Hide menu

TDDD17 Information Security, Second Course

Labs


There are two mandatory labs in the course.

The rules are as follows:

  • The hard hand-in deadline for labs is March 10 (at 23:59). No lab reports, additions, modifications or corrections will be accepted after this deadline. You should hand in your lab reports well before this deadline so that you have time to correct any minor problems there may be in the reports.
  • If you want to do the labs you must register in Webreg. The deadline for lab registration is January 29.
  • You must work in pairs.

Lab schedule

Week 5
  Mon 30/1 13-17 SU04 Lab 1 - Firewall: Supervised by Andrei Gurtov.
Week 6
  Mon 6/2 13-17 SU04 Lab 1 - Firewall: Supervised by Andrei Gurtov.
Week 9
  Mon 27/2 13-17 SU04 Lab 2 - Snort: Supervised by Andrei Gurtov.
Week 10
  Mon 6/3 13-17 SU04 Lab 2 - Snort: Supervised by Andrei Gurtov.

Lab1: Firewalls

In this lab you will set up a Linux-based system as a firewall, according to a network security policy provided to you. The implementation will be done using a virtual Linux network designed to mimic a fairly typical corporate network scenario.

Practical information: You will be located in the SU-rooms or somewhere else and work remotely on a server named Marsix to which you connect by following the lab instructions. During setup you will be asked to provide a group number. Use your Webreg group number (found in the leftmost column when you register in Webreg). Note that it is very important to use the correct group number to avoid network conflicts with other groups.

Quick guide to Linux/mln/XServer: tddd17-mln-guide.pdf. This short manual contains solutions to common problems with the virtual machines, an introduction to Linux commands and some advice to you who want to do your labs from a Windows machine.

Goals of this lab:

  • Get hands-on experience implementing a network security policy
  • Get hands-on experience testing a firewall

Prerequisites: This lab assumes that you know how to use a Unix-like operating system from the command line, and that you know the TCP/IP protocols.

Lab instructions: tddd17-FW-lab.pdf

Lab2: Snort

In this lab you will set up a network intrusion detection system (NIDS) for a small network. You will be working with the open-source NIDS Snort, and get practical experience on writing rules to detect attacks.

Practical information: Same as the firewall lab.

Goals of this lab:

  • Get hands-on experience with writing simple NIDS rules.

Prerequisites: Same as the firewall lab.

Lab instructions: tddd17-SNORT-lab.pdf

Report

Hand in the answers to the questions in the lab instructions to Andrei Gurtov via e-mail and in a signed lab envelope.


Page responsible: Nahid Shahmehri
Last updated: 2017-01-18