IS3220 Lab 9 Chris Wiginton
IS3220 Lab 9
Chris Wiginton
ITT Technical Institute, Tampa FL
Instructor: Sherman Moody
18 November, 2014
1. Briefly explain how the Gufw internal Ubuntu host IP ststeful firewall can be used in a layered security strategy at the Workstation Domain level.
Go to System>Administration>Firewall configuration. It supports common tasks such as allowing or blocking pre-configured, common P2P, or individual ports. Gufw is powered by UFW, runs on Ubuntu, and anywhere else Python, GTK, and UFW are available.
2. Briefly explain how each of the Linux-based tools demonstrated in this lab can be used to monitor bandwidth, protocol, and network traffic information. bmon is a portable bandwidth monitor and rate estimator. It supports various input methods for different architectures. Various output modes exist including an interactive curses interface,lightweight HTML output but also formatable ASCII output. iftop listens to network traffic on a named interface and displays a table of current bandwidth usage by pairs of hosts.
Pktstat displays a real-time list of active connections seen on a network interface, and how much bandwidth is being used by what. Partially decodes HTTP and FTP protocols to show what filename is being transferred. X11 application names are also shown.
Iperf is a tool to measure maximum TCP bandwidth, allowing the tuning of various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, datagram loss.
Tcptrack is a sniffer which displays information about TCP connections it sees on a network interface.
3. Given that the Ubuntu internal firewall is not installed by default, should you enable this firewall if your organization already has a firewall? Why or why not?
Yes, because it is still critical to protect the LAN-WAN edge. However, network firewalls now must also keep communications between internal network segments in check so that internal employees cannot access network and data resources that corporate policy
Chris Wiginton
ITT Technical Institute, Tampa FL
Instructor: Sherman Moody
18 November, 2014
1. Briefly explain how the Gufw internal Ubuntu host IP ststeful firewall can be used in a layered security strategy at the Workstation Domain level.
Go to System>Administration>Firewall configuration. It supports common tasks such as allowing or blocking pre-configured, common P2P, or individual ports. Gufw is powered by UFW, runs on Ubuntu, and anywhere else Python, GTK, and UFW are available.
2. Briefly explain how each of the Linux-based tools demonstrated in this lab can be used to monitor bandwidth, protocol, and network traffic information. bmon is a portable bandwidth monitor and rate estimator. It supports various input methods for different architectures. Various output modes exist including an interactive curses interface,lightweight HTML output but also formatable ASCII output. iftop listens to network traffic on a named interface and displays a table of current bandwidth usage by pairs of hosts.
Pktstat displays a real-time list of active connections seen on a network interface, and how much bandwidth is being used by what. Partially decodes HTTP and FTP protocols to show what filename is being transferred. X11 application names are also shown.
Iperf is a tool to measure maximum TCP bandwidth, allowing the tuning of various parameters and UDP characteristics. Iperf reports bandwidth, delay jitter, datagram loss.
Tcptrack is a sniffer which displays information about TCP connections it sees on a network interface.
3. Given that the Ubuntu internal firewall is not installed by default, should you enable this firewall if your organization already has a firewall? Why or why not?
Yes, because it is still critical to protect the LAN-WAN edge. However, network firewalls now must also keep communications between internal network segments in check so that internal employees cannot access network and data resources that corporate policy