基于P2P技术的VPN研究与设计
发布时间:2018-09-09 18:50
【摘要】:随着全球经济一体化的逐步深入,企业分支愈发庞大,各企业间合作也越来越紧密,所以在公网对企业内部的数据进行访问频率日益加强。而在这一过程中,对于企业内部隐私数据的保护尤为重要,现在大部分企业都采用.VPN的形式保证信息的安全,但是移动互联网时代即将到来,移动办公的数据量将激增。传统的VPN中,所有的通信数据都是基于网关服务器转发的方式完成,面对日益扩大的数据量,网关势必成为瓶颈。 本文在研究P2P网络模型的基础上,将分布式的网络架构引入VPN中,一改由单一网关服务器转发的模式,使网络中的各个节点都可在安全的环境下进行点对点的通信。同时,由于当前的绝大部分P2P应用都是在应用层实现了Peer-to-Peer的网络,而且协议只针对自身的业务,因此,多重的P2P网络带来了巨大的开销,浪费了用户终端的硬件及带宽等资源。 本文在研究VPN技术、P2P网络模型和关键技术的基础上,详细设计了一种基于P2P网络模型的VPN,通过P2P技术搭建一个通用的Peer-to-Peer的网络,通过虚拟网卡的方式在每个节点为上层应用提供松耦合的接口,当前的P2P应用不必再花费资源去实现网络的互通,只需针对自身业务做好应用层的服务,将业务数据通过虚拟网卡交由P2P网络进行传送,辅以本文中VPN提供的网络的管理、监控功能,创建一个P2P应用的安全生的态系统,减小了多重网络的额外开销。 本文在上述研究的基础上,详细描述了基于P2P技术的VPN的设计过程,并对其关键点进行了详细分析及实现,随后搭建了实际测试环境,针对网络中的主要性能指标时延和带宽进行了测试,通过结果对本文提出的VPN进行了分析,给出了基本的结论。
[Abstract]:With the deepening of global economic integration, the branches of enterprises are becoming more and more large, and the cooperation among enterprises is becoming closer and closer. Therefore, the frequency of accessing the internal data of enterprises in the public network is increasing day by day. In this process, the protection of privacy data is particularly important. Now most enterprises use the form of .VPN to ensure the security of information, but the era of mobile Internet is coming, and the amount of mobile office data will surge. In the traditional VPN, all the communication data is based on the way of gateway server forwarding. In the face of the increasing amount of data, the gateway is bound to become the bottleneck. Based on the research of P2P network model, this paper introduces the distributed network architecture into VPN, and changes the mode of forwarding by single gateway server so that each node in the network can communicate point-to-point in a secure environment. At the same time, because most of the current P2P applications implement the Peer-to-Peer network in the application layer, and the protocol is only aimed at its own business, the multi-layer P2P network brings huge overhead and wastes the hardware and bandwidth of the user terminal. Based on the research of P2P network model and key technologies of VPN technology, a VPN, based on P2P network model is designed in detail to build a general Peer-to-Peer network through P2P technology. Through the virtual network card to provide loosely coupled interface for the upper application in each node, the current P2P application does not need to spend resources to realize the interworking of the network, but only need to do well the service of the application layer for its own business. The service data is transferred to the P2P network through the virtual network card, and with the network management and monitoring function provided by VPN in this paper, a secure state system of P2P application is created, which reduces the extra cost of the multiplex network. On the basis of the above research, the design process of VPN based on P2P technology is described in detail, and the key points are analyzed and implemented in detail. The delay and bandwidth of the main performance indicators in the network are tested, and the VPN proposed in this paper is analyzed through the results, and the basic conclusions are given.
【学位授予单位】:北京邮电大学
【学位级别】:硕士
【学位授予年份】:2014
【分类号】:TP393.02
本文编号:2233263
[Abstract]:With the deepening of global economic integration, the branches of enterprises are becoming more and more large, and the cooperation among enterprises is becoming closer and closer. Therefore, the frequency of accessing the internal data of enterprises in the public network is increasing day by day. In this process, the protection of privacy data is particularly important. Now most enterprises use the form of .VPN to ensure the security of information, but the era of mobile Internet is coming, and the amount of mobile office data will surge. In the traditional VPN, all the communication data is based on the way of gateway server forwarding. In the face of the increasing amount of data, the gateway is bound to become the bottleneck. Based on the research of P2P network model, this paper introduces the distributed network architecture into VPN, and changes the mode of forwarding by single gateway server so that each node in the network can communicate point-to-point in a secure environment. At the same time, because most of the current P2P applications implement the Peer-to-Peer network in the application layer, and the protocol is only aimed at its own business, the multi-layer P2P network brings huge overhead and wastes the hardware and bandwidth of the user terminal. Based on the research of P2P network model and key technologies of VPN technology, a VPN, based on P2P network model is designed in detail to build a general Peer-to-Peer network through P2P technology. Through the virtual network card to provide loosely coupled interface for the upper application in each node, the current P2P application does not need to spend resources to realize the interworking of the network, but only need to do well the service of the application layer for its own business. The service data is transferred to the P2P network through the virtual network card, and with the network management and monitoring function provided by VPN in this paper, a secure state system of P2P application is created, which reduces the extra cost of the multiplex network. On the basis of the above research, the design process of VPN based on P2P technology is described in detail, and the key points are analyzed and implemented in detail. The delay and bandwidth of the main performance indicators in the network are tested, and the VPN proposed in this paper is analyzed through the results, and the basic conclusions are given.
【学位授予单位】:北京邮电大学
【学位级别】:硕士
【学位授予年份】:2014
【分类号】:TP393.02
【参考文献】
相关期刊论文 前10条
1 侯锡柱,马跃,陈立南;H.323协议跨越NAT网关的研究[J];北京邮电大学学报;2005年02期
2 陈全;邓倩妮;;云计算及其关键技术[J];计算机应用;2009年09期
3 倪剑虹,吕光宏;基于VPN的不同实现方式的技术研究[J];计算机应用研究;2005年07期
4 吴大刚,肖荣荣;C/S结构与B/S结构的信息系统比较分析[J];情报科学;2003年03期
5 张洁;朱丽娟;;DES加密算法分析与实现[J];软件导刊;2007年03期
6 彭英慧;刘海丰;;基于PKCS#12证书身份认证系统的实现[J];计算机工程与设计;2009年08期
7 刘传领;范建华;;RSA非对称加密算法在数字签名中的应用研究[J];通信技术;2009年03期
8 杨万云;张继棠;;NAT原理以及在VxWorks上的实现[J];中国新通信;2007年01期
9 孙知信;骆冰清;陈亚当;卜凯;;一种基于多维DHT空间映射的P2P安全拓扑方案[J];中国科学(信息科学);2013年03期
10 李宝莲;路瑜亮;;基于SQL Server应用的大数据量实时处理[J];无线电工程;2007年03期
相关博士学位论文 前1条
1 何倩;P2P系统性能优化若干关键技术研究[D];北京邮电大学;2010年
,本文编号:2233263
本文链接:https://www.wllwen.com/guanlilunwen/ydhl/2233263.html
