| With the development of the internet,especially the impact of the global COVID19 pandemic in the past two years,mobile and home office have become increasingly important to businesses.While mobile office brings convenience,it also introduces many cybersecurity risks.How to provide efficient and secure mobile office services is a difficult problem for enterprises to consider.Currently,VPN and traditional gateways are the choices for most enterprises to solve mobile office security issues.However,VPN and traditional gateways require enterprises to change their original network architecture during installation and deployment.Traditional gateways require enterprises to open additional ports to provide services,and existing business applications need to be modified to adapt to the gateway.VPN cannot granularly control user permissions,and its speed and weak network stability are often criticized by users.This project is based on a security gateway product from a security company,designing and implementing a new generation of security gateway connector subsystem.In order to meet the needs of enterprises using security gateways without opening ports to the outside,this paper proposes a new request connection method in the connector subsystem:inward request connection.This method can also solve the problem of enterprises needing to change their original network architecture.In order to solve the problem that VPN cannot granularly control user permissions,this project designs and implements a fine-grained control technology based on access address control.To solve the problem of difficult deployment and maintenance of VPN and traditional gateway products,this project divides the functional modules into three submodules and solves the problem of difficult deployment and maintenance by separately managing different modules.To solve the problem of slow speed and poor stability of traditional gateways,this project innovatively applies multiplexing connection technology to the connector subsystem.Multiplexing technology can maximize the reuse of network connections,reduce the number of network connections maintained in the system,and make the system run more efficiently and stably.The connector subsystem developed in this study has provided the company’s security gateway system with an efficient and stable connection route,effectively resolving a series of issues encountered during the deployment of VPNs and traditional gateway systems.These issues include complex deployment processes,slow access speeds,insufficient system stability,the inability to implement fine-grained access control,and the necessity to modify existing corporate network architectures.This subsystem has significantly enhanced the overall performance and stability of the gateway system,as well as greatly improved its reliability.Moreover,the security gateway product that integrates this connector subsystem has been successfully promoted to the market and has seen widespread application. |
PDF Full Text Request