中文摘要：

提出一种通过防火墙实现数据包加密与解密的自主式主机接入控制方法,它利用NDIS过滤驱动技术实现个人版防火墙功能,易于在高低端网络环境中实现主机的接入控制。这种接入控制方法具有通用性好、安全性高、可控性强和扩展性好的特点,其目的是当主机接入时阻止非法（未授权）主机接入安全内网,减少丢包现象,提高系统转发速度。实验表明了该方法的有效性。

英文摘要：

The paper presents an independent host access control method to realize packet encryption and decryption based on firewall.It realizes personal firewall function using NDIS filter driver technology,and it is easy to realize the access control in high performance or simple network environment.The access control method has good universality,high safety,strong controllability and good scalability characteristics,and its purpose is to prevent illegal（unauthorized） host access security network,reduce the packet loss,and improve the system of transfer rate when the host access network.The experimental results show that this method contributes to improve the stability of system and reduce the illegal access during the encryption and decryption process.