥à¤ò¥Þ¥Ã¥Ô¥ó¥°¤¹¤ë>#keb3a188]]
-[[IceWall¥æ¡¼¥¶¡¼¤ÎºîÀ®>#c5586754]]
-[[ǧ¾Ú¥â¥¸¥å¡¼¥ë¤Î´ðËÜÀßÄê>#cdb69694]]
-[[¥¢¥¯¥»¥¹¥°¥ë¡¼¥×¤ÎÄêµÁ>#o553c95f]]
-[[¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤Î¥¢¥¯¥»¥¹ÄêµÁ>#v457fe23]]
-[[ǧ¾Ú¥â¥¸¥å¡¼¥ë¤ÎÀ©¸æ>#h7c6e56c]]
-[[¥Õ¥©¥ï¡¼¥À¤ÎÀßÄê>#r5b409ce]]
-[[¾ðÊó·Ñ¾µµ¡Ç½>#w64ea4e8]]
-[[¥Õ¥©¥ï¡¼¥À¤Î¥¢¥¯¥»¥¹¥í¥°>#p11d3513]]
-[[ǧ¾Ú¥â¥¸¥å¡¼¥ë¤Î¥¢¥¯¥»¥¹¥í¥°>#uf812098]]
~
**IceWall¤È¤Ï [#n4278de5]
Web¥Ù¡¼¥¹¤Î¥·¥ó¥°¥ë¥µ¥¤¥ó¥ª¥óÀ½Éʤǡ¢Web¥µ¡¼¥Ð¡¼¤Îǧ¾Ú¤ò...
¾ðÊó·Ñ¾µµ¡Ç½¤ò»È¤¦¤³¤È¤Ç¡¢Web¥µ¡¼¥Ð¡¼¤Ø¤Îǧ¾Ú¤ÏIceWall¤Ë...
¤½¤ì¤¾¤ì¤ÎWeb¥µ¡¼¥Ð¡¼¤ËÂФ¹¤ë¥¢¥¯¥»¥¹¸¢¸Â¤Ë¤Ä¤¤¤Æ¤â°ì¸µ´É...
~
**IceWall¤Î´ðËܹ½À® [#z77d9c60]
&ref(icewall_summary.png);
|BGCOLOR(#f0f8ff):CENTER:¥µ¡¼¥Ð¡¼|BGCOLOR(#f0f8ff):CENTER...
|¥Õ¥©¥ï¡¼¥À|dfw|¥ê¥Ð¡¼¥¹¥×¥í¥¥·¤È¤·¤Æ¥¯¥é¥¤¥¢¥ó¥È¤È¥Ð¥Ã...
|ǧ¾Ú¥â¥¸¥å¡¼¥ë|certd|¥æ¡¼¥¶¡¼¾ðÊó¡¢¥¢¥¯¥»¥¹À©¸æ¡¢¥í¥°¥¤...
|ǧ¾ÚDB|Oracle¤Ê¤É|IceWall¤Î¥¢¥«¥¦¥ó¥È¤ò´ÉÍý¤¹¤ë|
|¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼|httpd|¥Õ¥©¥ï¡¼¥À¤«¤éžÁ÷¤µ¤ì¤ëWeb¥µ...
***¥Õ¥©¥ï¡¼¥À¤ÎÄÌ¿®¥È¥é¥ó¥¶¥¯¥·¥ç¥ó [#s221b096]
¡¥¯¥é¥¤¥¢¥ó¥È¤«¤é¥Õ¥©¥ï¡¼¥À¤Ø¥¢¥¯¥»¥¹¤·¡¢¥í¥°¥¤¥ó¥Õ¥©¡¼¥à...
¢¥æ¡¼¥¶¡¼¤È¥Ñ¥¹¥ï¡¼¥É¤òÆþÎϤ·Ç§¾Ú¥µ¡¼¥Ð¡¼¤ØÅϤµ¤ì¤ë~
£Ç§¾Ú¥µ¡¼¥Ð¡¼¤¬Ç§¾ÚDB¤ØÌ䤤¹ç¤ï¤»Àµµ¬¥æ¡¼¥¶¡¼¤«³Îǧ¤·¡¢Ìä...
¡¡ÉÔÍפÊDB¥¢¥¯¥»¥¹¤òÈò¤±¤ë°Ù¡¢certd¤Ï¥ª¥ó¥á¥â¥ê¤Ç¼èÆÀ¤·¤¿...
¡¡¥«¥é¥à¤¬Â¿¤±¤ì¤Ð¿¤¤Äø¡¢¥á¥â¥ê¤ò¿©¤¦¤Î¤ÇÉÔÍפʥ«¥é¥à¤Ï...
¤¥Õ¥©¥ï¡¼¥À¤Èǧ¾Ú¥µ¡¼¥Ð¡¼¤Ï²èÌÌÁ«°Ü¤ÎÅ٤˳ºÅö¥Ú¡¼¥¸¤ËÂФ¹...
¥¥¢¥¯¥»¥¹¸¢¸Â¤¬¤¢¤ì¤Ð¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¥Õ¥©¥ï¡¼¥É¤·WE...
~
**¥¤¥ó¥¹¥È¡¼¥ë [#e0738a74]
Á´¤Æ/opt/icewall-sso/¥Ç¥£¥ì¥¯¥È¥ê°Ê²¼¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤ë
rpm -iv --nodeps IceWall-SSO-certd_<ǧ¾Ú·Á¼°>_<¥Ð¡¼¥¸¥ç...
rpm -iv --nodeps IceWall-SSO-dfw_<¥Ð¡¼¥¸¥ç¥ó>_<¥¢¡¼¥¥Æ...
chown -R iwadmin /opt/icewal-sso/certd¡¡¡¡¡¡¡¡¡Å¡Åcertd¤ò...
chown -R apache:apache /opt/icewall-sso/dfw¡¡ ¡Å¡ÅApache¤ò...
***Apache¤ÎÀßÄê [#g9aefe1f]
httpd.conf¤Ë°Ê²¼¤Îʸ¸À¤òÄɲ乤ë
Alias /img/ "/opt/icewall-sso/dfw/html/image/"
SetEnv LD_LIBRARY_PATH "/opt/icewall-sso/lib/dfw:/usr/li...
ScriptAlias /fw/ "/opt/icewall-sso/dfw/cgi-bin/"
<Directory "/opt/icewall-sso/dfw/cgi-bin/">
AllowOverride All
Options ExecCGI
SetHandler cgi-script
Order allow,deny
Allow from all
</Directory>
***¥Ç¥£¥ì¥¯¥È¥ê¹½À® [#qed5d085]
/opt/icewall-sso/
¡¡certd¡¡¡¡¡¡¡¡¡¡¡¡Ç§¾Ú¥â¥¸¥å¡¼¥ë
¡¡¡¡bin¡¡¡¡¡¡¡¡¡¡¡¡Ç§¾Ú¥â¥¸¥å¡¼¥ë¤Î¥×¥í¥°¥é¥à¤ä¥¹¥¯¥ê¥×¥È
¡¡¡¡config¡¡¡¡¡¡¡¡ ǧ¾Ú¥â¥¸¥å¡¼¥ë¤ÎÀßÄê¥Õ¥¡¥¤¥ë
¡¡dfw¡¡¡¡¡¡¡¡¡¡¡¡¡¡¥Õ¥©¥ï¡¼¥À
¡¡¡¡cgi-bin¡¡¡¡¡¡¡¡¥Õ¥©¥ï¡¼¥À¤ÎCGI¥×¥í¥°¥é¥àµÚ¤ÓÀßÄê¥Õ¥¡...
¡¡¡¡chtml¡¡¡¡¡¡¡¡¡¡¥í¥°¥¤¥ó¤ä¥¨¥é¡¼²èÌ̤Υ³¥ó¥Æ¥ó¥Ä¡Ê·È...
¡¡¡¡html¡¡¡¡¡¡¡¡¡¡ ¥í¥°¥¤¥ó¤ä¥¨¥é¡¼²èÌ̤Υ³¥ó¥Æ¥ó¥Ä¡ÊPC...
~¡¡¡¡
**IceWall¥·¥¹¥Æ¥àÍѥơ¼¥Ö¥ë¤ÎºîÀ® [#pc05ff7b]
$ cd /opt/ice-wall/tools
$ sqlplus UID/PASS@oracleSID
SQL > @cre_tbl_test.sql¡¡¡¡¡¡ ¡Å¡ÅICEWALLTEST¥Æ¡¼¥Ö¥ë¤òºî...
SQL > @cre_tbl_history.sql¡¡¡¡¡Å¡ÅHISTORY¥Æ¡¼¥Ö¥ë¤òºîÀ®¤¹¤ë
SQL > @cre_sequence.sql
ICEWALLTEST¡¡¤Î¥«¥é¥à
̾Á° NULL? ·¿
-------------------------------- -------- --------------...
USERID NOT NULL VARCHAR2(20)
PASSWD NOT NULL CHAR(37)
PASSCHANGE NOT NULL CHAR(1)
PASSWDEXP CHAR(14)
PASSWDHIS CHAR(37)
CHGDATE CHAR(14)
LOGONDATE CHAR(14)
LASTDATE CHAR(14)
LOGONFAIL CHAR(14)
FAILCOUNT NOT NULL NUMBER(38)
LOCKOUT NOT NULL CHAR(1)
LOGONSTOP NOT NULL CHAR(1)
LOCKDATE CHAR(14)
LOGSTATUS NOT NULL CHAR(1)
~
**ºîÀ®¤·¤¿¥Æ¡¼¥Ö¥ë¤È¥«¥é¥à¤ò¥Þ¥Ã¥Ô¥ó¥°¤¹¤ë [#keb3a188]
¤É¤Î¥«¥é¥à¤ò¥æ¡¼¥¶¡¼Ì¾¡¢¥Ñ¥¹¥ï¡¼¥É¤È¤¹¤ë¤«ÄêµÁ¤·¡¢IceWall...
&color(#FF00FF){¡Ú¥Õ¥¡¥¤¥ë¡Û}; &color(#0000FF){/opt/icewa...
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){¹àÌÜ=DB¦...
UID=USERID¡¡¡¡¡¡¡¡¡¡¡¡ ¥æ¡¼¥¶¡¼ID
PASSWORD=PASSWD¡¡¡¡¡¡¡¡¥Ñ¥¹¥ï¡¼¥É
PWDEXPDATE=PASSWDEXP¡¡ ¥Ñ¥¹¥ï¡¼¥É͸ú´ü¸Â
PWDHISTORY=PASSWDHIS¡¡ ¥Ñ¥¹¥ï¡¼¥ÉÍúÎò
PCHGOK=PASSCHANGE¡¡¡¡¡¡¥Ñ¥¹¥ï¡¼¥ÉÊѹ¹ON/OFF¡Ê1¤ÇON¡Ë
PCHGDATE=CHGDATE¡¡¡¡¡¡ ¥Ñ¥¹¥ï¡¼¥ÉÊѹ¹Æü
PLOGINDATE=LOGONDATE¡¡ ¥í¥°¥¤¥ó»þ¹ï
LLOGINDATE=LASTDATE¡¡¡¡ºÇ½ª¥í¥°¥¤¥ó»þ¹ï
FLOGINDATE=LOGONFAIL¡¡ ¥í¥°¥¤¥ó¼ºÇÔ»þ¹ï
PWDRETRY=FAILCOUNT¡¡¡¡ ¥Ñ¥¹¥ï¡¼¥É¥ê¥È¥é¥¤²ó¿ô
PWDLOCK=LOCKOUT¡¡¡¡¡¡¡¡¥¢¥«¥¦¥ó¥È¥í¥Ã¥¯Í̵¡Ê1¤Ç¥í¥Ã¥¯¡Ë
LOGINOK=LOGONSTOP¡¡¡¡¡¡¥í¥°¥¤¥óOK/NG¡Ê1¤ÇOK¡Ë
LOCKDATE=LOCKDATE¡¡¡¡¡¡¥¢¥«¥¦¥ó¥È¥í¥Ã¥¯»þ¹ï
LOGINSTAT=LOGSTATUS¡¡¡¡¥í¥°¥¤¥ó¥¹¥Æ¡¼¥¿¥¹¡Ê1¤Ç¥í¥°¥¤¥óÃæ¡Ë
~
**IceWall¥æ¡¼¥¶¡¼¤ÎºîÀ® [#c5586754]
/opt/icewal-sso/tools/°Ê²¼¤Î3¤Ä¤Î¥Õ¥¡¥¤¥ë¤ò»ÈÍѤ¹¤ë~
DATA.txt¡¡¡¡¡¡TEMPLATE.sql¤Ë°ú¤ÅϤ¹¥Ñ¥é¥á¡¼¥¿¤ò¥«¥ó¥Þ¶è...
TEMPLATE.sql¡¡TABLE¤ËINSERT¤¹¤ëSQLʸ¡£DATA.txt¤ÇÅϤµ¤ì¤¿...
|BGCOLOR(#f0f8ff):CENTER:¥¡¼¥ï¡¼¥É|BGCOLOR(#f0f8ff):CENT...
|$n$|n¥«¥é¥àÌܤΥǡ¼¥¿¤ËÃÖ´¹|
|$mn$|n¥«¥é¥àÌܤΥǡ¼¥¿¤òMD5¤Ç¥Ï¥Ã¥·¥å¤·¤¿ÃͤÇÃÖ´¹¡ÊOracl...
|$sn$|n¥«¥é¥àÌܤΥǡ¼¥¿¤òSHA1¤Ç¥Ï¥Ã¥·¥å¤·¤¿ÃͤÇÃÖ´¹¡ÊLDAP...
|$hn$|n¥«¥é¥àÌܤΥǡ¼¥¿¤òSHA256¤Ç¥Ï¥Ã¥·¥å¤·¤¿ÃͤÇÃÖ´¹|
|$an$|n¥«¥é¥àÌܤΥǡ¼¥¿¤òÀ½ÉÊɸ½à·Á¼°(¸°Ä¹128bit)¤Ç°Å¹æ²½...
|$bn$|n¥«¥é¥àÌܤΥǡ¼¥¿¤òÀ½ÉÊɸ½à·Á¼°(¸°Ä¹256bit)¤Ç°Å¹æ²½...
# ./mkuser TEMPLATE.sql DATA.txt > outputfile.sql
$ sqlplus UID/PASS@oracleSID @outputfile.sql
~
**ǧ¾Ú¥â¥¸¥å¡¼¥ë¤Î´ðËÜÀßÄê [#cdb69694]
»ÈÍѤ¹¤ëDBµÚ¤ÓTABLE¤òÄêµÁ¤¹¤ë¡£ÄêµÁÆâÍƤϥե¡¥¤¥ë̾¤ËÀâÌÀ...
&color(#FF00FF){¡Ú¥Õ¥¡¥¤¥ë¡Û}; &color(#0000FF){/opt/icewa...
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){¥«¥é¥à=ÃÍ}...
***IceWallǧ¾Ú¤Ë´Ø¤¹¤ëÀßÄê [#zb82ddc8]
|BGCOLOR(#f0f8ff):CENTER:¥«¥é¥à|BGCOLOR(#f0f8ff):CENTER:...
|DBHOST|OracleSID|
|DBUID|¥í¥°¥¤¥ó¥æ¡¼¥¶¡¼(certdºÆµ¯Æ°¸å¡¢°Å¹æ²½¤µ¤ì¤ë¤Î¤ÇÊ¿...
|DBPWD|¥Ñ¥¹¥ï¡¼¥É(certdºÆµ¯Æ°¸å¡¢°Å¹æ²½¤µ¤ì¤ë¤Î¤Çʿʸ¤Çµ...
|DBTBL|¥Æ¡¼¥Ö¥ë̾¡Ê¥Ç¥Õ¥©¥ë¥È¤Ïicewalltest¡Ë|
|DBEXATTR|Æȼ«¤Ë»ÈÍѤ¹¤ë¥«¥é¥à¤òÄɲ乤ë¾ì¹ç¤Ë,¶èÀÚ¤ê¤Ç¥«...
***¥í¥°¤Ë´Ø¤¹¤ëÀßÄê [#hd8f6fba]
|BGCOLOR(#f0f8ff):CENTER:¥«¥é¥à|BGCOLOR(#f0f8ff):CENTER:...
|ALEVEL|¥¢¥¯¥»¥¹¥í¥°¥ì¥Ù¥ë»ØÄê¡Ê¢Ä㤤 0¡Á4¡¡¢¬¹â¤¤¡Ë|
|ELEVEL|¥¨¥é¡¼¥í¥°¥ì¥Ù¥ë»ØÄê¡Ê¢Ä㤤 0¡Á4¡¡¢¬¹â¤¤¡Ë|
|ACCESS|¥¢¥¯¥»¥¹¥í¥°¤Î¾ì½ê|
|ERROR|¥¨¥é¡¼¥í¥°¤Î¾ì½ê|
***¥í¥°¥¤¥ó¥í¥°¥¢¥¦¥È¡¦¥Ñ¥¹¥ï¡¼¥É¥Ý¥ê¥·¡¼¤Ë´Ø¤¹¤ëÀßÄê [#d...
|BGCOLOR(#f0f8ff):CENTER:¥«¥é¥à|BGCOLOR(#f0f8ff):CENTER:...
|COOKIEEXP|¼«Æ°¥í¥°¥¢¥¦¥ÈÀßÄê¡Ê1¤Ç͸ú¡Ë|
|COOKIETIME|¾åµ¤¬Í¸ú¤Î¾ì¹ç¤Î´ü¸Â¡Êʬ¡Ë|
|LOMETHOD|¼«Æ°¥í¥°¥¢¥¦¥È¤Î͸ú´ü¸Â¤Î¹Í¤¨Êý¡Ê0¤Ç¥í¥°¥¤¥ó¤«...
|DUPLOGIN|Ʊ°ìID¤Ç¤Î¿½Å¥í¥°¥¤¥óÀßÄê¡Ê1¤Çµö²Ä¡Ë|
|PWDMINLEN|¿·¤·¤¤¥Ñ¥¹¥ï¡¼¥É¤ÎºÇ½ªÊ¸»ú¿ô|
|PWDMAXLEN|¿·¤·¤¤¥Ñ¥¹¥ï¡¼¥É¤ÎºÇÂçʸ»ú¿ô|
|PWDSAMEPASS|UID¤ÈƱ¤¸¥Ñ¥¹¥ï¡¼¥É¤òǧ¤á¤ë¤«Èݤ«¡Ê1¤ÇÉÔµö²Ä...
|PWDALPHANUM|¿·¤·¤¤¥Ñ¥¹¥ï¡¼¥É¤Ç»ÈÍѲÄǽ¤Êʸ»ú¤Î»ÈÍѥݥꥷ...
|LOCKCOUNT|¥Ñ¥¹¥ï¡¼¥É¥¨¥é¡¼¤¬Â³¤¤¤¿¾ì¹ç¤Ë¥í¥Ã¥¯¤µ¤ì¤ë¥¨¥é...
|PWDEXPCHK|¥Ñ¥¹¥ï¡¼¥ÉÊѹ¹¸å¤Î͸ú´ü¸Â¤òÀߤ±¤ë¤«¡Ê1¤Ç͸ú...
|PWDEXPIRE|¥Ñ¥¹¥ï¡¼¥É͸ú´ü¸ÂÀÚ¤ì¤Þ¤Ç¤ÎÆü¿ô|
|PWDEXPWARN|¥Ñ¥¹¥ï¡¼¥É͸ú´ü¸ÂÀڤ줬¶á¤Å¤¤¤¿ºÝ¤Ë·Ù¹ð²èÌÌ...
|PWDHISCHK|¥Ñ¥¹¥ï¡¼¥É¤ÎÍúÎò¥Á¥§¥Ã¥¯¡Ê1¤Ç͸ú¡Ë|
|PWDHISCNT|¥Ñ¥¹¥ï¡¼¥É¤ÎÍúÎòÊÝ»ý·ï¿ô¤ò1¡Á20¤Ç»ØÄê|
|PWDFORBID|¥Ñ¥¹¥ï¡¼¥É¤È¤·¤Æ»ÈÍѤǤ¤Ê¤¤¥ï¡¼¥É¤Î¥Ç¥£¥¯¥·¥ç...
***¥Ñ¥Õ¥©¡¼¥Þ¥ó¥¹Ä´À°¤Ë´Ø¤¹¤ëÀßÄê [#ue173658]
|BGCOLOR(#f0f8ff):CENTER:¥«¥é¥à|BGCOLOR(#f0f8ff):CENTER:...
|MAXDBCONNECT|DB¤Ø¤ÎƱ»þÀܳ¿ô|
|MAXREQTHREAD|¥ê¥¯¥¨¥¹¥È¥¹¥ì¥Ã¥É¿ô|
|REQQUESIZE|¥ê¥¯¥¨¥¹¥È¥¥å¡¼¥µ¥¤¥º|
|MAXREPTHREAD|¥ì¥×¥ê¥±¡¼¥·¥ç¥ó¥¹¥ì¥Ã¥É¿ô|
|REPQUESIZE|¥ì¥×¥ê¥±¡¼¥·¥ç¥ó¥¥å¡¼¥µ¥¤¥º|
~
**¥¢¥¯¥»¥¹¥°¥ë¡¼¥×¤ÎÄêµÁ [#o553c95f]
¥æ¡¼¥¶¡¼¤ÏÆÃÄê¤Î¥°¥ë¡¼¥×¤Ëɬ¤º½ê°¤µ¤»¤ëɬÍפ¬¤¢¤ë~
¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤Î¥¢¥¯¥»¥¹µö²Ä¤Ï¥°¥ë¡¼¥×ñ°Ì¤ÇÀ©¸æ...
&color(#FF00FF){¡Ú¥Õ¥¡¥¤¥ë¡Û}; &color(#0000FF){/opt/icewa...
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){¥°¥ë¡¼¥×̾...
DB¥«¥é¥à̾¤Ïdbattr.confµÚ¤Ó¡¢DBEXATTR¤Ç»ØÄꤷ¤¿¥«¥é¥à¤Î»Ø...
***USERID¤ÎÃͤËuser¤¬ÉÕÍ¿¤·¤Æ¤¤¤ëREMOTE_ADDR¤¬192.168.11....
normal,USERID=user.*&REMOTE_ADDR=192.168.11.1-192.168.11...
Àµµ¬É½¸½µÚ¤Ó¡¢ÏÀÍý¼° ()¡¡!¡¡&¡¡| ¤Î»ÈÍѤ¬²Äǽ~
~
~
**¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤Î¥¢¥¯¥»¥¹ÄêµÁ [#v457fe23]
ÆÃÄê¤Î¥°¥ë¡¼¥×¤ËÂФ·¤Æ¡¢¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤ÎÀܳµö²Ä...
¥Ñ¥¿¡¼¥ó¥Þ¥Ã¥Á¥ó¥°¤ÏÁ°Êý°ìÃפǥޥåÁ¤·¤¿¤é¤½¤ì°Ê¹ß¤Î¥ë¡¼...
&color(#FF00FF){¡Ú¥Õ¥¡¥¤¥ë¡Û}; &color(#0000FF){/opt/icewa...
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){http://¥¢...
***normal³î¤Äspecil¤Ë°¤¹¤ë¥æ¡¼¥¶¡¼¤ËÂФ·192.168.11.2¤Ø¤Î...
http://192.168.11.2/=normal&special
~
**ǧ¾Ú¥â¥¸¥å¡¼¥ë¤ÎÀ©¸æ [#h7c6e56c]
/opt/icewall-sso/certd/bin ¥Ç¥£¥ì¥¯¥È¥ê°Ê²¼¤Î¥¹¥¯¥ê¥×¥È¤Ë...
|BGCOLOR(#f0f8ff):CENTER:¥¹¥¯¥ê¥×¥È|BGCOLOR(#f0f8ff):CENT...
|start-cert|certd¤Îµ¯Æ°|
|end-cert|certd¤ÎÄä»ß|
|info-cert|certd¤Î²ÔƯ¾õ¶·¤ò½ÐÎÏ|
|reload-cert|ÀßÄê¥Õ¥¡¥¤¥ëºÆÆɤ߹þ¤ß¡£È¿±Ç¤µ¤ì¤Ê¤¤¹àÌܤ⤢...
|logout-cert|¥í¥°¥¤¥óÃæ¤ÎÁ´¥æ¡¼¥¶¡¼¶¯À©¥í¥°¥¢¥¦¥È|
|cdump-cert|¸½ºß²ÔÆ°¤·¤Æ¤¤¤ë¾õÂÖ¤ÎÀßÄêÆâÍƤò½ÐÎÏ|
***info-cert [#u4ba9654]
cert.conf¤ÎACCESS¤Ç»ØÄꤷ¤¿¥í¥°¡Ê¥Ç¥Õ¥©¥ë¥È¤Ï/opt/icewall...
|BGCOLOR(#f0f8ff):CENTER:¹àÌÜ|BGCOLOR(#f0f8ff):CENTER:Use...
|CERTINFO USER|¸½ºß¥í¥°¥¤¥ó¤·¤Æ¤¤¤ë¥æ¡¼¥¶¡¼|¥í¥°¥¤¥ó²Äǽ...
|CERTINFO CACHE|»ÈÍÑ¥¥ã¥Ã¥·¥å¥µ¥¤¥º|ºÇÂ祥ã¥Ã¥·¥å¥µ¥¤¥º...
|CERTINFO REQUEST_QUEUE|»ÈÍÑÃæ¤Î¥ê¥¯¥¨¥¹¥È¥¥å¡¼¿ô|¥ê¥¯¥¨...
|CERTINFO ACCTHRED|»ÈÍÑÃæ¤Î¥¢¥¯¥»¥¹¥¹¥ì¥Ã¥É¿ô|¥ê¥¯¥¨¥¹¥È...
|CERTINFO REPRICA_QUEUE|»ÈÍÑÃæ¤Î¥ì¥×¥ê¥±¡¼¥·¥ç¥ó¿ô|¥ì¥×¥ê...
|CERTINFO REQUEST_THREAD|»ÈÍÑÃæ¤Î¥¹¥ì¥Ã¥É¿ô|Á´ÂÎ¥¹¥ì¥Ã¥É...
|CERTINFO REPRICA_THREAD|»ÈÍÑÃæ¤Î¥¹¥ì¥Ã¥É¿ô|Á´ÂÎ¥¹¥ì¥Ã¥É...
|CERTINFO DBCONNECT|»ÈÍÑÃæ¤Î¥³¥Í¥¯¥·¥ç¥ó¿ô|Á´ÂÎ¥³¥Í¥¯¥·¥ç...
~
**¥Õ¥©¥ï¡¼¥À¤ÎÀßÄê [#r5b409ce]
&color(#FF00FF){¡Ú¥Õ¥¡¥¤¥ë¡Û}; &color(#0000FF){/opt/icewa...
***ǧ¾Ú¥â¥¸¥å¡¼¥ë(certd)¤Î°ÌÃ֤ȥ¢¥¯¥»¥¹¥Ý¡¼¥È¤Î»ØÄê [#z7...
CERT=ǧ¾Ú¥â¥¸¥å¡¼¥ë¥Û¥¹¥È:¥Ý¡¼¥ÈÈÖ¹æ
¥Ý¡¼¥ÈÈÖ¹æ¤Ï &color(#0000FF){cert.conf}; ¤Î &color(#0000F...
***¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Î¥¨¥¤¥ê¥¢¥¹Ì¾¤È°ÌÃÖ»ØÄê [#j55c8293]
¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¥¢¥¯¥»¥¹¤¹¤ëºÝ¤ÎURL¤Ï°Ê²¼¤Î¤è¤¦¤Ë¤Ê...
http://forwarder.com/fw/dfw/back01/index.html
¡¡¡¡¡¡ ¡¡¡¡¡¡¡¡¡¡¡¡¡¢¡¡¡¡ £¡¡¡¡ ¤
¡¥Õ¥©¥ï¡¼¥À¤ÎFQDN~
¢¥Õ¥©¥ï¡¼¥À¤Ø¤Î¥Ñ¥¹¡Ê¸ÇÄê¡Ë~
£¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Î¥¨¥¤¥ê¥¢¥¹¡Êdfw.conf¤ÎHOST¤ÇÄêµÁ¤¹...
¤¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Î¾å¤ÎURL~
HOST=back01=192.168.11.2¡¡¡Å¡Å192.168.11.2¤Î¥¨¥¤¥ê¥¢¥¹Ì¾¤ò...
SHOST=back01=192.168.11.3 ¡Å¡Å192.168.11.3¤Î¥¨¥¤¥ê¥¢¥¹Ì¾¤ò...
***¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤Î¥¢¥¯¥»¥¹ÊýË¡¤Î»ØÄê [#nbe440d4]
HOST/SHOST¤ÈÂФò¤Ê¤¹·Á¤Ç¡¢¤½¤ì¤¾¤ì¤Î¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼...
ͽ¤ásample.conf¤¬ÍÑ°Õ¤µ¤ì¤Æ¤ª¤ê¡¢¤³¤ì¤Ï¥×¥ì¡¼¥ó¤Ê¥µ¡¼¥Ð¡¼...
SVRFILE=back01,./sample.conf
SVRFILE=back02,./sample.conf
***html.conf [#q8f38f89]
¥í¥°¥¤¥ó²èÌ̤ʤɡ¢¤É¤Î¥Õ¥¡¥¤¥ë¤ò»ÈÍѤ¹¤ë¤«ÄêµÁ¤¹¤ë
~
**¾ðÊó·Ñ¾µµ¡Ç½¡Êǧ¾ÚÂå¹Ô¡Ë [#w64ea4e8]
IceWall¤Çǧ¾Ú¤·¤¿ºÝ¤Î¾ðÊó¤òÍѤ¤¤Æ¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤ÎBA...
cert.conf ¤Î DBEXATTR ¤ÇÆȼ«¤Î¥«¥é¥à¤òÄêµÁ¤·¡¢¤³¤Î¥«¥é¥à...
***BASICǧ¾Ú¤ÎÂå¹Ô [#t656e073]
¥Û¥¹¥ÈÀßÄê¥Õ¥¡¥¤¥ë¤ò¥³¥Ô¡¼¤·ÊÔ½¸¤¹¤ë
cd /opt/icewall-sso/certd/config
cp -ip sample.conf back01.conf
vi back01.conf
BASICAUTH=1¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡ ¡Å¡ÅBASICǧ¾ÚÂå¹Ô¤ò͸ú¤Ë¤¹¤ë
SVRFILE=back01,./back01.conf¡¡¡Å¡Å¥Û¥¹¥ÈÀßÄê¥Õ¥¡¥¤¥ë¤òÊѹ¹...
BA-UID=<UID>¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡Å¡Åǧ¾Ú¤Ë»È¤¦¥æ¡¼¥¶¡¼Ì¾¤ÎDB...
BA-PWD=<PWD>¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡Å¡Åǧ¾Ú¤Ë»È¤¦¥Ñ¥¹¥ï¡¼¥É¤ÎDB...
***FORMǧ¾Ú¤ÎÂå¹Ô [#z6c0a4c7]
¥Û¥¹¥ÈÀßÄê¥Õ¥¡¥¤¥ë¤ò¥³¥Ô¡¼¤·ÊÔ½¸¤¹¤ë
cd /opt/icewall-sso/certd/config
cp -ip sample.conf back01.conf
vi back01.conf
FORM_FILE=FORM01,./form.conf ¡Å¡ÅFORM01¤È¤¤¤¦¥Õ¥©¡¼¥à¥°¥ë...
¥Õ¥©¡¼¥àÀßÄê¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤¹¤ë
vi form.conf
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){¹àÌÜ=¥Õ¥©...
|BGCOLOR(#f0f8ff):CENTER:¹àÌÜ|BGCOLOR(#f0f8ff):CENTER:ÀâÌÀ|
|FORM_URL|¥Õ¥©¡¼¥àǧ¾Ú¤¬¹Ô¤ï¤ì¤ë²ÄǽÀ¤Î¤¢¤ëURL¤ò»ØÄê¡£/...
|FORM_KEY|FORMǧ¾Ú¤Èǧ¼±¤¹¤ë¥¡¼¥ï¡¼¥É¤Î»ØÄꡣʣ¿ô»ØÄꤷ...
|FORM_METHOD|formǧ¾Ú¤Î¥á¥½¥Ã¥É¤ò»ØÄê¡£<form>¥¿¥°¤Îmethod...
|FORM_SEND|¥ê¥¯¥¨¥¹¥ÈÀè¤ÎURL¡£<form>¥¿¥°¤Îaction°À¤ÎÃÍ...
|FORM_DATA_STR|FORM¤ËÆþÎϤ¹¤ë¸ÇÄêÃͤòÄêµÁ|
|FORM_DATA_USR|FORM¤ËÆþÎϤ¹¤ëÃͤò¾ðÊó·Ñ¾µ¤Ê¤É¤«¤éÆÀ¤é¤ì¤ë...
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){FORM_DATA_...
FORM_DATA_STR=FORM01,POSTDATA,id,user01
FORM_DATA_STR=FORM01,POSTDATA,pwd,pass01
¢¨¥á¥½¥Ã¥É¤ÏGET¤ÏQUERY_STRING¡¢POST¤ÏPOSTDATA
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){FORM_DATA_...
FORM_DATA_USR=FORM01,POSTDATA,id,EXTRAUID
FORM_DATA_USR=FORM01,POSTDATA,pwd,EXTRAPWD
¢¨DB¥«¥é¥à¤Ïcert.conf¤ÎDBEXATTR¤ÇÄêµÁ¤·¤¿¥«¥é¥à¤ò»ØÄꤹ¤ë
~
**¥Õ¥©¥ï¡¼¥À¤Î¥¢¥¯¥»¥¹¥í¥°¡Êdfw.log¡Ë [#p11d3513]
dfw.conf¤ÎACCESS¤Ç»ØÄꤷ¤¿¾ì½ê¡Ê¥Ç¥Õ¥©¥ë¥È¤Ï/opt/icewall-...
¡Ú½ÐÎÏÎã¡Û[2012/03/12 09:21:16] 0.024 0.117 0.000 use...
|BGCOLOR(#f0f8ff):CENTER:¹àÌÜ|BGCOLOR(#f0f8ff):CENTER:ÀâÌÀ|
|[2012/03/12¡Á|Æü»þ|
|0.024|¡¥Õ¥©¥ï¡¼¥Àµ¯Æ°¤«¤é¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼Àܳ¤Þ¤Ç¤Î...
|0.117|¢¥Ð¥Ã¥¯¥¨¥ó¥ÉÀܳ¤«¤éÀÚÃǤ¹¤ë¤Þ¤Ç¤Î·Ð²á»þ´Ö¡ÊÉáË|
|0.000|£¥Ð¥Ã¥¯¥¨¥ó¥É¤«¤é¥³¥ó¥Æ¥ó¥Ä¤ò¼õ¤±¼è¤Ã¤Æ¤«¤é¥¯¥é¥¤...
|user1|¥ê¥¯¥¨¥¹¥È¤·¤¿¥æ¡¼¥¶¡¼ID|
|POST|¥ê¥¯¥¨¥¹¥È¤µ¤ì¤¿HTTP¥á¥½¥Ã¥É|
|[web.test¡Á|¥ê¥¯¥¨¥¹¥È¤µ¤ì¤¿URL¡ÊALEVEL2°Ê¾å¤Ç½ÐÎÏ¡Ë|
|56|¥³¥ó¥Æ¥ó¥Ä¥µ¥¤¥º(byte)¡ÊALEVEL2°Ê¾å¤Ç½ÐÎÏ¡Ë|
|192.168.11.10|¥¯¥é¥¤¥¢¥ó¥È¤ÎIP¥¢¥É¥ì¥¹¡ÊALEVEL2°Ê¾å¤Ç½Ð...
|TID=¡Á|¥È¥é¥ó¥¶¥¯¥·¥ç¥óID¡Ê¥³¥ó¥Õ¥£¥°¤Ç͸ú¤Ë¤¹¤ë¤³¤È¤Ç...
***·Ð²á»þ´Ö¤Ë¤Ä¤¤¤Æ [#b446a6ee]
&ref(icewall_transaction.png);~
¡¥Õ¥©¥ï¡¼¥À¤¬µ¯Æ°¸å¡¢¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤ÎTCP/IPÀܳ¤¬...
¢HTTP¤Ë¤è¤ë¥³¥ó¥Æ¥ó¥ÄžÁ÷»þ´Ö~
£TCP/IPÀܳ¤¬ÀÚÃǤ·¡¢¥¯¥é¥¤¥¢¥ó¥È¤È¤ÎÄÌ¿®¤ò³«»Ï¤¹¤ë¤Þ¤Ç¤Î...
¡¡URL¡¦¥¡¼¥ï¡¼¥ÉÊÑ´¹¤Ë³Ý¤«¤Ã¤¿»þ´Ö¤Ç¥¯¥é¥¤¥¢¥ó¥È¤Ø¤Î¥³¥ó...
***¥È¥é¥ó¥¶¥¯¥·¥ç¥óID [#ga23976f]
¥Õ¥©¥ï¡¼¥À¤Ë¤è¤ê¸Ä¡¹¤Î¥ê¥¯¥¨¥¹¥È¤ò¸ÄÊ̤˳ä¤ê¿¶¤é¤ì¤¿TID¤Ç...
TID¤Ïǧ¾Ú¥â¥¸¥å¡¼¥ë¦¤Ç¤âƱ¤¸ÃͤǵϿ¤µ¤ì¤ë°Ù¡¢¥í¥°¤ÎÆ͹ç...
dfw.conf
TRANSID=1 ¥È¥é¥ó¥¶¥¯¥·¥ç¥óID½ÐÎϤò͸ú¤Ë¤¹¤ë
TRANSID_STR¡¡¥È¥é¥ó¥¶¥¯¥·¥ç¥óID¤Î¸å¤ËǤ°Õ¤Îʸ»úÎó¤òÄɵ...
cert.conf
TRANSID=1¡¡¡¡Ç§¾Ú¥â¥¸¥å¡¼¥ë¥í¥°¤Ø¤Î¥È¥é¥ó¥¶¥¯¥·¥ç¥óID½Ð...
~
**ǧ¾Ú¥â¥¸¥å¡¼¥ë¤Î¥¢¥¯¥»¥¹¥í¥°¡Êcert.log¡Ë [#uf812098]
cert.conf¤ÎACCESS¤Ç»ØÄꤷ¤¿¾ì½ê¡Ê¥Ç¥Õ¥©¥ë¥È¤Ï/opt/icewall...
¡Ú½ÐÎÏÎã¡Û[2012/03/12 09:21:05] User Login. TID=TID201¡Á...
|BGCOLOR(#f0f8ff):CENTER:¹àÌÜ|BGCOLOR(#f0f8ff):CENTER:ÀâÌÀ|
|[2012/03/12¡Á|Æü»þ|
|User Logout|¥í¥°¥á¥Ã¥»¡¼¥¸|
|TID=¡Á|¥È¥é¥ó¥¶¥¯¥·¥ç¥óID¡Ê¥³¥ó¥Õ¥£¥°¤Ç͸ú¤Ë¤¹¤ë¤³¤È¤Ç...
|UserUD=|¥æ¡¼¥¶¡¼ID|
|[AC10124|¥á¥Ã¥»¡¼¥¸ID|
***ǧ¾ÚDB¥¢¥¯¥»¥¹»þ´Ö¤ÎµÏ¿ [#da4f0e77]
ALEVEL¤Ë1°Ê¾å³î¤Ä¡¢LOGPERF=1¤ËÀßÄꤷ¤¿¾ì¹ç¡¢Ç§¾ÚDB¤Ø¤Î¥¢...
¡Ú½ÐÎÏÎã2¡Û[2012/03/12 09:21:05] PERF 1104244 LOGINUID u...
|BGCOLOR(#f0f8ff):CENTER:¹àÌÜ|BGCOLOR(#f0f8ff):CENTER:ÀâÌÀ|
|[2012/03/12¡Á|Æü»þ|
|PERF|PERF¸ÇÄê|
|1104244|¥¹¥ì¥Ã¥ÉID¡ÊÆâÉô½èÍý¤Î¥ê¥¯¥¨¥¹¥È¥¹¥ì¥Ã¥ÉID¡Ë|
|LOGINUID|¥ê¥¯¥¨¥¹¥È¼ïÊ̡ʲ¼µ»²¾È¡Ë|
|UserUD=|¥æ¡¼¥¶¡¼ID|
|0.007303|¥ê¥¯¥¨¥¹¥È½èÍý»þ´Ö|
|S:¡ÁU:|DB½èÍý»þ´Ö¡£S:Select¡¢U:Update¡¢I:Insert¡¢B:bind...
|TID=¡Á|¥È¥é¥ó¥¶¥¯¥·¥ç¥óID¡Ê¥³¥ó¥Õ¥£¥°¤Ç͸ú¤Ë¤¹¤ë¤³¤È¤Ç...
|[AC10124|¥á¥Ã¥»¡¼¥¸ID|
|BGCOLOR(#f0f8ff):CENTER:¥ê¥¯¥¨¥¹¥È¼ïÊÌ|BGCOLOR(#f0f8ff):...
|LOGINUID|¥æ¡¼¥¶¡¼ID¤Î¥í¥°¥¤¥ó|
|FLOGINUID|¶¯À©¥æ¡¼¥¶ID¤Î¥í¥°¥¤¥ó|
|LOGINCERT|¾ÚÌÀ½ñ¥í¥°¥¤¥ó|
|LOGINSAML|SAML¥í¥°¥¤¥ó|
|FLOGINSAML|¶¯À©SAML¥í¥°¥¤¥ó|
|LOGINFEDE|¥Õ¥§¥Ç¥ì¡¼¥·¥ç¥ó¥í¥°¥¤¥ó|
|FLOGINFEDE|¶¯À©¥§¥Ç¥ì¡¼¥·¥ç¥ó¥í¥°¥¤¥ó|
|ACCESSUID|¥æ¡¼¥¶¡¼ID¤Î¥¢¥¯¥»¥¹À©¸æ|
|ACCESSCERT|¾ÚÌÀ½ñ¥µ¥¯¥»¥¹À©¸æ|
|PWDCHG|¥Ñ¥¹¥ï¡¼¥ÉÊѹ¹|
|LOGOUT|¥í¥°¥¢¥¦¥È|
|AUTOLOGOUT|¼«Æ°¥í¥°¥¢¥¦¥È|
½ªÎ»¹Ô:
*IceWall [#c8dc05b7]
-[[IceWall¤È¤Ï>#n4278de5]]
-[[IceWall¤Î´ðËܹ½À®>#z77d9c60]]
-[[¥¤¥ó¥¹¥È¡¼¥ë>#e0738a74]]
-[[IceWall¥·¥¹¥Æ¥àÍѥơ¼¥Ö¥ë¤ÎºîÀ®>#pc05ff7b]]
-[[ºîÀ®¤·¤¿¥Æ¡¼¥Ö¥ë¤È¥«¥é¥à¤ò¥Þ¥Ã¥Ô¥ó¥°¤¹¤ë>#keb3a188]]
-[[IceWall¥æ¡¼¥¶¡¼¤ÎºîÀ®>#c5586754]]
-[[ǧ¾Ú¥â¥¸¥å¡¼¥ë¤Î´ðËÜÀßÄê>#cdb69694]]
-[[¥¢¥¯¥»¥¹¥°¥ë¡¼¥×¤ÎÄêµÁ>#o553c95f]]
-[[¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤Î¥¢¥¯¥»¥¹ÄêµÁ>#v457fe23]]
-[[ǧ¾Ú¥â¥¸¥å¡¼¥ë¤ÎÀ©¸æ>#h7c6e56c]]
-[[¥Õ¥©¥ï¡¼¥À¤ÎÀßÄê>#r5b409ce]]
-[[¾ðÊó·Ñ¾µµ¡Ç½>#w64ea4e8]]
-[[¥Õ¥©¥ï¡¼¥À¤Î¥¢¥¯¥»¥¹¥í¥°>#p11d3513]]
-[[ǧ¾Ú¥â¥¸¥å¡¼¥ë¤Î¥¢¥¯¥»¥¹¥í¥°>#uf812098]]
~
**IceWall¤È¤Ï [#n4278de5]
Web¥Ù¡¼¥¹¤Î¥·¥ó¥°¥ë¥µ¥¤¥ó¥ª¥óÀ½Éʤǡ¢Web¥µ¡¼¥Ð¡¼¤Îǧ¾Ú¤ò...
¾ðÊó·Ñ¾µµ¡Ç½¤ò»È¤¦¤³¤È¤Ç¡¢Web¥µ¡¼¥Ð¡¼¤Ø¤Îǧ¾Ú¤ÏIceWall¤Ë...
¤½¤ì¤¾¤ì¤ÎWeb¥µ¡¼¥Ð¡¼¤ËÂФ¹¤ë¥¢¥¯¥»¥¹¸¢¸Â¤Ë¤Ä¤¤¤Æ¤â°ì¸µ´É...
~
**IceWall¤Î´ðËܹ½À® [#z77d9c60]
&ref(icewall_summary.png);
|BGCOLOR(#f0f8ff):CENTER:¥µ¡¼¥Ð¡¼|BGCOLOR(#f0f8ff):CENTER...
|¥Õ¥©¥ï¡¼¥À|dfw|¥ê¥Ð¡¼¥¹¥×¥í¥¥·¤È¤·¤Æ¥¯¥é¥¤¥¢¥ó¥È¤È¥Ð¥Ã...
|ǧ¾Ú¥â¥¸¥å¡¼¥ë|certd|¥æ¡¼¥¶¡¼¾ðÊó¡¢¥¢¥¯¥»¥¹À©¸æ¡¢¥í¥°¥¤...
|ǧ¾ÚDB|Oracle¤Ê¤É|IceWall¤Î¥¢¥«¥¦¥ó¥È¤ò´ÉÍý¤¹¤ë|
|¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼|httpd|¥Õ¥©¥ï¡¼¥À¤«¤éžÁ÷¤µ¤ì¤ëWeb¥µ...
***¥Õ¥©¥ï¡¼¥À¤ÎÄÌ¿®¥È¥é¥ó¥¶¥¯¥·¥ç¥ó [#s221b096]
¡¥¯¥é¥¤¥¢¥ó¥È¤«¤é¥Õ¥©¥ï¡¼¥À¤Ø¥¢¥¯¥»¥¹¤·¡¢¥í¥°¥¤¥ó¥Õ¥©¡¼¥à...
¢¥æ¡¼¥¶¡¼¤È¥Ñ¥¹¥ï¡¼¥É¤òÆþÎϤ·Ç§¾Ú¥µ¡¼¥Ð¡¼¤ØÅϤµ¤ì¤ë~
£Ç§¾Ú¥µ¡¼¥Ð¡¼¤¬Ç§¾ÚDB¤ØÌ䤤¹ç¤ï¤»Àµµ¬¥æ¡¼¥¶¡¼¤«³Îǧ¤·¡¢Ìä...
¡¡ÉÔÍפÊDB¥¢¥¯¥»¥¹¤òÈò¤±¤ë°Ù¡¢certd¤Ï¥ª¥ó¥á¥â¥ê¤Ç¼èÆÀ¤·¤¿...
¡¡¥«¥é¥à¤¬Â¿¤±¤ì¤Ð¿¤¤Äø¡¢¥á¥â¥ê¤ò¿©¤¦¤Î¤ÇÉÔÍפʥ«¥é¥à¤Ï...
¤¥Õ¥©¥ï¡¼¥À¤Èǧ¾Ú¥µ¡¼¥Ð¡¼¤Ï²èÌÌÁ«°Ü¤ÎÅ٤˳ºÅö¥Ú¡¼¥¸¤ËÂФ¹...
¥¥¢¥¯¥»¥¹¸¢¸Â¤¬¤¢¤ì¤Ð¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¥Õ¥©¥ï¡¼¥É¤·WE...
~
**¥¤¥ó¥¹¥È¡¼¥ë [#e0738a74]
Á´¤Æ/opt/icewall-sso/¥Ç¥£¥ì¥¯¥È¥ê°Ê²¼¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤ë
rpm -iv --nodeps IceWall-SSO-certd_<ǧ¾Ú·Á¼°>_<¥Ð¡¼¥¸¥ç...
rpm -iv --nodeps IceWall-SSO-dfw_<¥Ð¡¼¥¸¥ç¥ó>_<¥¢¡¼¥¥Æ...
chown -R iwadmin /opt/icewal-sso/certd¡¡¡¡¡¡¡¡¡Å¡Åcertd¤ò...
chown -R apache:apache /opt/icewall-sso/dfw¡¡ ¡Å¡ÅApache¤ò...
***Apache¤ÎÀßÄê [#g9aefe1f]
httpd.conf¤Ë°Ê²¼¤Îʸ¸À¤òÄɲ乤ë
Alias /img/ "/opt/icewall-sso/dfw/html/image/"
SetEnv LD_LIBRARY_PATH "/opt/icewall-sso/lib/dfw:/usr/li...
ScriptAlias /fw/ "/opt/icewall-sso/dfw/cgi-bin/"
<Directory "/opt/icewall-sso/dfw/cgi-bin/">
AllowOverride All
Options ExecCGI
SetHandler cgi-script
Order allow,deny
Allow from all
</Directory>
***¥Ç¥£¥ì¥¯¥È¥ê¹½À® [#qed5d085]
/opt/icewall-sso/
¡¡certd¡¡¡¡¡¡¡¡¡¡¡¡Ç§¾Ú¥â¥¸¥å¡¼¥ë
¡¡¡¡bin¡¡¡¡¡¡¡¡¡¡¡¡Ç§¾Ú¥â¥¸¥å¡¼¥ë¤Î¥×¥í¥°¥é¥à¤ä¥¹¥¯¥ê¥×¥È
¡¡¡¡config¡¡¡¡¡¡¡¡ ǧ¾Ú¥â¥¸¥å¡¼¥ë¤ÎÀßÄê¥Õ¥¡¥¤¥ë
¡¡dfw¡¡¡¡¡¡¡¡¡¡¡¡¡¡¥Õ¥©¥ï¡¼¥À
¡¡¡¡cgi-bin¡¡¡¡¡¡¡¡¥Õ¥©¥ï¡¼¥À¤ÎCGI¥×¥í¥°¥é¥àµÚ¤ÓÀßÄê¥Õ¥¡...
¡¡¡¡chtml¡¡¡¡¡¡¡¡¡¡¥í¥°¥¤¥ó¤ä¥¨¥é¡¼²èÌ̤Υ³¥ó¥Æ¥ó¥Ä¡Ê·È...
¡¡¡¡html¡¡¡¡¡¡¡¡¡¡ ¥í¥°¥¤¥ó¤ä¥¨¥é¡¼²èÌ̤Υ³¥ó¥Æ¥ó¥Ä¡ÊPC...
~¡¡¡¡
**IceWall¥·¥¹¥Æ¥àÍѥơ¼¥Ö¥ë¤ÎºîÀ® [#pc05ff7b]
$ cd /opt/ice-wall/tools
$ sqlplus UID/PASS@oracleSID
SQL > @cre_tbl_test.sql¡¡¡¡¡¡ ¡Å¡ÅICEWALLTEST¥Æ¡¼¥Ö¥ë¤òºî...
SQL > @cre_tbl_history.sql¡¡¡¡¡Å¡ÅHISTORY¥Æ¡¼¥Ö¥ë¤òºîÀ®¤¹¤ë
SQL > @cre_sequence.sql
ICEWALLTEST¡¡¤Î¥«¥é¥à
̾Á° NULL? ·¿
-------------------------------- -------- --------------...
USERID NOT NULL VARCHAR2(20)
PASSWD NOT NULL CHAR(37)
PASSCHANGE NOT NULL CHAR(1)
PASSWDEXP CHAR(14)
PASSWDHIS CHAR(37)
CHGDATE CHAR(14)
LOGONDATE CHAR(14)
LASTDATE CHAR(14)
LOGONFAIL CHAR(14)
FAILCOUNT NOT NULL NUMBER(38)
LOCKOUT NOT NULL CHAR(1)
LOGONSTOP NOT NULL CHAR(1)
LOCKDATE CHAR(14)
LOGSTATUS NOT NULL CHAR(1)
~
**ºîÀ®¤·¤¿¥Æ¡¼¥Ö¥ë¤È¥«¥é¥à¤ò¥Þ¥Ã¥Ô¥ó¥°¤¹¤ë [#keb3a188]
¤É¤Î¥«¥é¥à¤ò¥æ¡¼¥¶¡¼Ì¾¡¢¥Ñ¥¹¥ï¡¼¥É¤È¤¹¤ë¤«ÄêµÁ¤·¡¢IceWall...
&color(#FF00FF){¡Ú¥Õ¥¡¥¤¥ë¡Û}; &color(#0000FF){/opt/icewa...
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){¹àÌÜ=DB¦...
UID=USERID¡¡¡¡¡¡¡¡¡¡¡¡ ¥æ¡¼¥¶¡¼ID
PASSWORD=PASSWD¡¡¡¡¡¡¡¡¥Ñ¥¹¥ï¡¼¥É
PWDEXPDATE=PASSWDEXP¡¡ ¥Ñ¥¹¥ï¡¼¥É͸ú´ü¸Â
PWDHISTORY=PASSWDHIS¡¡ ¥Ñ¥¹¥ï¡¼¥ÉÍúÎò
PCHGOK=PASSCHANGE¡¡¡¡¡¡¥Ñ¥¹¥ï¡¼¥ÉÊѹ¹ON/OFF¡Ê1¤ÇON¡Ë
PCHGDATE=CHGDATE¡¡¡¡¡¡ ¥Ñ¥¹¥ï¡¼¥ÉÊѹ¹Æü
PLOGINDATE=LOGONDATE¡¡ ¥í¥°¥¤¥ó»þ¹ï
LLOGINDATE=LASTDATE¡¡¡¡ºÇ½ª¥í¥°¥¤¥ó»þ¹ï
FLOGINDATE=LOGONFAIL¡¡ ¥í¥°¥¤¥ó¼ºÇÔ»þ¹ï
PWDRETRY=FAILCOUNT¡¡¡¡ ¥Ñ¥¹¥ï¡¼¥É¥ê¥È¥é¥¤²ó¿ô
PWDLOCK=LOCKOUT¡¡¡¡¡¡¡¡¥¢¥«¥¦¥ó¥È¥í¥Ã¥¯Í̵¡Ê1¤Ç¥í¥Ã¥¯¡Ë
LOGINOK=LOGONSTOP¡¡¡¡¡¡¥í¥°¥¤¥óOK/NG¡Ê1¤ÇOK¡Ë
LOCKDATE=LOCKDATE¡¡¡¡¡¡¥¢¥«¥¦¥ó¥È¥í¥Ã¥¯»þ¹ï
LOGINSTAT=LOGSTATUS¡¡¡¡¥í¥°¥¤¥ó¥¹¥Æ¡¼¥¿¥¹¡Ê1¤Ç¥í¥°¥¤¥óÃæ¡Ë
~
**IceWall¥æ¡¼¥¶¡¼¤ÎºîÀ® [#c5586754]
/opt/icewal-sso/tools/°Ê²¼¤Î3¤Ä¤Î¥Õ¥¡¥¤¥ë¤ò»ÈÍѤ¹¤ë~
DATA.txt¡¡¡¡¡¡TEMPLATE.sql¤Ë°ú¤ÅϤ¹¥Ñ¥é¥á¡¼¥¿¤ò¥«¥ó¥Þ¶è...
TEMPLATE.sql¡¡TABLE¤ËINSERT¤¹¤ëSQLʸ¡£DATA.txt¤ÇÅϤµ¤ì¤¿...
|BGCOLOR(#f0f8ff):CENTER:¥¡¼¥ï¡¼¥É|BGCOLOR(#f0f8ff):CENT...
|$n$|n¥«¥é¥àÌܤΥǡ¼¥¿¤ËÃÖ´¹|
|$mn$|n¥«¥é¥àÌܤΥǡ¼¥¿¤òMD5¤Ç¥Ï¥Ã¥·¥å¤·¤¿ÃͤÇÃÖ´¹¡ÊOracl...
|$sn$|n¥«¥é¥àÌܤΥǡ¼¥¿¤òSHA1¤Ç¥Ï¥Ã¥·¥å¤·¤¿ÃͤÇÃÖ´¹¡ÊLDAP...
|$hn$|n¥«¥é¥àÌܤΥǡ¼¥¿¤òSHA256¤Ç¥Ï¥Ã¥·¥å¤·¤¿ÃͤÇÃÖ´¹|
|$an$|n¥«¥é¥àÌܤΥǡ¼¥¿¤òÀ½ÉÊɸ½à·Á¼°(¸°Ä¹128bit)¤Ç°Å¹æ²½...
|$bn$|n¥«¥é¥àÌܤΥǡ¼¥¿¤òÀ½ÉÊɸ½à·Á¼°(¸°Ä¹256bit)¤Ç°Å¹æ²½...
# ./mkuser TEMPLATE.sql DATA.txt > outputfile.sql
$ sqlplus UID/PASS@oracleSID @outputfile.sql
~
**ǧ¾Ú¥â¥¸¥å¡¼¥ë¤Î´ðËÜÀßÄê [#cdb69694]
»ÈÍѤ¹¤ëDBµÚ¤ÓTABLE¤òÄêµÁ¤¹¤ë¡£ÄêµÁÆâÍƤϥե¡¥¤¥ë̾¤ËÀâÌÀ...
&color(#FF00FF){¡Ú¥Õ¥¡¥¤¥ë¡Û}; &color(#0000FF){/opt/icewa...
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){¥«¥é¥à=ÃÍ}...
***IceWallǧ¾Ú¤Ë´Ø¤¹¤ëÀßÄê [#zb82ddc8]
|BGCOLOR(#f0f8ff):CENTER:¥«¥é¥à|BGCOLOR(#f0f8ff):CENTER:...
|DBHOST|OracleSID|
|DBUID|¥í¥°¥¤¥ó¥æ¡¼¥¶¡¼(certdºÆµ¯Æ°¸å¡¢°Å¹æ²½¤µ¤ì¤ë¤Î¤ÇÊ¿...
|DBPWD|¥Ñ¥¹¥ï¡¼¥É(certdºÆµ¯Æ°¸å¡¢°Å¹æ²½¤µ¤ì¤ë¤Î¤Çʿʸ¤Çµ...
|DBTBL|¥Æ¡¼¥Ö¥ë̾¡Ê¥Ç¥Õ¥©¥ë¥È¤Ïicewalltest¡Ë|
|DBEXATTR|Æȼ«¤Ë»ÈÍѤ¹¤ë¥«¥é¥à¤òÄɲ乤ë¾ì¹ç¤Ë,¶èÀÚ¤ê¤Ç¥«...
***¥í¥°¤Ë´Ø¤¹¤ëÀßÄê [#hd8f6fba]
|BGCOLOR(#f0f8ff):CENTER:¥«¥é¥à|BGCOLOR(#f0f8ff):CENTER:...
|ALEVEL|¥¢¥¯¥»¥¹¥í¥°¥ì¥Ù¥ë»ØÄê¡Ê¢Ä㤤 0¡Á4¡¡¢¬¹â¤¤¡Ë|
|ELEVEL|¥¨¥é¡¼¥í¥°¥ì¥Ù¥ë»ØÄê¡Ê¢Ä㤤 0¡Á4¡¡¢¬¹â¤¤¡Ë|
|ACCESS|¥¢¥¯¥»¥¹¥í¥°¤Î¾ì½ê|
|ERROR|¥¨¥é¡¼¥í¥°¤Î¾ì½ê|
***¥í¥°¥¤¥ó¥í¥°¥¢¥¦¥È¡¦¥Ñ¥¹¥ï¡¼¥É¥Ý¥ê¥·¡¼¤Ë´Ø¤¹¤ëÀßÄê [#d...
|BGCOLOR(#f0f8ff):CENTER:¥«¥é¥à|BGCOLOR(#f0f8ff):CENTER:...
|COOKIEEXP|¼«Æ°¥í¥°¥¢¥¦¥ÈÀßÄê¡Ê1¤Ç͸ú¡Ë|
|COOKIETIME|¾åµ¤¬Í¸ú¤Î¾ì¹ç¤Î´ü¸Â¡Êʬ¡Ë|
|LOMETHOD|¼«Æ°¥í¥°¥¢¥¦¥È¤Î͸ú´ü¸Â¤Î¹Í¤¨Êý¡Ê0¤Ç¥í¥°¥¤¥ó¤«...
|DUPLOGIN|Ʊ°ìID¤Ç¤Î¿½Å¥í¥°¥¤¥óÀßÄê¡Ê1¤Çµö²Ä¡Ë|
|PWDMINLEN|¿·¤·¤¤¥Ñ¥¹¥ï¡¼¥É¤ÎºÇ½ªÊ¸»ú¿ô|
|PWDMAXLEN|¿·¤·¤¤¥Ñ¥¹¥ï¡¼¥É¤ÎºÇÂçʸ»ú¿ô|
|PWDSAMEPASS|UID¤ÈƱ¤¸¥Ñ¥¹¥ï¡¼¥É¤òǧ¤á¤ë¤«Èݤ«¡Ê1¤ÇÉÔµö²Ä...
|PWDALPHANUM|¿·¤·¤¤¥Ñ¥¹¥ï¡¼¥É¤Ç»ÈÍѲÄǽ¤Êʸ»ú¤Î»ÈÍѥݥꥷ...
|LOCKCOUNT|¥Ñ¥¹¥ï¡¼¥É¥¨¥é¡¼¤¬Â³¤¤¤¿¾ì¹ç¤Ë¥í¥Ã¥¯¤µ¤ì¤ë¥¨¥é...
|PWDEXPCHK|¥Ñ¥¹¥ï¡¼¥ÉÊѹ¹¸å¤Î͸ú´ü¸Â¤òÀߤ±¤ë¤«¡Ê1¤Ç͸ú...
|PWDEXPIRE|¥Ñ¥¹¥ï¡¼¥É͸ú´ü¸ÂÀÚ¤ì¤Þ¤Ç¤ÎÆü¿ô|
|PWDEXPWARN|¥Ñ¥¹¥ï¡¼¥É͸ú´ü¸ÂÀڤ줬¶á¤Å¤¤¤¿ºÝ¤Ë·Ù¹ð²èÌÌ...
|PWDHISCHK|¥Ñ¥¹¥ï¡¼¥É¤ÎÍúÎò¥Á¥§¥Ã¥¯¡Ê1¤Ç͸ú¡Ë|
|PWDHISCNT|¥Ñ¥¹¥ï¡¼¥É¤ÎÍúÎòÊÝ»ý·ï¿ô¤ò1¡Á20¤Ç»ØÄê|
|PWDFORBID|¥Ñ¥¹¥ï¡¼¥É¤È¤·¤Æ»ÈÍѤǤ¤Ê¤¤¥ï¡¼¥É¤Î¥Ç¥£¥¯¥·¥ç...
***¥Ñ¥Õ¥©¡¼¥Þ¥ó¥¹Ä´À°¤Ë´Ø¤¹¤ëÀßÄê [#ue173658]
|BGCOLOR(#f0f8ff):CENTER:¥«¥é¥à|BGCOLOR(#f0f8ff):CENTER:...
|MAXDBCONNECT|DB¤Ø¤ÎƱ»þÀܳ¿ô|
|MAXREQTHREAD|¥ê¥¯¥¨¥¹¥È¥¹¥ì¥Ã¥É¿ô|
|REQQUESIZE|¥ê¥¯¥¨¥¹¥È¥¥å¡¼¥µ¥¤¥º|
|MAXREPTHREAD|¥ì¥×¥ê¥±¡¼¥·¥ç¥ó¥¹¥ì¥Ã¥É¿ô|
|REPQUESIZE|¥ì¥×¥ê¥±¡¼¥·¥ç¥ó¥¥å¡¼¥µ¥¤¥º|
~
**¥¢¥¯¥»¥¹¥°¥ë¡¼¥×¤ÎÄêµÁ [#o553c95f]
¥æ¡¼¥¶¡¼¤ÏÆÃÄê¤Î¥°¥ë¡¼¥×¤Ëɬ¤º½ê°¤µ¤»¤ëɬÍפ¬¤¢¤ë~
¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤Î¥¢¥¯¥»¥¹µö²Ä¤Ï¥°¥ë¡¼¥×ñ°Ì¤ÇÀ©¸æ...
&color(#FF00FF){¡Ú¥Õ¥¡¥¤¥ë¡Û}; &color(#0000FF){/opt/icewa...
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){¥°¥ë¡¼¥×̾...
DB¥«¥é¥à̾¤Ïdbattr.confµÚ¤Ó¡¢DBEXATTR¤Ç»ØÄꤷ¤¿¥«¥é¥à¤Î»Ø...
***USERID¤ÎÃͤËuser¤¬ÉÕÍ¿¤·¤Æ¤¤¤ëREMOTE_ADDR¤¬192.168.11....
normal,USERID=user.*&REMOTE_ADDR=192.168.11.1-192.168.11...
Àµµ¬É½¸½µÚ¤Ó¡¢ÏÀÍý¼° ()¡¡!¡¡&¡¡| ¤Î»ÈÍѤ¬²Äǽ~
~
~
**¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤Î¥¢¥¯¥»¥¹ÄêµÁ [#v457fe23]
ÆÃÄê¤Î¥°¥ë¡¼¥×¤ËÂФ·¤Æ¡¢¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤ÎÀܳµö²Ä...
¥Ñ¥¿¡¼¥ó¥Þ¥Ã¥Á¥ó¥°¤ÏÁ°Êý°ìÃפǥޥåÁ¤·¤¿¤é¤½¤ì°Ê¹ß¤Î¥ë¡¼...
&color(#FF00FF){¡Ú¥Õ¥¡¥¤¥ë¡Û}; &color(#0000FF){/opt/icewa...
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){http://¥¢...
***normal³î¤Äspecil¤Ë°¤¹¤ë¥æ¡¼¥¶¡¼¤ËÂФ·192.168.11.2¤Ø¤Î...
http://192.168.11.2/=normal&special
~
**ǧ¾Ú¥â¥¸¥å¡¼¥ë¤ÎÀ©¸æ [#h7c6e56c]
/opt/icewall-sso/certd/bin ¥Ç¥£¥ì¥¯¥È¥ê°Ê²¼¤Î¥¹¥¯¥ê¥×¥È¤Ë...
|BGCOLOR(#f0f8ff):CENTER:¥¹¥¯¥ê¥×¥È|BGCOLOR(#f0f8ff):CENT...
|start-cert|certd¤Îµ¯Æ°|
|end-cert|certd¤ÎÄä»ß|
|info-cert|certd¤Î²ÔƯ¾õ¶·¤ò½ÐÎÏ|
|reload-cert|ÀßÄê¥Õ¥¡¥¤¥ëºÆÆɤ߹þ¤ß¡£È¿±Ç¤µ¤ì¤Ê¤¤¹àÌܤ⤢...
|logout-cert|¥í¥°¥¤¥óÃæ¤ÎÁ´¥æ¡¼¥¶¡¼¶¯À©¥í¥°¥¢¥¦¥È|
|cdump-cert|¸½ºß²ÔÆ°¤·¤Æ¤¤¤ë¾õÂÖ¤ÎÀßÄêÆâÍƤò½ÐÎÏ|
***info-cert [#u4ba9654]
cert.conf¤ÎACCESS¤Ç»ØÄꤷ¤¿¥í¥°¡Ê¥Ç¥Õ¥©¥ë¥È¤Ï/opt/icewall...
|BGCOLOR(#f0f8ff):CENTER:¹àÌÜ|BGCOLOR(#f0f8ff):CENTER:Use...
|CERTINFO USER|¸½ºß¥í¥°¥¤¥ó¤·¤Æ¤¤¤ë¥æ¡¼¥¶¡¼|¥í¥°¥¤¥ó²Äǽ...
|CERTINFO CACHE|»ÈÍÑ¥¥ã¥Ã¥·¥å¥µ¥¤¥º|ºÇÂ祥ã¥Ã¥·¥å¥µ¥¤¥º...
|CERTINFO REQUEST_QUEUE|»ÈÍÑÃæ¤Î¥ê¥¯¥¨¥¹¥È¥¥å¡¼¿ô|¥ê¥¯¥¨...
|CERTINFO ACCTHRED|»ÈÍÑÃæ¤Î¥¢¥¯¥»¥¹¥¹¥ì¥Ã¥É¿ô|¥ê¥¯¥¨¥¹¥È...
|CERTINFO REPRICA_QUEUE|»ÈÍÑÃæ¤Î¥ì¥×¥ê¥±¡¼¥·¥ç¥ó¿ô|¥ì¥×¥ê...
|CERTINFO REQUEST_THREAD|»ÈÍÑÃæ¤Î¥¹¥ì¥Ã¥É¿ô|Á´ÂÎ¥¹¥ì¥Ã¥É...
|CERTINFO REPRICA_THREAD|»ÈÍÑÃæ¤Î¥¹¥ì¥Ã¥É¿ô|Á´ÂÎ¥¹¥ì¥Ã¥É...
|CERTINFO DBCONNECT|»ÈÍÑÃæ¤Î¥³¥Í¥¯¥·¥ç¥ó¿ô|Á´ÂÎ¥³¥Í¥¯¥·¥ç...
~
**¥Õ¥©¥ï¡¼¥À¤ÎÀßÄê [#r5b409ce]
&color(#FF00FF){¡Ú¥Õ¥¡¥¤¥ë¡Û}; &color(#0000FF){/opt/icewa...
***ǧ¾Ú¥â¥¸¥å¡¼¥ë(certd)¤Î°ÌÃ֤ȥ¢¥¯¥»¥¹¥Ý¡¼¥È¤Î»ØÄê [#z7...
CERT=ǧ¾Ú¥â¥¸¥å¡¼¥ë¥Û¥¹¥È:¥Ý¡¼¥ÈÈÖ¹æ
¥Ý¡¼¥ÈÈÖ¹æ¤Ï &color(#0000FF){cert.conf}; ¤Î &color(#0000F...
***¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Î¥¨¥¤¥ê¥¢¥¹Ì¾¤È°ÌÃÖ»ØÄê [#j55c8293]
¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¥¢¥¯¥»¥¹¤¹¤ëºÝ¤ÎURL¤Ï°Ê²¼¤Î¤è¤¦¤Ë¤Ê...
http://forwarder.com/fw/dfw/back01/index.html
¡¡¡¡¡¡ ¡¡¡¡¡¡¡¡¡¡¡¡¡¢¡¡¡¡ £¡¡¡¡ ¤
¡¥Õ¥©¥ï¡¼¥À¤ÎFQDN~
¢¥Õ¥©¥ï¡¼¥À¤Ø¤Î¥Ñ¥¹¡Ê¸ÇÄê¡Ë~
£¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Î¥¨¥¤¥ê¥¢¥¹¡Êdfw.conf¤ÎHOST¤ÇÄêµÁ¤¹...
¤¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Î¾å¤ÎURL~
HOST=back01=192.168.11.2¡¡¡Å¡Å192.168.11.2¤Î¥¨¥¤¥ê¥¢¥¹Ì¾¤ò...
SHOST=back01=192.168.11.3 ¡Å¡Å192.168.11.3¤Î¥¨¥¤¥ê¥¢¥¹Ì¾¤ò...
***¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤Î¥¢¥¯¥»¥¹ÊýË¡¤Î»ØÄê [#nbe440d4]
HOST/SHOST¤ÈÂФò¤Ê¤¹·Á¤Ç¡¢¤½¤ì¤¾¤ì¤Î¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼...
ͽ¤ásample.conf¤¬ÍÑ°Õ¤µ¤ì¤Æ¤ª¤ê¡¢¤³¤ì¤Ï¥×¥ì¡¼¥ó¤Ê¥µ¡¼¥Ð¡¼...
SVRFILE=back01,./sample.conf
SVRFILE=back02,./sample.conf
***html.conf [#q8f38f89]
¥í¥°¥¤¥ó²èÌ̤ʤɡ¢¤É¤Î¥Õ¥¡¥¤¥ë¤ò»ÈÍѤ¹¤ë¤«ÄêµÁ¤¹¤ë
~
**¾ðÊó·Ñ¾µµ¡Ç½¡Êǧ¾ÚÂå¹Ô¡Ë [#w64ea4e8]
IceWall¤Çǧ¾Ú¤·¤¿ºÝ¤Î¾ðÊó¤òÍѤ¤¤Æ¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤ÎBA...
cert.conf ¤Î DBEXATTR ¤ÇÆȼ«¤Î¥«¥é¥à¤òÄêµÁ¤·¡¢¤³¤Î¥«¥é¥à...
***BASICǧ¾Ú¤ÎÂå¹Ô [#t656e073]
¥Û¥¹¥ÈÀßÄê¥Õ¥¡¥¤¥ë¤ò¥³¥Ô¡¼¤·ÊÔ½¸¤¹¤ë
cd /opt/icewall-sso/certd/config
cp -ip sample.conf back01.conf
vi back01.conf
BASICAUTH=1¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡ ¡Å¡ÅBASICǧ¾ÚÂå¹Ô¤ò͸ú¤Ë¤¹¤ë
SVRFILE=back01,./back01.conf¡¡¡Å¡Å¥Û¥¹¥ÈÀßÄê¥Õ¥¡¥¤¥ë¤òÊѹ¹...
BA-UID=<UID>¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡Å¡Åǧ¾Ú¤Ë»È¤¦¥æ¡¼¥¶¡¼Ì¾¤ÎDB...
BA-PWD=<PWD>¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡¡Å¡Åǧ¾Ú¤Ë»È¤¦¥Ñ¥¹¥ï¡¼¥É¤ÎDB...
***FORMǧ¾Ú¤ÎÂå¹Ô [#z6c0a4c7]
¥Û¥¹¥ÈÀßÄê¥Õ¥¡¥¤¥ë¤ò¥³¥Ô¡¼¤·ÊÔ½¸¤¹¤ë
cd /opt/icewall-sso/certd/config
cp -ip sample.conf back01.conf
vi back01.conf
FORM_FILE=FORM01,./form.conf ¡Å¡ÅFORM01¤È¤¤¤¦¥Õ¥©¡¼¥à¥°¥ë...
¥Õ¥©¡¼¥àÀßÄê¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤¹¤ë
vi form.conf
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){¹àÌÜ=¥Õ¥©...
|BGCOLOR(#f0f8ff):CENTER:¹àÌÜ|BGCOLOR(#f0f8ff):CENTER:ÀâÌÀ|
|FORM_URL|¥Õ¥©¡¼¥àǧ¾Ú¤¬¹Ô¤ï¤ì¤ë²ÄǽÀ¤Î¤¢¤ëURL¤ò»ØÄê¡£/...
|FORM_KEY|FORMǧ¾Ú¤Èǧ¼±¤¹¤ë¥¡¼¥ï¡¼¥É¤Î»ØÄꡣʣ¿ô»ØÄꤷ...
|FORM_METHOD|formǧ¾Ú¤Î¥á¥½¥Ã¥É¤ò»ØÄê¡£<form>¥¿¥°¤Îmethod...
|FORM_SEND|¥ê¥¯¥¨¥¹¥ÈÀè¤ÎURL¡£<form>¥¿¥°¤Îaction°À¤ÎÃÍ...
|FORM_DATA_STR|FORM¤ËÆþÎϤ¹¤ë¸ÇÄêÃͤòÄêµÁ|
|FORM_DATA_USR|FORM¤ËÆþÎϤ¹¤ëÃͤò¾ðÊó·Ñ¾µ¤Ê¤É¤«¤éÆÀ¤é¤ì¤ë...
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){FORM_DATA_...
FORM_DATA_STR=FORM01,POSTDATA,id,user01
FORM_DATA_STR=FORM01,POSTDATA,pwd,pass01
¢¨¥á¥½¥Ã¥É¤ÏGET¤ÏQUERY_STRING¡¢POST¤ÏPOSTDATA
&color(#FF00FF){¡Ú¡¡½ñ¼°¡¡¡Û}; &color(#0000FF){FORM_DATA_...
FORM_DATA_USR=FORM01,POSTDATA,id,EXTRAUID
FORM_DATA_USR=FORM01,POSTDATA,pwd,EXTRAPWD
¢¨DB¥«¥é¥à¤Ïcert.conf¤ÎDBEXATTR¤ÇÄêµÁ¤·¤¿¥«¥é¥à¤ò»ØÄꤹ¤ë
~
**¥Õ¥©¥ï¡¼¥À¤Î¥¢¥¯¥»¥¹¥í¥°¡Êdfw.log¡Ë [#p11d3513]
dfw.conf¤ÎACCESS¤Ç»ØÄꤷ¤¿¾ì½ê¡Ê¥Ç¥Õ¥©¥ë¥È¤Ï/opt/icewall-...
¡Ú½ÐÎÏÎã¡Û[2012/03/12 09:21:16] 0.024 0.117 0.000 use...
|BGCOLOR(#f0f8ff):CENTER:¹àÌÜ|BGCOLOR(#f0f8ff):CENTER:ÀâÌÀ|
|[2012/03/12¡Á|Æü»þ|
|0.024|¡¥Õ¥©¥ï¡¼¥Àµ¯Æ°¤«¤é¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼Àܳ¤Þ¤Ç¤Î...
|0.117|¢¥Ð¥Ã¥¯¥¨¥ó¥ÉÀܳ¤«¤éÀÚÃǤ¹¤ë¤Þ¤Ç¤Î·Ð²á»þ´Ö¡ÊÉáË|
|0.000|£¥Ð¥Ã¥¯¥¨¥ó¥É¤«¤é¥³¥ó¥Æ¥ó¥Ä¤ò¼õ¤±¼è¤Ã¤Æ¤«¤é¥¯¥é¥¤...
|user1|¥ê¥¯¥¨¥¹¥È¤·¤¿¥æ¡¼¥¶¡¼ID|
|POST|¥ê¥¯¥¨¥¹¥È¤µ¤ì¤¿HTTP¥á¥½¥Ã¥É|
|[web.test¡Á|¥ê¥¯¥¨¥¹¥È¤µ¤ì¤¿URL¡ÊALEVEL2°Ê¾å¤Ç½ÐÎÏ¡Ë|
|56|¥³¥ó¥Æ¥ó¥Ä¥µ¥¤¥º(byte)¡ÊALEVEL2°Ê¾å¤Ç½ÐÎÏ¡Ë|
|192.168.11.10|¥¯¥é¥¤¥¢¥ó¥È¤ÎIP¥¢¥É¥ì¥¹¡ÊALEVEL2°Ê¾å¤Ç½Ð...
|TID=¡Á|¥È¥é¥ó¥¶¥¯¥·¥ç¥óID¡Ê¥³¥ó¥Õ¥£¥°¤Ç͸ú¤Ë¤¹¤ë¤³¤È¤Ç...
***·Ð²á»þ´Ö¤Ë¤Ä¤¤¤Æ [#b446a6ee]
&ref(icewall_transaction.png);~
¡¥Õ¥©¥ï¡¼¥À¤¬µ¯Æ°¸å¡¢¥Ð¥Ã¥¯¥¨¥ó¥É¥µ¡¼¥Ð¡¼¤Ø¤ÎTCP/IPÀܳ¤¬...
¢HTTP¤Ë¤è¤ë¥³¥ó¥Æ¥ó¥ÄžÁ÷»þ´Ö~
£TCP/IPÀܳ¤¬ÀÚÃǤ·¡¢¥¯¥é¥¤¥¢¥ó¥È¤È¤ÎÄÌ¿®¤ò³«»Ï¤¹¤ë¤Þ¤Ç¤Î...
¡¡URL¡¦¥¡¼¥ï¡¼¥ÉÊÑ´¹¤Ë³Ý¤«¤Ã¤¿»þ´Ö¤Ç¥¯¥é¥¤¥¢¥ó¥È¤Ø¤Î¥³¥ó...
***¥È¥é¥ó¥¶¥¯¥·¥ç¥óID [#ga23976f]
¥Õ¥©¥ï¡¼¥À¤Ë¤è¤ê¸Ä¡¹¤Î¥ê¥¯¥¨¥¹¥È¤ò¸ÄÊ̤˳ä¤ê¿¶¤é¤ì¤¿TID¤Ç...
TID¤Ïǧ¾Ú¥â¥¸¥å¡¼¥ë¦¤Ç¤âƱ¤¸ÃͤǵϿ¤µ¤ì¤ë°Ù¡¢¥í¥°¤ÎÆ͹ç...
dfw.conf
TRANSID=1 ¥È¥é¥ó¥¶¥¯¥·¥ç¥óID½ÐÎϤò͸ú¤Ë¤¹¤ë
TRANSID_STR¡¡¥È¥é¥ó¥¶¥¯¥·¥ç¥óID¤Î¸å¤ËǤ°Õ¤Îʸ»úÎó¤òÄɵ...
cert.conf
TRANSID=1¡¡¡¡Ç§¾Ú¥â¥¸¥å¡¼¥ë¥í¥°¤Ø¤Î¥È¥é¥ó¥¶¥¯¥·¥ç¥óID½Ð...
~
**ǧ¾Ú¥â¥¸¥å¡¼¥ë¤Î¥¢¥¯¥»¥¹¥í¥°¡Êcert.log¡Ë [#uf812098]
cert.conf¤ÎACCESS¤Ç»ØÄꤷ¤¿¾ì½ê¡Ê¥Ç¥Õ¥©¥ë¥È¤Ï/opt/icewall...
¡Ú½ÐÎÏÎã¡Û[2012/03/12 09:21:05] User Login. TID=TID201¡Á...
|BGCOLOR(#f0f8ff):CENTER:¹àÌÜ|BGCOLOR(#f0f8ff):CENTER:ÀâÌÀ|
|[2012/03/12¡Á|Æü»þ|
|User Logout|¥í¥°¥á¥Ã¥»¡¼¥¸|
|TID=¡Á|¥È¥é¥ó¥¶¥¯¥·¥ç¥óID¡Ê¥³¥ó¥Õ¥£¥°¤Ç͸ú¤Ë¤¹¤ë¤³¤È¤Ç...
|UserUD=|¥æ¡¼¥¶¡¼ID|
|[AC10124|¥á¥Ã¥»¡¼¥¸ID|
***ǧ¾ÚDB¥¢¥¯¥»¥¹»þ´Ö¤ÎµÏ¿ [#da4f0e77]
ALEVEL¤Ë1°Ê¾å³î¤Ä¡¢LOGPERF=1¤ËÀßÄꤷ¤¿¾ì¹ç¡¢Ç§¾ÚDB¤Ø¤Î¥¢...
¡Ú½ÐÎÏÎã2¡Û[2012/03/12 09:21:05] PERF 1104244 LOGINUID u...
|BGCOLOR(#f0f8ff):CENTER:¹àÌÜ|BGCOLOR(#f0f8ff):CENTER:ÀâÌÀ|
|[2012/03/12¡Á|Æü»þ|
|PERF|PERF¸ÇÄê|
|1104244|¥¹¥ì¥Ã¥ÉID¡ÊÆâÉô½èÍý¤Î¥ê¥¯¥¨¥¹¥È¥¹¥ì¥Ã¥ÉID¡Ë|
|LOGINUID|¥ê¥¯¥¨¥¹¥È¼ïÊ̡ʲ¼µ»²¾È¡Ë|
|UserUD=|¥æ¡¼¥¶¡¼ID|
|0.007303|¥ê¥¯¥¨¥¹¥È½èÍý»þ´Ö|
|S:¡ÁU:|DB½èÍý»þ´Ö¡£S:Select¡¢U:Update¡¢I:Insert¡¢B:bind...
|TID=¡Á|¥È¥é¥ó¥¶¥¯¥·¥ç¥óID¡Ê¥³¥ó¥Õ¥£¥°¤Ç͸ú¤Ë¤¹¤ë¤³¤È¤Ç...
|[AC10124|¥á¥Ã¥»¡¼¥¸ID|
|BGCOLOR(#f0f8ff):CENTER:¥ê¥¯¥¨¥¹¥È¼ïÊÌ|BGCOLOR(#f0f8ff):...
|LOGINUID|¥æ¡¼¥¶¡¼ID¤Î¥í¥°¥¤¥ó|
|FLOGINUID|¶¯À©¥æ¡¼¥¶ID¤Î¥í¥°¥¤¥ó|
|LOGINCERT|¾ÚÌÀ½ñ¥í¥°¥¤¥ó|
|LOGINSAML|SAML¥í¥°¥¤¥ó|
|FLOGINSAML|¶¯À©SAML¥í¥°¥¤¥ó|
|LOGINFEDE|¥Õ¥§¥Ç¥ì¡¼¥·¥ç¥ó¥í¥°¥¤¥ó|
|FLOGINFEDE|¶¯À©¥§¥Ç¥ì¡¼¥·¥ç¥ó¥í¥°¥¤¥ó|
|ACCESSUID|¥æ¡¼¥¶¡¼ID¤Î¥¢¥¯¥»¥¹À©¸æ|
|ACCESSCERT|¾ÚÌÀ½ñ¥µ¥¯¥»¥¹À©¸æ|
|PWDCHG|¥Ñ¥¹¥ï¡¼¥ÉÊѹ¹|
|LOGOUT|¥í¥°¥¢¥¦¥È|
|AUTOLOGOUT|¼«Æ°¥í¥°¥¢¥¦¥È|
¥Ú¡¼¥¸Ì¾: