The Campus Network Intrusion Defense System Research And Design

With the diversity and popularity of network applications, network security issues have been gradually paid more attention to the campus network as a platform for university information systems, network security issues can not be ignored. Present a firewall, intrusion detection systems and anti-virus software has become a widely used solution for campus network security defense, but because of their own number of deficiencies, resulted in the comprehensive protection of the network, so there is an urgent need for new defense mechanisms solve this embarrassing situation. Intrusion Prevention System IPS (Intrusion Prevention System) is the area of network security firewall and intrusion detection systems to make up for the lack of new information security technology. Intrusion prevention system is developed in recent years to prevent a new generation of security tools, is an active, positive and intrusion prevention system, when the IPS detects attacks attempted after the attack packets will be discarded automatically block the attack or the source, and thus real-time protection information systems from the substantive violation.But the existing IPS detection algorithm used is not perfect, making false intrusion detection rate and false negative rate is high; while network security is a complex issue, only relying on a single network security products are not effective defense. Application of a variety of security technologies must be integrated and function together organically integrated and then forming a unified network security systems. This thesis practical Campus Network, co-defense put forward ideas, to intrusion prevention system and the honeypot, vulnerability scanning technologies combine together to establish a new campus cooperative intrusion prevention system, so that various security and defense technology cooperation in defense of organic collaboration, to build depth, three-dimensional campus network security system.This thesis, first presented the relevant technical knowledge of network security, firewall and intrusion detection discussed the system and analyze their respective advantages and disadvantages; in-depth analysis of the current classification of intrusion prevention systems, operating principle and the development trend; and the combination of the actual campus, proposal of building a a campus cooperative intrusion defense system. The design principle of the system, the system framework and work flow design and analysis in detail; followed by the intrusion prevention system, modular design, operational analysis and specific implementation method, and one of the key modules and to analyze and solve difficult problems, describes the defense cooperation agreement required the development of communication and the system in the campus network deployment and testing. Finally, this work is summarized, and points out the need for further research and improve the area.