Re: Lab setup for security learning

["Francois Yang" <francois.y () gmail com>]

I think it depends what you want to test or play with.
software or hardware should be determine on what you want to test.
If you want to see what happens when you do certain things against a
software firewall, then set that  up.  If you want to see what happens
to a hardware firewall, that set that up.
It just depends on what you want to do.  You can always just build a
generic one and add on later on. Hope that makes sense.

On 1/13/07, Ankur Jindal <divinepresence () gmail com> wrote:
> Wouldn't iptables on linux and ICF on windows suffice for the
> firewall. Or should one test against something like zone alarm since
> it would be harder than a native firewall? A hardware firewall is not
> an option we have? Could you give me a little more detail on point d?
>
> Thanks
> Ankur
>
> On 1/12/07, Francois Yang <francois.y () gmail com> wrote:
> > Here are my suggestions.
> > a. can you setup vmware on one or two of the current machines?
> > that will give you the options to mess with the guess OS and roll back
> > if you break anything without having to reload everytime. will save
> > you alot of time.  Also if will allow you to setup alot more Os's to
> > play with rather than being limited to the three you currently have.
> >
> > b. You might have to add, hardware/software firewall/router if
> > possible to mimic real life.
> >
> > d. I would say, setup a network where you can simulate how an attacker
> > could own a box on the same network and how they would do it from the
> > outside thru a service such as http.
> >
> > I think something like this should be a good start.
> >
> >
> > On 1/12/07, Ankur Jindal <divinepresence () gmail com> wrote:
> > > Hello all
> > > Me and a couple of friends wish to set up a lab of our own for
> > > learning network security. I'd like some suggestions about the setup
> > > of the lab with respect to
> > >
> > > a) The number of machines (We only have 3)
> > > b) Networking components (we have a 4 port switch and a 4-port hub)
> > > c) OS/Softwares (Win XP, Fedora Core 2, Backtrack (for all testing),
> > > windows disassemblers etc.)
> > > d) Setup architecture (both physical and software)
> > >
> > > Any suggestions for above are welcome. I'd appreciate it if you can
> > > provide any links/docs/tutorials etc.
> > >
> > > Thanks
> > > Ankur
> > >
> > > ---------------------------------------------------------------------------
> > > This list is sponsored by: ByteCrusher
> > >
> > > Detect Malicious Web Content and Exploits in Real-Time.
> > > Anti-Virus engines can't detect unknown or new threats.
> > > LinkScanner can. Web surfing just became a whole lot safer.
> > >
> > > http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetect
> > > ---------------------------------------------------------------------------
> > >
> > >
> >

---------------------------------------------------------------------------
This list is sponsored by: ByteCrusher

Detect Malicious Web Content and Exploits in Real-Time.
Anti-Virus engines can't detect unknown or new threats.
LinkScanner can. Web surfing just became a whole lot safer.

http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetect
---------------------------------------------------------------------------