Design And Implementation Of A Simple Windows Firewall

Since the advent of computer network technology to start, the network security is a problem that can not be ignored. With the development of computer network technology, large range and the popularization of Internet, network security problems become more and more serious, the research work of more and more important. But the network defense LAN ARP attack system firewall technology is the core technology of network security, is the first defense against external network attacks and threats.This thesis presents the design and implementation of a simple system of LAN ARP attack defense. To all network data package import and computer monitoring, according to the user setting rules, such as the IP, the network data packet inflow and outflow direction, port, protocol, processing methods, screening, legal release, illegal discarded. Since the Windows Vista system has changed the Windows network protocol stack architecture, so the development of technology has changed. From the original system such as Filter Hook Driver and TDI Driver are not suitable for Windows Vista and above version. Therefore, respectively using two sets of technology to meet the requirements of. For Windows 2000, Windows XP system, using Firewall Hook Driver technology, to drive the development of. In kernel mode, the design of IP filter hook, implements a filter hook callback function(registered filter function provided in the Firewall Hook cbFilterFunction in Driver), the callback function, traversing the linked list, decide this packet is released or intercept.The defense system firewall LAN ARP attack is composed of the following modules: filter rules module, delete filter rules module, persistent filter rules module, anti persistence filter rules module, start the engine module, shut off engine module, add a rule to delete a rule engine module, module, network data filtering module, engine records the log module. System firewall system the LAN ARP attack defense also has a good user interface, is easy to operate and easy to protect personal computer security.