计算机与现代化 ›› 2010, Vol. 1 ›› Issue (8): 207-210.doi: 10.3969/j.issn.1006-2475.2010.08.055

• 信息安全 • 上一篇    下一篇

基于哈夫曼树的防火墙规则动态优化的研究

何祥滨,周 聪   

  1. 南昌大学信息工程学院,江西 南昌 330031
  • 收稿日期:2010-03-11 修回日期:1900-01-01 出版日期:2010-08-27 发布日期:2010-08-27

Research on Dynamically Optimizing Firewall Rules Based on Haffman Tree

HE Xiang-bin, ZHOU Cong   

  1. School of Information Engineering, Nanchang University, Nanchang 330031, China
  • Received:2010-03-11 Revised:1900-01-01 Online:2010-08-27 Published:2010-08-27

被引次数

1

摘要: 随着网络功能的不断增加,防火墙过滤规则集合日益庞大,已严重影响了网络整体性能。本文基于网络流量的特征,提出一种根据网络流量变化动态调整防火墙规则的防火墙规则优化方法,使得匹配网络数据包越多的规则越先与数据包相匹配,从而尽量减少数据包过滤时间。

关键词: 防火墙, 规则优化, 数据包过滤

Abstract: With the increasing of the network function, the filtration ruleset in the firewall becomes more and more, which has affected the overall performance of network seriously. This paper proposes an optimization method that adjusts the rules in the firewall accord to the characteristics of network traffic dynamically. In this way, data packets matches the rules that have matched more data packets firstly, then reduces the time of filtering data packets.

Key words: firewall, rule optimization, filtering of data packet

版权所有 © 《计算机与现代化》编辑部
地址:江西省南昌市西湖区井冈山大道1416号 邮编:330003
电话:0791-86490996  传真:0791-86492535  Email:jgsdd@163.com
本系统由北京玛格泰克科技发展有限公司设计开发