摘要:Intranet often employ an Internet firewall to mitigate risks of system penetration, data theft, data destruction and other security breaches. Conventional Internet firewalls impose an overly simple inside vs. outside model of security that is incompatible with many business practices that require extending limited trust to external entities. Additionally, firewall security perimeters are somewhat weak: they provide no protection from inside attacks and do not protect sensitive data, which can be exported by tunneling through permitted protocols. In this study we have suggested the integration of some useful additional information along-with intrusion detection system and virus monitors into firewall. In particular, we aim at integrating as many security measures as possible into the firewall, creating what we will call an enhanced firewall. One of the main features of the enhanced firewall will be protecting intranet against various malicious attack.
