Lab 1.1 Routing and DMZ - jude-lindale/Wiki GitHub Wiki
Basic Configuring
rw01
-
First is to make sure that rw01 is set to the right network adapter in this case it should be SEC350-WAN
-
Next is to login to rw01 as champuser and change its default password using the following command:
sudo passwd champuser
-
Then add a new sudo user using the command below:
sudo useradd jude sudo passwd jude sudo usermod -aG sudo jude
-
Next is to change the hostname of the machine which can be done using the command:
sudo hostnamectl set-hostname rw01-jude
-
The last step is to make sure the the machine has its assigned static ip which can be down via the gui or
nmtui
it should look similar to the following:
- reboot so that the hostname can take effect
fw01 (vyOS)
web01
- First is to make sure that web01 is set to the right network adapter in this case it should be SEC350-01-DMZ-jude.lindale
- like the other machines web01 will need it IP address and hostname changed which can be done via
nmtui
, as well as a new sudo user and to change the passwords for champuser and root:
Configuring httpd on web01 & Configuring firewall on web01
-
First is to install httpd using the following command:
sudo yum install httpd -y
-
Once installed enable and start httpd:
sudo systemctl enable httpd sudo systemctl start httpd
-
Then allow port 80/tcp and 443/tcp or services http and https throught the firewall or just do all for good measure:
firewall-cmd --permanent --add-port 80/tcp firewall-cmd --permanent --add-port 445/tcp firewall-cmd --permanent --add-service http firewall-cmd --permanent --add-service https firewall-cmd --reload
log01
- First is to make sure that web01 is set to the right network adapter in this case it should be SEC350-01-DMZ-jude.lindale
- like the other machines web01 will need it IP address and hostname changed which can be done via
nmtui
, as well as a new sudo user and to change the passwords for root:
Testing httpd on web01 from rw01
- on rw01 go to the network connects panel and add a route: