一种解决防火墙规则冲突的混合型算法的研究  

A Hybrid Algorithm to Solve Firewall Rule Conflict

在线阅读下载全文

作  者:曹波[1] 冯伟东[1] 孟浩华[1] 刘祺 

机构地区:[1]国网湖北省电力公司信息通信公司,武汉430077 [2]湖北电力科学研究院,武汉430077

出  处:《计算机与数字工程》2017年第7期1282-1286,共5页Computer & Digital Engineering

摘  要:防火墙冲突检测算法是一种经典的解决防火墙过滤规则间冲突的优化算法,可有效地提高防火墙规则集的运行效率,减少规则间冲突的发生,从而节约大量的计算资源,保障网络通信的正常进行,但随着数据规模和用户数量的飞速增长,防火墙规则集也在日益扩大,原有的冲突检测算法已无法满足当前的网络通信需求,必须加以改进。论文提出了将默认规则与冲突检测算法相结合,在检测之前先执行预优化的改进策略,同时将默认规则进行解析处理,随后将其与原有规则集相合并,大大提高了防火墙的匹配效率,缩短了防火墙的处理时延。Firewall conflict detection algorithm is a classical algorithm for the rule set of firewall filtering, which could effec-tively improve the efficiency of the firewall rule set and reduce the conflict between the rules,so as to save a lot of computing re-sources and ensure the normal operation of the network communication. However, with the rapid growth of data size and the number of users, the original conflict detection algorithm has been unable to meet the current network communication needs because the fire-wall rule set is also increasing, so the improvement is essential. This paper proposes to combine the default rules and the collision detection algorithm, and improve the pre optimization before detection. At the same time, the default rule is analyzed and combined with the original rule set, which greatly improves the matching efficiency of the firewall and shortens the processing delay of the fire-wall.

关 键 词:防火墙 动态调整 冲突检测 平均匹配次数 默认规则 

分 类 号:TP301[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象