Goal: The purpose is to give the student the experience of installing and maintaining (fencing) security component of both small and large enterprise networks. There are open source and free firewalls. Also a number of companies on the Web offer a variety of firewalls both in software and ready configured hardware. Some of these companies offer free personal firewall. Others offer high-end but limited corporate firewalls you can download on a trial basis. Check out companies on the Web, and if you are not already using a firewall, download one for free or on trial basis.
Install it and run it. Here is a list of the companies with good software firewalls:
- McAfee â€“ www.mcafee.com (Links to an external site.) (personal)
- Symantec â€“ www.symantec.com(personal/Professional) (Links to an external site.)
- Sygate Personal Firewall â€“ www.sygate.com (Links to an external site.)
- Tiny Personal Firewall â€“ www.tinysoftware.com (Links to an external site.)
- ZoneAlarm Pro â€“ www.zonelabs.com (Links to an external site.)
Duration: 1 Week
Deliverables: 5 double spaced page
Firewall policies â€“ as you install your firewall, decide on the following:
- Whether you will let Internet users in your organization upload files to the network server.
- What about letting them download?
- Will the network have a Webserver? Will inside/outside people access the server?
- Will the site have telnet?
Your firewall laboratory exercise should use:
- Carefully read the tips and online manual.
- After reading the manual start to configure the firewall on your pc (follow the guide)
- Test your firewall. Do a penetration testing.
- Go to Gibson Research at: http://www.grc.com/default.htm (Links to an external site.) and head to â€œShields Upâ€ area to test your firewalls and probe your ports. As you run â€œShields Upâ€ take note of the activities of the firewall on the right side of your screen.
- Use Nessusâ€™s port scanning
- Use nmap port scanning
- Any other port scanner.