摘要
随着网络流量的剧增和用户安全性需求的提高传统防火墙作为单一的连接内外网之间的安全设备已经成为了数据传输的瓶颈。本文提出集群式防火墙系统实现防火墙的并行工作,并将集群式防火墙分为三个子系统:负载均衡子系统、容错防火墙子系统、在线监控子系统。最后在Linux平台下利用IPTABLES构建的状态防火墙来实现集群式防火墙系统并取得较好的效果。
With the rapidly increase of network data flow and the progress for user's high security requirement tradition firewall as a single security device between inside and outside network has been a data transmission bottleneck. This paper provides Cluster Firewall System to make them parallel work, and Cluster Firewall System is divided into three subsystem: Load-Balancing Subsystem, Fail-0ver Firewall Subsystem, On-Line Monitoring Subsystem. Lastly designs stateful packet fiher firewall to implement Cluster Firewall System in Linux platform based on IPTABLES and get preferable result.
出处
《微计算机信息》
2010年第21期67-69,共3页
Control & Automation
基金
湖南省自然科学基金资助项目(批准号06JJ5098)
湖南教育厅资助科研项目
