| Based on modern tecknology of communication and network information security,more and more Firewall tecknology and products are used in private network and public network envirement.However,network applications are developing quickly.The changement of networking envirement causes the requirements of networking security to increase, therefore,increase the requirements of firewall.New firewalls not only need to satisfy the fast networking traffic,but also need to provide some new functions,such as session state check, network address translating and virtual private networking.Taking these all into consideration,we want to use the new development of network processors into the design of firewall to achieve higher practicability and higher performance.The firwall we designed provide NAT function, besides basic data packet filtering.The function of packet filtering base on some filtering rules and decide which data packet should be drop and wich packet should be passed.Different from normal packet filtering, our firewall provide dynamic data filtering according to session state. NAT can be used to translate network address between private network and public network.In the same time, NAT can hide the private network construction from pulic network.The article begins with a survey of the project backgroud, and then talk about what I do in the project and the article.In the next part, charpter 2, we make an introduction to the history of firewall development .After the introcution, we try to consider current firewall tecknology and find what the most important problem for firewall is.Chapter 3 introduces the architecture of network processor in hardware and software.Chapter 4 provides the design of our firewall based on network processor.Chapter 5 deals with some key function modules and introdules the implementation of some key technique.In the end, chapter 6 makes a conclusion for this article and delivers some expectations for advanced reasearch in this direction. |
PDF Full Text Request