Network Security Configuration and Testing: A Comprehensive Guide, Thesis of Computer Systems Networking and Telecommunications

For the Workshop II project, our group should analyze, plan, execute and manage tasks. Project assignments have been assigned to each group and the group should create a schedule to complete the assigned assignments on time and set the services provided for each group member. To avoid problems and mistakes, time and schedule management is important. Our main objective for Workshop II was to succeed through the challenges faced while completing the assigned tasks. In addition, having a deeper understanding of the service and knowing how it works is part of the objectives of this project. The result of this project is that students should be able to design a secure network infrastructure and be able to perform the specified network and security services. Students should be able to maintain and control a secure network service infrastructure. Our group decided to use GNS3 to simulate our network topology and connect to Windows platform and Linux platform. Our group uses Windows Server 201

Typology: Thesis

2022/2023

Uploaded on 10/13/2023

iffah-rodhiyah-binti-mohd-yunus-bp
iffah-rodhiyah-binti-mohd-yunus-bp 🇲🇾

1 document

1 / 212

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
UNIVERSITI TEKNIKAL MALAYSIA MELAKA
FACULTY OF INFORMATION AND COMMUNICATION TECHNOLOGY
BITU 3923 WORKSHOP II
FINAL REPORT
GROUP 14
NETWORK MANAGEMENT SYSTEM
NO MATRIC
NAME
COURSE
B031910310
IFFAH RODHIYAH BINTI MOHD YUNUS
BITC
B031910354
KHAIRUN NADHIRAH KHAIRUN NADZAR
BITC
B031910091
ROSZAIDIYANI BINTI ROSZELAN
BITC
B031810067
SHATIISH A/L SEGARAN
BITC
SUPERVISOR: TS. IRDA ROSLAN
EVALUATOR: TS. MARLIZA RAMLY
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a
pf2b
pf2c
pf2d
pf2e
pf2f
pf30
pf31
pf32
pf33
pf34
pf35
pf36
pf37
pf38
pf39
pf3a
pf3b
pf3c
pf3d
pf3e
pf3f
pf40
pf41
pf42
pf43
pf44
pf45
pf46
pf47
pf48
pf49
pf4a
pf4b
pf4c
pf4d
pf4e
pf4f
pf50
pf51
pf52
pf53
pf54
pf55
pf56
pf57
pf58
pf59
pf5a
pf5b
pf5c
pf5d
pf5e
pf5f
pf60
pf61
pf62
pf63
pf64

Partial preview of the text

Download Network Security Configuration and Testing: A Comprehensive Guide and more Thesis Computer Systems Networking and Telecommunications in PDF only on Docsity!

UNIVERSITI TEKNIKAL MALAYSIA MELAKA

FACULTY OF INFORMATION AND COMMUNICATION TECHNOLOGY

BITU 3923 WORKSHOP II

FINAL REPORT

GROUP 14

NETWORK MANAGEMENT SYSTEM

NO MATRIC NAME COURSE

B031910310 IFFAH RODHIYAH BINTI MOHD YUNUS BITC

B031910354 KHAIRUN NADHIRAH KHAIRUN NADZAR BITC

B031910091 ROSZAIDIYANI BINTI ROSZELAN BITC

B031810067 SHATIISH A/L SEGARAN BITC

SUPERVISOR: TS. IRDA ROSLAN

EVALUATOR: TS. MARLIZA RAMLY

ACKNOWLEDGEMENT

First and foremost, we want to express our gratitude to TS. Irda Binti Roslan, our project supervisor for her invaluable guidance and advice. Our supervisor motivated us to work on the project and provided guidance on how to accomplish all the services. Nevertheless, she also inspires us to contribute significantly to our project. In addition, we'd want to express our gratitude to our seniors for providing samples of the services we chose for our project that helped us understand better. This allows us to gain a better understanding of the service and finish our job on schedule. Next, we'd like to express our gratitude to our project evaluator, TS. Marliza Ramly for her time and effort in-term of evaluating us. Furthermore, we would also want to express our gratitude to Universiti Teknikal Malaysia Melaka (UTeM) for providing us with a conducive environment and facilities in which to finish this project. Finally, we want to extend our thanks to our family and friends for their patience and support in assisting us finish this project. Even those who experienced troubles while we were completing this project were able to overcome those obstacles with their assistance, and we were able to complete our project on schedule.

ABSTRAK

Untuk projek Workshop II, kumpulan kami harus menganalisis, merancang, melaksanakan dan menguruskan tugas. Tugasan projek telah diberikan kepada setiap kumpulan dan kumpulan tersebut harus membuat jadual untuk menyelesaikan tugasan yang diberikan tepat pada waktunya dan menetapkan servis yang disediakan untuk setiap ahli kumpulan. Untuk mengelakkan masalah dan kesilapan, pengurusan masa dan jadual adalah penting. Objektif utama kami untuk Bengkel II adalah untuk berjaya melalui cabaran yang dihadapi semasa menyelesaikan tugasan yang diberikan. Selain itu, mempunyai pemahaman yang lebih mendalam mengenai servis dan mengetahui cara kerjanya adalah sebahagian daripada objektif projek ini. Hasil dari projek ini ialah pelajar seharusnya dapat merancang infrastruktur rangkaian yang selamat dan dapat melaksanakan servis rangkaian dan keselamatan yang ditentukan. Pelajar harus dapat mengekalkan dan mengawal infrastruktur perkhidmatan rangkaian yang selamat. Kumpulan kami memutuskan untuk menggunakan GNS3 untuk mensimulasikan topologi rangkaian kami dan menyambung ke platform Windows dan platform Linux Kumpulan kami menggunakan Windows Server 2012 R2 dan Linux Ubuntu 18.04 LTS sebagai system operasi pelayan kerana kedua-duanya mempunyai banyak kebaikan untuk melaksanakan perkidmatan rangkaian ini. Untuk Bengkel II ini, kumpulan kami telah ditugaskan untuk membuat 17 servis iaitu Inter VLAN routing, VLSM addressing, Routing & NAT, DNS (IPv4 & IPv6), Active Directory; with minimum of 2 UAC/GPO (main), Join domain, DHCP (IPv4 & IPv6), Linux Email Server (main), Firewall – LINUX FIREWALL, Basic security policy, Layer 2 Security – VLAN and Port Security, Network Management System (main), IPSec site-to-site tunnelling (main), AAA (Authentication, Authorization, and Accounting) using Radius, Access Control List (ACL); with minimum of 4 rules, Cloud Storage, Web (IPv4 and IPv6 with SSL) with IPv6 Tunnelling, IDS – Port mirroring (customized rule).

TABLE OF CONTENT

CHAPTER 1: INTRODUCTION

1.1 Introduction This semester some students will be take subject BITU 3923, Workshop II which is from BITC students before they need to take Final Year Project. For this Workshop, there are about 15 group that have been divided each group contain 4 to 5 members. For this project, students are required to analyse, design, build, manage, and integrate network services infrastructure that suit with the network environment to achieve excellent, safe and protected network. This Workshop II, we will be doing it remotely due to the pandemic that occur to our entire world that prevent us to work together and face to face. We have been provided with proper equipment in the lab computer at the faculty that be available to use. The tools that have been provided are ISO Ubuntu 16, ISO Windows 2012, VMWare, VNC and GNS3. This course is implemented from all the other BITC students’ previous subjects that have been learned before. Based on the equipment that have been provided above, we required to design, set up and monitor a network environment with the basic server application and basic services. There are multiple different Operating Systems that are required to install in each server. There are about 15 services given to BITC students set up the network which are DNS (IPv4 & IPv6), Linux Mail, DHCP (IPv4 & IPv6), VPN(Virtual Private Network), Routing & NAT, Access Control List (ACL), Active Directory, Intrusion Detection System(IDS), Proxy Server, AAA (Authentication, Authorization, and Accounting using Radius), Layer 2 Security(Port Security), IPv6 Transition Mechanism, Web, SSL & Virtual Hosting, Network Management System, and Inter VLAN.

1.2 Objective

  1. To fulfil the requirement of subject BITU 3923.
  2. To design network infrastructure by using provided material.
  3. To ensure that the network environment will be able to communicate to others.
  4. To ensure the security services that installed will work efficiently.