Embed Size (px)
Citation preview
Name: HUL SOVANNAROTH
SNA 2011B
IP tables Document
Requirements
We have three LAN is LAN Student, LAN Staff and LAN server
Configure DNS, FTP, SAMBA on server Configure IP tables on IP tables PC
1. All client can access samba, FTP and DNS2. Staff can access SSH and remote desktop to server3. Student cannot access Staff except ping4. Staff can remote desktop to student
Tables of content
ContentsI. DNS SERVER.........................................................................................................................................3
1. Install DNS server.............................................................................................................................3
2. Configure FTP..................................................................................................................................7
3. Configure Samba.............................................................................................................................9
4. Configure Telnet............................................................................................................................11
II. Router................................................................................................................................................12
Configure IP address..............................................................................................................................12
Create file script....................................................................................................................................13
Rule allows all clients PING to server and use DNS................................................................................14
Rule allow all clients use samba on server.............................................................................................16
Rule allow all clients use FTP.................................................................................................................17
IP tables DocumentRule allow staff use SSH to server..........................................................................................................19
Rule allow staff use remote Desktop (telnet) to server.........................................................................20
Rule allow LAN student ping to Staff.....................................................................................................21
Rule allow staff remote desktop to LAN student...................................................................................22
III. Configure DHCP.............................................................................................................................24
Install service DHCP...............................................................................................................................24
Rule allow client get IP address from DHCP...........................................................................................26
IP tables DocumentI. DNS SERVER
1. Install DNS server
Install services bind
IP tables DocumentConfigure file /etc/named.conf
Edit file reverse lookup zone
IP tables DocumentEdit file forward lookup zone
Set DNS on server
IP tables DocumentSet gateway on server
Restart and test DNS
IP tables Document2. Configure FTP
Install service pure-ftp
Configure FTP for anonymous
IP tables DocumentAllow anonymous can create directory
Allow auto rename and upload file
Restart FTP, create folder share and set permission for anonymous
IP tables DocumentTest FTP on server
3. Configure Samba Install services samba
IP tables DocumentAdd script for share file Data on path /srv/DATA
File share to client
Restart services samba
IP tables Document4. Configure Telnet
Install telnet server
Enable telnet on following file
IP tables DocumentRestart and test telnet on server
II. Router
Configure IP address
IP tables Document
All interface network card on router
Create file script
IP tables Document
Create rule Drop all request from client and then we create rule for allow specific port
Rule allows all clients PING to server and use DNS
Run rule iptables
IP tables DocumentResult on LAN client
Result on LAN Staff
IP tables DocumentRule allow all clients use samba on server
Result on LAN student
IP tables DocumentResult on LAN staff
Rule allow all clients use FTP
IP tables DocumentResult on LAN student
Result on LAN staff
IP tables DocumentRule allow staff use SSH to server
LAN staff could access SSH to server
IP tables DocumentLAN student could not access SSH to server
Rule allow staff use remote Desktop (telnet) to server
Result on LAN staff
IP tables DocumentLAN student could not telnet to server
Rule allow LAN student ping to Staff
Result on LAN student ping to LAN staff
IP tables DocumentRule allow staff remote desktop to LAN student
Use mstsc to remote desktop from LAN staff to student
IP tables DocumentResult remote from staff to student
Student could not remote desktop to staff
IP tables DocumentIII. Configure DHCP
Install service DHCP
Set interface of dhcp on following file
IP tables DocumentConfigure file DHCP and restart services dhcpd
Install dhcp-relay on router
IP tables DocumentConfigure file DHCRELAY and restart services
Rule allow client get IP address from DHCP
IP tables DocumentRun iptables and list rule of iptables by using the following command line
Result on LAN student
IP tables DocumentResult on LAN Staff
