摘要
随着互联网的飞速发展,网络安全逐渐成为一个潜在的巨大问题。防火墙是网络安全的关键技术,策略路由可以使数据包按照用户指定的策略进行转发。针对日益复杂的网络多出口问题,文中介绍了基于源地址的策略路由,提出了一种结合策略路由、网络地址转换等多技术的多出口配置方案,并比较了策略路由和路由策略的区别。基于防火墙设计策略路由,并结合网络地址转换,可以提高网络出口资源利用率,实现网络负载均衡,保护校园网安全。
With the rapid development of Intemet,network security has become a potentially huge problem. Firewall is the key technology of network security. Policy-based muting can make the packet forwarding according to the user specified strategy. According to the in- creasingly complex network of multiple egress problem,introduce the policy-based muting method according to the source address to se- lect muting and compare the difference of policy-based muting and muting strategy. A more suitable configuration for multiple egress network is proposed,based on technologies such as policy-based muting and network address translation. For improving the network re- source utilization of the export and protection of the campus network security, it is very important to design policy-based routing in fire- wall and the network address translation.
出处
《计算机技术与发展》
2013年第8期125-128,共4页
Computer Technology and Development
基金
南京邮电大学教学改革研究项目(JG00412JX57)
南京邮电大学实验室建设与设备管理研究课题(2012XSG07)
