| 摘要 |
The invention relates to a method and an apparatus for filtering network traffic and for monitoring a filtering functionality of a network filtering device by means of a network filtering device at a coupling point between a first network and a second network. In this case, two units are serially set up with the same, partially identical or similar filter rules. The second unit checks the data packets which have already been filtered by the first unit again and triggers an alarm as soon as said second unit receives a data packet which should have already been filtered out by the first unit. This means particularly secure coupling of data networks since the first network and the second network are connected to two serially operated units, which are firewalls in particular, with the same filter rules or sets of rules. |
