| 联动入侵检测的Linux动态防火墙的设计 |
| |
| 引用本文: | 李恩杰,郭珍军. 联动入侵检测的Linux动态防火墙的设计[J]. 北京电子科技学院学报, 2006, 14(4): 48-52 |
| |
| 作者姓名: | 李恩杰 郭珍军 |
| |
| 作者单位: | 北京交通大学,电子信息工程学院,北京,100044;解放军总医院,北京,100853 |
| |
| 摘 要: | 本文分析了传统安全技术(防火墙、入侵检测)的优势和缺点,指出了防火墙和入侵检测进行联动的必要性,设计了联动入侵检测的动态防火墙,给出了具体的解决方案,并对关键技术进行了分析.该动态防火墙提高了防火墙的实时响应能力,增强了入侵检测的阻断功能,实现了网络的整体防御.
|
| 关 键 词: | 入侵检测 联动 iptables 联动控制中心 |
| 文章编号: | 1672-464X(2006)04-0048-05 |
| 收稿时间: | 2006-07-28 |
| 修稿时间: | 2006-07-28 |
Design for Dynamic Firewall Interaction with IDS under Linux |
| |
| LI En-jie,GUO Zhen-jun. Design for Dynamic Firewall Interaction with IDS under Linux[J]. Journal of Beijing Electronic Science & Technology Institute, 2006, 14(4): 48-52 |
| |
| Authors: | LI En-jie GUO Zhen-jun |
| |
| Affiliation: | 1.School of Electronics and Information Engineering, Beijing JJaotong University, Beijing 100044, China; 2. General Hospital of PLA, Beijing 100853, China |
| |
| Abstract: | In this paper, we analyze the advantage and disadvantage of the traditional security technologies (firewall, intrusion detection), point out the necessity of linakge of firewall and intrusion detection, design dynamic firewall interacting with IDS, and present a detailed solution and analyze the key technology. The dynamic firewall improves the real-time response capacity of the firewall, strengthens the interdiction function of IDS, realizes the whole defense of the network. |
| |
| Keywords: | intrusion detection interaction iptables interaction control center |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
