project-spec (1) - This document lives here:

Info iconThis preview shows pages 1–3. Sign up to view the full content.

View Full Document Right Arrow Icon
This document lives here: http://inst.eecs.berkeley.edu/~ee122/fa11/project3/project-spec.pdf Project 3 - Routers, Protocols and Firewalls UC Berkeley, EE 122, Fall 2011 Version 2.1 Part 1 due on November 18, 2011, 11:59:59 PM Part 2 due on December 10, 2011, 11:59:59 PM The goal of this project is for you to learn about routers, protocols and firewalls; in short, how real networks work. You will be given a plug computer configured to run as a router with built-in firewall functionality. Your task is to write the rules for the firewall to allow/disallow a specified set of TCP connections. This month-long project is divided into 2 parts, each part has it own submission deadline. In the first part, you will have to programmatically configure a firewall to manage connections based on simple set of rules. The goal of the first part is to become familiar with the environment of the router and the firewall’s API. In the second part, you will be extending the set of rules to manage more complex patterns of connections. Here, the goal is to understand the structure of protocols like FTP and HTTP, and build rules to manage them effectively. This document first explains the router environment - how each plug computer is configured as a NAT router. Then it will elaborate on the firewall functionality present in the plug and how it can be used to allow / deny / monitor connections passing through the plug computer. Later it will specify the set of rules that you are supposed to write for each part of the project.
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Configuration of the Plug Computer Each plug computer has two network interfaces - a wired Ethernet interface, and a wireless interface. As shown in the figure, the wireless interface is configured to automatically connect to AirBears , and the wired Ethernet interface is to be connected to the Ethernet port of your laptop, using the provided Ethernet cable. The plug computers are configured to act as NAT routers - the wireless interface is the external port which connects to the Internet through AirBears , and your laptop is connected to the internal port, effectively becoming a client behind the NAT. More details on preparing and connecting to the plug computer are provided in the Guide to your Plug Computer ( http://inst.eecs.berkeley.edu/~ee122/fa11/project3/guide-to-plug.pdf ). Please read this document in detail before attempting to use the plug. This system is designed to let you do all your Internet activities through it (maybe a little slowly), except those connections that are blocked by the plug’s internal firewall. The goal of this project is for you to implement rules for the firewall based on the provided specifications. In the rest of this document, we may refer to the plug computer as a router . Software Architecture
Background image of page 2
Image of page 3
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 11

project-spec (1) - This document lives here:

This preview shows document pages 1 - 3. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online