| 基于Iptables防火墙规则生成的研究与实现 |
| |
| 引用本文: | 叶惠卿. 基于Iptables防火墙规则生成的研究与实现[J]. 计算机与农业, 2012, 0(3): 89-92 |
| |
| 作者姓名: | 叶惠卿 |
| |
| 作者单位: | 广州南洋理工职业学院,广东广州510925 |
| |
| 摘 要: | 基于Iptables防火墙规则生成的核心是规则提取算法,该算法能够根据Iptables日志信息判断主机是否受到攻击,再提取攻击特征信息形成规则,添加到主机防火墙的规则集中。规则生成有效地解决了防火墙根据实际网络情况自动生成规则的问题,为设置良好规则集、确保防火墙规则应与实际网络访问活动紧密相关提供了一种解决方法。
|
| 关 键 词: | 规则生成 防火墙 iptables 日志 |
Research and Implementation of Firewall Rule Generation Based on Iptables |
| |
| YE Huiqing. Research and Implementation of Firewall Rule Generation Based on Iptables[J]. Computer and Agriculture, 2012, 0(3): 89-92 |
| |
| Authors: | YE Huiqing |
| |
| Affiliation: | YE Huiqing(Guangzhou Nanyang College,Guangdong Guangzhou 510925) |
| |
| Abstract: | The core of firewall rule generation based on Iptables is rule extraction algorithm.The algorithm could figure out whether the host is attacked according to the iptables log,and extract the attacking feature information and add them to the host firewall rule set.Rule generation could effectively solve the problem of automatically rule generation in a firewall according to the actual condition of the network,which could set a good rule set for a firewall and provide a solution to ensure that the firewall rules should be closely correlated with the network access activities. |
| |
| Keywords: | rule generation firewall Iptables log |
| 本文献已被 维普 等数据库收录! |
|
