Abstract: Under the new situation that the country and society attach great importance to network security, railway enterprises continue to strengthen the construction of network security protection capacity. Facing the new situation and new problems of network security, this paper, starting from the general requirements of railway network security protection, preliminarily studied three aspects: strengthening Internet access and Internet application management, strengthening depth defense of network security, strengthening active defense of network security, and established a comprehensive railway network security protection strategy framework around the above three aspects. It is of great significance to enhance railway network security defense capability.