| Linux下防火墙框架NetFilter剖析与扩展 |
| |
| 引用本文: | 孙冰心.Linux下防火墙框架NetFilter剖析与扩展[J].哈尔滨师范大学自然科学学报,2003,19(6):39-42. |
| |
| 作者姓名: | 孙冰心 |
| |
| 作者单位: | 哈尔滨理工大学 |
| |
| 摘 要: | 本文首先重点剖析了内核2.4版本后的Netfilter框架的组成和主要功能,钩子函数接入点,实现方式及主要函数源代码分析,然后指出了包过滤防火墙的缺陷,最后给出了实现命令级内容过滤的模型和方法。
|
| 关 键 词: | Linux 防火墙 地址转换 包过滤 连线跟踪 数据报 源地址转换 目的地址转换 IP伪装 网络安全 |
| 修稿时间: | 2003年11月10 |
ANALYSIS AND DEVELOPMENT OF NETFILTER BUILT ON LINUX |
| |
| Sun Bingxin.ANALYSIS AND DEVELOPMENT OF NETFILTER BUILT ON LINUX[J].Natural Science Journal of Harbin Normal University,2003,19(6):39-42. |
| |
| Authors: | Sun Bingxin |
| |
| Institution: | Harbin University Sci. Tech. |
| |
| Abstract: | The article firstly introduces the mainly functions compositions of netfilter later than 2.4 version of Linux kernel, hook functions, implementation, and analysis about source, and then it point out the fault of packet filtering firewall. At last, the model and method of implementation of content filter based on command of application protocols are given. |
| |
| Keywords: | Firewall NAT Packet Filtering Connection tracking Datagram SNAT DNAT IP masquerade |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
