中文摘要：

针对目前网关产品功能相对单一以及大多防火墙仅能执行网络中低层安全业务的现状和不足，将多核网络处理器和多核通用处理器有机结合，并通过廉价的交换结构和PCIE总线实现两者之间的高速互连通信，最终整合防火墙、防DDoS攻击、内容过滤、防病毒、防蠕虫和反垃圾邮件等多种网络安全功能于一身，设计并实现了一款综合安全网关产品。实验结果表明，设计的综合安全网关在吞吐量、传输延迟以及防攻击能力等多个指标上均有较好的性能表现。

英文摘要：

The performance of the current gateway product is simple, and the majority of firewalls can only be used to deal with the security tasks in the low level of networks. Aiming at the above issues, the multi-core network processor and multi-core general processor are combined, and the cheap switching fabric and PCI express bus are adopted to achieve the efficient connection and communication between them. Then, a large number of security services, such as firewall, anti-DDos attack, content filtering, anti-virus, anti-worm, anti-spare, as well as many other network security functions are integrated in one product, and finally a comprehensive security gateway is designed and implemented. The experimental results demonstrate that the designed security gateway product is efficient in network throughput, transmission delay, and anti-attack capability.