TEAM RED

Final Assessment Week 15

NTS415
December 17, 2015
Authored by: Jose Mejia
Angie Leifson
Gunner Howell
Chris Hill

Table of Contents
OVERVIEW ..................................................................................................................... 1
SET UP .......................................................................................................................... 2
UBUNTU 1 (DEVELOPER)................................................................................................. 2
3.1.1 INITIAL SETUP ................................................................................................... 3
3.1.2 IPTABLES ......................................................................................................... 3
3.1.3 SSH CONNECTION ............................................................................................. 4
3.1.4 FTP CONNECTION ............................................................................................. 5
SETTING UP THE SECOND BOX ........................................................................................... 5
3.1.1 INITIAL SETUP ................................................................................................... 5
3.1.2 IPTABLES ......................................................................................................... 6
3.2.3 SSH CONNECTION ............................................................................................. 6
3.2.4 FTP CONNECTION ............................................................................................. 7
3.3 VYOS ....................................................................................................................... 7
3.4 TEST COMPUTER ......................................................................................................... 8

TEAM RED | 12/17/2015

TEAM RED

Final Assessment Week 15

Overview

For this assignment, I was tasked with adding more services to the original Vyos box I created
for assessment 2. For this assessment the main thing to learn is how Iptables work and how to set
one up. Iptables are built in Linux firewalls and they are shipped with most distros. While 3rd
party software allows for more customization but generally they are built upon Iptables. I have to
set up two Ubuntu boxes, one as a developers workstation and one as a webserver.

Set up
Ubuntu 1 (Developer)

TEAM RED | 12/17/2015

Diagram

3.1.1 Initial Setup

The first box was configured to run inside the internal network. Using Vyos we reserved the
address range 192.168.99.10 to 192.168.99.254. This gave our first Ubuntu box an IP of

TEAM RED | 12/17/2015

192.168.99.17.

3.1.2 Iptables

TEAM RED | 12/17/2015

3.1.3 SSH Connection

3.1.4 FTP Connection

Setting up the second box

TEAM RED | 12/17/2015

3.1.1 Initial Setup

3.2.3 SSH Connection

TEAM RED | 12/17/2015

3.1.2 Iptables

3.2.3.1 Outbound

3.2.3.2 Inbound
All the rules for inbound rules have been blocked by the Iprules.
3.2.4 FTP Connection

TEAM RED | 12/17/2015

3.3 Vyos

TEAM RED | 12/17/2015

3.4 Test Computer

TEAM RED | 12/17/2015

Snort

10

TEAM RED | 12/17/2015

TEAM RED | 12/17/2015

SSH Succession

11

SSH Denial from Developer

Snort Rules Update

TEAM RED | 12/17/2015

FTP Denial from Developer

12

13

TEAM RED | 12/17/2015

14

TEAM RED | 12/17/2015

TEAM RED | 12/17/2015

Webpage Test

15

16

TEAM RED | 12/17/2015

17

TEAM RED | 12/17/2015