Abstract:
The interaction of intrusion detection and firewall is hot in the research of network security. Almost all of the realized system limit to IPv4 networks. This paper presents an IPv6-based distributed network security prevention system which is combined with firewall and intrusion detection system. By implementing intrusion detection agent and concentrated control server, system obtains the intrusion message and analyses it, and adjusts the rules and policies of firewall initiatively. It realizes the interaction of intrusion detection and firewall based on IPv6/IPv4. The test results show that the system is effective and dependable.
Key words:
IPv6,
intrusion detection,
firewall,
interaction
摘要: 网络安全中入侵检测与防火墙的联动是研究的热点,目前已经实现的联动系统多局限于IPv4网络,该文基于IPv6网络的防火墙和入侵检测系统,提出一种分布式的网络安全防护体系,通过设置入侵检测代理和集中控制服务器,分析检测到的入侵状况信息后主动调整防火墙的规则策略,实现支持IPv6/IPv4双协议的入侵检测与防火墙动态联动。测试结果表明,系统有效可靠。
关键词:
IPv6协议,
入侵检测,
防火墙,
联动
CLC Number:
SUN Yong; ZHANG Heng; MA Yan; WEN Xiang-ming. IPv6-based Interaction System with Intrusion Detection and Firewall[J]. Computer Engineering, 2008, 34(11): 152-154.
孙 勇;张 恒;马 严;温向明. 基于IPv6的入侵检测与防火墙联动系统[J]. 计算机工程, 2008, 34(11): 152-154.