A

Seminar ReportON

Secure Network

Project “SECURE NETWORK” provides configuration for LAN in an institution or in an organization through LINUX Shell Scripting.

The DHCP server provides automatic IP Addresses when the user connects to the internet

PROXY server is used to block and allow specific websites

To automate the whole process of internet configuration

Whole process is secured and user friendly and this is done with the help of dialog boxes.

Logs for daily monitoring of web sites accessed by users are maintained

Manage user feature is done by Mac Address binding.

Officially introduced only in 1991 by its famed creator Linux Torvalds

Linux is a kernel.

Open Source:

source code of the software is made freely available

Security

Scalability

Not Single Source Software

Rate of Advancement

Support

Reliability

Cost

Server can be used as a base from which attacks on other systems can be launched.

E-mail server could be used as a by spammers.

DoS (Denial of Service) attacks which renders servers

Credit card numbers or account numbers and passwords can be targets

Shell Script is series of command written in plain text file.

Shell script can take input from user, file and output them on screen.

Useful to create our own commands.

Save lots of time.

To automate some task of day today life.

System Administration part can be also automated

Package: dhcp

Daemon: /usr/sbin/dhcpd

Script: /etc/init.d/dhcpd

Ports: 67 & 68

Configuration file: /etc/dhcpd.conf

IP addresses can be reserved for clients based on MAC addresses and host names

For security, the lease of IP addresses can be restricted to clients with known MAC addresses

In most cases, the IP address is automatically renewed when a clients logs into a network

The IP address assigned is taken from a pool of IP addresses defined as the scope of IP addresses available for assignment

A user can manually release and renew an IP address by typing the commands "ipconfig /release", followed by"ipconfig /renew" in the command prompt

Package: squid

Daemon: /usr/sbin/squid

Script: /etc/init.d/squid

Ports: 3128

Configuration file: /etc/squid/squid.conf

To provide indirect Internet access.

Firewall Machine.

Allow to see who is accessing.

A network point that acts as an entrance to another network

Also a proxy server and a firewall server

Work on all seven OSI layers

Implement in Hardware & Software