摘要
随着互联网的蓬勃发展,网络管理员的工作日益复杂,内网安全问题也越发严重。文章提出一种对内网用户上网行为进行旁路检测及控制的方法。该方法利用DHCP协议在IP地址分配上对用户加以限制,无需在用户机和网关做任何改动,力图对原有网络做最小的改变而实现对内网用户上网行为的限制。最后通过实验证明了该方法能成功检测出用户的非法上网行为,并加以阻止。
With the rapid development of Internet, the work of network administrators has become increasingly complex, the problem of inside network security has also become more serious. This paper presented a method using bypath system to detect and control the internet behavior of the users and we have realized this method. This method use DHCP protocol to control the users on their IP address. It need not to do any changes to the users' computer and gateway. It also tried to do the smallest change, in order to realize the target of controlling the LAN users' intemet behavior. Finally, we use experiment to prove that this method can successfully detects the illegal internet behavior of the users and stop them from surfing the Internet.
出处
《信息网络安全》
2012年第9期65-69,共5页
Netinfo Security
