Scribd Logo
Upload

Welcome to Scribd!

  • 8 views

    Medamine Trabelsi Basic Zone 1 PDF

    Uploaded by

    hassen bouguerra
    This document provides instructions for setting up basic zone-based firewall configuration between a LAN zone and INTERNET zone using GNS3. It specifies that the firewall router should create two security zones called "LAN" and "INTERNET" and place the corresponding interfaces in each zone. A class-map, policy-map, and zone-pair should be configured to allow traffic from LAN to INTERNET including return traffic, but block traffic from INTERNET to LAN, allowing only HTTP, ICMP, and HTTPS protocols.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content

    You might also like

    Medamine Trabelsi Basic Zone 1 PDF

    Uploaded by

    hassen bouguerra
    8 views6 pages
    This document provides instructions for setting up basic zone-based firewall configuration between a LAN zone and INTERNET zone using GNS3. It specifies that the firewall router should create two security zones called "LAN" and "INTERNET" and place the corresponding interfaces in each zone. A class-map, policy-map, and zone-pair should be configured to allow traffic from LAN to INTERNET including return traffic, but block traffic from INTERNET to LAN, allowing only HTTP, ICMP, and HTTPS protocols.

    Original Description:

    Original Title

    medamine-trabelsi-basic-zone-1.pdf

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document provides instructions for setting up basic zone-based firewall configuration between a LAN zone and INTERNET zone using GNS3. It specifies that the firewall router should create two security zones called "LAN" and "INTERNET" and place the corresponding interfaces in each zone. A class-map, policy-map, and zone-pair should be configured to allow traffic from LAN to INTERNET including return traffic, but block traffic from INTERNET to LAN, allowing only HTTP, ICMP, and HTTPS protocols.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    8 views6 pages

    Medamine Trabelsi Basic Zone 1 PDF

    Uploaded by

    hassen bouguerra
    This document provides instructions for setting up basic zone-based firewall configuration between a LAN zone and INTERNET zone using GNS3. It specifies that the firewall router should create two security zones called "LAN" and "INTERNET" and place the corresponding interfaces in each zone. A class-map, policy-map, and zone-pair should be configured to allow traffic from LAN to INTERNET including return traffic, but block traffic from INTERNET to LAN, allowing only HTTP, ICMP, and HTTPS protocols.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 6

    Trabelsi Mohamedamine

    RSI301
    Basic Zone Based Firewall
    ● Lab integration should be done with GNS3 VM server and Web UI.
    ● All IP addresses have been configured for you, every router has a loopback interface:
    Router

    ● LAN: L0: 1.1.1.1 /24

    Router FIREWALL:L0: 2.2.2.2 /24

    Router INTERNET: L0: 3.3.3.3 /24 and L1: 33.33.33.33 /24


    ● Static routes have been configured for you, there is full connectivity between the
    routers.

    ● Router INTERNET has the following services configured: SSH, TELNET, DNS, HTTP
    and HTTPS.

    SSH :
    TELNET :

    DNS :

    HTTP :

    HTTPS :
    ● Router FIREWALL has the following services configured: SSH and TELNET.
    ● Username: gns3vault
    ● Password: gns3vault

    SSH :

    TELNET :

    ● Create 2 security zones called “LAN” and “INTERNET” on router FIREWALL.

    ● Place the corresponding interfaces into the correct zones.


    ● Create the correct class-map, policy-map and zone-pair so traffic from LAN to
    INTERNET is allowed, including the return traffic.

    test :

    ● Traffic from INTERNET to LAN should be blocked.

    ● Increase security by only allowing HTTP, ICMP and HTTPS traffic from LAN to
    INTERNET.
    ● Test this by using telnet from router LAN to router INTERNET, this should be blocked.

    You might also like