Lab03 MGMT Network - Henryisgreat/TechJournal GitHub Wiki

Wks1

  • Add administrator account wks-1
  • Change hostname
    • Windows + r and type sysdm.cpl
    • Change
    • Give the name
  • Configure ipv4 information
    • Network and sharing center
    • Ethernet0 properties
    • Ipv4
      • Ip address 172.16.150.50

FW-MGMT

  • Configure firewall with interface descriptions and addresses
    • Configure
    • Delete interfaces ethernet eth0 address dhcp
    • Delete interfaces ethernet eth1 address dhcp
    • Set interfaces ethernet eth0 address 172.16.150.3/24
    • Set interfaces ethernet eth0 address 172.16.200.2/28
    • Commit
    • Save
    • configure
    • Set interface ethernet eth0 description LAN
    • Set interface ethernet eth1 description MGMT
  • Configure NAT and DNS for mgmt network
    • NAT
      • configure
      • set nat source rule 10 description “NAT FROM MGMT TO LAN”
      • set nat source rule 10 outbound-interface eth0
      • set nat source rule 10 source address <address>
      • set nat source rule 10 translation address masquerade
      • commit
      • Save
        • Where
          = the net address of DMZ
    • DNS
    • Configure
    • Set service dns forwarding listen-address <address1>
    • Set service dns forwarding allow-from <address2>
      • Where address1 = network address of MGMT
      • Where address2 = ip address of machine on mgmt

LOG01

  • Switch network to the MGMT from the DMZ
  • Change network information accordingly
    • Ip 172.16.200.10/28
    • 172.16.200.2
    • 172.16.200.2

Web01

  • Configure /etc/rsyslog.d/sec350.conf to send logs to new Log01 address (172.16.200.10)
⚠️ **GitHub.com Fallback** ⚠️