Server security project

timer Asked: Dec 16th, 2015

Question description

You have been hired as a consultant for an e-commerce company. They want you to design the network Security Zones including firewall pseudo code rules and IDS placement for an Ecommerce network. The following have been identified as components or requirements for the network: There are various Apache web servers, database servers, and application servers. The web servers need to be accessible from the internet. There is an internal network which must be protected. Internal users must be allowed to access internet resources freely. Internal users must be able to access both the web servers and application servers using SSH (port 22) The Database Administrator needs to be able to access the database servers on port 3306 from the protected network. The web servers must be able to communicate with the database servers on a custom port 2345. The web servers must be able to communicate with the commerce servers on a custom port 2723. There must be administration web server that provides remote administration for a single Apache user (“admin”) using a web interface. o The administration site URL points to “/var/www/admin/admin.htm” on the Web Server. o Remote access to the site should be restricted to only those hosts located on the protected network subnet. o The admin user must logon to the administration site using an encrypted https connection. o You must select an appropriate TCP/IP address for this webserver. You will be assigned a network address that you can further subnet using a 24 bit subnet mask. You must assign each security zone its own network address. Each security zone will support up to 254 hosts. For example: DMZ zone network address – Protected network address – You must provide design documentation that includes at least one network layout schematic indicating the security zones, their network IP addresses as well as any firewall and IDS sensor placements. In addition, you must provide the firewall pseudo-code rules necessary to enforce your schematic as well as any Apache directives necessary to implement the administration site link of the website

Tutor Answer

(Top Tutor) Studypool Tutor
School: Boston College
Studypool has helped 1,244,100 students
flag Report DMCA
Similar Questions
Hot Questions
Related Tags

Brown University

1271 Tutors

California Institute of Technology

2131 Tutors

Carnegie Mellon University

982 Tutors

Columbia University

1256 Tutors

Dartmouth University

2113 Tutors

Emory University

2279 Tutors

Harvard University

599 Tutors

Massachusetts Institute of Technology

2319 Tutors

New York University

1645 Tutors

Notre Dam University

1911 Tutors

Oklahoma University

2122 Tutors

Pennsylvania State University

932 Tutors

Princeton University

1211 Tutors

Stanford University

983 Tutors

University of California

1282 Tutors

Oxford University

123 Tutors

Yale University

2325 Tutors