信息安全与技术
信息安全與技術
신식안전여기술
INFORMATION SECURITY AND TECHNOLOGY
2014年
7期
52-57
,共6页
杨明华%王云会%郑建群%王振海
楊明華%王雲會%鄭建群%王振海
양명화%왕운회%정건군%왕진해
NAT%网络地址转换%NAT 安全%静态转换%动态转换
NAT%網絡地阯轉換%NAT 安全%靜態轉換%動態轉換
NAT%망락지지전환%NAT 안전%정태전환%동태전환
nat%network address translation%nat security%static converters%dynamic conversion
最早 NAT 是用来解决互联网 IP 耗尽问题的,随着网络技术的发展、安全需求的提升,NAT 逐渐应用到防火墙技术里,把个别 IP 地址隐藏起来不被外部发现,使外部无法直接访问内部网络设备,从而成为了隔离内外网络、保障网络安全的一种手段。本文基于 Linux 平台环境详细阐述了 NAT 服务的技术原理,通过应用实例描述了NAT 配置、管理过程,分析了存在的安全问题。
最早 NAT 是用來解決互聯網 IP 耗儘問題的,隨著網絡技術的髮展、安全需求的提升,NAT 逐漸應用到防火牆技術裏,把箇彆 IP 地阯隱藏起來不被外部髮現,使外部無法直接訪問內部網絡設備,從而成為瞭隔離內外網絡、保障網絡安全的一種手段。本文基于 Linux 平檯環境詳細闡述瞭 NAT 服務的技術原理,通過應用實例描述瞭NAT 配置、管理過程,分析瞭存在的安全問題。
최조 NAT 시용래해결호련망 IP 모진문제적,수착망락기술적발전、안전수구적제승,NAT 축점응용도방화장기술리,파개별 IP 지지은장기래불피외부발현,사외부무법직접방문내부망락설비,종이성위료격리내외망락、보장망락안전적일충수단。본문기우 Linux 평태배경상세천술료 NAT 복무적기술원리,통과응용실례묘술료NAT 배치、관리과정,분석료존재적안전문제。
The earliest NAT technology is used to solve the problem of Internet IP exhaustion. With the development of network technology, security requirements are enhanced deeply. NAT technology is gradual y applied to the firewal inside. Some IP addresses is hidden from the outside, so that the external network can not directly access the internal network resource. Thus NAT is becoming isolated means between inside and outside network and some networks are protected. In this paper ,Based on the Linux platform environment , the principle of NAT technology services is il ustrated and application examples is described step by step .Some security problems is analyzed.
