Visual Firewall Thinger

Difficulty:
Direct link: Visual Firewall Thinger

Objective

Request

Find Elgee in the big hotel for a firewall frolic and some techy fun.

Chris Elgee

Solution

Elgee made a Visual Firewall simulator that is supposed to teach about a firewall in 10 minutes.

A link is provided that leads to the firewall simulator.

The task is to protect different network zones by setting firewall rules. The network zones are as follows: internet, DMZ, internal network, workstations and cloud services.

For each network zone, I set the firewall rules as follows:

• Internet to DMZ: Allow only HTTP and HTTPS traffic.
• DMZ to Internal: Allow HTTP, HTTPS, and SSH traffic.
• Internal to DMZ: Allow HTTP, HTTPS, and SSH traffic.
• Internal to Cloud: Allow HTTP, HTTPS, SSH, and SMTP traffic.
• Internal to Workstations: Allow all traffic types.
• Security best practice: Block direct Internet to Internal access.

These rules limit exposure while still enabling required services:

• Internet to DMZ: Public web access only, nothing else exposed.
• DMZ to Internal: Permit web and admin access from the DMZ to internal services.
• Internal to DMZ: Allow internal management and service access to DMZ systems.
• Internal to Cloud: Enable web, admin, and mail traffic to cloud services.
• Internal to Workstations: Keep internal user traffic unrestricted.
• Security best practice: Prevent any direct Internet to internal network access.

The objective was added to the achievements list.

Response

Chris Elgee

finger guns Nice work! You've mastered those firewall fundamentals like a true network security pro.

Now that was way more fun than sitting through another boring lecture, wasn't it?