CS 646-Network Protocols Security

Assignment

Task 1 – Basic Configuration: 

Download and install two instances of pfSense in a virtual environment (https://www.pfsense.org/download/) 

Download and install two instances of your favorite Linux distribution in a virtual environment The server should have a web server and SSH server installed and operational 

Configure the virtual networks and associated network interfaces as per the diagram 

Task 2 – Basic Security Configuration: 

Configure access rules on both firewalls so that the client can connect to the server on TCP/80 but cannot access SSH. (If you don’t have a GUI installed on the Client, you can use Lynx) 

Configure access rules on the Site B Firewall so that no unsolicited connections can be made from the Server network to the Client network. 

*Note: the client and server will be able to communicate because we are using a private address range for the outside network (e.g. the “Internet”). In the “real world” the ISP would refuse to carry the packets from either site because they are using RFC1918 private IP addresses. To make this work, we need to configure NAT. 

Task 3 – Basic Network Address Translation (NAT) Configuration: 

Configure NAT rules on the site A firewall so that packets from the inside interface have their source addresses translated to the IP address of the outside interface. Also configure NAT rules on the site B firewall so that the server is “published” to the IP address of the outside interface. That is, the client will now be connecting to port 80 of the IP address of the outside interface of the site B firewall, not the server’s IP. Remember, in the real world, the client network and the server network use private IP addresses. The server won’t be reachable and therefore will need to have its IP address mapped to an IP address that is routable on the Internet. Show a packet trace from the server that shows that arriving packets have the source address of the outside interface of the site A firewall and not the address of the client. Show a packet trace from the client that shows an established connection HTTP connection to the site B firewall’s outside interface. You can introduce an additional virtual machine between the two firewall’s outside interfaces specifically for the purpose of packet tracing, or you can use the built-in firewall tools. 

Task 4 – Basic Site-to-Site VPN Configuration: 

Modify your configuration so that both the client network and the server network can communicate using IPsec. That is, establish a VPN tunnel between the site A and site B firewalls. Communication between the client and server should be carried through this tunnel. Use the strongest available security settings for both security associations. Provide screenshots and packet traces to prove that your VPN is operating properly. 

StudyAcer
Calculate your paper price
Pages (550 words)
Approximate price: -
StudyAcer

Quality Researched Papers

We always make sure that writers follow all your instructions precisely. You can choose your academic level: high school, college/university or professional, and we will assign a writer who has a respective degree.

StudyAcer

Qualified Writers

We have hired a team of professional writers experienced in academic and business writing. Most of them are native speakers and PhD holders able to take care of any assignment you need help with.

StudyAcer

Unlimited Revisions

If you think we missed something, send your order for a free revision. You have 10 days to submit the order for review after you have received the final document. You can do this yourself after logging into your personal account.

StudyAcer

Prompt Delivery

All papers are always delivered on time. In case we need more time to master your paper, we may contact you regarding the deadline extension. We will always strive to deliver on time.

StudyAcer

Original & Confidential

We use several writing tools checks to ensure that all documents you receive are free from plagiarism. Our editors carefully review all quotations in the text.

StudyAcer

24/7 Customer Support

Our support agents are available 24 hours a day 7 days a week and committed to providing you with the best customer experience. Get in touch whenever you need any assistance.

Try it now!

Calculate the price of your order

Total price:
$0.00

How it works?

Follow these simple steps to get your paper done

StudyAcer

Place your order

Fill in the order form and provide all details of your assignment.

StudyAcer

Proceed with the payment

Choose the payment system that suits you most.

StudyAcer

Receive the final file

Once your paper is ready, we will email it to you.

Academic Writing Services

If you are looking for exceptional academic writing services, then you are in the right place. Studyacer offers customised academic assignments and academic papers for students at all levels.

StudyAcer StudyAcer

Essays

Essay Writing Help

Writing an essay can be a challenge. However, we know what every student needs. And we purpose to deliver. Here at StudyAcer, we do all we can to help with academic essays and assignments. We have a dedicated team of professional essay writers.

StudyAcer StudyAcer

Assignment

Assignment Help

We understand students need satisfactory results. Our cheap assignment writing service helps and never leaves any doubt. We always strive to ensure the ultimate and best results. It is our joy to offer a cheap reliable essay writing service.

StudyAcer StudyAcer

Term paper

Term Paper Help

Have you been asking yourself, where can get a pre written research papers for sale? Worry no more, the fact that you have a term paper that is due tonight and you haven’t touched it. At Study Acer it is our responsibility to get your paper on time.

StudyAcer StudyAcer

Dissertation

Dissertation Writing Service

Several master’s students seek professional help with their thesis.Students from different parts of the world experience different challenges. Dissertations have different stages and the challenges are different too. Do not struggle in silence, order now .