In this lab we set up our vCenter environment so we can begin incorporating new boxes such as DHCP servers, Windows workstations, a firewall/default gateway, etc. vCenter is the centralized management utility for VMware, and is used to manage virtual machines. We configured our own firewall that separates each student's LAN from the class's SYS255 WAN. We also configured our Windows 10 Workstation to function within our LAN to communicate with the internet.

When configuring an environment you need to make sure each box has correct network adapter settings. You must specify whether or not a box is going to be set on your LAN or WAN.

1. TAKE A SNAPSHOT Go to the settings page of your pfSense Firewall. Top right vertical dots "Actions" > "Edit Settings". Add a Network Adapter, put one on WAN and the other on your student LAN.

2. Power on the machine and once you reach the main menu you'll want to set up the network interfaces. Our interfaces should be assigned in the same order as they appeared in our VMWare configuration, namely the WAN should be associated with the first interface and the LAN should be associated with the second interface.

---

Select 1 to reassign Network Interfaces and follow the following steps:

-Do not configure VLANs now

-The WAN interface name should be changed to em0

-The LAN interface name should be changed to em1

-If prompted for an optional interface, just select

-If successful, your interfaces should look like this:

-When prompted to proceed, do so.

---

3. Next we'll want to set up the interfaces' IP addresses. To do so, follow these steps:

-Select 2 to Set interface IP Address

-Select 1 again to pick the WAN interface

-Do not use DHCP for the WAN IPv4 address

-You are using a 24 bit subnet mask

-For the WAN, your upstream gateway is 10.0.17.2

-Use the gateway as your IPv4 name server as well

-We will not be using IPv6, respond no when asked about DHCP.

-Press to bypass IPv6 configuration

-When asked about HTTP for the GUI, respond no (we want to use secure https)

---

-Select 2 again to configure the other Interface's IP Address

-Select 2 to pick the LAN interface

-We are not using DHCP

-Your LAN IP Address is 10.0.5.2. This is the same for every student.

-You are using a 24 bit subnet mask

-You do not have an upstream LAN gateway (you are the gateway for the LAN). Press

-No DHCP

-Press to bypass IPv6 configuration

-Do not enable a LAN DHCP Server

-Do not revert to HTTP

---

When Finished, your pfSense main page should look similar to this:

---

4. On your Workstation, change the network configuration so it's connected to the LAN and change the hostname to wks01-yourfirstname

-Open File Explorer

-Right-click on “This PC”

-Click “Properties”

-Click on “Change Settings”

-Click “Change” next to “To rename this computer…”

-Then type: wks01-yourfirstname

---

5. You will need to set up a new local administrator account. Here are specific instructions on how to add a new local administrative user.

---

6. Go to Control Panel > Network and Internet > Network Connections > Ethernet0 > Ethernet0 Status > Properties > Right Click IPv4 Properties and make the following configuration changes:

IP Address: 10.0.5.100

Default Gateway: 10.0.5.2

Preferred DNS: 10.0.5.2

---

7. Your workstation isn't connected to the internet currently, so you need to adjust your firewall settings in order to make this happen. You can do this through the webpage that pfSense sets up automatically on your LAN. If you type in your default gateway address into your browser (in this case 10.0.5.2) you can access this page.

username: admin

password: pfsense

---

THE FOLLOWING ARE SCREENS WHICH MUST BE EDITED/CHANGED FROM DEFAULT VALUES, IF A PAGE IS NOT MENTIONED IT DOES NOT NEED TO BE CHANGED

Skip over the wizard and leave the setting checked to override the DNS server on PPP/WAN

System Wizard General Information:

Hostname: fw1-yourfirstname

Domain: yourfirstname.local

Primary DNS: 8.8.8.8

System Wizard: Configure WAN Interface > RFC1918 Networks: Uncheck "Block private networks from entering via WAN"

System / User Manager: Set Root Password > Up to you. If you set it, then you need to remember it!

---

Deliverables: https://docs.google.com/document/d/1cIGuKFrC5BFCWcviCWbZ2WUUa-VIlIV0WLeCmjHghqw/edit