Differences
This shows you the differences between two versions of the page.
|
sred:lab3 [2021/11/12 18:20] horia.stoenescu [Setup] |
sred:lab3 [2022/10/28 14:21] (current) horia.stoenescu [Setup] |
||
|---|---|---|---|
| Line 5: | Line 5: | ||
| === Story === | === Story === | ||
| After a period of time, our company managed to have some income and decided to invest it in security equipment, a license for a Cisco Firepower Threat Defense (known as FTD). In the first day, as expected, there is need to setup the virtual machine and create a simple topology with the server connected in **Outside** zone and client area in **Inside** one. | After a period of time, our company managed to have some income and decided to invest it in security equipment, a license for a Cisco Firepower Threat Defense (known as FTD). In the first day, as expected, there is need to setup the virtual machine and create a simple topology with the server connected in **Outside** zone and client area in **Inside** one. | ||
| + | |||
| + | <note tip> | ||
| + | [[https://curs.upb.ro/2022/pluginfile.php/364637/mod_resource/content/2/lab3_ftd.pdf|Here]] you can find the presentation for lab3. There is made the transition from CBAC/ZBF to a firewall solution (consisting in basic scenarios like permitting traffic from inside to outside, filtering urls, and applications). | ||
| + | </note> | ||
| === Local host prerequisites === | === Local host prerequisites === | ||
| Line 140: | Line 144: | ||
| t7. save node config and create another 2 nodes and new 1 network: | t7. save node config and create another 2 nodes and new 1 network: | ||
| - | - 1 node with Linux image linux-ubuntu-18.04-server_machine (add 2 eth interfaces and keep the rest of default config). Add also a mac address for first eth interface with format **00:50:00:byte_2_eveng_ip:byte3_eveng_ip+id_table:byte4_eveng_ip** (example: for 10.3.0.76 with id table 28, use 00:50:00:03:28:76 - find your id in table [[https://curs.upb.ro/mod/url/view.php?id=84844|here]]). | + | - 1 node with Linux image linux-ubuntu-18.04-server_machine (add 2 eth interfaces and keep the rest of default config). Add also a mac address for first eth interface with format **00:50:00:byte_2_eveng_ip:byte3_eveng_ip+1:byte4_eveng_ip** (example: for 10.3.0.76 use 00:50:00:03:01:76). |
| - 1 node with Linux image linux-ubuntu-18.04-client1_machine (keep also the rest of default config - 1 eth interface also) | - 1 node with Linux image linux-ubuntu-18.04-client1_machine (keep also the rest of default config - 1 eth interface also) | ||
