分散式阻斷攻擊(DDoS attack, Distributed Denial of Service attack)為網路上多年來盛行的一種攻擊方式,也發展出各式各樣的防禦機制,本篇論文針對 DDoS 防禦機制「即時流量轉移機制」,為 proxy 端建立一套入侵偵測系統(IDS, Intrusion Detection System),透過建立 IP 地址白名單並嘗試去除潛藏在轉移流量當中的攻擊者來保護 被轉移的連線。;DDoS (Distributed Denial of Service) attack has been prevalent on the Internet for many years and various defense mechanisms have emerged against DDoS attack. This thesis aims at building an IDS (Intrusion Detection System) for the proxy side of the DDoS defense mechanism “Real-time path transmission of TCP connections”. We protect the transmitted TCP connections by building an IP allow list and trying to detect and remove the attackers that hidden in the transmitted TCP connections.
