

Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Material Type: Assignment; Professor: Aboutabl; Class: SEL TOPICS IN INFO SECURITY; Subject: Computer Science; University: James Madison University; Term: Unknown 1989;
Typology: Assignments
1 / 3
This page cannot be seen from the preview
Don't miss anything!


One way to test a firewall for durability and vulnerabilities is to make sure it denies or allows access to certain resources on different computers from different external or internal sources. In our configuration of the Shorewall firewall we setup the basic policy for the network and we defined rules (or exceptions to the policy).
For each of the following test you are to submit the policy and rules file, the results of the test, how your team implemented the requirement, and any problems that you encountered during the configuration. State whether or not your team had to implement the rule unidirectional or bidirectional, in order words were you able to test the rule going one way or did you have to insert the rules that went in the other direction as well. Note: Pinging from the computer that you have denied or allowed access to or from is not a sufficient test, you must also show if other machines can access the same resource.
Figure 1: Simplified diagram of the business network
Perform the following test within your team’s business network. The image indicates the direction of the rule.
Deny/Allow Access To/From Anywhere
Test 1: Disable the firewall and demonstrate that all the computers can ping each other. Test 2: Now, enable the firewall and show that access is denied of the traffic has to be routed through the Linux-FW machine.
Access Control with Zones Using Ping Request
Test 1: Deny access to the Green Zone and the DMZ from the Red Zone.
Test 2: Deny access from the Green Zone to the DMZ but allow access to the FW and the Red Zone.
Test 3: Deny access from the DMZ to the FW.
Test 4: Allow access from the Green Zone to the DMZ; disable access to the Red Zone.
Test 5: Allow access from the DMZ to Red Zone only.
Test 6: Allow access from Red Zone to DMZ only.
Test 7: Allow access from DMZ to everywhere but deny access from everywhere to DMZ.
Test 8: Allow access from the DMZ and Green Zone only to anywhere.