Presentation is loading. Please wait.

Presentation is loading. Please wait.

Homework 02 Announce: 20090408 Due: 20090420. Requirements Basic firewall settings (40%) Set trusted network 140.113.235.0/24 Allow all connections from.

Published byPriscilla Dorsey Modified over 9 years ago

Similar presentations

Presentation on theme: "Homework 02 Announce: 20090408 Due: 20090420. Requirements Basic firewall settings (40%) Set trusted network 140.113.235.0/24 Allow all connections from."— Presentation transcript:

1 Homework 02 Announce: 20090408 Due: 20090420

2 Requirements Basic firewall settings (40%) Set trusted network 140.113.235.0/24 Allow all connections from these hosts Deny connections from 140.113.24.0/24 Log connections from these hosts Deny ssh bruteforce attack max-src-conn-rate Set up a FTP server inside jail (30%) Set a private address for jail Set NAT for your jail Install a FTP server in the jail Provide service on your public IP, port 21 Client can connect your FTP Setup a proxy with authentication (30%) rdr on em0 proto tcp from ! to any port 3128 -> 127.0.0.1 port 80 2

3 Jail Jail -- imprison process and its descendants jail(8) http://www.freebsd.org/doc/en/books/handbook/jails.html http://lists.freebsd.org/mailman/listinfo/freebsd-jail jail_enable="YES“ jail_list="jail0 jail1 jail2 jail3 jail5“ # jail0 jail_jail0_rootdir="/usr/local/jails/jail0“ jail_jail0_hostname="jail0.lwhsu.csie.net“ jail_jail0_ip="192.168.173.100“ jail_jail0_interface="lo0“ jail_jail0_devfs_enable="YES“ jail_jail0_devfs_ruleset="devfsrules_jail“ jail_jail0_procfs_enable="YES“ jail_jail0_mount_enable="YES" 3

4 Proxy with authentication Install a proxy server www/privoxy www/squid Install a web server & design autnentication procedure Create a simple authentication web page Redirect all un-authenticated client to authentication page Reference: proxy.cs.nctu.edu.tw 4

Download ppt "Homework 02 Announce: 20090408 Due: 20090420. Requirements Basic firewall settings (40%) Set trusted network 140.113.235.0/24 Allow all connections from."

Similar presentations

Caltech Proprietary Videoconferencing Security in VRVS 3.0 and Future Videoconferencing Security in VRVS 3.0 and Future Kun Wei California Institute of.

Caltech Proprietary Videoconferencing Security in VRVS 3.0 and Future Videoconferencing Security in VRVS 3.0 and Future Kun Wei California Institute of.
Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)

Fred P. Baker CCIE, CCIP(security), CCSA, MCSE+I, MCSE(2000)
DMZ (De-Militarized Zone)

DMZ (De-Militarized Zone)
Final Presentation Topics 1) Firewalls 1) Firewalls 2) Virtual Private Networks 2) Virtual Private Networks 3) Secure Socket Layer 3) Secure Socket Layer.

Final Presentation Topics 1) Firewalls 1) Firewalls 2) Virtual Private Networks 2) Virtual Private Networks 3) Secure Socket Layer 3) Secure Socket Layer.
Network Security. Reasons to attack Steal information Modify information Deny service (DoS)

Network Security. Reasons to attack Steal information Modify information Deny service (DoS)
Chapter 7 Firewalls. Firewall Definition  A network device that enforces network access control based upon a defined security policy.

Chapter 7 Firewalls. Firewall Definition  A network device that enforces network access control based upon a defined security policy.
1 Some TCP/IP Basics....NFSDNSTELNETSMTPFTP UDPTCP IP and ICMP Ethernet, serial line,..etc. Application Layer Transport Layer Network Layer Low-level &

1 Some TCP/IP Basics....NFSDNSTELNETSMTPFTP UDPTCP IP and ICMP Ethernet, serial line,..etc. Application Layer Transport Layer Network Layer Low-level &
TCP/IP Network and Firewall. IP Packet Protocol  1 ICMP packet  6 TCP packet  17 UDP packet.

TCP/IP Network and Firewall. IP Packet Protocol  1 ICMP packet  6 TCP packet  17 UDP packet.
Circuit & Application Level Gateways CS-431 Dick Steflik.

Circuit & Application Level Gateways CS-431 Dick Steflik.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.
Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.

Firewall and Proxy Server Director: Dr. Mort Anvari Name: Anan Chen Date: Summer 2000.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
1 Lecture 20: Firewalls motivation ingredients –packet filters –application gateways –bastion hosts and DMZ example firewall design using firewalls – virtual.

1 Lecture 20: Firewalls motivation ingredients –packet filters –application gateways –bastion hosts and DMZ example firewall design using firewalls – virtual.
Network Security With nmap By *** *****. Installing nmap netlab-2# cd /usr/ports/security/nmap netlab-2# make install all.

Network Security With nmap By *** *****. Installing nmap netlab-2# cd /usr/ports/security/nmap netlab-2# make install all.
1 Enabling Secure Internet Access with ISA Server.

1 Enabling Secure Internet Access with ISA Server.
Firewalls CS432. Overview  What are firewalls?  Types of firewalls Packet filtering firewalls Packet filtering firewalls Sateful firewalls Sateful firewalls.

Firewalls CS432. Overview  What are firewalls?  Types of firewalls Packet filtering firewalls Packet filtering firewalls Sateful firewalls Sateful firewalls.
Course 201 – Administration, Content Inspection and SSL VPN

Course 201 – Administration, Content Inspection and SSL VPN
1 Figure 5-4: Drivers of Performance Requirements: Traffic Volume and Complexity of Filtering Performance Requirements Traffic Volume (Packets per Second)

1 Figure 5-4: Drivers of Performance Requirements: Traffic Volume and Complexity of Filtering Performance Requirements Traffic Volume (Packets per Second)
1 ISA Server 2004 Installation & Configuration Overview By Nicholas Quinn.

1 ISA Server 2004 Installation & Configuration Overview By Nicholas Quinn.
Packet Filtering. 2 Objectives Describe packets and packet filtering Explain the approaches to packet filtering Recommend specific filtering rules.

Packet Filtering. 2 Objectives Describe packets and packet filtering Explain the approaches to packet filtering Recommend specific filtering rules.

Similar presentations

Ads by Google