>> Scenario: Adam Enterprise has a website link as http://www.adam.com.my. Its main server IP address is 201.10.10.10 that host the website and basic customers services that do not involve customers personal data. The company mail server is at IP address 200.20.2.1 and the critical service server is at IP 196.20.2.10

>> Question 1:

Write Firewall rules (based on the Table Layout) for INBOUND network traffic based on the following company policies:

a) The company website is open to public to access

b) Email from suspicious IP 192.35.10.29 is not allowed

c) Email from suspicious IP 198.17.86.0 is allowed

d) No external access can be allowed to Adam Enterprise critical service server.

Table Layout: Rule No. | Source IP | Source Port | Destination IP | Destination Port | Action

>> Question 2:

Suggest any other plans (necessary) for you to improve the network security for Adam Enterprise

sample output:

ASSIGNMENT#3: FIREWALL RULES O Bushra Enterprise's main server IP address is 198.10.10.0 Bushra Enterprise's mail server is at IP address 198.10.11.2 Bushra Enterprise's critical service server is at IP 198.10.9.0 Bushra's company policies: a) The company website is open to public to access b) Email from anywhere can be sent to the company c) Email from suspicious IP 10.10.10.0 is not allowed d) No external access can be allowed to Bushra Enterprise critical service server. e) Default rule that deny anything that does not fall in the other rules stated in a) till d) Rule No. Source IP Source Port Destination IP Destination Action Port 1 Any Any 198.10.10.0 443 Allow 2 2 Any Any 198.10.11.2 25 Allow 3 10.10.10.0 Any 198.10.11.2 25 Deny 4 Any Any 198.10.9.0 443 Any Deny 5 Any Any Any Any Deny ASSIGNMENT#3: FIREWALL RULES O Bushra Enterprise's main server IP address is 198.10.10.0 Bushra Enterprise's mail server is at IP address 198.10.11.2 Bushra Enterprise's critical service server is at IP 198.10.9.0 Bushra's company policies: a) The company website is open to public to access b) Email from anywhere can be sent to the company c) Email from suspicious IP 10.10.10.0 is not allowed d) No external access can be allowed to Bushra Enterprise critical service server. e) Default rule that deny anything that does not fall in the other rules stated in a) till d) Rule No. Source IP Source Port Destination IP Destination Action Port 1 Any Any 198.10.10.0 443 Allow 2 2 Any Any 198.10.11.2 25 Allow 3 10.10.10.0 Any 198.10.11.2 25 Deny 4 Any Any 198.10.9.0 443 Any Deny 5 Any Any Any Any Deny