Based On The Data Link Layer Packet Filtering And Data Reorganization Processing Technology Research And Application

Now with the rapid development of the network, all kinds of network expansion,network communication security issues become increasingly prominent.This articlethrough to the operating system in the network part of the study, put forward the effectiveof network communication for filtering and information monitoring of the overallsolution, and combined with the network at different levels of structure in detail theresearch, design and implementation of the entire process, strengthen the networksecurity the reliability degree of endpoint.This article first elaborated the computer network security’s overall situation, andputs forward the system research background and purpose; at the same time this paperintroduces the architecture of TCP/IP network, and analysis layer by layer each layer onthe main protocols and specific function; finally introduced the Microsoft operatingsystem and network structure of NDIS, TDI and other content, including focuses on theanalysis of NDIS function, classification and Realization process.Secondly, introduces the packet filtering and information monitoring systemstructure design and the realization process.This system consists of networkcommunications intercept and filter subsystem, data processing and information monitorsubsystem and subsystem is composed of three sets of rules.Layer by layer analysis oflink layer, network layer, transport layer for data processing to achieve the function of thesystem.Describes how to use the intermediate drive agreement, the overloaded networkoperating system data processing, complete from the operating system frame, bag and IPpacket processing; how to use the Hook mode, intercepted TCP/UDP networkcommunication, and use the document object and Communication Association, tocomplete the communication information monitoring and network communication ofprocess control, and network communication in accordance with the rules for filtering, atthe same time can be set to write to a file, to facilitate future audit.Finally, the realization of system function of network communications intercept and filter subsystem, data processing and information monitor subsystem and rule settingsubsystem three subsystems were integrated, at the same time, provides a man-machineinteraction interface, user-friendly, and system testing.