Lab 01: Environment Setup - Hsanokklis/2023-2024-Tech-journal GitHub Wiki

image

image

This is a visualization of the lab

Pfsense is a firewall that we will be using in class and it will provide routing services between a Local Area Network and Wide Area Network in your VSphere environment.

  • Figure out how to modify the settings of your fw01 VM, and make sure that the first network adapter is assigned to WAN and the second assigned to the LAN-yourname

I went to the VM hardware which is nested under summary.

image

To make sure I had my WAN and LAN connected, I went into "edit" in VM hardware. The WAN adapter was already configured and ready to be connected when the VM was turned on.

image

I had to go into "add device" to create another network adapter for my LAN, and once I did that, I was able to choose the correct LAN named "LAN-hannelore.sanokklis"

Network Adpater screenshot

Here are my configured adapters:

image

  • Power on your fw01 VM and Open a VM Console

This is the powered on VM in the web browser

image

  • Assign Interfaces

WAN should be associated with the first interface and the LAN should be associated with the second interface. To double check & match network interface addresses, first find out the MAC addresses of the FW01’s network interfaces

Here are the adapters with their mac addresses:

  • WAN: 00:50:56:a1:b4:c1
  • LAN: 00:50:56:a1:33:ce

image

To reassign network interfaces, select 1:

wanlan

Here are the interfaces with their MAC addresses. The VLANs do not need to be set up.

image

WAN is set as em0 and LAN is set as em1

image

  • Set interface IP address

The Wan interface represents the outside of my network

Select 2 to configure Ip addresses

urmo!!!!

Here are the steps for setting up the WAN IP address

  • Do not use DHCP for the WAN IPv4 address
  • Enter the new WAN IPv4 address: 10.0.17.115/24 (include the CIDR notation)
  • Enter your upstream gateway address: 10.0.17.2 (do not include the CIDR notation it says its not a valid IPv4 address)
  • We are not using IPv6 or DHCP
  • We are using HTTPS for the GUI so respond no

image

image

  • Successfully setting the WAN IPv4 address:

image

Configure the LAN IPv4 address

  • Not doing DHCP
  • LAN Ip address is 10.0.5.2 (but the /24 CIDR notation)

its the same for every student because the LAN is specific for each student, which means that we are all on separate networks so the IP addresses will not cancel out, whereas for the WAN address we all have to have separate ones since we are all on the same network

  • There is no upstream gateway for the LAN

because the firewall is the gateway to get to the other networks

  • NO DHCP
  • No IPv6 configuration
  • Do not enable LAN DHCP server
  • Do not revert to HTTP

image

  • Sucessful configuration of both WAN and LAN IP interfaces

image

Windows 10 - wks01

  • adjust wks01's network config to be LAN-hannelore.sanokklis on network adapter 1.

  • I went to VM hardware and changed the adapter under edit

image

  • Open up your windows box

image

  • go to file explorer in the box
  • Right click on "this pc"
  • Click properties
  • Click on "change settings" under "computer, name, domain and workgroup settings"

image

SIDE QUEST

  • rename the workstation

image

image

Set up a new local admin account

  • rename the PC (go to settings and go to view PC name)

image

Once you rename it, it will restart the pc. But don't click on the new account you just made since you have not made yourself admin yet in the Champuser account, so sign into the champuser account and follow the steps below to make the account admin.

image

  • Open account system settings (type in lusrmgr.msc)

image

  • add a new user

image

image

  • Add user to the local administrator Group

image

You can see here now listed under "Member Of" it says administrator

image

  • check under group to make sure the account was added as an admin

image

  • Log out and log in again and you should have admin privileges

image

  • To test that you are actually admin go to command line and run it as admin
  • Then type "whoami" and "hostname"

image

  • Go to control panel
  • Go to network and internet
  • Go to network and sharing center
  • Go to connections: ethernet

image

  • Go to properties

image

  • Go to IPv4

image

  • Configure the IPv4 addresses

The default gateway is the IP address of the firewall, and the IP address is the one that I am configuring

image

fw01 gui configuration

The windows 10 system is not connected to the internet. We need to adjust the firewall (fw01) to allow this to happen.

  • Navigate to fw01's LAN IP address

TROUBLESHOOTING: The fpsense link was not working for me.

image

I went to the command line and type in ipconfig to see if the IP address and default gateway was actually configured, and they were not there. Then I just went back into the properties for IPv4 properties and saw that what I had configured before did not save for some reason so I just put them in again and redid ipconfig and it worked that time and problem solved!

  • Here are the configured IPv4 addresses!

image

  • Navigate to pfsense link in google and login

user: admin and pw: pfsense

image

  • Logged into pfsense

image

  • Change the default password for pfsense

image

  • Password changed

image

  • Go to settings ---> General setup

image

  • Configure system settings

image

  • Configure DNS settings (GOOGLE!)

image

  • GO TO THE BOTTOM AND SAVE

Time for deliverables!

Deliverable 1:

  • Show a screenshot of a successful ping from fw01 to champlain.edu
  • select 8 to get a shell

image

TROUBLESHOOTING: The ping isn't working

image

I am not actually sure what I did, but I when I exited out of the command line and then went back into it, it actually worked.

Successful ping

There was only one packet sent and received in the successful ping because we used the command -c 1, which means fw01 only sent one packet to champlain.edu.

image

Press exit to leave the command shell

image

Deliverable 2:

on wks01, figure out how to invoke powershell and provide a screenshot showing the output of the following commands:

  • whoami
  • hostname
  • ping -n 1 google.com
  • ipconfig

Go to powershell by typing it in the search bar

image

image

type in whoami

image

type in hostname

image

type in ping -n 1 google.com

image

type in ipconfig

The default gateway is set to the IP of the firewall that we configured.

image

Deliverable 3:

Show a successful navigation from wks01 to champlain.edu using chrome.

image

Deliverable 4:

On wks01, research how to use the tracert command against champlain.edu with a maximum of three hops. This command should illustrate how packets are being routed from your private LAN to your WAN Provide a screenshot showing your tracert command and hops 1-3.

TROUBLESHOOTING: I when trying to execute the tracert command with only 3 hops I put the commands in the wrong order so it wasn't working. I did tracert champlain.edu -h 3, but the correct order is tracert -h 3 champlain.edu.

The first hop is to my default gateway (which is the firewall), then it went to Joe's default gateway, and then out into the ether.

image

Deliverable 5:

Consider this lab. What technical terms or steps were you unfamiliar with? Provide at least 3 examples.

image

image

image