摘要
从理论上深入论述了防火墙的实现原理和Linux操作系统下内核防火墙Netfilter的框架实现,以及防火墙的包过滤和状态检测等技术。针对网络存在的安全隐患,制定了相应的安全策略。通过对防火墙技术发展趋势的研究,并结合实际工作中碰到的一些问题,提出了防火墙系统的设计要求,增强了防火墙的易管理和快速响应性。
In theory,it discusses the principle of how to achieve the firewall system and realizing frame of the core firewall Netfilter under Linux operating system in a comparatively comprehensive way.And pays due attention on the firewall technologies of packet filter and state inspection.Aiming at the security problem in network,makes relevant security measure.Based on these principles and some problems in practice,the paper raises the design demands of firewall system which could enhance the firewall functions,thus the firewall system be much easier to control.
出处
《微机发展》
2004年第5期90-92,共3页
Microcomputer Development
