AdminGit2026/nis2-agile
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
261fc4cdd5
nis2-agile/docs/nis2/doc-network-physical.html
DevEnv nis2-agile 5c545ea3d0 [FEAT] Integrazione analisi docs/nis2 v1.7.0 — scoring asset, tassonomia incidenti, PIR, NIST CSF, fonti certe 
Fase 1 - Asset Relevance Scoring NIS2 (GV.OC-04): metodologia 0-100 a 6 criteri,
  AssetScoringService + endpoint scoringGrid/score/relevantSystems + UI assets.html + registro stampabile.
Fase 2 - Tassonomia incidenti Determina ACN 164179/2025: IS-1..4 + regime essenziale/importante (Allegati 3/4).
Fase 3 - Post-Incident Review (5-Whys) + metriche TTD/TTC/TTR + timestamp di fase.
Fase 4 - Mapping NIST CSF 2.0 (43 controlli) reference-only.
Fonti certe: registry config/nis2_sources.php + grounding AI (vieta riferimenti inventati) +
  citazioni help.js + ingest PDF normativi nella KB RAG (scripts/ingest-nis2-sources.php).
Migrazioni 020/021/022 (additive idempotenti). Fix VectorService IP Qdrant (drift .5->.3).
Analisi concorrenza Evix (docs/EVIX_ANALISI_CONCORRENZA.html, gap-driven).

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-05-29 17:15:13 +02:00

451 lines
15 KiB
HTML
Raw Blame History

<!DOCTYPE html>
<html lang="it">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Diagramma Topologia Rete - NIS2</title>
<style>
:root {
--bg-primary: #ffffff;
--text-primary: #1a1a1a;
--text-secondary: #666666;
--border-color: #cccccc;
--accent-primary: #0066cc;
--zone-dmz: #fff3cd;
--zone-internal: #d1ecf1;
--zone-secure: #d4edda;
--zone-external: #f8d7da;
}
* {
margin: 0;
padding: 0;
box-sizing: border-box;
}
body {
font-family: Arial, sans-serif;
background-color: #f5f5f5;
color: var(--text-primary);
padding: 20px;
}
.document-container {
max-width: 297mm;
margin: 0 auto;
background-color: var(--bg-primary);
padding: 30px;
box-shadow: 0 0 20px rgba(0, 0, 0, 0.1);
}
.header {
text-align: center;
border-bottom: 3px solid var(--text-primary);
padding-bottom: 20px;
margin-bottom: 30px;
}
.logo {
font-size: 24px;
font-weight: bold;
color: var(--accent-primary);
margin-bottom: 10px;
}
.doc-title {
font-size: 20px;
font-weight: bold;
margin: 15px 0;
}
.doc-subtitle {
font-size: 12px;
color: var(--text-secondary);
}
.classification {
text-align: center;
font-size: 11px;
font-weight: bold;
color: #d32f2f;
background-color: #ffebee;
padding: 10px;
border: 2px solid #d32f2f;
margin-bottom: 20px;
}
.diagram-container {
width: 100%;
background-color: #fafafa;
border: 2px solid var(--border-color);
padding: 30px;
margin: 20px 0;
position: relative;
}
.zone {
border: 2px dashed #333;
padding: 20px;
margin: 15px 0;
border-radius: 8px;
position: relative;
}
.zone-label {
position: absolute;
top: -12px;
left: 20px;
background-color: var(--bg-primary);
padding: 0 10px;
font-weight: bold;
font-size: 14px;
}
.zone-external {
background-color: var(--zone-external);
border-color: #721c24;
}
.zone-dmz {
background-color: var(--zone-dmz);
border-color: #856404;
}
.zone-internal {
background-color: var(--zone-internal);
border-color: #004085;
}
.zone-secure {
background-color: var(--zone-secure);
border-color: #155724;
}
.device {
background-color: white;
border: 2px solid #333;
border-radius: 6px;
padding: 15px;
margin: 10px;
display: inline-block;
min-width: 150px;
text-align: center;
box-shadow: 0 2px 4px rgba(0, 0, 0, 0.1);
}
.device-icon {
font-size: 32px;
margin-bottom: 8px;
}
.device-name {
font-weight: bold;
font-size: 12px;
margin-bottom: 4px;
}
.device-ip {
font-size: 10px;
color: var(--text-secondary);
}
.device-code {
font-size: 9px;
color: var(--accent-primary);
font-family: monospace;
}
.connection {
text-align: center;
font-size: 24px;
color: #333;
margin: 10px 0;
}
.legend {
margin-top: 30px;
padding: 20px;
background-color: #f9f9f9;
border: 1px solid var(--border-color);
border-radius: 6px;
}
.legend-title {
font-weight: bold;
font-size: 14px;
margin-bottom: 15px;
color: var(--accent-primary);
}
.legend-item {
display: inline-block;
margin: 5px 15px 5px 0;
font-size: 11px;
}
.legend-color {
display: inline-block;
width: 20px;
height: 20px;
border: 1px solid #333;
margin-right: 8px;
vertical-align: middle;
}
.info-box {
background-color: #e7f3ff;
border-left: 4px solid var(--accent-primary);
padding: 15px;
margin: 20px 0;
font-size: 11px;
}
.info-box-title {
font-weight: bold;
margin-bottom: 8px;
}
.no-print {
position: fixed;
top: 20px;
right: 20px;
z-index: 1000;
}
.btn-print {
padding: 12px 24px;
background-color: var(--accent-primary);
color: white;
border: none;
border-radius: 4px;
cursor: pointer;
font-size: 14px;
box-shadow: 0 2px 8px rgba(0, 0, 0, 0.2);
}
.btn-print:hover {
background-color: #0052a3;
}
.grid-container {
display: grid;
grid-template-columns: repeat(auto-fit, minmax(180px, 1fr));
gap: 15px;
justify-items: center;
}
@media print {
body {
background-color: white;
padding: 0;
}
.document-container {
box-shadow: none;
}
.no-print {
display: none;
}
}
</style>
</head>
<body>
<div class="no-print">
<button class="btn-print" onclick="window.print()">🖨️ Stampa PDF</button>
</div>
<div class="document-container">
<div class="classification">
⚠️ DOCUMENTO RISERVATO - SOLO PERSONALE AUTORIZZATO ⚠️
</div>
<div class="header">
<div class="logo">ACME CORPORATION S.p.A.</div>
<div class="doc-title">Diagramma Topologia Rete Fisica</div>
<div class="doc-subtitle">Versione 3.2 | Data: 15 Febbraio 2024 | Approvato da: CISO</div>
<div class="doc-subtitle">Documento ID.AM-03 - Requisito NIS2 (Solo Soggetti Essenziali)</div>
</div>
<div class="info-box">
<div class="info-box-title">📋 Informazioni Documento</div>
<strong>Codice:</strong> NET-TOPO-PHY-v3.2 |
<strong>Ultima Modifica:</strong> 15/02/2024 |
<strong>Prossima Revisione:</strong> 15/05/2024 |
<strong>Classificazione:</strong> RISERVATO
</div>
<div class="diagram-container">
<!-- ZONA INTERNET -->
<div class="zone zone-external">
<div class="zone-label">🌐 INTERNET / ZONA ESTERNA</div>
<div style="text-align: center;">
<div class="device">
<div class="device-icon">🌍</div>
<div class="device-name">Internet</div>
<div class="device-ip">Pubblico</div>
</div>
</div>
</div>
<div class="connection">⬇️ Connessione Fibra 1Gbps</div>
<!-- ZONA DMZ -->
<div class="zone zone-dmz">
<div class="zone-label">🛡️ DMZ (DeMilitarized Zone)</div>
<div class="grid-container">
<div class="device">
<div class="device-icon">🔥</div>
<div class="device-name">Firewall Perimetrale</div>
<div class="device-ip">10.10.0.1</div>
<div class="device-code">HW-NET-015</div>
</div>
<div class="device">
<div class="device-icon">🌐</div>
<div class="device-name">Web Server Pubblico</div>
<div class="device-ip">10.10.2.45</div>
<div class="device-code">HW-SRV-023</div>
</div>
<div class="device">
<div class="device-icon">📧</div>
<div class="device-name">Mail Gateway</div>
<div class="device-ip">10.10.2.50</div>
<div class="device-code">HW-SRV-028</div>
</div>
<div class="device">
<div class="device-icon">🔐</div>
<div class="device-name">VPN Gateway</div>
<div class="device-ip">10.10.2.60</div>
<div class="device-code">HW-NET-018</div>
</div>
</div>
</div>
<div class="connection">⬇️ VLAN Segmentation</div>
<!-- ZONA INTERNA -->
<div class="zone zone-internal">
<div class="zone-label">🏢 RETE INTERNA</div>
<div class="grid-container">
<div class="device">
<div class="device-icon">🔀</div>
<div class="device-name">Core Switch</div>
<div class="device-ip">10.10.1.1</div>
<div class="device-code">HW-NET-022</div>
</div>
<div class="device">
<div class="device-icon">💻</div>
<div class="device-name">Workstation (x150)</div>
<div class="device-ip">10.20.x.x</div>
<div class="device-code">VLAN 20</div>
</div>
<div class="device">
<div class="device-icon">🖨️</div>
<div class="device-name">Stampanti</div>
<div class="device-ip">10.30.x.x</div>
<div class="device-code">VLAN 30</div>
</div>
<div class="device">
<div class="device-icon">📱</div>
<div class="device-name">WiFi Guest</div>
<div class="device-ip">10.40.x.x</div>
<div class="device-code">VLAN 40</div>
</div>
</div>
</div>
<div class="connection">⬇️ Firewall Interno</div>
<!-- ZONA SICURA -->
<div class="zone zone-secure">
<div class="zone-label">🔒 DATACENTER / ZONA SICURA</div>
<div class="grid-container">
<div class="device">
<div class="device-icon">🖥️</div>
<div class="device-name">ERP Server</div>
<div class="device-ip">10.10.1.10</div>
<div class="device-code">HW-SRV-001</div>
</div>
<div class="device">
<div class="device-icon">💾</div>
<div class="device-name">Database Server</div>
<div class="device-ip">10.10.1.20</div>
<div class="device-code">HW-SRV-012</div>
</div>
<div class="device">
<div class="device-icon">📊</div>
<div class="device-name">SIEM Splunk</div>
<div class="device-ip">10.10.1.30</div>
<div class="device-code">HW-SRV-045</div>
</div>
<div class="device">
<div class="device-icon">💿</div>
<div class="device-name">Backup Server</div>
<div class="device-ip">10.10.1.40</div>
<div class="device-code">HW-SRV-050</div>
</div>
<div class="device">
<div class="device-icon">☁️</div>
<div class="device-name">VMware Cluster</div>
<div class="device-ip">10.10.1.50-55</div>
<div class="device-code">HW-SRV-060</div>
</div>
<div class="device">
<div class="device-icon">🔐</div>
<div class="device-name">Active Directory</div>
<div class="device-ip">10.10.1.60</div>
<div class="device-code">HW-SRV-065</div>
</div>
</div>
</div>
</div>
<div class="legend">
<div class="legend-title">📖 LEGENDA</div>
<div class="legend-item">
<span class="legend-color" style="background-color: var(--zone-external);"></span>
Zona Esterna (Internet)
</div>
<div class="legend-item">
<span class="legend-color" style="background-color: var(--zone-dmz);"></span>
DMZ (Servizi Esposti)
</div>
<div class="legend-item">
<span class="legend-color" style="background-color: var(--zone-internal);"></span>
Rete Interna (Utenti)
</div>
<div class="legend-item">
<span class="legend-color" style="background-color: var(--zone-secure);"></span>
Datacenter (Sistemi Critici)
</div>
</div>
<div class="info-box">
<div class="info-box-title">🔐 Note di Sicurezza</div>
• Tutti i flussi tra zone sono controllati da firewall con regole whitelist<br>
• Monitoraggio 24/7 tramite SIEM centralizzato (Splunk)<br>
• Segmentazione VLAN per separazione logica dei servizi<br>
• Backup giornaliero con replica off-site<br>
• Accesso datacenter con autenticazione biometrica e logging<br>
• Aggiornamento obbligatorio entro 5 giorni da modifiche infrastrutturali
</div>
<div style="margin-top: 40px; padding-top: 20px; border-top: 2px solid var(--border-color); text-align: center; font-size: 10px; color: var(--text-secondary);">
Documento NET-TOPO-PHY-v3.2 - RISERVATO - Pagina 1 di 1
</div>
</div>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink