Application Research of Distributed Firewall Based on Intrusion Detection

In view of the deficiencies of distributed firewall and Intrusion detection, a distributed firewall based on Intrusion detection is proposed.It improves the architecture of distributed firewall by adding intrusion detection module in order to get a dynamic distributed firewall.It reduces the amount of intrusion detection data by modification the structure of packets when they arrive at the intrusion detection module from the host firewall filtering module.The results of data detection return to management center rapidly, so the management center can update rule dynamically and timely.The experimental results show that the proposed scheme solves some problems of traditional distributed firewall, including the policy updating delay, unauthorized users can intercept the internal communication and intrusion can not be found timely etc.Meanwhile, it also solves some problems of intrusion detection module such as the large amount of data, the inability of blocking the attack and so on.