Internet security has been the hottest topics in the recent Internet environment. Firewall and IDS Systems have been installed in many sites for the countermeasure of hacking and computer virus. However, these appliances or software are relatively expensive, so it is difficult for SOHO or personal users to introduce these systems. However; if there existed some defects in security at these small sites, it might cause substantial security problems in other sites via these sites. In this paper, we present our security system, which is called Dynamic Firewall, that is constricted by IDS and firewall which are prevailed as freeware. Generally, firewalls are used to filter network attacks according to the rules set by network administrators in advance. On the other hand, our Dynamic Firewall can detect these attacks by IDS and filter these attacks automatically. We tested filtering performances of Dynamic Firewall under low and high traffic conditions. As results of this experiments, we confirmed that a machine using K6- II 533MHz can filter attacks at 10 second and a machine using Pentium III 1GHz at about 2 second under the traffic condition of 30Mbps.
展开▼