Abstract. Currently, the major focus on the network security is securing individual components as well as preventing unauthorized access to network service. In this paper, we propose a network blocking algorithm and architecture, which provides a comprehensive, host-by-host perspective on IP over Ethernet network security. The proposed system is also an effective tool for managing network resources containing IP address, MAC address and hostname, etc. under diverse and complicated network environment. Therefore, we will be able to enhance local network security on the wired and wireless environment with the network resource and security management system based on our proposed framework.