DoS(Denial of Service) is an annoying problem for every famous website all the time. At present, it''s no effective way to defend the DoS attack in our network environment, so it''s often taking the negative way to solve the DoS attack. And the DoS is not only effecting on attack target, it''s also effecting on the equipment and the network flow of packet transmission route to cause not able to provide regular service and result in partial network paralyzed. For this reason, we bring up a new framework to solve the annoying problem in this thesis. As a prerequisite as not to vary on present network protocol and formula, we provide an effective method to reduce the effect from the DoS attack, and we design the punishment and packet trace to alert some administrators who are not concern about network security. Our system is designed the related module by dynamic configure service concept, it can load, unload and modify related module dynamically, and use the plenty phase and distributed analysis way to reduce the efficacy of analysis. System analyzes Dos attack with an emphasis on destination network IP address, it''s different from defense against source network IP address in ordinary tradition way. To analyze destination network IP address can avoid the fake packet source network IP address problem, and the attack target is only a few number in general, so it''s easy to analyze and also avoid losing equipment''s handle ability from analyzing useless section.