Network - micahgrinnell/CC-Capstone-Project GitHub Wiki

Suggested Network Changes:

Under the 'Network' drop-down menu at the top, there are several pages for altering networking settings. The headers below outline what page these modifications can be made on. As stated on the previous page, all of these altercations are optional yet most are highly recommended. I advise you to complete these changes first as during the System changes you can make a backup.

Interfaces

  1. Change LAN address
    • By default your LAN IP address is set to 192.168.1.1.
    • This can be problematic because any attackers will know that this address is the default.

      This is optional for you will have to change the default gateway for all devices in the network.

  2. More optional changes:
    • Override the MAC address in order to hide its actual value.
    • Edit DHCP server settings.
  3. Save & Apply changes

DHCP & DNS

  1. DNS forwardings
    • Add 8.8.8.8.
  2. Change DHCP and DNS files
    • An attacker will know where the default files are for DHCP and DNS.
    • Changing it would help prevent an attacker from learning all of the IP addresses and systems in your network.
  3. Change DNS server port
    • There are exploits that take advantage of port 53, the default for DNS servers.
    • By changing it, once again we are protecting ourselves from malicious attacks.
  4. Save & Apply changes

Hostnames

  1. Add PC hostname and IP
    • If you don't have an Active Directory server adding computer hostnames and their IP address can help with DNS.
  2. Save & Apply changes

Static Routes

  1. Add routes out or into your network
    • If you are running into issues with network traffic not finding its way, try adding static routes.
  2. Save & Apply changes

Firewall

  1. Add rules to secure your network
    • The rules you add are completely dependent on how your network and systems are set up.
    • By default, the firewall is set up with some great hardening rules so don't feel pressured to add a ton of rules.
    • If you are feeling overwhelmed by this I suggest checking out this article on best practices for firewalls.
  2. Save & Apply changes