| Linux平台下网络入侵防御系统的研究与实现 |
| |
| 引用本文: | 顾丽,李菲,乔佩利.Linux平台下网络入侵防御系统的研究与实现[J].哈尔滨理工大学学报,2009,14(2):8-12. |
| |
| 作者姓名: | 顾丽 李菲 乔佩利 |
| |
| 作者单位: | 哈尔滨理工大学,计算机科学与技术学院,黑龙江,哈尔滨,150080 |
| |
| 基金项目: | 国家社会公益研究专项基金 |
| |
| 摘 要: | 针对防火墙和入侵检测系统在网络安全防御上存在的缺陷,本文提出了一个在Linux平台下,基于两层防御机制的网络入侵防御系统.该系统扩展了网关防火墙的入侵检测功能.实现了网关防火墙对攻击的最初防御,增加了入侵检测系统Snort的联动响应功能,Snort对逃避了网关防火墙检测的复杂攻击进行再次防御.实验结果证明,两层防御机制对大规模的蠕虫攻击起到了实时抵制作用.
|
| 关 键 词: | 入侵检测系统 防火墙 Netfilter Snort |
Research and Implementation of Network Intrusion Prevention System under the Linux Platform |
| |
| GU Li,LI Fei,QIAO Pei-li.Research and Implementation of Network Intrusion Prevention System under the Linux Platform[J].Journal of Harbin University of Science and Technology,2009,14(2):8-12. |
| |
| Authors: | GU Li LI Fei QIAO Pei-li |
| |
| Affiliation: | School of Computer Science and Technology;Harbin University of Science of Technology;Harbin 150080;China |
| |
| Abstract: | Focusing on the defects of the firewall and the intrusion detective system in network security prevention,the article proposed a network intrusion prevention system under the linux platform based on the two-level defense mechanism.The system explanded the intrusion detective function for the gateway firewall which could defend the attack at the first level,and increased the interaction with firewall for Snort so that Snort could defend the complex attack which had evaded the detection of the gateway firwall... |
| |
| Keywords: | Netfilter Snort |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
