论文部分内容阅读
VPN技术是解决网络安全问题的一条有效途径·在分析了VPN技术的特点和IPSec规范原理的基础之上 ,提出了一种VPN系统设计模型·不同于一般VPN系统模型 ,该模型考虑了群组通讯和QoS的需求·着重讨论了具体实现中的Linux内核重构、密钥更新、基于策略的信息过滤以及QoS控制等关键技术·VPN产品能否被广泛接受主要取决于以下两点 :一是VPN方案能否以线路速度进行加密 ,否则将会产生瓶颈 ;二是能否调度和引导VPN的数据流到网络上的不同管理域·
VPN technology is an effective way to solve the problem of network security. Based on the analysis of the characteristics of VPN technology and the principle of IPSec specification, a VPN system design model is proposed. Different from the general VPN system model, this model considers the group Communication and QoS • Focus on key technologies such as Linux kernel refactoring, key updates, policy-based information filtering, and QoS control in specific implementations • Whether VPN products are widely accepted depends mainly on the following two things: VPN scheme can be encrypted at line speed, otherwise it will have a bottleneck; second is the ability to schedule and guide the flow of VPN data to different network management domains