Server security project

Sigchi4life
Category:
Computer Science
Price: $45 USD

Question description

You have been hired as a consultant for an e-commerce company. They want you to design the network Security Zones including firewall pseudo code rules and IDS placement for an Ecommerce network. The following have been identified as components or requirements for the network: There are various Apache web servers, database servers, and application servers. The web servers need to be accessible from the internet. There is an internal network which must be protected. Internal users must be allowed to access internet resources freely. Internal users must be able to access both the web servers and application servers using SSH (port 22) The Database Administrator needs to be able to access the database servers on port 3306 from the protected network. The web servers must be able to communicate with the database servers on a custom port 2345. The web servers must be able to communicate with the commerce servers on a custom port 2723. There must be administration web server that provides remote administration for a single Apache user (“admin”) using a web interface. o The administration site URL points to “/var/www/admin/admin.htm” on the Web Server. o Remote access to the site should be restricted to only those hosts located on the protected network subnet. o The admin user must logon to the administration site using an encrypted https connection. o You must select an appropriate TCP/IP address for this webserver. You will be assigned a network address that you can further subnet using a 24 bit subnet mask. You must assign each security zone its own network address. Each security zone will support up to 254 hosts. For example: DMZ zone network address – 193.21.1.0/24 Protected network address – 193.21.2.0/24 You must provide design documentation that includes at least one network layout schematic indicating the security zones, their network IP addresses as well as any firewall and IDS sensor placements. In addition, you must provide the firewall pseudo-code rules necessary to enforce your schematic as well as any Apache directives necessary to implement the administration site link of the website

Tutor Answer

(Top Tutor) Daniel C.
(997)
School: Purdue University
PREMIUM TUTOR
Studypool has helped 1,244,100 students
Ask your homework questions. Receive quality answers!

Type your question here (or upload an image)

1823 tutors are online

Brown University





1271 Tutors

California Institute of Technology




2131 Tutors

Carnegie Mellon University




982 Tutors

Columbia University





1256 Tutors

Dartmouth University





2113 Tutors

Emory University





2279 Tutors

Harvard University





599 Tutors

Massachusetts Institute of Technology



2319 Tutors

New York University





1645 Tutors

Notre Dam University





1911 Tutors

Oklahoma University





2122 Tutors

Pennsylvania State University





932 Tutors

Princeton University





1211 Tutors

Stanford University





983 Tutors

University of California





1282 Tutors

Oxford University





123 Tutors

Yale University





2325 Tutors