Traditional Culture Encyclopedia - Traditional festivals - Introduction to enterprise network management essay

Introduction to enterprise network management essay

Enterprise network has become the objective way of existence of today's enterprises, with the changing environment, it faces increasing uncertainty. The following is a brief discussion of the enterprise network management paper that I have organized for your reference.

Small and Medium-sized Enterprises Network Security and Network Management

Abstract: This paper briefly discusses small and medium-sized enterprises network security and network management.

Keywords: network security, network management

China has 40 million small and medium-sized enterprises (SMEs), according to authoritative research found that more than 90% of SMEs have at least established an internal network. However, with this comes the problem of security of the internal network of the enterprise. Multi-core, 10Gb security, cloud security, these new technologies for them may be too high-end, small and medium-sized enterprises should be how to network security management? And where to start?

1 internal network construction of the three principles

In the enterprise network security management, to provide employees with the completion of their work required to access information, to avoid unauthorized people to change the company's key documents, balanced access speed and security control of the three aspects of the three, respectively, there are the following three principles.

Principle 1: the principle of least privilege

The principle of least privilege requires that we manage the security of the enterprise network, providing employees with access to the information they need to complete their work only, and do not provide other additional privileges.

Such as the enterprise now has a file server system, in order to security considerations, our financial department will do some special permissions control of the file. The finance department will set up two folders, one of which is used to place some of the documents can be made public, such as blank reimbursement vouchers, etc., to facilitate other employees to fill out the expense reimbursement vouchers. There is also a file to place some confidential documents, only the top management of the enterprise can view, such as the enterprise's cash flow statement and so on. At this point, we set the permissions, according to the principle of least privilege, for ordinary employees and senior management to send open settings, if the ordinary employees, then its functions can be accessed to the folder to query, for which there is no access to the folder, the server to deny access to it.

Principle two: the principle of integrity

The principle of integrity means that we in the enterprise network security management, to ensure that unauthorized individuals can not change or delete information, especially to avoid unauthorized people to change the company's key documents, such as corporate financial information, customer contact information and so on.

The principle of integrity in the application of enterprise network security, mainly reflected in two aspects. One is that unauthorized people can not change the information records. The second refers to the fact that if someone modifies it, the history of the modification must be saved for subsequent inquiries.

Principle three: the principle of balance between speed and control

We have all kinds of restrictions on the information, will inevitably have an impact on the speed of access to information. In order to achieve this balance, we can do so. First, the file information is graded according to security. For some less important information, we can lower the level of security control, so as to improve the efficiency of the user's work. Second, try to manage at the group level, rather than at the user level for permission control. Third, be careful about using temporary privileges.

2 The main problems exposed by the intranet

2.1 A single password

2.1.1 Unified password for mail or passwords with a certain regularity

For the passwords of the mail system, file servers, management systems, and other accounts, the setup should be a little more complex, or at least the regularity should not be so obvious, or else there will be a big security risks.

2.1.2 Important document password complexity is poor, easy to crack

Throughout the enterprise users, in fact, they have a very poor understanding of the password. There are many users, know that some important documents to set up a password, but they are often out of convenience and other needs, and set the password is too simple. Therefore, we have to train users on network security, to give them key tips in this regard.

2.2 Network congestion, conflict

2.2.1 Under the movie, the game, a lot of bandwidth resources

Now many companies are using fiber access, bandwidth is relatively large. However, this also provides an opportunity for some cool people who love movies. They are at home under the movie, the download speed may only 10K, but, in the company under the movie, the speed can reach 1M, or even more. This is very attractive to employees who love to watch movies.

2.2.2 IP address changes randomly, leading to address conflicts

Some companies set up some rules based on IP, such as restricting a segment of IP addresses from being able to access QQ, and other simple settings. The original intention of these settings is good, but may also bring some trouble to our network maintenance.

2.3 Lax gatekeeping

2.3.1 Lax control of portable mobile devices

Although our company now has strict requirements for the use of mobile storage devices, such as USB flash drives, portable hard drives, MP3 players, and so on, such as the need to approve the use of the first, and so on. However, many users are still using mobile storage devices privately.

The private use of portable storage devices brings two major risks to an organization's internal network.

One is the security of enterprise files. Because some of the important documents belonging to the enterprise resources, such as customer information, product bill of materials, etc., the enterprise regulations are not able to outsource. Second, if the use of mobile storage devices, the virus will miss our perimeter located in the virus firewall, and directly from the internal invasion of the enterprise.

2.3.2 Email attachments are a security risk

The danger of email attachments is slowly increasing. Now with the popularity of electronic documents, more and more people like to use mail attachments to deliver electronic documents. The first thing you need to do is to get the message across to your friends and family, and then you can send it to them in the mail.

According to the relevant website survey, now mail attachments carry virus cases in the yearly climb. If you don't control it in your daily management, it will affect your network security sooner or later.

3 daily behavioral management of the internal network

Because of the complexity and variability of the online behavior of the employees within the organization, there is no cure for all diseases, for different online behavior industry have mature solutions. Now, based on the technology of the leading vendor in the field of online behavior management, DeepSync Technology, we will briefly introduce the basic response strategy.

3.1 Filtering and delayed auditing of outgoing Email.

Preventing Email leakage requires both pre and post consideration. First of all, before outgoing based on a variety of conditions to intercept and filter Email, but the intercepted mail may not contain harmful content to the organization, how to avoid the limitations of machine identification? The Email Delay Audit technology provided by DeepSync can intercept outgoing Emails that match the specified conditions, and then manually audit the outgoing messages to ensure that they are safe and secure.

Auditing after the fact should not be overlooked. The first step is to record all outgoing emails, including body text and attachments. In addition, because of the widespread use of Webmail, Webmail outgoing Email should also be able to do filtering, recording and auditing.

3.2 URL library + keyword filtering + SSL encrypted web page identification.

Partial control of plaintext web pages through static pre-categorized URL libraries is the foundation, but at the same time, it must be able to filter keywords entered into search engines, thus complementing the static URL libraries that are slow to update and have low capacity. For the identification and filtering of SSL encrypted web pages, the industry exists through the proxy SSL encrypted traffic, decrypted SSL encrypted traffic way to achieve, but for the organization of the Finance Department, ordinary employees operating online banking account data is also decrypted obviously there is a great security risk. DeepSync's Internet behavior management equipment identifies, detects, and filters SSL encrypted websites' digital certificates to meet the user's requirements for filtering SSL encrypted websites without introducing new security risks.

3.3 Network upload filtering.

Forum flooding, web posting, and file uploads and downloads all need to be filtered based on a variety of keywords, and it should be possible to make a detailed record of all successfully uploaded content for later verification. However, this is not enough, such as one of the main places to hide dirt Internet WEB chat rooms are the vast majority of the use of random dynamic port access, identify, block such dynamic port URLs to become one of the current Internet behavior management challenges, only part of the vendor can properly solve the problem, which is the user in the choice of Internet behavior management gateway need to focus on the issue.

3.4 Accurate identification and flexible management of P2P.

The P2P software on the Internet is endless, and if you can only block "yesterday's BT", it is obviously not enough. In terms of P2P identification, DeepTrust's patented P2P intelligent identification technology - based on behavioral statistics analysis - is indeed unique. Based on behavioral characteristics rather than on the P2P software itself, it accurately identifies all kinds of P2P, including encrypted, uncommon and flooded versions. With precise identification, such a device is extraordinarily effective at streaming P2P.

3.5 Control all kinds of non-work related network behaviors.

Leading vendors in the industry have abandoned IP- and port-based application identification and adopted in-depth content detection technologies based on application protocol feature codes, with the difference being only in which vendor has the largest and most up-to-date application identification library. Based on accurate application identification, coupled with the assignment of different network access policies to different users and time periods, this will certainly enhance employee productivity.

Along with the proliferation and spread of unintentional online behaviors of employees on organizational intranets, Internet behavior management technologies and solutions that meet the needs of Chinese customers will also evolve rapidly to continue to meet the needs of the majority of users.

The basic construction of the enterprise network and network management

Abstract: Along with the increasing popularity of the Internet, the network application of the booming development of this paper in the analysis of the current enterprise network construction and management of the problems that exist in the basis of this paper, to solve the problem of the specific countermeasures, aiming to Improve the construction quality and management level of the enterprise's marketing network. The confidentiality, integrity, availability, controllability and reviewability of the system have their important significance. Through the network topology and network group technology to build the enterprise network network, through the physical, data and other aspects of the design of the network management to improve the effective measures to solve the above problems.

Keywords: enterprise network, network construction, network management

Enterprises are becoming more and more demanding on their networks, and in order to ensure high network availability, they sometimes want to provide redundancy of devices, modules, and links in the network. However, in a Layer 2 network, redundant links may lead to switching loops, causing broadcast packets to loop endlessly in the switching loops, which in turn disrupts the working performance of the devices in the network, or even paralyzes the entire network. Spanning Tree technology solves the problem of switching loops while providing redundancy to the network.

The wave of information technology represented by the Internet has swept the world, and the application of information network technology has become increasingly popular and in-depth, along with the rapid development of network technology, the enterprise network network needs to start from the construction of the network and network management.

First, the construction of the basic network

Due to the characteristics of the enterprise network network (large data traffic, stability, economy and expandability) and the requirements of each department (access control between the production department and the office sector), we use the following program:

1. Network topology selection: the network adopts a star topology (Figure 1). It is currently the most used and most common LAN topology. The nodes have a high degree of independence and are suitable for placing network diagnostic equipment in a central location.

2. Selection of networking technology: At present, the commonly used backbone network networking technologies are Fast Ethernet (100Mbps), FTDH, Gigabit Ethernet (1000Mbps), Fast Ethernet is a very mature networking technology, its cost is very low, the performance-price ratio is very high; FTDH ;is the fiber directly to the customer, is the ideal network platform for multimedia applications, but its actual network bandwidth is very low. But the actual utilization of its network bandwidth is very high; Gigabit Ethernet has become a mature networking technology, so I recommend using Gigabit Ethernet as the backbone, Fast Ethernet switching to the desktop to set up a computer broadcast control network.

Second, network management

1. Physical security design. In order to ensure the physical security of the enterprise network information network system, in addition to the network planning and site, environment and other requirements, but also to prevent the proliferation of system information in space. Computer systems through electromagnetic radiation so that information is intercepted and loss of confidentiality of the case has been a lot of theoretical and technical support under the verification work has also confirmed that this interception distance in hundreds of meters or even up to kilometers of the recovery of the display technology to the computer system information ___ has brought great harm. In order to prevent the information in the system from spreading out in space, it is usually physically to take certain precautions to reduce or interfere with the space signal that spreads out. Normal precautionary measures are mainly in three aspects: shielding of the host room and important information storage, receiving and dispatching departments, i.e., the construction of a shielded room with efficient shielding performance, with which the main equipment is installed and operated in order to prevent the signal leakage of magnetic drums, tapes and high-radiation equipment. In order to improve the effectiveness of the shielding room, in the shielding room and the outside world of the various links, connections should be taken in the corresponding isolation measures and design, such as signal lines, telephone lines, air conditioning, fire control lines, as well as ventilation, waveguide, the door shut up and so on. Local network, LAN transmission line conduction radiation suppression, due to the inevitability of cable transmission of radiation information, are now using fiber-optic cable transmission, most of the equipment in the Modem out of the optoelectronic conversion interface, with fiber-optic cable connected to the shielded outdoor transmission.

2. Network **** enjoy resources and data information design. For this problem, we decided to use VLAN technology and physical isolation of computer networks to achieve.

A VLAN is a logical network divided on a physical network. This network corresponds to the second layer of the OSI model. By dividing an enterprise network into virtual networks VLANs, network management and network security can be strengthened and unnecessary data broadcasts can be controlled.VLANs divide the network into multiple broadcast domains, thus effectively controlling the occurrence of broadcast storms, and they can also be used to control access to each other between different departments and sites in the network. People are becoming more and more dependent on the network, and in order to ensure high network availability, it is sometimes desirable to provide redundancy of devices, modules, and links in the network. However, in Layer 2 networks, redundant links may lead to switching loops, which make broadcast packets circulate endlessly in the switching loops, thus damaging the working performance of the devices in the network and even paralyzing the whole network. Spanning Tree technology can solve the problem of switching loops and provide redundancy for the network at the same time. Tianyi company has sales department and technical department, the computer system of the technical department is scattered and connected to two switches, they need to communicate with each other, and the sales department and the technical department also need to communicate with each other, in order to meet the company's needs, it is necessary to realize this goal on the network equipment. To enable computer systems in the same VLAN to communicate with each other across switches, trunks need to be established between the two switches, and computer systems in different VLANs need to communicate with each other to achieve interoperability between VLANs

To enable computer systems in the same VLAN to communicate with each other across switches, trunks need to be established between the two switches, and computer systems in different VLANs need to communicate with each other to realize interoperability between VLANs. Computer systems in different VLANs should also be able to communicate with each other. Realizing inter-VLAN communication requires Layer 3 technology to realize, that is, through a router or a Layer 3 switch. It is recommended to use Layer 3 switches for this implementation because using routers tends to create bottlenecks.

VLANs are proposed to solve the broadcast problem and security of Ethernet by adding VLAN headers to Ethernet frames, dividing users into smaller workgroups with VLANIDs, and restricting Layer 2 inter-access to users between different workgroups, with each workgroup being a virtual local area network (VLAN). The benefits of virtual LANs are that they can limit the broadcast range and can form virtual workgroups to dynamically manage the network. From the current point of view, the way of dividing VLANs based on ports is one of the most commonly used ways. Many VLAN vendors utilize switch ports to divide VLAN members, and the ports that are set are all in the same broadcast domain to enable network management.

The problem of internal enterprise networks is not only a matter of equipment and technology, but also a matter of management. For the management of the enterprise network, we must improve the network management knowledge, strengthen the network management technology mastery, in order to manage the enterprise network.

References:

[1] Andrew S. Tanenbaum. Computer Networks (4th ed.) [M]. Beijing: Tsinghua University Press, 2008.8

[2]Yuan Jinsheng, Wu Yanong. Fundamentals of Computer Network Security [M]. Beijing: People's Posts and Telecommunications Publishing House, 2006.7

[3] China IT Labs. VLAN and Technology [J/OL], 2009
An Introduction to Enterprise Network Management Essay Part III
"Thinking about Networked Management of Enterprises"

Abstract: The implementation of networked management by enterprises is one of the features of the network economy. The enterprise's management process, business data, business-related financial data, and various assets of the enterprise need to be networked management. The establishment of business-centered enterprise resource planning system is the goal of enterprise management informatization. Finally, the success or failure of such systems are analyzed, such as factors.

Keywords: management process networking; network finance; resource planning

Abstract: enterprises implement the network management is one of the characteristics of network economy, enterprise management process and business data, and various assets of enterprises need to be networked management. enterprise management process and business data, and business related financial data, and all kinds of assets of the enterprise need network management Establish business centered enterprise resource planning system is the enterprise management information goal. In the final analysis, the success or In the final analysis, the success or failure of this kind of system of Numbers.

Keywords: management flow network; Financial network; Resource planning

Chinese Figure Classification：C29 Literature Identification Code：A Article Number:

Preface

The management system within a business may vary widely as the form of the business is not the same, the main business is not the same, and the level of management is not the same. With the expansion of the business activities of business owners, the need to give more and more decisions, the more complex and diverse, and soon realized that it is not possible to be everywhere at the same time, it is not possible to include all the data, in order to give the decision-making needs and thus require the level of competence, has greatly exceeded the talent of a manager. Therefore, the enterprise decision-making will have to carry out a multi-faceted study, with the help of such functions as finance, sales, production and personnel, the first step in solving these problems is to delegate responsibility to the subordinates (responsibility decentralized to the subordinates), so that the staff of each function, in the process of completing their tasks to give full play to the spirit of innovation and begin to independently collect and organize data relating to their own work-related data. The result was an information system whose information was assembled from departmental data,

Although there was a lot of duplication of effort enterprise-wide in collecting and storing this multiplexed stream of data, it was then that enterprises did first begin to consider replacing bookkeeping with formal information systems focused on management. This was the initial impetus for management information systems. With the development of equipment technology, a variety of automated devices are available to help inform and network management, in which computers play an important role. The development of computers and networks has brought convenience to networked management, and at the same time put forward new requirements for the traditional division of labor in enterprises. And in the technical, operational and economic feasibility of the management program must also be specialized departments to cooperate.

The network has had a transformative impact on the economic environment, the way the economy works. The impact of the network on the economy, produced after the agricultural economy, industrial economy, a new way of economy - network economy. The network of management is one of the characteristics of the network economy, in this case the enterprise's capital flow, material flow, business flow and information flow in one, can do fine management.

1. The need for enterprises to establish networked management

1.1 The management process of the enterprise needs to be networked

The traditional enterprise management is like the management of the globe of the longitude (on behalf of the management of all levels) and latitude (on behalf of the management of all levels of departments) of the intersection (on behalf of the management of departmental level), as is three-dimensional. The use of network to manage the process to achieve flat management, across multiple departments and to the main line of business connected together.

1.2 Business data needs to be networked management

Once the business data to achieve networked management, the source of each account on the financial will be very clear, the business traceability will be very convenient; and the network of management processes also need to be entrained with the data of the various business processes.

1.3 Enterprise financial data need to network management

The traditional non-networked financial management system has a number of defects, such as the financial accounting level is difficult to meet the needs of financial management, financial control level of the defects and the financial decision-making means of support is very lack of etc.; the traditional financial management information system can not be achieved in the higher departments of the lower departments of the financial income and expenditure of the two lines of monitoring, unable to meet the standardized unified management needs, unable to meet the standardized unified management needs, unable to meet the standardized unified management needs, unable to meet the standardized unified management requirements. Meet the needs of standardized unified management, unable to control the authenticity and validity of data, etc.. In view of these shortcomings, the establishment of business event-driven networked financial management system is very necessary.

1.4 The enterprise's materials and equipment, manpower and technology, customer relations and partners also need network management

The enterprise's tangible assets, intangible assets and enterprise knowledge management to achieve a unified network scheduling, the efficiency will be greatly improved, a variety of machinery and equipment and manpower utilization will be improved; the formation of enterprise knowledge is the enterprise can be cloned and replicated to expand the foundation. The foundation of the enterprise knowledge formation is the enterprise can clone and copy the growth of the foundation.

2. Establishment of networked management system

2.1 Networking of business and financial data

Informatization of the network of the network of the network economy is of great significance, it can be said that, if there is no informatization of the network of the emergence of the network of the network of the economy, as opposed to the agricultural economy, the industrial economy will not appear. Network according to the network scope and interconnection distance can be divided into the Internet, the internal network of enterprises, inter-enterprise network. International Internet is in accordance with certain communication protocols will be distributed in different geographical locations, with different functions of the computer or computer network through a variety of communication lines physically connected to the global computer network network system. Enterprise internal network is the application of international Internet technology will have different functions within the enterprise computer through a variety of communication lines in the physical connection of the local area network. In this network, the internal departments can **** enjoy the program and information, enhance the collaboration between employees, and simplify the workflow.

The establishment of a business event-driven information system is the beginning of networked management, which means that in the networked economic environment, a large number of achievements in the use of mature information technology, so that the management process and the economic business processes are organically integrated together. When an enterprise's economic business (event) occurs, by the business-related departments of an employee is responsible for entering business information, when the information into the system, and immediately stored in the designated database; at the same time, the business event through the management platform, generating real-time vouchers, automatically or by the management personnel to confirm the display of all the relevant books and reports, no longer need a second department or any other employee to enter again. In this way, the information is available to all "authorized" personnel***. Each business management and accounting staff every day must open a certain information screen, management and control of relevant economic operations, to achieve real-time, rapid response to changes in the external and internal economic environment; all managers are in accordance with a unified, real-time information sources to make decisions, avoiding different decision-making units or individuals, due to different sources of information based on conflicting decisions, resulting in confusion in management decision-making. In this financial information system, most of the event data are stored in the original, unprocessed way, the realization of the financial information and non-financial information stored at the same time to achieve the logistics, capital flow, business data flow synchronization of the generation of the original business vouchers prepared by the accounting staff, statements and other financial information can be generated by the computer in real time, the output, greatly reducing the duplication of work in the financial sector to improve work efficiency while reducing the error rate. Work efficiency while reducing errors to achieve "number out of a door, information **** enjoy".

Driven by business events, the establishment of business data and generation of financial information, you can set up a database directly linked to the management model library, in the model library to set up advanced management models, such as early warning models, forecasting models, decision-making models, funding models. For special information users, according to their own needs, they can design their own models to meet the needs of the enterprise itself, such as according to the needs of the enterprise can be set up within the enterprise cost accounting model, inventory early warning model, to meet the needs of the enterprise's own management. The data required by these models can be extracted directly from the database.

2.2 Enterprise Resource Planning (ERP) system

In the network economy, the competition between enterprises, is an all-round competition, not only including the internal management of the enterprise and other resources competition, including external resources supply chain, customer resources and other external resources competition. Therefore, in the network economy, to enable enterprises to adapt to the instantaneous changes in the market environment, invincible, the establishment of the enterprise's entire resource planning system is the inevitable trend of enterprise management. Enterprise resource planning system is no longer unfamiliar to people, enterprise resource planning is in the mid-1990s by the famous U.S. consulting firm Gartner put forward a set of enterprise management system system standards, and soon be recognized by the management community and academia, and gradually expand the use. ERP system is actually a fusion of advanced management ideas and information technology, which believes that enterprise resources include plants, warehouses, materials, equipment, tools, capital, manpower, technology, reputation, customers, suppliers, and all other tangible and intangible assets available for the deployment of the enterprise, which emphasizes the combination of human, financial, material, production, supply and marketing in a comprehensive manner, comprehensively controlled, real-time feedback, dynamic coordination, and to address the integration of customer, supplier, and manufacturer information, and the integration of customer, supplier, and manufacturer information. It emphasizes the integration of human, financial, material, production, supply and marketing, comprehensive control, real-time feedback and dynamic coordination, and solves the problems of customers, suppliers and manufacturers, optimizes the supply chain, and realizes the management of the whole resources in cooperation and competition. Enterprise Resource Planning (ERP) system is a business-centric organization, the enterprise's operational processes as a tight supply chain, from suppliers to customers, the full coordination of the enterprise's internal and external resources, the integration of the enterprise's entire information, to achieve the enterprise's overall competitiveness.

3. Management system issues

Even the best management system depends on the people involved, if the participants feel that the system has nothing to do with him, the input is garbage data, then the output is also garbage data, the management system can not play the role it should. This requires the development of management systems to make the system as easy as possible to enter, accurate input and not repeat the data entry, these should try to use automated input devices, so that the data collection automation, reducing the number of human error factors. Management systems should be tailored to be applicable and practical. In addition, the importance of leadership at all levels of the organization is also an important factor in the success or failure of this type of management system.

Recommended essays on enterprise network management:

1. Introduction to enterprise network management essay

2. Selected examples of network management essays

3. Network management essays

4. Network management technology essays

5. Network management and maintenance essays

6. Introduction to the modern enterprise management essays

7.

7. Introduction to Corporate Team Management Essay

Previous article:Let the ancient poetry teaching full of spirit

Next article:The representative of Xishuangbanna residential architecture is ( ) A. Ice House B. Bamboo House C. Kiln Cave D. Four Houses

Related articles

The most nutritious fruit in summer, cook a boil, quench thirst and help digestion, do with the meal dessert is the most appropriate

Pocket knotting illustration

When did the concept of Wushu come into being?

What is the meaning of the King of Thieves dumplings

What industry is suitable for young people to start businesses?

Scallion pancake making

Which spice is the most flavorful for beef in sauce?

The core part of management accounting

What tools are suitable for shooting travel vlog?

High school student speech to promote traditional culture?