{"id":477160,"date":"2023-08-09T09:08:44","date_gmt":"2023-08-09T09:08:44","guid":{"rendered":""},"modified":"2023-09-05T11:14:12","modified_gmt":"2023-09-05T11:14:12","slug":"extended-acls","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/vn\/wiki\/extended-acls\/","title":{"rendered":"ACL m\u1edf r\u1ed9ng"},"content":{"rendered":"<p>Danh s\u00e1ch ki\u1ec3m so\u00e1t truy c\u1eadp m\u1edf r\u1ed9ng (ACL) l\u00e0 m\u1ed9t c\u01a1 ch\u1ebf m\u1ea1nh m\u1ebd \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng \u0111\u1ec3 ki\u1ec3m so\u00e1t quy\u1ec1n truy c\u1eadp v\u00e0 b\u1ea3o m\u1eadt trong c\u00e1c thi\u1ebft b\u1ecb m\u1ea1ng, ch\u1eb3ng h\u1ea1n nh\u01b0 b\u1ed9 \u0111\u1ecbnh tuy\u1ebfn, b\u1ed9 chuy\u1ec3n m\u1ea1ch v\u00e0 m\u00e1y ch\u1ee7 proxy. C\u00e1c danh s\u00e1ch n\u00e0y cho ph\u00e9p qu\u1ea3n tr\u1ecb vi\u00ean m\u1ea1ng l\u1ecdc v\u00e0 cho ph\u00e9p ho\u1eb7c t\u1eeb ch\u1ed1i l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp d\u1ef1a tr\u00ean nhi\u1ec1u ti\u00eau ch\u00ed kh\u00e1c nhau, ch\u1eb3ng h\u1ea1n nh\u01b0 \u0111\u1ecba ch\u1ec9 IP ngu\u1ed3n v\u00e0 \u0111\u00edch, giao th\u1ee9c, s\u1ed1 c\u1ed5ng, v.v. ACL m\u1edf r\u1ed9ng l\u00e0 ph\u1ea7n m\u1edf r\u1ed9ng c\u1ee7a ACL ti\u00eau chu\u1ea9n, mang l\u1ea1i s\u1ef1 linh ho\u1ea1t v\u00e0 chi ti\u1ebft h\u01a1n trong vi\u1ec7c qu\u1ea3n l\u00fd l\u01b0u l\u01b0\u1ee3ng m\u1ea1ng.<\/p>\n<h2>L\u1ecbch s\u1eed ngu\u1ed3n g\u1ed1c c\u1ee7a ACL m\u1edf r\u1ed9ng<\/h2>\n<p>Kh\u00e1i ni\u1ec7m v\u1ec1 Danh s\u00e1ch \u0111i\u1ec1u khi\u1ec3n truy c\u1eadp c\u00f3 th\u1ec3 b\u1eaft ngu\u1ed3n t\u1eeb nh\u1eefng ng\u00e0y \u0111\u1ea7u c\u1ee7a m\u1ea1ng m\u00e1y t\u00ednh. Ban \u0111\u1ea7u, c\u00e1c ACL c\u01a1 b\u1ea3n \u0111\u01b0\u1ee3c gi\u1edbi thi\u1ec7u \u0111\u1ec3 gi\u00fap qu\u1ea3n l\u00fd quy\u1ec1n truy c\u1eadp v\u00e0o t\u00e0i nguy\u00ean m\u1ea1ng, nh\u01b0ng ch\u00fang b\u1ecb gi\u1edbi h\u1ea1n v\u1ec1 ph\u1ea1m vi. Khi c\u01a1 s\u1edf h\u1ea1 t\u1ea7ng m\u1ea1ng ng\u00e0y c\u00e0ng ph\u1ee9c t\u1ea1p h\u01a1n, nhu c\u1ea7u v\u1ec1 c\u00e1c c\u01a1 ch\u1ebf l\u1ecdc ti\u00ean ti\u1ebfn h\u01a1n tr\u1edf n\u00ean r\u00f5 r\u00e0ng. \u0110i\u1ec1u n\u00e0y d\u1eabn \u0111\u1ebfn s\u1ef1 ph\u00e1t tri\u1ec3n c\u1ee7a ACL m\u1edf r\u1ed9ng, cung c\u1ea5p cho qu\u1ea3n tr\u1ecb vi\u00ean kh\u1ea3 n\u0103ng ki\u1ec3m so\u00e1t chi ti\u1ebft h\u01a1n \u0111\u1ed1i v\u1edbi lu\u1ed3ng l\u01b0u l\u01b0\u1ee3ng.<\/p>\n<p>\u0110\u1ec1 c\u1eadp \u0111\u1ea7u ti\u00ean v\u1ec1 ACL m\u1edf r\u1ed9ng c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c t\u00ecm th\u1ea5y trong t\u00e0i li\u1ec7u Cisco IOS (H\u1ec7 \u0111i\u1ec1u h\u00e0nh Internetwork). Cisco \u0111\u00e3 gi\u1edbi thi\u1ec7u ACL m\u1edf r\u1ed9ng trong b\u1ed9 \u0111\u1ecbnh tuy\u1ebfn c\u1ee7a h\u1ecd \u0111\u1ec3 \u0111\u00e1p \u1ee9ng nhu c\u1ea7u c\u1ee7a c\u00e1c m\u1ea1ng l\u1edbn h\u01a1n v\u00e0 ph\u1ee9c t\u1ea1p h\u01a1n. Theo th\u1eddi gian, \u00fd t\u01b0\u1edfng v\u1ec1 ACL m\u1edf r\u1ed9ng \u0111\u00e3 thu h\u00fat \u0111\u01b0\u1ee3c s\u1ef1 ch\u00fa \u00fd v\u00e0 \u0111\u01b0\u1ee3c nhi\u1ec1u nh\u00e0 cung c\u1ea5p m\u1ea1ng kh\u00e1c \u00e1p d\u1ee5ng.<\/p>\n<h2>Th\u00f4ng tin chi ti\u1ebft v\u1ec1 ACL m\u1edf r\u1ed9ng<\/h2>\n<h3>M\u1edf r\u1ed9ng ch\u1ee7 \u0111\u1ec1 v\u1ec1 ACL m\u1edf r\u1ed9ng<\/h3>\n<p>C\u00e1c ACL m\u1edf r\u1ed9ng ho\u1ea1t \u0111\u1ed9ng \u1edf l\u1edbp m\u1ea1ng (L\u1edbp 3) c\u1ee7a m\u00f4 h\u00ecnh OSI v\u00e0 ch\u00fang ph\u1ee9c t\u1ea1p h\u01a1n c\u00e1c ACL ti\u00eau chu\u1ea9n t\u01b0\u01a1ng \u1ee9ng. Trong khi ACL ti\u00eau chu\u1ea9n ch\u1ec9 l\u1ecdc l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp d\u1ef1a tr\u00ean \u0111\u1ecba ch\u1ec9 IP ngu\u1ed3n th\u00ec ACL m\u1edf r\u1ed9ng cho ph\u00e9p qu\u1ea3n tr\u1ecb vi\u00ean l\u1ecdc d\u1ef1a tr\u00ean m\u1ed9t s\u1ed1 ti\u00eau ch\u00ed, bao g\u1ed3m:<\/p>\n<ol>\n<li>\n<p>\u0110\u1ecba ch\u1ec9 IP ngu\u1ed3n v\u00e0 \u0111\u00edch: \u0110\u1ecba ch\u1ec9 IP ngu\u1ed3n ho\u1eb7c \u0111\u00edch c\u1ee5 th\u1ec3, to\u00e0n b\u1ed9 m\u1ea1ng con ho\u1eb7c d\u1ea3i \u0111\u1ecba ch\u1ec9 IP c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c l\u1ecdc.<\/p>\n<\/li>\n<li>\n<p>S\u1ed1 c\u1ed5ng TCP v\u00e0 UDP: Qu\u1ea3n tr\u1ecb vi\u00ean c\u00f3 th\u1ec3 cho ph\u00e9p ho\u1eb7c t\u1eeb ch\u1ed1i l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp d\u1ef1a tr\u00ean s\u1ed1 c\u1ed5ng c\u1ee5 th\u1ec3, cho ph\u00e9p ho\u1eb7c h\u1ea1n ch\u1ebf quy\u1ec1n truy c\u1eadp v\u00e0o c\u00e1c d\u1ecbch v\u1ee5 ho\u1eb7c \u1ee9ng d\u1ee5ng c\u1ee5 th\u1ec3.<\/p>\n<\/li>\n<li>\n<p>C\u00e1c lo\u1ea1i giao th\u1ee9c: ACL m\u1edf r\u1ed9ng c\u00f3 th\u1ec3 l\u1ecdc l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp d\u1ef1a tr\u00ean c\u00e1c giao th\u1ee9c kh\u00e1c nhau, ch\u1eb3ng h\u1ea1n nh\u01b0 TCP, UDP, ICMP, v.v.<\/p>\n<\/li>\n<li>\n<p>L\u1ecdc d\u1ef1a tr\u00ean th\u1eddi gian: L\u1ecdc l\u01b0u l\u01b0\u1ee3ng c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c \u0111\u1ecbnh c\u1ea5u h\u00ecnh \u0111\u1ec3 ch\u1ec9 \u00e1p d\u1ee5ng trong kho\u1ea3ng th\u1eddi gian c\u1ee5 th\u1ec3, cung c\u1ea5p kh\u1ea3 n\u0103ng ki\u1ec3m so\u00e1t b\u1ed5 sung \u0111\u1ed1i v\u1edbi t\u00e0i nguy\u00ean m\u1ea1ng.<\/p>\n<\/li>\n<li>\n<p>Ghi nh\u1eadt k\u00fd t\u00f9y ch\u1ecdn: Qu\u1ea3n tr\u1ecb vi\u00ean c\u00f3 th\u1ec3 ch\u1ecdn ghi nh\u1eadt k\u00fd l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp ph\u00f9 h\u1ee3p v\u1edbi quy t\u1eafc ACL m\u1edf r\u1ed9ng cho m\u1ee5c \u0111\u00edch gi\u00e1m s\u00e1t v\u00e0 ki\u1ec3m tra.<\/p>\n<\/li>\n<\/ol>\n<p>ACL m\u1edf r\u1ed9ng ho\u1ea1t \u0111\u1ed9ng theo c\u00e1ch ti\u1ebfp c\u1eadn t\u1eeb tr\u00ean xu\u1ed1ng, \u0111\u00e1nh gi\u00e1 c\u00e1c quy t\u1eafc theo th\u1ee9 t\u1ef1 tu\u1ea7n t\u1ef1 cho \u0111\u1ebfn khi t\u00ecm th\u1ea5y k\u1ebft qu\u1ea3 ph\u00f9 h\u1ee3p. Sau khi th\u1ef1c hi\u1ec7n kh\u1edbp, thi\u1ebft b\u1ecb s\u1ebd th\u1ef1c hi\u1ec7n h\u00e0nh \u0111\u1ed9ng \u0111\u01b0\u1ee3c ch\u1ec9 \u0111\u1ecbnh trong quy t\u1eafc t\u01b0\u01a1ng \u1ee9ng (cho ph\u00e9p ho\u1eb7c t\u1eeb ch\u1ed1i) v\u00e0 c\u00e1c quy t\u1eafc ti\u1ebfp theo s\u1ebd kh\u00f4ng \u0111\u01b0\u1ee3c \u0111\u00e1nh gi\u00e1 cho l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp c\u1ee5 th\u1ec3 \u0111\u00f3.<\/p>\n<h2>C\u1ea5u tr\u00fac b\u00ean trong c\u1ee7a ACL m\u1edf r\u1ed9ng<\/h2>\n<p>ACL m\u1edf r\u1ed9ng th\u01b0\u1eddng bao g\u1ed3m c\u00e1c m\u1ee5c ki\u1ec3m so\u00e1t truy c\u1eadp (ACE) ri\u00eang l\u1ebb, m\u1ed7i m\u1ee5c x\u00e1c \u0111\u1ecbnh m\u1ed9t quy t\u1eafc l\u1ecdc c\u1ee5 th\u1ec3. M\u1ed9t ACE bao g\u1ed3m c\u00e1c th\u00e0nh ph\u1ea7n sau:<\/p>\n<ul>\n<li>\n<p><strong>S\u1ed1 th\u1ee9 t\u1ef1<\/strong>: M\u00e3 \u0111\u1ecbnh danh duy nh\u1ea5t cho m\u1ed7i ACE quy \u0111\u1ecbnh th\u1ee9 t\u1ef1 \u00e1p d\u1ee5ng c\u00e1c quy t\u1eafc.<\/p>\n<\/li>\n<li>\n<p><strong>Ho\u1ea1t \u0111\u1ed9ng<\/strong>: H\u00e0nh \u0111\u1ed9ng \u0111\u01b0\u1ee3c th\u1ef1c hi\u1ec7n khi tr\u1eadn \u0111\u1ea5u di\u1ec5n ra, th\u01b0\u1eddng \u0111\u01b0\u1ee3c bi\u1ec3u th\u1ecb l\u00e0 \u201ccho ph\u00e9p\u201d ho\u1eb7c \u201ct\u1eeb ch\u1ed1i\u201d.<\/p>\n<\/li>\n<li>\n<p><strong>Giao th\u1ee9c<\/strong>: Giao th\u1ee9c m\u1ea1ng \u00e1p d\u1ee5ng quy t\u1eafc, ch\u1eb3ng h\u1ea1n nh\u01b0 TCP, UDP ho\u1eb7c ICMP.<\/p>\n<\/li>\n<li>\n<p><strong>\u0110\u1ecba ch\u1ec9 ngu\u1ed3n<\/strong>: \u0110\u1ecba ch\u1ec9 ho\u1eb7c d\u1ea3i IP ngu\u1ed3n m\u00e0 quy t\u1eafc \u00e1p d\u1ee5ng.<\/p>\n<\/li>\n<li>\n<p><strong>\u0110\u1ecba ch\u1ec9 \u0111\u00edch<\/strong>: \u0110\u1ecba ch\u1ec9 ho\u1eb7c d\u1ea3i IP \u0111\u00edch m\u00e0 quy t\u1eafc \u00e1p d\u1ee5ng.<\/p>\n<\/li>\n<li>\n<p><strong>C\u1ed5ng ngu\u1ed3n<\/strong>: C\u1ed5ng ngu\u1ed3n ho\u1eb7c ph\u1ea1m vi c\u1ed5ng cho l\u01b0u l\u01b0\u1ee3ng.<\/p>\n<\/li>\n<li>\n<p><strong>C\u1ea3ng \u0111\u00edch<\/strong>: C\u1ed5ng \u0111\u00edch ho\u1eb7c ph\u1ea1m vi c\u1ed5ng cho l\u01b0u l\u01b0\u1ee3ng.<\/p>\n<\/li>\n<li>\n<p><strong>Ph\u1ea1m vi th\u1eddi gian<\/strong>: C\u00e1c r\u00e0ng bu\u1ed9c v\u1ec1 th\u1eddi gian t\u00f9y ch\u1ecdn trong th\u1eddi gian quy t\u1eafc \u0111\u01b0\u1ee3c k\u00edch ho\u1ea1t.<\/p>\n<\/li>\n<li>\n<p><strong>Ghi nh\u1eadt k\u00fd<\/strong>: C\u1edd t\u00f9y ch\u1ecdn \u0111\u1ec3 cho ph\u00e9p ghi nh\u1eadt k\u00fd l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp ph\u00f9 h\u1ee3p v\u1edbi ACE.<\/p>\n<\/li>\n<\/ul>\n<h2>Ph\u00e2n t\u00edch c\u00e1c t\u00ednh n\u0103ng ch\u00ednh c\u1ee7a ACL m\u1edf r\u1ed9ng<\/h2>\n<p>ACL m\u1edf r\u1ed9ng cung c\u1ea5p m\u1ed9t s\u1ed1 t\u00ednh n\u0103ng ch\u00ednh khi\u1ebfn ch\u00fang tr\u1edf th\u00e0nh c\u00f4ng c\u1ee5 thi\u1ebft y\u1ebfu cho qu\u1ea3n tr\u1ecb vi\u00ean m\u1ea1ng:<\/p>\n<ol>\n<li>\n<p><strong>Ki\u1ec3m so\u00e1t chi ti\u1ebft<\/strong>: V\u1edbi ACL m\u1edf r\u1ed9ng, qu\u1ea3n tr\u1ecb vi\u00ean c\u00f3 th\u1ec3 x\u00e1c \u0111\u1ecbnh ch\u00ednh x\u00e1c l\u01b0u l\u01b0\u1ee3ng n\u00e0o \u0111\u01b0\u1ee3c ph\u00e9p v\u00e0 l\u01b0u l\u01b0\u1ee3ng n\u00e0o b\u1ecb t\u1eeb ch\u1ed1i, mang l\u1ea1i m\u1ed9t m\u1ea1ng an to\u00e0n v\u00e0 hi\u1ec7u qu\u1ea3 h\u01a1n.<\/p>\n<\/li>\n<li>\n<p><strong>Nhi\u1ec1u ti\u00eau ch\u00ed l\u1ecdc<\/strong>: Kh\u1ea3 n\u0103ng l\u1ecdc d\u1ef1a tr\u00ean \u0111\u1ecba ch\u1ec9 ngu\u1ed3n v\u00e0 \u0111\u00edch, s\u1ed1 c\u1ed5ng v\u00e0 giao th\u1ee9c mang l\u1ea1i s\u1ef1 linh ho\u1ea1t v\u00e0 kh\u1ea3 n\u0103ng th\u00edch \u1ee9ng cao h\u01a1n v\u1edbi c\u00e1c m\u00f4i tr\u01b0\u1eddng m\u1ea1ng \u0111a d\u1ea1ng.<\/p>\n<\/li>\n<li>\n<p><strong>Ghi nh\u1eadt k\u00fd v\u00e0 gi\u00e1m s\u00e1t<\/strong>: B\u1eb1ng c\u00e1ch b\u1eadt t\u00ednh n\u0103ng ghi nh\u1eadt k\u00fd, qu\u1ea3n tr\u1ecb vi\u00ean m\u1ea1ng c\u00f3 th\u1ec3 hi\u1ec3u r\u00f5 h\u01a1n v\u1ec1 m\u00f4 h\u00ecnh l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp v\u00e0 x\u00e1c \u0111\u1ecbnh c\u00e1c m\u1ed1i \u0111e d\u1ecda b\u1ea3o m\u1eadt ti\u1ec1m \u1ea9n ho\u1eb7c c\u00e1c v\u1ea5n \u0111\u1ec1 v\u1ec1 hi\u1ec7u su\u1ea5t m\u1ea1ng.<\/p>\n<\/li>\n<li>\n<p><strong>L\u1ecdc d\u1ef1a tr\u00ean th\u1eddi gian<\/strong>: Kh\u1ea3 n\u0103ng \u00e1p d\u1ee5ng quy t\u1eafc l\u1ecdc d\u1ef1a tr\u00ean kho\u1ea3ng th\u1eddi gian c\u1ee5 th\u1ec3 cho ph\u00e9p qu\u1ea3n tr\u1ecb vi\u00ean qu\u1ea3n l\u00fd quy\u1ec1n truy c\u1eadp m\u1ea1ng hi\u1ec7u qu\u1ea3 h\u01a1n trong gi\u1edd cao \u0111i\u1ec3m v\u00e0 th\u1ea5p \u0111i\u1ec3m.<\/p>\n<\/li>\n<\/ol>\n<h2>C\u00e1c lo\u1ea1i ACL m\u1edf r\u1ed9ng<\/h2>\n<p>ACL m\u1edf r\u1ed9ng th\u01b0\u1eddng \u0111\u01b0\u1ee3c ph\u00e2n lo\u1ea1i d\u1ef1a tr\u00ean giao th\u1ee9c m\u00e0 ch\u00fang l\u1ecdc ho\u1eb7c h\u01b0\u1edbng \u00e1p d\u1ee5ng ch\u00fang. C\u00e1c lo\u1ea1i ph\u1ed5 bi\u1ebfn nh\u1ea5t bao g\u1ed3m:<\/p>\n<h3>1. ACL m\u1edf r\u1ed9ng d\u1ef1a tr\u00ean IP<\/h3>\n<p>C\u00e1c ACL n\u00e0y l\u1ecdc l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp d\u1ef1a tr\u00ean \u0111\u1ecba ch\u1ec9 IP ngu\u1ed3n v\u00e0 \u0111\u00edch. ACL d\u1ef1a tr\u00ean IP th\u01b0\u1eddng \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng \u0111\u1ec3 ki\u1ec3m so\u00e1t quy\u1ec1n truy c\u1eadp m\u1ea1ng chung v\u00e0 c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c \u00e1p d\u1ee5ng tr\u00ean c\u1ea3 giao di\u1ec7n g\u1eedi \u0111\u1ebfn v\u00e0 g\u1eedi \u0111i.<\/p>\n<h3>2. ACL m\u1edf r\u1ed9ng d\u1ef1a tr\u00ean TCP\/UDP<\/h3>\n<p>C\u00e1c ACL n\u00e0y l\u1ecdc l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp d\u1ef1a tr\u00ean giao th\u1ee9c TCP ho\u1eb7c UDP, c\u00f9ng v\u1edbi s\u1ed1 c\u1ed5ng ngu\u1ed3n v\u00e0 \u0111\u00edch c\u1ee5 th\u1ec3. ACL d\u1ef1a tr\u00ean TCP\/UDP l\u00fd t\u01b0\u1edfng \u0111\u1ec3 ki\u1ec3m so\u00e1t quy\u1ec1n truy c\u1eadp v\u00e0o c\u00e1c d\u1ecbch v\u1ee5 ho\u1eb7c \u1ee9ng d\u1ee5ng c\u1ee5 th\u1ec3.<\/p>\n<h3>3. ACL m\u1edf r\u1ed9ng d\u1ef1a tr\u00ean th\u1eddi gian<\/h3>\n<p>ACL d\u1ef1a tr\u00ean th\u1eddi gian cho ph\u00e9p l\u1ecdc d\u1ef1a tr\u00ean ph\u1ea1m vi th\u1eddi gian \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh tr\u01b0\u1edbc, \u0111\u1ea3m b\u1ea3o r\u1eb1ng m\u1ed9t s\u1ed1 quy t\u1eafc nh\u1ea5t \u0111\u1ecbnh ch\u1ec9 \u0111\u01b0\u1ee3c th\u1ef1c thi trong kho\u1ea3ng th\u1eddi gian \u0111\u01b0\u1ee3c ch\u1ec9 \u0111\u1ecbnh.<\/p>\n<h3>4. ACL m\u1edf r\u1ed9ng ph\u1ea3n x\u1ea1<\/h3>\n<p>ACL ph\u1ea3n x\u1ea1, c\u00f2n \u0111\u01b0\u1ee3c g\u1ecdi l\u00e0 ACL \u201c\u0111\u00e3 thi\u1ebft l\u1eadp\u201d, cho ph\u00e9p linh ho\u1ea1t l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp quay l\u1ea1i li\u00ean quan \u0111\u1ebfn k\u1ebft n\u1ed1i ra ngo\u00e0i do m\u00e1y ch\u1ee7 n\u1ed9i b\u1ed9 kh\u1edfi t\u1ea1o.<\/p>\n<h3>5. ACL m\u1edf r\u1ed9ng \u0111\u01b0\u1ee3c \u0111\u1eb7t t\u00ean<\/h3>\n<p>ACL \u0111\u01b0\u1ee3c \u0111\u1eb7t t\u00ean cung c\u1ea5p c\u00e1ch g\u00e1n t\u00ean m\u00f4 t\u1ea3 cho danh s\u00e1ch truy c\u1eadp, gi\u00fap qu\u1ea3n l\u00fd v\u00e0 hi\u1ec3u ch\u00fang d\u1ec5 d\u00e0ng h\u01a1n.<\/p>\n<h2>C\u00e1ch s\u1eed d\u1ee5ng ACL m\u1edf r\u1ed9ng, v\u1ea5n \u0111\u1ec1 v\u00e0 gi\u1ea3i ph\u00e1p<\/h2>\n<p>ACL m\u1edf r\u1ed9ng c\u00f3 nhi\u1ec1u \u1ee9ng d\u1ee5ng th\u1ef1c t\u1ebf trong qu\u1ea3n l\u00fd m\u1ea1ng, b\u1ea3o m\u1eadt v\u00e0 ki\u1ec3m so\u00e1t l\u01b0u l\u01b0\u1ee3ng:<\/p>\n<ol>\n<li>\n<p><strong>L\u1ecdc l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp<\/strong>: ACL m\u1edf r\u1ed9ng cho ph\u00e9p qu\u1ea3n tr\u1ecb vi\u00ean l\u1ecdc l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp kh\u00f4ng mong mu\u1ed1n ho\u1eb7c \u0111\u1ed9c h\u1ea1i x\u00e2m nh\u1eadp ho\u1eb7c tho\u00e1t kh\u1ecfi m\u1ea1ng, t\u0103ng c\u01b0\u1eddng b\u1ea3o m\u1eadt.<\/p>\n<\/li>\n<li>\n<p><strong>Quy t\u1eafc t\u01b0\u1eddng l\u1eeda<\/strong>: M\u00e1y ch\u1ee7 proxy v\u00e0 t\u01b0\u1eddng l\u1eeda th\u01b0\u1eddng ph\u1ed1i h\u1ee3p v\u1edbi nhau \u0111\u1ec3 ki\u1ec3m so\u00e1t v\u00e0 l\u1ecdc l\u01b0u l\u01b0\u1ee3ng. ACL m\u1edf r\u1ed9ng cho ph\u00e9p qu\u1ea3n tr\u1ecb vi\u00ean \u0111\u1eb7t quy t\u1eafc t\u01b0\u1eddng l\u1eeda h\u1ea1n ch\u1ebf quy\u1ec1n truy c\u1eadp v\u00e0o m\u1ed9t s\u1ed1 trang web ho\u1eb7c d\u1ecbch v\u1ee5 nh\u1ea5t \u0111\u1ecbnh.<\/p>\n<\/li>\n<li>\n<p><strong>Ch\u1ea5t l\u01b0\u1ee3ng d\u1ecbch v\u1ee5 (QoS)<\/strong>: B\u1eb1ng c\u00e1ch \u01b0u ti\u00ean l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp c\u1ee5 th\u1ec3 b\u1eb1ng ACL m\u1edf r\u1ed9ng, qu\u1ea3n tr\u1ecb vi\u00ean c\u00f3 th\u1ec3 \u0111\u1ea3m b\u1ea3o r\u1eb1ng c\u00e1c \u1ee9ng d\u1ee5ng quan tr\u1ecdng nh\u1eadn \u0111\u01b0\u1ee3c b\u0103ng th\u00f4ng v\u00e0 ch\u1ea5t l\u01b0\u1ee3ng d\u1ecbch v\u1ee5 c\u1ea7n thi\u1ebft.<\/p>\n<\/li>\n<li>\n<p><strong>D\u1ecbch \u0111\u1ecba ch\u1ec9 m\u1ea1ng (NAT)<\/strong>: ACL m\u1edf r\u1ed9ng r\u1ea5t h\u1eefu \u00edch trong c\u1ea5u h\u00ecnh NAT \u0111\u1ec3 ki\u1ec3m so\u00e1t \u0111\u1ecba ch\u1ec9 IP n\u1ed9i b\u1ed9 n\u00e0o \u0111\u01b0\u1ee3c d\u1ecbch sang \u0111\u1ecba ch\u1ec9 IP c\u00f4ng c\u1ed9ng c\u1ee5 th\u1ec3.<\/p>\n<\/li>\n<\/ol>\n<p>Tuy nhi\u00ean, vi\u1ec7c s\u1eed d\u1ee5ng ACL m\u1edf r\u1ed9ng c\u00f3 th\u1ec3 g\u1eb7p m\u1ed9t s\u1ed1 th\u00e1ch th\u1ee9c, ch\u1eb3ng h\u1ea1n nh\u01b0:<\/p>\n<ul>\n<li>\n<p><strong>\u0110\u1ed9 ph\u1ee9c t\u1ea1p<\/strong>: Khi m\u1ea1ng ph\u00e1t tri\u1ec3n, vi\u1ec7c qu\u1ea3n l\u00fd v\u00e0 duy tr\u00ec ACL m\u1edf r\u1ed9ng c\u00f3 th\u1ec3 tr\u1edf n\u00ean ph\u1ee9c t\u1ea1p v\u00e0 t\u1ed1n th\u1eddi gian.<\/p>\n<\/li>\n<li>\n<p><strong>Kh\u1ea3 n\u0103ng x\u1ea3y ra l\u1ed7i<\/strong>: L\u1ed7i c\u1ee7a con ng\u01b0\u1eddi trong vi\u1ec7c \u0111\u1ecbnh c\u1ea5u h\u00ecnh ACL c\u00f3 th\u1ec3 d\u1eabn \u0111\u1ebfn c\u00e1c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt ngo\u00e0i \u00fd mu\u1ed1n ho\u1eb7c gi\u00e1n \u0111o\u1ea1n m\u1ea1ng.<\/p>\n<\/li>\n<\/ul>\n<p>\u0110\u1ec3 gi\u1ea3i quy\u1ebft nh\u1eefng v\u1ea5n \u0111\u1ec1 n\u00e0y, qu\u1ea3n tr\u1ecb vi\u00ean n\u00ean tu\u00e2n theo c\u00e1c ph\u01b0\u01a1ng ph\u00e1p hay nh\u1ea5t, ch\u1eb3ng h\u1ea1n nh\u01b0 ghi l\u1ea1i c\u1ea5u h\u00ecnh ACL, s\u1eed d\u1ee5ng t\u00ean m\u00f4 t\u1ea3 cho ACL v\u00e0 ki\u1ec3m tra c\u00e1c thay \u0111\u1ed5i trong m\u00f4i tr\u01b0\u1eddng \u0111\u01b0\u1ee3c ki\u1ec3m so\u00e1t tr\u01b0\u1edbc khi tri\u1ec3n khai.<\/p>\n<h2>C\u00e1c \u0111\u1eb7c \u0111i\u1ec3m ch\u00ednh v\u00e0 so s\u00e1nh v\u1edbi c\u00e1c thu\u1eadt ng\u1eef t\u01b0\u01a1ng t\u1ef1<\/h2>\n<p>H\u00e3y so s\u00e1nh ACL m\u1edf r\u1ed9ng v\u1edbi ACL ti\u00eau chu\u1ea9n v\u00e0 m\u1ed9t s\u1ed1 thu\u1eadt ng\u1eef li\u00ean quan:<\/p>\n<table>\n<thead>\n<tr>\n<th>Ti\u00eau chu\u1ea9n<\/th>\n<th>ACL m\u1edf r\u1ed9ng<\/th>\n<th>ACL ti\u00eau chu\u1ea9n<\/th>\n<th>T\u01b0\u1eddng l\u1eeda<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>Ti\u00eau ch\u00ed l\u1ecdc<\/td>\n<td>\u0110\u1ecba ch\u1ec9 IP, giao th\u1ee9c, c\u1ed5ng, ph\u1ea1m vi th\u1eddi gian<\/td>\n<td>C\u00e1c \u0111\u1ecba ch\u1ec9 IP<\/td>\n<td>\u0110\u1ecba ch\u1ec9 IP, c\u1ed5ng, ch\u1eef k\u00fd \u1ee9ng d\u1ee5ng<\/td>\n<\/tr>\n<tr>\n<td>Uy\u1ec3n chuy\u1ec3n<\/td>\n<td>Cao<\/td>\n<td>Gi\u1edbi h\u1ea1n<\/td>\n<td>Trung b\u00ecnh \u0111\u1ebfn cao<\/td>\n<\/tr>\n<tr>\n<td>\u0110\u1ed9 chi ti\u1ebft<\/td>\n<td>H\u1ea1t m\u1ecbn<\/td>\n<td>th\u00f4<\/td>\n<td>V\u1eeba ph\u1ea3i<\/td>\n<\/tr>\n<tr>\n<td>Tr\u01b0\u1eddng h\u1ee3p s\u1eed d\u1ee5ng<\/td>\n<td>M\u00f4i tr\u01b0\u1eddng m\u1ea1ng ph\u1ee9c t\u1ea1p<\/td>\n<td>M\u1ea1ng nh\u1ecf, l\u1ecdc c\u01a1 b\u1ea3n<\/td>\n<td>An ninh m\u1ea1ng v\u00e0 ki\u1ec3m so\u00e1t truy c\u1eadp<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<h2>Quan \u0111i\u1ec3m v\u00e0 c\u00f4ng ngh\u1ec7 c\u1ee7a t\u01b0\u01a1ng lai li\u00ean quan \u0111\u1ebfn ACL m\u1edf r\u1ed9ng<\/h2>\n<p>T\u01b0\u01a1ng lai c\u1ee7a ACL m\u1edf r\u1ed9ng g\u1eafn li\u1ec1n v\u1edbi s\u1ef1 ph\u00e1t tri\u1ec3n \u0111ang di\u1ec5n ra trong c\u00f4ng ngh\u1ec7 m\u1ea1ng v\u00e0 c\u00e1c bi\u1ec7n ph\u00e1p b\u1ea3o m\u1eadt. M\u1ed9t s\u1ed1 ti\u1ebfn b\u1ed9 ti\u1ec1m n\u0103ng bao g\u1ed3m:<\/p>\n<ol>\n<li>\n<p><strong>T\u1ef1 \u0111\u1ed9ng h\u00f3a<\/strong>: S\u1ef1 ph\u1ee9c t\u1ea1p ng\u00e0y c\u00e0ng t\u0103ng c\u1ee7a m\u1ea1ng \u0111\u00f2i h\u1ecfi nhi\u1ec1u gi\u1ea3i ph\u00e1p t\u1ef1 \u0111\u1ed9ng h\u01a1n. C\u00e1c c\u00f4ng c\u1ee5 do AI \u0111i\u1ec1u khi\u1ec3n c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng \u0111\u1ec3 h\u1ed7 tr\u1ee3 t\u1ea1o v\u00e0 qu\u1ea3n l\u00fd ACL m\u1edf r\u1ed9ng m\u1ed9t c\u00e1ch hi\u1ec7u qu\u1ea3.<\/p>\n<\/li>\n<li>\n<p><strong>Ki\u1ec3m tra g\u00f3i s\u00e2u (DPI)<\/strong>: C\u00f4ng ngh\u1ec7 DPI li\u00ean t\u1ee5c ph\u00e1t tri\u1ec3n, cho ph\u00e9p ACL m\u1edf r\u1ed9ng tr\u1edf n\u00ean ph\u1ee9c t\u1ea1p h\u01a1n trong vi\u1ec7c x\u00e1c \u0111\u1ecbnh v\u00e0 ki\u1ec3m so\u00e1t c\u00e1c \u1ee9ng d\u1ee5ng v\u00e0 giao th\u1ee9c kh\u00e1c nhau.<\/p>\n<\/li>\n<li>\n<p><strong>M\u1ea1ng l\u01b0\u1edbi kh\u00f4ng tin c\u1eady<\/strong>: Khi kh\u00e1i ni\u1ec7m v\u1ec1 \u0111\u1ed9 tin c\u1eady b\u1eb1ng kh\u00f4ng ng\u00e0y c\u00e0ng ph\u1ed5 bi\u1ebfn, ACL m\u1edf r\u1ed9ng c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng \u0111\u1ec3 tri\u1ec3n khai ki\u1ec3m so\u00e1t v\u00e0 ph\u00e2n \u0111o\u1ea1n truy c\u1eadp chi ti\u1ebft trong m\u1ea1ng.<\/p>\n<\/li>\n<\/ol>\n<h2>C\u00e1ch s\u1eed d\u1ee5ng ho\u1eb7c li\u00ean k\u1ebft m\u00e1y ch\u1ee7 proxy v\u1edbi ACL m\u1edf r\u1ed9ng<\/h2>\n<p>C\u00e1c m\u00e1y ch\u1ee7 proxy, nh\u01b0 OneProxy (oneproxy.pro), \u0111\u00f3ng m\u1ed9t vai tr\u00f2 quan tr\u1ecdng trong vi\u1ec7c t\u0103ng c\u01b0\u1eddng b\u1ea3o m\u1eadt, quy\u1ec1n ri\u00eang t\u01b0 v\u00e0 hi\u1ec7u su\u1ea5t cho ng\u01b0\u1eddi d\u00f9ng truy c\u1eadp Internet. Khi \u0111\u01b0\u1ee3c t\u00edch h\u1ee3p v\u1edbi ACL m\u1edf r\u1ed9ng, m\u00e1y ch\u1ee7 proxy c\u00f3 th\u1ec3 mang l\u1ea1i c\u00e1c l\u1ee3i \u00edch b\u1ed5 sung:<\/p>\n<ol>\n<li>\n<p><strong>L\u1ecdc n\u1ed9i dung<\/strong>: ACL m\u1edf r\u1ed9ng c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c \u00e1p d\u1ee5ng tr\u00ean m\u00e1y ch\u1ee7 proxy \u0111\u1ec3 h\u1ea1n ch\u1ebf quy\u1ec1n truy c\u1eadp v\u00e0o c\u00e1c trang web ho\u1eb7c danh m\u1ee5c n\u1ed9i dung c\u1ee5 th\u1ec3 nh\u1eb1m c\u1ea3i thi\u1ec7n t\u00ednh tu\u00e2n th\u1ee7 v\u00e0 b\u1ea3o m\u1eadt.<\/p>\n<\/li>\n<li>\n<p><strong>B\u1ea3o v\u1ec7 ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i<\/strong>: B\u1eb1ng c\u00e1ch k\u1ebft h\u1ee3p ACL m\u1edf r\u1ed9ng v\u1edbi kh\u1ea3 n\u0103ng c\u1ee7a m\u00e1y ch\u1ee7 proxy, qu\u1ea3n tr\u1ecb vi\u00ean c\u00f3 th\u1ec3 ch\u1eb7n quy\u1ec1n truy c\u1eadp v\u00e0o c\u00e1c trang web \u0111\u1ed9c h\u1ea1i \u0111\u00e3 bi\u1ebft v\u00e0 ng\u0103n ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i ti\u1ebfp c\u1eadn kh\u00e1ch h\u00e0ng.<\/p>\n<\/li>\n<li>\n<p><strong>\u1ea8n danh v\u00e0 quy\u1ec1n ri\u00eang t\u01b0<\/strong>: M\u00e1y ch\u1ee7 proxy c\u00f3 th\u1ec3 gi\u00fap ng\u01b0\u1eddi d\u00f9ng duy tr\u00ec t\u00ednh \u1ea9n danh tr\u1ef1c tuy\u1ebfn, trong khi ACL m\u1edf r\u1ed9ng b\u1ed5 sung th\u00eam m\u1ed9t l\u1edbp b\u1ea3o m\u1eadt v\u00e0 ki\u1ec3m so\u00e1t d\u1eef li\u1ec7u n\u00e0o \u0111\u01b0\u1ee3c truy\u1ec1n \u0111i.<\/p>\n<\/li>\n<\/ol>\n<h2>Li\u00ean k\u1ebft li\u00ean quan<\/h2>\n<p>\u0110\u1ec3 bi\u1ebft th\u00eam th\u00f4ng tin v\u1ec1 ACL m\u1edf r\u1ed9ng, b\u1ea1n c\u00f3 th\u1ec3 tham kh\u1ea3o c\u00e1c t\u00e0i nguy\u00ean sau:<\/p>\n<ol>\n<li>\n<p>T\u00e0i li\u1ec7u c\u1ee7a Cisco: <a href=\"https:\/\/www.cisco.com\/c\/en\/us\/support\/docs\/security\/ios-firewall\/23602-confaccesslists.html\" target=\"_new\" rel=\"noopener nofollow\">https:\/\/www.cisco.com\/c\/en\/us\/support\/docs\/security\/ios-firewall\/23602-confaccesslists.html<\/a><\/p>\n<\/li>\n<li>\n<p>T\u00e0i li\u1ec7u c\u1ee7a Juniper Networks: <a href=\"https:\/\/www.juniper.net\/documentation\/en_US\/junos\/topics\/topic-map\/security-acls.html\" target=\"_new\" rel=\"noopener nofollow\">https:\/\/www.juniper.net\/documentation\/en_US\/junos\/topics\/topic-map\/security-acls.html<\/a><\/p>\n<\/li>\n<li>\n<p>B\u1ea3o m\u1eadt m\u1ea1ng TechTarget: <a href=\"https:\/\/searchsecurity.techtarget.com\/definition\/access-control-list\" target=\"_new\" rel=\"noopener nofollow\">https:\/\/searchsecurity.techtarget.com\/definition\/access-control-list<\/a><\/p>\n<\/li>\n<li>\n<p>IETF RFC 3550: <a href=\"https:\/\/tools.ietf.org\/html\/rfc3550\" target=\"_new\" rel=\"noopener nofollow\">https:\/\/tools.ietf.org\/html\/rfc3550<\/a><\/p>\n<\/li>\n<\/ol>\n<p>B\u1eb1ng c\u00e1ch hi\u1ec3u v\u00e0 s\u1eed d\u1ee5ng hi\u1ec7u qu\u1ea3 ACL m\u1edf r\u1ed9ng, qu\u1ea3n tr\u1ecb vi\u00ean m\u1ea1ng v\u00e0 nh\u00e0 cung c\u1ea5p m\u00e1y ch\u1ee7 proxy c\u00f3 th\u1ec3 c\u1ee7ng c\u1ed1 c\u01a1 s\u1edf h\u1ea1 t\u1ea7ng b\u1ea3o m\u1eadt c\u1ee7a h\u1ecd, \u0111\u1ea3m b\u1ea3o qu\u1ea3n l\u00fd l\u01b0u l\u01b0\u1ee3ng truy c\u1eadp t\u1ed1t h\u01a1n v\u00e0 n\u00e2ng cao hi\u1ec7u su\u1ea5t m\u1ea1ng t\u1ed5ng th\u1ec3.<\/p>","protected":false},"featured_media":477161,"menu_order":0,"template":"","meta":{"_acf_changed":false,"content-type":"","inline_featured_image":false,"footnotes":""},"class_list":["post-477160","wiki","type-wiki","status-publish","has-post-thumbnail","hentry"],"acf":{"faq_title":"Frequently Asked Questions about <mark>Extended ACLs: Enhancing Proxy Server Security and Control<\/mark>","faq_items":[{"question":"<strong>What are Extended ACLs, and how do they differ from standard ACLs?<\/strong>","answer":"<p>Extended ACLs, or Extended Access Control Lists, are powerful network filtering mechanisms used in routers, switches, and proxy servers. They allow administrators to control traffic based on various criteria like source\/destination IP addresses, port numbers, and protocols. The key difference between Extended and standard ACLs is that Extended ACLs offer more granularity and flexibility in traffic filtering, enabling a finer level of control over network access.<\/p>"},{"question":"<strong>Where did Extended ACLs originate, and when were they first introduced?<\/strong>","answer":"<p>Extended ACLs were developed to address the limitations of standard ACLs as networks grew in complexity. Cisco introduced the concept of Extended ACLs in their IOS documentation to cater to the demands of larger and intricate networks. Over time, Extended ACLs gained popularity and were adopted by various other networking vendors.<\/p>"},{"question":"<strong>How do Extended ACLs work internally, and what is the structure of an ACL entry?<\/strong>","answer":"<p>Extended ACLs operate at the network layer (Layer 3) and consist of individual Access Control Entries (ACEs). Each ACE comprises a sequence number, action (permit\/deny), protocol type, source and destination IP addresses, port numbers, optional time range, and a logging flag. When network traffic passes through an Extended ACL, it is evaluated against the ACEs sequentially until a match is found. The specified action is then applied to the traffic.<\/p>"},{"question":"<strong>What are the key features of Extended ACLs that make them essential for network management?<\/strong>","answer":"<p>Extended ACLs offer several important features, including fine-grained control over traffic, multiple filtering criteria (IP addresses, ports, protocols), time-based filtering, and optional logging for monitoring. These features empower administrators to establish precise traffic policies, enhance security, and prioritize critical applications.<\/p>"},{"question":"<strong>What types of Extended ACLs exist, and how are they categorized?<\/strong>","answer":"<p>Extended ACLs can be categorized based on their filtering criteria and application direction. Common types include IP-based Extended ACLs (filtering based on IP addresses), TCP\/UDP-based Extended ACLs (filtering based on port numbers and protocols), time-based Extended ACLs (applying filters during specific time ranges), reflexive Extended ACLs (dynamically allowing return traffic), and named Extended ACLs (descriptive names for access lists).<\/p>"},{"question":"<strong>How can Extended ACLs be used, and what problems may arise when implementing them?<\/strong>","answer":"<p>Extended ACLs have various applications, such as traffic filtering, firewall rules, quality of service, and network address translation. However, their complexity may pose challenges in managing larger networks, and human errors during configuration could lead to unintended security vulnerabilities or disruptions. Best practices include proper documentation, using descriptive names, and testing changes before deployment.<\/p>"},{"question":"<strong>How do Extended ACLs compare to other network security terms like standard ACLs and firewalls?<\/strong>","answer":"<p>Compared to standard ACLs, Extended ACLs offer greater flexibility and granularity in filtering criteria. Firewalls, on the other hand, use a combination of IP addresses, ports, and application signatures for access control. Extended ACLs are ideal for more complex network environments, whereas standard ACLs suit smaller networks with basic filtering requirements.<\/p>"},{"question":"<strong>What can we expect for the future of Extended ACLs and related networking technologies?<\/strong>","answer":"<p>The future of Extended ACLs is likely to involve increased automation, advanced Deep Packet Inspection (DPI) technologies, and integration with the concept of zero trust networking. These advancements will further enhance network security and performance.<\/p>"},{"question":"<strong>How are proxy servers associated with Extended ACLs, and what benefits do they offer?<\/strong>","answer":"<p>Proxy servers like OneProxy (oneproxy.pro) can enhance security, privacy, and performance for internet users. When integrated with Extended ACLs, proxy servers can provide content filtering, malware protection, and anonymous browsing, adding an extra layer of security and control for users.<\/p>"},{"question":"<strong>Where can I find more information about Extended ACLs?<\/strong>","answer":"<p>For more in-depth information about Extended ACLs, you can refer to resources like Cisco Documentation (<a href=\"https:\/\/www.cisco.com\/c\/en\/us\/support\/docs\/security\/ios-firewall\/23602-confaccesslists.html\" target=\"_new\">https:\/\/www.cisco.com\/c\/en\/us\/support\/docs\/security\/ios-firewall\/23602-confaccesslists.html<\/a>), Juniper Networks Documentation, TechTarget Network Security (<a href=\"https:\/\/searchsecurity.techtarget.com\/definition\/access-control-list\" target=\"_new\">https:\/\/searchsecurity.techtarget.com\/definition\/access-control-list<\/a>), and IETF RFC 3550 (<a href=\"https:\/\/tools.ietf.org\/html\/rfc3550\" target=\"_new\">https:\/\/tools.ietf.org\/html\/rfc3550<\/a>).<\/p>"}]},"_links":{"self":[{"href":"https:\/\/oneproxy.pro\/vn\/wp-json\/wp\/v2\/wiki\/477160","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/oneproxy.pro\/vn\/wp-json\/wp\/v2\/wiki"}],"about":[{"href":"https:\/\/oneproxy.pro\/vn\/wp-json\/wp\/v2\/types\/wiki"}],"version-history":[{"count":0,"href":"https:\/\/oneproxy.pro\/vn\/wp-json\/wp\/v2\/wiki\/477160\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/oneproxy.pro\/vn\/wp-json\/wp\/v2\/media\/477161"}],"wp:attachment":[{"href":"https:\/\/oneproxy.pro\/vn\/wp-json\/wp\/v2\/media?parent=477160"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}