作　　者： ; ;

机构地区： 广州番禺职业技术学院

出　　处： 《计算机与网络》 2011年第23期68-71,共4页

摘　　要： 文章以网络内容审计系统作为旁路监听设备,在网络侧集线器与用户主机侧交换机之间安装"审计系统-防火墙"联动系统,进行识别并阻断来自网络的非法信息。提出一种基于HTTP包识别的网络安全设备联动方法,用以在线解决现有网络安全设备联动阻断技术的时效性较差的问题。最后在学校网络中心通过实验测试,得出该方法具可靠性、实用性和推广价值。 In this paper, we take the network content audit system as the bypass monitoring equipment, and install a linkage system-＂audit system-firewall＂ between the network side and the switch side of user host. The main purpose is to identify and block illegal information from the network. Then, the paper introduces a method of network security device linkage based on HTTP packet recognition, which is a technology of information security intrusion detection and prevention based on the network. It is mainly used to solve the existing poor time effectiveness of network security equipment linkage blocking technology limitation. Finally, it is concluded that the method is reliable, practicable, which also has value of popularization by test in school network center.

关 键 词： 网络安全 设备联动 包识别 规则匹配 数据包阻断

领　　域： [自动化与计算机技术] [自动化与计算机技术]