SmartPSS Lite Video Intercom

Solution
User’s Manual

V1.0.3
 Foreword
General

This manual introduces the functions and operations of the video intercom solution of the
SmartPSS Lite (hereinafter referred to as "the Platform"). Read carefully before using the platform,
and keep the manual safe for future reference.

Safety Instructions

The following signal words might appear in the manual.

Signal Words Meaning

Indicates a high potential hazard which, if not avoided, will result in

death or serious injury.

Indicates a medium or low potential hazard which, if not avoided,

could result in slight or moderate injury.

Indicates a potential risk which, if not avoided, could result in

property damage, data loss, reductions in performance, or
unpredictable results.

Provides methods to help you solve a problem or save time.

Provides additional information as a supplement to the text.

Revision History

Version Revision Content Release Time

Updated the building organization

V1.0.3 September 2023
managements.

● Updated the intercom configuration

function.
V1.0.2 April 2023
● Updated the intercom management
function.

● Updated personnel management function.

V1.0.1 December 2022
● Updated intercom configuration function.

V1.0.0 First release. August 2022

Privacy Protection Notice

As the device user or data controller, you might collect the personal data of others such as their
face, fingerprints, and license plate number. You need to be in compliance with your local privacy
protection laws and regulations to protect the legitimate rights and interests of other people by

I
 implementing measures which include but are not limited: Providing clear and visible identification
to inform people of the existence of the surveillance area and provide required contact information.

About the Manual

● The manual is for reference only. Slight differences might be found between the manual and the
product.
● We are not liable for losses incurred due to operating the product in ways that are not in
compliance with the manual.
● The manual will be updated according to the latest laws and regulations of related jurisdictions.
For detailed information, see the paper user’s manual, use our CD-ROM, scan the QR code or
visit our official website. The manual is for reference only. Slight differences might be found
between the electronic version and the paper version.
● All designs and software are subject to change without prior written notice. Product updates
might result in some differences appearing between the actual product and the manual. Please
contact customer service for the latest program and supplementary documentation.
● There might be errors in the print or deviations in the description of the functions, operations
and technical data. If there is any doubt or dispute, we reserve the right of final explanation.
● Upgrade the reader software or try other mainstream reader software if the manual (in PDF
format) cannot be opened.
● All trademarks, registered trademarks and company names in the manual are properties of their
respective owners.
● Please visit our website, contact the supplier or customer service if any problems occur while
using the device.
● If there is any uncertainty or controversy, we reserve the right of final explanation.

II
 Table of Contents
Foreword.............................................................................................................................................................. I
1 Personnel Management.................................................................................................................................. 4
1.1 Adding Company................................................................................................................................... 4
1.2 Department Management.................................................................................................................... 4
1.3 Setting Card Type.................................................................................................................................. 5
1.4 Adding Personnel.................................................................................................................................. 6
1.4.1 Adding Personnel One by One................................................................................................... 6
1.4.2 Adding Personnel in Batches....................................................................................................10
1.4.3 Extracting Personnel Information........................................................................................... 11
1.4.4 Importing Personnel Information............................................................................................13
1.5 Issuing Cards in Batches......................................................................................................................13
1.6 Exporting Personnel Information.......................................................................................................16
1.7 Searching for Personnel...................................................................................................................... 16
1.8 Personnel Display................................................................................................................................ 16
1.9 Editing Personnel in Batches.............................................................................................................. 17
1.10 Permission Configuration................................................................................................................. 18
1.10.1 Adding Permission Groups.....................................................................................................18
1.10.2 Configuring Permissions........................................................................................................ 19
2 Intercom Configuration.................................................................................................................................21
2.1 Building Manager................................................................................................................................ 21
2.2 Dial Management................................................................................................................................ 23
2.3 Configuring Unlocking Through Password....................................................................................... 26
2.4 Call Group.............................................................................................................................................27
2.5 Information Release............................................................................................................................ 29
3 Intercom Management..................................................................................................................................31
4 Intercom Records...........................................................................................................................................35
4.1 Intercom Records Query......................................................................................................................35
4.2 Access Control Records Query............................................................................................................ 36
4.3 Alarm Record Query............................................................................................................................ 37
Appendix 1 Cybersecurity Recommendations............................................................................................. 38

III
 1 Personnel Management
You can manage department information and staff information.

1.1 Adding Company

Procedure
Step 1 Select Personnel > Company.
Step 2 Enter the company name, fax, email, telephone number, website, postal code and
address.
Step 3 Upload the company logo, and then click OK.
Figure 1-1 Add company

1.2 Department Management

You can add, modify or delete department. Here uses the department adding as an example.
Procedure
Step 1 Select Personnel > Personnel Management.
Step 2 Click in the Department List to add.
Step 3 Select a superior department, and then add a new sub-department.
Step 4 Click OK to confirm.

4
 Figure 1-2 Add department

Figure 1-3 Add department information

Related Operations
● (Optional) Click in the Department List to delete.
● (Optional) Select the department, and then click in the Department List to rename the
department.

1.3 Setting Card Type

Select Personnel > Personnel Management > Card Issuing Type.
Before issuing a card, set the card type first. For example, if the issued card is ID card, select type as
ID card.

● The system uses hexadecimal card number by default. Click to change to decimal card
number.
● When the card type is changed, the card number in the Access Manger , user's card, and
History Event will also be changed.

5
 Figure 1-4 Set card type

1.4 Adding Personnel

Select one of the methods to add staff.
● Add staff one by one manually.
● Add staff in batches.
● Extract staff information from other devices.
● Import staff information from the local.

1.4.1 Adding Personnel One by One

Prerequisites
Departments were added.

Procedure
Step 1 Select Personnel > Personnel Manager > Add.
Step 2 Enter basic information of personnel.
1. Select Basic Info.
2. Add basic information of personnel.

6
 Figure 1-5 Add basic information

Step 3 Configure authentication methods.

Supports 5 authentication methods, including personnel recognition, password, card, and
fingerprint.
● Configure personnel recognition: Take snapshots or upload face images in the last 2
image areas.

7
 Figure 1-6 Register face images

● Configure password: The password must consist of 6–8 digits.

● Configure card: The card number can be read automatically or entered manually. To
read the card number automatically, select a card reader, and then place the card on
the card reader.

1. Click to select Device or Card issuer as card reader.

2. Add card. The card number must be added if the non-second generation access
controller is used.
3. After adding, you can set the card as the main card or duress card, or replace the
card with a new one, or delete the card.
4. Click to display the QR code of the card.

Only 8-digit card number in hexadecimal mode can display the QR code of the
card.
● Configure fingerprints

1. Click to select Device or Fingerprint Scanner as the fingerprint collector.

2. Add fingerprint. Select Add > Add Fingerprint, and then place the finger on the
scanner 3 times in a row.
Step 4 Click Extended information to add other information of personnel, and then click
Finish.

8
 Figure 1-7 Add extended information

Step 5 Configure permissions.

Permission groups are a collection of time attendance or access control permissions on
defined devices. Create a permission group and then associate users with the group, so
that users can be granted corresponding permissions.

9
 Figure 1-8 Permission configuration

Step 6 Click Finish.

Related Operations
● Click to modify information of personnel.

● Click to delete personnel.

● Click to freeze the card, and then the card cannot be used.
● Click to configure permissions.

1.4.2 Adding Personnel in Batches

Procedure
Step 1 Select Personnel > Personnel Manager > Batch Update > Batch Add.
Step 2 Select card reader and the department of staff. Set the start number, number of card,
effective time and expired time of card.
Step 3 Click Read Card No., and then the card number will be read automatically.
Step 4 Click OK.

10
 Figure 1-9 Add staff in batches

Step 5 In the list of staff, click to modify information or add details of staff.

1.4.3 Extracting Personnel Information

Procedure
Step 1 Select Personnel > Personnel Manager > Extract.
Step 2 Select the device, and then click OK.

You can select to extract the user of All , Success or Failure from the drop-down list next
to Extract.

11
 Figure 1-10 Devices with staff information

Step 3 Select the needed staff information, and then click Extract to extract the cards to user
manager. Click Export to export the user information to the computer.
Figure 1-11 Extract users

Step 4 In the list of staff, click to modify information or add details of staff.

12
1.4.4 Importing Personnel Information
Procedure
Step 1 Select Personnel > Personnel Manager > Import.
Step 2 Import staff information according to instructions.
Figure 1-12 Import staff information

1.5 Issuing Cards in Batches

Issue cards to personnel in batches.
Procedure
Step 1 Select Personnel > Personnel Management.
Step 2 Select personnel, and then select Batch Update .
Step 3 Issue card in batches. Card number can be read automatically or entered manually.
1. Select Batch Issue Card, and then select personnel.
2. Select card issuer or card reader device, and then click Read Card No.. Make sure a
card issuer or a card reader has been connected to your computer.
3. Place the cards on the card reader in sequence.
The card number is read automatically.

13
 Figure 1-13 Issue card in batches

Step 4 Add users in batches.

14
 Figure 1-14 Add users in batches

1. Select Batch Add.

2. Enter the starting user ID and the number of users.
3. Select the department.
Users will be generated from the starting user ID.
Step 5 Change department in batches.

15
 Figure 1-15 Change department in batches

1. Select personnel, and then click Batch Edit.

2. Select a department.
Department will be changed for the selected personnel.
Step 6 Click OK.

1.6 Exporting Personnel Information

Select personnel, and then click Export to export personnel information to your local computer.

1.7 Searching for Personnel

Search for personnel according to ID, name or card.
Figure 1-16 Search for personnel

1.8 Personnel Display

You can select display modes: card display and list display.

Click to display in cards; click to display in list.

16
 Figure 1-17 Card display

Figure 1-18 List display

1.9 Editing Personnel in Batches

Select Personnel > Personnel Management.
Select the needed staff, and then select Batch Update > Batch Edit to edit department and valid
time of users in batches.

17
 Figure 1-19 Edit department

1.10 Permission Configuration

1.10.1 Adding Permission Groups
Procedure
Step 1 Select Personnel > Permission Configuration.
Step 2 Click to add a permission group.
Step 3 Set permission parameters.
1. Enter group name and remark.
2. Select the needed time template.

For details on time template setting, see the user's manual of SmartPSS Lite Access
Control Solution.
3. Select the verification method.
4. Select the corresponding device, such as door 1.
Figure 1-20 Add permission group (1)

18
 Figure 1-21 Add permission group (2)

Step 4 Click OK to save operations.

Related Operations
● Click to delete group.
● Click to modify group information.
● Double-click permission group name to view group information.

1.10.2 Configuring Permissions

The method to configure permission for department and for personnel is similar, and here takes
department as an example.
Procedure
Step 1 Select Personnel > Permission Configuration.
Step 2 Click , and then select the department to be configured permission.
Step 3 Click OK.

19
 Figure 1-22 Configure permission

Step 4 (Optional) Click in the left navigation bar to view the authorization progress.

If authorization failed, click in the list to view the possible reason.

Figure 1-23 Authorization progress

20
 2 Intercom Configuration
You can manage organizations and phone numbers, configure call settings and release
information.
Click Device Manager on the home page, and then add video intercom devices to the Platform.

For details, see SmartPSS Lite General User's Manual. Select > Help Manual on the upper-right
corner of the page to obtain the help manual.

2.1 Building Manager

Create a community organization. You can add buildings and units to it.
Prerequisites
The level of the organization was configured. For details, see "4.1 Basic Settings" in the user's
manual of SmartPSS Lite. This section uses how to create the organization at the unit level as an
example.

Procedure
Step 1 Open the Video Intercom solution.
Step 2 Click Intercom Config > Building Management.
Step 3 Add buildings under the community level.

1. Select the root node, and then click .

You can click to edit the name of the root node.

2. Enter the number of the building, and then click Save.
Figure 2-1 Add buildings

Step 4 Add units under the building level.

1. Select a building, and then click .

2. Enter the number of the unit, and then click Save.

21
 Figure 2-2 Add units

Step 5 Add rooms under the unit level.

1. Click Add.
2. Select a unit from the organization.
3. Enter the number of the room and the name of the room.
4. If you want to control access by entering the room password in the VTH, you can
configure an unlock password. For details, see "2.3 Configuring Unlocking Through
Password".
5. Click Add.
Figure 2-3 Add rooms

Results
The organization is created.
● Organization: Displays the exact organization level of the room. For example, 02#01#302 means
building 02, unit 01 and room 302.

22
 ● Sending Status: If an unlock password is added for a room, you can click to send the password
will be sent to the VTO and VTH , and the sending status will be displayed.
Figure 2-4 Created organization

Related Operations
● Create organizations in batches.

Only when no organizations were created, you can add organization in batches.
1. Select the root node, and then click Batch Add.
Figure 2-5 Add organizations in batches

2. Enable the organization level, and then enter the number.

3. Click OK.
The organizations will be automatically added as desired.
● On the organization list, you can perform the following operations.
: Change the name of the organization.
: Delete the organizations. If rooms were associated with the organization, the
organization cannot be deleted.
● For added rooms, you can perform the following operations.
: Edit the information of the room.
: Deletes the room.
: Sends the unlock password to the VTO and VTH. For details on how to configure unlock
password, see "2.3 Configuring Unlocking Through Password".
Batch Send: Send unlock password of all selected rooms.

2.2 Dial Management

Configure the registration number for the devices for them to call each other through the
registration numbers.
Prerequisites
The organization was created. For details, see "2.1 Building Manager".

23
Procedure
Step 1 Open the Video Intercom solution.
Step 2 Click Intercom Config > Dial Management.
Step 3 Add registration number for devices.
● Add registration number for VTH.
1. Click Add.
2. Select a VTH from the drop-down list.
3. Select the organization.

If you have added units to the organization, you can only select a unit.
4. Select a room from the list, and then enter the number of the extension if there are
more than one VTH in the room.
5. Click Add.
The registration number is automatically generated based on the number of
building, unit, room and extension (if any). For example, 11#01#11#5 means
building 11, unit 01, room 11 and extension No.5.
Figure 2-6 Add registration number for VTH

● Add registration number for VTO.

1. Click Add.
2. Select a VTO from the drop-down list.
3. Select the organization.

If you have added units in the organization, you can only select a unit.
4. Enter a 2-digit number.
The 2-digit number must be same to the last two digits of the number of VTO. For
example, if the number of VTO is 8055, the 2-digit number must be 55.
5. Click Add.

24
 The registration number is automatically generated. For example, 11#01#8055
means building 11, unit 01 and the number of VTO is 8055.
Figure 2-7 Add registration number for VTO

● Add registration number for VTS.

1. Click Add.
2. Select a VTS from the drop-down list.
3. Enter a 2-digit number.
The 2-digit number must be same to the last two digits of the number of VTS. For
example, if the number of VTS is 101 by default, the 2-digit number must be 01.
4. Click Add.
The registration number is automatically generated.
Figure 2-8 Add registration number for VTS

● Add registration number for second confirmation device.

1. Click Add.
2. Select a second confirmation device from the drop-down list.
3. Select the organization.

If you have added units to the organization, you can only select a unit.

25
 4. Select a room from the list, and then enter the number of the extension if there are
more than one second confirmation device in the room.
5. Click Add.
The registration number is automatically generated based on the number of
building, unit, room and extension (if any). For example, 11#01#11#5 means
building 11, unit 01, room 11 and extension No.5.
6. Click Add.
The registration number is automatically generated.
Figure 2-9 Add registration number for second confirmation device

Related Operations
● Import devices through SmartPSS Lite.
1. Click Export to export devices from the platform.
2. Save the exported file to your local computer.
3. Log in to the another platform, click Import > Import SmartPSS Lite to upload the
exported file to another platform.
● Import devices through ConfigTool.
1. Select Import > Create ConfigTool Template to download a template.
2. Fill the information of devices in the template, and then save it to your local computer.
3. Click Import CofigTool, and then import the file to the platform.

2.3 Configuring Unlocking Through Password

If the VTO is wired to door locks, you can control access by setting unlock password.
Prerequisites
● Rooms were added. For details, see"2.1 Building Manager".
● VTH and VTO were registered. For details, see "2.2 Dial Management".

Procedure
Step 1 Open the Video Intercom solution.
Step 2 Click Intercom Management > Building Manager.
Step 3 Select a room, and then click to add a unlock password.
1. Click Add.

26
 2. Enter and confirm password.
3. Click OK.
Figure 2-10 Configure unlock password

The password will be sent to the

Step 4 Click to manually send the unlock passwords to VTO and VTH, and the sending status
will be displayed.
Results
Enter room number + unlock password in the VTO, and door will be unlocked. For example, if the
room number is 11, and the unlock password is set as 888888, enter 000011888888 in the VTO to
unlock the door.

2.4 Call Group

The call group function groups the VTS and the manager client, and then assigns them to the
corresponding buildings, so that the buildings can call the corresponding VTS and manager client
in sequence.
Procedure
Step 1 Open the Video Intercom solution.
Step 2 Select Intercom Config > Call group.

27
 Figure 2-11 Priority manager page

Step 3 Enter the Group Name, and then select the building from the drop-down list.
Step 4 Select the manager client you need to add, click Select , and then the device displays on
the List of Selected Devices.

● Click to give priority to calling this device.

● Click to lower the device priority.

● Click to delete the device information.

When no group is added to the building, the Platform will uniformly answer the call from
the device under the building; the call from the fence station can only be answered by the
Platform; the VTS cannot make calls.

28
 Figure 2-12 List of Selected Devices

Step 5 Click OK.

Related Operations
● Click Add to add multiple groups.
● Click corresponding to the group, or select the group to be deleted, and then click Delete
to delete the group information.

2.5 Information Release

Background Information

This function is only supported by the devices whose device type is VTO or VTH and whose
numbers are bound to the Platform.

Procedure
Step 1 Open the Video Intercom solution.
Step 2 Select Intercom Config > Information release.
Step 3 Click Add to add the subject.
Step 4 Enter the topic text, and then set the Start Time.
Step 5 Select the device from the drop-down list, and then click OK.

29
 Figure 2-13 Add topic

Step 6 View the added subject.

● Click to modify the added subject.

● Click corresponding to the theme, or select the subject to be deleted, and then
click Delete to delete the subject.

● Click corresponding to the subject, or select the subject to be sent, and then click
Send to send the subject to the device.
● Click to view the details of the released topic.
Figure 2-14 View the added subject

30
 3 Intercom Management
You can make video calls with VTO, fence station, VTS, villa door station and VTH and the Platform.
You can also perform remote unlock, view recent records and make quick calls.
Prerequisites
● VTH and VTO were added to the platform.
● VTH and VTO were registered. For details, see "2.2 Dial Management".

Procedure
Step 1 Open the Video Intercom solution.
Step 2 Click Intercom Management on the home page, and then select the intercom device in
the organization tree.

The organization tree is displayed at the unit level by default.

Figure 3-1 Intercom management page

● : Displays the number of doors. It means the device is connected to 2 doors. You
can also click the door to unlock the door.

● Call Ready: You can make a video call. Click on the bottom of the device.
● Search for devices: search for devices based on devices status and device type.
● Video call request from the device: When the device clicks the property or the
management center calls the platform, you can operate the Platform according to
actual needs.
1. Click the floating window to accept the call and enter the video intercom page.

2. Click to reject the call.

● Call the intercom device.

31
Click to display the dial page, and then enter a number to call the
corresponding intercom device.

The dial page only supports full number calls, the room number calls are not
supported; if you want to call VTH, you need to enter the number and the extension
number.
Figure 3-2 Dial page

Click Missed video intercom to view the missed video intercom call.

32
 Figure 3-3 Missed video intercom call

● Call back missed video intercom call.

When there is a missed or rejected call record, you can click behind the record to

call back, or click the floating window, and then click behind the corresponding
call to call back.
Step 3 Perform operations during a video intercom call according to actual needs.

The Platform automatically records the switch status, and it will take effect in the next
intercom.

33
 Figure 3-4 Video intercom page

Table 3-1 Description of video intercom page parameters

Parameter Description
Open the door of the device.
After enabling, every time the device connects to the video intercom, the
Automatic snapshot Platform will capture a snapshot of the call and save it to the video
intercom record.

After enabling, every time the device connects to the video intercom, the
Platform will record the call video and save it to the video intercom record.
Automatic recording

Only one recording can be retained for per call.

Mute the
After enabling, your microphone will be muted.
microphone
Mute After enabling, the device microphone will be muted.

Step 4 Click on the upper-right corner to close the video intercom page and terminate the
call.
Related Operations
● Click on the call record page to view the pictures and videos saved during the video
intercom call.
● Call event, access event and alarm events will be recorded in real time in the record list on the
bottom of the page. The record list only displays the latest 100 call records, access control
records and alarm records. Click History to go to the Intercom Records page to view all
records.
● Always Open: All doors remain open.
● Restore: Restore door status back to normal.

34
 4 Intercom Records
You can filter, export and search for call records, access control records and alarm records.

4.1 Intercom Records Query

You can view and export the call record.
Prerequisites
Make sure that the video intercom device added to the Platform has an intercom event.
Procedure
Step 1 Open the Video Intercom solution.
Step 2 Select the Type as the Intercom Records.
Step 3 Select the device in the organization tree, and then set the status and time period.
Step 4 Click Search.

Click to view the pictures and videos saved during the video intercom call.
Figure 4-1 View call records

Step 5 Click Export to export all the call records to the computer.
Related Operations
● Click to select the number of information showed on every page.

● Click / to view the previous page or next page.

● Click / to go to the first page or last page.

35
 ● Enter the page number in , and then click Jump to jump to the specified
page.

4.2 Access Control Records Query

You can view and export records of door opening and closing events.
Prerequisites
Make sure that the video intercom device added to the Platform has an access control event.

Procedure
Step 1 Open the Video Intercom solution.
Step 2 Select the Type as the Access Control Records.
Step 3 Select the device in the organization tree, and then set the time period.
Step 4 Click Search.
Figure 4-2 View access control records

Step 5 Click Export to export all the access control records to the computer.
Related Operations
● Click to select the number of information showed on every page.

● Click / to view the previous page or next page.

● Click / to go to the first page or last page.

● Enter the page number in , and then click Jump to jump to the specified
page.

36
4.3 Alarm Record Query
You can view and export the alarm event records.
Prerequisites
Make sure that the video intercom device added to the Platform has an alarm event.
Procedure
Step 1 Open the Video Intercom solution.
Step 2 Select the Type as the Alarm Event.
Step 3 Select the device in the organization tree, and then set the time period.
Step 4 Click Search.
Figure 4-3 View alarm records

Step 5 Click Export to export all the alarm records to the computer.
Related Operations
● Click to select the number of information showed on every page.

● Click / to view the previous page or next page.

● Click / to go to the first page or last page.

● Enter the page number in , and then click Jump to jump to the specified
page.

37
Appendix 1 Cybersecurity Recommendations
The necessary measures to ensure the basic cyber security of the platform:
1. Use Strong Passwords
Please refer to the following suggestions to set passwords:
● The length should not be less than 8 characters.
● Include at least two types of characters; character types include upper and lower case letters,
numbers and symbols.
● Do not contain the account name or the account name in reverse order.
● Do not use continuous characters, such as 123, abc, etc.
● Do not use overlapped characters, such as 111, aaa, etc.

2. Customize the Answer to the Security Question

The security question setting should ensure the difference of answers, choose different
questions and customize different answers (all questions are prohibited from being set to the
same answer) to reduce the risk of security question being guessed or cracked.
Recommendation measures to enhance platform cyber security:
1. Enable Account Binding IP/MAC
It is recommended to enable the account binding IP/MAC mechanism, and configure the
IP/MAC of the terminal where the commonly used client is located as an allowlist to further
improve access security.
2. Change Passwords Regularly
We suggest that you change passwords regularly to reduce the risk of being guessed or cracked.
3. Turn On Account Lock Mechanism
The account lock function is enabled by default at the factory, and it is recommended to keep it
on to protect the security of your account. After the attacker has failed multiple password
attempts, the corresponding account and source IP will be locked.
4. Reasonable Allocation of Accounts and Permissions
According to business and management needs, reasonably add new users, and reasonably
allocate a minimum set of permissions for them.
5. Close Non-essential Services and Restrict the Open Form of Essential Services
If not needed, it is recommended to turn off NetBIOS (port 137, 138, 139), SMB (port 445),
remote desktop (port 3389) and other services under Windows, and Telnet (port 23) and SSH
(port 22) under Linux. At the same time, close the database port to the outside or only open to a
specific IP address, such as MySQL (port 3306), to reduce the risks faced by the platform.
6. Patch the Operating System/Third Party Components
It is recommended to regularly detect security vulnerabilities in the operating system and third-
party components, and apply official patches in time.
7. Security Audit
● Check online users: It is recommended to check online users irregularly to identify whether
there are illegal users logging in.
● View the platform log: By viewing the log, you can get the IP information of the attempt to
log in to the platform and the key operation information of the logged-in user.
8. The Establishment of a Secure Network Environment
In order to better protect the security of the platform and reduce cyber security risks, it is
recommended that:
● Follow the principle of minimization, restrict the ports that the platform maps externally by
firewalls or routers, and only map ports that are necessary for services.

38
● Based on actual network requirements, separate networks: if there is no communication
requirement between the two subnets, it is recommended to use VLAN, gatekeeper, etc. to
divide the network to achieve the effect of network isolation.

39