摘要
阐述了采用Netfilter/iptables技术来实现NAT的缘由 ,并分析了此项技术在Linux内核 2 .4中的一个重要新特性 ,即“连接跟踪” ;着重讨论了提高基于配有Linux操作系统的普通PC机上的NAT性能的方法 ,包括重编内核 ,防止空对话及修改tcp连接超时设定 ;
The paper first points out the reasons we adopt Netfilter/iptables and analyses "Connection tracking", which is a new and important feature of netfilter in kernel 2.4, then focuses on the methods to improve the performance of NAT based on an ordinary PC with Linux, including recompiling kernel, preventing idle sessions and resetting timeouts of tcp connection. At the end of the paper, such a low-cost system, as the replacement for some expensive special router devices, proves to be stable and reliable, acco...
出处
《华中科技大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2003年第S1期329-331,共3页
Journal of Huazhong University of Science and Technology(Natural Science Edition)
