Part-3 Apache Server (plus PHP) on Alpine Linux to serve pages over port 80
This setup is part of a larger lab for CCNA(networking) students to learn how to setup a (almost) complete web application from corporate client accessing behind corporate proxy(squid proxy) to server serving web pages while being protecting behind WAF(web application firewall) which is Nginx in this case.
This setup has moved from creating two DNS server( internal(Corporate) DNS server and external(Public) DNS server) to simulate DNS traffic. Now, as the next step in this lab, we are creating an Apache server to serve web page for the client.
The client used is on the same subnet as the NAT network of the VM where the DNS servers and the Apache server is installed in this lab. So, the client requests are made directly from the Host machine of the VM to make request to the Apache server.
Packet capture taken on Server. The Traffic capture is shown in Wireshark to demonstrate traffic between the Client and the Apache web server. A short explanation of ephemeral port is shown. The various headers are shown in the packet capture as the traffic is over HTTP(port 80). The port 80 is used to show unsecure packets to view the web traffic for learner wishing to view the traffic in Wireshark.
A test case is shown that a potential XSS (cross site scripting) can be performed but, there is no protection to the Apache Server. So, In the next video, we will create a WAF to block such requests from reaching the server.