Application-Level Checkpointing Techniques for Parallel Programs

Check Point抗DDoS拒绝服务攻击设备作者：暂无来源：《计算机世界》 2013年第3期获奖理由Check Point 抗DDoS拒绝服务攻击设备，不仅可以防范拒绝服务攻击，而且可以对网络安全状况进行集中管理。

Check Point 所推出的全新抗DDoS 拒绝服务攻击设备，通过多层定制保护以及12Gbps性能保证企业运转，同时自动阻止网络攻击和应用层攻击。

这一产品提供了灵活的部署选项，并提供了包括实时流量分析和威胁管理情报技术的集成安全管理功能，以阻止DDoS 攻击。

Check Point 抗DDoS 拒绝服务攻击设备，利用定制的多层次保护来阻止多种不同的攻击。

这种多层次保护以行为保护为基础，通过排列多个元素阻截不正常流量。

同时，这种保护方式可以自动生成和预定义签名，并采用了先进的响应技术。

目前，Check Point 抗DDoS 拒绝服务攻击设备不仅可以自动防御网络溢出攻击和应用层攻击，而且能够满足特定的网络环境和安全需求。

在流量到达防火墙之前，Check Point 抗DDoS 拒绝服务攻击设备可以快速地对流量进行过滤，从而保护网络、服务器并阻止漏洞攻击。

C h e c k P o i n t抗DDoS 拒绝服务攻击设备目前已经与Check Point安全管理集成在了一起，可以利用SmartEven、SmartLog 和SmartView 追踪器，对整个网络安全和DDoS 攻击状态进行实时和历史性的观察。

另外，其还拥有对Web 界面和命令型接口的独立策略管理。

凭借专用的硬件加速，Check Point 抗DDoS拒绝服务攻击设备可为所有的网络流量检查和保护提供高达12Gbps 的能力，从而预防DDoS 攻击，并阻止过度使用网络和安全设备的CPU资源。

Check Point 4600设备Check Point 4600 设备目前，企业网关不仅是防火墙。

它是为应对日益增多的复杂威胁而提供的一款安全设备。

作为企业安全网关，它必须使用多种技术来控制网络访问，检测复杂攻击，并提供其它安全能力，如数据丢失防护和防御基于Web的威胁等。

而智能手机和平板电脑等移动设备的扩散以及新型流媒体、社交网络和P2P应用软件则需要更大的连接容量和新的应用控制技术。

最终，企业向私有云和公共云服务的转型从各个方面改变了公司的边界，这需要更强的性能和额外的安全解决方案。

Check Point的新型设备将快速联网技术与高性能多核能力结合在一起，提供最高层次的安全性，同时不会降低网络速度，保证你的数据、网络和员工安全。

每种设备针对软件刀片架构而优化，能够运行任意软件刀片组合，通过将多种安全技术合并成一种集成解决方案而为每个网络站点的任意业务提供具有灵活性和精确性的安全等级。

每种Check Point设备都支持Check Point的3D安全远景规划，后者将策略、人和执行结合在一起，提供无与伦比的安全防护，并针对下列软件刀片的任意组合进行优化：（1）防火墙，（2）VPN，（3）IPS，（4）应用控制，（5）移动访问，（6）DLP，（7）URL过滤，（8）反病毒，（9）反垃圾邮件，（10）身份识别，（11）高级联网和集群。

概述Check Point 4600设备提供了完整的增强安全解决方案和1U设备中的领先性能。

除了八个板载1 GB铜缆以太网端口外，4600还具有一个扩展槽，可选装附加的四端口千兆电口卡、2端口或4端口光纤卡。

374个SecurityPower单元，高达9Gbps 防火墙吞吐量和4Gbps IPS性能的4600能够保证任何中小型办公室的安全。

主要特点374 SecurityPower 9 Gbps 防火墙吞吐量 4 Gbps IPS吞吐量多达12个10/100/1000Base-T端口 多达4个1GbE光纤端口 1个机架单元设备主要优点入门级企业安全设备通过一台设备提供保证你的网络安全所需的一切通过一个集成管理控制台简化管理 保证远程访问以及站点之间通信的数据安全通过可扩展软件刀片架构提供全面安全并防护不断出现的威胁网关软件刀片防火墙IPsec VPN 移动接入(5个用户) 高级联网和集群身份识别IPS 应用控制 数据丢失防护**URL 过滤**反病毒和反恶意软件 **反垃圾邮件***备选Check Point 4600设备SECURITYPOWER到目前为止，安全设备是根据每种安全功能的具体性能衡量指标（通常在最佳实验室测试条件下）以及具有一条规则的安全策略而选择的。

Application Guide For BTech Programmes ApplicantsSCALE Online Application Portal AY2021/2022 January IntakeThings to note before applying:1.Read through the information on SCALE website at https:///37efSqp.2.Have the necessary supporting documents ready. It should be in PDF format, not exceeding1.5MB. You may reference the list of documents at https:///2KzPayL as a guide. It ispreferred that coloured copies are submitted. For supporting documents that are not in English, it must be accompanied by an official translation of the same in English.3.All information that are declared in your application must be supported with documents forverification.4.Application fee is payable only via online payment.5.Depending on the number of programmes selected, you will need to pay anon-refundable and non-transferable application fee before your application is considered submitted.6.Take note of the application deadline. It is advisable to submit your application as early as possiblewithin the application period to prevent any delay in the processing. Any request for late submission of application after the application period will not be entertain.Step 1: Begin your application1.Ensure you are using one of the compatible browsers as listed.2.Read through the instructions before you proceed.3.Check that you are applying to the correct intake, and take note of the application period stated.Any request for late submission of application after the application period will not be entertain.4.Click APPLY NOW to begin your application.Step 2: Create your login password1.Create a password that fulfill the rules as stated. This password will be used to access theapplication portal.Step 3: Select the programmes1.Select the BTech Programmes from the dropdown list.2.Rank your preference if you are applying more than one BTech Programme.3.You are allowed to select up to a maximum of 5 programmes, and the application fee will basedon the number of programmes that you have selected in your application.Step 4: Provide your personal particulars1.The “Official Name” must be as per NRIC/passport, i.e. if there is any special character in yourname (e.g. comma), it should be included. Hanyu pinyin is however not required.2.The “Last Name” refers to your Surname or Family Name.3.For SPRs, your “Citizenship” should follows the nationality at the back of your blue NRIC, andS’pore Blue should be selected under “Type of NRIC”.4.For International applicant, select No NRIC under “Type of NRIC”, and indicate the correct type ofpass you are holding under “Employment Pass Type/Valid Pass Type”.Example for SPRExample for InternationalStep 5: Provide your contact information1. A valid residential address of your current residing home is required. It should be as per indicatedat the back of your NRIC for Singapore Citizens and SPRs. Should you have moved house and have yet to update your NRIC, you are to submit a recent billing statement/letter that shows your full name and latest current address as supporting document.2.Provide a valid email address that is frequently used as we will be contacting you mainly via email.3. A valid contact number must be provided for urgent matters. The country and area codes are notrequired if you are providing a Singapore number.Step 6: Confirm on the number of programmes to apply1.Once you have completed Step 1 to 5, click Proceed to continue.2. A pop-up message will be prompted with the total application fee payable shown. If there are nochanges to be made, click Proceed. If you would like to make changes to the information that was declared earlier, click Cancel to go back to the application.Step 7: Complete the remaining details required for submission1.Your application is now created and a status notification will be send to your registered personalemail that you have provided.2.Take note of your application number which is required for the portal login and it must beprovided when you correspond with us via email or phone call.3.Click on each tab on the left panel to complete your application before submission. You will needto click Save after completing each section for the portal to capture your records.NOTE: Your application is not considered as submitted until you have completed the application and made payment for the application fee.Step 8: Provide National Service (NS) information1.Applicants who have completed the 2 years NS liability are to indicate the ORD date as stated onyour Certificate of Service (COS).2.For applicants who are still serving your NS, select Currently Serving from the dropdown list. Youare to ensure your ORD date is before the commencement date of the intake, and an official letter from MINDEF stating the enlistment date and expected ORD date is to be submitted.3.For applicants who are regular officers (i.e. you are on a contract with MINDEF), selectPensionable/Contract SAF/Civil Defence Officer from the dropdown list and indicate Yes under “Contract Service”. You must have serve passed the 2-years liability, and an official letter from MINDEF with the enlistment date and expected Service Completion Date is to be submitted. 4.Applicants who have indicated Exempted in the application will need to submit the exemptionletter.Example for applicants who are currently serving NSExample for applicants who are on a contract serviceStep 9: Provide education background(A)S ingapore-Cambridge GCE O Level/SPM or equivalent1.If you have taken the Singapore-Cambridge “O” Level Examination, select Singapore-CambridgeGCE O Level from the “Examination” dropdown list.2.You are only required to indicate your grade(s) for the Mathematics subjects. If you have takenthe subject more than once, provide the higher grade and all result slips must be submitted. 3.For SPM holders, you may refer to the table below to guide you on keying in your grades.(B)Polytechnic Diploma1.You may declare up to a maximum of two diploma qualifications, if any.2.The exact course name as stated on your Diploma Certificate should be selected from thedropdown list under “Diploma Course”. E.g. if your course is Diploma in Engineering (Mechanical), you should not be selecting Diploma in Mechanical Engineering.3.Holders of the local 2.5 years Part-time Diploma are to select 2.5 Part Time under “DiplomaTaken”.4.Only holders from the 5 local Polytechnics and BCA Academy are required to indicate your GPAin the application.5.Provide the grades of your best 3 Mathematics modules taken, if any.(C)Advanced Diploma and Specialist Diploma1.This section is required only if you have taken an Advanced Diploma and/or Specialist Diploma.2.If you are currently still in the course, an official letter from the school stating your studentstatus and expected completion date is required.(D)U niversity Education1.If you have withdrawn/dismissed from a University, you are to submit the officialwithdrawal/dismissal letter and the transcript/result slips for modules that were taken previously.Additionally, if you have withdrawn from one of the local universities, an official document from the University with the following information is required as well.a)Nameb)NRICc)Programme enrolledd)Date of admissione)Date of withdrawal / dismissalf)No. of modular units/credits required to graduate (inclusive of exemption upon admission)g)No. of modular units/credits granted as exemption upon admissionh)No. of modular units/credits eligible to enjoy TFS at start of programme (for programme &buffer for failed and repeat modules)i)No. of modular units/credits consumed so far (for programme & buffer for failed and repeatmodules)(E)Other Local Qualification1.Should you have obtained other local qualifications (e.g. ACCA, NUS SCALE Certificate Courses,CET500); you may declare under this section and upload the supporting documents.Step 10: Provide employment information1.ALL employment declared in the application must be supported with the relevant documentsfor verification. Employment that is declared without any supporting documents will not be taken into consideration.2.Polytechnic internship and the 2-years National Service (NS) liability are not considered as workexperience. These should not be declared under the employment section.3. A detailed job description of your current employment is to be provided as it is one of theconsiderations that will be reviewed.4.If you wish to declare more than one previous employment, click on the Add button.5.Previous employment letters/documents of various companies should be combine into one PDFfile if you have declared more than one previous employment.6.If your current employer is sponsoring you for your studies, i.e. financial (e.g. sponsoring of tuitionfee) or non-financial (e.g. providing exam leave), the official approved sponsorship letter with the specific details must be provided.Step 11: Provide Next-of-Kin information1.Provide a valid contact of your next-of-kin for emergency purposes. The country and area codesare not required if you are providing a Singapore number.Step 12: Declaration1.Should you have any health declaration to be made, please specify in details. Official medicalrecords are to be submitted for verification.Step 13: Check and submit your application1.Section marked with a cross implies the particular section in your application is incomplete. Youare to re-visit the section and complete it.2.If you have completed all required sections in the application (i.e. tick in all sections), you mayclick on the Submit button to proceed.Step 14: View, print and make payment for your application1.Check and ensure all details provided in the application are correct. You may make changes toyour application by clicking on the Edit button at the top right corner.2.To print a copy of your application for reference, click on the Print button.3.If there are no changes to be made, click the Payment button to proceed and complete yoursubmission.Step 15: Payment of Application Fee1. A summary of the programmes applied and the total application fee payable will be stated.2.Select your payment method and click Proceed to Payment.3.Follow the instruction on the screen to complete your application fee payment.4.Once payment has been made successfully, you will receive an email with the e-receipt attached. NOTE: Your application will only be processed after the application fee is received. The application fee is non-refundable and non-transferable.。

WMIRS 2.0Flight Academy Management Screen – Beta Test BackgroundYou are being invited to participate in a Beta test of the WMIRS 2.0 Flight Academy Management (FAM) screen. In addition to providing you with an opportunity to become familiar with the application prior to your academy, this test will help us to ensure that a quality product is delivered. Each flight academy will be given a specific mission number to use for testing. Testing will be conducted on what is referred to as the “staging server.” A Testing Feedback tool will help guide you through the test process and provide you with a place to record test results. These systems, tools and processes are explained in greater detail in the following paragraphs.Accessing the CAPNHQ Staging Server and Testing Feedback ToolTo begin testing, go to the staging server at https:// and log in using your normal CAP eServices credentials. At the top of the window, click on the smiley face (see arrow below)…You will be taken to the Testing Feedback tool, as shown below. Under Testing Home, click on the Tutorial link and listen to the four-minute video on how the tool works. Return to Testing Home.There are several on-going tests and we need to be sure we stay in our swim lane, so input “WMIRS” in the Search field on the right. If you want to see all WMIRS tests without having to page through, change “Show entries” on the left to 50. Each test has a Test ID and Test Name followed by a Description. The description starts with a role (“As a Basic User,”) and then describes what you should do (sign in, edit, and sign out…”). Please attempt only those tests that are applicable to your role.Performing the Tests on WMIRS 2.0Open another window/tab in your browser and insert https:///WMIRS/Default.aspx in the address field. Click on Advanced Search; reset to Default Search, if required; enter your assigned mission number at the top, then click Search.You can now navigate to the Mission Info (by clicking the Mission No) or Flight Academy Management Screen (by clicking the number under “Air”) to complete your assigned tests. Please complete each test in order of presentation. If you do not understand how to perform one of the tests, please review the training materials https:///programs/cadets/activities/national-cadet-special-activities/activity-director-help-page. If that doesn’t answer your questions, you can get additional technical support from ********************.Recording Test ResultsRecord the results of each test by returning to the window with the Testing Feedback tool and entering the results by clicking on New.For any test that fails, please ensure you provide enough information to ensure the issue is fully understood. List the steps that you followed, a description of what happened/didn’t happen, and the Mission#/Sortie #, as applicable.Important Things to NoteThe staging server is configured identically to the “production server” that provides WMIRS to users in the field. However, member SSN, DOB, address and email contact information has been removed to protect their personal information. One of the added benefits of this approach it that the staging server is unable to send email messages regarding test activity to pilots, FROs, or Wing Commanders. You can add, edit, or delete mission, sortie, aircraft maintenance, and cost information on the staging server without fear of effecting anything in the “real world.”The following known issues exist in this version of the FAM screen.1.In Google Chrome, the ORM window opens as a standalone, sized window with a scroll bar.However, the window is too tall with the bottom off screen, so the user cannot reach thebottom by scrolling. Microsoft Edge opens in a new window with a scroll bar, but the window is too narrow and the lines are wrapped. WORKAROUND -- Chrome and Edge users shouldmaximize the window prior to starting the survey. (Help Desk Ticket #: 54024. Fix is scheduled to be deployed on 14 May 19.)2.Whenever you delete a sortie, the date filter goes back to ALL. WORKAROUND – Refilter thedate after a delete. (Help Desk Ticket #: 54023. Fix is scheduled to be deployed on 14 May 19.)3.Non-instructor/student personnel can be added via Other Personnel and you get feedback, butthey are not displayed in a table. WORKAROUND: Personnel added using Other Personnelappear on the Mission Edit > Resource Sign In/Sign Out page. Users can go there to view andedit entries. (Help Desk Ticket #: 54022. Fix is scheduled to be deployed on 14 May 19.)4.After upload of a receipt, the left menu still shows Receipt Upload instead of View Receipt. Thisis corrected at the next refresh. (Help Desk Ticket #: 54020. Fix is scheduled to be deployed on14 May 19.)5.If a date filter has been selected on the FAM screen, that filter is not maintained when youselect "Access Standard Sortie List." Refilter the display, as desired/required. (Ticket #: 54019)6.When “Misc Mx” inputs are submitted there is no feedback to the user. The entry fields justclear. WORKAROUND – Go to the Aircraft Log, select the aircraft, and search for the appropriate entry in the report to confirm data was submitted. (Ticket #: 54018). CompatibilityWMIRS 2.0 FAM has been tested on:•Microsoft Windows 10•Apple iPad•Android Tablet•Microsoft Edge•Microsoft Internet Explorer•Google Chrome•Apple SafariFunctional Area Point of ContactKevin Conyers, ********************。

Hybrid Mesh Firewalls Protect the Expanding Attack Surfaces of Distributed SitesExecutive SummaryThe widespread adoption of new digital innovations has transformed enterprise networks—adding breakthrough capabilities while at the same time exposing new vulnerabilities. Network attack surfaces have dramatically expanded with the rapid proliferation of the mobile workforce, multiple public and private clouds, and Internet-of-Things (IoT) devices. Enterprise IT teams must now defend corporate sites that include direct internet access, such as branches and campuses, as well as on-premises data centers, public clouds, and remote sites to support work from anywhere (WFA). This makes extended enterprises more difficult to secure. Fortinet FortiGate Next-Generation Firewalls (NGFWs) are part of a hybrid mesh firewall (HMF) solution that enables broad, integrated, and automated protection against emerging threats and increasing network complexity. FortiGate is an integral part of the Fortinet Security Fabric, an end-to-end security architecture designed to protect evolving networks.Distributed Networks Present a Larger Target for Attack Fortinet NGFWsn High-performance threat protectionn Validated security effectivenessn Protection of mission-critical applicationsn Continuous risk assessment via security rating and automationn Integration with the Fortinet Security Fabricn Enterprise-class security managementSOLUTION BRIEFNew technologies are causing enterprise networks to expand. This includes the widespread adoption of cloud environments, geographically distributed offices, and a greater number and variety of endpoint devices. Cyberattack damage will amount to about $10.5 trillion annually by 2025, a 300% increase from 2015.1Threat actors are well aware of this vulnerability. They pinpoint the weakest points across this ever-expanding network surface. They use sophisticated strategies (such as multivector or polymorphic attacks) and automated processes to penetrate defenses to steal sensitive information or lock down operations in exchange for ransom.Trying to keep up, network engineering and operations leaders worry about a lack of complete visibility into encrypteddata and control of a network infrastructure that spans applications, data, users, and multiple network edges. At many organizations, the vast number of disconnected point security products operating in silos across the network only increases complexity. A recent Panaseer report found that the shift to cloud and remote working has driven a 19% increase over the past two years in the number of security tools organizations must manage—from 64 to 76.2 This results in a less effective security posture, as the same report found that 82% of security leaders have been surprised by a security event, incident, or breach that evaded a control they thought was in place.3Driving the Evolution in Network SecurityNetwork engineering and operations leaders need greater compatibility across the different security solutions deployed across the entire organization to improve security effectiveness. They need security that can share threat intelligence inreal time, a high level of reliable network performance, open application programming interfaces (APIs) to coordinate and automate responses, and simplified security management in a single-pane-of-glass console.Enterprises need to protect the entire expanding attack surface—from IoT to multiple clouds, and from users to data. This includes performing secure sockets layer (SSL)/transport layer security (TLS) inspection to detect malware in encrypted flows. Fortinet FortiGate NGFW solutions address all these needs by taking a more collaborative and integrated approach acrossthe entire IT infrastructure.Fortinet FortiGate NGFWs: Protecting Corporate Sites and Data CentersFortiGate NGFWs simplify security complexity and provide visibility into applications, users, and networks. Appliances utilize purpose-built security processing units (SPUs) and threat intelligence services from FortiGuard Labs to deliver top-rated security and high-performance threat protection (such as intrusion prevention, web filtering, anti-malware, application control) for known attacks. The unknown attacks are detected and prevented by Fortinet on-premises and cloud-based advanced threat protection solutions.As part of the broader Fortinet Security Fabric architecture, FortiGate NGFWs leverage automated, policy-based responses to accelerate time to resolution. When a FortiGate NGFW detects an event, it communicates with the Security Fabric, which determines what information will be shared across the enterprise. For example, when malware is detected in one part of theorganization, the Security Fabric shares threat intelligence with the rest of the IT infrastructure. In another instance, when a policy is created for one security solution, the Security Fabric can contextually apply that same policy across other security solutions in the architecture for consistent and coordinated control.FortiGate NGFWs allow deployment flexibility to be tailored to the specific security needs of an enterprise that requires either running one or more security features like SSL/TLS inspection, IPS, and antivirus individually or concurrently with minimalperformance degradation. All deployed FortiGate devices across the organization’s network infrastructure are interconnected via the Security Fabric. This integration provides comprehensive, real-time protection while simplifying deployment and reducing the need for multiple touchpoints and policies across the enterprise.Fortinet NGFW Use Cases n Reduce complexity. Consolidate products and services, reduce costs, and maximize return on investment (ROI).n Encrypted cloud access. Achieve transparency and control by inspecting all types of traffic—from clear text to encrypted (SSL/TLS).n Visibility and automation. Gain access to network and security events for contextual visibility while simplifying operations with automated processes.Industry-Leading Security EffectivenessExtensive knowledge of the threat landscape and the ability to respond quickly at multiple levels are the foundations for effective network security. This is why the FortiGuard Threat Intelligence Service—credited with an unprecedented 1,026+ zero-day threat and vulnerability discoveries 4 is a crucial enabler of Fortinet’s world-class NGFW capabilities.Figure 1: Hybrid Mesh FirewallFortiGuard AI-Powered Security ServicesFigure 2: FortiGuard Labs 360 degrees of threat intelligenceThe FortiGuard global threat research team collaborates with Fortinet product developers to deliver dynamic security intelligence services. Security updates are instantaneous—automatically and independently validated by third-party research labs. This ensures that the threat intelligence is highly accurate and effective.Fortinet receives consistently high marks in real-world security effectiveness tests, such as those from , Virus Bulletin, and AV-Comparatives, due to our combination of in-house research, information from industry sources, and advanced machine-learning capabilities.Simplify Operations with Centralized and Unified ManagementThe unique single-platform approach of the Fortinet NGFW, which includes flexible deployment options, delivers end-to-end protection that is easy to buy, deploy, and manage. Centralized security management and visibility consolidate multiple management consoles into a single pane of glass and unlock automation-driven management. Specifically, a highly intuitive view of applications, users, devices, threats, cloud service usage, and deep inspection gives network engineering and operationsleaders a better sense of what is happening on their networks. This strategic view allows them to easily create and manage moregranular policies to optimize security and network resources.Figure 3: FortiManager dashboard viewNetwork leaders can transparently observe traffic and set consolidated policies with granular security controls. Networkmanagement becomes both automation-driven and analytics-powered via a single-pane-of-glass console for logging, reporting,and central administration.One Hybrid Mesh Firewall Solution across the Extended EnterpriseAs a foundational part of a hybrid mesh firewall, FortiGate NGFWs deliver protection that keeps pace with the accelerating demands of high-performance enterprise networking. FortiGate NGFWs feature centralized management that unifies protection across corporate sites such as branches and campuses and on-premises data centers, public clouds, and remote sites for work from anywhere. Every FortiGate NGFW appliance contains purpose-built security processor technology, which provides extremely high throughput and exceptionally low latency while delivering industry-leading security effectiveness and consolidation.Figure 4: Fortinet Security FabricThe FortiGate NGFW family includes a set of flexible platforms at various price-performance points that can be deployed at the enterprise edge, data center edge, or branches of a distributed enterprise to provide secure access to multiple clouds. FortiGate NGFWs can also be deployed within the data center as part of an intent-based segmentation solution. Intent-based segmentation creates partitions across flat and open networks to reduce the attack surface.It also applies adaptive access controls that establish continuous trust of users and devices based on user and entity behavior analytics (UEBA).Copyright © 2023 Fortinet, Inc. All rights reserved. Fortinet , FortiGate , FortiCare and FortiGuard , and certain other marks are registered trademarks of Fortinet, Inc., and other Fortinet names herein may also be registered and/or common law trademarks of Fortinet. All other product or company names may be trademarks of their respective owners. Performance and other metrics contained herein were attained in internal lab tests under ideal conditions, and actual performance and other results may vary. Network variables, different network environments and other conditions may affect performance results. Nothing herein represents any binding commitment by Fortinet, and Fortinet disclaims all warranties, whether express or implied, except to the extent Fortinet enters a binding written contract, signed by Fortinet’s General Counsel, with a purchaser that expressly warrants that the identified product will perform according to certain expressly-identified performance metrics and, in such event, only the specific performance metrics expressly identified in such binding written contract shall be binding on Fortinet. For absolute clarity, any such warranty will be limited to performance in the same ideal conditions as in Fortinet’s internal lab tests. Fortinet disclaims in full any covenants, representations, and guarantees pursuant hereto, whether express or implied. Fortinet reserves the right to change, modify, transfer, or otherwise revise this publication without notice, and the most current version of the publication shall be applicable. June 8, 2023 11:49 PM 1 B harath Aiyer, Jeffrey Caso, Peter Russell, and Marc Sorel, New survey reveals $2 trillion market opportunity for cybersecurity technology and service providers McKinsey & Company, October 22, 2022.2 Panaseer, 2022 Security Leaders Peer Report , January 2022.3Ibid.4FortiGuard Labs Zero-Day Research , accessed May 31, 2023.5 , Enterprise Firewall Comparative Report , April 24 2023.Enabling a Broad and Dynamic Defense Strategy for the Long TermFortinet NGFWs offer universal platform support for all types of deployments,giving network leaders exceptional flexibility across the extended enterpriseinfrastructure. Managers have the visibility and control they need to counterattackers with a single network security operating system across the entireFortiGate family of solutions.Additionally, all the FortiGate appliances are interconnected via the FortinetSecurity Fabric to automatically distribute contextual security policies and threatintelligence across an organization. FortiGate devices are industry-leading fortheir security capabilities, rated 99.88% effective against cyber exploits andevasions by .5A single-pane-of-glass dashboard consolidates management views, enhancesvisibility, and simplifies security policy implementation, so you can build a HMFto protect your expanding attack surface across distributed sites, including datacenters, public clouds, and remote locations.。

NI VisionNI Vision Builder for Automated Inspection TutorialAugust 2012373379K-01Worldwide Technical Support and Product InformationWorldwide OfficesVisit /niglobal to access the branch office Web sites, which provide up-to-date contact information, support phone numbers, email addresses, and current events.National Instruments Corporate Headquarters11500 North Mopac Expressway Austin, Texas 78759-3504USA Tel: 512 683 0100 For further support information, refer to the Technical Support and Professional Services appendix. To comment on National Instruments documentation, refer to the National Instruments Web site at /info and enter the Info Code feedback.Important InformationWarrantyThe media on which you receive National Instruments software are warranted not to fail to execute programming instructions, due to defects in materials and workmanship, for a period of 90 days from date of shipment, as evidenced by receipts or other documentation. National Instruments will, at its option, repair or replace software media that do not execute programming instructions if National Instruments receives notice of such defects during the warranty period. National Instruments does not warrant that the operation of the software shall be uninterrupted or error free.A Return Material Authorization (RMA) number must be obtained from the factory and clearly marked on the outside of the package before any equipment will be accepted for warranty work. National Instruments will pay the shipping costs of returning to the owner parts which are covered by warranty.National Instruments believes that the information in this document is accurate. The document has been carefully reviewed for technical accuracy. In the event that technical or typographical errors exist, National Instruments reserves the right to make changes to subsequent editions of this document without prior notice to holders of this edition. The reader should consult National Instruments if errors are suspected. In no event shall National Instruments be liable for any damages arising out of or related to this document or the information contained in it.E XCEPT AS SPECIFIED HEREIN, N ATIONAL I NSTRUMENTS MAKES NO WARRANTIES, EXPRESS OR IMPLIED, AND SPECIFICALLY DISCLAIMS ANY WARRANTY OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. C USTOMER’S RIGHT TO RECOVER DAMAGES CAUSED BY FAULT OR NEGLIGENCE ON THE PART OF N ATIONAL I NSTRUMENTS SHALL BE LIMITED TO THE AMOUNT THERETOFORE PAID BY THE CUSTOMER. N ATIONAL I NSTRUMENTS WILL NOT BE LIABLE FOR DAMAGES RESULTING FROM LOSS OF DATA, PROFITS, USE OF PRODUCTS, OR INCIDENTAL OR CONSEQUENTIAL DAMAGES, EVEN IF ADVISED OF THE POSSIBILITY THEREOF. This limitation of the liability of National Instruments will apply regardless of the form of action, whether in contract or tort, including negligence. Any action against National Instruments must be brought within one year after the cause of action accrues. National Instruments shall not be liable for any delay in performance due to causes beyond its reasonable control. The warranty provided herein does not cover damages, defects, malfunctions, or service failures caused by owner’s failure to follow the National Instruments installation, operation, or maintenance instructions; owner’s modification of the product; owner’s abuse, misuse, or negligent acts; and power failure or surges, fire, flood, accident, actions of third parties, or other events outside reasonable control.CopyrightUnder the copyright laws, this publication may not be reproduced or transmitted in any form, electronic or mechanical, including photocopying, recording, storing in an information retrieval system, or translating, in whole or in part, without the prior written consent of National Instruments Corporation.National Instruments respects the intellectual property of others, and we ask our users to do the same. NI software is protected by copyright and other intellectual property laws. Where NI software may be used to reproduce software or other materials belonging to others, you may use NI software only to reproduce materials that you may reproduce in accordance with the terms of any applicable license or other legal restriction.End-User License Agreements and Third-Party Legal NoticesYou can find end-user license agreements (EULAs) and third-party legal notices in the following locations:•Notices are located in the <National Instruments>\_Legal Information and <National Instruments> directories.•EULAs are located in the <National Instruments>\Shared\MDF\Legal\license directory.•Review <National Instruments>\_Legal Information.txt for more information on including legal information in installers built with NI products.TrademarksLabVIEW, National Instruments, NI, , the National Instruments corporate logo, and the Eagle logo are trademarks of National Instruments Corporation. Refer to the Trademark Information at /trademarks for other National Instruments trademarks.Other product and company names mentioned herein are trademarks or trade names of their respective companies. Members of the National Instruments Alliance Partner Program are business entities independent from National Instruments and have no agency, partnership, or joint-venture relationship with National Instruments.PatentsFor patents covering National Instruments products/technology, refer to the appropriate location: Help»Patents in your software, the patents.txt file on your media, or the National Instruments Patent Notice at /patents.Export Compliance InformationRefer to the Export Compliance Information at /legal/export-compliance for the National Instruments global trade compliance policy and how to obtain relevant HTS codes, ECCNs, and other import/export data.WARNING REGARDING USE OF NATIONAL INSTRUMENTS PRODUCTS(1) NATIONAL INSTRUMENTS PRODUCTS ARE NOT DESIGNED WITH COMPONENTS AND TESTING FOR A LEVEL OF RELIABILITY SUITABLE FOR USE IN OR IN CONNECTION WITH SURGICAL IMPLANTS OR AS CRITICAL COMPONENTS IN ANY LIFE SUPPORT SYSTEMS WHOSE FAILURE TO PERFORM CAN REASONABLY BE EXPECTED TO CAUSE SIGNIFICANT INJURY TO A HUMAN.(2) IN ANY APPLICATION, INCLUDING THE ABOVE, RELIABILITY OF OPERATION OF THE SOFTWARE PRODUCTS CAN BE IMPAIRED BY ADVERSE FACTORS, INCLUDING BUT NOT LIMITED TO FLUCTUATIONS IN ELECTRICAL POWER SUPPLY, COMPUTER HARDWARE MALFUNCTIONS, COMPUTER OPERATINGPROBLEMS, MALFUNCTIONS OR FAILURES OF ELECTRONIC MONITORING OR CONTROL DEVICES, TRANSIENT FAILURES OF ELECTRONIC SYSTEMS (HARDWARE AND/OR SOFTWARE), UNANTICIPATED USES OR MISUSES, OR ERRORS ON THE PART OF THE USER OR APPLICATIONS DESIGNER (ADVERSE FACTORS SUCH AS THESE ARE HEREAFTER COLLECTIVELY TERMED “SYSTEM FAILURES”). ANY APPLICATION WHERE A SYSTEM FAILURE WOULD CREATE A RISK OF HARM TO PROPERTY OR PERSONS (INCLUDING THE RISK OF BODILY INJURY AND DEATH) SHOULD NOT BE RELIANT SOLELY UPON ONE FORM OF ELECTRONIC SYSTEM DUE TO THE RISK OF SYSTEM FAILURE. TO AVOID DAMAGE, INJURY, OR DEATH, THE USER OR APPLICATION DESIGNER MUST TAKE REASONABLY PRUDENT STEPS TO PROTECT AGAINST SYSTEM FAILURES, INCLUDING BUT NOT LIMITED TO BACK-UP OR SHUT DOWN MECHANISMS. BECAUSE EACH END-USER SYSTEM IS CUSTOMIZED AND DIFFERS FROM NATIONAL INSTRUMENTS' TESTING PLATFORMS AND BECAUSE A USER OR APPLICATION DESIGNER MAY USE NATIONAL INSTRUMENTS PRODUCTS IN COMBINATION WITH OTHER PRODUCTS IN A MANNER NOT EVALUATED OR CONTEMPLATED BY NATIONAL INSTRUMENTS, THE USER OR APPLICATION DESIGNER IS ULTIMATELY RESPONSIBLE FOR VERIFYING AND VALIDATING THE SUITABILITY OF NATIONAL INSTRUMENTS PRODUCTS WHENEVER NATIONAL INSTRUMENTS PRODUCTS ARE INCORPORATED IN A SYSTEM OR APPLICATION, INCLUDING, WITHOUT LIMITATION, THE APPROPRIATE DESIGN, PROCESS AND SAFETY LEVEL OF SUCH SYSTEM OR APPLICATION.ContentsAbout This Manual Conventions (x)Related Documentation (x)Chapter 1Introduction to Vision Builder AIVision Builder AI Configuration Interface.......................................................................1-4 Elements of the Configuration Interface..................................................................1-5 Inspection State Diagram..........................................................................................1-6 Vision Builder AI Inspection Interface............................................................................1-7 Running an Inspection......................................................................................................1-8 Configuration Interface.............................................................................................1-8 Inspection Interface..................................................................................................1-9 Chapter 2Checking for the Presence of a PartCreating a New Inspection...............................................................................................2-1 Acquiring Inspection Images............................................................................................2-1 Defining a Feature on which to Base a Coordinate System.............................................2-2 Setting a Coordinate System.............................................................................................2-6 Checking for the Cap Using Measure Intensity................................................................2-6 Setting the Inspection Status.............................................................................................2-8 Testing the Inspection.......................................................................................................2-9 Saving the Inspection........................................................................................................2-9 Chapter 3Inspecting Objects for Correct MeasurementsCreating a New Inspection...............................................................................................3-1 Acquiring and Calibrating Inspection Images..................................................................3-1 Locating Features to Measure...........................................................................................3-4 Measuring Parts of the Gasket..........................................................................................3-7 Setting the Inspection Status.............................................................................................3-8 Testing the Inspection.......................................................................................................3-8 Saving the Inspection........................................................................................................3-9 Chapter 4Inspecting for Multiple Correct Instances of an ObjectCreating a New Inspection...............................................................................................4-1 Acquiring Inspection Images............................................................................................4-1 Defining a Feature on which to Base a Coordinate System.............................................4-2 Setting a Coordinate System.............................................................................................4-3ContentsMeasuring the Separation between Connectors................................................................4-3 Inspecting the Fuse Conductor.........................................................................................4-5 Making Logical PASS/FAIL Decisions...........................................................................4-7 Setting the Inspection Status.............................................................................................4-9 Testing the Inspection.......................................................................................................4-10 Saving the Inspection........................................................................................................4-10 Chapter 5Inspecting an Object that Spans Two Image FramesCreating a New Inspection................................................................................................5-1 Acquiring Inspection Images from Two Cameras............................................................5-1 Acquiring and Calibrating the Image of the Left Edge............................................5-2 Acquiring and Calibrating the Image of the Right Edge..........................................5-5 Locating the Right Edge of the Part..................................................................................5-7 Switching Images..............................................................................................................5-9 Locating the Left Edge of the Part....................................................................................5-9 Calculating the Width of the Part.....................................................................................5-10 Setting Calculator Step Inputs and Outputs..............................................................5-11 Adding Operators and Constants..............................................................................5-12 Connecting the Equation Elements...........................................................................5-14 Making Logical PASS/FAIL Decisions with the Calculator Step............................5-15 Setting the Inspection Status.............................................................................................5-17 Testing the Inspection.......................................................................................................5-17 Saving the Inspection........................................................................................................5-18 Chapter 6Branching and Decision MakingCreating a New Inspection................................................................................................6-1 Creating the Inspection State Diagram.............................................................................6-1 Acquiring Inspection Images............................................................................................6-5 Checking for a Spray Bottle in the Image.........................................................................6-6 Checking for the Cap Using the Caliper...........................................................................6-7 Setting the Inspection Status.............................................................................................6-9 Creating Custom Overlays for Inspection........................................................................6-9 Configuring State Transitions...........................................................................................6-11 Testing the Inspection.......................................................................................................6-13 Saving the Inspection........................................................................................................6-14 Chapter 7Looping and VariablesCreating a New Inspection................................................................................................7-1 Creating the Inspection State Diagram.............................................................................7-1 Creating a Variable...........................................................................................................7-5 Acquiring Inspection Images............................................................................................7-5Contents Finding Pin Edges.............................................................................................................7-6 Initializing the Variable....................................................................................................7-7 Indexing Measurements in a Result Array.......................................................................7-8 Setting a Coordinate System.............................................................................................7-8 Checking the Pin Gap.......................................................................................................7-9 Updating the Variable.......................................................................................................7-10 Identifying Failed Pins......................................................................................................7-10 Setting the Inspection Status.............................................................................................7-11 Displaying the Current Inspection Image.........................................................................7-12 Configuring State Transitions...........................................................................................7-13 Testing the Inspection.......................................................................................................7-14 Saving the Inspection........................................................................................................7-14 Appendix ATechnical Support and Professional ServicesGlossaryAbout This ManualThis manual contains many techniques for using NI Vision Builder for Automated Inspection (Vision Builder AI) to solve visual inspection tasks including inspection, gauging, part presence, guidance, and counting.Follow the instructions in this manual to familiarize yourself with Vision Builder AI and perform common inspection tasks.This manual contains the following chapters:•Chapter1, Introduction to Vision Builder AI, introduces the Vision Builder AI environment and describes how to run an inspection.•Chapter2, Checking for the Presence of a Part, introduces the Match Pattern, Measure Intensity, and Set Coordinate System steps. Follow the instructions in this chapter to create an inspection that checks for the presence of a spray bottle cap regardless of the bottle position in the inspection images.•Chapter3, Inspecting Objects for Correct Measurements, introduces image calibration, and the Detect Objects and Geometry steps. Follow the instructions in this chapter to create an inspection that measures the distance between holes in a gasket to verify that the gasket conforms to manufacturing specifications.•Chapter4, Inspecting for Multiple Correct Instances of an Object, introduces the Find Straight Edge, Caliper, and Decision Making steps. Follow the instructions in thischapter to create an inspection that measures the distance between the blade connectors ofa fuse and checks the integrity of the fuse conductor regardless of the fuse position orwhether the fuse is inverted.•Chapter5, Inspecting an Object that Spans Two Image Frames, introduces the Select Image and Calculator steps. Follow the instructions in this chapter to create an inspection that measures the width of a wooden plank that spans two images.•Chapter6, Branching and Decision Making, introduces the inspection state diagram and the Custom Overlay step. Follow the instructions in this chapter to create an inspection that checks the image for the presence of a spray bottle and, if a bottle is present, transitions to another state to determine if the bottle has a cap. If there is no spray bottle present in the image, the inspection moves on to the next image.•Chapter7, Looping and Variables, uses the inspection state diagram to implement a looping inspection and introduces the Set Variable and Array Operator steps. Follow the instructions in this chapter to create an inspection that inspects images of electroniccomponents to determine if the distance between pins on the component is within apredetermined range. If the pin is too close or too far away from an adjacent pin, then the inspection fails. The inspection does not need to check every pin on the microchip before failing the inspection. The inspection fails at the first failed pin.About This ManualConventionsThe following conventions appear in this manual:»The » symbol leads you through nested menu items and dialog boxoptions to a final action. The sequence Options»Settings»Generaldirects you to pull down the Options menu, select the Settings item,and select General from the last dialog box.This icon denotes a tip, which alerts you to advisory information.This icon denotes a note, which alerts you to important information.This icon denotes a caution, which advises you of precautions to taketo avoid injury, data loss, or a system crash.bold Bold text denotes items that you must select or click in the software,such as menu items and dialog box options. Bold text also denotesparameter names.italic Italic text denotes variables, emphasis, a cross-reference, or anintroduction to a key concept. Italic text also denotes text that is aplaceholder for a word or value that you must supply.monospace Text in this font denotes text or characters that you should enter fromthe keyboard, sections of code, programming examples, and syntaxexamples. This font is also used for the proper names of disk drives,paths, directories, programs, subprograms, subroutines, device names,functions, operations, variables, filenames, and extensions. Related DocumentationThe following documents contain information that you might find helpful as you read this manual:•NI Vision Builder for Automated Inspection Readme—Contains information about the minimum system requirements, installation instructions, device support, and known issues for NI Vision Builder for Automated Inspection. The NI Vision Builder for Automated Inspection Readme is available at Start»All Programs»National Instruments»Vision Builder AI»Documentation.•NI Vision Builder for Automated Inspection: Configuration Help—Contains information about using the Vision Builder AI Configuration interface to create a machine visionapplication. NI Vision Builder for Automated Inspection: Configuration Help is available by selecting Help»Online Help from the Vision Builder AI Configuration interface.About This Manual •NI Vision Builder for Automated Inspection: Inspection Help—Contains information about running applications created using Vision Builder AI in the Vision Builder AI Inspection Interface. NI Vision Builder for Automated Inspection: Inspection Help is available by selecting Help»Online Help from the Vision Builder AI Inspection interface.•NI Developer Zone—Visit /zone for the latest example programs, tutorials, technical presentations, and a community area where you can share ideas, questions, and source code with developers around the world.•NI 17xx Smart Camera User Manual—Describes the electrical and mechanical aspects of the NI 17xx smart camera, troubleshooting guidelines, and information about the LEDs, DIP switches, and connectors on the NI 17xx.•NI 177x Smart Camera User Manual—Describes the electrical and mechanical aspects of the NI 177x smart camera and information about the LEDs and connectors on the NI 177x.•NI EVS-1463 User Manual—Describes the electrical and mechanical aspects of the NI EVS-1463 embedded vision system, troubleshooting guidelines, and information about the LEDs, DIP switches, and connectors on the EVS-1463 device.•NI EVS-1464 User Manual—Describes the electrical and mechanical aspects of the NI EVS-1464 embedded vision system, troubleshooting guidelines, and information about the LEDs, DIP switches, and connectors on the EVS-1464 device.•NI Smart Camera I/O Accessory User Guide—Describes the features of the NI Smart Camera I/O Accessory, what you need to get started, and the installation and operation of the device.•NI Vision Concepts Help—Describes the basic concepts of image analysis, image processing, and machine vision. This document also contains in-depth discussions about imagingalgorithms for advanced users. The NI Vision Concepts Help is available by selectingStart»All Programs»National Instruments»Vision Builder AI»Documentation»NI Vision Concepts Help from the Start menu.1 Introduction to Vision Builder AIThis chapter introduces the Vision Builder AI environment and describes how to run an inspection.Figures1-1 and1-2 show general instructions for creating a Vision Builder AI inspection. Figure1-1 describes the basic steps for designing a Vision Builder AI inspection. The Add Inspection Steps module of Figure1-1 is expanded in Figure1-2.Chapter 1Introduction to Vision Builder AIFigure 1-1. Instructions for Creating a Basic Vision Builder AI InspectionChapter 1Introduction to Vision Builder AIFigure 1-2. Adding Inspection Steps to a Vision Builder AI InspectionChapter 1Introduction to Vision Builder AIVision Builder AI Configuration InterfaceVision Builder AI has two modes of operation: Configuration and Inspection. Use the Configuration interface to configure and test your inspection. Use the Inspection interface to deploy the software and perform online or offline visual inspection.Complete the following instructions to open the Vision Builder AI Configuration interface. 1.Select Start»All Programs»National Instruments»Vision Builder AI to launch VisionBuilder AI.Note By default, My Computer is selected in the list of targets. When My Computeris selected Vision Builder AI runs on the development computer.2.On the Vision Builder AI welcome screen, click New Inspection to open the Vision BuilderAI Configuration Interface.Chapter 1Introduction to Vision Builder AIElements of the Configuration InterfaceFigure 1-3 shows the Vision Builder AI Configuration interface. The Configuration interface contains four areas: Main window, Overview window, Inspection Steps palette, and State Configuration window.Figure 1-3. Vision Builder AI Configuration Interface•Main window —Displays the image being processed, property pages for some inspection steps, or the state diagram for the inspection. Use the Main window to define regions of interest in an image, configure step parameters for some steps, and create/modify the state diagram for an inspection.•Overview window —Displays a thumbnail view of either the current inspection image or the state diagram for the inspection.1M a in Window 2Overview Window3In s pection S tep s P a lette 4S t a te Config u r a tion Window43Chapter 1Introduction to Vision Builder AI•Inspection Steps palette—Lists and describes the steps that you use to create your inspection. When you click on most steps, the palette transforms into the property page for the step.•State Configuration window—Displays the list of steps in the currently selected state in the inspection.Inspection State DiagramVision Builder AI uses a state diagram to define inspections with unique states and transitions that govern the execution flow of the inspection. Simple inspections can be defined using the single-state default inspection, shown in Figure1-4.Figure 1-4. Default Inspection State DiagramMore complex inspections can be created by adding additional states and transitions to the default state diagram. Figure1-5 shows an example of an inspection that uses the state diagram to perform branching and looping in the inspection.Figure 1-5. Example of a Vision Builder AI Inspection State DiagramChapter 1Introduction to Vision Builder AI Within a state diagram, each state can lead to one or multiple states or can end the inspection cycle. Each state diagram relies on in-state calculations or user input to determine the next state to execute. Vision Builder AI executes the state diagram continuously from the Start point to the End point.Each state in an inspection is intended to contain a discrete set of inspection steps. To access the steps contained in a state, select the state on the state diagram. The steps present in the state will appear in the State Configuration window. The currently selected state is highlighted on the state diagram.Chapter6, Branching and Decision Making,and Chapter7, Looping and Variables,provide examples of using the state diagram.Vision Builder AI Inspection InterfaceAs mentioned in the Vision Builder AI Configuration Interface section of this chapter, use the Vision Builder AI built-in Inspection Interface to deploy and run an inspection. Figure1-6 shows the built-in Inspection interface, which has three main areas: the Results panel, the Inspection Statistics panel, and the Display window.121In s pection S t a ti s tic s P a nel2Di s pl a y Window 3Re su lt s P a nelFigure 1-6. Vision Builder AI Built-in Inspection Interface。

B-1Cisco Application Visibility and Control User GuideA P P E N D I XBAVC Feature HistoryThis chapter addresses the following topic:•Feature History, page B-1Feature HistoryThe sections below describe highlights of new features and optimizations in recent AVC releases. They do not provide a full feature history of Cisco AVC.•AVC Features in Cisco IOS Releases, page B-1.•AVC Features in Cisco IOS XE Releases, page B-4.AVC Features in Cisco IOS ReleasesTable B-1AVC Feature History for Cisco IOS ReleasesFeatureDescriptionCisco IOS 15.5(3)TAdded support for Cisco 5000 Series routersAdded support for Cisco 5915, 5921, 5930, 5940 routers For more information, see: AVC Supported Platforms, page A-1Cisco IOS 15.5(2)TConfigurable export interval in ezPM Option to specify the cache timeout (exporting interval) in seconds. At this interval, the cached NetFlow records are exported.For more information, see: ezPM Configuration Options, page 4-14Cisco IOS 15.5(1)TEasy Performance Monitor (ezPM) enhancement:•Application Performance profile addedThe Application Performance profile is an improved form of the existing Application Experience profile. Application Experience remains available to support legacyconfigurations, but it is recommended to use the Application Performance profile for new configurations.For more information, see: Application Performance Profile, page 4-8Appendix B AVC Feature History Feature HistoryEasy Performance Monitor (ezPM) enhancement:•Improved identification of HTTP traffic Due to an improvement in NBAR (class-hierarchy feature), URL and Media traffic monitors can more accurately identify HTTP traffic.For more information, see: Easy Performance Monitor (ezPM), page4-4NBAR coarse-grain mode added NBAR provides two levels of application recognition: fine-grain and coarse-grain.Fine-grain mode provides NBAR's full application recognition capabilities. Coarse-grainmode offers a performance advantage by minimizing deep packet inspection, and can beused in scenarios where the full power of fine-grain classification is not required.For more information, see: NBAR2 Fine-grain and Coarse-grain Modes, page4-19 Cisco IOS 15.4(3)TEasy Performance Monitor (ezPM) enhancements:•Application Statistics profile added to Easy PerformanceMonitor•Added the cache-typeparameter to ezPMconfiguration The Application Statistics profile collects application statistics on all IPv4 and IPv6 traffic. It is a simpler profile than the Application Experience profile introduced in an earlier release.A new cache-type parameter enables specifying the type of cache for a monitor.For more information, see: Easy Performance Monitor (ezPM), page4-4Cisco IOS 15.4(1)TConvergence of Cisco AVC Architecture Across Platform Types The convergence of AVC architecture brings together the strongest AVC features from IOS and IOS XE platforms, providing powerful features and greater standardization of configuration tasks across different Cisco platforms.Metrics, such as ART, HTTP, and QoS metrics, that were available in earlier releases can now be configured in the same way as on Cisco IOS XE platforms. Additional metrics are also newly available for Cisco IOS.Metric Mediation Agent (MMA)The Metric Mediation Agent (MMA) introduces an enhancement to Cisco AVCinfrastructure, enabling addition of stateful and derived parameters with dynamicregistration. The MMA provides aggregation of connections, history, and alarms fromthe route processor. The aggregated data is exported at a lower speed than the data pathexport.For more information about the MMA, see:Metric Mediation Agent, page2-9QoS Metrics This Cisco AVC release provides new monitors for collecting metrics related to Qualityof Service (QoS) policy. Monitors can indicate:•Packets dropped on an interface, per QoS queue, due to a QoS policy that limitsresources available to a specific type of traffic.•Class hierarchy (indicating traffic priority) of a reported flow, as determined by theQoS policy map.For more information, see:QoS Metrics: Cisco IOS Platforms, page4-32Feature DescriptionCisco Application Visibility and Control User GuideAppendix B AVC Feature HistoryFeature HistoryEasy Performance Monitor (ezPM) Configuration Easy Performance Monitor “express” method of provisioning monitors. Easy perf-mon provides “profiles” that represent typical deployment scenarios. After a user selects a profile and specifies a small number of parameters, Easy perf-mon provides the remaining provisioning details. This release provides one profile, which includes five different traffic monitors. Future releases will provide additional options. For more information, see:Easy Performance Monitor (ezPM), page4-4Customizing attribute values See Customizing Attribute Values, page4-30.Export Spreading The export-spreading feature spreads out the export of records from the monitor cacheover a time interval, to improve collector performance. For more information, see:NetFlow/IPFIX Flow Monitor, page4-23IPv6 Support The Cisco AVC solution supports both IPv4 and IPv6.Features Available Prior to Cisco IOS 15.4(1)TUnified Solution Unifies the technologies of several reporting/control solutions. AVC technologiesinclude the configuration mechanism, metrics, and reports of such components as TCPperformance, and so on.Media Metrics For an overview of the metrics collected by Cisco routers, both for Cisco IOS and forCisco IOS XE, see:Cisco Application Visibility and Control Field Definition Guide for Third-PartyCustomersCisco Performance Agent (MACE) Metrics, including:•Application response (ART)•FNF•HTTP•QoS For information about using these metrics, see Configuring AVC to Monitor MACE Metrics.TCP Performance Metrics AVC includes several TCP performance measurements for traffic performance reporting. Cisco Prime Infrastructure The Cisco Prime Infrastructure management and reporting system is an integral part ofthe Cisco AVC solution and provides extensive management and reporting features,including provisioning the system, storing exported data, and generating reports. Feature DescriptionCisco Application Visibility and Control User GuideAppendix B AVC Feature History Feature HistoryAVC Features in Cisco IOS XE ReleasesTable B-2AVC Feature History for Cisco IOS XE ReleasesFeature DescriptionCisco IOS XE 3.15SAVC in L2 Transparent mode A router operating in layer 2 transparent mode (local switching) bridges two interfaces,transparently forwarding packets directly from one interface to the other, without anyother routing functionality. AVC can operate on a device configured in this mode,providing full AVC functionality on the bridged traffic.For more information, see: AVC Compatibility with Layer 2 Transparent Mode,page A-3Configurable export interval in ezPM Option to specify the cache timeout (exporting interval) in seconds. At this interval, the cached NetFlow records are exported.For more information, see: ezPM Configuration Options, page4-14Cisco IOS XE 3.14SEasy Performance Monitor (ezPM) enhancement:•Application Performance profile added The Application Performance profile is an improved form of the existing Application Experience profile. Application Experience remains available to support legacy configurations, but it is recommended to use the Application Performance profile for new configurations.For more information, see: Application Performance Profile, page4-8Easy Performance Monitor (ezPM) enhancement:•Improved identification of HTTP traffic Due to an improvement in NBAR (class-hierarchy feature), URL and Media traffic monitors can more accurately identify HTTP traffic.For more information, see: Easy Performance Monitor (ezPM), page4-4Configuring Multiple Policies on an Interface Multiple policies can be configured simultaneously on an interface, enabling additional flexibility in metrics collection.For more information, see: Configuring Multiple Policies on an Interface, page4-17NBAR coarse-grain mode added NBAR provides two levels of application recognition: fine-grain and coarse-grain.Fine-grain mode provides NBAR's full application recognition capabilities.Coarse-grain mode offers a performance advantage by minimizing deep packetinspection, and can be used in scenarios where the full power of fine-grain classificationis not required.For more information, see: NBAR2 Fine-grain and Coarse-grain Modes, page4-19Cisco Application Visibility and Control User GuideAppendix B AVC Feature HistoryFeature History Cisco IOS XE 3.13SEasy Performance Monitor (ezPM) enhancements:•Application Statistics profile added to Easy PerformanceMonitor•Added the cache-typeparameter to ezPMconfiguration The Application Statistics profile collects application statistics on all IPv4 and IPv6 traffic. It is a simpler profile than the Application Experience profile introduced in an earlier release.A new cache-type parameter enables specifying the type of cache for a monitor.For more information, see: Easy Performance Monitor (ezPM), page4-4Cisco IOS XE 3.12SNew sampling-rate option added to Easy Performance Monitor configuration.Added option of entering value of 1 for sampling-rate in Easy Performance Monitor configuration, to disable the sampler feature.For more information, see: Easy Performance Monitor (ezPM), page4-4AVC interoperability with GETVPN AVC interoperability with Group Encrypted Transport VPN (GETVPN).For more information, see AVC Interoperability with Cisco GET VPN, page2-16.Support for virtual template interface Support for configuring ezPM monitors on virtual template interfaces.For more information, see: Logical Interface and VPN Support in AVC, page A-2Additional support for FLEXVPN Added support for hub-to-spoke topologies.For more information, see: Logical Interface and VPN Support in AVC, page A-2 Performance improvements This release includes optimization changes that improve AVC performance.NBAR protocol pack hitless upgrade When updating an NBAR protocol pack or any NBAR configuration, the previous configuration remains active until the new configuration becomes active. This ensures that NBAR continues to classify traffic in the data path.Cisco IOS XE 3.11SNew metric added to track information about the interface being monitored The observation point id metric provides the physical port number of the interface to which the monitor is attached.Customizing attribute values See Customizing Attribute Values, page4-30.Interoperability with CiscoGET VPNSee NBAR Interoperability with Cisco GET VPN, page2-15.Cisco IOS XE 3.10SImproved Exporting Model An improved and optimized exporting configuration model includes:•Exporting only a single record per packet, reducing duplicate data.•Optimizing monitor assignment.•Filtering low-bandwidth traffic.•Per server reports.The improved exporting model is used as part of the Easy Performance Monitor profileincluded in this release.Feature DescriptionCisco Application Visibility and Control User GuideAppendix B AVC Feature History Feature HistoryEasy Performance Monitor Configuration Easy Performance Monitor “express” method of provisioning monitors. Easy perf-mon provides “profiles” that represent typical deployment scenarios. After a user selects a profile and specifies a small number of parameters, Easy perf-mon provides the remaining provisioning details. This release provides one profile, which includes five different traffic monitors. Future releases will provide additional options. For more information, see:Easy Performance Monitor (ezPM), page4-4Performance Improvements This release includes changes, such as an improved exporting model, predefinedmonitors, and MMA optimization, that improve performance by up to 30%.Parsing URI Address This release introduces the ability to parse URI addresses, enabling AVC to reportdepth1 of the URI and filter traffic according to that value. For more information, see:HTTP URI, page4-58Support for Records with 40 Fields This release introduces support for configuring records containing 40 fields.Cisco IOS XE 3.9SEnhanced Connection/Transaction Metrics Beginning with IOS XE release3.9S, Flexible NetFlow (FNF) monitors can report on individual transactions within a flow. This enables greater resolution for traffic metrics. For more information, see:Connection/Transaction Metrics, page4-43QoS Metrics This Cisco AVC release provides new monitors for collecting metrics related to Qualityof Service (QoS) policy. Monitors can indicate:•Packets dropped on an interface, per QoS queue, due to a QoS policy that limitsresources available to a specific type of traffic.•Class hierarchy (indicating traffic priority) of a reported flow, as determined by theQoS policy map.For more information, see:QoS Metrics: Cisco IOS XE Platforms, page4-37Cisco IOS XE 3.8SInteroperability with Cisco AppNav Cisco AppNav is the Wide Area Application Services (WAAS) diversion mechanism. Beginning with IOS XE release 3.8S, AVC provides statistics before and after the AppNav WAAS service controller (AppNav SC), as well as inspecting and reporting application information on optimized traffic.Unified Solution Unifies the technologies of several reporting/control solutions. AVC technologiesinclude the configuration mechanism, metrics, and reports of such components as TCPperformance, and so on.Metric Mediation Agent (MMA)The Metric Mediation Agent (MMA) is a new infrastructure element developed in theIOS XE 3.8 release to manage, correlate, and aggregate metrics from different metricproviders. MMA provides the following functions:•Controls traffic monitoring and filtering policy.•Correlates data from multiple metric providers (see Metric Providers, page2-9) intothe same record.•Aggregates metrics.•Supports history and alert functions. This requires sending the metrics records to theroute processor (RP) before exporting them to the management and reporting tools. Feature DescriptionCisco Application Visibility and Control User GuideAppendix B AVC Feature HistoryFeature HistoryFeature DescriptionTCP Performance Metrics This release adds several TCP performance measurements for traffic performancereporting.Interoperability with AppNav AppNav is the Wide Area Application Services (WAAS) diversion mechanism. AVC forIOS XE 3.8 provides statistics before and after the AppNav WAAS service controller(AppNav SC), as well as inspecting and reporting application information on optimizedtraffic.Packet Capture Cisco Embedded Packet Capture (EPC) technology performs packet capture.Cisco Prime Infrastructure The Cisco Prime Infrastructure management and reporting system is an integral part ofthe Cisco AVC solution and provides extensive management and reporting features,including provisioning the system, storing exported data, and generating reports.IPv6 Support The Cisco AVC solution supports both IPv4 and IPv6.Cisco Application Visibility and Control User GuideAppendix B AVC Feature History Feature HistoryCisco Application Visibility and Control User Guide。