Cisco Cybersecurity Essentials 7.4.2.4 Server Firewalls and Router ACLs | Packet Tracer demo

Video Statistics and Information

Video
Captions Word Cloud
Reddit Comments
Captions
in this video i'll demonstrate how to do the laboratory exercise server firewalls and router acls of the cyber security essentials of cisco and on this exercise we'll connect to a web server with http and https then configure to prevent unencrypted http sessions and finally access the firewall on the email server but before starting subscribe to the channel for more videos about packet tracer networking and cisco courses hit the like button if this video helped you and leave a comment if you have any questions about this exercise about packet tracer or cisco courses now let's start doing the exercise first go to the metropolis bank headquarters network open the computer of sally now open the desktop and open the web browser now we'll open a website write the url http colon slash www.cisco.com and press go to open the website and we have opened the website and click login page here we have a form to fill and submit the problem you have with this website it's using the http protocol so the information is not encrypted all the information you feel the name the password the security identifier you send to the web server will not be encrypted so any sniffer on the network or during the traffic until reaching the web server will not be encrypted everyone can see in plain text all this information you feel on the questionnaire so they can sniff the packets and see all the information in plain text of this form and this is the security problem so now let's open the website again but using the http protocol so we'll erase this and write http s and the rest is the same url of the web page and press go we have opened the same web page go to login now using the http protocol that is unencrypted a secure protocol all the information you feel on the form will be encrypted when you submit on the website all the information you sent on the server will be encrypted so no sniffer can decrypt the information and this is the problem we want to solve only allowing on this network access to websites using the https protocol and we are going to do this on the router so close the sales computer and open the router of the network this gateway now open the cli the command line interface press enter it asks for the password to access the router the password is cisco press enter now we have access to the router click enable and then configure terminal so right configure terminal now we are in config mode now you have access to the global configuration to the router and we'll enter the commands to prevent unencrypted http traffic from traveling through the router using acls so access control lists the first comment right access dash list space 101 space deny space tcp space any space any eq and 80 and press enter so this command will use this acl and deny tcp traffic on the port 80 so the http protocol the web pages will open on the web browser the second command is access dash list space 101 space permit space ip space any space n and enter this command will add another rule to this acl to permit any ip traffic now let's configure a specific interface of the router so let's open just the name of the the ports now we want this port gig 0 0 let's open the router again go to the cli and we'll choose that interface so write interface gigabit ethernet 0 0 and press enter so now we are on config mode of this specific interface that connects the network to the router and write the command ip space access dash group space 101 space in and enter now let's right end to exit the configuration mode and let's try to use again the website on cell's computer so open the computer of selling let's open the web browser and try to access the web page with the http protocol so write the url http colon slash slash www.cisco.corp and press go to open the page it's taking a while now let's wait and we'll get a request timeout so we could not access this web page with this protocol but if we try to open the page with a protocol https let's try to open the page it works the router allows the traffic with the https but not with http with this configuration on the router no one on the network can access a website with an unencrypted session so every communication information on this website or any website will be encrypted this is very important because the normal user doesn't know the difference between http and https doesn't know about security encryption and with this configuration on the router we guarantee that all the communication is encrypted and secured now finally let's check the email server so open the email server open the desktop and open firewall in here we can do the same what we did for the router using acls to control and add rules to the network configuration of the email like we did on the router but here we have a graphic interface so in this firewall we turn on the firewall we choose the interface in this case there's only one interface the fa 0 so fast ethernet 0 we choose the action allow or deny we choose the protocol we have several protocols choose tcp and configure ips ports and then add these rules so we are creating acls access control lists for the email server so they mail communication on this network this is the importance of acls in the network you can configure an scl in the cli or in a way a graphical user interface and this is everything you have to do to this exercise now subscribe to the channel not to miss more videos about packet tracer networking and cisco courses hit the like button if this video helped you and write in the comments if you have any questions about this exercise about packet tracer networking or cisco courses and i will see you on the next video you
Info
Channel: 100% informática
Views: 1,126
Rating: undefined out of 5
Keywords: router, hardware, local area network, business, engineer, cisco, deploy, exercise, wifi, cli, hacker, software, server, switch, course, ccna, configuration, help, catalyst series, vpn, security, terminal, jomirife, lan, tutorial, technology, packet tracer, solve, firewall, demonstration, command line, operating system, devices, computer, cybersecurity essentials, class, wireless, cybersecurity, wan, networks, how to, http, https, secure, encrypted, unencrypted, remote access, web page, Router ACLs, access control list
Id: zehDPIEP7Rw
Channel Id: undefined
Length: 9min 40sec (580 seconds)
Published: Sun Feb 21 2021
Related Videos
Note
Please note that this website is currently a work in progress! Lots of interesting data and statistics to come.