[14 Marks Total] As a system/network engineer you have been asked to create a firewall ruleset for a Server. The server

[answerhappygod]

14 Marks Total As A System Network Engineer You Have Been Asked To Create A Firewall Ruleset For A Server The Server 1 (132.78 KiB) Viewed 22 times

[14 Marks Total] As a system/network engineer you have been asked to create a firewall ruleset for a Server. The server offers the following services and characteristics: Operating system: Ubuntu 20.04.2 LTS Server's IP address: 10.10.4.1/24 Services: SSH, Apache and PureFTPd Other Information: Clients' networks: 10.10.5.0/24, 10.10.6.0/24, 10.10.7.0/24, 10.10.8.0/24 Update server: us.archive.ubuntu.com Port 80 a. Provide service for clients' incoming FTP requests. b. Provide service for clients' incoming HTTP and HTTPS requests. Drop inbound traffic to port 80 (http) from source ports less than 1024. c. Protect the server against ICMP ping flooding. d. Provide remote SSH service for administrator from a remote system with an IP address of 10.10.8.1/24 e. Protect the server against SSH dictionary attack. f. Drop all incoming packets from reserved port 0 as well as all outbound traffic to port 0. g. The server is not allowed to create any new outgoing connections, except for the download and installation of security updates. A. [7 Marks] Create a firewall policy table for the server with the given information. Use the template below. No Transport Protocol Dest. Source Dest. Action Source IP/Network Protocol IP/Network Port Port e.g. 1 e.g. TCP e.g. e.g. e.g. e.g. e.g. 10.0.0.1 Telnet e.g. 130.195.4.30/24 any 23 Allow B. [7 Marks] Write the appropriate set of iptables (netfilter) rules to fulfil the requirements Requirements: