The Design And Implementation Of Intrusion Prevention System Based On Load Balancing

Intrusion prevention systems provide an important proactive defense capability against security threats by detecting and blocking network attacks. However, in the intrusion prevention system, intercepting every packet, analyzing and matching some kind of attack need a great deal of time and system resource. When loading large numbers of signature rules, intrusion prevention systems are currently not capable of handling high speed links.Based on current research work on network security problem and network security resolution, this thesis presents the design and implementation of a high-performance, low-cost, flexible, and reliable intrusion prevention system that combines firewall technology, intrusion detection technology and load balance technology. This thesis applies load balance technology of cluster to the intrusion prevention system. Network packets are dispatched by load balancer to different nodes, so each node will not overload, and the whole intrusion prevention system can work in high-speed network. The intrusion prevention system is connected to the network passageway in completely transparent mode, so it has a high security and flexibility. We test the system in the real network environment. The test result indicates this system can dispatch packets and prevent intrusion in the real network environment.