摘要
网络安全实验通常需要复杂的实验环境,网络攻防本身具有一定破坏性和不可逆性,为教学而在系统中设置安全漏洞会产生巨大风险,环境搭建和维护具有较高成本。因此,使用虚拟化和SDN手段搭建虚拟实验教学平台具有重要意义。基于CloudStack开源云架构和XEN虚拟化技术,以IAAS为服务模式所搭建的网络攻防虚拟实验云平台,能够解决当前网络安全实验教学环境存在的问题。通过对snort与Iptables联动搭建防护墙实验的介绍和分析,实验表明,实验云平台在提升实验教学质量,培养学生工程实践能力和工程创新能力方面已经起到了效果,云平台本身具有广阔的发展和应用前景。
Network security experiments often require complex experimental environment. The network attack and defense technology is destructive anti irreversible. Setting network security vulnerabilities for teaching will produce huge risk. The setup anti maiutenance cosls for experimental environment are very expensive. Therefore, it is of great significance to use virtualization and SDN technology to build the simulation platform. The virtual experiment platform of network attack and defense is const,'ucted based on CloudStack, open source cloud architecture, and XEN virtualization technology. The platform solves the problems in the network security experiment teaching and can provide IaaS cloud services. The introduction and analysis of a specific experiment show that the cloud experiment platform can effectively improve the quality of experiment teaching and cuhivate students'engineering practice ability and innovation ability. The cloud platform itself has broad prospects for development and application.
出处
《实验室研究与探索》
CAS
北大核心
2017年第5期75-78,147,共5页
Research and Exploration In Laboratory
基金
国家自然科学基金项目(61402137)
关键词
CloudStack
云计算
虚拟仿真
网络攻防实验
CloudStack
cloud computing
virtualized simulation
network attack and defense experiment
