- 1、本文档共35页,可阅读全部内容。
- 2、原创力文档(book118)网站文档一经付费(服务费),不意味着购买了该文档的版权,仅供个人/单位学习、研究之用,不得用于商业用途,未经授权,严禁复制、发行、汇编、翻译或者网络传播等,侵权必究。
- 3、本站所有内容均由合作方或网友上传,本站不对文档的完整性、权威性及其观点立场正确性做任何保证或承诺!文档内容仅供研究参考,付费前请自行鉴别。如您付费,意味着您自己接受本站规则且自行承担风险,本站不退款、不进行额外附加服务;查看《如何避免下载的几个坑》。如果您已付费下载过本站文档,您可以点击 这里二次下载。
- 4、如文档侵犯商业秘密、侵犯著作权、侵犯人身权等,请点击“版权申诉”(推荐),也可以打举报电话:400-050-0827(电话支持时间:9:00-18:30)。
查看更多
当前个人防火墙存在的问题及对策
摘 要
网络安全问题长期威胁着网络终端用户,需要有有效的安全工具解决这个问题,个人防火墙就是其中的一种常用的安全工具。为了实现个人防火墙软件,选用VC++ 6.0开发工具。软件系统主要包括两项工程,一是核心模块设计,即DLL工程,实现了封包截获、管制动作和协议封包的解析任务,主要利用Winsock 2 SPI技术实现网络封包截获,之后利用控管规则对过往封包进行合法性检查和过滤,方法是首先利用Winsock 2 SPI技术建立winsock钩子,用它来截获winsock的调用,然后作出相应动作处理,动作处理需通过控管规则的检查后,确定socket连接是否允许通过,其中控管规则由用户层设置;二是用户模块设计,即EXE工程,实现用户界面和负责与DLL模块的通信,提供了3个主要界面,即封包监视、控管规则、控管规则设置。最后通过测试和应用,基本解决了终端用户的网络连接安全问题。
关键词: 过滤;动态连接库;Winsock 2 SPI;网络封包;协议封包
The Design of the Personal Firewall Based on Windows
Abstract
The terminal users of network are always threaten by the problems of security of network,so we need a effective tool to solve this problem.The personal firewall is one of the common tools of security. VC++ is selected to implement the personal firewall.The system has two projects mainly. One of the projects is the design of core module which can be called the project of DLL.This project implements behaviors of management and the analysis of packets of protocols. The technology of Winsock 2 SPI is used to capture of pakcets of network. After that, then the checking and filtering of the packets are done using the rules of control and management. At the beginning, the control rules build up the Hook of winsock which is used to capture the tranfer of winsock,and then it implements relative behaviors.The link of socket will be or not get through checking by the rules of control and management. The rules of control and management are set by the layer of user.Then, we should design the module of user which can be called the project of exe. It implements the interface of user and the module of communication with DLL. It provides three main interfaces, they are the watching of filtering packet, the rules of control and management and the setting of rules of control and management. Finally, it has solved the requirement of security of terminal users after the final testing and application.
Key words: Filter ;DLL;Winsock 2 SPI;Network packets; Protocol packets
目录
论文总页数:25页
1 引言
您可能关注的文档
- 毕业设计:高速铁路中隧道监控量测的应用(终稿).doc
- 毕业设计:使用JAVA设计的公交查询系统(终稿).doc
- 毕业设计:简述某娱乐网站的设计与开发(终稿).doc
- 毕业设计:简述网络层加密的实现(终稿).doc
- 毕业设计:GPS在铁路控制测量中的应用——浅谈RTK测量精度与遮挡物影响关系(终稿).doc
- 毕业设计:基于.NET的端口检测技术的原理与实现(终稿).doc
- 毕业设计:简述大随机数生成程序的开发与测试(终稿).doc
- 毕业论文:基于MCS-51单片机的温度报警装置的设计和开发.doc
- 毕业论文:国内外采煤机的发展史(终稿).doc
- 毕业设计:浅析远程控制技术中服务端的构建(终稿).doc
文档评论(0)