9. [14 Marks Total] As a system/network engineer you have been asked to create a firewall ruleset for a Server. The server offers the following services and characteristics: Operating system: Ubuntu 20.04.2 LTS Server's IP address: 10.10.4.1/24 Services: SSH, Apache and PureFTPd Other Information: Requirements: Clients' networks: 10.10.5.0/24, 10.10.6.0/24, 10.10.7.0/24, 10.10.8.0/24 Update server: us.archive.ubuntu.com Port 80 a. Provide service for clients' incoming FTP requests. b. Provide service for clients' incoming HTTP and HTTPS requests. Drop inbound traffic to port 80 (http) from source ports less than 1024. c. Protect the server against ICMP ping flooding. d. Provide remote SSH service for administrator from a remote system with an IP address of 10.10.8.1/24 e. Protect the server against SSH dictionary attack. f. Drop all incoming packets from reserved port 0 as well as all outbound traffic to port 0. g. The server is not allowed to create any new outgoing connections, except for the download and installation of security updates. A. [7 Marks] Create a firewall policy table for the server with the given information. Use the template below. No e.g. 1 Transport Protocol e.g. TCP Protocol Source IP/Network Dest. IP/Network Source Dest. Action Port Port e.g. Telnet e.g. 10.0.0.1 e.g. e.g. e.g. e.g. 130.195.4.30/24 any 23 Allow B. [7 Marks] Write the appropriate set of iptables (netfilter) rules to fulfil the requirements 10. [2 Marks] Write an iptables rule to direct all the DNS requests from your internal network to Google's 8.8.8.8 IP address and associated port. 11. [8 Marks] Explain the capability and the process (i.e. procedure/steps) by which popular packet filtering firewalls such as iptables can be used to reduce the speed slow down (NOT stop!) the spread of worms and self-propagating malware?