# RuleNumber,Action,Source MAC,Destination MAC,Source IP,Destination IP,Protocol,Source Port,Destination Port,Comment/Note

# Task 1: A connection from any host in the word should be able connect to hq1 on  TCP and UDP 853. However, only hosts on the US, China, India, UK, and HQ networks should  be able to connect to TCP and UDP 853 on host hq2. All other hosts should NOT be able to  connect to the DNS Server on host hq2.

0,Allow,-,00:00:00:00:00:1e,-,-,6,-,853,Allow any host to connect to hq1 on TCP 853

1,Allow,-,00:00:00:00:00:1e,-,-,17,-,853,Allow any host to connect to hq1 on UDP 853

2,Block,-,00:00:00:00:01:1e,-,-,6,-,853,Block all other hosts from connecting to hq2 on TCP 853

3,Block,-,00:00:00:00:01:1e,-,-,17,-,853,Block all other hosts from connecting to hq2 on UDP 853

4,Allow,00:00:00:00:00:1e,00:00:00:00:01:1e,-,-,6,-,853,Allow HQ network to connect to hq2 on TCP 853

5,Allow,00:00:00:00:00:1e,00:00:00:00:01:1e,-,-,17,-,853,Allow HQ network to connect to hq2 on UDP 853

6,Allow,-,00:00:00:00:01:1e,10.0.1.0/24,-,6,-,853,Allow US network to connect to hq2 on TCP 853

7,Allow,-,00:00:00:00:01:1e,10.0.1.0/24,-,17,-,853,Allow US network to connect to hq2 on UDP 853

8,Allow,-,00:00:00:00:01:1e,10.0.20.0/24,-,6,-,853,Allow India network to connect to hq2 on TCP 853

9,Allow,-,00:00:00:00:01:1e,10.0.20.0/24,-,17,-,853,Allow India network to connect to hq2 on UDP 853

10,Allow,-,00:00:00:00:01:1e,10.0.30.0/24,-,6,-,853,Allow China network to connect to hq2 on TCP 853

11,Allow,-,00:00:00:00:01:1e,10.0.30.0/24,-,17,-,853,Allow China network to connect to hq2 on UDP 853

12,Allow,-,00:00:00:00:01:1e,10.0.40.0/24,-,6,-,853,Allow UK network to connect to hq2 on TCP 853

13,Allow,-,00:00:00:00:01:1e,10.0.40.0/24,-,17,-,853,Allow UK network to connect to hq2 on UDP 853

# Task 2: Only hosts us3, uk3, in3, and cn3 should connect to TCP and UDP Port 1194  on host HQ3. No other host should be able to connect to TCP and UDP 1194 on hq3.

15,Block,-,00:00:00:00:02:1e,-,-,6,-,1194,Block all other hosts from connecting to hq3 on TCP 1194

16,Block,-,00:00:00:00:02:1e,-,-,17,-,1194,Block all other hosts from connecting to hq3 on UDP 1194

7,Allow,00:00:00:03:02:1e,00:00:00:00:02:1e,-,-,6,-,1194,Allow us3 to connect to hq3 on TCP 1194

8,Allow,00:00:00:03:02:1e,00:00:00:00:02:1e,-,-,17,-,1194,Allow us3 to connect to hq3 on UDP 1194

9,Allow,00:00:00:08:02:1e,00:00:00:00:02:1e,-,-,6,-,1194,Allow in3 to connect to hq3 on TCP 1194

10,Allow,00:00:00:08:02:1e,00:00:00:00:02:1e,-,-,17,-,1194,Allow in3 to connect to hq3 on UDP 1194

11,Allow,00:00:00:0d:02:1e,00:00:00:00:02:1e,-,-,6,-,1194,Allow cn3 to connect to hq3 on TCP 1194

12,Allow,00:00:00:0d:02:1e,00:00:00:00:02:1e,-,-,17,-,1194,Allow cn3 to connect to hq3 on UDP 1194

13,Allow,00:00:00:02:02:1e,00:00:00:00:02:1e,-,-,6,-,1194,Allow uk3 to connect to hq3 on TCP 1194

14,Allow,00:00:00:02:02:1e,00:00:00:00:02:1e,-,-,17,-,1194,Allow uk3 to connect to hq3 on UDP 1194

# Task 3

18,Block,-,-,-,10.0.1.0/24,1,-,-,Block world from pinging US network

18,Allow,-,-,10.0.0.0/24,10.0.1.0/24,1,-,-,Block world from pinging US network

19,Block,-,-,-,10.0.40.0/24,1,-,-,Block world from pinging UK network

19,Allow,-,-,10.0.0.0/24,10.0.40.0/24,1,-,-,Block world from pinging UK network

20,Block,-,-,-,10.0.20.0/24,1,-,-,Block world from pinging India network

20,Allow,-,-,10.0.0.0/24,10.0.20.0/24,1,-,-,Block world from pinging India network

21,Block,-,-,-,10.0.30.0/24,1,-,-,Block world from pinging China network

21,Allow,-,-,10.0.0.0/24,10.0.30.0/24,1,-,-,Block world from pinging China network

17,Allow,-,-,-,10.0.0.0/24,1,-,-,Allow world to ping HQ network

# Task 4

22,Block,-,-,-,10.0.0.0/24,6,-,3389,Block world from connecting to corporate network on RDP (TCP 3389)

23,Block,-,-,-,10.0.0.0/24,6,-,5900,Block world from connecting to corporate network on VNC (TCP 5900)

24,Allow,-,-,10.0.0.0/24,10.0.0.0/24,6,-,3389,Allow corporate network to connect to HQ on RDP (TCP 3389)

25,Allow,-,-,10.0.0.0/24,10.0.0.0/24,6,-,5900,Allow corporate network to connect to HQ on VNC (TCP 5900)

22,Block,-,-,-,10.0.1.0/24,6,-,3389,Block world from connecting to corporate network on RDP (TCP 3389)

23,Block,-,-,-,10.0.1.0/24,6,-,5900,Block world from connecting to corporate network on VNC (TCP 5900)

24,Allow,-,-,10.0.1.0/24,10.0.0.0/24,6,-,3389,Allow corporate network to connect to HQ on RDP (TCP 3389)

25,Allow,-,-,10.0.1.0/24,10.0.0.0/24,6,-,5900,Allow corporate network to connect to HQ on VNC (TCP 5900)

22,Block,-,-,-,10.0.20.0/24,6,-,3389,Block world from connecting to corporate network on RDP (TCP 3389)

23,Block,-,-,-,10.0.20.0/24,6,-,5900,Block world from connecting to corporate network on VNC (TCP 5900)

24,Allow,-,-,10.0.20.0/24,10.0.0.0/24,6,-,3389,Allow corporate network to connect to HQ on RDP (TCP 3389)

25,Allow,-,-,10.0.40.0/24,10.0.0.0/24,6,-,5900,Allow corporate network to connect to HQ on VNC (TCP 5900)

22,Block,-,-,-,10.0.40.0/24,6,-,3389,Block world from connecting to corporate network on RDP (TCP 3389)

23,Block,-,-,-,10.0.40.0/24,6,-,5900,Block world from connecting to corporate network on VNC (TCP 5900)

24,Allow,-,-,10.0.40.0/24,10.0.0.0/24,6,-,3389,Allow corporate network to connect to HQ on RDP (TCP 3389)

25,Allow,-,-,10.0.20.0/24,10.0.0.0/24,6,-,5900,Allow corporate network to connect to HQ on VNC (TCP 5900)

22,Block,-,-,-,10.0.30.0/24,6,-,3389,Block world from connecting to corporate network on RDP (TCP 3389)

23,Block,-,-,-,10.0.30.0/24,6,-,5900,Block world from connecting to corporate network on VNC (TCP 5900)

24,Allow,-,-,10.0.30.0/24,10.0.0.0/24,6,-,3389,Allow corporate network to connect to HQ on RDP (TCP 3389)

25,Allow,-,-,10.0.30.0/24,10.0.0.0/24,6,-,5900,Allow corporate network to connect to HQ on VNC (TCP 5900)

# Task 5

26,Block,-,-,10.0.40.128/32,10.0.1.33/32,6,-,8510,Block uk2 from connecting to us3 on TCP 8510

26,Block,-,-,10.0.40.128/32,10.0.1.34/32,6,-,8510,Block uk2 from connecting to us4 on TCP 8510

27,Block,-,-,10.0.40.129/32,10.0.1.33/32,6,-,8510,Block uk3 from connecting to us3 on TCP 8510

27,Block,-,-,10.0.40.129/32,10.0.1.34/32,6,-,8510,Block uk3 from connecting to us4 on TCP 8510

28,Block,-,-,10.0.40.130/32,10.0.1.33/32,6,-,8510,Block uk4 from connecting to us3 on TCP 8510

29,Block,-,-,10.0.40.130/32,10.0.1.34/32,6,-,8510,Block uk5 from connecting to us4 on TCP 8510

29,Block,-,-,10.0.40.131/32,10.0.1.33/32,6,-,8510,Block uk5 from connecting to us3 on TCP 8510

29,Block,-,-,10.0.40.131/32,10.0.1.34/32,6,-,8510,Block uk5 from connecting to us4 on TCP 8510

30,Block,-,-,10.0.20.126/32,10.0.1.33/32,6,-,8510,Block in4 from connecting to us3 on TCP 8510

30,Block,-,-,10.0.20.126/32,10.0.1.34/32,6,-,8510,Block in4 from connecting to us4 on TCP 8510

31,Block,-,-,10.0.20.125/32,10.0.1.33/32,6,-,8510,Block in5 from connecting to us3 on TCP 8510

31,Block,-,-,10.0.20.125/32,10.0.1.34/32,6,-,8510,Block in5 from connecting to us4 on TCP 8510

32,Block,-,-,10.0.1.125/32,10.0.1.33/32,6,-,8510,Block us5 from connecting to us4 on TCP 8510

32,Block,-,-,10.0.1.125/32,10.0.1.34/32,6,-,8510,Block us5 from connecting to us4 on TCP 8510

33,Block,-,-,10.0.0.220/32,10.0.1.33/32,6,-,8510,Block hq5 from connecting to us3 on TCP 8510

33,Block,-,-,10.0.0.220/32,10.0.1.34/32,6,-,8510,Block hq5 from connecting to us4 on TCP 8510