摘要
集中式防火墙由单台计算机完成所有监控任务。因此效率是一个突出的问题 ,用户往往因为上网速度慢而不愿使用防火墙。鉴于此 ,我们考虑采用多台防火墙协作的分布式防火墙 ,让防火墙的各功能模块并行执行 ,提高防火墙系统的总带宽 ,同时实现负载平衡。代理服务作为分布式防火墙的一个主要功能 ,对外隐藏内部系统的信息 ,并可对接收和发出的信息进行验证和记录 ,很大程度上保证了系统的安全。但由于代理改变了用户的使用方式 ,给用户带来了不便 ,为了方便和安全 ,于是就有了透明代理的出现。基于分布式防火墙的透明代理模型就是在综合了分布式防火墙性能好的优点以及透明代理方便的优点而设计的。
Centralized firewall do all security task by a single computer. So efficiency is a serious problem.Many clients do not equip firewall just because of the low efficiency of it.So we construct a distributed firewall system consists of many computers,each module in the system function concurrent.along with more bandwith of the firewall system,it reaches load balance.Agent is a main function of distributed firewall system,it hides the inside information of the system.It also checks and records the information sended or received.So it greatly protects the system from attacting.But agent requires user to change manner they are used to. For convenience and security,there comes transparent firewall.Integrating the high performance of distributed firewall and convenience of transparent agent,is the model of transparent agent based on distributed firewall which we design.
出处
《计算机应用研究》
CSCD
北大核心
2002年第10期87-89,共3页
Application Research of Computers
