对分布式拒绝服务攻击的防护,传统的方法是采用路由访问控制列表过滤的防护方法,无法识别虚假地址和针对应用层的攻击,而且容易造成服务器无法向外部提供正常的服务。
The traditional detect method of adopting acl for DOS can not identify the attack aiming at the fake address and application layer, and easily made the server cannot apply the normal service for user.
核心路由器上主要配置访问控制列表ACL的出栈应用。
The main allocation access of core router controls the stack out of ACL.
路由器在计算机网络流量控制方面的作用日益显著,其关键技术就是访问控制列表的配置。
Routers are playing an important role in the network flow of the computer -network increasingly, where the key technology is the configuration of access control lists.
通过建立路由器访问控制列表,可以控制任何IP地址对网络的访问,但要实现网络的单向访问,一般的访问列表是无法做到的。
One can control any IP addresses to access a network to set up a router access-control-list, but a normal ACL can not be implemented to access a network unilaterally.
修改路由器的存取控制列表,禁止非法访问。
C. Modification road by implement access control list, prohibit be being visited illegally.
修改路由器的存取控制列表,禁止非法访问。
C. Modification road by implement access control list, prohibit be being visited illegally.
应用推荐