| The Campus Network is an important infrastructure that can facilitate student to learn knowledge, discuss issues, access to information and so on and that is also a platform for external exchange of school's management and teaching quality. But,safe problem about by link up Internet has brought extremely large challenge to our campus network administrative person.The hacker implement being able to be bought anywhere and the system leak being exposed unceasingly make our network not be in danger all the time.Thus,to secure campus network becomes fairly important.The thesis carries a general survey of current research in IDS ,some analysis on the weakness of some current IDS systems and the role of IDS in campus network.Fisrt of all,thesis mainly research Oil DIDS with the object of atypical system—Snort,combined with IDS,the IDS Model with Snort-centric will be designed and the speed and accuracy of IDS will be improved by the mean of protocol analysis and pattern matching.Finally,the application of campus network will improve the security effectively.The system will be devided into data collecting module,data sevices module,communication module and data administrator module.The important part is data collecting module,it is discuss through data capure,protocol analysis, pattern matching and rule matching.The network detection angent based on rules which is from Snort.And the database which is used in the system is MySQL.And also the graphic output using ACID comes true, which makes users easily configure the system and hold the security of the system.Finally,this thesis designs a test platform of the Distributed Intrusion Detection System by using Linux-based Snort software.The configure items of IDS hosts, servers and analyze-control-consoles are listed in detail.Then,througe analyzing the test results, it proves that the system is available and effective. |
PDF Full Text Request