發(fā)布時間：2018-05-12 03:28

  本文選題：分布式防火墻 + 應(yīng)用層過濾��； 參考：《山東大學(xué)》2014年碩士論文

【摘要】：本論文的開發(fā)目標(biāo)是使用主流防火墻技術(shù)開發(fā)一款實(shí)用的簡易分布式防火墻軟件。防火墻作為網(wǎng)絡(luò)安全的重要組成部分,在軍隊(duì)信息化建設(shè)中起著至關(guān)重要作用。本文使用Filter Hook Driver的內(nèi)核態(tài)過濾技術(shù)以及分布式的數(shù)據(jù)庫管理技術(shù)。防火墻的核心功能是協(xié)議級過濾和應(yīng)用層過濾,本論文包含以下兩部分的內(nèi)容： (1)在客戶端方面,主要研究的是兩個過濾模塊的過濾規(guī)則的管理和由過濾事件而產(chǎn)生的日志的管理。第一,過濾模塊的實(shí)現(xiàn),本文采用Filter Hook Driver的內(nèi)核態(tài)過濾技術(shù)。首先設(shè)計(jì)驅(qū)動模塊的處理流程。然后實(shí)現(xiàn)各個處理流程的接口設(shè)計(jì)。最后實(shí)現(xiàn)處理流程中完成對接口的實(shí)現(xiàn)。第二,對數(shù)據(jù)庫系統(tǒng)部分的實(shí)現(xiàn)。首先要分析的是以上兩種規(guī)則的各個過濾功能字段和管理功能字段的設(shè)計(jì),其次要分析兩種過濾所產(chǎn)生的日志信息所需的字段。接著要根據(jù)以上分析進(jìn)行數(shù)據(jù)庫概念設(shè)計(jì),然后結(jié)合Sqlite數(shù)據(jù)庫的相關(guān)知識進(jìn)行數(shù)據(jù)庫邏輯設(shè)計(jì)以及其實(shí)現(xiàn)。最后通過調(diào)用Sqlite數(shù)據(jù)庫的API為兩個過濾模塊提供操作規(guī)則和日志的接口。 (2)在服務(wù)器端方面,主要研究的是分析和設(shè)計(jì)兩種規(guī)則的各個過濾功能字段和管理功能字段(值得注意的是服務(wù)器端的管理功能字段和客戶端的管理功能字段不同,詳細(xì)情況將在第三章中進(jìn)行分析),接著根據(jù)以上的分析進(jìn)行數(shù)據(jù)庫概念設(shè)計(jì),然后結(jié)合Sql Server2005數(shù)據(jù)庫的相關(guān)知識進(jìn)行數(shù)據(jù)庫邏輯設(shè)計(jì)以及其實(shí)現(xiàn)。最后通過操作數(shù)據(jù)庫的ADO來操作數(shù)據(jù)庫,為上層提供接口。
[Abstract]:The development goal of this paper is to develop a practical and simple distributed firewall software using the mainstream firewall technology. As an important part of the network security, the firewall plays an important role in the military information construction. This paper uses the kernel state filtering technology of Filter Hook Driver and the distributed database management technology. The core functions of firewall are protocol level filtering and application level filtering. This paper includes two parts:
(1) in the client side, the main research is the management of the filtering rules of the two filter modules and the management of the logs produced by the filtering events. First, the implementation of the filter module, this paper uses the kernel state filtering technology of Filter Hook Driver. First, the processing flow of the driver module is designed. Then the interface design of each processing flow is realized. Finally, realizing the realization of the interface in the process of processing. Second, the realization of the database system part. First, we should analyze the design of each filter function field and the management function field of the above two rules. Secondly, we should analyze the fields required for the log information produced by the two kinds of filtering. Then we should carry out the database according to the above analysis. Conceptual design, and then combine the knowledge of the Sqlite database to design and implement the database logic. Finally, the API of the Sqlite database is called to provide the interface of the operation rules and the logs for the two filter modules.
(2) on the server side, the main research is to analyze and design the various filter function fields and the management function fields of the two rules (it is worth noting that the server side management function field is different from the client's management function fields, the details will be analyzed in the third chapter), and then the database is based on the above analysis. Read the design, then combine the relevant knowledge of the Sql Server2005 database to carry out the database logic design and implementation. Finally, the database is operated by operating the ADO of the database to provide the interface for the upper level.

【學(xué)位授予單位】：山東大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2014
【分類號】：TP311.52;TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前4條

1 張大雷;;基于防火墻日志的網(wǎng)絡(luò)管理與用戶行為分析[J];電信快報(bào);2007年10期

2 黃錦,李家濱;基于防火墻日志信息的入侵檢測研究[J];計(jì)算機(jī)工程;2001年09期

3 李承,王偉釗,程立,汪為農(nóng),李家濱;基于防火墻日志的網(wǎng)絡(luò)安全審計(jì)系統(tǒng)研究與實(shí)現(xiàn)[J];計(jì)算機(jī)工程;2002年06期

4 舒朗,王蔚然;分布式防火墻中日志系統(tǒng)的設(shè)計(jì)與實(shí)現(xiàn)[J];微型機(jī)與應(yīng)用;2005年08期

，

本文編號：1876932