IT - Principles of System Hardening - SSH Server Case study
- Country :
Australia
In this assessment, you are required to secure a network using security countermeasures such as firewalls and principles of system hardening.
The organisation has the following devices.
-
SSH Server: Linux based (Ubuntu 18.04.3 LTS) to allow remote access by a System Administrator to manage Proxy Server remotely via Internet.
-
Proxy Server: to cache and filter Internet access by LAN Computers.
-
File Server: to store all internal documents required by internal users only.
-
LAN Computers: the only devices used internally to access internal documents and Internet.
-
Firewall: Linux based (Ubuntu 18.04.3 LTS), dual-home firewall, default configuration, with an external interface connected to the Internet (external network), and an internal interface connected to the LAN (internal network).
-
Layer 2 Switch: Single switch connecting all devices.
Task
You are required to submit a report that includes the following:
-
Configure the firewall using tables to ensure security and functionality is maintained.
-
Harden the SSH server.
-
Propose an improved network design to establish a DMZ. Justify your new design. You should provide a fully annotated network diagram with full description.
-
Implement the internal firewall using pfSense/OPNsense.