现代电子技术2011,Vol.34Issue(13):113-116,4.
IPv4/IPv6过渡阶段防火墙设计与实现
Design and Implementation of Firewall During Period of IPv4/IPv6 Transition
吴文华 1申普兵 1李晨2
作者信息
- 1. 西安通信学院,陕西西安 710106
- 2. 中国联通公司蓝田分公司,陕西西安 710500
- 折叠
摘要
Abstract
In view of the special environment of the transition stage of IPv4/IPv6, the security problems brought by IPv6-in-IPv4 tunnel mechanism for network are analyzed. Through requirement analysis and framework design, the Trans firewall based on Netfilter framework with fairly perfect function is realized, which can filter IPv4 packets and IPv6-in-IPv4 encapsulation packets, and achieve dynamic set and log records of restriction rules. The test results for Trans firewall show that Trans firewall can filter and examine varied types of package, and effectively provide security guarantee to prevent the tunnel attack.关键词
IPv4;IPv6;隧道;IPv6-in-IPv4数据包Key words
IPv4/ IPv6/ tunnel/ IPv6-in-IPv4 data packet分类
信息技术与安全科学引用本文复制引用
吴文华,申普兵,李晨..IPv4/IPv6过渡阶段防火墙设计与实现[J].现代电子技术,2011,34(13):113-116,4.
