100%(34)34 out of 34 people found this document helpful
This preview shows page 1 - 5 out of 6 pages.
Y. JeffersonApril 12, 2020SNHUProject TwoCYB-220-J4680
Configuration1.Task: Ensure the admin network is the only network that can communicate with the FTP Server.2.Task: The users below should be added to the FTP server and should have the permissions listed.
3.Task: All web traffic originating from the kiosk on port 80 needs to be pointed to the web server.
RationaleA.To achieve network segmentation on the FTP server a rule has to be created on the FTPserver which would only allow IP address from the admin network to bypass through the firewall. This effectively denies all other IP address from entering the server which also serves the purpose and goal of solely the admin network having access. An alternative method to achieve the same goal is to enter the IP addresses manually that you would like to allow or deny access. If a new host / device is added to the network that that device also needs to be added to the allow list. Devices with IP addresses located within the admin network are fully authorized while all others denied access.