Web viewCreate rule for allow (clients range 192.168.1.0/24) and deny (domain like...

Preview:

Click to see full reader

Citation preview

Homework Proxy server with IPTABLE

Requirement

Server 2003 (DNS,DHCP,AD,ip 192.168.1.1) Proxy server with iptable linux (2 interface vmnet1

192.168.1.2/24,vmnet2 172.16.1.212/23) Xp client for test(ip range 192.168.1.10=>192.168.1.30/24)

Task to do

1. Clients use services of server 2. Clients access internet using proxy only3. Block website facebook.com, youtube.com, dap-news.com

Proxy Server

Assing ip for proxy server have two interface Assing defautgateway

Prepare by CHAN Sarat SNA2012B

Teacher : KIM Bunthoun

Student : CHAN Sarat

Class : SNA2012B

Prepare by CHAN Sarat SNA2012B

Assign DNS cist.lan

Test by ping ip dns cist.lan

Prepare by CHAN Sarat SNA2012B

Ping defaut gateway cist.lan

Server2003 Assign ip and defaut gateway

Prepare by CHAN Sarat SNA2012B

Forwarder dns

Test by ping dns cist.lan

Prepare by CHAN Sarat SNA2012B

Test ping google.com

Prepare by CHAN Sarat SNA2012B

Create rule iptables to allow client & server access internet throw router-proxy

Test proxy server ping google.com

Prepare by CHAN Sarat SNA2012B

XP client

clients use dns “sarat.com”

Prepare by CHAN Sarat SNA2012B

Proxy Server

Install sqid

File configure squid “vim/etc/squid/squid.conf”

Default port squid 3128 and 8080

Prepare by CHAN Sarat SNA2012B

Cache file

Create acl (acl client src 192.168.1.0/24) Disable some options

Prepare by CHAN Sarat SNA2012B

Disable “icp_access allow localnet”

Prepare by CHAN Sarat SNA2012B

Restart services squid

Create acl for lan client and domain

Create rule for allow (clients range 192.168.1.0/24) and deny (domain like facebook.com,youtue.com,dap-news.com)

Prepare by CHAN Sarat SNA2012B

XP test

Access don’t use proxy server

Prepare by CHAN Sarat SNA2012B

Access use proxy server IP interface router connect to server(192.168.1.2) Port use default port proxy server 3128

Result can access internet

Prepare by CHAN Sarat SNA2012B

Test website that we block

We access facebook.com

We access dap-news.com

Prepare by CHAN Sarat SNA2012B

We access youtube.com

squidGuard

Prepare by CHAN Sarat SNA2012B

Prepare by CHAN Sarat SNA2012B

Prepare by CHAN Sarat SNA2012B

Prepare by CHAN Sarat SNA2012B

Prepare by CHAN Sarat SNA2012B

Prepare by CHAN Sarat SNA2012B

Prepare by CHAN Sarat SNA2012B

Recommended

TheGreenBow VPN Client · TheGreenBow IPSec VPN Client ... 1.2 VPN Network topology In our VPN network example (diagram hereafter), ... local_net 192.168.1.0/24
Documents
Cody Keenan is the Former Unpaid Intern Behind President Obama's Amazing Speeches _ News.com
Documents
grafenwoehr-news.com // Issue #6 // May June 2012 // English
Documents
Witnesses Tell of Shocking Moment Trainer Dave Styles Mauled by Tiger at Australia Zoo _ News.com
Documents
ЕКСПЕДИЦІЙНИЙ ЗВІТufology-news.com/u/18672430/SRCAA_Zond/Journal_of_field_works… · Рис.10. Центр формації із механічно вдавленою
Documents
Graduate From the Class of 2013 Reveals What Schoolies Week is Really Like _ News.com
Documents
2017 MEDIA KIT - ddn-news.comddn-news.com/lib/sitefiles/mediakit.pdf · 2017 MEDIA KIT Covering the News of Pharma, Biotech & Life Science ddn-news.com ddncancer.com 2017 MEDIA KIT
Documents
CLIPS_Word_Template - SIelearningsielearning.tafensw.edu.au/.../lo/9218/documents/9218_r…  · Web viewCreate a stimulating, positive and developmentally appropriate environment
Documents
sumitomo chirashi 0804 - jumbo-news.com · Title _sumitomo_chirashi_0804 Created Date: 8/4/2018 4:37:45 AM
Documents
April 7, 2016 - bloximages.chicago2.vip.townnews.combloximages.chicago2.vip.townnews.com/townnews365... · April 7, 2016 ... Webinar announcements Receive invitations to Town News.com
Documents
A 20-year plague | CNET News.com hist…  · Web viewDecades after creation, viruses defy cure. By Robert Lemos Staff Writer, CNET News.com November 25, 2003, 4:00AM PT . Of all
Documents
10 Things Your Boss Won't Tell You _ News.com
Documents
NetBrain Consultant Edition v5 · NETBRAIN Consultant Edition 5.0: ... Analyze what’s changed in topology, routing, ... Dynamic map of VLAN 192.168.1.0/24
Documents
Static IP Routing (SIR) - Transition Networks · Static IP Routing Module Functional Diagram ... This minimizes the network topology knowledge needed ... (e.g., 192.168.1.0/24). In
Documents
NetBrain Enterprise Suite v5 · NETBRAIN ENTERPRISE SUITE 5.1: ... discovers both network topology and the network ... Dynamic map of VLAN 192.168.1.0/24
Documents
Nelson Mandela's Funeral_ Mourners Join World Leaders at FNB Stadium, Johannesburg for Service _ News.com
Documents
grafenwoehr-news.com // Issue #9 // November / December 2012 // English
Documents
10 Things Rich People Do Which Poor People Don't _ News.com
Documents
Tax-News.com Cyprus Review 2010-2011 review 2010-2011.pdfoffshore jurisdictions, offshore trusts or offshore investments. Tax-News.com Cyprus Review 2010-2011 A review and forecast
Documents
EIBC Версия для Интернет Протокол Заседания ...ufology-news.com/u/18672430/Ufology_News/Minutes... · eibc Версия для Интернет Протокол
Documents