Research On Campus Network Security And Intrusion Detection

With the continuous improvement of social informationization, the life of peoplemore and more depend on the Internet, but with the development of Internet, networkattack and intrusion event grow with each passing day, caused losses to thecommunity also increases ceaselessly, firewall and other traditional securitytechnology can not satisfy the current requirements of network security, intrusiondetection technology appears timely. As an active network security protectiontechnology, intrusion detection, changed the traditional technology, firewall, dataencryption and so, which passive defenses network security, be able to dynamicallymonitor network, which can be detected from the external network intrusion behavior,but also can detect the network from internal unsafe behavior. Intrusion detection hasbecome one of the focuses of research in network security.Our lives and learning ways on campus is changing by the development ofnetwork technology, while people in the enjoyment of Network tremendous progressand benefits, potential security threats also come. Campus network exposed securityissues have become increasingly prominent, for colleges and universities this openplatform, effective security model must be based on in anti-virus software, firewalland intrusion detection system etc.This paper focus on intrusion detection technology and the campus networksecurity reform of a vocational school. The paper described the definition of networksecurity, network security threat factors are analyzed, analysis of the main forms ofnetwork attacks, discussed the protection of key network security technologies,especially technologies for next-generation network security-intrusion detectiontechnology has been focused on analyzing discussion, comparison of the safetytechnology advantages, disadvantages, and applied. Studied the characteristics ofSnort intrusion detection system, working principle and architecture, proposed toimprove the Snort intrusion detection system, Snort’s shortcomings, for the relatedimprovements include: the design is based on zero-copy packet capture, networkpacket sampling and design rules match first algorithm. In the analysis and discussionof various network security threats and the corresponding variety of technologies toprotect network security based on the college campus network security analysis,re-planning of the college network architecture, system design based firewall, intrusion detection systems and network security server, the new campus networksecurity model, designed for the entire campus network security solutions. In theproject implementation process, on the basis of the original firewall, deploySnort-based intrusion detection system to improve the implementation of a detailedcampus network security policy, built on the campus network security intrusiondetection system. Through the transformation of the campus network system,effectively increasing the overall performance of campus network, to ensure thenormal use of the network staff and students engaged in teaching, research andlearning activities. At the same time, this learning and building for the campusnetwork security system has some reference significance.