Milestone 1: Hypervisor Setup - squatchulator/Tech-Journal GitHub Wiki

Milestone 1: Hypervisor Setup

Installation

  • In order to get started, navigate to the IP address (IPMI) and enter the credentials sent by the instructor to login. Go to Remote Control -> IKVM/HTML5 to remotely access the server.
  • Install Rufus and install a new copy of ESXi8 to the USB. Plug it into the server, and reboot the server. While it boots, press F11 in order to access the boot menu.
  • Once in the boot menu, select the UEFI drive and wait for the installer to load.
  • Let it scan for devices, and install ESXi to the largest available drive.
  • Select the language you want to install with, and enter a new root password for the hypervisor install.
  • Navigate through the rest of the prompts and take note of warnings that appear, and install ESXi.

Configuration

  • After rebooting and removing the boot media, press F2 and enter your root credentials we just created in order to configure the installation.
  • First, go to "Configure Management Network". Select Network Adapters, de-select the default one and connect the one that says "Connected".
  • Back out, and go to IPv4 Configuration. Disable dynamic IPv4 addresses, and enable static IPv4. Enter the networking information.
  • Now, go to DNS Configuration and disable automatic DNS servers again. Enter DNS server information.
  • Restart and test the network now. You should get OK messages for each ping that appears.
  • By this point, you should be able to navigate to the VSphere IP in a web browser and log in with your root credentials to access the ESXi web interface.

Datastore Setup

  • Navigate on the left to Storage and click datastore1. Rename the datastore to datastore1-super(your_number)
  • Create a new datastore as well. Create a new VMFS datastore, name it datastore2-super(your_number) and select the drive, set it to use the full disk on VMFS 6, and click create.
  • Navigate to the new datastore, and go to Datastore browser. Create a new directory called isos. Click "Upload" and select the xubuntu and pfSense isos to upload them.
  • Back out and go to Host -> Actions -> Services and enable Secure Shell (SSH).
  • You should now be able to ping the hostname super5. You can do ssh using this hostname as well.

Switching and Port Groups

  • Go to the Networking tab and head to the Virtual switches tab. Create a new one and name it "480-WAN". Delete the uplink, and click Add.
  • Now, head to Port groups and add a new port group. Name it "480-WAN" as well, and set the switch it's on to the one we just created under the same name.

480-fw

  • Create a new VM and set the following configurations:

image

image image image

  • Start the VM up, and open the console. Login for default should be vyos:vyos. This is a live image, so we need to install using install image. Hit enter for all options and yes when prompted. Once finished, type reboot to restart the system.
  • Run the following commands:
configure
show interfaces
delete interfaces ethernet eth0 hw-id
delete interfaces etherneteth1 hw-id
commit
save
set interfaces ethernet eth0 address dhcp
set service ssh listen-address 0.0.0.0
commit
save
exit
poweroff
  • After it is off, edit the VM settings and change the Drive 1 from the ISO file to the host device.
  • At this point, right-click the VM and take a snapshot. Name it base, and save. Turn the VM back on, and change the second network adapter to 480-WAN.
  • If you run show interfaces a DHCP address should be mapped to eth0.
  • Run the following commands:
configure
set system host-name 480-fw
delete interfaces ethernet eth0 address dhcp
set interfaces ethernet eth0 address (your_"vyos-480x eth0"_address)/24
set protocols static route 0.0.0.0/0 next-hop 192.168.7.250
set interfaces ethernet eth0 description CYBERLAB
set interfaces ethernet eth1 description 480-WAN
set interfaces ethernet eth1 address 10.0.17.2/24
set system name-server 192.168.4.4
set system name-server 192.168.4.5
set service dns forwarding listen-address 10.0.17.2
set service dns forwarding allow-from 10.0.17.0/24
set service dns forwarding system
set nat source rule 10 source address 10.0.17.0/24
set nat source rule 10 outbound-interface eth0
set nat source rule 10 translation address masquerade
commit
save
  • Try pinging the default gateway (192.168.7.250) and it should resolve. You should also be able to ping google.com.

xUbuntu

  • Create a new VM with the following configurations:

image image image image image

  • Boot the new VM up. Do a minimal installation when it loads up, erase disk and install, and create an account.
  • On the desktop, download this file using wget. Run the script as root when you finish. We can now shut the system down.
  • Edit the VM's settings and remove the CD ROM if you haven't done so already.
  • Take a snapshot and name it "Base", and go back into the settings. Put it on the 480-WAN network, save, and boot it up again.
  • Edit the wired connection settings. Set IPv4 method to manual, add the address 10.0.17.100/24 with a gateway of 10.0.17.2, DNS server of 10.0.17.2, and the serch domain 480.local. After this point, you should be able to do all of the following:

image