论文部分内容阅读
网络的开放性、方便性往往与安全性是倒置的。Internet为用户提供了方便、快捷的服务,同时也使一个机构的专用网络与数据资源被非法访问和破坏的风险加大了。可以说,当一个机构与Internet连接之后,就不是是否会被攻击的问题,而是何时被攻击的问题了。在Internet所提供的服务当中,电子邮件、文件传输、远程终端注册、网络新闻组以及WEB页面浏览等都存在着或多或少的安全漏洞,给不法分子入侵网络创造了条件。那么,如何让我们在参与Internet的同时仍然保证内部网络的安全性呢?防火墙正是这样一种保护手段,它所起的作用就是在不危及内部网络数据与其它资源的前提下允许本地用户使用外部网络的资源,并将外部未经授权的用户屏蔽在内部网络之外,使其无法使用内部资源。防火墙是专门针对Internet而实施的,是在网络环境下所特有的一种安全手段,是实现网络安全的重要保障。
Network openness, convenience and security are often upside down. The Internet provides users with convenient and efficient services while increasing the risk of unauthorized access and destruction of an organization’s private network and data resources. It can be said that when an agency is connected to the Internet, it is not a question of whether it will be attacked, but of when it is attacked. Among the services provided by the Internet, there are more or less security loopholes in e-mail, file transfer, remote terminal registration, web newsgroups and web page browsing, which create conditions for lawless elements to invade the network. So, how do we keep the internal network secure while participating in the Internet? Firewalls are just such a means of protection, and their role is to allow local users without compromising internal network data and other resources External network resources, and external unauthorized users shielded outside the internal network, making it unable to use internal resources. Firewall is implemented specifically for the Internet, is a unique security in the network environment, is an important guarantee for network security.