Saturday, October 17, 2009

Lab 7 -15092009-

Today’s lab is about security in network. This lab is focuses on FTP which is File Transfer Protocol and IPSec which is Internet Protocol Security.


Network security can be defined as prevention from nosy people from getting data they are not authorized. Most network security problem aroused by malicious people who intentionally trying to gain benefit or brings harm to someone else.


IPSec is a protocol suite for securing Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a data stream. IPsec also includes protocols for establishing mutual authentication between agents at the beginning of the session and negotiation of cryptographic keys to be used during the session. IPsec can be used to protect data flows between a pair of hosts (e.g. computer users or servers), between a pair of security gateways (e.g. routers or firewalls), or between a security gateway and a host. For IPsec to work, the sending and receiving devices must share a public key. This is accomplished through a protocol known asInternet Security Association and Key Management Protocol/Oakley (ISAKMP/Oakley), which allows the receiver to obtain a public key and authenticate the sender using digital certificates.


Our first task is to capture FTP username and password. First, virtual machine containing winserv03_server and winserv03_client is started. Then, login as adminidtrator. In client site, type the command “ftp” in order to secure FTP. Then the ftp> will appear in the next line. Type “open:” to 192.168.1.106. Then, open the Wireshark that has been installed early. Next, choose network interface and capture interface.


The next task is to secure FTP transaction using IPSec. At the end of the task, the FTP transaction will be secured.

No comments:

Post a Comment