+1443 776-2705 panelessays@gmail.com
  

Question Description

You have just joined an organization as a Security Analyst. As a security Analyst you are responsible for managing Firewall security policies in your organization. When you joined, your organization’s firewall policy was already managed by some previous employee.

What will be the first step you will take to ensure that there are no policy violations or anomalies? Following are the set of rules in organizational firewall:

Note make sure you want to have minimum number of rules and rearrange them in a way that there is no policy anomaly.

192.168.*.*

80

192.168.0.10

80

FTP

Deny

192.168.0.*

80

192.168.0.10

80

FTP

Accept

192.168.0.1

80

192.168.0.10

80

FTP

Accept

192.168.0.2

80

192.168.0.10

80

FTP

Accept

192.168.0.3

80

192.168.0.10

80

FTP

Accept

Bonus point question: Solve this correctly and you will get 1.5 marks added to your midterm. Do not worry if you don’t do it, you will not loose any marks.

192.168.0.1 is webserver your company is hosting, and you want to make sure that it has maximum visibility by allowing traffic from 172.193.77.1 and 172.193.78.2 domain. Any other IP in the above mentioned domains are blacklisted, so how will you fix the anomaly in the following example?

Hint: you can use delete and insert commands, but make sure you pay attention to the rules. Add the rules in the following format, take a screenshot, fix the problem, and take another screenshot.