A data packet filter firewall which is based on IP address and port for personal computer on the platform Suse 9.2 is designed and implemented by Making full use of the Netfilter mechanism in the kernel of Linux,through programming with the C,XML,python and debugging with GCC.
They are the foundation to actualize the technology of rule management of packet-filtering firewall. Based on this idea, we firstly study the network processor which is based on Patricia tree, and propose a design scheme of the technology of rule management based on NP, combining the characteristic of packet-filtering firewall.
This paper analyze s the current situation of network security and TCP/IP protocol problem of our network,after discussing the operation system kernel,It design s and implements a packet filter firewall and virtual private net-work system based on windows operation system kernel.
The implementation of a packet filter firewall system based on Windows operation system Kernel is performed on the network layer. It requires the control of the IP data pack,and the data pack filter is used to intercept all the IP data pack.
The paper analyzes the basic principle and structure of a packet filter firewall. After discussing the operation system Kernel,a packet filter firewall system based on Windows operation system Kernel is designed and implemented.