摘要
针对网络安全防御问题,论述了入侵防御系统的2种体系结构———网络IPS和主机IPS,介绍了防火墙和PS之间互动的实现方式。通过将Snort安装为内嵌模式,利用snort-inline,结合内嵌式互动技术和外联式互动技术,设计并实现了一种基于Snort的具备了初步入侵防御功能的原型系统。
Focusing on the problem of network security prevention, this paper has discussed two kinds of system structure of intrusion prevention system(IPS)such as as network intrusion prevention system (NIPS) and host-based intrusion prevention system(HIPS) ,and has made an introduction to the implementation between the IPS and the firewwall. Through installing the Snort inline, utilizing snort-inline, and combining the inline interaction technology and outside uniting interaction technology, this paper has designed and realized a prototype system, which is based on Snort and possesses the preliminary function of intrusion prevention.
出处
《河北科技大学学报》
CAS
2005年第4期316-321,共6页
Journal of Hebei University of Science and Technology
基金
河北省科技攻关项目(042135110)
