Information Security Practice II Installation and set-up of Web Server and FTP accounts Installation of IIS Setup of laboratory 3 virtual machines are required in this laboratory: 1. Win2003 the web server where IIS 6 is installed and configured; 2. XP to access the web server for testing, and 3. DC to act as the ISPs that makes up the Internet; Installation of IIS Laboratory setup 1. Log-on Win2003. Control Panel Add/Remove Windows Component. 2. Check Application Server, then Details, Internet Information Services, Details, check also FTP Service. 3. Click OK, OK, Next to install the software. You would be prompted to enter the Windows CD during the installation. 4. Check the installation is successful by going to Programs Administrative Tools Internet Services Manager. You should see your server WIN2003 with 4 folders. 5. Check there is a Default Web Site under the folder Web Sites and a Default FTP site under FTP Sites. Testing of IIS 6. Start XP. Use the original IP connection setup (i.e. 192.168.1.1).Check it can ping your server. 7. Use Internet Explorer to access 192.168.1.211. You should see the following screen. - 1 -
Starting page of default IIS web site 8. Type ftp://192.168.1.211 and you will have access to the default FTP site. But at the moment there is nothing there. Configuration of IIS 9. Go back to Win2003. Right click the icon of the Default Web Site, select Properties. You can now configure the web site. The same can be done for the FTP site. 10. Go to Drive C, you can see the folder Inetpub is created. The folder wwwroot contains the default web site while the ftproot contains the default FTP site. There is nothing inside ftproot. Create a text file there. 11. Go back to IIS Manger. Refresh. 12. Refresh your browser at XP. You should now see the file you newly created. Building of your own website Now you have created the web pages and graphics of your website. You are also given the IP 192.168.1.212 for your web site. We would use the following steps to build your web site. Adjustment made to network 1. On the web server, go to Network Connections, Properties, TCP/IP, Properties, click Advanced. Under the IP Settings tag, add the IP 192.168.1.212. Create local user of web server 2. Start, Administrative Tools, Computer Management, Local Users and Groups, User, create a new user say A1. - 2 -
Build file structure 3. Add a new folder website to drive C; then within website create another folder LocalUser ; and within LocalUser, the folder A1 to store the contents of the web site of user A1. 4. Right click the folder A1, Properties, Security. Add the user A1 and give him the Modify right. Create web site 5. At the IIS Manager, right click Web Site, New to create a new web site. 6. Give the description yourname.com to the description. Next. 7. Choose the IP 192.168.1.212 for the web site. Browse to the path C:\website\LocalUser\A1. Finish the installation using the default values. Create FTP account for uploading of web material 8. Right click FTP Sites, New, FTP site. 9. Give the description Isolated FTP. 10. Use also the IP 192.168.1.212. 11. Check Isolate user. 12. Browse to C:\website and finish the installation. Allow both Read and Write permissions. The Isolated FTP site will be created. 13. Right click Isolated FTP, New, Virtual Directory. 14. The alias is A1 and the path C:\website\LocalUser\A1. Finish the installation. 15. Right click Win2003, All Tasks to restart the IIS service. 16. From XP, type ftp://192.168.1.212 to access the ftp account. See if you can enter by giving your user name and password. Uploading of web site contents 17. Install the program CuteFTP provided by your teacher to the XP machine. 18. Copy the folder sample website to XP. 19. Start CuteFTP. 20. Transfer the sample web contents to the web server. Testing 21. Can you access the new web site from XP? - 3 -
Accessing the web site by using the URL Using CuteFTP to upload web material This is only possible if a DNS server is used which can convert the IP address to the URL. The ISP will do it for you when you apply for an URL. In this laboratory we would use the DC to act as the DNS server to simulate this situation. Preparation 1. Add another NIC to DC and connection to local only. You can rename one local area connection as Web and the other as XP. Set the IPs. 2. Revise the IP of the XP machine to 10.1.1.1. 3. From the DC, ping the web server and the XP machine. 4. From the XP, ping the web server and the DC machine. 5. Check if the gateway of the web server is set correctly. Installation of DNS Server 6. From the server DC, Programs Administrative Tools Routing and Remote Access. Select Configure and Enable Routing and Remote Access, then Custom Configuration and LAN Routing. 7. From XP, check if you can ping 192.168.1.212. 8. Install the DNS service: Control Panel Add/Remove Windows Components Networking Services DNS. 9. From Administrative Tools, select DNS. A dialogue will show and tells you that the DNS server is not yet configured. Select Action from the menu, then Configure a DNS server. Give answers to the questions prompt to set up the DNS server. - 4 -
Configure of DNS server When you host your web site you should first register a domain name with the concerned authority and the name would be entered into a DNS server. We would simulate this step. 10. Log-on DC. Go to Administrative Tools DNS. 11. Under DC right click the Forward Lookup Zone to create a new zone. Select standard primary and enter yourname.com as the name of the new zone. 12. Right click on the new zone created to create a new host with the name Win2003 and IP address 192.168.1.212. 13. Right click the new zone again to create an alias to point to the web server with the alias name www and fully qualified name for target host Win2003.yourname.com 14. The web server is now ready for operation. Testing 15. Log-on XP and start Internet Explorer. 16. Try to access the web site by typing http://192.168.1.212. 17. Enter the URL yourname.com in the address bar. Is the web page shown? Result Submit screen capture of the following: 1. IIS Manager of web server, showing the web sites and the ftp sites. 2. XP accessing the www.yourname.com - 5 -