| The rapid development of the Internet, greatly speeding up the economic and social development, to facilitate people’s lives at the same time, brought the information network security problems, therefore, it has brought new problems and challenges to the development of enterprises, survival. The rapid development of network information security problems for the information technology, it not only for the strong dependence on the network information technology, but also from the concept of network and information security, strong dependence on performance for the room the physical environment, human behavior. But in today’s enterprises to ensure their information security is not compromised, in real network application environment is usually deployed in the network, server zone, export office network zone firewall equipment, access rules through the firewall equipment set, attack, protect the enterprise intranet data information of infringement.In recent years, the scale of our company internal network with business development constantly in the change to expand, will at any time adjust each network architecture facing business is affected, especially the upgrading, the corporate firewall, due to the lack of a centralized management mechanism at any time will be business block, even when the firewall is damaged not the first time the rapid recovery. My company is currently the internal network architecture consists of a core network, business network, security management network, Internet access, network access zone area of five regions, including the deployment of two computers in the core network layer, business network deployed four firewalls, security management network deployed two computers, Internet access to regional export deployment two sets of firewall, network access zone deployment with two sets of firewall, network firewall protection of these companies has played a key role, but once the firewall malfunction or management personnel error will affect the company’s internal network service during configuration. Therefore, at present our company needs an effective mechanism of centralized management of these firewalls, mainly from the firewall configuration, basic information, system log, backup and recovery aspects of management, the purpose of this paper is to develop a set of firewall management software to centralized management of all of the company’s hardware firewall.From the economic and practical, the design will save the company money to a large extent, the application of this software and firewall in the office in the net than commercial firewall is easy to operation and management, in the view of function, the hybrid network firewall, besides making the user policy according to the internal network planning function also support account management, flexible to different roles and functions of the office, the office terminal high security requirements for information security high level strategy, can effectively prevent the LAN and Internet attack.In this paper based on the simple firewall technology and principle, the firewall technology in the application of enterprise information security for the purpose of the study is as follows, according to the shortcomings of the present firewall: cannot prevent strategy security threats, improper configuration or configuration error caused by damage due to hardware problems result in loss, cannot be configured and strategies to prevent contact artificial or natural damage and firewall equipment log will consume its storage space and other issues, designed a set of firewall management software and the software test, obtained good results. |
PDF Full Text Request