The learning objective of this lab is for students to learn how firwall works by implementing a simple personal firewall for Minix. A personal firewall controls network traffic to and from a computer, permitting or denying communications based on a security policy.

Firewalls have several types; in this lab, we focus on a very simple type, the packet filter. Packet filters act by inspecting the packets. If a packet matches the packet filter's set of rules, the packet filter will drop the packet either silently or send an "error responses" to the source. Packet filters are usually stateless; it filter each packet based only on the information contained in that packet, without paying attention to whether a packet is part of an existing stream of traffic. Packet filters often use a combination of the packet's source and destination address, its protocol, and, for TCP and UDP traffic, the port number.

Lab Tasks (Description)

  • For instructors: if you prefer to customize the lab description to suit your own courses, here are our Latex source files.
  • Operating System: This lab needs to be carried out in the Minix 3 operating system.

Recommended Time: 4 weeks

Helpful Documents

SEED Project