编号本科生毕业设计中小型企业网络设计及安全实现NetworkDesignAndSecurityofSmallAndMediumSizedEnterprises学生姓名王振阳专业软件工程学号1242130指导教师陈刚分院信息工程分院2016年6月长春理工大学光电信息学院毕业设计摘要经过对中小型企业网络现状分析,组建一套适合企业自身的网络环境是十分必要的,本文通过网络构建的设计方案、基于安全的网络基本配置方案、网络管理方案三方面,主要运用了HTTP、DNS、FTP、DHCP应用服务器来实现一个企业网络间接入与访问,并且建设了一种中小型网络的安全方案。在对中小型网络系统有了确切的了解之后,将局域网总体子网划分为三个安全等级,每个等级中包含若干子网,各类子网设置了各自的安全策略。按照计算机网络安全设计的目标及其计算机网络安全系统的总体规划,对计算机网络安全问题进行了全面的分析。依照各个安全等级的安全需求,设计了中小型网络的安全方案。在满足各子网系统建设的前提下,提出了包括病毒防护、动态口令身份认证、安全审计管理、访问控制、信息加密策略、入侵检测系统的部署、漏洞扫描系统等管理措施和安全技术在内的整套解决方案。目的是建立一个完整的、立体的网络及安全防御体系,使网络及安全系统真正获得较好的效果。关键词:局域网网络管理子网划分病毒防护服务器长春理工大学光电信息学院毕业设计AbstractThroughtheanalysisofthestatusofsmallandmedium-sizedenterprisenetwork,theformationofanetworkenvironmentsuitablefortheenterpriseitselfisverynecessary,throughnetworkbuildingdesign,safenetworkconfiguration,networkmanagementschemebasedon,themainuseoftheHTTP,DNS,FTP,usingDHCPservertoachieveaenterprisenetworkaccess,andtheconstructionofasecureschemeforasmallnetwork.Afterthesmallandmedium-sizednetworksystemhasacertainunderstanding,thelocalareanetworkisdividedintothreesecuritylevels,eachofwhichcontainsanumberofsubnetwork,allkindsofsubnetworksetuptheirownsecuritypolicy.Accordingtothegoalofcomputernetworksecuritydesignandtheoverallplanofthecomputernetworksecuritysystem,acomprehensiveanalysisismadeonthecomputernetworksecurityproblem.Accordingtothesecurityrequirementsofeachsecuritylevel,thesecurityschemeofthemediumandsmallscalenetworkisdesigned.Inthepremiseofsatisfyingeachsubnetworksystemconstruction,includingvirusprotection,dynamicpasswordidentityauthentication,securityauditmanagement,accesscontrol,informationencryptionstrategiesandintrusiondetectionsystemdeployment,vulnerabilityscanningsystemmanagementandsafetytechnology,setofsolutionsproposed.Thegoalistoestablishacomplete,three-dimensionalnetworkandsecuritydefensesystem,sothatthenetworkandsecuritysystemtoreallygetbetterresults.KeyWords:LANNetworkmanagementSubnetworkpartitioningVirusprotectionServer长春理工大学光电信息学院毕业设计I目录绪论......................................................................................................................................................1第一章需求分析........................................................................................................................................3第二章网络系统设计................................................................................................................................42.1网络系统设计规划.........................................................................................................................42.1.1网络设计指导原则..............................................................................................................42.1.2网络设计总体目标..............................................................................................................42.1.3网络通信联网协议..............................................................................................................42.1.4网络IP地址规划..............................................................................................................42.1.5网络设备方案设计..............................................................................................................52.2网络拓扑图....................................................................................................................................62.3IP地址规划....................................................................................................................................62.4网络设备选型.................................................................................................................................72.4.1集线器的选型......................................................................................................................72.4.2交换机的选型......................................................................................................................72.4.3路由器的选型......................................................................................................................72.4.4服务器的选型......................................................................................................................7第三章网络安全的方案设计....................................................................................................................83.1中小型公司网络安全系统设计.....................................................................................................83.1.1安全体系结构网络..............................................................................................................83.1.2安全体系层次模型..............................................................................................................83.1.3安全体系设计......................................................................................................................83.2安全产品的配置与应用...............................................................................................................103.2.1防病毒及特洛伊木马软件................................................................................................103.2.2动态口令身份认证方案.................