Network administration project for access control between 3 servers
3 Servers have been provided with credentials for access. The goal of this lab is to
"Note:
All tasks should be performed as the root user. All tasks performed will not persist through a reboot. IP forwarding is enabled on Server 1 to allow packets to be forwarded between Servers 2 and 3."
Learning Objectives Enable Access from Server 2 and Server 3 to the eth1 and eth2 Interfaces on Server 1 Enable Access between Server 2 and Server 3 Prohibit Access to the 10.0.1.0 Network on Server 3
Enable Access from Server 2 and Server 3 to the eth1 and eth2 Interfaces on Server 1 Find the IP addresses for the eth1 and eth2 interfaces:
ip a On Server 2, create a static route to enable access for the 10.0.3.0 network on the 10.0.2.20 interface on Server 1:
ip route add 10.0.3.0/24 via 10.0.2.20 dev eth0 On Server 3, create a static route to enable access for the 10.0.2.0 network on the 10.0.2.20 interface on Server 1:
ip route add 10.0.2.0/24 via 10.0.3.20 dev eth0 Verify the routes:
ip route Enable Access between Server 2 and Server 3 On Server 1, create a static route for the 10.0.3.0 network on the 10.0.3.20 interface:
On Server 1, create a static route for the 10.0.2.0 network on the 10.0.2.20 interface:
Verify the routes:
ip route On Server 2, ping 10.0.2.20 and 10.0.3.20:
ping 10.0.2.20 ping 10.0.3.20 Ping the network interface on Server 3:
ping 10.0.3.10 On Server 3, ping 10.0.2.20:
ping 10.0.2.20 Ping Server 2:
ping 10.0.2.10 Prohibit Access to the 10.0.1.0 Network on Server 3 Run ip route:
ip route Ping 10.0.1.10:
ping 10.0.1.10 On Server 3, remove the static route for the 10.0.1.0 network on the 10.0.3.20 interface:
Verify the route was removed:
ip route On Server 3, prohibit access to the 10.0.1.0 network:
Verify traffic is prohibited:
ip route Try to access 10.0.1.10:
ping 10.0.1.10