摘要
随着网络攻击者知识的成熟以及攻击工具与手法的复杂多样,网络安全问题也日益突出起来,单纯的防火墙策略已无法满足网络安全的需要。为了更进一步提高网络安全,必须采用防火墙与入侵检测系统相结合的网络安全技术。另一方面,校园网网络服务平台一般是基于开放源代码软件的,故文中提出了采用Linux系统下IPtables包过滤+Squid&Socks代理服务器的防火墙体系和网络入侵检测系统Snort相结合的网络安全策略来增强校园网的安全,并详细地阐述了在校园网环境下如何实现该策略以及相关的关键技术。
With the increase of attackers' knowledge and all kinds of attack tools and methods,network security beocmes a more and more important issue. Simple firewall strategy is insufficient for network security requirement. In order to further enhance network security, firewall technology and intrusion detection system must be used together. On the other hand, campus network' s service platform is based on open source code software generally, so this paper presents a network security strategy to enhance campus network security, which is founded on integration of IPtables - based packet filter firewall, Squid&Socks- based proxy server and network intrusion detection system Snort on Linux OS. Finally, the method of implementing this strategy and the related key technique are discussed in detail on campus network environment.
出处
《计算机技术与发展》
2006年第5期121-124,210,共5页
Computer Technology and Development
基金
安徽省高校自然科学基金重点资助项目(2003kj020zd)
关键词
网络安全
防火墙
入侵检测系统
network security
firewall
intrusion detection system
