Assessment Prep
Assessment Description
For the assessment, you will be given a 3-zone network to configure that consists of:
traveler. A WAN-based road warrior user running Windows 10. (this replaces the linux rw01.)
edge01. A VyOS firewall with three interfaces (WAN, DMZ, LAN). You will need to add an interface using vCenter. (this replaces fw01.)
nginx01. A DMZ based nginx web server running Ubuntu (this replaces web01 and apache)
dhcp01. A LAN based dhcp server running Ubuntu
Requirements
All systems should have an accurate hostname.
All Linux systems should have a named sudo or administrator user.
The two new ubuntu systems do not have a host firewall enabled, this is ok (for now)
wks1, mgmt01 should be able to surf the internet.
wks1, mgmt01 should be able to navigate to nginx01
mgmt01 should be able to ssh to nginx01
nginx01 and dhcp01 should have wazuh agents installed and be able to connect to wazuh
nginx01 should have a custom web page (practice this on jump)
traveler should be able to get to nginx01's custom test page by navigating to edge01's WAN IP address.
traveler should be able to perform ssh keybased authentication with jump. Traveler is a Windows box, but ssh on powershell is nearly exactly the same as linux to include key generation. You will need to add a new public key to authorized_keys.
dhcp01 should serve a pool of dhcp addresses to the LAN from .100 to .150.
WKS1 should use dhcp addressing
Last updated