Differences between revisions 6 and 15 (spanning 9 versions)
Revision 6 as of 2017-01-20 18:03:39
Size: 2046
Editor: scot
Comment:
Revision 15 as of 2021-02-03 19:34:19
Size: 2004
Editor: scot
Comment:
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
= Lab 02: NAT and firewall setup = = Lab 02 - NAT and firewall setup =
Line 7: Line 7:
 1. Lastly, we'll provide a NAT rule to access the Windows 10 VM via RDP and enable remote desktop access for the Windows 10 VM.  1. Lastly, we'll provide a NAT rule to access the Ubuntu VM via RDP and enable remote desktop access for the Ubuntu VM.
Line 16: Line 16:
    1. Windows 10 --> 192.168.1.2
    1. Windows 2016 --> 192.168.1.3
    1. Ubuntu 20.04 Desktop --> 192.168.1.2
    1. Windows 2019 --> 192.168.1.3
Line 23: Line 23:
{{http://db2.cs.southern.edu/videos/images/CPTR427/Lab02/dhcpmap.png}} {{http://db.cs.southern.edu/videos/images/CPTR427/Lab02/dhcpmap.png}}
Line 27: Line 27:
{{http://db2.cs.southern.edu/videos/images/CPTR427/Lab02/firewallrule.png}} {{http://db.cs.southern.edu/videos/images/CPTR427/Lab02/firewallrule.png}}
Line 29: Line 29:
Finally, select NAT from the Firewall menu and add a NAT rule that allows you to access your Windows 10 machine using RDP by connecting to the public IP side of your pfSense box. Finally, select NAT from the Firewall menu and add a NAT rule that allows you to access your Ubuntu machine using RDP by connecting to the public IP side of your pfSense box.
Line 31: Line 31:
{{http://db2.cs.southern.edu/videos/images/CPTR427/Lab02/nat.png}} {{http://db.cs.southern.edu/videos/images/CPTR427/Lab02/nat.png}}
Line 35: Line 35:
 1. Remote into your Windows 10 VM.
 1. Show me that you have DHCP reservations for each of your four computers
 1. Show me that the rule to block all outgoing and incoming packets to the metasploitable 3 VM actually works
 1. Show me that you can remote desktop to your other windows machines (Windows 2016, Metasploitable)
 1. Show me that you can access your Kali machine. (GUI would be nice, but SSH will get you a pass for now).
 1. Show me that you can remote use RDP to connect to your Ubuntu machine from outside your network.
 1. Show me that you have DHCP reservations for each of your five computers on pfSense
 1. Show me that the rule to block all outgoing and incoming packets to the metasploitable VM actually works (from metasploitable you should not be able to access the internet - login and do a ping of google)

Lab 02 - NAT and firewall setup

Concepts:

  1. DHCP Reservations - We'll create sudo static IPs using DHCP reservations.
  2. Firewall rules - Metasploitable 3 is something we shouldn't allow access to the internet. Consequently we'll be blocking internet access to that particular VM.
  3. Lastly, we'll provide a NAT rule to access the Ubuntu VM via RDP and enable remote desktop access for the Ubuntu VM.

Completing the Lab:

The best approach completes the three items above in order. From networking class, you should know how DHCP works.

  1. You will need the MAC address of each VM. Go and get them and write them down.
  2. In the service menu, click on DCHP server and make sure the LAN is selected at the top.
  3. At the bottom of the page add "DHCP Static Mappings for this Interface" for each VM. I did them as follows:
    1. Ubuntu 20.04 Desktop --> 192.168.1.2

    2. Windows 2019 --> 192.168.1.3

    3. Kali --> 192.168.1.4

    4. Metasploitable 3 --> 192.168.1.5

The result looks like the:

http://db.cs.southern.edu/videos/images/CPTR427/Lab02/dhcpmap.png

Next, create a blocking rule for the Metasploitable 3 VM blocking all access to/from the internet. This can be done from the Firewall Menu, item Rules.

http://db.cs.southern.edu/videos/images/CPTR427/Lab02/firewallrule.png

Finally, select NAT from the Firewall menu and add a NAT rule that allows you to access your Ubuntu machine using RDP by connecting to the public IP side of your pfSense box.

http://db.cs.southern.edu/videos/images/CPTR427/Lab02/nat.png

Show Me:

  1. Show me that you can remote use RDP to connect to your Ubuntu machine from outside your network.
  2. Show me that you have DHCP reservations for each of your five computers on pfSense
  3. Show me that the rule to block all outgoing and incoming packets to the metasploitable VM actually works (from metasploitable you should not be able to access the internet - login and do a ping of google)

NetworkSecurity/Lab/Lab02 (last edited 2021-02-03 19:34:19 by scot)