出版的《Linux Firewalls and QoS》完整书名为《Designing and Implementing Linux Firewalls and QoS using netfilter, iproute2, NAT, and L7-filter》。出版日期October 2006。作者:Lucian Gheorghe
About the Author
Lucian Gheorghe has just joined the Global NOC of Interoute, Europe's largest voice and data network provider. Before Interoute, he was working as a senior network engineer for Globtel Internet, a significant Internet and Telephony Services Provider to the Romanian market. He has been working with Linux for more than 8 years putting a strong accent on security for protecting vital data from hackers and ensuring good quality services for internet customers. Moving to VoIP services he had to focus even more on security as sensitive billing data is most often stored on servers with public IP addresses. He has been studying QoS implementations on Linux to build different types of services for IP customers and also to deliver good quality for them and for VoIP over the public Internet. Lucian has also been programming with Perl, PHP, and Smarty for over 5 years mostly developing in-house management interfaces for IP and VoIP services.
翻译时,只求达意。
本翻译纯属个人兴趣,水平有限,欢迎高手指正,同时禁止有商业目的的转载。
目录第1章 网络基础 OSI模型 TCP/IP模型 比较OSI与TCP/IP IP地址、IP子网和IP超级网 互联网工作原理第2章 安全威胁 第1层安全威胁 第2层安全威胁 第3层安全威胁 第4层安全威胁 第5、6、7层安全威胁第3章 必要利器:netfilter和iproute2 netfilter/iptables iproute2和通讯控制第4章 用iptables实现NAT和伪装包 简介NAT和PAT(NAPT) 用iptables实现NAT 用iptables实现伪装包第5章 第7层过滤 何时使用第7层过滤 第7层过滤工作原理 第7层过滤应用 IPP2P:一个P2P匹配选项 比较IPP2P和第7层过滤第6章 研究小型网络事例
Linux用作家用路由
Linux用作中小企业的路由
第7章 研究中型网络事例
例1:有异地办公场所的公司
例2:典型的小型ISP
第8章 研究大型网络事例
考虑大型层模型
大型网络实例
2008/07/07 16:06 ..by 
