Objectives:

1. Make sure that you are using the first two IP numbers in your range; the first should be assigned to your Debian machine, and the second should be assigned to your virtual CentOS server.
2. Install and run sshd on both machines.
3. Make sure that your webservers on both machines are available and running; in particular, you should make sure that your CMS is still working as well as the redirect from your Debian box.
4. If not already there, firewall both machines but make sure that both ports 22 and port 80 are both still available to the world.
5. (OPTIONAL) Install fail2ban on port 22 of either or both of your boxes.

Step (1) should be trivial; just verify that you are using the right two ip numbers.

Step (2) shouldn't be much harder. Either yum or apt-get are enough to accomplish this task (with maybe a service/chkconfig to make sure that it's running and will run on startup.)

Step (3) should also be trivial; just verify that everything is working.

Step (4) can be very easy (look at ufw for instance), or you can just set up your iptables by hand (see ULSAH pp. 935-939.) (For myself, I prefer to do this by hand if I am planning to do run fail2ban.)

Step (5) is probably the most challenging bit, and thus I left it as an optional exercise. If you accept the challenge, expect to spend an extra hour or so doing the assignment if you have never worked with fail2ban and/or iptable manipulation.

Whatever you decide on Step (5), please verify that your changes are permanent by rebooting the machine and checking all of your services. We will spend sometime on Tuesday verifying that all of your services are available.

A journal is due for this assignment. Make sure that you document in your journal all of the steps that you went through, following the guidelines on the class home page. Please turn in a printed copy of this assignment at the beginning of class on Tuesday, July 15.