| With the increasing invasion affeirs and the improved attack levels, on the one hand, network infection, virus and intrusion attacks accelerate, on the other hand the response to network attacks are increasingly lagging behind the time. To resolve this contradiction, the traditional firewall or invasion detection technology can not meet our requirement. For the new attack methods often can not be correctly identified by these passive defense teclmologies, and thus lapse into a passive position, which requires the introduction of a new technology.At present, the network security system uses the safety work basically is established based on the firewall, the invasion detection, the loophole scanning and so on in the passive defense measure. The firewall is a stable technology in network security, and its disposition is the static state, so that it is difficult for it to response to network attack promptly. The invasion detection system surveillance the network and the system active situation, discover and report the unusual situation promptly, but it fails to find out the new form hacker attack method and fail to report these misinformation questions.This paper presents such an idea:a combination of different security defense technology, to create a single defense technology effectively than the more comprehensive security defense technologies. Multi-level, security interactive security and defense technology has doubled the increase in the cost of hacker attacks and difficulty, thus greatly reducing their attacks on the network.Based on the study Snort inline intrusion prevention system and Iptables Netfilter firewall configuration on the basis of interaction, this paper designed a network intrusion prevention system architecture, and the achievement of which intrusion prevention module. Defense system against invasion of the deficiencies and limitations, the paper made several improvements programme. |
PDF Full Text Request