This week, we are given 2 tasks which are:
Task 1: Capture FTP username and password
Task 2: Using IPSec to secure FTP Transaction
Task 2: Using IPSec to secure FTP Transaction
Capturing File Transfer Protocol (FTP) username and password
Step 1: Start your virtual machine containing winserv03_server and winserv03_client.
Step 2: Login as Administrator
Step 3: Set the IP address of your winserv03_server and winserv03_client as below.
winserv03_server = 192.166.1.106
winserv03_client = 192.166.1.105
On winserv03_server:
Step 4: Check that your winserv03_server is already installed with FTP server and Wireshark. If FTP server installed than start the FTP service using [Start] | [Administrative tools] | [Internet Information Services (IIS)] otherwise you need a Windows Server 2003 CD to installed Internet Information Services (IIS) with FTP.
Step 5: Whereas if wireshark is not install then it can be downloaded for free from http://www.wireshark.org.
Step 6: If it is installed then open Wireshark on winserv03_server. [Start] | [Program] | [Wireshark].
Step 5: Whereas if wireshark is not install then it can be downloaded for free from http://www.wireshark.org.
Step 6: If it is installed then open Wireshark on winserv03_server. [Start] | [Program] | [Wireshark].
Step 7: Click on [Capture] | [Interfaces] to choose the network interfaces you wanted to monitor, refer figure 6.4. Choose the network interfaces that has an IP number 0f 192.168.1.106, click [Start], refer figure 6.5.
On winserv03_client
Step 9: As your login view the Wireshark interface on winserv03_server VM, you will notice that the username and password that you used to login to the FTP server from the winserv03_client side is clearly seen on the monitor. Capture the screen of your Wireshark output using print screen button on your keyboard.
Step 10: To simulate this on the real environment you need two computers connected via a cross cable.
Step 1: Click [Start] | [Run] and then type mmc.
Step 2: Management Console will appear and then, on the menu bar click [File] | [Add/Remove snap-in].
Step 3: On the Add/Remove Snap-in box, click [Add] button and select the [IP Security Monitor] and click [OK].
Step 4: Repeat step 3 by selecting IP Security Policy Management on Local Machine and then click [Finish].
Step 5: On the Add/Remove Snap-in, click [OK].
Step 6: In the right pane, right-click on [Secure Server (Require Security)] | [Properties].
Step 7: In the Secure Server (Require Security) Properties dialog box, highlight All IP Traffic and click [Edit].
Step 9: Highlight the Preshared Key and click the [Move up] button to make the preshared key as a first priority for the authentication. Click [Apply] | [OK].
Step 10: Click [OK] on the [Secure Server (Require Security)] Properties dialog box and close it.
Step 12: Click [Start] | [Run] and then type mmc.
Step 13: Management Console will appear and on the menu bar click [File] | [Add/Remove snap-in].
Step 14: On the Add/Remove Snap-in box, click [Add] button and select the [IP Security Monitor] and click [OK].
Step 16: On the Add/Remove Snap-in, click [OK].
Step 17: In the right pane, right-click on [Secure Server (Require
Security)] | [Properties].
Step 18: In the Client (Response Only) Properties dialog box, highlight and click [Edit].
Step 8:On winserv03_client VM open a command prompt, login to FTP server on winserv03_server using the following command.
On winserv03_server
Step 9: As your login view the Wireshark interface on winserv03_server VM, you will notice that the username and password that you used to login to the FTP server from the winserv03_client side is clearly seen on the monitor. Capture the screen of your Wireshark output using print screen button on your keyboard.
Step 10: To simulate this on the real environment you need two computers connected via a cross cable.
Using IPSec to secure FTP transaction
On winserv03_server
Step 1: Click [Start] | [Run] and then type mmc.
Step 2: Management Console will appear and then, on the menu bar click [File] | [Add/Remove snap-in].
Step 3: On the Add/Remove Snap-in box, click [Add] button and select the [IP Security Monitor] and click [OK].
Step 4: Repeat step 3 by selecting IP Security Policy Management on Local Machine and then click [Finish].
Step 5: On the Add/Remove Snap-in, click [OK].
Step 6: In the right pane, right-click on [Secure Server (Require Security)] | [Properties].
Step 7: In the Secure Server (Require Security) Properties dialog box, highlight All IP Traffic and click [Edit].
Step 8: On the Edit Rule Properties dialog box, select the Authentication Method tab. Click add and screen New Authentication Method Properties will appear. Select Use this string (preshared key) and then type MSPRESS in the scroll box, then click OK. Make sure your client preshared key must be same as server preshared key
Step 9: Highlight the Preshared Key and click the [Move up] button to make the preshared key as a first priority for the authentication. Click [Apply] | [OK].
Step 10: Click [OK] on the [Secure Server (Require Security)] Properties dialog box and close it.
Step 11: Right-click on [Secure Server (Require Security)], and click [Assign] from the pop-up menu.
On winserv03_client
Step 12: Click [Start] | [Run] and then type mmc.
Step 13: Management Console will appear and on the menu bar click [File] | [Add/Remove snap-in].
Step 14: On the Add/Remove Snap-in box, click [Add] button and select the [IP Security Monitor] and click [OK].
Step 15: Repeat step 3 by selecting IP Security Policy Management on Local Machine and then click [Finish].
Step 16: On the Add/Remove Snap-in, click [OK].
Step 17: In the right pane, right-click on [Secure Server (Require
Security)] | [Properties].
Step 18: In the Client (Response Only) Properties dialog box, highlight
0 comments:
Post a Comment