Develop firewall rules, Computer Network Security

Assignment Help:

Question requires you to develop firewall rules based on a fictitious organisation.

Scenario:

You work for a security-conscious company, xC-Cure, who develop encryption technologies for large corporate and defence customers world-wide.  Your role is a junior security specialist and you have recently been asked to plan for the deployment of a new firewall.

The firewall is structured around an external filtering router (using NAT)with three(3) interfaces.  The external (public) interface is Internet facing and has a public IP of 120.9.20.1.  The second interface has an IP of 10.1.0.1 and is the gateway to the DMZ network (10.1.0.0).  The third interface has an IP of 10.2.0.1 and is the gateway to the intranet (10.2.0.0). The firewall also acts as a VPN tunnel server on its public Internet interface.

While certain traffic can flow between the DMZ and the intranet, Internet initiated connections should not enter the intranet.  Two sets of filtering rules are applied:  one for traffic flowing in and out of the Internet interface, another for traffic flowing between the DMZ and the intranet.

The DMZ contains the following servers:

  • A publicSecure Web Server (10.1.0.101) that accepts incoming https connections and makes connections to the Oracle Database inside the Intranet
  • The Mail server (10.1.0.102) that accepts POP3 connections from the intranet and initiates and accepts SMTP connections to the Internet

The Intranet contains the following servers:

  • The Oracle Database Server (10.2.0.10) that accepts SQLNet traffic from the Web Server in the DMZ
  • The Intranet Web Server (10.2.0.11) that accepts HTTP traffic ONLY from within the intranet
  • A File Share Server (10.2.0.12) that accepts SMBtraffic ONLY from with the intranet

 


Related Discussions:- Develop firewall rules

Attacks on wireless network, Q. Attacks on wireless network WSN are vul...

Q. Attacks on wireless network WSN are vulnerable to attacks which compromise the integrity of the WSN nodes by decreasing the nodes' fault tolerance capabilities, data distrib

Linux, Discuss the risks of having a single root user

Discuss the risks of having a single root user

Firewall analysis tools-information security, FIREWALL ANALYSIS TOOLS Th...

FIREWALL ANALYSIS TOOLS There are a number of tools automate remote discovery of firewall rules and assist the administrator in analyzing rules Administrators who feel wary of u

Address resolution with message exchange, ADDRESS RESOLUTION WITH MESSAGE E...

ADDRESS RESOLUTION WITH MESSAGE EXCHANGE An alternative to local calculation is a distributed function. A computer that requires to find an address transmits a message across

Need assignemnt help in information security assignemnt, Need Assignemnt he...

Need Assignemnt help in Information security assignemnt

Military and space technology, crack the secret message and explain how the...

crack the secret message and explain how the code works. The clue is that it has something to do with the computer keyboard. J-Q-H-6 Q-E-F-Q-H-D-3-W 8-H 5-Y-3 7-W-3 9-R--D-9-J

Corresponding access control matrix, Consider a computer system with three ...

Consider a computer system with three users: Alice, Bob and Cindy. Alice owns the file alicerc, and Bob and Cindy can read it. Cindy can read and write the file bobrc, which Bob ow

Fuckkkkk, Ask question #Minimum.. 100 words accepted#

Ask question #Minimum.. 100 words accepted#

Miss, You are an IT Security administrator in a banking organization. Your ...

You are an IT Security administrator in a banking organization. Your organization hired an outside IT firm to do a proof of Concept for new equipment which is a computer based syst

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd