Make a screen capture showing your firewall rules that permit IPsec traffic.
Added by Mariano R.
Step 1
To create a screen capture showing your firewall rules that permit IPsec traffic, follow these steps: Show more…
Show all steps
Your feedback will help us improve your experience
Akash M and 63 other AP CS educators are ready to help you.
Ask a new question
Labs
Want to see this concept in action?
Explore this concept interactively to see how it behaves as you change inputs.
Key Concepts
Recommended Videos
5. We will practice firewall configuration in this task. You want to configure a firewall for your home network. In Zone 2, you've got one Web server (131.159.20.1) on TCP ports 80 and 443, and one mail server (131.159.20.2) on TCP port 25. Your home users reside in Zone 1. Your security policy is as follows: 1. Your home users may freely access any Web service, anywhere, on ports 80 and 443, but only if they initiate the connection themselves i.e. they are allowed to browse the Web. No one outside Zone 1 can initiate connections to Zone 1 on any port. 2. Everyone, including the Evil Internet, can access the Web (both ports) and mail in Zone 2. However, no host in Zone 2 can initiate connections anywhere else. You can use zone names instead of IP ranges. Use 'Ext' if you want to refer to the Evil Internet. To indicate directions, note it in the style of 'Zone1-Zone2'. Complete the table below to define firewall configuration for the given scenario. Direction | Src IP | Dst IP | Protocol | Src Port | Dst Port | Action
Akash M.
(50 pts) Firewalls - iptables is a simple Linux-based firewall utility -- https://www.howtogeek.com/177621/the-beginners-guide-to-iptables-the-linux-firewall/. http://ipset.netfilter.org/iptables.man.html is a good place to find the options for iptables. Iptables is like most other Linux CLI utility programs in that the specific instruction executed is defined by the arguments applied to command line options. Using the iptables CLI, a user with administrator-level privileges can establish firewall rules to accept (ACCEPT) or reject (DROP) inbound (INPUT) and outbound (OUTPUT) traffic based on: - protocol (using the '-p' option), e.g. -p tcp - IP address (using the "-s" option), e.g., --s 10.2.0.2 - port number (using the --dport option), e.g., --dport http - interface (using the --i option), e.g., -i eth0 and other criteria. For instance, the command: iptables -A INPUT -s 10.10.10.X -j DROP specifies that the firewall is to reject all inbound traffic from 10.10.10.X. The -A option specifies the direction of the traffic that applies to the rule (INPUT or OUTPUT), while the -j option specifies the action, whether to ACCEPT or DROP. The iptables program also allows you to specify a default policy and view the current list of active firewall rules. For instance, iptables --policy INPUT DROP establishes a default reject policy for inbound traffic. More specific rules take precedence, but if no matching rule is found, then the default policy applies. Log in to your system (the same one from the first exercise) with the credentials provided and use the command line interface (CLI) for iptables to do the following: a. List the iptables firewall rules as they currently exist. What command did you issue to do this? What effect do the rules have? Save and submit the output. b. Add a rule to block echo requests (pings). What command did you issue to do this? Save and submit the output (an updated list of the firewalls).
Recommended Textbooks
Computer Science and Information Technology
Introduction to Programming Using Python
Computer Science - An Overview
18,000,000+
Students on Numerade
Trusted by students at 8,000+ universities
Watch the video solution with this free unlock.
EMAIL
PASSWORD