Name: Muhammad Khan Student ID: XXXXXXXXXX Due Date: 05-Oct-2019 Include screenshots With a little discription Task Your job in this assignment is to create two Virtual machines each running a...

1 answer below »
ITC 514



Name: Muhammad Khan Student ID: 11644387 Due Date: 05-Oct-2019 Include screenshots With a little discription Task Your job in this assignment is to create two Virtual machines each running a different but the latest distribution of Linux e.g. Ubuntu Server and/or CentOS Server. Each of these VM’s is to offer services to a user base. The Virtual Machines can be implemented using any hypervisor e.g. VMWare Player, Virtual Box or anything else you think is appropriate.  You can use bridged or host-only networking when setting up these Virtual Machines. When implementing the Virtual Machines, rather then obtaining an address from the HyperVisors DHCP server you should ensure the addresses used are static and assigned from your network. YOU WILL NEED TO WORK OUT WHAT ADDRESS SPACE YOU ARE USING AND HOW IT WILL IMPACT YOUR LAN.     Part 1: Virtual Machine One – DNS & SSH Server (5 marks) The first Virtual Machine should be installed and have the BIND9 (DNS) server installed on it. While you do not own any address space/ namespace your name server should manage the following domains: LastNameStudentID.org.au The name server should answer queries for this domain. In addition to the saffioti.org.au zone, a zone should be set up for the reverse zone – the reverse zone would be whatever the address range is of your virtual machine. You should do some research on how Bind handles reverse zones. You should set up the itccsu.org.au zone with the usual information including SOA, NS and other records where appropriate. The address used for this should be the address of the virtual machine. You should give this  Virtual Machine an A record with the name server1. You should also create a  A record for server2 (part 2 of this task) In addition to this, you should create a CNAME record with the name www. When a user does a lookup on www.LastNameStudentID.org.au- the address returned should be that of the other virtual machine (Virtual Machine Two). Be sure to create the appropriate reverse (PTR) records for the machines and to help other administrators be sure to put in place appropriate TXT records. Once complete, you should fine-tune your DNS Servers Virtual machine. Do this by disabling services that were installed but are not required. Be very careful not to break anything here. As a tip, you will want to keep both DNS and SSH services active. Ensure both DNS and SSH are invoked at startup. Finally, harden this Virtual Machine using a firewall. Set up filters which allow access to the services possibly being access on the Virtual Machine from other hosts – specifically SSH and DNS. You can assume this incoming traffic can come from anywhere. You will need to make sure these rules always take effect at boot. Test your virtual machine by setting your Host computer (i.e. the computer that is running the VM) Name Server to the address of the Virtual Machine. See if you can resolve queries for the A records create in LastNameStudentID.org.au i.e. server1 and www. Document the entire process and challenges you experienced. You can install BIND from source or using your package manager. Part 2:  Virtual Machine Two (5 marks) The second Virtual Machine is to have the LAMP software package installed. LAMP is a standard bundle in the Ubuntu Server platform. Once complete set up this Virtual Machine to host a website using the Apache Web Server. The Virtual Machine should have a statically assigned address which matches that specified in the A record for host www. Test your Apache Server Virtual Machine by using a web browser on another host and trying to browse the website LastNameStudentID.org.au. Once you have set up the web server and tested it, install a FTP  server. The FTP server would allow users to upload/ download files to the web server. Configure the server appropriately and then test from another host. Finally, harden this host so that only services being used can be accessed by other machines. You will need to use IPTables. Document the entire process and challenges you experienced. Part 3: Simple Web Services (5 marks) In Virtual Machine Two, you set up a web server for the DNS name www.LastNameStudentID.org.au. The server is implemented using the HTTP protocol listening on port 8080. Your challenge is to make the same site accessible using the HTTPS protocol. To do this set up SSL with a self-signed certificate for the site. Once configured correctly you should be able to access www.LastNameStudentID.org.au on both HTTP/HTTPS ports. Naturally, you will need to make appropriate changes to your firewall rules. Document the entire process and challenges you experienced. Rationale This assessment task will assess the following learning outcome/s: · be able to apply technical knowledge to manage servers. · be able to investigate the layout of server file systems. · be able to plan, create and manage information services. · be able to design and write scripts to automate various server management tasks. · be able to justify an appropriate protection strategy for data and services. · be able to critically evaluate security policies and procedures. In this assignment students will develop a understanding and appreciation for building complex services whilst considering impacts on security. Criteria
Answered Same DaySep 26, 2021ITC514Charles Sturt University

Answer To: Name: Muhammad Khan Student ID: XXXXXXXXXX Due Date: 05-Oct-2019 Include screenshots With a little...

David answered on Oct 05 2021
140 Votes
Page | 11
REPORT
By
Muhammad Khan
Assignment: Creating two Virtual Machines and providing services to user base
Configurations used during assignment:
Primary (Master) DNS Server Details:
Operating Sy
stem : CentOS 6.5 server
Hostname : masterdns.khan11644387.org.au
IP Address : 192.168.141.128/24
Secondary(Slave) DNS Server Details:
Operating System : CentOS 6.5 server
Hostname : secondarydns.khan11644387.org.au
IP Address : 192.168.141.129/24
Client Details:
Operating System : CentOS 6.5 Desktop
Hostname : Client.khan11644387.org.au
IP Address :192.168.141.130/24
Part 1: Virtual Machine One: DNS & SSH Server
BIND Server is installed and virtual machine is installed on Bind. The itccsu.org.au zone is set up which has regular information. It uses the address of the Virtual Machine one. The following screenshots show the process.The forward and reverse files are automatically created once the network services begin. This is shown in snapshot 1.6. Further, the DNS and SSH services are kept active and invoked during boot. The snapshots 1.7 to 1.14 demonstrate the entire process smoothly.
Snapshot 1.1: BIND Package configuration
In Above screen-shot we have created below mentioned configuration:
1) It tells Operating System to listen on port 53 on our master DNS server.
2) Configured cache dump to take dumps of database (cache)
3) Allowed to query all IP within specified IP range.
4) Allowed transfer request to secondary DNS server.
5) Enabled logging of all the requests and being written in named.run file.
6) Defined both Forward and Reverse zones file paths and their types.
Snapshot 1.2: Name server managing domains and answering query.
/var/named/forward.khan11644387.org.au
Description: Above file show the configuration that how and where our forward request will process and on which host/IP it will go to serve the request. As per this configuration when a request is made it will retry after every 1800 seconds keep upto 604800...
SOLUTION.PDF

Answer To This Question Is Available To Download

Related Questions & Answers

More Questions »

Submit New Assignment

Copy and Paste Your Assignment Here