Visual Firewall Rule Builder
نویسنده
چکیده
The paper that is being submitted deals primarily with the implementation of firewall technology on Linux based systems. It focuses on the features of the visual medium for the creation and management of firewall rules, Visual Firewall Rule Builder – VFRB. VFRB has been written in Java and has a modular construction. The program consists of an object-oriented graphical user interface and a policy compiler for iptables. In VFRB, a firewall security policy is a viewed as a set of rules, where each rule is made up of abstract objects that represent real network objects and services (hosts, networks, protocols and so on). VFRB helps maintain a database of objects and enables the editing of firewall policy using simple drag and drop operations.
منابع مشابه
Automated Firewall Rule Set Generation Through Passive Traffic Inspection
Introducing rewalls and other choke point controls in existing networks is often problematic, because in the majority of cases there is already production tra c in place that cannot be interrupted. This often necessitates the time consuming manual analysis of network tra c in order to ensure that when a new system is installed, there is no disruption to legitimate ows. To improve upon this situ...
متن کاملOptimization of Network Firewall Policies using Directed Acyclical Graphs
This paper introduces a new method to improve the performance of list oriented firewall systems. Specifically, the paper addresses reordering a firewall rule set to minimize the average number of comparisons to determine the action, while maintaining the integrity of the original policy. Integrity is preserved if the reordered and original rules always arrive at the same result given a packet. ...
متن کاملProgramming Agents with Visual Rules
A visual programming facility is described which is based on a visual rule formalism. It permits programmers to specify the behaviors of agents in the class of program objects in the Agentsheets system of Repen-ning. The resulting agents can be used in designing simulations for two-dimensional cellular worlds such as in automobile traac ow situations, video games, and cellular automata studies....
متن کاملDeveloping Multidimensional Firewall Configuration Visualizations
Firewall configuration files are created and edited as text files, despite significant size, complexity, and the possibility of interaction between entries. We embedded interactive visualizations in a simple firewall ruleset editor. To make rulesets visualizable, we calculate the set of packets accepted by the firewall as a restricted case of constructive solid geometry. We show a lossless visu...
متن کاملImproving cloud network security using the Tree-Rule firewall
This study proposes a new model of firewall called the ‘Tree-Rule Firewall’, which offers various benefits and is applicable for large networks such as ‘cloud’ networks. The recently available firewalls (i.e., ListedRule firewalls) have their limitations in performing the tasks and are inapplicable for working on some networks with huge firewall rule sizes. The Listed-Rule firewall is mathemati...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2006