Proposal of an Adaptive Firewall System in Collaboration with Extended DNS
暂无分享,去创建一个
With the popularity of the Internet services, network security becomes critical issue in the Internet world. Especially, the threats of malicious accesses make the firewall systems have to low down performance due to strict inspections. In this paper, we propose an adaptive firewall system in collaboration with DNS (Domain Name System) which introduces querier's IP address notification feature. With such a feature, the proposal system can identify whether each communication flow can be trusted or not by checking the querier's IP address and the DNS query target domain name. Then based on the result of checking, the firewall system adaptively decides specific operation for specific connection. Consequently, the trusted flows go through bypass route of higher bandwidth without heavy packet inspection while untrusted flows will be blocked or restricted by strict packet inspection. Thus, the firewall system totally accomplishes higher throughput.
[1] Jongsoo Jang,et al. High Performance Session State Management Scheme for Stateful Packet Inspection , 2007, APNOMS.
[2] Paul V. Mockapetris,et al. Domain names: Concepts and facilities , 1983, RFC.
[3] Meng Weng Wong,et al. Sender Policy Framework (SPF) for Authorizing Use of Domains in E-Mail, Version 1 , 2006, RFC.
[4] Paul V. Mockapetris,et al. Domain names - implementation and specification , 1987, RFC.
[5] Paul Vixie,et al. Extension Mechanisms for DNS (EDNS0) , 1999, RFC.