Professional Documents
Culture Documents
Cac Phuong Phap Lap Trinh Vuot Firewall
Cac Phuong Phap Lap Trinh Vuot Firewall
Cac Phuong Phap Lap Trinh Vuot Firewall
Phan Trung Hiu - Trang 3 - Trn L Qun
Mssv: 0112463 Mssv:0112319
Lun vn tt nghip Mng my tnh GVHD: ThS Hong Cng
LI NHN XT CA GIO VIN PHN BIN
Bt u lc
Thm IP
vo b lc
4
3
5
6
7
8
Hnh 31 S hot ng ca module chn a ch IP
7.7 Din gii m hnh :
Khi khi ng, service s kch hot 2 module con l module bt gi tin v
module chn a ch IP tng ng. Module chn a ch IP khi c khi ng s
truy xut vo c s d liu v thm cc a ch IP ca cc Proxy Server b cm sn vo
b lc IP Filter Driver v bt u lc a ch. Khi Card mng nhn/pht cc gi tin,
module bt gi tin s nhn cc gi tin ny v tin hnh phn tch. Module s kim tra
Phan Trung Hiu - Trang 87 - Trn L Qun
Mssv: 0112463 Mssv:0112319
Lun vn tt nghip Mng my tnh GVHD: ThS Hong Cng
xem cc gi tin ny c phi l gi tin HTTP Request n Proxy Server hay khng. Nu
phi th a ch IP ca Proxy Server s c truyn tip cho Module lc a ch IP x
l. a ch mi ny s c thm vo b lc a ch v lu vo c s d liu.
7.8 Nhn xt nh gi :
7.8.1 u im:
t ra ban u ca Module l tm cch chn phng php
vt Fir
n
a
Trong qu trnh chy th nghim, module c th hot ng tt trn cc
loi CAR
t gi tin, Module c th pht hin v hc c
cc a c
Do yu cu
ewall thng qua HTTP Proxy Server, nn chng em c gng pht
trin module di dng 1 ng dng Mini Firewall. Trong sut qu trnh nghi
cu v tm hiu, chng em thng nht chn m hnh Service ng dng trn
Windows lm c s xy dng v trin khai Module. u im ca m hnh ny
l n k tha c nhng yu cu v tnh an ton v bo mt do chnh h iu
hnh qui nh. Khi khi ng vo mi trng Windows, cc Services h thng
cng nh ca ngi dng s ln lt c np v chy nn trn h thng, ch
duy nht ngi qun tr hay ch Service mi c quyn tt/m/xa service.
Module nhng hn chc nng iu khin Service cho h iu hnh, nn
Module ng dng ch tp trung vo hai tnh nng chnh l bt gi tin v lc
ch IP.
D mng, MODEM trn Windows. Do cc module con ca ng dng
c vit hon ton da trn mi trng Winsock ca Windows (b th vin
dng pht trin ng dng mng TCP/IP trn mi trng Windows), nn bo
m tnh tng thch rt cao.
Do h tr tnh nng b
h Proxy Server mi (cha c trong c s d liu). Sau lu li cc
a ch ny lm c s cho b lc hot ng
Phan Trung Hiu - Trang 88 - Trn L Qun
Mssv: 0112463 Mssv:0112319
Lun vn tt nghip Mng my tnh GVHD: ThS Hong Cng
7.8.2 Khuyt im:
Trong qu trnh chy th nghim, module chn c gn nh hu ht
cc a ch HTTP Proxy Server. Tuy nhin i vi cc Proxy Server mi (cha
c trong c s d liu), b lc phi hc c a ch mi ny th mi ngn
chn c. Do trong phin lm vic u tin, b lc vn cha chn c cc
a ch mi ny. i vi nhng phin lm vic sau th b lc m bo chy tt.
Trong qu trnh th nghim, vic b lc hc c qu nhiu a ch
mi v lu vo c s d liu tn kh nhiu ti nguyn h thng (CPU,RAM)
nn Service chy chm hn (i lc Serive c th b treo). ng tic l n lc
ny chng em vn cha khc phc c vn ny
Qu trnh hot ng ca Service ph thuc kh nhiu vo s tn ti
ca tp tin c s d liu lu tr cc Proxy Server. Nn khi tp tin trn khng tn
ti hay b li, tnh nng lc ca Service chc chn khng th hot ng chnh
xc c.
Phan Trung Hiu - Trang 89 - Trn L Qun
Mssv: 0112463 Mssv:0112319
Lun vn tt nghip Mng my tnh GVHD: ThS Hong Cng
PHN TH 4
TNG KT
Chng 8: KT LUN
Sau hn su thng lm lun vn, t nhiu chng em cng tm hiu tng i
thnh cng cc phng php lp trnh vt firewall cng nh nhng chng trnh km
theo: Http proxy, Web based Proxy, Plug-in chng vt firewall, service chng vt
firewall. Qua nhng g tm hiu c, chng em cm thy vn cn nhiu iu phi lm
c th hon thin hn chng trnh cng nh cn c s hng dn nhiu hn na
ca cc thy c, bn b
Kt qu cui cng l kt qu ca nhng thng ngy c gng, n lc ca bn thn,
s gip ca gia nh, nh trng, bn b v c bit l s hng dn tn tnh ca
thy Hong Cng chng em c th hon tt mt cch tt p lun vn so vi
nhng g t ra.
Cui cng, mt ln na, chng em xin cm n tt c gip chng em c
th hon thnh tt kha lun ny. Xin chn thnh cm n.
8.1 Nhng kt qu t c:
Theo yu cu t ra ban u l Nghin cu cc phng php lp trnh vt
firewall. T lm c s xy dng cc module chng vt Firewall v bo mt
Web, cho n thi im hin ti lun vn t c cc ni dung sau:
- Phn yu cu:
Tm hiu v trin khai thnh cng 2 phng php: HTTP Proxy Server
v Web-based Proxy.
- Phn m rng:
Tm hiu v trin khai thnh cng 2 module chng vt Firewall: Plugin
chng vt Firewall dnh cho trnh duyt Internet Explorer v
Service chng vt Firewall trn h iu hnh Windows.
Ngoi ra, trong qu trnh nghin cu v hon thnh ti, chng em tip thu
thm c mt s kt qu sau:
Phan Trung Hiu - Trang 90 - Trn L Qun
Mssv: 0112463 Mssv:0112319
Lun vn tt nghip Mng my tnh GVHD: ThS Hong Cng
Tm hiu su thm v cc phng php lp trnh ng dng mng da trn
b th vin Winsock ca Windows.
Tm hiu c phng php xy dng v trin khai Service ng dng
trn Windows
Tm hiu cch xy dng v trin khai ng dng Plugin cho trnh duyt
Internet Explorer.
c hiu c cch xy dng v pht trin ng dng da trn mi
trng COM (Component Object Model).
Ngy nay, Internet ngy cng pht trin mnh m, l ngun ti nguyn
bao la v tn, nn nhu cu s dng Internet tm kim thng tin cng
nh giao dch, thng mi l iu tt yu. Yu cu an ton v bo mt
thng tin (ty theo mc ch ca c nhn hay doanh nghip) lm ny
sinh thm vn kh au u cho cc nh qun tr mng l: Kim sot v
qun l qu trnh s dng Internet ca ngi dng. Vi vic nghin cu
v a ra c cc gii php kh thi v yu cu m rng ca ti: Xy
dng cc module chng vt Firewall, chng em thit ngh c th ng
gp 1 phn vo vic gii quyt vn nan gii trn.
8.2 Hng pht trin :
Trong qu trnh nghin cu v tm hiu v ti, chng em thng nht v
xut ra c 3 phng php ch yu vt Firewall: HTTP Proxy Server, Web
Based Proxy v HTTP Tunneling. Tt c 3 phng php trn u c pht trin da
trn m hnh ng dng mng Client-Server truyn thng. Trong 3 phng php nu
trn th phng php th 3: HTTP Tunneling l phng php cao cp v kh pht
hin nht. Qu trnh nghin cu v trin khai phng php ny cng tn kh nhiu
thi gian v cng sc. Mc d chng em rt c gng trin khai, tng trn vn
cha mang tnh kh thi cao v c th p dng c vo thc t. Sau y chng em xin
Phan Trung Hiu - Trang 91 - Trn L Qun
Mssv: 0112463 Mssv:0112319
Lun vn tt nghip Mng my tnh GVHD: ThS Hong Cng
ra 1 s hng pht trin v sau nhm m rng thm ngha khoa hc cng nh thc
tin ca ti:
Ci thin vn tc truy xut b lc cho module th 2: Service chng
vt Firewall.
Nghin cu tip phng php http tunneling
Trin khai ng dng minh ha cho phng php http tunneling
Hon thin hn na Plug-in v Service t hiu qu ti u
Trin khai thnh cng module chng vt Firewall bng phng php
HTTP Tunneling
Trin khai ti thnh sn phm hon chnh p dng vo thc tin.
Phan Trung Hiu - Trang 92 - Trn L Qun
Mssv: 0112463 Mssv:0112319
Lun vn tt nghip Mng my tnh GVHD: ThS Hong Cng
PHN TH 5
PH LC
DANH SCH CC TI LIU THAM KHO
- Website:
http://www.microsoft.com
http://www.quantrimang.com
http://www.codeproject.com
http://www.sourceforge.net
http://www.experts-exchange.com
http://www.webopedia.com
http://www.nyu.edu
http://www.learnthat.com
http://www.stayinvisible.com
http://www.proxify.com
http://www.silentsurf.net
http://www.adminvietnam.net
http://www.anonimizer.com
http://www.tcpipguide.com
http://www.vnsecurity.net
- Danh sch cc ti liu, sch, gio trnh tham kho
Ti liu in t MSDN ca Microsoft.
Anthony Jones v Jim Ohlund, Network Programming for Microsoft
Windows, 1999 (ebooks)
O'Reilly, Learning PHP 5,June-2004
Addision Wesley, The C++ Programming Language,June-97
Phan Trung Hiu - Trang 93 - Trn L Qun
Mssv: 0112463 Mssv:0112319
Lun vn tt nghip Mng my tnh GVHD: ThS Hong Cng
Wrox Press,Beginning PHP 4,2001
Sams Publishing ,Teach Yourself PHP, MySQL and Apache in 24h,12-2002
Addision Wesley,C/C++ Network Programming I & II,10-2001
Phan Trung Hiu - Trang 94 - Trn L Qun
Mssv: 0112463 Mssv:0112319