摘要
本文介绍了Intel IXP425的软件体系结构,分析了Linux下防火墙的netfilter框架,给出了防火墙策略和vpn策略在linux下的一体化表示方法,最后,对集防火墙、VPN、NAT功能为一体的vpn系统在IXP425下进行了一体化的设计。
Network Processor is hardware platform which improves capability and flexibility currently, and moreover which brings a new idea for developing high-powered network product. In the paper, the software architecture of Intel ixp425 is introduced. At the same time, the frame of netfiher for firewall in linux is analyzed and integrative description in linux about firewall policy and vpn policy is given. Finally vpn system based on ixp425 which combine many functions such as VPN, stateful firewall and NAT as a whole is designed and accomplished.
出处
《微计算机信息》
北大核心
2007年第03X期153-155,共3页
Control & Automation
基金
河南省自然科学基金资助(994060100)
