Question: Task 5. Define the configuration for a firewall, which should provide security at the Internet connection of a data centre according to the following demands.

Task 5. Define the configuration for a firewall, which should provide

Task 5. Define the configuration for a firewall, which should provide security at the Internet connection of a data centre according to the following demands. Access via HTTP (port 80) must be rejected from everywhere, while HTTPs (port 443) shall be allowed. ICMP requests and access via SSH (port 22) shall be accepted only from IP 193.94.80.15. Access via Telnet (port 23) is only allowed from IP 193.94.90.8, while a network administrator shall be notified in case of other Telnet connection attempts. All other incoming connections not matching one of the rules shall be dropped. The following actions are known: DENY, DROP, REJECT, ALLOW, FORWARD, NOTIFY

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Q:

Task 4 . The permission bits associated with a program call Prog 1 and a dataset called Data1 are as follows: Prog1: 111110000 Data1: 111101101 a) State the permissions these bits give. b) Describe...

Q:

Please provide Visio diagram that shows your interpretation of the current network that J&L Coffee INC blow have. Please list the network vulnerabilities issue that exist within J&L Coffee INC? ...

Q:

This is the topic of Accounting Information System. I need imfortant MCQ, True False, Matching, regarding this chapter. Prepared by Paula Funkhouser University of Nevada, Reno Core Concepts of...

Q:

What is an internet? What is the Internet?v What are the differences between an internet and the Internet? The following image shows an example of an internet. The following image shows a basic...

Q:

The new line character is utilized solely as the last person in each message. On association with the server, a client can possibly (I) question the situation with a client by sending the client's...

Q:

The project is going well so far, and the analysis and discussion of the vulnerabilities was well-received. You realize that when vulnerability scanning takes place, employees need to know what the...

Q:

Please i need help with this network security question It should be done on cisco packet tracer Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254...

Q:

Please i need help with this network security question Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254 -- Fa0/1 SO/0/2 209.165.200.224/27 .1 225...

Q:

A creative engineer suggests structuring the TLB so that not all the bits of the presented address need match to result in a hit. Suggest how this might be achieved, and what might be the costs and...

Q:

Assignment 2V4 - Access... Sheridan Lab 2: Access Control with Security Groups and TCP analysis Submission Team assignment with 2 members in each team, You may select you Instructions own partner....

Q:

Suppose we have market basket data consisting of 100 transactions and 20 items. If the support for item a is 25%, the support for item b is 90% and the support for itemset {a, b} is 20%. Let the...

Q:

Distinguish between fund capital assets and general capital assets.

Q:

Put the following in order of their claim on assets of a firm starting with the first to have a claim one preferred dog two common stock three bonds a preferred stock common stock bonds be common...

Q:

Market structure alludes to elements of a market, remembering the quantity of firms for the market, the appropriation of pieces of the pie between them, item consistency across firms, how simple it...

Q:

1. Explain how technology has changed the learning environment.

Q:

2. Trainees are geographically dispersed and travel costs related to training are high.

Q:

6. Current training methods allow limited time for practice, feedback, and assessment.