Develop firewall rules, Computer Network Security

Question requires you to develop firewall rules based on a fictitious organisation.

Scenario:

You work for a security-conscious company, xC-Cure, who develop encryption technologies for large corporate and defence customers world-wide.  Your role is a junior security specialist and you have recently been asked to plan for the deployment of a new firewall.

The firewall is structured around an external filtering router (using NAT)with three(3) interfaces.  The external (public) interface is Internet facing and has a public IP of 120.9.20.1.  The second interface has an IP of 10.1.0.1 and is the gateway to the DMZ network (10.1.0.0).  The third interface has an IP of 10.2.0.1 and is the gateway to the intranet (10.2.0.0). The firewall also acts as a VPN tunnel server on its public Internet interface.

While certain traffic can flow between the DMZ and the intranet, Internet initiated connections should not enter the intranet.  Two sets of filtering rules are applied:  one for traffic flowing in and out of the Internet interface, another for traffic flowing between the DMZ and the intranet.

The DMZ contains the following servers:

  • A publicSecure Web Server (10.1.0.101) that accepts incoming https connections and makes connections to the Oracle Database inside the Intranet
  • The Mail server (10.1.0.102) that accepts POP3 connections from the intranet and initiates and accepts SMTP connections to the Internet

The Intranet contains the following servers:

  • The Oracle Database Server (10.2.0.10) that accepts SQLNet traffic from the Web Server in the DMZ
  • The Intranet Web Server (10.2.0.11) that accepts HTTP traffic ONLY from within the intranet
  • A File Share Server (10.2.0.12) that accepts SMBtraffic ONLY from with the intranet

 

Posted Date: 3/1/2013 12:04:14 AM | Location : United States







Related Discussions:- Develop firewall rules, Assignment Help, Ask Question on Develop firewall rules, Get Answer, Expert's Help, Develop firewall rules Discussions

Write discussion on Develop firewall rules
Your posts are moderated
Related Questions
Q. Explain the random key distribution? The triple key management mechanisms ensure a better and complete security solution using the random key distribution mechanism. In this

ARP MESSAGE FORMAT Although the ARP data packet format is sufficiently general to allow hardware addresses and arbitrary protocol. ARP is almost usually used to bind a 32-bit

how would land elevation have canged if coronado had traveled 150 miles due west from what is today arizona instead of west toward new mexico

Question: (a) What are the various options to mitigate risks in an Information Security Management System (ISMS)? For each option specify an instance where it can be used.

INTRODUCTION TO CRYPTOGRAPHY Cryptography The word cryptography is derived from Greek words kryptos, which means hidden and graphein, meaning to write, this is the process of

Question: (a) What is the minimum length of a password that could be considered to be "strong" in the context of today's computing power? (b) The security of a PIN system,

briefly expslain type of e-commerce

Belady's Anomaly Also known FIFO anomaly. Generally, on raising the number of frames given to a process' virtual storage, the program execution is faster, because lesser page

1.  We used the National Vulnerability Database. Select a recent vulnerability from that Database and analyse it from the following aspects: Criticality level Impact in

Designing and coding of Job search mechanism: Project Title: FREEHIVE (Sep 2005- Nov 2006) Role             : Developer Domain         : Social Network Client