Configuring and Maintaining Network Security Essay
Configuring and Maintaining Network Security
Because this is only a test deployment, you will be using a Windows 8 computer to function as the web server. In this exercise, you will install Internet Information Services on your workstation and then configure it to host two websites. Mindset
Internet Information Services enables you to configure websites to use specific port numbers. This makes it possible to test the functionality of Windows Firewall. Completion time
What URLs could you use in your computer’s browser to test the functionality of the intranet website you just created? You can use the IP address of the computer that is hosting the website
Take a screen shot of the Internet Information Services (IIS) Manager console, showing the new site you created, by pressing Alt+Prt Scr, and then paste the resulting image into the Lab 12 worksheet file in the page provided by pressing Ctrl+V.
Testing IIS Connectivity
In this exercise, you will test the functionality of the web server you just installed. Mindset
The way to test the functionality of a web server is to attempt to connect to it. Completion time
What is the result, and what does the result indicate?
it goes to 11S 8 microsoft.com/web
What is the result, and what does it indicate?
Success. Intranet website can be accessed in both ways
http://localhost/ or http:/127.0.0.1.
What is the result?
Internet Explorer cannot display the webpage
What is the result?
Success. II7 Web page appears
List three possible reasons as to why you might be unable to connect to your
computer’s web server using a browser on another computer. to your computer’s web server using a browser on another computer
Take a screen shot of the Customize settings for each type of network window, showing the setting you just modified, by pressing Alt+Prt Scr, and then paste the resulting image into the Lab 12 worksheet file in the page provided by pressing Ctrl+V. [copy screen shot over this text]
What are the results, and what do the results indicate?
Windows Firewall is blocking port 80 for HTTP connection
What other test could you perform to prove that it was your computer’s firewall that was blocking the connection and not the firewall on the computer you are using as a client? Success. The results indicate that connection is established
Why is it necessary to clear the cache before you retest the web server connections? computer’s firewall that was blocking the connection and not the firewall onthe computer you are using as a client
Why can you not simply leave Windows Firewall turned off when you deploy an actual web server? Becuase it is not a secure practice. Turning Windows Firewall Off will allow allconections from outside your network and can be dangerous
Allowing a Program Through the Firewall
Windows Firewall is preventing clients from connecting to your web server. To enable client access, you will use the Windows Firewall control panel to allow access to the web server. Mindset
The Windows Firewall control panel provides access to basic functions of the firewall, but for complete control, you must use the Windows Firewall with Advanced Security console, which you’ll see in the Lab Challenge. Completion time
Why are you now able to connect to the website from the client? We allowed to open port 80 on HTTP
Why are you unable to connect to the intranet site from the client? Port 4444 is not open? or DNS issue? NOT SURE
Creating Windows Firewall Rules
The port you opened in Exercise 12.3 enables clients to access the default website hosted by your web server, but not the Intranet website. In this challenge, you must configure your web server to allow traffic to the Intranet website. Mindset
Windows 8 often provides more than one way to complete a given task. The Windows Firewall control panel provides a relatively simple interface to the firewall, but it is not a comprehensive one, as we saw in the previous Exercise. Completion time
To complete this challenge, you must use the Windows Firewall With Advanced Security console to configure WKSTN-MBR-B to allow traffic to both the default website and the Intranet website you created in Exercise 12.1. To
complete the challenge, perform the following tasks:
List the steps you took to complete the task.
Take a screen shot of the interface you used to create the firewall rules by pressing Alt+Prt Scr and then paste it into your Lab 12 worksheet file in the page provided by pressing Ctrl+V. [copy screen shot over this text]
Answer the following questions.
Why are there two separate rules for the World Wide Web Services in the Inbound Rules container? 1. Every service require its own rule.2. One rule aplies for Domain network type and Another rule aplies forPrivate, Public
How would the opening of the port you performed in Exercise 12.3 affect the World Wide Web Services (HTTP Traffic-In) rules in the Inbound Rules container? The rule we applied in exercise 13.3 applies only to Domain type network bydefault. So this rule allow connection to intranet inside your network only andwill block all incoming connections from outside Public, Private
How would the rule creation procedure you just performed differ if you wanted to restrict client access to the intranet website to computers on the local network only? On Profile page. Unchecking the Domain and Private checkboxes will preventclient access to the intranet website