摘要
个人防火墙核心技术是数据包的截获,通过SPI服务提供者接口进行网络数据包(Service Provider Interface)截获能够最完备地得到进程访网信息.一个功能完备的个人防火墙系统不仅能够封包截获,还应能解析协议、支持自定义控管规则以及日志记录随时的网络通信状况.本项目遵循SPI规范完整实现了上述功能,给出了一个Windows下的个人防火墙系统实现过程中的技术要点分析.
The core technology hiding in personal firewall system is to intercept network packets, and intercepting packets on SPI(Service Protocol Interface) can catch most rich information of network access. One fully functional personal firewall system can not only intercept network packets, but also resolve protocols, self define ACL and log every network access information. This project offers a fully functional personal firewall system on windows intercepting network packets following SPI, and this paper gives key analyses of implementation.
出处
《湖南工程学院学报(自然科学版)》
2008年第2期56-59,共4页
Journal of Hunan Institute of Engineering(Natural Science Edition)
基金
湖北省教育厅重点科研资助项目(B200619001)
