节点文献
基于移动IPv6的防火墙研究与实现
Research and Implementation of Firewall Based on Mobile IPv6
【作者】 陈敏锋;
【作者基本信息】 南京理工大学 , 通信与信息系统, 2006, 硕士
【摘要】 随着计算机网络在政治、经济、文化等诸多方面的飞速发展,网络已经逐渐成为我们日常生活中不可缺少的重要组成部分。与此同时,网络安全问题也随之凸现出来,网络安全技术也越来越受到前所未有的广泛重视。防火墙技术作为实现网络安全的重要方法之一,逐渐成为研究网络安全技术的一个重要的研究方向。IPv6具有“无限”的地址空间、支持安全性和移动性等特性。预计未来会有越来越多的无线设备接入Internet,移动性将成为对互连网的重要期望,因此,移动IPv6作为一种在全球因特网上提供移动功能的方案,将会成为移动通信的首选。本文针对移动节点在外地网络时与家乡网络通信的透明性,以及所传输数据的安全性问题,设计了一种对防火墙和移动节点之间的通信进行IPSEC信息验证的方法,基于本方案的防火墙解决了移动IPv6下移动节点在外地网络与家乡网络之间的通信穿越防火墙的问题,并保证了移动节点与家乡网络之间通信的安全性,且由于只在防火墙和移动节点之间建立IPSEC通道,因此消耗系统资源少,具有较强的实用性。最后在Linux操作系统下将该防火墙进行了实现,并对其进行了测试。
【Abstract】 With the high-speed development, computer network is used in many ways, such as politics, economy, and culture. Network is becoming an important part in our life. At the same time, network security is breaking open directly, network security is unparalleled regarded broadly nowadays. As one of the most important technology of network security, firewall technology is becoming an important way in the research of network security.IPv6 has some specialities, such as limitless address space, security support and mobility support. In future, more and more wireless equipments will connect to Internet and mobility should be the most important attribute of Internet, so mobile IPv6 will be a preferred scheme which can provide mobile communication.In order to ensure the security of signal and the transparency of communication between home network and mobile nodes, we propose a solution which specify how to use IPSEC information validate to protect mobile IPv6 signaling between mobile nodes and firewall. Firewall based on the solution can solve the problem which the signaling between home network and mobile pots cann’ t through firewall and ensure the confidentiality of communication between home network and mobile nodes. And because the solution only establish IPSEC tunnel between firewall and mobile nodes, it consume less system resource and is more practicable. And the last part of the paper is the realization of this firewall under Linux operating system and the test of this firewall.
【Key words】 Network Security; IPv6; Mobile IPv6; IPSEC; Firewall;
- 【网络出版投稿人】 南京理工大学 【网络出版年期】2008年 02期
- 【分类号】TP393.08
- 【下载频次】134