【正文】 i 基于 IPSec協(xié)議的 Linux VPN 網(wǎng)關(guān)平臺 摘要： 因特網(wǎng)協(xié)議安全 (IPSec)是一系列建立在網(wǎng)絡(luò)層最頂端的協(xié)議，通常被用來建立虛擬隧道，最廣為人知的是虛擬專用網(wǎng)絡(luò) (VPN)。虛擬專用網(wǎng)絡(luò) (VPN)在公共網(wǎng)絡(luò)，如因特網(wǎng)中擴展出一個私有網(wǎng)絡(luò)。它使計算機通過共享的或公共的網(wǎng)絡(luò)來發(fā)送和接收數(shù)據(jù) ,就好像它是直接連接到私有網(wǎng)絡(luò) ， 而且受益于私有網(wǎng)絡(luò)的功能性、安全性和管理政策。 本次課題中， 論文 首先對 IPSec VPN 的背景和原理進(jìn)行了一些簡單的介紹，接著 論文 介紹了 VPN 網(wǎng)關(guān)實現(xiàn)的具體步驟及功能。 本次課題 使用了 Linux 系統(tǒng)這個免費開源的平臺用 來作為 VPN 網(wǎng)關(guān)。通過在一個 Linux 系統(tǒng)上搭建 VPN 服務(wù)器來充當(dāng) VPN 網(wǎng)關(guān)并采用了 xl2tp 協(xié)議進(jìn)行數(shù)據(jù)傳輸，在另一個 Linux 系統(tǒng)上搭建 web 以及 ftp 服務(wù)用來充當(dāng)私有網(wǎng)絡(luò)。最后用一臺 Windows 充當(dāng)公共網(wǎng)絡(luò)中的一臺主機，通過撥號直接連入 VPN 網(wǎng)關(guān)，對私有網(wǎng)絡(luò)的 web 以及 ftp 實現(xiàn)訪問。 本次課題的成功展示出了 IPSec VPN 在傳輸數(shù)據(jù)方面的 良好的安全性、網(wǎng)絡(luò)功能和管理性能 ，同時也展現(xiàn)出了 IPSec VPN 良好的 研究應(yīng)用價值和開發(fā)前景 。 關(guān)鍵字： Linux； 虛擬專用網(wǎng)絡(luò) ； IPSec；網(wǎng)關(guān)； xl2tp ii Linux VPN gateway platform based on IPSec protocol Abstract: Inter Protocol Security (IPsec) is a set of protocols which sit on top of the Inter Protocol (IP) layer, it is used to build virtual tunnels, monly known as Virtual Private Networks (VPNs). A virtual private Network (VPN) extends a private work across a public work, such as the Inter. It enables a puter to send and receive data across shared or public works as if it were directly connected to the private work, while benefiting from the functionality, security and management policies of the private work. In this topic, the thesis simply introduced the background and principle of IPSec VPN, and then introduced the concrete steps to implement VPN gateway and the function of VPN gateway. Linux system, the free, open source platform was used for VPN gateway in the topic. The VPN server was set up on a Linux system to act as the VPN gateway and adopted xl2tp protocols for data transmission, and then another Linux system was used to build web and FTP service to act as a private work. Finally a Windows system was built to act as the host of the public work, achieving access to web and FTP service of the private work by dialing directly connected to the VPN gateway. This topic successfully showed the good security, powerful work function and high performance of management, it also showed that IPSec VPN is valuable in advanced research and development. Keywords: Linux。 VPN。 IPSec。 gateway。 xl2tp iii 目錄 摘要 .............................................................................................................. 錯誤 !未定義書簽。 Abstract ....................................................................................................... 錯誤 !未定義書簽。 目錄 ............................................................................................................................................ iii 1 緒論 ..................................................................................................................................... 1 基于 IPSEC 協(xié)議的 VPN 概述 ...................................................................................... 1 IPSec VPN 的定義 .................................................................................................. 1 IPSec VPN 的優(yōu)缺點 .............................................................................................. 2 VPN 的發(fā)展趨勢 ............................................................................................................ 4 IPSEC VPN 的基本 原理 ................................................................................................. 5 IPSec 的基本原理 ................................................................................................... 5 VPN 的基本原理 .................................................................................................... 5 2 IPSec VPN 系統(tǒng)的 實現(xiàn)過程及具體設(shè)計 ......................................................................... 7 IPSEC 協(xié)議的實現(xiàn) .......................................................................................................... 7 VPN 的實現(xiàn) .................................................................................................................... 8 本次課題的基本實現(xiàn)功能及簡要 說明 ......................................................................... 9 本次課題的網(wǎng)絡(luò)拓?fù)鋱D ......................................................................................... 9 本次課題實現(xiàn)的基本流程和功能 ....................................................................... 10 3 基于 IPSec VPN 的 Linux 網(wǎng)關(guān)平臺的實現(xiàn) .................................................................. 11 LINUX 系統(tǒng)的簡介 ........................................................................................................ 11 LINUX 操作系統(tǒng)的搭建 ................................................................................................ 12 安裝 VMware ........................................................................................................ 12 VMware 虛擬機主要的功能 ................................................................................ 12 利用虛擬機安裝多臺操作系統(tǒng) ........................................................................... 13 VPN LINUX 網(wǎng)關(guān)平臺的配置與搭建 .......................................................................... 14 進(jìn)入 VPN Linux 系統(tǒng) .......................................................................................... 14 基于 IPSec VPN 網(wǎng)關(guān)平臺的安裝 ....................................................................... 15 內(nèi)網(wǎng) web 和 ftp 服務(wù)的安裝與配置 .................................................................... 20 4 本次 課題實驗環(huán)境測試 ................................................................................................... 24 本次課題實驗環(huán)境介紹 ............................................................................................... 24 本次課題實驗環(huán)境測試 ............................................................................................... 26 總結(jié) ............................................................................................................................... 31 5 致謝 ................................................................................................................................... 32 6 參考文獻(xiàn) .................................................................