Title :
A Design and Implement of IPS Based on Snort
Author_Institution :
Weinan Teachers´´ Univ. Center of Eetwork Eng. Technol., Weinan Teachers´´ Univ., Weinan, China
Abstract :
With the development of application based on Internet, network security highlights its place increasing. Firewall and IDS are the equipment often used in Internet, but both of them can not run automatically. If we can reconfigure the firewall using the result of IDS, the security must be enhanced to a high level. In this paper, we designed an intrusion prevent system (IPS) based on Snort and Net filter by researching kernel codes of Snort and Net filter. The policy control module of the system was written in Multi-thread technologies. Meanwhile, the Algorithm of IDS and rule set of firewall was optimized to improve system efficiency. The system can block the attack source by dynamically modify firewall rules according to IDS.
Keywords :
Internet; authorisation; computer networks; telecommunication security; IPS; Internet; Net filter; Snort; attack source; firewall rules; intrusion prevent system; kernel codes; multithread technology; network security; policy control module; rule set; system efficiency; Fires; Intrusion detection; Kernel; Linux; Process control; Protocols; IPS; firewall; intrusion detection; policy control; security policy;
Conference_Titel :
Computational Intelligence and Security (CIS), 2011 Seventh International Conference on
Conference_Location :
Hainan
Print_ISBN :
978-1-4577-2008-6
DOI :
10.1109/CIS.2011.175
