这里写自定义目录标题
大数据平台的防火墙、服务网关Knox
边界安全/防火墙
利用Knox对大数据平台建立了2级防护墙。
the first firewall forces all internet communication to talk only to the knox gateway. Communication that passes security challenges at the gateway (IP, ports, Kerberos/LDAP authentication, other) are routed to the cluster.
The second firewall further isolates the cluster by forcing the cluster to only accept communication from the gateway, which is a known host on the internal network.
Knox网关部署架构