As the Internet increasingly is developed, people have needed increasingly the services of network, and network security is the one of the important issues for people. The prevention of network security is also the administrator’s responsibility. Therefore, the purpose of this thesis through the neural network learning model on linux web server log can be classify normal and dangerous behavior, and further improve the prevention of network security. This thesis’s experiment has included the learning process of neural network, and firewall blocking dangerous behavior . First , web server log will be converted to numeric values. Second, back-propagation neural network will be trained and learned, and be verified the accuracy of the learning mode to identify the most suitable neural network learning mode in this paper.Then the filtering firewall add the ip of the ricky behavior to block , and the server can be reached to maintain the network security. This paper is the analysis of web server log to achieve the management of the server’s network security. The way makes the system manager control the server security easily, and reduce the possibility of the problem of network security occurred.