Lab00 ‐ Routing and Windows - derek-hash/SYS-265-02 GitHub Wiki

Firewall (FW01)

Virtual Network Configuration:

WAN Interface: VMX0/em0

LAN Interface: VMX1/em1

IP Configuration:

WAN IP: [Your Assigned Public IP]

WAN Gateway: 10.0.17.2

LAN IP: 10.0.5.2/24

Settings:

Disable IPv6 on both WAN and LAN.

Set the hostname to fw01-yourname.

Set domain to yourname.local.

Primary DNS: 8.8.8.8

Uncheck "Block RFC1918 Private Networks."

Windows 10 (WKS01)

Virtual Network: SYS265-LAN

Static IP Configuration:

IP Address: 10.0.5.100

Netmask: 255.255.255.0

Gateway: 10.0.5.2

DNS: 10.0.5.2

Hostname: wks01-yourname

Created a Local Named Administrator Account:

Username: yourname

AD01 (Server Core)

Network Settings:

IP Address: 10.0.5.5

Netmask: 255.255.255.0

Gateway: 10.0.5.2

Preferred DNS: 10.0.5.2

Hostname: ad01-yourname

Active Directory Installation:

Domain Name: yourname.local

Used PowerShell to install Active Directory.

MGMT01 (Server 2019 with GUI)

Network Configuration: SYS265-LAN

Static IP Configuration:

IP Address: 10.0.5.10

Gateway: 10.0.5.2

DNS: 10.0.5.5 (AD DNS Server)

Hostname: mgmt01-yourname

Joined the Domain: yourname.local

Active Directory Users and Computers

Created Users:

first.lastname

first.lastname-adm

Assigned first.lastname-adm to Domain Admins Group.

DNS Configuration

Created Reverse Lookup Zone for 10.0.5.0/24.

Added A and PTR Records:

fw01-yourname

Manually added records for ad01 and mgmt01.

Commands for Deliverables

PowerShell Query for Windows Computers in AD:

  * Get-ADComputer -Filter * | Select-Object Name

Query for Domain Users:

  * Get-ADUser -Filter "Name -like '*lastname*'" | Select-Object Name

DNS A Records:

  * Get-DnsServerResourceRecord -ZoneName "yourname.local" -Node "@"

Enumerate PTR Records:

  * Get-DnsServerResourceRecord -ZoneName "10.in-addr.arpa" -Node "5"

Traceroute to Google:

  * tracert google.com

Research Topics

  1. pfSense Firewall Configuration

  2. Server Core Management with PowerShell

  3. DNS Zone Configuration and Troubleshooting

Research Results

  1. pfSense Firewall Configuration

  • Overview: pfSense is an open-source firewall/router software based on FreeBSD.

  • Useful Commands:

    * pfctl -sr (Show active rules)

* ipconfig (Check interface configuration)
  1. Server Core Management with PowerShell

  • Command: sconfig for basic setup.

    * Useful Cmdlets:

      * Add-WindowsFeature AD-Domain-Services

      * Install-ADDSForest -DomainName "yourname.local"

  1. DNS Zone Configuration

    • Reverse Lookup Zones: Essential for mapping IP addresses to hostnames.

    • Troubleshooting Tools:

      * nslookup to test DNS name resolution.