Reference no: EM132882802
Operating Systems & Architecture and Networking and Virtualization
Assessment - Proof of Concept Linux Virtual Network Project
Learning Outcome 1: Develop professional system administrators, capable of maintaining modern business IT architectures.
Learning Outcome 2: Enable graduates to secure IT infrastructures against modern and future security risks.
Learning Outcome 3: Develop learner self-reliance and initiative in the provision of professional system configuration consultancy.
Scenario & Proof of Concept overview:
You have started a new role in an ICT consultancy company named ‘Consult & Connect Ltd'. The company provides networking consultancy services for companies located in Ireland. Your first proof of concept project is to create a virtualized Linux network infrastructure based on a new third level college's network - the name of the college is Dublin City College (DCC). DCC have instructed you to create a virtualized environment whereby they can achieve a sense of how their new network & services will behave.
Assignment overview
This assignment will help assess your understanding of virtualized network services such as SSH and other network services. Remember you are a consultant, so you need to justify your work to DCC (in certain sections). These activities will require some research and troubleshooting so be prepared for this!
Overview of requirements: The proof of concept is divided into a number of parts:
• Use VirtualBox software to build a small client-server network
• One Ubuntu Server 20.04 and one Ubuntu 20.04 Desktop or Server 20.04 acting as client (note using Ubuntu Server for both client and server will require less RAM)
• Install the Apache web server on the Ubuntu Server - create a Dublin City College ‘Under Construction' webpage
• Install an SSH client on your host OS to act as a client to login to the Ubuntu Server utilising SSH over the virtual network
• Use Wireshark to monitor traffic
• Rename the hostname(s) of both VMs and user management as specified below
• Firewall configuration as specified below
• Further research tasks as described by DCC below
Specific Requirements
Using virtualization software, install the Linux Server Operating System into two virtual machines using the Ubuntu Server 20.04 ISO disk image. You will need to have two network adapters on each of the Linux computers used for this project so be sure to include them both when installing the OS. Install both VMs with two NICs (Adapter 1 should be NAT and Adapter 2 should be Host-only Adapter) setting.
Note: if you have issues with Adapter 2 VirtualBox Adapter, try using Adapter 3 instead.
PART 1: Virtual Linux Network and Web server setup
You have been contracted by Dublin City College (DCC) to install a prototype Linux Client- Server Web environment.
ubuntuserver (the Web server) will host a simple DCC web page that you will create.
ubuntuclient (the Web client) will test that the Webserver by using a simple text-based web browser or normal browser to view the DCC web page. You will also access this using your host OS (either Windows or MacOS or Linux).
Name the first computer ubuntuserver and name the second computer ubuntuclient.
Once the OS are installed you need to configure the network adaptors and change the network settings so that the two machines have network connectivity. Note the adapters refer to VirtualBox network adapters. Also ensure to turn off the VirtualBox DHCP server for the host-only network.
The connectivity must include the ability of each computer to PING the other computer and for each computer to have Internet connectivity. For the host-only adapter, initially use temporary network configurations, you can use the ip command. The ip command allows you to configure settings which take effect immediately, however they are not persistent and will be lost after a reboot. Next, create a web server and web client on the two computers.
ubuntuserver IP addressing: [Adapter1 should be on NAT and adapter2 should be on Host-Only]
Adapter 1(enp0s3): address will be obtained from internal DHCP server (most likely 10.0.2.15)
Configure the Adapter 2(enp0s8): IP = 192.168.56.50 / Subnet Mask = 255.255.255.0
ubuntuclient IP addressing: [Adapter1 should be on NAT and adapter2 should be on Host-Only]
Adapter 1(enp0s3): address will be obtained from internal DHCP server (most likely 10.0.2.15)
Configure Adapter 2(enp0s8): IP = 192.168.56.60 / Subnet Mask = 255.255.255.0
Once the two VMs are installed, install Apache on the server computer and install a text- based browser such as Lynx onto the client computer.
For the server use Apache software. For the client use a web browser or if you are using an Ubuntu Server to act as a client use the Lynx text-based browser.
Use a Linux text editor such as nano to edit the /var/www/html/index.html file. This file contains the default Apache web server test page. Your supervisor at DCC needs you to edit this page and modify it so that it displays an ‘DCC Under Construction' page along with your name and student number. The page should no longer display any of the text information referring to Apache.
PART 1: Evidence (print screens)
1. Obtain Linux updates - Update and upgrade the system using the relevant commands.
2. Test Connectivity between both systems by pinging each IP address (192.168.56.x).
3. Using the client, test access to the Apache home page by opening a browser on the Linux client (e.g.lynx) and accessing the home page on the Ubuntu server.
4. Using your host operating system, test access to the Apache home page by opening a web browser and accessing the home page on the Ubuntu server.
5. Utilizing Wireshark on your host operating system, identify the TCP 3-way handshake between your browser on your host operating system and the ubuntuserver webserver.
6. Utilizing Wireshark on your host operating system, ensure to take a print screen of the packet that shows the HTTP contents (webpage) being transferred from the ubuntuserver server to client (your host operating system).
PART 2: SSH
DCC would like you to install OpenSSH on the ubuntuserver. OpenSSH is a freely available version of the Secure Shell (SSH) protocol family of tools for remotely controlling or transferring files between computers.
Install the OpenSSH server on the ubuntuserver only. PART 2: Evidence (print screens)
7. Show a print screen of your host operating system (e.g. Windows-via Putty or MacOS via Terminal) logging into the ubuntuserver using SSH.
8. Utilizing Wireshark on your host operating system, PING the virtual server's IP address from your host machine to show the traffic of the ICMP communication
Utilizing Wireshark on your host operating system, show how the communication is encrypted between your client operating system and the ubuntuserver.
Ensure to take a print screen of a packet that shows the SSH encrypted traffic.
PART 3: HOSTNAME MANAGEMENT, IP ADDRESS MANAGEMENT & USER MANAGEMENT
3a) Rename hostname(s) of Linux servers
DCC needs you to rename ubuntuserver. Give it the new name web-server-your last three digits of your student number. For example, if my student number were SB2012123 I would rename the hostname of my ubuntuserver to web-server-123
You also need to rename ubuntuclient. Give it the new name web-client-123 Note: the 123 is last 3 digits again of your student number.
3b) IP Address management
DCC needs you to make some additional configuration changes. The IP addressing that you have used has assigned temporary IP addresses to Adapter2 (enp0s8) on both Linux Servers and these addresses ‘go away' when the system is restarted. They have requested that you configure both servers to have static IP addresses. You will need to do research regarding how to do this. Once you have figured out how to solve this configuration challenge, make the necessary changes needed so that the IP addresses remain configured.
Document your research and the results that you obtained.
web-server-123 Adapter 2(enp0s8): IP = 192.168.56.10 / 24 web-client-123 Adapter 2(enp0s8): IP = 192.168.56.20 / 24
Please show that the two Linux Servers have connectivity to each other through the network. Also show that the two Linux Servers have connectivity to the Internet through the network.
3c) User management
Create TWO new user accounts, one named mary and the other called bob in the webserver and create a password of password123 for both. Ensure to do this using the command line (Notice the use of lower case for the usernames).
Test login using mary's account. PART 3: Evidence (print screens)
9. Show a print screen of configuration of the ubuntu servers permanent names
10. Show a print screen of configuration of the two servers permanent IP addresses
11. Show a print screen of the user mary logged in.
PART 4: FIREWALL
The default firewall configuration tool for Ubuntu is Uncomplicated Firewall (ufw).
ufw provides a user-friendly way to create an IPv4 host-based firewall. ufw by default is initially disabled.
PART 4: Evidence (print screens)
12. Show a print screen of the SSH not being permitted.
13. Show a print screen of HTTP traffic not being permitted.
14. Show a print screen of SSH being allowed but all other traffic denied.
PART 5: RESEARCH AND CHALLENGE ACTIVITIES
[IMPORTANT NOTE: Below questions are distinction criteria. It is recommended that you only attempt these when all of the above tasks are complete]
Using Linux, requires the user to constantly look things up!
These items require you to research. You must include references and do your own work!
15. Allow SSH connections from the web-client using no passwords - log directly in (use SSH key authentication - public and private key encryption). Explain the benefits of using SSH key authentication rather than password based authentication.
16. One of the most common ways to network Ubuntu and Windows computers is to configure Samba as a File Server. Install the SAMBA server on the webserver and take a print screen so the server is configured to share files with any client on the network without prompting for a password.
17. DCC would like advice and help with automating backing up their webserver (Apache) files. Create a short bash shell script and outline any best practices that you could use to automate the script execution.
PART 5: Evidence (print screens)
For questions 15, 16, 17, ensure to provide evidence (print screens) for each task. Finally, ensure to use references for each of the sources that you used to find this information.
Attachment:- Operating Systems and Architecture.rar