932
edits
Changes
m
Upon completion of this lab, each of your vms has a firewall protecting them from unexpected traffic. You should now have a basic understanding of the commands necessary to modify firewalls using iptables. You will be building on these rules for the rest of the course. Record the URLs of the websites you've used to figure out how to do the work.
Making completion notes match standard template.
# When you are confident the rules are working, save them by running <source lang='bash'>iptables-save > /etc/sysconfig/iptables</source><br />Note that this should not include the rules from the virtual network. They will always be added automatically when libvirtd starts.
# Now start libvirtd again, and test that your firewall still allows the VMs to connect to the host and each other (ping and ssh). Do not continue until it works.
{{Admon/tip|Time for a new backup!|Once have successfully completed this lab, make a new backup of your virtual machines.}}
'''Record steps, commands, and your observations in INVESTIGATION 2 in your OPS335 lab log-book'''
== COMPLETING THE LAB == Upon completion of this lab, each of your machines has a firewall protecting them from unexpected traffic. You should now have a basic understanding of the commands necessary to modify firewalls using iptables. You will be building on these rules for the rest of the course. '''Depending on your professor you will either be asked to submit the lab in class, or online. Follow the appropriate set of instructions below.''' ===Online Submission===Follow the instructions for lab 2a on moodle. ===In Class Submission===
[[Image:lab1_signoff.png|thumb|right|300px|Students should be prepared with '''all required commands (system information) displayed in a terminal (or multiple terminals) prior to calling the instructor for signoff'''.]]
'''Arrange evidence (command output) for each of these items on your screen, then ask your instructor to review them and sign off on the lab's completion:'''
::<span style="color:green;font-size:1.5em;">✓</span>Listing of iptables rules (vm1, vm2, vm3).
::<span style="color:green;font-size:1.5em;">✓</span>Proof that the iptables rules work for at least vm1your host.::<span style="color:green;font-size:1.5em;">✓</span>Shell script containing your iptables rules called: '''myicmp_restorefirewall.bash'''
