TDDD17 Information Security, Second Course
There are two mandatory labs in the course.
The rules are as follows:
- The hard hand-in deadline for labs is March 9 (at 23:59). No lab reports, additions, modifications or corrections will be accepted after this deadline. You should hand in your lab reports well before this deadline so that you have time to correct any minor problems there may be in the reports.
- If you want to do the labs you must register in Webreg. The deadline for lab registration is January 28.
- You must work in pairs.
|29/1||13-17||SU04||Lab 1 - Firewall: Supervised by Andrei Gurtov. (Unsupervised 15-17)|
|5/2||13-15||SU04||Lab 1 - Firewall: Supervised by Andrei Gurtov.|
|7/2||8-10||SU10, SU11||Lab 1 - Firewall: Unsupervised|
|26/2||13-15||SU00, SU01||Lab 2 - Snort: Supervised by Andrei Gurtov.|
|1/3||10-12||SU00, SU01||Lab 2 - Snort: Unsupervised|
|5/3||13-15||SU00, SU01||Lab 2 - Snort: Supervised by Andrei Gurtov.|
In this lab you will set up a Linux-based system as a firewall, according to a network security policy provided to you. The implementation will be done using a virtual Linux network designed to mimic a fairly typical corporate network scenario.
Practical information: You will be located in the SU-rooms or somewhere else and work remotely on a server named Marsix to which you connect by following the lab instructions. During setup you will be asked to provide a group number. Use your Webreg group number (found in the leftmost column when you register in Webreg). Note that it is very important to use the correct group number to avoid network conflicts with other groups.Quick guide to Linux/mln/XServer: tddd17-mln-guide.pdf. This short manual contains solutions to common problems with the virtual machines, an introduction to Linux commands and some advice to you who want to do your labs from a Windows machine.
Goals of this lab:
- Get hands-on experience implementing a network security policy
- Get hands-on experience testing a firewall
Prerequisites: This lab assumes that you know how to use a Unix-like operating system from the command line, and that you know the TCP/IP protocols.
Lab instructions: tddd17-FW-lab.pdf
In this lab you will set up a network intrusion detection system (NIDS) for a small network. You will be working with the open-source NIDS Snort, and get practical experience on writing rules to detect attacks.
Practical information: Same as the firewall lab.
Goals of this lab:
- Get hands-on experience with writing simple NIDS rules.
Prerequisites: Same as the firewall lab.
Lab instructions: tddd17-SNORT-lab.pdf
Hand in the answers to the questions in the lab instructions to Andrei Gurtov via e-mail and in a signed lab envelope.
Page responsible: Nahid Shahmehri
Last updated: 2018-01-22