SCHOOL OF COMPUTER SCIENCE AND ENGINEERING

Assessment - 1, Winter Semester- 2023-24 Course Code & Name: BCSE354E

Information Security Management
Slot : L57+L58 Class Number: VL2023240503105

Objective:
The objective of this assignment is to configure a Cisco ASA firewall using Packet Tracer to:

1. Set up basic network topology.

2. Configure the new DHCP address and assign to the host PC
3. Implement Network Address Translation (NAT) for internal hosts.
4. Configure access control rules to permit or deny traffic.
5. Test and verify the firewall's functionality.

Assignment Tasks:

Task 1: Setting up the Network Topology

1. Open Cisco Packet Tracer and create a new blank project.
2. Design a network topology consisting of at least:
- A Cisco ASA firewall.
- Internal LAN with multiple hosts.
- External network (Internet) connection.

Task 2: Configuring Basic Firewall Settings

1. Configure the interfaces of the ASA firewall:
- Assign IP addresses and subnet masks to each interface.
- Enable interfaces and set security levels (e.g., inside, outside).
2. Set up default routes to direct traffic.
3. Enable SSH access for remote management.
Task 3: Configure the DNCP
1. Setup the DHCP address based the ip address of the firewall
2. Setup the DNS
3. Assign the IP address to the host

Task 4: Creating Access Control Rules

1. Define access control rules to allow or deny traffic based on:
- Source and destination IP addresses.
- Ports and protocols.
- Security levels (e.g., higher security level can access lower but not vice versa).
2. Configure an Access Control List (ACL) for both inbound and outbound traffic.

Task 5 Implementing Network Address Translation (NAT)

1. Set up NAT rules to translate internal private IP addresses to public IP addresses for
outbound traffic.
2. Configure Static NAT for specific internal hosts to be accessible from the outside.

Task 6: Testing and Verification

1. Test the firewall configuration by sending traffic from internal hosts to external
destinations and vice versa.
2. Verify that access control rules are applied correctly.
3. Ensure NAT translations are functioning as expected.
4. Troubleshoot and resolve any issues encountered during testing.

Submission Guidelines:
1. Document the configuration steps performed for each task.
2. Include screenshots of the network topology and relevant configurations.
3. Provide a summary of testing results and any troubleshooting steps taken.
4. Submit the assignment document along with Packet Tracer project files.