Skip to Main Content
It is one of the good solutions for improving network security to integrate many kinds of security techniques. Firewall and intrusion detection system can enforce security of the network effectively, but there are also drawbacks existing in themselves. Intrusion prevention system (IPS) is a technique combining the techniques of the firewall with that of the IDS properly. The characters of the IPS are introduced firstly in this paper, and then a scenario of IPS based network is described. Finally, a distributed IPS: IPS design based on SNMP is put forward, the function and implementation of each part of IPS is explained in detail.