期刊名称:International Journal of Computer Networks (IJCN)
电子版ISSN:1985-4129
出版年度:2014
卷号:6
期号:5
页码:92-107
出版社:Computer Science Journals
摘要:A firewall is a network security device that works to protect an organization's internal network from both unauthorized and malicious users. It functions by examining all packets that enter any one of its incoming interfaces and comparing the structure of the packet against a set of predefined rules. Each rule specifies if a packet corresponding to the rule is to be permitted or denied. This set of rules is called an access control list (ACL) and it forms the basis of a firewall's policy. Incorrect configuration of the firewall can lead to redundant rules which cause performance degradation. We propose an algorithm to identify and eliminate redundant rules in an access control list during the configuration phase. The proposed work defines an access control list as a linked list data structure. A comparison of the proposed work and the conventional approach is also presented.
关键词:Firewall; Access Control List; Network Security; Firewall Configuration; Firewall Policy.
Loading...
