GAN Ying-hui, LIU Yong, QIN Zhi-guang. An Analysis of Netfilter and Its Implementation in Active Response[J]. Journal of University of Electronic Science and Technology of China, 2005, 34(1): 94-96.
Citation: GAN Ying-hui, LIU Yong, QIN Zhi-guang. An Analysis of Netfilter and Its Implementation in Active Response[J]. Journal of University of Electronic Science and Technology of China, 2005, 34(1): 94-96.
shu

An Analysis of Netfilter and Its Implementation in Active Response

    Graphical Abstract
    • Abstract
  • Netfilter is the framework inside the Linux 2.4.x kernel which enables packet filtering, network address translation (NAT) and other packet mangling. This paper begins with introduction to the framework of netfilter, and some key technology, such as the connection tracking, packet filtering, network address translation, and packet mangling are analyzes in detail. In addition, the strategy of response to intrusion is researched in this paper, and an active response model based on netfilter is given. Through the test proofed, the model could efficiently strengthen the system security.
    • FullText(HTML)
  • loading
    • References (0)
    • Related Articles

Catalog

    Journal Online

    Author's Notes

      Links

        /

        DownLoad:  Full-Size Img  PowerPoint
        Return
        Return