摘要
分析了校园网络面临的安全风险,针对校园网络面临的安全风险,提出了基于防火墙网络访问控制、入侵检测技术、虚拟专用网技术、内部虚拟局域网(VLAN)划分、终端安全管理的安全体系解决方案,并对ICMP攻击、TCP SYN FLOOD攻击和Smurf攻击进行了安全测试。测试表明:该方案能有效防御攻击,具备静态的被动的防御和主动防御功能,能够给予校园网络较大的安全防护。
The security risks of the campus network were analyzed.According to these security risks,a security system was proposed based on firewall access control、internal Virtual Local Area Network(VLAN) division,intrusion detection system,Virtual Professional Network(VPN),and terminals security management.Then,security tests against ICMP attack,TCP SYN FLOOD attack and Smurf attack were carried out.The test results show that: this security system with static passive defense and active defense capabilities can effectively defense attacks,providing greater security to campus networks.
出处
《计算机应用》
CSCD
北大核心
2011年第A02期116-118,共3页
journal of Computer Applications
关键词
防火墙
入侵检测系统
虚拟专用网
虚拟局域网
终端安全管理
firewall
Intrusion Detection System(IDS)
virtual private network
Virtual Local Area Network(VLAN)
terminals security management