Open main menu

CDOT Wiki β

Changes

OPS335 FTP Lab

44 bytes added, 16:12, 5 September 2011
Set up your FTP Server (Active Mode)
*Test your firewall by logging into a second PC (try both Windows and Linux) and attempt an FTP connection to your gateway PC. Test both local user as well as anonymous connections.
===Set up your FTP Server (Active Mode)===
#Edit /etc/vsftpd/vsftpd.conf and disable Passive mode (so now only Active mode is enabled) and then restart vsftpd.#Test your firewall by logging into a second PC (try both Windows and Linux) and attempt an FTP connection to your gateway PC. Test both local user as well as anonymous connections.PART E: ===Log Packets with Netfilter===#On the firewall/gateway add iptables log rules to monitor ftp traffic (control and data) for the following:#*PREROUTING chain of nat table#*FORWARD chain of filter table#*POSTROUTING chain of nat table#On vm01 add iptables log rules to monitor ftp traffic (control and data) for the following:#*PREROUTING chain of nat table#*INPUT chain of filter table#*OUTPUT chain of filter table#*POSTROUTING chain of nat table#Now repeat step 2 of PART D while monitoring your packets using "tail -f /var/log/messages" on both the gateway/firewall and vm01. PART F: ==Completing the Lab==Answer the following questions and and email them to your teacher in ASCII text format.#What is your full name and 9-digit Seneca student ID?#Hand in your output from the following commands on the FTP server:#*cat /etc/vsftpd/vsftpd.conf | grep -v ^# | awk 'NF>0'#*cat /var/log/xferlog#*iptables-save#Hand in your output from the following commands on the gateway:#*iptables-save#Show the log files on both the gateway (f13) and the server (vm01) generated in step 3 of PART E.
1
edit