A kind of network protection software method and system based on linux kernel
A protection software and network technology, applied in the field of network security, can solve the problems of complex and changeable network structure, and the iptables function cannot be fully covered, so as to ensure network security, make up for application analysis, and increase the effect of self-update of rules.
Active Publication Date: 2021-03-16
NANJING UNARY INFORMATION TECH
View PDF2 Cites 0 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
[0004] However, iptables will only filter data packets according to the preset rules. Although the data packet filtering technology plays a certain protective role, the network structure itself is complex and changeable, and the functions of iptables cannot be fully covered.
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0039] The present invention will be further described below in conjunction with the accompanying drawings. The following examples are only used to illustrate the technical solution of the present invention more clearly, but not to limit the protection scope of the present invention.
[0040] For specific examples, see figure 1 , providing a network protection software system based on the linux kernel, including:
[0041] The control module is used to send a startup command to the kernel module according to the predefined rules after reading the defined rule information; the rule information includes a network pre-selected protection mode, and the protection mode includes simple filtering protection and feature recognition protection; Specifically include:
[0042] If the protection mode selected by the rule received by the control module is simple filtering protection and / or signature recognition protection, then a simple filtering protection startup command and / or signatur...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention discloses a network protective software method and system based on a linux kernel. The system comprises a kernel module, a monitoring module, a feature library and a control module. Thekernel module is used for screening, capturing, filtering and blocking data packets; the monitoring module is in charge of monitoring, analyzing and processing the network, receiving a network data packet of a kernel layer in a certain rule, analyzing the protocol, the content and the traffic of the data packet, judging whether the application type of the data packet is normal by comparing the feature library, discovering a potential safety risk in advance and taking effective measures; the feature library saves a great number of sample data, provides a data feature comparison function for ananalyzing module and is the headstone of analysis; the control module is in charge of managing other modules and controlling the method and system in the invention to design the protective scheme intotwo modes of simple filtering protection and feature identification protection, thereby breaking through the problem of a single function of the Linux traditional network protective software, increasing rule self-update and feature identification functions as well as making up for shortcomings of application analysis and comprehensively ensuring network safety of the Linux system.
Description
technical field [0001] The invention relates to a network protection software method and system based on a linux kernel, belonging to the technical field of network security. Background technique [0002] There are many Linux network protection software, most of which are developed based on the linux kernel, mainly the packet filtering function, the general steps are to define the filtering rules first, and then the kernel will filter the data packets according to the rules, but once the network structure changes, the rules need to be readjusted , and for the network structure that changes frequently, adjusting the rules will be very time-consuming. In addition, although the rules restrict access to certain ports, open ports will undoubtedly greatly increase the possibility of being attacked. [0003] Most small and medium-sized enterprises will adopt open source software solutions, such as iptables, an open source Linux firewall software, which is a typical Linux packet fi...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
CPCH04L63/0263H04L63/1416H04L63/1425
Inventor 施文均张有成姚崎李海鹏
Owner NANJING UNARY INFORMATION TECH