This document provides instructions for performing various operations in Kali Linux, including: 1) Using ifconfig to display interface details and find the IP address and MAC address of eth0. 2) Using ping to send 5 messages to uncp.edu and submitting the IP address seen. 3) Using route to find the default route and submitting the IP address packets are sent to.

1. (100 pts) For this assignment, you will be using Kali Linux. Perform the following Kali Linux
operations. You can use manual pages to find more details about the operations. (a) The ifconfig
command with no arguments will display all the active interface details. Use the following to find IP
address and MAC address of eth0. Eth0 is the Ethernet adapter. IP address will be of the form
a.b.c.d where a,b,c,d are integers and MAC address will be of the form AB:CD:EF:GH:IJ:KL where
a,b,c,d,e,f,g,h,i,,k,l are hexadecimal numbers (09,A.F). Type the following command in Kali Linux
terminal. if config Submit IP address and MAC address as part of this assignment. (b) You can use
ping command to confirm that a remote host is online and responding. Ping is intended for use in
network testing, measurement, and management. Type the following to send 5 messages to
uncp.edu ping - 5 uncp.edu Submit IP address of uncp.edu you see during ping as part of this
assignment. (c) Kernel IP routing table is used to determine where to send the packets. Packets
that match specific entries are sent accordingly. Packets that do not match any entries are sent to
default route. You can use the route command to find kernel IP routing table. Type the following to
fund kernel routing table. route Submit IP address where packets that match default route are sent
as part of this assignment. (d) You can use internet domain name servers using nslookup. Type
the following to find IP address of uncp.edu nslookup uncp.edu Submit IP address of uncp.edu
you see during nslookup as part of this assignment. (e) netstat command can be used to print
interface statistics. Type the following command and examine the output. Output is organized
according to protocol.netstat s Submit number of active TCP connection openings as part of this
assignment. (f) Use tcpdump to capture packets. Following command will capture 10 packets on
Ethernet interface. sudo tcpdump - 10 -i etho Use the following on another terminal to generate
packets to be captured ping - 20 uncp.edu You will see some additional packets generated
besides ping packets. DNS will be used to find IP address of uncp.edu. Submit the name of the
machine which responds to ping packets. You will see ICMP echo reply in packet details. (g)
iptables is a command-line firewall utility that uses policy chains to allow or block traffic. When a
connection tries to establish itself on your system, iptables looks for a rule in its list to match it to. If
it doesn't find one, it resorts to the default action. Use the following to find IP address of uncp.edu
ping uncp.edu Use the following to block packets from uncp.edu sudo iptables -A INPUT -s
52.87.65.167 - j DROP Make the the IP address above is what you see in ping process. Try the
ping command again ping uncp.edu You will notice that packets are blocked by the firewall. You
can see all the iptables rules using the following sudo iptables -L You should see the above
inserted rule Submit the line corresponding to the inserted rule as part of this assignment. You can
delete all the rules using the following sudo iptables -F