Time
6 hours 28 minutes
Difficulty
Intermediate
CEU/CPE
7

Video Transcription

00:00
Welcome back to the several recourse in building you're in for a sec lap. I'm your host and instructor, Kevin Hernandez, in our last few lessons, with start finishing, installing all of our applications regardless of where we're gonna utilize, um or not.
00:13
In our scenario, we start curator Awesome and Splunk s R s. I am tools for firewalls. We've stopped pf sense and I pee fire and we also install three OS is Santo's sift fern, forensics and candy.
00:29
In today's lesson, we'll start connecting our lab, putting all those pieces together. First of all, we're gonna start confirming our vigilance so we can install any use. Our firewall in this case will be utilizing PF sense.
00:46
Now before we start connecting our network. Let's take a quick look at the diary
00:51
so you can see our suspect. Ations aren't to have modem.
00:56
Two are smart, such part one.
00:59
That report to that will go straight to our firewall, which didn't return a swell from port to with the villains will also have port seven, and, uh, rounder and port eight
01:11
in the stops computers, et cetera rate.
01:15
This is where it's gonna get hilarious for you and
01:21
kind of heartbreaking for me being honest with you.
01:25
If you look let's open, Axelrod, quick. Right. If you look at this rate, we have eight ports, right? 12 Wait. We're using one, too. Isn't seven and eight? I spent probably the best off dirty hours or so trying to figure out why I couldn't get this to work.
01:42
And what happened, Waas that for some reason or another, I switched the ports on the router itself, Right. The switch,
01:51
I flipped it. And therefore what I thought was Port one and two was actually Port seven and eight or eight and seven.
02:00
Therefore, when I was making my V Lance
02:04
during the weekend,
02:05
I was creating rules as if the Internet was coming from my desktop.
02:10
And as in my d a. C p should be my modem.
02:15
I have them completely inverted. And the reason I noticed this was actually because instead of using this dire in like it did, I started connecting, disconnecting things and keeping it a simple assed possible. And I set it up like this. And then instead of using Port eight,
02:32
I put my death stops right and my computers in port three.
02:38
And this is where it hit me. Because once I got to my port status, once I eliminated all those variables, I noticed that I was not looking a Ports 123 Instead, I was looking a port 87 and six. I was like, Wait, what's happening? And that's when I realized
02:55
all those hours of troubleshooting
02:58
looking for ideas, uh, talking to it. Other experts in the field that
03:04
I made probably the biggest, simplest error
03:08
there isn't a IittIe world is to make sure something's connected right, So make sure you look at your ports before doing anything else. Don't assume, because he's the 1st 1 on the top, that it's one or because you thought you had it in one. It iss one because you know you could accidentally flip it when you're moving it around
03:28
the switch
03:29
and you will have the same issue I had so
03:32
finding against and good troubleshooting that I moved the ports around if I wouldn't have moved to port your own and I kept doing one on 8181 and I would have never figured this out.
03:43
Now,
03:44
if you can see here right,
03:46
I'm gonna log in into my switch. More switch right here.
03:52
Right.
03:52
And here's her report. Status is And this is where I noticed that I was in these three instead of these three. So now I actually flip them around and made them work. They're supposed to be now
04:03
to connect the things we're gonna need three things we're gonna have access to Netgear, right? Art smart switch. Gonna have also require access to our x X I
04:15
and our firewall.
04:17
Right.
04:19
1 6/8 Wonder one. Now, if you have the ports inverted like I did, none of this will work. Okay, so yes, reaching this is a good sign. Okay,
04:30
Also, 11 key of a bys I'm gonna provide you is always half your work settings earning a doctor. Options open
04:39
here in properties as such, because you're gonna most likely need this a swell
04:45
during insulation.
04:46
Okay,
04:47
so let's go ahead and start creating those feelings.
04:51
First of all, let's go into the *** sign
04:58
and put the password,
05:00
all right? And there's little changes here from what we originally configured in the beginning, right? In the beginning, we create created a
05:08
outside interface and inside interface. The only difference in this scenario is that we're gonna add an I d to the interface. Okay,
05:16
so let's give it a second for to load.
05:18
There we go
05:23
on the way we do. This is going to networking.
05:26
Select the outside interface right
05:30
for him.
05:30
You can see it's only sent to p f Sense. Okay?
05:34
And you're gonna edit?
05:36
Yeah,
05:40
and added through the ah 90 dirty. Right now the thing is, in order to add that into PF sense you do it through edit
05:47
right here
05:49
you click
05:51
and network and after, Right. Sweded Beginning. Make sure outside is there. And that's basically how you do it If you dont ant this second that we're a doctor to anything else,
06:01
nothing else will have to be alone. Okay?
06:04
Yes, you're going to see here.
06:06
Well, still only one I p up. Okay,
06:09
so
06:10
let's go ahead. And now that we have configured reports
06:14
in
06:15
yes, excited, let's go to next year into the same. So for this, we're gonna go via land.
06:20
802.1 q, right. I'm gonna pour trucking,
06:25
and we're gonna go to advance any enabling
06:29
hit, okay? And most likely will take you out to re enter your password.
06:32
If not, that means you haven't time now on a recording. So you're gonna be percent that maybe an I d one. And you gotta have courts want to wait, right? Nothing out of this world
06:43
here. You have todo member trips or how you tackle intact ports. And that they're want is, uh, the grouping you're gonna provide him right up, Petey.
06:50
So, first of all that what you worked in this switch is you have to at the I d. First
06:58
there,
06:59
Then you gotta come to the second tap
07:02
and organize it, right?
07:06
I think so.
07:08
Point.
07:10
Then you gotta come to the
07:12
their tab
07:14
and modify it
07:17
as such.
07:19
And you gotta come back to member trips
07:23
and then you remove it from here, right? This is feeling one.
07:27
It's gonna be our regular
07:30
network, right? Like insight network. Therefore, you don't want the modem to be part of the Insight Network.
07:35
Does the recent do disable it or right
07:40
removal? Remove. Sorry. Not removal.
07:43
And in the 30 right, this is your in tech and all the traffic you want to send from dis support right is gonna go straight to the sport. Tact. Okay,
07:53
now let's go back into PF sense.
07:56
Here we go.
07:58
And we're gonna go to our interface is one,
08:01
and they're gonna click right here in the top, right? We're gonna release and renew our I p.
08:07
And this takes a few minutes
08:09
for their, especially for the renewal face. I'm going to stop the video until it finishes.
08:13
Once it finishes renewing, you will get an I P. Address. Now, in this case, you look it looks internal instead of external.
08:22
Uh, it's working so happy.
08:24
However, in my prior scenario, the i p. Itself works external, not internal. So
08:31
I have to figure out what's happening in that town are okay. Now
08:37
if for example, when you're renewing, it doesn't get an I p in the States. You're not here with us here. In my case, what helped me was as likely cranial. I dashed into the room. Where have I mowed him?
08:48
Disconnect, reconnect. And once it reconnected, I was able to gather a night beef
08:54
So you can see I have now Internet access. Great.
09:00
You can see click traffic's worse and you can see I'm here. This is my other course. You will greatly help you in your lap to swell.
09:09
So what exactly they will learn today. First of all, what? Start configuring our villains. We configure them both in the e x x I s well, lesson are smart switch.
09:18
We went over the different groups and the different tagging that needed to be required.
09:24
We also configured properly the interfaces in PF sense as our initial insulation. What's more of Ah, dummy insulation in order to get the operating system up and from other sites ourself with the dashboard? Not only that, but we also showed how to release and renew the lease of your I p in order to make the installation complete.
09:43
Next lesson will actually start digging deeper into PF since we'll look at some of its features,
09:48
the functions and start enabling them in order to make our lap more operational.
09:54
Remember, just because you're building a lap to simulate the one in your work and Byron doesn't mean you can enhance it. Maybe some of those things that you discover during your lap. Mike, wake your experience that work even better.
10:07
We want to dive a steep as possible and get as much experience as we can. One building this lap. The more things were installing get familiarized with, the more comfortable we will be. When it comes to real life scenarios, take a look into tools such as BP en what? Proxy? Three squared
10:26
I PS etcetera. Right. Some of those who already kind of saw through extension
10:31
a manager, right, expansion manager. And
10:33
the real reason why I do this is because you want to have the most bang for the buck when it comes to this next year. Firewall type of a plant. I hope to see you soon. Have a great day.

Up Next

Building an InfoSec Lab

This course will guide you through the basics of incorporating several Information Security Engineering Tools in your home and/or lab. By building this lab you will be able to obtain corporate-level security within your home network, as well as a higher understanding of the capabilities and advantages these tools bring to your network.

Instructed By

Instructor Profile Image
Kevin Hernandez
Instructor