Overview

Introduction

The Using Host-Based Firewall and Network Address Translation module provides you with the instruction and devices to develop your hands on skills in the defined topics. This module includes the following exercises:

  • Configuring Firewall Rules using Windows Firewall
  • Configuring Firewall Rules using Windows Firewall with Advanced Security
  • Configuring Firewall Rules using Remote Desktop
  • Configuring Firewall Rules from the Command Line Interface
  • Configuring NAT
  • Configuring Port Forwarding

Exam Objectives

The following exam objectives are covered in this lab:

  • 1.8 Given a scenario, implement and configure the appropriate addressing schema (NAT/PAT,
  • 3.3 Given a scenario, implement network hardening techniques (Anti-malware software, Host-based and Network-based)

Exercise 1 - Configuring Firewall Rules Using Windows Firewall

A firewall protects your computer from unauthorized access by users or applications outside of your corporate network. To make the firewall effective, you need to define/edit firewall rules. These rules analyze the packets coming to the computer or network and compare whether the specified conditions are satisfied and then allow/deny access to the computer or network accordingly. Windows Firewall application enables you to configure and edit firewall rules.

In this exercise, you will create firewall rules using Windows firewall and verify their efficiency in managing access to the computer.

Exercise 2 - Configuring Firewall Rules using Windows Firewall with Advanced Security

Windows versions including Vista, 2008, and later, provide another built-in application for system security - Windows Firewall with Advanced Security. This application offers an expansive view of firewall security and has additional features compared to the scaled down version of firewall in Windows XP.

In this exercise, you will create firewall rules using the Windows Firewall with Advanced Security and verify their efficiency in securing your computer.

Exercise 3 - Configuring Firewall Rules using Remote Desktop

Remote desktop is a built-in feature of Windows XP and later versions. Remote desktop enable you to setup a connection with any remote computing device on your network such that you can access the desktop of the computer and operate its resources as if they were local on your computer. Although similar to a VPN connection, a remote desktop connection gives you more control over the resources of the remote device.

Exercise 4 - Configuring Firewall Rules from the Command Line Interface

Command Line Interface, CLI for short, is one of the methods of communicating with operating system or other software such as applications. In CLI, you issue commands and receive responses in the format of text lines, delineated from each other by command prompts. CLI commands are powerful and can achieve more with each command because they communicate with the software directly. On the other hand, the CLI commands are not intuitive and you must remember the commands, the syntax, and the context to use them correctly.

Exercise 5 - Configuring NAT

Network Address Translation (NAT) is a feature included in Windows Server’s Routing and Remote Access Service or RRAS. NAT is used to connect multiple computers in a small private network to the Internet using a single public IP address provided by an Internet Service provider. The NAT server uses network interface connected to the Internet to process requests from internal computers by keeping track of IP addresses and port numbers that routed from the private network to Internet and vice-versa.

In this exercise, you will configure a device so that it performs Network Address Translation for an internal client to an external destination.

Exercise 6 - Configuring Port Forwarding

Port forwarding or port mapping is the process of redirecting a communication request from one IP address and port number to another while the data packets are passing through a router or a firewall. Port mapping is one of the capabilities built into Network Address Translation (NAT) feature in Routing and Remote Access Server.

In this exercise, you will set up NAT to configure port forwarding.

Comprehensive Learning

See the full benefits of our immersive learning experience with interactive courses and guided career paths.