摘要
为提高企业内网和公网数据传递的安全性,基于动态多点VPN与防火墙的安全网络进行设计。公网通过总部和分部之间建立专用的虚拟隧道,数据安全使用了DES、DH、数字签名等技术。内网利用思科防火墙进行配置策略,允许低安全等级区域的数据流量传递到高安全等级区域,高等级区域的数据流量传递到低等级的区域进行NAT变换。通过实际案例测试该网络组网的安全性和稳定性。结果表明,该网络组网的安全性和稳定性,数据传输成功率达100%,企业内部网络和外部网络实现数据区分,达到了保护内网地址和数据流量的目的。
To improve the security of data transmission within the enterprise internal network and pub⁃lic network,a secure network based on dynamic multi-point VPN and firewall is designed.The public network establishes a dedicated virtual tunnel between the headquarters and branches,and data securi⁃ty uses technologies such as DES,DH,and digital signatures.The internal network utilizes Cisco fire⁃wall to configure policies that allow data traffic from low security level areas to be transferred to high se⁃curity level areas,while data traffic from high security level areas is transferred to low level areas for NAT transformation.The security and stability of the network is tested through practical cases.The re⁃sults show that the security and stability of the network are achieved,with a data transmission success rate of 100%.The internal and external networks of the enterprise achieve data differentiation,achiev⁃ing the goal of protecting internal network addresses and data traffic.
作者
金恩实
JIN Enshi(Liaoning Normal College for Nationalities,Shenyang Liaoning 110032,China)
出处
《保山学院学报》
2023年第5期62-66,共5页
JOURNAL OF BAOSHAN UNIVERSITY
基金
辽宁省教育评价协会教学改革与教育质量评价研究立项课题“互联网+教育背景下新型教学模式研究与探索—以‘计算机应用基础’课程教学为例”(项目编号:PJHYYB17397)。
