随着局域网的广泛使用,局域网内部安全问题也日趋严峻。传统防火墙技术在保障局域网安全时,其重点是放在如何防范外部网络对内部网络的入侵与攻击上,而对于局域网内部用户在使用网络资源时候的控制考虑得不多。对于企业在管理内部员工,防止内部人员非法操作网络资源,保障局域网内部安全方面,单靠传统的防火墙是不够的。因此,对于如何拦截并过滤由内到外的网络数据包是必须要考虑的。 With the widespread use of local area network, local area network security issues are also becoming more and more serious. Traditional firewall technology in the protection of LAN security, the focus is on how to prevent external network on the invasion and attack on the internal network, and LAN users consider the use of network resources when not much control. For enterprises in the management of internal staff, to prevent unauthorized personnel inside the operation of network resources, LAN internal security, rely on the traditional firewall is not enough. Therefore, it is necessary to consider how to intercept and filter network packets from the inside to the outside.